IT Security News Daily Summary 2023-06-19

• Asus Patches Highly Critical WiFi Router Flaws

• Experts found components of a complex toolkit employed in macOS attacks

• Unlocking the Secrets of Smooth Domain Transfers: A Step-by-Step Guide

• These are the most hacked passwords. Is yours on the list?

• Cloud security leader Zscaler bets on generative AI as future of zero trust

• The best home security systems of 2023

• Fortinet Quietly Patched Pre-Auth RCE Flaw In Fortigate Firmware

• Stripe Payment Gateway Plugin Patched Serious IDOR Flaw

• New Skuld Malware Targets Windows To Steal Data

• New GravityRAT Android Malware Variant Steals WhatsApp Backups

• This Side-Channel Attack Exploits SMS Delivery Reports To Retrieve Location

• Data Breach at New BreachForums: 4,000 members’ data leaked

• 2023-06-17 – 30 days of Formbook: Day 13, Thursday 2023-06-17 – “MR04”

• 2023-06-18 – 30 days of Formbook: Day 14, Thursday 2023-06-18 – “JY05”

• 2023-06-19 – 30 days of Formbook: Day 15, Thursday 2023-06-19 – “CE18”

• Microsoft: DDoS attacks caused M365, Azure disruptions

• Megaupload duo will go to prison at last, but Kim Dotcom fights on…

• The best VPN services for iPhone and iPad in 2023

• Best VPN for streaming TV and movies in 2023

• New Information Stealer ‘Mystic Stealer’ Rising to Fame

• Consumer Data: The Risk and Reward for Manufacturing Companies

• CIOp Attacks: Ransomware Group Reveal Names of the MOVEit Zero-Day Attack Victims

• Mastering Proactive Defense: The Changing Face of Threat Hunting

• #InfosecurityEurope: Asset Visibility Gaps Jeopardize Security Compliance in NHS Trusts, Report Finds

• Law enforcement’s battle against Cryptocurrency crime

• Secure Coding Best Practices

• ESET PROTECT Elite protects users against ransomware and zero-day threats

• How to make sure the reputation of your products and company is good

• Breached credentials of UK top universities available on dark web

• Binance Issues Cease-And-Desist Notice To ‘Binance Nigeria’

• New Mystic Stealer Malware Targets 40 Web Browsers and 70 Browser Extensions

• The US Navy, NATO, And NASA Are Using A Shady Chinese Company’s Encryption Chips

• MOVEit Customers Urged To Patch Third Critical Vulnerability

• Bill Allowing CISA To Assist Foreign Governments Passes Senate Committee

• Abandoned S3 Bucket Used To Launch Malicious Payloads

• Microsoft Admits DDoS As Cause Of Recent Cloud Outages

• New Stealer Malware on the Rise: Mystic Stealer

• 73% of consumers trust what generative AI wants us to see

• Keep it, Tweak it, Trash it – What to do with Aging Tech in an Era of Consolidation

• Ransomware Gang Takes Credit for February Reddit Hack

• Akeyless Launches SaaS-based External Secrets Manager

• Western Digital Blocks Unpatched Devices From Cloud Services

• EU member states are urged to restrict without delay 5G equipment from risky suppliers

• iStorage launches datAshur PRO+C with Type-C USB interface

• Guess what happened to this US agency using outdated software?

• Cybersecurity Must Adopt a New Approach to Combat Underground Cybercrime Activities

• Vulnerability Management in DevSecOps

• Get 408 hours of cybersecurity training with this $80 bundle

• US Department of Energy Receives Dual Ransom Demands Amidst Expanding MOVEit Hack Fallout

• Name That Toon: Time to Spare?

• Researchers Discover New Sophisticated Toolkit Targeting Apple macOS Systems

• PHP Hosting Explained ─ A Comprehensive Guide for Beginners

• Eve, Blade Team Up For Electric Flights In Europe

• ‘Sign in to continue’ and suffer : Attackers abusing legitimate services for credential theft

• Watch on Demand: 2023 CISO Forum Sessions

• IBM expands collaboration with Adobe to help users navigate the complex generative AI landscape

• Oil Industry Giant Shell Under Siege: Clop Group’s Ransomware Attack Exposes Vulnerabilities

• A History of Ransomware and the Cybersecurity Ecosystem

• Decoding Identity and Access Management For Organizations and Consumers

• US Investors Sniffing Around Blacklisted NSO Group Assets

• Generative AI Has Its Risks, But the Sky Isn’t Falling

• Intel Reaches Deal With Germany Over Magdeburg Chip Plant

• Introducing AI-guided Remediation for IaC Security / KICS

• Fighting Fire with Fire: Combatting LLM-Generated Social Engineering Attacks With LLMs

• Jaguar Land Rover Looks To AI To Secure Supply Chain

• Microsoft Discloses DDoS Attack Impact with Limited Details

• Microsoft confirms DDoS attacks against M365, Azure Portal

• A third MOVEit vulnerability fixed, Cl0p lists victim organizations (CVE-2023-35708)

• Android GravityRAT Spyware Steals WhatsApp Backup Files

• MOVEit Customers Urged to Patch Third Critical Vulnerability

• Microsoft Confirms Hacking of Outlook & OneDrive – Layer 7 DDoS Attacks

• Power LED Side-Channel Attack

• Jack Ma Meets With Students In Japan, China

• Foxconn Boss Discusses iPhone Plant Chaos, EV Plans

• Intel Invests $25bn In Israel Chip Plant

• SBOM Security: Fundamentals and Best Practices

• State-Backed Hackers Employ Advanced Methods to Target Middle Eastern and African Governments

• Importance Of Phone Validation For Businesses: Ensuring Accurate Customer Data

• How to Protect Against the Four Largest Cybersecurity Threats to Your Supply Chain

• US Offers $10m Reward For MOVEit Attackers

• Microsoft Blames Massive DDoS Attack for Azure, Outlook, and OneDrive Disruptions

• Inside of the WASP’s nest: deep dive into PyPI-hosted malware

• Millions of UK University Credentials Found on Dark Web

• Diicot cybercrime gang expands its attack capabilities

• Outsource to infill on cyber security

• UK Pledges Millions in Cyber-Defense Aid to Ukraine

• Software developers, how secure is your software?

• With dead-time dump, Microsoft revealed DDoS as cause of recent cloud outages

• Singapore is not looking to regulate A.I. just yet, says the city-state’s authority

• Get a $10m reward for information about Clop Ransomware Gang

• Enhancing Cybersecurity through Effective Cybersecurity Intelligence

• How to simplify the process of compliance with U.S. Executive Order 14028

• Goodbyes are difficult, IT offboarding processes make them harder

• Three cybersecurity actions that make a difference

• Exploring the role of AI in cybersecurity

• 10 Best Vulnerability Scanner Tools For Penetration Testing – 2023

• Untangling the web of supply chain security with Tony Turner

• Is ChatGPT Ready to Disrupt Cybersecurity?

• With dead-time dump, Microsoft revealed DDoS as cause of cloud outages

• Soap2day Shuts Down Permanently – Free Legal and Paid Alternatives

• Microsoft: June Outlook and cloud platform outages were caused by DDoS

• IT Security News Weekly Summary – Week 24

• IT Security News Daily Summary 2023-06-18

• Reddit Files: BlackCat/ALPHV ransomware gang claims to have stolen 80GB of data from Reddit

• How generative AI is creating new classes of security threats

• Companies Targeted by Clop Ransomware Gang Face Extortion of Stolen Data

• Ransomware Actors are Using Crypto Mining Pools to Launder Money

• Beware of Fake ChatGPT Apps: Android Users at Risk

• Ikigai: MIT-based AI Apps Startup is set to Alleviate Supply Chain Attacks with Advanced Cybersecurity

• US govt offers $10 million bounty for info linking Clop ransomware gang to a foreign government.

• MIT Startup Harnesses AI Technology to Safeguard Global Supply Chains Against Cyberattacks

• US Government Confirms Federal Agencies Affected by MOVEit Breach, Hackers Expand List of Victims

• Microsoft Says Early June Disruptions to Outlook, Cloud Platform, Were Cyberattacks

• Humans Aren’t Mentally Ready for an AI-Saturated ‘Post-Truth World’

• Week in review: Fortinet patches pre-auth RCE, Switzerland under cyberattack

• Cyber Security Management System (CSMS) for the Automotive Industry

• Cloud Penetration Testing Checklist – 2023

• How Does GDPR Impact the App Development Workflow?

• Virtualization Security Risks and Solutions

• Security Affairs newsletter Round 424 by Pierluigi Paganini – International edition

Generated on 2023-06-19 23:55:20.612494