IT Security News Daily Summary 2023-09-21

• LEO’s Needs Better Data Analysis to Stop Tech-Savvy Cybercriminals

• DNS over HTTPS (DoH)

• Salvador Technologies Wins Funding for $2.2M Cybersecurity Project From BIRD Foundation

• What Does Socrates Have to Do With CPM?

• Forrester names Microsoft a Leader in the 2023 Zero Trust Platform Providers Wave™ report

• Cisco to buy Splunk in $28B bid to secure enterprises in AI era

• ‘Gold Melody’ Access Broker Plays on Unpatched Servers’ Strings

• New ‘Sandman’ APT Group Hitting Telcos With Rare LuaJIT Malware

• OPSWAT-Sponsored SANS 2023 ICS/OT Cybersecurity Report Reveals Vital Priorities to Mitigate Ongoing Threats

• Mysterious ‘Sandman’ Threat Actor Targets Telecom Providers Across Three Continents

• T-Mobile Racks Up Third Consumer Data Exposure of 2023

• Forrester names Microsoft a Leader in the 2023 Zero Trust Platform Providers Wave™ report

• Kindo aims to take the security stress out of AI workflows

• TransUnion reckons big dump of stolen customer data came from someone else

• Bringing Authentication Security Out of the Dark Ages

• BBTok Malware Returns, Targeting Over 40 Banks in Brazil and Mexico

• TransUnion reckons big dump of customer data came from someone else

• BSidesAustin 2023: CyberSecurity In The Texas Tech Capital

• IT pros react to blockbuster $28B Cisco-Splunk deal

• MGM Restores Casino Operations 10 Days After Cyberattack

• GitHub launches passkey support into general availability

• Google’s Bard AI Revolutionizes User Experience

• Proton CAPTCHA: New Privacy-First CAPTCHA Defense Against Bots

• This Bill Would Revive The Worst Patents On Software—And Human Genes

• Nine Benefits of Offshore Software Development

• CrowdStrike defines a strong vision for generative AI at Fal.Con 2023

• Ukrainian hackers are behind the Free Download Manager supply chain attack

• “From Chatbots to Cyberattacks: How AI is Transforming Cybercrime”

• WormGPT: AI Tool Developed for Cybercrime Actors

• Ethical Hackers Uncover 38TB Microsoft Data Breach via Azure Storage

• Cybercriminals Exploit the Moroccan Tragedy in New Scam Campaign

• It’s all about the structure! Creating YARA rules by clicking

• Amazon Executives Named By FTC In Prime Subscription Lawsuit

• Snatch ransomware – what you need to know

• Legit Security Raises $40 Million in Series B Financing

• TransUnion Denies Breach After Hacker Publishes Allegedly Stolen Data

• Navigating the Digital Frontier in Cybersecurity Awareness Month 2023

• Every Network Is Now an OT Network. Can Your Security Keep Up?

• governance, risk and compliance (GRC)

• UK-US Confirm Agreement for Personal Data Transfers

• Hikvision Intercoms Allow Snooping on Neighbors

• BBTok Banking Trojan Impersonates 40+ Banks to Hijack Victim Accounts

• Mastering Defense-In-Depth and Data Security in the Cloud Era

• CISA Releases Six Industrial Control Systems Advisories

• OneLayer expands its private cellular network security solutions

• Cisco to acquire Splunk in deal valued at $28 billion

• Dig enhances its platform to protect enterprise data in all storage environments

• BlueVoyant Supply Chain Defense enhancements reduce issues in third-party ecosystems

• Viavi Observer Sentry provides threat visibility into AWS environments

• ApexSMS – 23,246,481 breached accounts

• Scaling Rust Adoption Through Training

• Cisco makes largest ever acquisition, buying cybersecurity company Splunk for $28 billion in cash

• ​​​​​​​Beyond the firewall: Navigating SaaS security challenges

• Intel Innovation 2023: Attestation and Fully Homomorphic Encryption Coming to Intel Cloud Services

• Researchers Raise Red Flag on P2PInfect Malware with 600x Activity Surge

• The best security cameras of 2023: Expert researched and reviewed

• ISC Releases Security Advisories for BIND 9

• Feds Issue Snatch Ransomware Warning

• India’s Biggest Tech Centers Named As Cyber Crime Hotspots

• Cisco Beefs Up Cybersecurity Play With $28 Billion Splunk Deal

• Poland Investigates OpenAI Over Privacy Concerns

• MGM Resorts Operations Resume 10 Days After Cyberattack

• Cyber Attack on International Criminal Court for arresting Russia Vladimir Putin

• Cisco Bolsters Cybersecurity Credentials With Splunk Buy For $28bn

• Poland Probes OpenAI Over Data Protection Worries

• MOVEit Transfer SQL Injection Let the Attacker Gain Unauthorized Access to the Database

• Information Security: AI Security Within the IoT Industry

• Encrypted email provider Proton has built its own CAPTCHA service

• Publishers Spotlight: Nisos: Your Managed Intelligence Partner

• What are passkeys? The life-changing magic of going passwordless

• 5 Tips for Securing Data When Using a Personal Mac for Work

• Top 5 Ways to Secure Work Data on Your Personal Mac

• Facebook Clashes With Government Authorities Over Privacy And Encryption

• Rockwell Automation Select Logix Communication Modules

• Real Time Automation 460 Series

• Delta Electronics DIAScreen

• Drupal Releases Security Advisory to Address Vulnerability in Drupal Core

• Siemens Spectrum Power 7

• Cisco spends $28B on data cruncher Splunk in cybersecurity push

• Navigating the Risks: Is Airport Wi-Fi Safe for Travelers?

• LUCR-3 Attacking Fortune 2000 Companies Using Victims’ Own Tools & Apps

• New Ransomware Victims Surge by 47% with Gangs Targeting Small Businesses

• Cisco to Acquire Splunk for $28 Billion

• Space and defense tech maker Exail Technologies exposes database access

• Survey Reveals: 50% Of Respondents Face Cyberattacks Yearly — Employers Blame Employees

• Almighty Mistakes: The Danger Of Accidental Insider Threats And How To Prevent Them

• Here’s Why Twitter Rival Threads Isn’t Accessible in the E.U.

• Air Canada admits hack of employee data

• Amazon Adds Generative AI To Alexa, Amid Device Updates

• Cisco acquires cybersecurity firm Splunk for a jaw-dropping $28 billion

• Understanding the Differences Between On-Premises and Cloud Cybersecurity

• Cisco to acquire Splunk in $28B mega deal

• Cisco acquires cybersecurity company Splunk in cash deal worth $28 billion

• Top 7 Best Practices DevSecOps Team Must Implement in the CI/CD Process

• Check Point Wins Globee Leadership Award for Company of the Year in Security Products/Services

• Is QakBot Malware Officially Dead?

• Cybersecurity Skills Conference: Strengthening human capital in the EU

• Vitalik Buretin’s X account: hacked

• Critical Infrastructure Organizations Warned of Snatch Ransomware Attacks

• UK’s New Online Safety Law Adds to Crackdown on Big Tech Companies

• Car Cybersecurity Study Shows Drop in Critical Vulnerabilities Over Past Decade

• Cisco acquiring cybersecurity company Splunk in cash deal worth $28 billion

• Siemens ALM 0-Day Vulnerabilities Posed Full Remote Takeover Risk

• System Admin Pleads Guilty for Selling Pirated Business Phone Software Licenses

• New Revelations from the Snowden Documents

• CyberArk and Accenture join forces to improve identity security for organizations

• Juniper Apstra enhancements simplify and standardize data center architectures

• Computer Security Incident Response Team (CSIRT): How to Build One

• Google Maps Sued After Father Drives Off Collapsed Bridge

• Trend Micro Zero-day Vulnerability Let Attackers Run Arbitrary Code

• Omron Patches PLC, Engineering Software Flaws Discovered During ICS Malware Analysis

• The Rise of the Malicious App

• SaaS data security: here’s why enterprises need to focus on this fast-growing challenge now!

• WatchGuard acquires CyGlass for AI-powered network anomaly detection

• Fake WinRAR PoC spread VenomRAT malware

• Fortress Information Security partners with NetRise to secure software supply chains

• Menacing marketeers fined by ICO for 1.9M cold calls

• Cyber Group ‘Gold Melody’ Selling Compromised Access to Ransomware Attackers

• China Accuses U.S. of Decade-Long Cyber Espionage Campaign Against Huawei Servers

• Overview of IoT threats in 2023

• Forrester names Microsoft a Leader in the 2023 Zero Trust Platform Providers Wave™ report

• Benefits of OT Cyber Security Solutions in the Pharmaceutical Industry

• Toshiba Approves $14bn Private Equity Takeover

• Bot Attack Costs Double to $86m Annually

• Critical Trend Micro vulnerability exploited in the wild (CVE-2023-41179)

• Understanding Malicious Package Attacks and Defense Strategies for Robust Cybersecurity

• Retailers Are Rapidly Scaling Surveillance of Australian Consumers — Why This Is a Red Flag

• Scams Now Make Up 75% of Cyber-Threats

• Beware: Fake Exploit for WinRAR Vulnerability on GitHub Infects Users with Venom RAT

• Ukrainian Hacker Suspected to be Behind “Free Download Manager” Malware Attack

• Keeper Security Named a Market Leader in Privileged Access Management (PAM) by Enterprise Management Associates

• SME Cyber Security – Time for a New Approach?

• US Government in Snatch Ransomware Warning

• Do you know what your supply chain is and if it is secure?

• T-Mobile App Glitch Exposes Other User’s Sensitive Data

• India’s biggest tech centers named as cyber crime hotspots

• Data breach reveals distressing info: people who order pineapple on pizza

• Beware: Fake Exploit for WinRAR Vulnerability on GitHub Infects Users with VenomRAT

• Forrester names Microsoft a Leader in the 2023 Zero Trust Platform Providers Wave™ report

• Microsoft 365 Defender demonstrates 100 percent protection coverage in the 2023 MITRE Engenuity ATT&CK® Evaluations: Enterprise

• T Mobile app customers experience data security concerns

• Pro-Russia hacker group NoName launched a DDoS attack on Canadian airports causing severe disruptions

• Eco-hacks: The intersection of sustainability and cyber threats

• Bitwarden Free: WebAuthn new passwordless 2FA method

• Regulatory pressure complicates cybersecurity for industrial equipment manufacturers

• How companies can take control of their cybersecurity

• How to set up and speed up Amazon S3 Replication for cross-region data replication

• Building GenAI competence for business growth

• Hidden dangers loom for subsea cables, the invisible infrastructure of the internet

• MGM Resorts Computers Back Up After 10 Days as Analysts Eye Effects of Casino Cyberattacks

• Forrester names Microsoft a Leader in the 2023 Zero Trust Platform Providers Wave™ report

• DoppelPaymer ransomware group suspects identified

• GitLab Users Advised to Update Against Critical Flaw Immediately

• Will Generative AI Kill the Nigerian Prince Scam?

• CrowdStrike Fal.Con 2023: CrowdStrike Brings AI and Cloud Application Security to Falcon

• Feds raise alarm over Snatch ransomware as extortion crew brags of Veterans Affairs hit

• Forrester names Microsoft a Leader in the 2023 Zero Trust Platform Providers Wave™ report

• IT Security News Daily Summary 2023-09-20

• Kickstarting a Holistic SaaS Ecosystem Security Program

• Rethinking Quality Assurance in the Age of Generative AI

• 14 Types of Hackers to Watch Out For

• FBI, CISA Issue Joint Warning on ‘Snatch’ Ransomware-as-a-Service

• Fake WinRAR PoC Exploit Conceals VenomRAT Malware

• Experts found critical flaws in Nagios XI network monitoring software

• Signal adopts new alphabet jumble to protect chats from quantum computers

• Intel Launches New Attestation Service as Part of Trust Authority Portfolio

• Okta: Caesars, MGM hacked in social engineering campaign

• Intel Launches New Attestation Service as Part of Trust Authority Portfolio

• Okta: Caesars, MGM hacked in social engineering campaign

• 83% of IT Security Professionals Say Burnout Causes Data Breaches

• Bishop Fox Expands Leadership With First CISO and CTO

• OneLayer Expands Its Private Cellular Network Security Solutions to Operations and Asset Management

• Dig Security Enhances DSPM Platform to Secure Enterprise Data in On-Prem, File-Share Environments

• International Criminal Court hacked amid Russia investigations

• Meta targeted for fresh UK gov’t warning against E2E encryption for Messenger, Instagram

• Just Released and Ready for Download — Software Firewalls for Dummies

• How a data-driven approach to threat exposure can fix ‘the short blanket problem’

• International Criminal Court (ICC) Confirms Cybersecurity Incident

• Hackers and scammers target classrooms with ransomware. What can you do?

• 13 Cloud Security Best Practices & Tips for 2023

• It might Be Time to Rethink Phishing Awareness

• Forrester names Microsoft a Leader in the 2023 Zero Trust Platform Providers Wave™ report

• BT Confirms 3G Network Switch Off Will Begin January 2024

• Finnish Dark Web Marketplace PIILOPUOTI Seized

• Cyber insurance report shows surge in ransomware claims

• International Criminal Court Suffers Cyberattack

• Wing Security releases SaaS protection tier for mid-market companies

• Pot calls the kettle hack as China claims Uncle Sam did digital sneak peek first

• Is Wave Browser Safe ?

• How To Secure Your CI/CD Pipelines With Honeytokens

• Risk & Repeat: MGM, Caesars casino hacks disrupt Las Vegas

• How Choosing Authentication Is a Business-Critical Decision

• Donald Trump Jr.’s X account was hacked, spokesperson confirms

• AT&T Cybersecurity serves as critical first responder during attack on municipality

• ICC War Crime Tribunal Admits ‘Cybersecurity Incident’

• Fake YouTube Android Apps Used to Distribute CapraRAT

• Fake PoC Script Used to Trick Researchers into Downloading VenomRAT

• The Benefits of Dedicated Server Hosting for Online Retail

• cheqd’s Recent Rollout Focuses on Monetizing Digital Identity

• Schools Are the Most Targeted Industry by Ransomware Gangs

• Tor-Based Drug Marketplace Piilopuoti Shut Down by Law Enforcement

• Donald Trump Jr. X account was hacked, spokesperson confirms

• NordVPN Sonar helps internet users detect phishing emails

• McAfee Scam Protection blocks fake emails, texts, and social media links

• 1Password introduces mobile support for passkeys

• International Criminal Court Reveals System Breach and Plans to Bolster Security

• Investigation Exposes Covert Israeli Spyware Infecting Targets through Advertisements

• DDoS attacks behind Canada border agency problems

• CrowdStrike acquires Bionic

• China Accuses the US of Hacking Huawei Servers Since 2009

• The best VPN trials: Try for free

• Google Adds AI Chatbot Bard To Gmail, YouTube, Google Docs

• Bumblebee Malware Abuses WebDAV Protocol to Attack Organizations

• Nagios Monitoring Tool Vulnerabilities Let Attackers SQL Queries

• Your data is at risk from prying eyes. This USB drive will help keep it safe

• CISA, NFL, and Local Partners Conduct Cybersecurity Exercise in Preparation for Super Bowl LVIII

• Fake WinRAR Exploit PoC Drops VenomRAT Malware

• Marvell Disputes Claim Cavium Backdoored Chips For Uncle Sam

• The Signal Protocol Used By 1+ Billion People Is Getting A Post-Quantum Makeover

• Robocall Scammers Sentenced In US After Netting $1.2 Million

• Vast Majority Of Bot Attacks Emanate From China And Russia

• Akamai partners with Corero Network Security to improve DDoS protection for enterprises

• Cybellum launches Product Security Synergy Services

• Legit Security raises $40 million to address AI’s threats to applications

• Oracle Fusion Data Intelligence Platform enables users to achieve better business outcomes

• ‘Culturestreak’ Malware Lurks Inside GitLab Python Package

• Synopsys Recognised as a Leader in Static Application Security Testing by Independent Research Firm

• Barracuda’s Vigilance: Tackling Cyberattack Sophistication Head-On

• Mozilla Report Calls Modern Cars a ‘Privacy Nightmare’

• Forrester names Microsoft a Leader in the 2023 Zero Trust Platform Providers Wave™ report

• Why you can still trust (other) password managers, even after that LastPass mess

• DHS Publishes New Recommendations on Cyber Incident Reporting

• Discern Security Emerges From Stealth Mode With $3 Million in Funding

• Staying on Topic in an Off Topic World

• #NITAM: Average Annual Cost of Insider Incidents Reaches $16.2m Per Organization

• Changing Role of the CISO: A Holistic Approach Drives the Future

• Finnish Authorities Dismantle Notorious PIILOPUOTI Dark Web Drug Marketplace

• What is Alert Deafness?

• Robocall scammers sentenced in US after netting $1.2M via India-based call centers

• Pro-Iranian Attackers Target Israeli Railroad Network

• Siemens SIMATIC PCS neo Administration Console

• CISA Adds One Known Exploited Vulnerability to Catalog

• Omron Engineering Software

• FBI and CISA Release Advisory on Snatch Ransomware

• #StopRansomware: Snatch Ransomware

• The dark web drug marketplace PIILOPUOTI was dismantled by Finnish Customs

• UK Urges Meta Not To Add End-To-End Encryption

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Check Point Research exposes new versions of the BBTok banking malware, which targets clients of over 40 Mexican and Brazilian banks

• #mWISE: US to Implement Game-Changing Cyber Mandates on Medical Devices

• Critical Security Flaws Exposed in Nagios XI Network Monitoring Software

• NIS2: 2.Designate a responsible person or team

• Mirantis Lens AppIQ empowers developers to visualize application details

• Privacera integrates with Collibra to automate data governance and policy enforcement

• How to interpret the 2023 MITRE ATT&CK Evaluation results

• Cyber Security Today, Sept. 20, 2023 – A new online card-skimming campaign, new WinServer backdoors and more

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• California Law Restricting Companies’ Use of Information From Kids Online Is Halted by Federal Judge

• GitLab Patches Critical Pipeline Execution Vulnerability

• Atos Unify Vulnerabilities Could Allow Hackers to Backdoor Systems

• Sysadmin and spouse admit to part in ‘massive’ pirated Avaya licenses scam

• Will VR Finally Make it Through the ‘Hype Cycle’ Now Apple is in the Game?

• Why The Middle East Offers Exciting Prospects To UK Tech Businesses

• Exploring the Evolution and Impact of Computer Networks

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Legit Security lands $40M to lock down apps and dev environments

• The High Performance, Low Power Promise of Neuromorphic Computing

• Hackers Attacking Telecoms Servers With HTTPSnoop Malware

• Phone scams conducted using PayPal’s own invoicing service

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• International Criminal Court hit with a cyber attack

• On the Cybersecurity Jobs Shortage

• NETGEAR Orbi 970 Series enhances home connectivity

• VectorZero Active Data Vault 2.0 secures sensitive data

• Critical GitLab Pipeline Vulnerability Revealed. Users are urged to patch immediately

• Effective 7 Responses that should be given by CEOs and CTOs during a Cyber Attack

• Mobile security challenges in work from home environments

• Fortinet FortiOS Flaw Let Attacker Execute Malicious JavaScript Code

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Sophisticated Phishing Campaign Targeting Chinese Users with ValleyRAT and Gh0st RAT

• Fresh Wave of Malicious npm Packages Threaten Kubernetes Configs and SSH Keys

• Do You Really Trust Your Web Application Supply Chain?

• Amazon To Hire Former Microsoft Head Panos Panay – Report

• Hackers Deployed never-before-seen Linux Malware Attacking Government Entities

• Over 80% of Juniper Firewalls Vulnerable to Unauthenticated Code Execution

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• ‘Haywire’ Australian IT Skills Market Prompts Logicalis to Add Talent as a Service

• SASE Firm Cato Networks Raises $238 Million at $3 Billion Valuation

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Companies Rely on Multiple Methods to Secure Generative AI Tools

• Signal Messenger Introduces PQXDH Quantum-Resistant Encryption

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• International Criminal Court Reveals Security Breach

• GitLab addressed critical vulnerability CVE-2023-5009

• Cato Networks Raises $238M in Equity Investment at Over $3B Valuation

• Egnyte collaborates with Microsoft to drive the hybrid workforce

• Red Hat and Intel deliver open source industrial automation to the manufacturing shop floor

• Broaden your cyber security knowhow at CyberThreat 2023

• Neuralink To Begin Brain Implant Trial On Paralysed Patients

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Increasing Your Business’ Cyber Maturity with Fortra

• FBI’s Most Wanted Cybercriminals in 2023

• Secure Equipment Repair Policy and Confidentiality Agreement

• Brits Lose $9.3bn to Scams in a Year

• Finnish Authorities Shutter Dark Web Drugs Marketplace

• GitLab Releases Urgent Security Patches for Critical Vulnerability

• dBforums – 363,468 breached accounts

• Attacks on 5G Infrastructure From Users’ Devices

• BlackCat Ransomware Leveraging Remote Monitoring Tools to Encrypt Azure Storage

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Why performing security testing on your products and systems is a good idea

• Hackers Are Using AI For Cyberattacks. How Can We Stop Them?

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• AMBERSQUID: Novel Cryptojacking Attack Leverages AWS Services

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Trend Micro Releases Urgent Fix for Actively Exploited Critical Security Vulnerability

• Rising OT/ICS cybersecurity incidents reveal alarming trend

• 18 free Microsoft Azure cybersecurity resources you should check out

• What AppSec and developers working in cloud-native environments need to know

• Shadow IT: Security policies may be a problem

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Trend Micro addresses actively exploited zero-day in Apex One and other security Products

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Resilient networks: Building blocks of modern Cybersecurity architecture

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Strong compliance management is crucial for fintech-bank partnerships

• Security concerns and outages elevate observability from IT niche to business essential

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• UK Minister Warns Meta Over End-to-End Encryption

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• The State of Windows Digital Analysis, pt II

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Compromised Free Download Manager website was delivering malware for years

• Microsoft AI researchers accidentally exposed terabytes of sensitive data

• The mystery of the CVEs that are not vulnerabilities

• The privacy perils of the Metaverse

• Check Point Named a Leader in The Forrester Wave™: Zero Trust Platform Providers, Q3 2023

• Marvell disputes claim Cavium backdoored chips for Uncle Sam

Generated on 2023-09-21 23:56:06.845620