IT Security News Daily Summary 2023-03-20

• Acropalypse flaw in Google Pixel’s Markup tool allowed the recovery of edited images

• ChatGPT Gut Check: Cybersecurity Threats Overhyped or Not?

• CISA kicks off ransomware vulnerability pilot to help spot ransomware-exploitable flaws

• FIDO (Fast Identity Online)

• ForgeRock, Secret Double Octopus offer passwordless authentication for enterprises

• Privacy fail: Pictures cropped, redacted by Google Pixel phones can be recovered

• UI modernization, identity verification limit state fraud loss

• Resident data profiles trigger targeted emergency response

• Aembit Scores $16.6M Seed Funding for Workload IAM Technology

• 4 cloud API security best practices

• Facebook Is Finally Rolling Out Paid Verification System For Improved Security

• Mirai Hackers Use Golang to Create a Bigger, Badder DDoS Botnet

• AI Has Your Business Data

• State cyber workforce challenges reaching ‘crisis levels’

• When the Absence of Noise Becomes Signal: Defensive Considerations for Lazarus FudModule

• Techno-nationalism explained: What you need to know

• ForgeRock, Double Secret Octopus offer passwordless authentication for enterprises

• BECs double in 2022, overtaking ransomware

• FBI arrests suspected BreachForums owner in New York

• Threat Actors Using Go-based HinataBot to launch DDoS Attacks

• Bitcoin ATM customers hacked by video upload that was actually an app

• Cops Nab BreachForums Boss in New York

• EU Lawmakers Must Reject This Proposal To Scan Private Chats

• Sign The Petition And Tell EU Legislators: Don’t Scan Us

• Two Charged in Alleged Hacking of Drug Enforcement Agency’s Web Portal

• Public Key and Private Key Pairs: Know the Technical Difference

• Analysis of the recent volatility in the cryptocurrency market

• Voice deepfakes are calling – here’s what they are and how to avoid getting scammed

• KillNet Group Uses DDoS Attacks Against Azure-Based Healthcare Apps

• Mispadu Trojan Steals 90,000+ Banking Credentials From Latin American Victims

• CBP Is Expanding Its Surveillance Tower Program at the U.S.-Mexico Border–And We’re Mapping It

• HinataBot – A New Botnet Could Launch Massive 3.3 Tbps DDoS Attacks

• Rising Cyberattacks Increase Stress on Healthcare Industry

• How to make sure the reputation of your products and company is good

• Italian agency warns ransomware targets known VMware vulnerability

• BreachForums Admin Arrested in New York

• Cyberattackers Hoop NBA Fan Data via Third-Party Vendor

• DataSurgeon – Extract Sensitive Information (PII) From Logs

• (ISC)² Listens: Women Working in Cybersecurity

• Google Project Zero issues vulnerability alert on Samsung Exynos Modems

• Alleged Owner of BreachForums Arrested: Why It Matters

• OPM gives agencies guidance for a new program to rotate cybersecurity employees across agencies

• Public sector work equals high job satisfaction

• Waterfall Security, TXOne Networks Launch New OT Security Appliances

• Millions Stolen in Hack at Cryptocurrency ATM Manufacturer General Bytes

• Two ‘ViLE’ Cybercrime Group Members Charged in 2022 Hacking of DEA Portal

• BianLian ransomware group shifts focus to extortion

• BBC Bans TikTok From Corporate Devices

• SecurityBridge Introduces The SAP Management Dashboard

• Threat actors abuse Adobe Acrobat Sign to distribute RedLine info-stealer

• How Much Will Each Stolen Client SSN Cost You Now That You Have Been Pwned?

• Why You Should Opt Out of Sharing Data With Your Mobile Provider

• On the Unconstitutionality of Iran’s Current Constitution

• Twenty Years Later, the U.S. Military Is Still Lost in Iraq

• Royal Dirkzwager Attacked By Play Ransomware Group

• A Cancer Patient’s Fight for Justice Against a Hospital Ransomware Attack

• BreachForums Mastermind Pompompurin Arrested in New York

• Taiwan Financial Regulator ‘To Oversee Crypto’

• Cybercriminals capitalize on Silicon Valley Bank’s demise

• Technological Advancements Boosting Crypto Poker Adoption

• OpenAI CEO Sam Altman says he’s a ‘little bit scared’ of A.I.

• The Role of Finance Departments in Cybersecurity

• Shouldering the Increasingly Heavy Cloud Shared-Responsibility Model

• New DotRunpeX Malware Delivers Multiple Malware Families via Malicious Ads

• OpenAI CEO Sam Altman said he’s a ‘little bit scared’ of A.I.

• Emotet Recurs: Avoids Macro Security Using OneNote Attachments

• A Guide to Understanding XDR Security Systems

• Running WordPress on Azure for secure, fast and global content delivery

• Mispadu Banking Trojan Targets Latin America: 90,000+ Credentials Stolen

• Emotet Malware Spreads Out Through Malicious Microsoft OneNote Attachments

• NordVPN Rolls Out Meshnet For Public, Including Non-Subscribers

• Baidu Shares Rise On Positive Ernie AI Reviews

• Hackers can hijack Samsung and Pixel phones by knowing phone number

• First Dero cryptojacking campaign targets unprotected Kubernetes instances

• The FBI Warns SIM Swapping Attacks Are Rising. What’s That?

• Inside The DEA Tool Hackers Allegedly Used To Extort Targets

• Chinese Warships Seem To Be Messing With Passenger Planes

• Go-Based HinataBot Latest Botnet To Focus On DDoS Attacks

• Fighting VPN Criminalization Should Be Big Tech’s Top Priority

• BBC to staff: Uninstall TikTok from our corporate kit unless you can ‘justify’ having it

• NBA Notifying Individuals of Data Breach at Mailing Services Provider

• Hitachi Energy Blames Data Breach on Zero-Day as Ransomware Gang Threatens Firm

• FBI Detains Owner Of Notorious Cybercrime Forum, BreachForums

• Huawei ‘Replaced 13,000 Components’ After Sanctions

• Emotet is back after a three-month hiatus

• Bitcoin Surges Above $28,000 Amidst Banking Turmoil

• Detecting Malicious Packages on PyPI: Malicious package on PyPI use phishing techniques to hide its malicious intent

• UK Ransomware Incident Volumes Surge 17% in 2022

• Researchers Shed Light on CatB Ransomware’s Evasion Techniques

• New Cyber Platform Lab 1 Decodes Dark Web Data to Uncover Hidden Supply Chain Breaches

• YouTube Reinstates Donald Trump Account After Two-Year Ban

• A Look at The 2023 Global Automotive Cybersecurity Report

• Don’t fail an audit over a neglected annual policy review

• New York Man Arrested for Running BreachForums Cybercrime Website

• Adobe Acrobat Sign Abused to Distribute Malware

• “Hinata” Botnet Could Launch Massive DDoS Attacks

• How to protect online privacy in the age of pixel trackers

• Waterfall Security Solutions launches WF-600 Unidirectional Security Gateway

• HinataBot: The Latest Go-based Threat Is Launching DDoS Attacks

• Ensuring Security in Online Betting: What Bookmakers Are Doing to Protect Your Data

• Elden Ring Controller Not Working – Simple Fixes

• SMBs don’t see need for cyber insurance since they won’t experience security incidents

• Nominations are Open for 2023’s European Cybersecurity Blogger Awards

• 7 guidelines for identifying and mitigating AI-enabled phishing campaigns

• Crypto Investment ‘Scam’ Defrauds Thousands Of Users

• Scam Robocalls Forecast to Cost $58bn This Year

• What Is Shoulder Surfing? How Does It Affect Cybersecurity

• What Is the Command Key on Windows Keyboard? – Ticket to Computer Efficiency

• How To Automate Your Business Expenses?

• Cloudflare announces AI-powered Fraud Detection tool

• Fears of wider hacking theft as Latitude stays offline

• Software developers, how secure is your software?

• How to Hide Instagram Account and Prevent Other Users from Finding You

• Anthropic introduces Claude, a “more steerable” AI competitor to ChatGPT

• Microsoft is testing a built-in cryptocurrency wallet for the Edge browser

• Vessels claiming to be Chinese warships are messing with passenger planes

• Emotet Rises Again: Evades Macro Security via OneNote Attachments

• Online Sleuths Untangle the Mystery of the Nord Stream Sabotage

• Play ransomware gang hit Dutch shipping firm Royal Dirkzwager

• Police pounce on ‘pompompurin’ – alleged mastermind of BreachForums

• Detecting face morphing: A simple guide to countering complex identity fraud

• We are scared of Artificial Intelligence says OpenAI CEO

• Most mid-sized businesses lack cybersecurity experts, incident response plans

• IT security spending to reach nearly $300 billion by 2026

• How to best allocate IT and cybersecurity budgets in 2023

• The Army is putting all its network efforts under one roof

• NBA Cyber Incident – Fans’ Personal Information Exposed

• TikTok cannot be considered a private company, says Australian report

• IT Security News Weekly Summary – Week 11

• IT Security News Daily Summary 2023-03-19

• Security Affairs newsletter Round 411 by Pierluigi Paganini

• Cybersecurity startups to watch for in 2023

• Two Patch Tuesday flaws you should fix right now

• Twitter’s fraud problem isn’t too hard to solve

• EV Charging Stations Prone to Cyber Attacks : Indian Govt to Parliament

• Lowe’s Market chain leaves client data up for grabs

• The Bloody Toll of Russia’s War in Ukraine

• LockBit 3.0 Ransomware: Inside the Million Dollar Cyberthreat

• How Data Scientists Can Follow Quality Assurance Best Practices

• Threat Actors Exploit Adobe Acrobat Sign to Propagate Redline Info-Stealing Malware

• BianLian ransomware crew goes 100% extortion after free decryptor lands

• Apple stops selling Watch Series 3 — eight months after its last security update

• NBA is warning fans of a data breach after a third-party newsletter service hack

• I Got Investigated by the Secret Service. Here’s How to Not Be Me

• Lender Latitude Customer Records Were Hacked in a Cyberattack

• Week in review: Kali Linux gets Purple, Microsoft zero-days get patched

• Cyber Security Management System (CSMS) for the Automotive Industry

• Keysight Digital Learning Suite streamlines and simplifies lab management

• Researcher create polymorphic Blackmamba malware with ChatGPT

• Huawei Has Replaced Thousands of US-Banned Parts With Chinese Versions: Founder

• ChatGPT-powered polymorphic Blackmamba malware evades detection

Generated on 2023-03-20 23:55:19.617858