IT Security News Daily Summary 2023-01-23

• Fourth time around for vulnerability disclosure bill

• State eyes sports betting kiosks

• Data Privacy Week 2023: Virtual events and webinars to attend

• Pair of Galaxy App Store Bugs Offer Cyberattackers Mobile Device Access

• Executive order blocks state business with ‘evil foreign governments’

• Facebook Is Expanding Features For End-To-End Encryption On Messenger App

• Organizations Likely to Experience Ransomware Threat in the Next 24 Months, According to Info-Tech Research Group

• On Georgia State Law’s Presentments and the Special Purpose Grand Jury

• Role of Plaid developers in the fintech industry

• Multiple Vulnerabilities Found In Samsung Galaxy App Store App

• TROJANPUZZLE Attack Compels AI Assistants To Suggest Rogue Codes

• Report: Cyberespionage threat actor exploits CVE-2022-42475 FortiOS vulnerability

• Magnet Forensics Inc. Enters Into Definitive Agreement to be Acquired by Thoma Bravo

• 13 Best Intrusion Detection and Prevention Systems (IDPS)

• SOCs to Face Greater Challenges From Cybercriminals Targeting Governments and Media in 2023

• Hackers remotely interrupting GTA Online PC Gameplay

• Apple Patches WebKit Code Execution Flaws

• Mousetrapping: What is it & how to Safeguard Against it?

• Checklist: Securing Windows 10 systems

• Two flaws in Samsung Galaxy Store can allow to install Apps and execute JS code

• Thoma Bravo to Buy Magnet Forensics in Billion-Dollar Deal

• Roaming Mantis Malware Returns with DNS Changer Capability

• Defending against a growing botnet and DDoS epidemic in 2023

• Malware response checklist

• 8 cybersecurity roles to consider

• Serious Security: How dEliBeRaTe tYpOs might imProVe DNS security

• FanDuel Sportsbook Bettors Exposed in Mailchimp Breach

• Hackers Deploy Open-Source Tool Sliver C2, Replacing Cobalt Strike, Metasploit

• Flaw in Diksha App Exposed the Data of Millions of Indian Students

• CISA Adds One Known Exploited Vulnerability to Catalog

• Microsoft Security innovations from 2022 to help you create a safer world today

• Microsoft Invests Billions in ChatGPT-maker OpenAI

• No One Wants to Be Governed, Everyone Wants to Be Helped

• CISA Adds One Known Exploited Vulnerability to Catalog

• Turning the Unamazing into the Amazing

• The future of quantum security will be encoded in light, researchers hope

• Two Vulnerabilities Found in Galaxy App Store

• PayPal is teaching fraudsters how to create the perfect phishing email

• Congress, TikTok, and Securing Democracy in the Digital Age

• Digital event highlights new features in Microsoft Purview

• CACI Awarded $284 Million Contract by National Security Agency

• United States Transformative Mega Trends Report 2022-2030: Focus on Connectivity, Cognitive Era, Security and Defense, Smart is the New Green – ResearchAndMarkets.com

• AI and Cybersecurity: Some observational implications of the intersection between the two

• Real Talk with CCSPs An interview with Vanessa Leite, CCSP, CISSP

• Arnold Clark data breach leads to identity theft

• Advancing Medical Technology Requires More Medical Device Regulation

• 4 tips to find cyber insurance coverage in 2023

• Google to layoff 12k workers as its AI focus intensifies

• Samsung Galaxy Store Flaws Can Lead to Unwanted App Installations, Code Execution

• Most Federal Agencies Ignored GAO’s Cybersecurity Recommendations

• Telephony fraud and risk mitigation: Understanding this ever-changing threat

• How do the latest iPhone updates address Cybersecurity issues?

• Hackers Access Thousands Of PayPal Accounts

• ChatGPT Can Be Used to Create Dangerous Polymorphic Malware

• Experts applaud expansion of Apple’s E2E encryption

• Gartner Predicts 10% of Large Enterprises Will Have a Mature and Measurable Zero-Trust Program in Place by 2026

• Companies impacted by Mailchimp data breach warn their customers

• Microsoft Killed Macros So Hackers Turned To Windows LNK Files

• US Authorities Release Asylum Seekers After Leaking Their Data Online

• Crypto Lender Genesis Files For Bankruptcy

• Scientists Use Wi-Fi Routers To See Humans Through Walls

• Celebrating Data Privacy Day – 28th January 2023

• NFTs in Simple Words – How to Invest in Non-Fungible Token 2023?

• Cyber Thieves Target Retirement Accounts

• Log4j Forever Changed What (Some) Cyber Pros Think About OSS

• TechRepublic Premium editorial calendar: IT policies, checklists, toolkits and research for download

• Kaspersky releases 2023 predictions

• Cybersecurity Worries Around Hybrid Working Drop, but Many IT Leaders Still Concerned Over Cyber-Skills Gap

• Hunting Insider Threats on the Dark Web

• How to Earn Your (ISC)² Certification

• German Regulator Opens PayPal Competition Probe

• Majority of GAO’s Cybersecurity Recommendations Not Implemented by Federal Agencies

• NSA Publishes Security Guidance for Organizations Transitioning to IPv6

• Supply Chain Security Global Market Report 2022: Sector to Reach $3.5 Billion by 2027 at an 11% CAGR

• Gen. Mark Milley’s Wrongful Jan. 6 Overclassification

• Ransomware Profits Shrink, as Victims Refuse to Pay

• Phishing Scam Blank Image Masks Code in SVG Files

• Twitter Shuts Down Third-Party Clients In Policy Shift

• Fewer ransomware victims are paying up. But there’s a catch

• Ad Fraud Scheme Tops 12 Billion Daily Bid Requests

• WhatsApp Sanctioned with €5.5 Million Over Enforcing Data-Processing Update

• Microsoft took its macros and went home, so miscreants turned to Windows LNK files

• Scientists use Wi-Fi routers to see humans through walls

• VERT Reads All About It – Cybersecurity News January 23 2023

• Musk Says Twitter To Launch Ad-Free Subscription

• Mississippi Creates New Cyber Unit, Names 1st Director

• Companies Impacted by Recent Mailchimp Breach Start Notifying Customers

• Riot Games Move Release Of Game Patches After Security Breach

• Email is our greatest productivity tool. That’s why phishing is so dangerous to everyone

• SaaS Security Posture Management (SSPM) as a Layer in Your Identity Fabric

• Samsung Galaxy Store App Found Vulnerable to Sneaky App Installs and Fraud

• App Spoofing Ad Fraud Affects 11 Million Devices

• Malware Can Be Written With ChatGPT, as it Turns Out

• Security Vendors are Turning to GPT as a Key AI Technology

• 4 Ways to Prevent Leaking Your Location on the Web

• India’s Public Education App Exposed Millions of Students’ Data

• Netherlands, Japan ‘Set To Join’ US’ China Chip Sanctions

• The U.S. ‘No Fly List’ Found On the Open Internet

• Massive Ad fraud scheme VASTFLUX targeted over 11 million devices

• US Prosecutors Sieze $700m From FTX’s Bankman-Fried

• 10 Best Free Firewall Software – 2023

• Brand Phishing report – Q4 2022

• Threat Actors Turn to Sliver as Open Source Alternative to Popular C2 Frameworks

• What your SOC will be facing in 2023

• FanDuel Cautions Users Of Data Breach In Vendor Hack

• The UK Online Safety Bill – What you need to know right now

• Silicon UK In Focus Podcast: Smart Spaces for Successful Remote Working

• Google Parent Alphabet To Cut 12,000 Jobs

• API Security Fundamentals: Everything You Need To Know

• Riot Games Halts Work After Cyber-Attack

• New Government Cyber Advice for £100bn UK Charity Sector

• Software developers, how secure is your software?

• Cisco Unified CM SQL Injection Flaw Let Attackers Execute Crafted SQL Queries

• Autotrader – 20,032 breached accounts

• Massive Ad Fraud Scheme Targeted Over 11 Million Devices with 1,700 Spoofed Apps

• The loneliness of leading a cybersecurity startup

• Video game firm Riot Games hacked, now it faces problems to release content

• Why most IoT cybersecurity strategies give zero hope for zero trust

• ENISA gives out toolbox for creating security awareness programs

• ‘Taxpayer Advocate’ pushes for IRS to make its own free, direct e-file system

• US authorities release asylum seekers after leaking their data online

• Trained developers get rid of more vulnerabilities than code scanning tools

• Extent of reported CVEs overwhelms critical infrastructure asset owners

• CyberGRX Predictive Data uncovers security gaps in third parties

• Wallarm API Leak Management detects leaked API keys and secrets

• India floats plan to make big tech pay for news, walks back government censorship

• PayPal Data Breach – Over 35,000 Users’ Accounts Compromised

• Like it or not, email is still our greatest tool – and the source of some of our biggest threats

• Zurich – 756,737 breached accounts

• IT Security News Weekly Summary – Week 03

• IT Security News Daily Summary 2023-01-22

• FBI Chief Says He’s ‘Deeply concerned’ by China’s AI Program

• Expert found critical flaws in OpenText Enterprise Content Management System

• Roaming Mantis uses new DNS changer in its Wroba mobile malware

• How Ukraine Fought Against Russia’s Air War

• Bitdefender Internet Security Named AV-Comparatives’ Product of the Year

• Policy Brief – U.S. Cyber Threat Intelligence, Part 2: Summary, Recommendations & Challenges

• 37 Million Accounts’ Data were Stolen from T-Mobile in a Data Breach Involving APIs

• Hackers Designs Malware for Recently Patched Fortinet Zero-Day Vulnerability

• A Credential Stuffing Attack Breaches PayPal Accounts

• Roaming Mantis Virus Features DNS Setups

• How to Encrypt any File, Folder, or Drive on Your System

• Takeaways from the CircleCI Incident

• Security Affairs newsletter Round 403 by Pierluigi Paganini

• Week in review: Critical git vulnerabilities, increasingly malicious Google Search ads

• Cyber Security Management System (CSMS) for the Automotive Industry

• Travelers Institute to Host Cybersecurity Symposium in Phoenix

• Predictions 2023, Part 1: What will the new year bring for the InfoSec Community?

• Vanta acquires Trustpage to accelerate its product innovation

• Exterro acquires Zapproved to address critical business challenges

• How 5G Networks Are Secured and Enabled By SASE

Generated on 2023-01-23 23:55:20.942521