IT Security News Daily Summary 2023-08-26

• A Brazilian phone spyware was hacked and victims’ devices ‘deleted’ from server

• A Brazilian phone spyware was hacked and victims’ stolen data ‘deleted’

• Cloud and hosting provider Leaseweb took down critical systems after a cyber attack

• Privacy czars urge websites to block data scraping

• Agriculture Industry Should be Prepared: Cyberattacks May Put Food Supply Chain at Risk

• Surge in Ransomware Attacks: Hackers Set Sights on Schools

• Vendors Training AI With Customer Data is an Enterprise Risk

• Efficiency in a Virtualized World: A Deep Dive into Modern IT

• Defying the Dark Arts: Strategies for Countering Cyber Threats

• The 12 Best Endpoint Security Software Solutions and Tools [2023]

• Ransomware’s Alarming Surge and Active Adversaries

• Deepfakes Are Being Used to Circumvent Facial Recognition Systems

• French employment agency Pôle emploi data breach impacted 10M people

• North Korean Hacker Linked to Tornado Cash Laundering

• A Cloud Security Conundrum: Protecting Your Company from Third-Party Software Supply Chain Gaps

• This Tool Lets Hackers Dox Almost Anyone in the US

• Crypto investor data exposed by a SIM swapping attack against a Kroll employee

• How a Telegram bot helps scammers target victims – Week in security with Tony Anscombe

• Lazarus Employs Public ManageEngine Exploit to Breach Internet Firms

• LockBit 3.0 Ransomware Builder Leak Gives Rise to Hundreds of New Variants

• ThousandEyes Pi4 Wireless Deployment at Black Hat USA

• Akira Ransomware Targeting VPNs without Multi-Factor Authentication

• EPSS and Its Role in Cisco Vulnerability Management Risk Scoring

• Tor turns to proof-of-work puzzles to defend onion network from DDoS attacks

• Build or Buy your own antivirus product

• Kroll Suffers Data Breach: Employee Falls Victim to SIM Swapping Attack

• Human Rights Group Demands Facebook Pay For Its Role In Genocide

• Pros and cons of ChatGPT plugin, Code Interpreter, in education, biology, health

• Smart lightbulb and app vulnerability puts your Wi-Fi password at risk

• Update now! Google Chrome’s first weekly update has arrived

• Teenage members of Lapsus$ ransomware gang convicted

• Cisco Talos Research: New Lazarus Group Attack Malware Campaign Hits UK & US Businesses

• IT Security News Daily Summary 2023-08-25

• Genworth Financial Under Investigation for Data Breach

• Tornado Cash Civil Decision Limits the Reach of the Treasury Department’s Actions while Skirting a Full First Amendment Analysis

• Unveil the Paradox of Encryption with TLS 1.3 in Zero Trust Architectures

• Here’s why this cyber leader still has more room to run, despite recent share-price volatility

• China Unleashes Flax Typhoon APT to Live Off the Land, Microsoft Warns

• Publisher’s Spotlight: Mitiga: The Next Generation of Cloud Incident Response

• Cyber Security Today, Week in Review for the week ending Friday, August 25, 2023

• Top 5 Most Abused Brands By Hackers

• Smart Cities: Utopian Dream, Security Nightmare, Or Political Gimmick?

• EU Safety Laws Start To Bite For TikTok, Instagram, And Others

• North Korean APT Hacks Internet Infrastructure Provider Via ManageEngine Flaw

• Biden Administration Reveals New Crypto Tax Reporting Rules

• XLoader Malware Variant Targets MacOS Disguised as OfficeNote App

• Kroll Employee SIM-Swapped for Crypto Investor Data

• Luna Grabber Malware Targets Roblox Gaming Devs

• Flax Typhoon using legitimate software to quietly access Taiwanese organizations

• Ermetic CNAPP Becomes Available on Google Cloud Marketplace

• ‘Whiffy Recon’ Malware Transmits Device Location Every 60 Seconds

• Defending the Virtual Kingdom: Exploring Modern Cybersecurity Landscapes

• Elevating Data Security: Key Considerations When Transferring Your Digital Workspace

• Publisher’s Spotlight: Cigent: Make Your Data Invisible

• The SEC demands more transparency about Cybersecurity incidents in public companies

• Securely implementing Active Directory on Windows Server 2019

• CloudNordic loses most customer data after ransomware attack

• Donald Trump’s Mug Shot Matters in a World of Fakes

• WinRAR users update your software as 0-day vulnerability is found

• The best VPN routers of 2023: Top picks for fast speeds

• The best VPN services for iPhone and iPad in 2023: Tested and reviewed

• In Other News: Africa Cybercrime Crackdown, Unpatched macOS Flaw, Investor Disclosures

• MOVEit, the biggest hack of the year, by the numbers

• China-linked Flax Typhoon APT targets Taiwan

• How to Secure All Your APIs Through Multiple Deployment Options

• Call of Duty Bid: Microsoft Makes New Bid to Acquire Call of Duty Giant

• Social media companies to stop data scraping

• Mastercard Ends Binance Card Partnership

• ClearSale launches Client Portal to help customers view and manage fraud prevention data

• SaaS Application Security: Why It Matters and How to Get It Right

• Tech Firms Must Now Comply With EU Digital Services Act

• Twelve nations urge social media giants to tackle illegal data scraping

• Kyndryl and Cisco expand partnership to help customers respond to cyber incidents

• Akira Ransomware Unleashes a New Wave of Attacks via Compromised Cisco VPNs

• Google Workspace Unveils AI-Powered Security

• Decentralized Network Friend.tech Faces Controversy After Data Breach

• What is the Difference Between Microsoft Azure vs Amazon AWS?

• Two LAPSUS$ Hackers Convicted in London Court for High-Profile Tech Firm Hacks

• Juice jacking: Is it a real issue or media hype?

• North Korean APT Hacks Internet Infrastructure Provider via ManageEngine Flaw

• Is Bias in AI Algorithms a Threat to Cloud Security?

• Byju’s exposed sensitive student data, including loan details

• How to Choose the Best XDR Solution for Your Organization?

• Business email compromise scams getting more sophisticated: Report

• Cyber Security Today, August 25, 2023 – FBI warning about Barracuda ESG gateways and thousands of more US MOVEit victims

• How to close the IT Talent Gap with a SASE Solution

• Friend.Tech Hit by Cyber Attack

• Cypago Raises $13 Million for GRC Automation Platform

• Lazarus Group exploited ManageEngine vulnerability to target critical infrastructure

• Our Risk Perception Is Broken How Do We Fix It?

• Learn How Your Business Data Can Amplify Your AI/ML Threat Detection Capabilities

• Beyond Cold Calls: Ringless Voicemail As A Personalized Customer Engagement Tool

• Google Workspace Introduces New AI-Powered Security Controls

• Europe is Cracking Down on Big Tech. This Is What Will Change When You Sign On

• Lawmaker Wants Federal Contractors to Have Vulnerability Disclosure Policies

• China-Linked Flax Typhoon Cyber Espionage Targets Taiwan’s Key Sectors

• Navigating Legacy Infrastructure: A CISO’s Actionable Strategy for Success

• What Is a Host Intrusion Detection System (HIDS) and How It Works

• How Does XDR Software Help Security Teams

• XDR Security for MSSPs

• Donald Trump Returns To Twitter To Post Mugshot

• Cloud Hosting Provider Lost all Customer Data Following Ransomware Attack

• Cisco NX-OS Software Flaw Let Attacker Trigger a DoS Attack

• Nearly 1,000 Organizations, 60 Million Individuals Impacted by MOVEit Hack

• Privacy Regulator Warns of Surge in “Text Pest” Cases

• Lockbit leak, research opportunities on tools leaked from TAs

• Hacking Food Labeling Laws

• Hackers Continue to Exploit Barracuda ESG Zero-Day Flaw: FBI Flash Alert

• Researchers Discover Reply URL Takeover Issue in Azure

• Urgent FBI Warning: Barracuda Email Gateways Vulnerable Despite Recent Patches

• Whiffy Recon malware triangulates the position of infected systems via Wi-Fi

• Silicon UK Pulse: Your Tech News Update: Episode 15

• FBI: Barracuda Appliances Still Being Exploited By China

• FBI: Patches for Barracuda ESG Zero-Day CVE-2023-2868 are ineffective

• Want your endpoint security product in the Microsoft Consumer Antivirus Providers for Windows?

• Lazarus Group Targets Internet Infrastructure and Healthcare with ‘QuiteRAT’ Malware

• What will a service provider do when ransomware attack wipes off all its data

• The Emerging Cyber Threat: SEO Poisoning’s Impact on Healthcare Cybersecurity

• Creative QakBot Attack Tactics Challenge Security Defenses

• Google Workspace: New account security, DLP capabilities announced

• Cybersecurity insurance is missing the risk

• Ransomware dwell time hits new low

• IEEE 802.11az provides security enhancements, solves longstanding problems

• New infosec products of the week: August 25, 2023

• Unrealistic expectations exacerbate the cybersecurity talent shortage

• Trump’s Prosecution Is America’s Last Hope

• Trump’s Prosecution Is America’s Last Hope

• Regulations vs. DevSecOps: Requiem

• FBI: Who was going around hijacking Barracuda email boxes? China, probably

• Malwarebytes acquires Cyrus Security

• Cerby Announces $17M in Series A Funding to Secure Nonstandard Applications

Generated on 2023-08-26 23:55:17.965944