IT Security News Daily Summary 2023-04-29

• CyberSec Community Rolls Out ETHOS – An Open Early Warning System

• Apache Superset Shipped With Unpatched RCE Vulnerability

• Atomic macOS Stealer is advertised on Telegram for $1,000 per month

• The future of Red Hat security data

• Google Takes Down Cryptbot Malware Infrastructure

• Your Details are Hidden on this Secret ID on Your Phone

• Weekly Summary Of News And Events This Week

• Google Cloud Rolls Out Security AI Workbench For Threat Detection

• How deepfakes ‘hack the humans’ (and corporate networks)

• This AI Tool Can Crack Your Password in Sixty Seconds; Here’s How to Protect Yourself

• Android Penetration Testing Cheatsheet: The Ultimate Guide

• The Tragic Fallout From a School District’s Ransomware Breach

• A Comprehensive Look At Email-Based Threats In 2023

• Hackers are Selling a new Atomic macOS (AMOS) Stealer on Telegram

• Is this ThinkPad-inspired phone the best for business users? It sure looks like it

• 11 Benefits of Smart Contract Auditing Services

• How to Remove Your Personal Info From Google’s Search Results

• Nuclei Cheatsheet: The Go-to Resource for Penetration Testers

• CISA warns of a critical flaw affecting Illumina medical devices

• The US Cyber Command is Deploying Experts Abroad to Assist Collaborators in Detecting Hackers

• Build or Buy your own antivirus product

• Google Adds New Cyber Security Tools & Features to ChromeOS

• ChatGPT is Back in Italy After Addressing Data Privacy Concerns

• CISA Warns of Critical Flaws in Illumina’s DNA Sequencing Instruments

• Codenotary unveils SBOMcenter to ensure software supply chain security

• CSI releases IT Governance to meet growing regulatory expectations

• What Does Mass Layoffs & Angry Workers Mean for Your Cybersecurity?

• Microsoft adopts Rust to boost Windows security and performance

• Update now: Critical flaw in VMWare Fusion and VMWare Workstation

• LockBit and Cl0p ransomware gangs actively exploiting Papercut vulnerabilities

• OpenAI reinstates ChatGPT service in Italy after meeting Garante Privacy’s demands

• Stupid Patent of the Month: Trying to Get U.S. Patents On An AI Program

• 3CX data breach shows organizations can’t afford to overlook software supply chain attacks

• What early adopters get wrong

• Automated Patch Management: Definition, Tools & How It Works

• At Congressional Hearing, PCLOB Members Suggest Bare Minimum of 702 Reforms

• IT Security News Daily Summary 2023-04-28

• Appeals Court Should Reconsider Letting The FBI Block Twitter’s Surveillance Transparency Report

• Cowen’s Shaul Eyal breaks down headwinds facing cybersecurity stocks

• EVs rev up cybersecurity challenges

• Patch Management vs Vulnerability Management: What’s the Difference?

• ‘BellaCiao’ Showcases How Iran’s Threat Groups Are Modernizing Their Malware

• Cisco discloses a bug in the Prime Collaboration Deployment solution

• The Proud Boys Seditious Conspiracy Conundrum

• Beyond Anti-Virus ‘Shark Nets’: Why Current Approaches to Cybersecurity Need to Change.

• How to Improve your Security Posture and ROI

• Announcements at RSAC 2023 show alliances, AI defining the future of cybersecurity

• Army looks to bring $22B headset program into production in 2025

• OPM’s plan to upgrade federal employee data

• TCP vs UDP – Understanding the Difference

• Are people getting better at avoiding misinformation?

• OpenAI: ChatGPT Back in Italy After Meeting Watchdog Demands

• How To Manage Vulnerabilities in Modern Cloud Native Applications

• It’s time to harden AI and ML for cybersecurity

• Google Bans Thousands of Play Store Developer Accounts to Block Malware

• DOJ Detected SolarWinds Breach Months Before Public Disclosure

• Severe Flaws In Illumina DNA Sequencing Technology, CISA Warns

• Migrating FileNet Into AWS Cloud and Migrating FileNet Security Into AWS Cloud

• AI for security is here. Now we need security for AI

• Zero-trust citizen access: Secure services for residents and agencies

• ChatGPT uses for cybersecurity continue to ramp up

• Amid supply chain attacks, emerging vendor rethinks SBOM

• Firmware Looms as the Next Frontier for Cybersecurity

• DDoS is Emerging as the Most Important Business Concern for Edge Networks

• Google wins court order to force ISPs to filter botnet traffic

• Man used brother’s credentials to steal $4.8M seized Bitcoin

• Threat actor APT28 targets Cisco routers with an old vulnerability

• Google’s 2FA app update lacks end-to-end encryption, researchers find

• Germany Denies Chip Making Chemical Export Ban To China

• Ransomware Attack Disrupts IT Network at Hardenhuish School

• Secure mobile payment transactions enabled by Android Protected Confirmation

• Google bans 173,000 malicious app developers

• 401 and 403 Bypass Cheat Sheet for Penetration Testers

• Intel Posts Largest Ever Quarterly Loss, But Shares Rise

• Smart Contracts Step-By-Step: A Beginner’s Guide To Debugging and Deploying Smart Contracts With Infura and Truffle

• Global Cyber Attacks Rise by 7% in Q1 2023

• SOC Analyst Training – Cyber Attack Intrusion Analysis With SIEM Tools – 2023

• Cisco Working on Patch for Vulnerability Reported by NATO Pentester

• Russian APT Hacked Tajikistani Carrier to Spy on Government, Public Services

• Google Blocked 1.4 Million Bad Apps From Google Play in 2022

• The pros and cons of VPNs for enterprises

• Android Apps Fail to Protect User Data During Device Transfer

• SECURITY ALERT: Heimdal® Identifies Active Phishing Campaign Singleing Out Romanian Telecom Users

• Chinese hackers outnumber FBI cyber staff 50 to 1, bureau director says

• Beware of This Dangerous Android malware As It Can Hold Your Phone Hostage

• Microsoft Says No More Feature Updates For Windows 10

• How one city transformed its approach to data

• 50 Crypto Wallets Targeted by Atomic MacOS Malware

• Online Safety Bill age checks? We won’t do ’em, says Wikipedia

• Why People Skills Matter as Much as Industry Experience

• Dyson Air-Purifying Headphones To Cost £820

• SOSSA and CRA Spell Trouble for Open Source Software

• Zyxel fixed a critical RCE flaw in its firewall devices and urges customers to install the patches

• Google Authenticator’s New Syncing Feature Raises Security Concerns

• Attacks On PaperCut Servers Tied To Ransomware Groups

• Google Gets Court Order To Shut Down Malware Domains

• 6 Key Moments From House Republicans’ Hearing On Warrant-Free FISA Surveillance

• Protect your money: AT&T email accounts under attack by hackers

• FDA, CISA: Illumina Medical Devices Vulnerable to Remote Hacking

• Biden’s Spyware Order: A Needed First Step

• Google Authenticator Introduces Google Account Sync

• Zyxel Firewall Devices Vulnerable to Remote Code Execution Attacks — Patch Now

• Why Your Detection-First Security Approach Isn’t Working

• New Atomic macOS Malware Steals Keychain Passwords and Crypto Wallets

• AI Powers the Branch of the Future, Today

• EU moves to regulate tech titans with Digital Services Act

• RTM Locker Ransomware Gang Targets VMware ESXi Servers

• Managed Threat Hunting: The Next Step from Traditional Cybersecurity

• Attackers Can Hide Malicious Apps Using the Ghost Token Flaw

• RSA Conference 2023 – ICS/OT Cybersecurity Roundup

• RTM Locker Ransomware Variant Targeting ESXi Servers

• Cyber Certainty: Investing in Resilience During a Post-Correction Market

• ViperSoftX InfoStealer Adopts Sophisticated Techniques to Avoid Detection

• Ukraine cyber police arrested a man for selling data of 300M people

• Google Bans And Deletes 173K Bad Developers Accounts In 2022

• Rapture, a Ransomware Family With Similarities to Paradise

• Cyber Certainty: Investing in Resilience During a Post Correction Market

• AuKill Malware Actively Used To Disable EDR In Ongoing Attacks

• Critical Vulnerability in Zyxel Firewalls Leads to Command Execution

• Google obtained a temporary court order against CryptBot distributors

• Man Gets Four Years for Stealing Bitcoins Seized by Feds

• Attention Online Shoppers: Don’t Be Fooled by Their Sleek, Modern Looks — It’s Magecart!

• How To Install Acer Care Center in Windows 7, 8.1, 10, 11, Mac, Linux, and Ubuntu

• How To Install Vidmate PC, Mac, Linux, Ubuntu – Step-by-Step Guide

• Minecraft Clones with 35 Million Installs Contained Adware

• Google Bans 173,000 Bad Developers in 2022

• Cosmos Bank Cyber Attack – 11 Accused in Cyber Fraud Case

• Charming Kitten Using New Malware in Multi-Country Attacks

• Tonto Team Uses Anti-Malware File to Launch Attacks on South Korean Institutions

• Want your endpoint security product in the Microsoft Consumer Antivirus Providers for Windows?

• Is mood tracking feature in Apple iOS 17 a privacy concern

• It is illegal to use undetectable spying devices on partners

• Password reset woes could cost FTSE 100 companies $156 million each month

• New infosec products of the week: April 28, 2023

• The double-edged sword of generative AI

• Get ready for RSA 2023: Stronger Together

• Git Project Security Vulnerabilities Let Attackers Execute Arbitrary Code

• Imperva® and Fortanix Partner to Protect Confidential Customer Data

• 5G surpasses expectations, becomes a global game-changer

• Phishing-resistant MFA shapes the future of authentication forms

• Many Public Salesforce Sites are Leaking Private Data

• Swissbit iShield Key Pro safeguards online accounts, web services

• Program Execution

• ChatGPT writes insecure code

• Fileless attacks: How attackers evade traditional AV and how to stop them

• Magecart threat actor rolls out convincing modal forms

Generated on 2023-04-29 23:55:23.926337