IT Security News Daily Summary 2023-08-14

• Phishing Operators Make Ready Use of Abandoned Websites for Bait

• Women in CyberSecurity (WiCyS) Hosting Fifth Annual Virtual Career Fair

• OffSec’s Capture the Flag Tournament (CTF)

• Ford SYNC 3 infotainment systems vulnerable to drive-by Wi-Fi hijacking

• 5 Tips for Securing Data When Using a Personal Mac for Work

• Colorado Health Agency Says 4 Million Impacted by MOVEit Hack

• 5 digital forensics tools experts use in 2023

• Diligere, Equity-Invest Are New Firms of U.K. Con Man

• Weekly Vulnerability Recap – August 14, 2023 – Old or New, Vulnerabilities Need Management

• Vulnerability Summary for the Week of August 7, 2023

• What’s New in the NIST Cybersecurity Framework 2.0

• How FraudGPT presages the future of weaponized AI

• Hacktivists attack Japanese government over Fukushima wastewater release

• Cumbrian Police accidentally publish all officers’ details online

• Fake Chrome Browser Update Installs NetSupport Manager RAT

• Russian-African Security Gathering Exposes Kremlin’s Reduced Influence

• Intel Patched Newly Reported Downfall Attack Affecting Its CPUs

• Multiple Codesys PLC Vulnerabilities Could Risk Numerous Power Plants

• New Statc Stealer Emerges As Potent Windows Malware

• The 6 Pillars of Effective Cloud Security

• How to send password-protected emails in Gmail

• Massive EvilProxy Phishing Attack Campaign Bypasses 2FA, Targets Top-Level Executives

• Ongoing Xurum attacks target Magento 2 e-stores

• Talking Heimdal XDR with Nabil Nistar, Head of Product Marketing

• macOS Ventura Background Task Flaws Can Be Exploited for Malware

• Check Point Wins Gold Stevie International Business Award

• SecureWorks layoffs affect 15% staff

• PayPal Names New CEO Amid Crypto Push

• Facebook Criticized For Misinformation Policy On Threads

• Health Data of 4M Stolen in Cl0p MOVEit Breach of Colorado Department

• Researcher says they were behind iPhone popups at Def Con

• Colorado HCPF Department notifies 4 million individuals after IBM MOVEit breach

• Jordan’s King Should Reject the Country’s Draft Cybercrime Law

• Building Cybersecurity into the supply chain is essential as threats mount

• How to Automatically Detect Multiple Cybersecurity Threats from an Input Text String in Java

• Interpol Shuts Down Phishing Service ’16shops’

• Following Pushback, Zoom Says It Won’t Use Customer Data to Train AI Models

• QwixxRAT: New Remote Access Trojan Emerges via Telegram and Discord

• Hacktivists Attack Japanese Government Over Fukushima Wastewater Release

• Federal Board Investigating Microsoft Email Hacks By Chinese Group

• Illinois Just Made It Possible To Sue People For Doxxing Attacks

• Iagona ScrutisWeb Vulnerabilities Could Expose ATMs To Remote Hacking

• Verimatrix Introduces New Website Security Integration

• Scotiatrust US customers sideswiped by MOVEit hack

• LastPass improves passwordless logins with FIDO2 authenticator support for desktops

• Apple Watch X To Track Blood Pressure – Report

• Defend Against Phishing with Multi-Factor Authentication

• Security Concerns Surrounding Microsoft OneDrive for Businesses

• MasterClass: Online Learning Platform Accused of Violating Customer Privacy by Sharing Info to Meta

• How to make sure the reputation of your products and company is good

• Amazon offers $20m to bolster cybersecurity of K-12 schools

• Investing in Ethereum Blockchain-based JasmyCoin: Guide

• How to find out if an AirTag is tracking you

• US Cyber Safety Board to Review Cloud Attacks

• Email – The System Running Since 71’

• Alberta Dental Services Security Breach Exposes 1.47M Records

• Here’s Why You Need to Read Privacy Policy Before Giving Consent

• Stellar Cyber and Oracle Cloud Partner for Enhanced Cybersecurity

• Crimeware server used by NetWalker ransomware seized and shut down

• Several Flaws Found in CyberPower and Dataprobe Products

• IDC launches Future of X Scorecards for optimizing tech’s impact on business

• Ensuring Trust in Military Network Automation: Addressing Layer 8 Issues for Improved Operations and Security

• Embedding Privacy-First Behaviors for Future Generations

• A Comprehensive Guide to Securing ESXi Hosts: Safeguarding Virtual Infrastructure

• How to prevent and prepare for a cyber catastrophe

• How to create a ransomware incident response plan

• Top 3 ransomware attack vectors and how to avoid them

• Security Researchers Publish Gigabud Banking Malware Analysis

• Millions of Americans’ health data stolen after MOVEit hackers targeted IBM

• How To Build A Company-Wide Data-Driven Culture

• FTX’s Sam Bankman-Fried Sent To Jail Over Witness Tampering

• 5 Ways CISA Can Help Cyber-Poor Small Businesses & Local Governments

• Action1 platform update bridges the gap between vulnerability discovery and remediation

• Almost all VPNs are vulnerable to traffic-leaking TunnelCrack attacks

• RSA Conference 2023: DevSecOps and the Future of Security

• US Shuts Down Bulletproof Hosting Service LolekHosted, Charges Its Polish Operator

• Power Management Product Flaws Can Expose Data Centers to Damaging Attacks, Spying

• A Huge Scam Targeting Kids With Roblox and Fortnite ‘Offers’ Has Been Hiding in Plain Sight

• Ongoing Xurum Attacks on E-commerce Sites Exploiting Critical Magento 2 Vulnerability

• Fake Tripadvisor Emails to Distribute Knight Ransomware

• Data center flaws spurred disruptions, espionage and malware attacks

• Amazon To Penalise Staff Excessively Working From Home

• Charming Kitten Targets Iranian Dissidents with Advanced Cyber Attacks

• Identity Threat Detection and Response: Rips in Your Identity Fabric

• Major vulnerabilities discovered in data center solutions

• Macs are getting compromised to act as proxy exit nodes

• Cumbrian cops accidentally publish all of its officers’ details online

• South African Power Supplier Hit by DroxiDat Malware

• Enterprise spending on cybersecurity has changed, and vendors must adapt

• Cyber Security Today, August 14, 2023 — A huge insurance company hack, presentations at the Black Hat conference, and more

• Ford Cars WiFi Vulnerability Let Attackers Execute Remote Code

• Iagona ScrutisWeb Vulnerabilities Could Expose ATMs to Remote Hacking

• Ford Says Wi-Fi Vulnerability Not a Safety Risk to Vehicles

• New Financial Malware ‘JanelaRAT’ Targets Latin American Users

• Zuckerberg Says Elon Musk ‘Not Serious’ About Cage Fight

• The Five Stages of Vulnerability Management

• Security Immutability: The Importance of Change

• Phishing with hacked sites

• Media Disposal Policy

• Microsoft: Critical CODESYS Flaws Could Shut Down Power Plants

• Experts found multiple flaws in AudioCodes desk phones and Zoom’s Zero Touch Provisioning (ZTP)

• Quest Software Update

• San Francisco Grants Self-Driving Taxi Permits For Waymo, Cruise

• Authorities Take Down Lolek Bulletproof Hosting Provider

• The Benefits of Digitalization in the Citizenship by Investment Industry

• Paying The Way: A Comprehensive Guide To Merchant Accounts And Payment Processing

• Monti Ransomware Unleashes a New Encryptor for Linux

• Xiaomi Mi Phones Flags Telegram as Malicious App

• What Is Privileged Access Management (PAM)?

• Software developers, how secure is your software?

• Nine flaws in CyberPower and Dataprobe solutions expose data centers to hacking

• 3 Mobile or Client-Side Security Myths Debunked

• How to Choose a Managed Detection and Response (MDR) Solution

• How to make your instant messages ‘unhackable’

• Beware of Fake Chrome Browser Updates that Install Malware

• Movies2Watch: Stream Safely and Legally – Explore the Best Alternatives

• Types of Cyber Attacks Every Online User Should Be Aware Of

• Hactivitsts attack Japanese government over Fukushima wastewater release

• India Passes New Digital Personal Data Protection Bill (DPDPB), Putting Users’ Privacy First

• How manufacturers can navigate cybersecurity regulations amid NIST 2.0

• Deception technology and breach anticipation strategies

• APTs use of lesser-known TTPs are no less of a headache

• Now electric charging stations are vulnerable to hackers after public USB charging points

• Navigating generative AI risks and regulatory challenges

• Product showcase: Free email security test by ImmuniWeb Community Edition

• Building a secure future without traditional passwords

• US government to investigate China’s Microsoft email breach

• Don’t Expect Quick Fixes in ‘Red-Teaming’ of AI Models. Security Was an Afterthought

• Bugs in transportation app Moovit gave hackers free rides

• Integrating Yara with RegRipper

• IT Security News Weekly Summary – Week 32

• IT Security News Daily Summary 2023-08-13

• Multiple flaws in CODESYS V3 SDK could lead to RCE or DoS

• How businesses and governments can work together to stop cyberattacks before they start

• Edge computing’s role in healthcare

• EvilProxy Phishing Campaign Targets Microsoft 365 Executives Worldwide

• Operation Jackal: INTERPOL Shuts Down African Cybercrime Gang

• Here’s How You Can Remove Private Info From Google Search Results

• Innovative ‘Brain-Like’ Chip Could Transform AI Landscape with Eco-Friendly Promise

• Security Affairs newsletter Round 432 by Pierluigi Paganini – International edition

• Week in review: 8 free cybersecurity docus, vulnerable Intel Core processors, Black Hat USA 2023

• Cyber Security Management System (CSMS) for the Automotive Industry

• The DHS’s CSRB to review cloud security practices following the hack of Microsoft Exchange govt email accounts

• Code Mirage: How cyber criminals harness AI-hallucinated code for malicious machinations

Generated on 2023-08-14 23:55:15.827338