IT Security News Daily Summary 2023-04-17

• The best travel VPNs of 2023: Expert tested

• lockr Raises $2.5M

• Microsoft Azure Key Vault

• OPSWAT MetaAccess: NAC Product Review

• NSA’s National Centers for Academic Excellent (NCAE) Cyber Games to Hold National Finals on April 22

• Google Issues Emergency Chrome Update for Zero-Day Bug

• Chinese Cops Ran Troll Farm and Secret NY Police Station, US Says

• GAO wants Air Force, Navy plans for directed energy weapons to transition the ‘valley of death’

• How digital twins can enrich emergency response

• Pen Testers Need to Hack AI, but Also Question Its Existence

• Montana could be first state to ban TikTok

• How CISOs Can Craft Better Narratives for the Board

• Apple’s Macs Have Long Escaped Ransomware. That May Be Changing

• Google Uncovers “APT41” Tools Targeting Media And Job Sites

• Aloha PoS Restaurant Software Downed by Ransomware Attack

• How to establish network security for your hybrid workplace

• E-mail header analysis

• Goldoson Android Malware Target Korean Users Via Legit Apps

• Examine a captured packet using Wireshark

• From Zero to Hero: Learning Web3 With Infura and Python

• Why unifying endpoints and identities is the future of zero trust

• Child Advocates Blast Facebook For “Appalling” Push To Let Kids In Metaverse

• LockBit Ransomware Samples for Apple Macs Hint at New Risks for macOS Users

• Name That Toon: Lucky Charm

• New QBot Banking Trojan Campaign Hijacks Business Emails to Spread Malware

• Israeli Spyware Vendor QuaDream to Shut Down Following Citizen Lab and Microsoft Expose

• It’s 2023 – You MUST Know The SaaS Applications Your Employees Are Using

• USDA aims to build in-house tech talent, CX expertise with new digital services team

• Protect intellectual property with Govern 365 and Microsoft Purview

• What is Discord? An internet researcher explains the social media platform at the center of Pentagon leak of top-secret intelligence

• Montana Becomes First US State to Pass TikTok Ban

• This New Cybercrime Group Uses Ransomware to Target Businesses

• The Montana Legislature Banned TikTok

• Hackers Selling ChatGPT Premium Accounts On the Dark Web

• Embedded Systems Security Vulnerabilities and Protection Measures

• Report finds 82% of open-source software components ‘inherently risky’

• Ransomware Attack Hits Payments Giant NCR’s Datacenter

• Who’s Tackling Classified AI?

• Can Whistleblowing Save Tech?

• The Main Trends In The Development Of Mobile Application

• See product news and on-demand sessions from Microsoft Secure

• How to make sure the reputation of your products and company is good

• LockBit Ransomware gang focusing on MacOS

• OpenAI ChatGPT Bug Bounty Program Rewards Upto $20k

• NIST wants to mitigate smart home telehealth cybersecurity risks

• The Security and Productivity Implications of Low Code/No Code Development

• Qbot Banking Trojan Increasingly Delivered Via Business Emails

• Chinese App Uses Android Flaw To Spy On Users, CISA Warns

• QuaDream, Israeli iPhone hacking spyware firm, to shut down

• Credential harvesting malware appears on deep web

• How to build a cybersecurity deception program

• FBI and FCC warn about “Juicejacking” – but just how useful is their advice?

• Friendly Hacker, Keren Elazari, to Announced as Keynote Speaker at Infosecurity Europe 2023

• Zero Day In Google Chrome Patched: Bug Exploited In The Wild

• Mass Layoffs and Corporate Security Risks

• What’s the Difference Between CSPM & SSPM?

• FIN7 and Ex-Conti Cybercrime Gangs Join Forces in Domino Malware Attacks

• Cryptocurrency Scams: How to Detect and Avoid Them

• SpaceX Postpones Starship Launch, Citing Technical Glitch

• Shadow and Zombie APIs: How to Minimize Vulnerabilities

• How Zero Trust Changed the Course of Cybersecurity

• ZeroFox to Acquire Threat Intelligence Firm LookingGlass for $26 Million

• Top 5 Data Security RSAC 2023 Sessions to Attend

• China-linked APT41 group spotted using open-source red teaming tool GC2

• How To Win From Online Roulette

• Photographer Refuses Major Award For Image Created Using AI

• Marketing biz sent 107 million spam emails… to just 437k people

• Why IT Outsourcing Services are Vital for B2B Companies?

• Google Patched High-Severity Zero-Day Flaw With Latest Chrome Release

• Education Firm Offers GPT-4 Powered Tool Amidst Controversy

• Are Smart Home Devices Invading Your Privacy?

• Tour of the Underground: Master the Art of Dark Web Intelligence Gathering

• Google Uncovers APT41’s Use of Open Source GC2 Tool to Target Media and Job Sites

• Tencent ‘Enters Mass Production’ With Video Chip

• LockBit Ransomware Group Developing Malware to Encrypt Files on macOS

• Vice Society gang is using a custom PowerShell tool for data exfiltration

• Top 8 in-demand cybersecurity jobs for 2023 and beyond

• ICE Records Reveal How Agents Abuse Access to Secret Data

• Swatting as a Service

• US Congress Targets China’s Shein, Temu In Latest Backlash

• The Power of Zero Trust in DevOps Supply Chains

• How to Protect Your Ecommerce Site from Cybersecurity Threats

• UK Government (Kind Of) Bans TikTok

• SpaceX Prepares To Launch Most Powerful Rocket Ever Made

• Mobb Raises $5.4 Million in Seed Funding for Automatic Vulnerability Fixing Tool

• Payments Giant NCR Hit by Ransomware

• Experts warn of an emerging Python-based credential harvester named Legion

• QBot banker delivered through business correspondence

• How to Turn Off Phone Without Power Button (Android and iPhone) – A Complete Guide

• Firmware is on shaky ground – let’s see what it’s made of

• Silicon UK In Focus Podcast: Privacy-Preserving Machine Learning

• Spyware Company QuaDream Set to Close

• Vice Society Ransomware Using Stealthy PowerShell Tool for Data Exfiltration

• Sega Offers £625m For Studio Behind ‘Angry Birds’

• CISA: Patch Bug Exploited by Chinese E-commerce App

• Anti-malware tests: How to interpret them

• Cybersecurity in the Energy Sector: Risks and Mitigation Strategies

• What Is Microsegmentation and 5 Compelling Security Use Cases

• Police Crack Comms to Bust Money Laundering Group

• New Zaraza Bot Credential-Stealer Sold on Telegram Targeting 38 Web Browsers

• Software developers, how secure is your software?

• Western Digital Hack – Attackers Demanding “Minimum 8 Figures” as Ransom

• Student requested access to research data. And waited. And waited. And then hacked to get root

• What Are Computer Worms And How To Prevent Them

• Economic uncertainty drives upskilling as a key strategy for organizations

• WhatsApp introduces new mobile security features

• How reliable are Cloud based Security solutions

• API security: the new security battleground

• AI verification systems give businesses an edge over scammers

• AI tools like ChatGPT expected to fuel BEC attacks

• 10 Best Zippyshare Alternatives – Best File Sharing Services

• Update now: Google emits emergency fix for zero-day Chrome vulnerability

• On Validation, pt II

• 5 DNS Troubleshooting Tips for Network Teams

• Securing MQTT With Username and Password Authentication

• IT Security News Weekly Summary – Week 15

• IT Security News Daily Summary 2023-04-16

• Experts found the first LockBit encryptor that targets macOS systems

• Keeper Security Newest Competitor in 2023 Homeland Security Awards

• Urgent Update: Chrome, Edge, Brave browsers patch zero-day vulnerability

• Dridex malware, the banking trojan

• How Can You Identify and Prevent Insider Threats?

• Identity and Access Management (IAM) in Payment Card Industry (PCI) Data Security Standard (DSS) environments.

• Email Security Guide: Protecting Your Organization from Cyber Threats

• Why Is Vladimir Putin So Difficult to Deter?

• NCR was the victim of BlackCat/ALPHV ransomware gang

• Security Affairs newsletter Round 415 by Pierluigi Paganini – International edition

• Russian APT Hackers Increasingly Attacking NATO Allies in Europe

• Defense Leak Case Arrests 21-year-old Air Force Guardsman

• Russian SolarWinds Attackers Launch New Wave of Cyber Espionage Attacks

• Deploying confidential containers on the public cloud

• EU Privacy Watchdog Forms ChatGPT Task Force

• Remcos RAT campaign targets US accounting and tax return preparation firms

• Behind the Attack: Account Takeover (ATO)

• Week in review: Microsoft patches zero-day, Apple security updates, HashiCorp Vault vulnerability

• Cyber Security Management System (CSMS) for the Automotive Industry

• Lynis – Open Source Security Auditing & Pentesting Tool – 2023

• KeePassXC security audit published, recommends this security setting

• Snowflake Manufacturing Data Cloud improves supply chain performance

• CYFIRMA raises an undisclosed amount in Pre-Series B funding for product innovation

• Khoros and Cerby join forces to secure social media platforms

• Tentacle partners with Oread Risk & Advisory to simplify SOC 2 compliance for organizations

Generated on 2023-04-17 23:55:21.304257