IT Security News Daily Summary 2023-06-27

• Multiagency plan aims to boost biotechnology workforce

• Flipper Zero hacking tool is a big hit

• Cops’ total pwnage of ‘secure’ EncroChat nets 6,500+ arrests, €740m in funds – so far

• House, Senate China hawks concerned White House will let TikTok stay in the US

• Digital literacy, not bans, should shape social media guardrails

• Censys finds hundreds of exposed devices in federal orgs

• Typing Incriminating Evidence in the Memo Field

• Suncor Energy Cyberattack Impacts Petro-Canada Gas Station Payment Operations

• Microsoft at NICE Conference: Resetting expectations and enabling diversity in the cybersecurity workforce

• Warning: JavaScript registry npm vulnerable to ‘manifest confusion’ abuse

• Immuta updates its Data Security Platform for Databricks to strengthen AI workload protection

• CISA to launch new cyber supply chain resource hub

• HashiCorp Buys BluBracket for Secrets Scanning Tech

• Caller ID woes contributed to SSA disability backlog

• DHS looks to invest in digital credentialing

• How FIDO2 Powers Up Passkeys Across Devices

• U.K. Cyber Thug “PlugwalkJoe” Gets 5 Years in Prison

• The digital future may rely on ultrafast optical electronics and computers

• Most Enterprise SIEMs Blind to MITRE ATT&CK Tactics

• Pilot Applicant Information for American, Southwest Hacked

• 5 Mistakes To Avoid in Your API Strategy

• Seizure of EncroChat Enables Police Access to 115 Million Conversations

• Enterprise SIEMs Miss 76 Percent of MITRE ATT&CK Techniques

• Outdated flood data could drown out actual infrastructure needs

• ChatGPT users at risk for credential theft

• SolarWinds hack explained: Everything you need to know

• Cequence Security strengthens API protection platform with generative AI and no-code security automation

• AI ethics toolkit updated to include more assessment components

• BeeKeeperAI Platform for AI Development on Sensitive Data Receives $12M in Funding

• Data Security Firm Cyera Attracts $100M Investment

• Why Cyber Funding Flows for Rural Water Systems

• Why the FDA’s SBOM Mandate Changes the Game for OSS Security

• Benefits of Using NFV with SASE

• Digital dumpster diving: Exploring the intricacies of recycle bin forensics

• How Application Allowlisting Combats Ransomware Attacks

• Anatsa Banking Trojan Targets Banks in US, UK and DACH Region

• Delinea Privilege Manager enhancements reduce phishing effectiveness

• Index Engines CyberSense 8.3 identifies malicious changes indicative of cyberattack

• Submarine Cables vulnerable to Cyber Attacks

• Third-Party Vendor Hack Exposes Data at American, Southwest Airlines

• Gas Stations Impacted By Cyberattack On Canadian Energy Giant

• Siemens Energy, UCLA Latest Confirmed Victims In MOVEit Hack

• Prominent Cryptocurrency Exchange Infected With Previously Unseen Mac Malware

• American And Southwest Airlines Pilot Candidate Data Exposed

• A Major Public Pension Fund Suffered a Massive Data Breach

• American and Southwest Airlines Witness Data Breach

• Zyxel Command Injection Vulnerability Let Attackers Execute OS Commands

• Study Reveals Alarming Gap in SIEM Detection of Adversary Techniques

• Six years on from NotPetya: an analysis from Tom Gol, CTO for research at Armis

• BeeKeeperAI raises $12.1 million to accelerate AI development on privacy protected healthcare data

• Is ChatGPT Capable of Substituting IT Network Engineers? Here’s All You Need to Know

• ‘Muddled Libra’ Targets BPO Sector with Advanced Social Engineering

• AI ‘Kidnapping’ Scams: A Growing Threat

• Angular Best Practices For Developing Efficient and Reliable Web Applications

• 3-Year Probe Into Encrypted Phones Led to Seizure of Hundreds of Tons of Drugs, Prosecutors Say

• Patented.ai Raises $4 Million for AI Data Privacy Solution

• Experts found hundreds of devices within federal networks having internet-exposed management interfaces

• CalypsoAI raises $23 million to drive product development of its LLM security solutions

• LexisNexis RiskNarrative helps organizations reduce risk and financial crime

• Seeing is No Longer Believing as Deepfakes Become Better and More Dangerous

• Fashion Retailer Mounts First Challenges To EU Content Rules

• What is Data Loss Prevention (DLP)?

• Occupational Safety and Health Administration (OSHA)

• New Mockingjay Process Injection Technique Could Let Malware Evade Detection

• New Ongoing Campaign Targets npm Ecosystem with Unique Execution Chain

• Vulnerability Summary for the Week of June 19, 2023

• South Korea Claims Former Samsung Employee Stole Chip Secrets

• PyCharm Fix for Certificate Verify Failed: Unable To Get Local Issuer Certificate

• Hundreds of Devices With Internet-Exposed Management Interface Found in US Agencies

• Socure Acquires ID Verification Company Berbix for $70 Million

• The complete guide to ransomware

• Submarine Cables at Growing Risk of Cyber-Attacks

• Preventing Cyberattacks on Schools Starts With K–12 Cybersecurity Education

• 45,000 NYC Public School Students’ Data Stolen in MOVEit Breach

• Anatsa Malware Spotted on Google Play Attack Banking Customers

• Unraveling the Power of Python: A Beginner’s Guide to Using Python for Website Analysis

• Accenture Teams with Palo Alto Networks to Bolster Zero Trust Security

• BigID expands partnership with Databricks to automate security and governance

• Around the World, Threats to LGBTQ+ Speech Deepen

• What Is A Project Health Check And Why It Is Important

• Petro Canada Suffers App Issues Amidst Suncor Energy Cyberattack

• It’s Elementary Privacy, Watson!

• The Trickbot/Conti Crypters: Where Are They Now?

• Socure’s $70 million acquisition of Berbix: What it means for the identity verification market

• The end of plaintext: Fortanix launches breakthrough for searching encrypted data

• Cato Networks Revolutionizes Network Security with Real-Time, Machine Learning-Powered Protection

• New Stellantis Unit Takes Aim At EV Charging Anxiety

• Chrome 114 Update Patches High-Severity Vulnerabilities

• CalypsoAI Raises $23 Million for AI Security Tech

• Baidu Says Ernie AI Beats ChatGPT In Key Metrics

• EncroChat Bust Leads to 6,558 Criminals’ Arrests and €900 Million Seizure

• Beyond Asset Discovery: How Attack Surface Management Prioritizes Vulnerability Remediation

• Understanding Business Logic Abuse and Its Detection Challenges

• EncroChat dismantling lead to 6500 arrests, EUR 900 million seized

• CalypsoAI secures $23 million to lead enterprise AI security market

• Gas Stations Impacted by Cyberattack on Canadian Energy Giant Suncor

• Ory vs Keycloak vs SuperTokens

• Anatsa Banking Trojan Targeting Users in US, UK, Germany, Austria, and Switzerland

• Schneider Electric and Siemens Energy are two more victims of a MOVEit attack

• Meta Launches VR Subscription Service Quest+

• Google Takes Android Antitrust Challenge To Indian Supreme Court

• China Vows To Push AI Across Society, Industry

• The Night 17 Million Precious Military Records Went Up in Smoke

• How to Solve “Tap to Load” Problem on Snapchat – Troubleshooting Tips

• How to Login to GoDaddy Account – 3 Popular Methods

• The unhappy reality of cloud security in 2023

• Inside DHS’ quest to streamline customer experience and ease public burden

• Over Half of UK Banks Are Exposing Customers to Email Fraud

• How AI Is Improving Cybersecurity

• What is the Gramm-Leach-Bliley Act (GLBA)?

• What (Still) Needs to be Done to Secure the U.S. Power Grid in 2023?

• NCSC Launches Cyber Risk Management Toolbox

• How to Login to Godaddy Account – 3 Popular Methods

• Tackling the cyber skills gap with AI

• Payments Lobby: Anti-APP Fraud Policies Could Increase Scams

• China’s Baidu claims its Ernie Bot beats ChatGPT on key tests as A.I. race heats up

• Chrome Security Update – 4 High-Severity Vulnerabilities Patched

• JOKERSPY used to target a cryptocurrency exchange in Japan

• Need to improve the detection capabilities in your security products?

• Breaking GPT-4 Bad: Check Point Research Exposes How Security Boundaries Can Be Breached as Machines Wrestle with Inner Conflicts

• Small and Medium Businesses Day: Tips on Securing the Backbone of National Economies

• Cortex Leads New Ways to Introduce AI-powered Capabilities

• Are GPT-Based Models the Right Fit for AI-Powered Cybersecurity?

• How to Reach Compliance with HIPAA

• Pilot Logins of American and Southwest Airlines Stolen in Data Breach

• New Fortinet’s FortiNAC Vulnerability Exposes Networks to Code Execution Attacks

• How cybercrime is impacting SMBs in 2023

• Mayor candidate slaps Latitude with $1 million lawsuit for data breach

• How cyber insurance empowers CISOs

• Next-Generation Firewalls: A comprehensive guide for network security modernization

• 2023-06-24 – 30 days of Formbook: Day 20, Saturday 2023-06-24 – version 3.8 “AK”

• 2023-06-25 – 30 days of Formbook: Day 21, Sunday 2023-06-25 – “CX01”

• 2023-06-25 – 30 days of Formbook: Day 22, Monday 2023-06-26 – “G0E8”

• A deep-dive demo of NetSPI’s Attack Surface Management (ASM) platform

• Widespread BEC attacks threaten European organizations

• 95% fear inadequate cloud security detection and response

• Why endpoint management is key to securing an AI-powered future

• Cloud security advice and expertise at your fingertips

• Validation – This Time, Tool Validation

• A week in security (June 19 – 25)

• OpenSSH trojan campaign targets Linux systems and IoT devices

• Malvertising: A stealthy precursor to infostealers and ransomware attacks

• 9 basic security tips for seniors

• Citizen of Croatia charged with running the Monopoly Market drug marketplace

• VICTORY! Maine Increases Transparency and Accountability for its Fusion Center

• NHS Psychiatrist Jailed; Dark Web Forum and 7,000 Images Seized

• A balancing act: Adding humor to government communications

• SolarWinds Execs Targeted by SEC, CEO Vows to Fight

• Genworth Financial Reports Data Breach Leaking SSNs Belonging to 2.7M Policyholders and Customers

• ‘Toggle switch’ can help quantum computers cut through the noise

• IT Security News Daily Summary 2023-06-26

• Legislation would expand and extend government’s counterdrone authority

• More than $42 billion in broadband funding allocations announced

• Boston looks to boost employee productivity with generative AI guidance

• How to use Tor browser (and why you should)

• Privacy-minded browser DuckDuckGo lands in Windows

• Twitter Celeb Account Hacker Heads to Jail for 5 Years

• China’s ‘Volt Typhoon’ APT Turns to Zoho ManageEngine for Fresh Cyberattacks

• Stock Exchange Targeted By Facebook Scammers

• It’s Open Season on Law Firms for Ransomware & Cyberattacks

• Cl0p in Your Network? Here’s How to Find Out

• Is government culture stifling CX innovation?

• How API gateways improve API security

• How Thales and Red Hat Secure Kubernetes Data in a 5G World

• Snowflake Expands collaboration with Microsoft to enter the next wave of generative AI

• Fake Super Mario 3 Installers Drop Crypto Miner, Data Stealer

• Remediation Ballet Is a Pas de Deux of Patch and Performance

• Energy company Suncor suffered a cyber attack and its company Petro-Canada gas reported problems at its gas stations in Canada

• Anonymous Sudan’s Attack of European Investment Bank: Money, Politics and PR

• American Airlines, Southwest Airlines Impacted by Data Breach at Third-Party Provider

• Researchers Find Way to Recover Cryptographic Keys by Analyzing LED Flickers

• Know Quantum Threats Before Using AI Language Models Like ChatGPT

• Beware! Mallox Ransomware Attacks IT Industries With a New Attack Pattern

• The Importance of API Versioning and Best Practices for Microservices

• Adhering to Privacy Laws When Preserving System History

• 10 things every CISO needs to know about identity and access management (IAM)

• How Infrastructure as Code Can Help Minimize Human Error

• Beware! Mallox Ransomware Attack IT Industries With New Attack Pattern

• The government has a controversial idea to track mental health crisis calls

• UK hacker busted in Spain gets 5 years over Twitter hack and more

• Umbral Stealer Discovered in Trojanized Super Mario Installer

• Trojanized Super Mario Installer Goes After Gamer Data

• Zombie API vs Shadow API: The Crashtest

• Here’s all you Need to Know About Crypto Poisoning Attack

• Ransomware attack hits Suncor Energy disrupting fuel station payments across Canada

• Blacktail: Unveiling the tactics of a notorious cybercrime group

• Government tech – What’s sustainability got to do with it?

• Millions Face RepoJacking Risk on GitHub Repositories

• Internet Systems Consortium (ISC) fixed three DoS flaw in BIND

• Excel Data Forensics

• Immuta’s integration with Databricks provides security at scale for data and AI workloads

• Be patient with this red-hot tech stock, as it soars to new all-time high

• Why are Western Cyber Attacks Less Heard of?

• How to make sure the reputation of your products and company is good

• Fintech’s Crucial Role in Reducing Cyber Threats

• For IRS Direct File, let the evidence guide the way

• American and Southwest Airlines pilot candidate data exposed

• Fortinet Patches Critical RCE Vulnerability in FortiNAC

• NSA Releases Guide to Mitigate BlackLotus Bootkit Infections

• CISO Speaks: Resilience and Avoiding Burnout

• Top Managed EDR Benefits That Reduce Cybersecurity Risk

• Microsoft Teams Allows Malware Delivery, Researchers Found

• Four Red Flags Warning You of a Hacked Wi-Fi Router

• AI Amplifies Crypto Scam Threat, Warns Web3 Expert

• Pradeo launches unmatched benefits for MSSPs with its latest Mobile Threat Defense release

• Regula enhances solution for document verification to help users detect forgery

• New Relic APM 360 gives engineers a shared view of their application health

• Japan-backed fund to buy critical semiconductor firm JSR for $6.3 billion as chip tensions rise

• FBI Seized BreachForums Three Months After Administrator Arrest

• The Smart Factory 2033

• Phishing and Ransomware Attacks Continues to Hurt Singapore Businesses

• Aston Martin Cuts Deal With Lucid For EV Tech

• GM Plans Tesla-Compatible Charging Ports Next Year

• All About PowerShell Attacks: The No. 1 ATT&CK Technique

• 3 Steps to Successfully & Ethically Navigate a Data Breach

• China-linked APT group VANGUARD PANDA uses a new tradecraft in recent attacks

• British Twitter Hacker Sentenced To Prison In United States

• Millions Of GitHub Repos Potentially Vulnerable To RepoJacking

• Remotely Exploitable DoS Vulns Patched In BIND

• Fortinet Fixes Critical RCE Flaw In FortiNAC Zero Trust Product

• Mastering the Hunt: Guide to Diablo 4 Item Farming for the Rogue Build

• From Compact Efficiency To Performance Prowess: The Evolution Of Japanese Automobiles

• Japanese Cryptocurrency Exchange Falls Victim to JokerSpy macOS Backdoor Attack

• Databricks acquires MosaicML to make generative AI accessible for every organization

• Threat hunting converting SIGMA to YARA

• IoT Security: How To Design Hack-Proof Connected Solutions

• British Twitter Hacker Sentenced to Prison in US

• The US Senate Wants to Rein In AI. Good Luck With That

• Is the Champion’s Cape Worth Getting in OSRS?

• Japan Buys Out JSR As It Drives Chip Equipment Sector

• How Generative AI Can Dupe SaaS Authentication Protocols — And Effective Ways To Prevent Other Key AI Risks in SaaS

• Google Sister Project Brings Laser-Powered Internet To India

• Ex-FBI employee jailed for taking classified material home

• Remotely Exploitable DoS Vulnerabilities Patched in BIND

• CISA Says Critical Zyxel NAS Vulnerability Exploited in Attacks

• MOVEit compromise affects pension systems, insurers

• 7 Digital Marketing Trends You Need To Know

• Microsoft Warns of Widescale Credential Stealing Attacks by Russian Hackers

• Microsoft Teams vulnerability discovered to bypass file sending restrictions

• Biden To Announce Broadband Funding In Major Speech

• Microsoft Teams Flaw Sends Malware to Employees’ Inboxes

• A Guide to 5 Common Twitter Scams in 2023

• A Sarbanes-Oxley Act (SOX) IT Compliance Primer

• The US Senate Wants to Reign In AI. Good Luck With That

• American Airlines & Southwest Airlines Affected by a Data Breach

• A Look At The Damages Covered By Corporate Cyber Insurance

• Navigating Your Way to Resiliency in Four Steps

• Infamous Twitter Hacker Sentenced to 5 Years in Prison

• Serious IDOR Vulnerability Found In Microsoft Teams

• How to Get Valuable Business Intelligence Insight With Data Annotation

• Mullvad VPN Launches “Leta” Search Engine Sans Invasive Online Trackers

• Fortinet Addressed Critical RCE Vulnerability In FortiNAC Systems

• China Regulator Warns AI Poses Challenge To Society

• Companies Call for Changes to UK’s Cyber Essentials Scheme

• JP Morgan accidentally deletes evidence in multi-million record retention screwup

• US Authorities Seize BreachForums Domain

• 4 Science-backed Ways To Improve Team Performance

• Android Feature ‘Behind Deluge’ Of 999 Calls

• Twitter Celeb Hacker Jailed For Five Years

• British Competition and Markets Authority to Investigate AI

• CISOs are More Concerned with Lawsuits, and API Security (Survey Report)

• The Evolution Of Technology In Online Casinos: A Walk Through The Ages

• Software developers, how secure is your software?

• Chinese Hackers Using Never-Before-Seen Tactics for Critical Infrastructure Attacks

• Australian Prime Minister urges citizens to turn off their mobile phones to fend cyber attacks

• Key Considerations When Hiring a Chief Information Security Officer

• Exploring the persistent threat of cyberattacks on healthcare

• Uncovering attacker tactics through cloud honeypots

• 5 free online cybersecurity courses you should check out

• How hardening Microsoft 365 tenants mitigates potential cloud attacks

• How Active Directory Bridging Extends Security Automation to Hybrid IT Environments

• The unlimited value of a strong defence

• Trojanized Super Mario Bros game spreads malware

• Cl0p Ransomware Targets Sony, EY, and PwC in MOVEit Transfer Cyberattack

Generated on 2023-06-27 23:55:23.035289