IT Security News Daily Summary 2023-06-17

• Zero Trust Framework: A Paradigm Shift in Identity Theft Prevention

• 11 Free and Affordable SaaS Tools to Set Up and Run Your Business Effectively

• Law enforcement shutdown a long-standing DDoS-for-hire service

• LockBit Digital Gang Named Top Ransomware Threat by World Nations

• Baphomet Revives BreachForums: Return of the Infamous Cybersecurity Platform

• GitLab Dedicated offers single-tenant, SaaS-based devsecops

• GravityRAT: ESET Researchers Discover New Android Malware Campaign

• Here’s Why Cybercriminals are Targeting Linux Operating Systems

• 5 Tips to Protect Yourself from Deepfake Crimes

• BatCloak: This Obfuscation Tool Successfully Bypasses 80% of AV Engines

• Warning: Fake GitHub Repos Delivering Malware as PoCs

• A Newly Named Group of GRU Hackers is Wreaking Havoc in Ukraine

• Are Online Faxes Secure?

• SOC First Defense – Understanding The Cyber Attack Chain – A Defense with/without SOC

• Cost-of-Living Crisis increasing chances of Insider threats

• From Cryptojacking to DDoS Attacks: Diicot Expands Tactics with Cayosin Botnet

• Build or Buy your own antivirus product

• Threat Hunt: KillNet’s DDoS HEAD Flood Attacks – cc.py

• 2023-06-16 – 30 days of Formbook: Day 12, Friday 2023-06-16 – “TFGP” (ISC diary)

• BigBear.ai CEO Mandy Long talks national security investments in A.I.

• Remembering Daniel Ellsberg

• Fake security researchers push malware files on GitHub

• MOVEit discloses THIRD critical vulnerability

• Microsoft Response to Layer 7 Distributed Denial of Service (DDoS) Attacks

• Third MOVEit bug fixed a day after PoC exploit made public

• AI vs AI: Next front in phishing wars

• A Russian national charged for committing LockBit Ransomware attacks

• 5 Classic Games to Play in 2023

• IT Security News Daily Summary 2023-06-16

• 19 Top Breach and Attack Simulation (BAS) Tools in 2023

• Clop Hacking Rampage Hits US Agencies and Exposes Data of Millions

• Friday Squid Blogging: Squid Can Edit Their RNA

• Palo Alto is shifting into ‘its next gear of growth’, says Wedbush’s Dan Ives

• Facebook Criticized For “Tsunami” Of Fraud On Its Platforms

• Getting Over the DNS Security Awareness Gap

• Data Loss Prevention in an API-Driven World

• How one state tracks down cartographic ‘phantoms’

• Pure Signal Scout May Finally be the Tool to Help Threat Hunters Move from Reactive to Proactive

• Tech panel champions near-term quantum efforts in must-pass defense bill

• Killnet Threatens Imminent SWIFT, World Banking Attacks

• The Infrastructure Security Engineer Is a Unicorn Among Thoroughbreds

• Security LeadHER Wraps Groundbreaking Inaugural Conference for Women in Security

• Here’s our internal debate about what to do with stocks making all-time highs

• Lawmakers propose shoring up nuclear cyber standards ahead of NDAA markup

• Security and Human Behavior (SHB) 2023

• LockBit suspect’s arrest sheds more light on ‘trustworthy’ gang

• Bringing Transparency to Confidential Computing with SLSA

• Louisiana driver’s licenses, auto registrations targeted in massive data breach

• 3 simple steps to improve digital government

• Third MOVEit Transfer Vulnerability Disclosed by Progress Software

• Using AI for Loans and Mortgages is Big Risk, Warns EU Boss

• Opioid settlement payouts to localities made public for first time

• There is Nothing Fair About the European Commission’s “Fair Share” Proposal

• Dodgy Microlending Apps Stalk MEA Users, Highlighting Cyber Maturity Gaps

• Hassan, Cornyn try again with IT modernization bill

• U.S. government agencies breached via MoveIt Transfer flaw

• Russian National Arrested in Connection With LockBit Ransomware

• Cyber Attack projected on US and European Banking Systems

• Using social media as a tool to share knowledge on day-to-day Cybersecurity risks

• Three ways agribusinesses can protect vital assets from cyberattacks

• NASA steps closer to perfecting super-fast internet in deep space

• Akamai’s new study: Bots, phishing and server attacks making commerce a cybersecurity hotspot

• New Version of Android GravityRAT Spyware Targets WhatsApp Backups

• Oil and gas giant Shell is another victim of Clop ransomware attacks

• Feds Arrest, Charge Russian National In Arizona For LockBit Attacks

• Hacker Gang Clop Publishes Victim Names On Dark Web

• Intel To Start Shipping A Quantum Processor

• Progress Software Rushes To Patch Another MOVEit SQL Vulnerability

• Cost-of-Living Crisis increasing changes of Insider threats

• Security Guidance from the Front Lines of Cloud Incident Response

• Russia-affiliated Shuckworm Intensifies Cyber-Attacks on Ukraine

• Attackers Create Synthetic Security Researchers to Steal IP

• The Importance of Securing Remote Access: Insights from CISA’s Latest Guide

• LockBit Ransomware Extorted $91 Million Dollars in 1,700 U.S. Attacks

• Strengthening Cyber Defense: China’s Actions Against AirDrop and Bluetooth File Sharing

• WordPress: Strip Payment Plugin Flaw Exposes Customers’ Order Details

• Hackers Use New Exploit Technique to Hijack S3 Buckets

• Doppl: The Latest AI Twin Product is About to Transform the Future Of Digital Branding

• How Do Some Companies Get Compromised Again and Again?

• Amazon’s $1.7bn iRobot Acquisition Cleared By UK’s CMA

• Cybercrime Doesn’t Take a Vacation

• ChamelDoH: New Linux Backdoor Utilizing DNS-over-HTTPS Tunneling for Covert CnC

• Russian Hackers Using USB-Spreading Malware in Attacks on Ukrainian Government, Military

• Russian National Arrested, Charged in US Over Role in LockBit Ransomware Attacks

• In Other News: Linux Kernel Exploits, Update on BEC Losses, Cybersecurity Awareness Act

• Close Quarters Encounters with Third Generation Malware Compels UK and Danish Municipalities to Remodel Vulnerability Management Safeguards

• Clop’s MOVEit Hack Hits US Government, As Other Victims Are Named

• Capita faces first legal Letter of Claim over mega breach

• How Do I Protect My API Keys From Appearing in Search Results?

• HashiCorp Expands PAM, Secrets Management Capabilities

• Virtana acquires OpsCruise to help users manage complex modern environments

• Best practices for patch management

• More 3CX Data Exposed! Third-Party Vendor to Blame for the Leak

• How to Turn Off Phone Without Power Button (Android and iPhone) – A Complete Guide

• Progress fixed a third flaw in MOVEit Transfer software

• Photos: BSidesLjubljana 0x7E7

• Insufficient Investments Impede Progress in Identity Security Measures

• Activities in the Cybercrime Underground Require a New Approach to Cybersecurity

• Top EU official urges more countries to ban China’s Huawei, ZTE from 5G networks

• PyPI Suspends New Registrations After Malicious Python Script Attack

• Preventing Cyber Attacks is Critical to Improve Healthcare Outcomes

• MDR vs. MSSP: Decoding the Differences Between Cybersecurity Solutions

• Microsoft Reaches $2.6 Trillion Valuation Thanks To AI

• New Survey Reveals Critical Data Security Gap In the Financial Services Industry

• Shell Global Hacked using Flaw in the MOVEit File Transfer System

• Preparing Travel and Hospitality Companies for Cybersecurity in The Wake Of Travel Technologies

• Approximately 9 million dental patients in the USA affected by a data breach

• US Government Hit By Clop In MOVEit Global Cyberattack

• Ransomware Group Starts Naming Victims of MOVEit Zero-Day Attacks

• Barracuda Zero-Day Exploited by Chinese Actor

• Updated Android spyware GravityRAT steals WhatsApp Backups

• Cyber-Criminals Are Using Mining Pools to Launder Crypto

• 20-Year-Old Russian LockBit Ransomware Affiliate Arrested in Arizona

• Clop Starts MOVEit Extortion as New Bug is Discovered

• #InfosecurityEurope: How DORA Will Force Financial Firms to Adopt Cyber Resilience

• Want your endpoint security product in the Microsoft Consumer Antivirus Providers for Windows?

• Silicon UK Pulse: Your Tech News Update: Episode 7

• Microsoft: Russia sent its B team to wipe Ukrainian hard drives

• Almost all US Fed Agencies fell prey to Cyber Attack

• Understanding the Importance of Cyberthreat Analysis Training Programs

• New infosec products of the week: June 16, 2023

• Red teaming can be the ground truth for CISOs and execs

• Insight on Vulnerabilities in MOVEit Transfer

• Third Flaw Uncovered in MOVEit Transfer App Amidst Cl0p Ransomware Mass Attack

• Introducing the book: Visual Threat Intelligence

• Cybersecurity culture improves despite the dark clouds of the past year

• Cybercriminals return to business as usual in a post-pandemic world

• 2023-06-15 – 30 days of Formbook: Day 11, Thursday 2023-06-14 – “GA94”

• Need To Know Data Redaction Software

• EU boss Breton: There’s no Huawei that Chinese comms kit is safe to use in Europe

• The US government buys your user data. Here’s what it does with it

• EU boss Breton: there’s no Huawei that Chinese comms kit is safe to use in Europe

• LockBit ransomware advisory from CISA provides interesting insights

• CISA advisory on LockBit: $91 million extorted from 1,700 attacks since 2020

• How Do I Protect My API Keys From Appearing in GitHub Search Results?

Generated on 2023-06-17 23:55:26.816555