IT Security News Daily Summary 2023-09-19

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• China-Linked Actor Taps Linux Backdoor in Forceful Espionage Campaign

• Phalanx protects company data by automatically securing and tracking sensitive documents

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Marvell disputes claim that Cavium backdoored chips for Uncle Sam

• UK Online Safety Bill Set To Become Law

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Facebook Accused Of Profiting Off Marketplace Scams

• Trend Micro Patches Zero-Day Endpoint Vulnerability

• Publishers Spotlight: Omdia Research Risk-based Vulnerability Management Findings

• Enea Unveils Qosmos Threat Detection SDK to Boost Network Security

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Russian allegedly smuggled US weapons electronics to Moscow

• CrowdStrike to Acquire Application Intelligence Startup Bionic

• Today The UK Parliament Undermined The Privacy, Security, And Freedom Of All Internet Users

• Russian allegedly smuggled US weapons electronics to Moscow, says US govt

• FTX Sues Parents Of Former CEO Sam Bankman-Fried

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• MGM, Caesars Face Regulatory, Legal Maze After Cyber Incidents

• We Want YOU (U.S. Federal Employees) to Stand for Digital Freedoms

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• HiddenLayer Raises Hefty $50M Round for AI Security Tech

• #mWISE: Chinese Cyber Power Bigger Than the Rest of the World Combined

• Publishers Spotlight: CyTwist: Defend Forward – Stop Your Attacks without IOCs

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Qatar Cyber Chiefs Warn on Mozilla RCE Bugs

• FTX Reinforces Security Measures After Recent Cyber Breach

• Unsung Hero in Cyber Risk Management

• Protect CNC Machines in Networked IT/OT Environments

• How To Learn Secure Software Development Lifecycle (SDLC)

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Deepwatch platform enhancements improve cyber resiliency for businesses

• Ping Identity introduces passwordless solution for better customer experiences

• Google Begins Last Attempt To Overturn $2.6bn EU Antitrust Fine

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• The Promise and Peril of Generative AI for Cybersecurity

• Four Ways for Developers To Limit Liability as Software Liability Laws Seem Poised for Change

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Name That Toon: Somewhere in Sleepy Hollow

• International Criminal Court says hackers accessed its systems

• How Ai Can Be Used as A Tool to Help Monitor for Cybercrimes and Keep Kids Safe From Cyberbullying And Scams

• Unofficial digital IDs – what are the risks?

• From one realm to another: Ensuring data protection in a cloud migration

• Chinese Group Exploiting Linux Backdoor to Target Governments

• Clorox Sees Product Shortages Amid Cyberattack Cleanup

• Recent cyber attack is causing Clorox products shortage

• Are Credit Monitoring Services a Valuable Tool for Financial Security?

• Pro-Russian Actors Initiated A DDoS Attack Against Canadian Organizations

• employee onboarding and offboarding

• HiddenLayer raises $50M to bolster defenses of enterprise AI models

• Entrust’s zero trust solutions enhance security of applications, encryption keys and secrets

• Microsoft 38TB AI Data Leak details

• Google Authenticator Flaw Inadvertently Facilitated $15 Million Theft

• Hackers Target Azerbaijan Users With A Novel Rust Malware

• Elon Musk To Move X Behind Paywall, As Israeli PM Urges Antisemitism Action

• ‘Cybersecurity Incident’ Hits ICC

• Venafi Leverages Generative AI to Manage Machine Identities

• Misconfigured SAS Token By Microsoft’s AI Team Exposes 38TB Of GitHub Data

• Hacker Conversations: Casey Ellis From Bugcrowd

• Chinese Hackers Use Never Before Seen Linux Backdoor

• The Clorox Company Admits Cyberattack Causing Disruption

• Executive & Security Ratings Snapshot Request – SEC PPC

• Ransomware is now a crisis, financial conference told

• Insider Threats: Why Human Error Is Your Biggest Cybersecurity Risk (and How to Address It)

• CapraRAT Impersonates YouTube to Hijack Android Devices

• Omron Engineering Software Zip-Slip

• Specops Software Launches Continuous Scanning Capabilities for Breached Password Protection

• Open Systems OT Firewall monitors traffic and detects threats

• Improper Usage of SAS Token Leads to Massive Microsoft Data Leakage

• Executive & Security Ratings Snapshot Request – SEC

• Security Changes at Australian Supermarket Raise Privacy Concerns

• Investigating Chainalysis Data Reliability in Cryptocurrency Cases

• DoD Claims: China’s ICS Cyber Onslaught Aims at Gaining Strategic Warfare Advantages

• Rival Cybercrime Groups Offer Conflicting Accounts of Casino Attack

• Hacking forum Raidforums.com allegedly seized by authorities

• How to Create and Use a Docker Secret From a File

• Clorox Blames Damaging Cyberattack for Product Shortage

• Chinese Spies Infected Dozens of Networks With Thumb Drive Malware

• Elevate Your Cybersecurity with Imperva Cloud WAF: More Than Just a Checkbox

• DevSecOps: Integrating Security Into Your DevOps Workflow

• How to Create and Use a Docker Secret From a File (+Video)

• Engineering-Grade OT Protection

• New Privacy Badger Prevents Google From Mangling More of Your Links and Invading Your Privacy

• ShroudedSnooper’s HTTPSnoop Backdoor Targets Middle East Telecom Companies

• The Clock is Ticking for PCI DSS 4.0 Compliance

• A year into private ownership, SailPoint cracks the $600M ARR threshold

• Acronis Unveils First Ever AI-powered Cyber Protection Software for Consumers

• Salt Security Strengthens CrowdStrike Partnership with New Integration

• OneTrust helps organizations manage the complexity of their trust programs

• LogRhythm and Novacoast join forces to identify and counteract malicious actors

• Will the Real Slim Shady Please Stand Up? Check Point Research Exposes Cybercriminal Behind Malicious Software Impacting EMEA and APAC

• Mosyle launches AI-driven zero trust platform for securing macOS against cyber threats

• Trend Micro Patches Exploited Zero-Day Vulnerability in Endpoint Security Products

• Thousands of Juniper Appliances Vulnerable to New Exploit

• Pakistani APT Uses YouTube-Mimicking RAT to Spy on Android Devices

• Alcion Raises $21 Million for Backup-as-a-Service Platform

• HiddenLayer raises $50M for its AI-defending cybersecurity tools

• Cato Networks, valued at $3B, lands $238M ahead of its anticipated IPO

• Over a Third of UK Population Believe Prison is the Most Suitable Punishment for Individuals Responsible for Data Breach

• Why is cyber security important for your company?

• How Collaboration Across Platforms Could Supercharge AI Performance

• Earth Lusca’s New SprySOCKS Linux Backdoor Targets Government Entities

• Inside the Code of a New XWorm Variant

• Operation Rusty Flag: Azerbaijan Targeted in New Rust-Based Malware Campaign

• 12,000 Juniper SRX firewalls and EX switches vulnerable to CVE-2023-36845

• Cyber security in Formula E: TAG Heuer Porsche Formula E team relies on support from SASE

• Cyber criminals are able to break in because they’re breaking human trust: Mandiant CEO Kevin Mandia

• The Clorox Company admits cyberattack causing ‘widescale disruption’

• UK’s Foundation Model Review Warns Of AI Risks

• ‘ShroudedSnooper’ Backdoors Use Ultra-Stealth in Mideast Telecom Attacks

• Egnyte simplifies AI deployment for customers in AEC industries

• NightDragon and CyberKnight strengthen cybersecurity in the Middle East, Turkey and Africa

• Chinese Hackers Target North American, APAC Firms in Web Skimmer Campaign

• Hacker Conversations: Casey Ellis, Hacker and Ringmaster at Bugcrowd

• Nearly 12,000 Juniper Firewalls Found Vulnerable to Recently Disclosed RCE Vulnerability

• Live Webinar: Overcoming Generative AI Data Leakage Risks

• Sources: CrowdStrike will announce its Bionic.ai acquisition for $350M today

• #mWISE: FBI Director Urges Greater Private-Public Collaboration Against Cybercrime

• Apple Releases iOS 17. What’s New And How To Install It

• Cybersecurity M&A Roundup for First Half of September 2023

• CISA Says Owl Labs Vulnerabilities Requiring Close Physical Range Exploited in Attacks

• How to remove ransomware, step by step

• Lookout Announces CrowdStrike Marketplace Availability of Mobile Threat Defense

• What is extortionware? How does it differ from ransomware?

• Threat Actor Claims Major TransUnion Data Breach

• Over 12,000 Juniper Firewalls Found Vulnerable to Recently Disclosed RCE Vulnerability

• The Consequences of Non-Compliance in Cybersecurity: Risks and Penalties

• General Data Protection Regulation (GDPR) – The Story So Far

• Threat Actor Claims Major TransUnion Customer Data Breach

• Do you know what your supply chain is and if it is secure?

• Clorox Struggling to Recover From August Cyber-Attack

• Behind the Inbox: How Email Spam Tests Impact Your Campaigns

• Microsoft AI Researchers Leak 38TB of Private Data

• Earth Lusca expands its arsenal with SprySOCKS Linux malware

• Need to improve the detection capabilities in your security products?

• Transparent Tribe Uses Fake YouTube Android Apps to Spread CapraRAT Malware

• Iranian Hackers Attack Thousands of Organizations Using Password Spraying

• An inside look at NetSPI’s impressive Breach and Attack Simulation platform

• Balancing budget and system security: Approaches to risk tolerance

• Never use your master password as a password on other accounts

• Cloud environments blamed for security vulnerabilities

• Companies still don’t know how to handle generative AI risks

• Avoiding domain security risks when taking your business online

• LLM Guard: Open-source toolkit for securing Large Language Models

• Top blockchain Cybersecurity threats to watch out for

• Microsoft AI Researchers Accidentally Expose 38 Terabytes of Confidential Data

• Australia to build six ‘cyber shields’ to defend its shores

• Organizations are racing against time to meet the PCI DSS 4.0 deadline

• Who’s Behind the 8Base Ransomware Website?

• LEO’s Needs Better Data Analysis to Stop Tech-Savvy Cybercriminals

• A week in security (September 11 – September 17)

• Ransomware group steps up, issues statement over MGM Resorts compromise

• ThemeBleed exploit is another reason to patch Windows quickly

• Malwarebytes named leader across six endpoint security categories, marking its ease of use, in G2 Fall 2023 results

• 2024 Cybersecurity Excellence Awards Now Open

• Branded Merchandise: The Secret Weapon for Building a Strong Brand Identity

• Insider Threat Awareness Month: Protecting Your Business from Within

• Unleashing the Power of On-Premise MFA_ Elevate Active Directory Security

• Why CISOs need zero trust as a ransomware shield

• Thousands of Juniper Junos firewalls still open to hijacks, exploit code available to all

• White Hat Hackers Discover Microsoft Leak of 38TB of Internal Data Via Azure Storage

• Omdia Research Finds Risk-Based Vulnerability Management Set to Encompass the Vulnerability Management Market by 2027

• Niagara Networks and Scope Middle East Announce Strategic VAD Partnership

• FBI director urges private sector to lend government more support in cyber intelligence

• Payment Card-Skimming Campaign Now Targeting Websites in North America

• IT Security News Daily Summary 2023-09-18

• Hardcoded Secret at the Heart of the Dell Compellent VMware Vulnerability

• WSI Technologies a New Competitor in 2023 ‘ASTORS’ Awards Program

• Facebook Criticized For Refusing To Remove Animal Cruelty Videos

• Microsoft Azure Data Leak Exposes Dangers of File-Sharing Links

• Microsoft AI research division accidentally exposed 38TB of sensitive data

• Google Reveals Combined SIEM and SOAR Update for Chronicle Security Operations Platform

• Microsoft AI researchers mistakenly expose 38 TB of data

• LockBit Is Using RMMs to Spread Its Ransomware

• Security Conferences Keep Us Honest

• Publisher’s Spotlight: Dataminr: Real-time AI for Event and Risk Detection

• Former CIO accuses Penn State of faking cybersecurity compliance

• What to consider when creating a SaaS security strategy

• Companies Explore Ways to Safeguard Data in the Age of LLMs

• How a North Korean cyber group impersonated a Washington D.C. analyst

• electronically stored information (ESI)

• One of the FBI’s most wanted hackers is trolling the U.S. government

• Microsoft AI Researchers Expose 38TB of Top Sensitive Data

• Why security and DevOps need to join forces to safeguard containerized environments

• CISA Sponsors Hack the Building 2.0 Hospital Competition

• UK police officers’ data stolen in cyberattack on ID supplier

• Vulnerability Summary for the Week of September 11, 2023

• New MidgeDropper Malware Variant Found Targeting Windows Users

• Decoding Business Source Licensing: A New Software Licensing Model

• CISA Aims For More Robust Open Source Software Security for Government and Critical Infrastructure

• Microsoft AI Researchers Expose 38TB of Data, Including Keys, Passwords and Internal Messages

• How to Get Your Board on Board With Cybersecurity

• Microsoft worker accidentally exposes 38TB of sensitive data in GitHub blunder

• PRODUCT REVIEW: ISC2 CGRC Certification

• Secure Azure Functions with these authentication methods

• Weekly Vulnerability Recap – September 18, 2023 – Patch Tuesday Also For Adobe, Apple and More

• Product Boss Panos Panay Departs Microsoft

• Apple ‘Constantly’ Evaluating Advertising Spend On Elon Musk’s X

• Breach and Attack Simulation Technology (Short Version)

• If the worst happens: How to prep your accounts so your loved one can get into them

• ‘Elon Musk’ Book Reveals: Musk Wanted to use Tesla Cameras to Surveille on Drivers

• SAS unveils innovations and partnerships during Explore 2023

• What Does Closed-Door Meeting With AI Industry Leaders Mean for Business?

• Dragos Raises $74M in Latest Funding Round

• Unmasking antiforensics techniques: Strategies for effective defense

• Crooks Exploited Satellite Live Feed Delay for Betting Advantage

• Venafi Control Plane enhancements help enterprises manage machine identities of all kinds

• SentiLink unveils Facets to improve financial fraud detection

• TikTok Faces Massive €345 Million Penalty for Mishandling Kids’ Data Privacy

• Getting to Know: Kacey Darling

• Best IT Asset Management Software for 2023

• Cyber Mindfulness Corner Company Spotlight: Cybermindz

• Another Crypto Exchange Hacked, Following CoinEx Hack by Three Days

• How to make sure the reputation of your products and company is good

• Scattered Spider managed MGM Resort Network Outage brings $8m loss daily

• Safety and the digital age, terms that should go hand in hand with our kids

• OT/IoT and OpenTitan, an Open Source Silicon Root of Trust

• Google Extends Chromebook Lifespan, Promises 10 Years of Automatic Updates

• A Playbook for Bridging Africa’s Cybersecurity Skills Shortage

• CISA Adds Eight Known Exploited Vulnerabilities to Catalog

• Cryptocurrency Scams to Heavily Target TikTok Users

• Adaptive DDoS Attacks Get More Sophisticated: How to Beat Attackers’ New Ground Game

• Blockchain Technology: Strengthening Cybersecurity and Protecting Against Password Leaks and Data Breaches

• Here’s How Supermarket Loyalty Cards are Exploiting Consumers Weakness

• Foxconn To Double Jobs, Investment In India In Next 12 Months

• How to Build an Effective ICS Security Program

• How to Protect Your Facebook Account from Cybercriminals

• Fraudsters Steal Over $1m in Three Weeks Through ‘Pig Butchering’ Crypto Scam

• German intelligence warns cyberattacks could target liquefied natural gas (LNG) terminals

• Wipro partners with ServiceNow to optimize clients’ risk and security operations

• Microsoft Wins US Army Order For Upgraded HoloLens – Report

• How Microsoft and Illumio are reinventing firewall security for the cloud era

• The State of Windows Digital Analysis

• Microsoft mitigated exposure of internal information in a storage account due to overly-permissive SAS token

• Two Vegas Casinos Fell Victim to Cyberattacks, Shattering the Image of Impenetrable Casino Security

• Fortinet Patches High-Severity Vulnerabilities in FortiOS, FortiProxy, FortiWeb Products

• Canadian Government Targeted With DDoS Attacks by Pro-Russia Group

• Hook: New Android Banking Trojan That Expands on ERMAC’s Legacy

• Think Your MFA and PAM Solutions Protect You? Think Again

• New AMBERSQUID Cryptojacking Operation Targets Uncommon AWS Services

• Microsoft AI researchers accidentally exposed terabytes of internal sensitive data

• How Google Authenticator Made One Company’s Network Breach Much, Much Worse

• Senators Want Clarity From Pentagon On Ukraine Starlink Access Fiasco

• BlackCat/ALPHV Reportedly Encrypted More Than 100 MGM ESXi Hypervisors

• Fortinet Patches High Severity Vulnerabilities In Multiple Products

• Multiple Crypto Raids Net Lazarus Group $290m In 15 Weeks

• Industrial Cybersecurity Leader Dragos Raises an Additional $74M in Series D Round Extension Funding Led by WestCap

• Clorox says last month’s cyberattack is still disrupting production

• Rust Implant Used in New Malware Campaign Against Azerbaijan

• Supporting Africa’s Cybersecurity Talent Makes the World Safer

• California passes bill to set up one-stop data deletion shop

• ThemeBleed – Code Execution Vulnerability In Windows 11 Themes

• CISA Releases New Identity and Access Management Guidance

• iOS 17 includes these new security and privacy features

• Brits Are in the Dark About the Dark Web

• Digital Deficit: 93% of UK Employers Identify An IT Skills Gap Within The UK Job Market

• Kubernetes vulnerability allows RCE on Windows endpoints (CVE-2023-3676)

• Resecurity names Mohammed Alghamdi as the Managing Director in the Kingdom of Saudi Arabia

• Cyber Security Today, Sept. 18, 2023 – How a deepfake voice caused a company to be hacked

• TikTok slapped with €345m Child Privacy penalty by EU

• Top 5 Search Engines for Cybersecurity Research

• Earth Lusca Employs New Linux Backdoor, Uses Cobalt Strike for Lateral Movement

• Apple To Issue Update In France To Resolve iPhone 12 Sales Ban

• Deepfake and smishing. How hackers compromised the accounts of 27 Retool customers in the crypto industry

• Cryptojackers spread their nets to capture more than just EC2

• 10 Top DDoS Attack Protection and Mitigation Companies in 2023

• ICS Security Firm Dragos Raises $74 Million in Series D Extension

• TikTok Is Hit With $368 Million Fine Under Europe’s Strict Data Privacy Rules

• Industrial cybersecurity giant Dragos rakes in new funding, sets sights on global expansion

• TikTok Fined 345 Million Euros Over Child Data

• Remote Access Checklist

• What ChatGPT doesn’t say about Kubernetes in production

• Another $40m Dispersed to Western Union Fraud Victims

• Illegal Betting Ring Used Satellite Tech to Get Scoop on Results

• TikTok Fined $368m For Child Data Privacy Offenses

• EDR for Banking: 6 Ways EDR Can Help Financial Organizations

• Common Cyber Threats and How to Avoid Them?

• Innovative Trends in Flyer Distribution: Embracing Technology and Digital Integration

• Software developers, how secure is your software?

• The Future of E-commerce

• Retool Falls Victim to SMS-Based Phishing Attack Affecting 27 Cloud Clients

• FBI hacker USDoD leaks highly sensitive TransUnion data

• AI in Software Development: The Good, the Bad, and the Dangerous

• Evaluating New Partners and Vendors From an Identity Security Perspective

• North Korea’s Lazarus APT stole almost $240 million in crypto assets since June

• The hidden dangers of low-value data

• PostgreSQL 16: Where enhanced security meets high performance

• When data falls into the wrong hands

• Critical business app outages cost $500,000 per hour of downtime

• Regulatory activity forces compliance leaders to spend more on GRC tools

• Financially Motivated UNC3944 Threat Actor Shifts Focus to Ransomware Attacks

• Imagine Making Shadowy Data Brokers Erase Your Personal Info. Californians May Soon Live the Dream

Generated on 2023-09-19 23:55:47.215391