IT Security News Daily Summary 2023-09-11

• Cloudflare Announces Unified Data Protection Suite to Address Risks of Modern Coding and Increased AI Use

• MGM Resorts Confirms ‘Cybersecurity Issue’, Shuts Down Systems

• Iran’s Charming Kitten Pounces on Israeli Exchange Servers

• Find the right cybersecurity learning platform for your team

• MGM Resorts shuts down computer systems after ‘cybersecurity incident’

• ‘Steal-It’ Campaign Uses OnlyFans Models As Lures

• Being Flexible Can Improve Your Security Posture

• Arkansas Lawmakers Could Wreck A 50-Year-Old FOIA Law This Week

• US Marks 22 Years Since 9/11 Terrorist Attacks

• CISA adds recently discovered Apple zero-days to Known Exploited Vulnerabilities Catalog

• Arkansas Shouldn’t Use a Hastily-Called Special Session To Make FOIA Less Functional

• Vulnerability Summary for the Week of September 4, 2023

• Security by Design and Default – How to Address the Cybersecurity Challenge

• Cisco VPN flaw faces attempted Akira ransomware attacks

• EFF Award Winner: Library Freedom Project

• Huge DDoS attack against US financial institution thwarted

• OneTrust Data Governance Review (2023): Features & Pricing

• Iranian APT Hits US Aviation Org via ManageEngine, Fortinet Bugs

• MGM Resorts blames ‘cybersecurity issue’ for ongoing outage

• Microsoft Teams Used To Spread Burgeoning DarkGate Malware

• Active North Korean Campaign Targets Security Researchers

• Bookstore Chain Dymocks Discloses Data Breach Possibly Impacting 800k

• Apple Patches Two Pegasus Spyware Zero Days

• Apple users warned to update their devices after University of Toronto researchers expose spyware

• Do you really need to tell FedEx your Social Security number? How to avoid package-delivery scams

• Making Life Easier for Developers: How Fastly’s Edge Cloud Platform Simplifies App Security for Developers

• Why You Should Nominate Wellbeing Advocates for the 2023 Unsung Heroes Awards

• Cisco: Leadership Awareness Fuels the Booming Identity Market

• Cuba Ransomware Group Unleashes Undetectable Malware

• Tenable to acquire Ermetic for $265 million

• Top blockchain Cybersecurity threats to watch out for

• Hive0117 Group Attacking Employees of Energy, Finance, & Software Industries

• CodeSecure: ‘ASTORS’ Homeland Security Nominee CodeSentry

• How to develop a cloud backup ransomware protection strategy

• Lazarus Group Targets macOS in Supply Chain Assault

• FBI and White House likely coerced social media platforms into removing posts, appeals court rules

• How to make sure the reputation of your products and company is good

• Intel Pushes Nvidia Chip Competition Amidst AI Frenzy

• The Top Cybersecurity Risks in Agile Software Development

• Pentagon Urges Collaboration in Cyber Defense

• Facebook Drops News Projects In EU, UK

• Notepad++ v8.5.7 Released: Fix for 4 Security Vulnerabilities

• Attackers Abuse Google Looker Studio to Evade DMARC, Email Security

• Navigating Rwanda’s New Data Protection Law

• Charming Kitten’s New Backdoor ‘Sponsor’ Targets Brazil, Israel, and U.A.E.

• Vietnamese Hackers Deploy Python-Based Stealer via Facebook Messenger

• Online Hackers Target Microsoft Teams to Propagate DarkGate Malware

• Landmark Google US Antitrust Case Heads For Court

• Why keep Cybercom and the NSA’s dual-hat arrangement?

• After Microsoft and X, Hackers Launch DDoS Attack on Telegram

• Board Members Struggling to Understand Cyber Risks

• Facebook Privacy Settlement May Be The Largest Class Action Suit In US History

• Overcoming the Rising Threat of Session Hijacking

• API Expanding Attack Surfaces: 74% Reporting Multiple Breaches – Approov Comments

• Janssen Pharmaceutical’s CarePath Application Data Breach Exposes Personal Information

• Board And CISO Disconnect on Cybersecurity Preparedness ‘Rings Alarm Bells’– Expert Comments

• August 2023’s Most Wanted Malware: New ChromeLoader Campaign Spreads Malicious Browser Extensions while QBot is Shut Down by FBI

• Charming Kiten’s New Backdoor ‘Sponsor’ Targets Brazil, Israel, and U.A.E.

• Fortinet partners with Wiz to help enterprises protect their cloud environments

• Crypto Bot Trading: What It Is and Successful Strategies

• Square says daylong outage caused by DNS error

• UK and US sanctioned 11 members of the Russia-based TrickBot gang

• Malice in the mail

• Blockchain’s Role in Reinventing ATM Security: A Game-Changer in Banking

• Chinese Battery Maker Gotion To Build $2bn Illinois Plant

• A Comprehensive Approach To Enhancing IoT Security With Artificial Intelligence

• Associated Press Stylebook Users Targeted in Phishing Attack Following Data Breach

• Bookstore Chain Dymocks Discloses Data Breach Possibly Impacting 800k Customers

• 0xPass raises $1.8M from Balaji Srinivasan and others to build secure login systems for web3

• Cyber Security Today, Sept. 11, 2023 – Warnings from Cisco, a huge DDoS attack and more MOVEit and ransomware victims

• Hackers Using Microsoft Teams to Deliver DarkGate Malware Via HR-themed Messages

• How to Prevent API Breaches: A Guide to Robust Security

• SecuX Shield BIO enhances crypto security

• Microsoft Teams users targeted in phishing attack delivering DarkGate malware

• Ransomware targets over 5000 government email addresses

• Killware vs. Ransomware: Key Differences

• Avoid Using Atlas VPN Until A Fix Arrives For The Zero-Day

• Apple Patched Two iOS Zero-Day Flaws Exploited In BLASTPASS

• Spies, Hackers, Informants: How China Snoops on the West

• FBI Blames North Korean Hackers for $41 Million Stake.com Heist

• Ransomware Attack Wipes Out Four Months of Sri Lankan Government Data

• AI Chatbots Are Invading Your Local Government—and Making Everyone Nervous

• Google Chrome Rolls Out Support for ‘Privacy Sandbox’ to Bid Farewell to Tracking Cookies

• Navigating PAM Implementation Risks: A Comprehensive Guide for CISOs

• Rise In Digital Scams And How To Avoid Them?

• Ant Group Launches Finance-Focused AI Large Language Model

• Vulnerabilities Allow Hackers to Hijack, Disrupt Socomec UPS Devices

• Apple Shares Slide After China Ban Reportedly Broadened

• New HijackLoader malware is rapidly growing in popularity in the cybercrime community

• What Is Token-Based Authentication?

• 10 Mistakes in Cybersecurity and How to Avoid Them

• OT Security: Risks, Challenges and Securing your Environment

• What Is Container Security? Complete Guide

• From Caribbean shores to your devices: analyzing Cuba ransomware

• Protect Your Data With the MonoDefense Security Suite for $149.99

• IT Systems Encrypted After UK School Hit By Ransomware

• From ERMAC to Hook: Investigating the technical differences between two Android malware variants

• AP Stylebook Breach May Have Hit Hundreds of Journalists

• Evil Telegram Mods Removed From Google Play

• Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows

• Some of TOP universities wouldn’t pass cybersecurity exam: left websites vulnerable

• Viva Air – 932,232 breached accounts

• Software developers, how secure is your software?

• EFF Welcomes Erica Astrella and Yoshi Kohno to Its Board of Directors

• What is digital domestic abuse?

• Hackers Exploit Zero-Day Flaw in Software Used by Resorts and Hotels

• New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World

• Evil Telegram campaign: Trojanized Telegram apps found on Google Play

• The blueprint for a highly effective EASM solution

• CISOs and board members work more closely than ever before

• Elevating API security to reinforce cyber defense

• Email forwarding flaws enable attackers to impersonate high-profile domains

• Empowering consumer privacy with network security

• Understanding the dangers of social engineering

• Google warns infoseccers: Beware of North Korean spies sliding into your DMs

• Chrome’s “Enhanced Ad Privacy”: What you need to know

• IT Security News Weekly Summary – Week 36

• IT Security News Daily Summary 2023-09-10

• Powerful Ethnic Militia in Myanmar Repatriates 1,200 Chinese Suspected of Involvement in Cybercrime

• Microsoft and Google’s Approach to Replace Obsolete TLS Protocols

• Rhysida Ransomware gang claims to have hacked three more US hospitals

• New York’s Geofencing Ban: A Game Changer for Advertisers

• Mirai Botnet Variant ‘Pandora’ Hijacks Android TVs

• Johnson & Johnson Reveals: IBM Data Breach Compromised Customer Data

• Elon Musk Claims he Withheld Starlink to Deny Attack on Russian Navy Fleet

• From Vulnerabilities to Vigilance: Addressing Software Supply Chain Attacks

• Akamai prevented the largest DDoS attack on a US financial company

• LastPass Security Breach Linked to Series of Crypto Heists, Say Experts

• The Cybersecurity Crisis: Dating App “Coffee Meets Bagel (CMB)” Hacked, Over 620 Million Accounts Compromised

• Boost Your Business Security: How Cyber Insurance Shields You from Cyber Threats

• Data Privacy Concerns Surround Period Tracking Apps

• Security Affairs newsletter Round 436 by Pierluigi Paganini – International edition

• Week in review: 6 free resources for getting started in cybersecurity, Patch Tuesday forecast

• Cyber Security Management System (CSMS) for the Automotive Industry

• Researchers Uncover Phishing Empire Attacking 56,000+ Microsoft 365 Accounts

• Generative AI: A pragmatic blueprint for data security

• Has MFA Had Its Day?

Generated on 2023-09-11 23:55:19.365098