IT Security News Daily Summary 2023-11-27

• Multiple Vulnerabilities Found In ownCloud File Sharing App

• Threat actors targeting critical OwnCloud vulnerability

• IndiHome – 12,629,245 breached accounts

• Ardent Health Hospitals Disrupted After Ransomware Attack

• General Electric, DARPA Hack Claims Raise National Security Concerns

• CyberTalk Series: MSP and MSSP SaaS Security and Management Challenges in 2023 and Goals for 2024 with George Smith

• How generative AI will enhance cybersecurity in a zero-trust world

• The 3 biggest risks from generative AI – and how to deal with them

• Section 702 Surveillance Reauthorization May Get Slipped Into ‘Must-Pass’ NDAA

• Sustainability 101: What is the circular economy?

• Ukraine’s intelligence service hacked Russia’s Federal Air Transport Agency, Rosaviatsia

• Randall Munroe’s XKCD ‘Thanksgiving Arguments’

• Guardians of the Cloud: Navigating the Advanced Frontiers of Cybersecurity

• Canada, U.S. sign international guidelines for safe AI development

• Microsoft Defender Lures Researchers With Bug Bounty Program

• General Electric Probes Security Breach as Hackers Sell DARPA-Related Access

• Resilience in a Time of Uncertainty: National Chemical Security During the CFATS Lapse

• Transforming career development through AI

• How We Fundraise

• Digital Rights Updates with EFFector 35.15

• Russia Places Meta Spokesman On Wanted List

• Algorithms soon will run your life – and ruin it, if trained incorrectly

• Trio of major holes in ownCloud expose admin passwords, allow unauthenticated file mods

• Ransomware ‘catastrophe’ at Fidelity National Financial causes panic with homeowners and buyers

• Vulnerability Summary for the Week of November 20, 2023

• How to Handle Retail SaaS Security on Cyber Monday

• Advertising Exodus To Cost Elon Musk’s X $75m – Report

• Securing the Cloud: Navigating the Frontier of Cloud Security

• Australia directs businesses to apply critical security patches faster

• Businessman Warns People To “Never Ever” Buy Anything From Facebook Advertisers After Deepfake Scam

• Hamas-Linked APT Wields New SysJoker Backdoor Against Israel

• Meta Sued for Ignoring its Underage Kids Problem (Because Money)

• Cyberattack on legal tech provider causing widespread disruption to UK law firms

• Building a greener tomorrow: the power of partnerships

• Critical ownCloud Flaws Lead to Sensitive Information Disclosure, Authentication Bypass

• Top 5 Questions from the World’s Largest CMMC Event

• UK, South Korea Warn of North Korea Supply-Chain Attacks

• Cybersecurity Incident Hits Fidelity National Financial

• Konni RAT Malware Campaign Spreads Via Malicious Word Files

• US, UK, Others Agree ‘Secure By Design’ AI

• Leader Of Killnet Crew Unmasked By Russian State Media

• Do Kwon’s Extradition Approved, But Destination Is Unclear

• ownCloud Flaws Lead To Sensitive Info Disclosure, Auth Bypass

• Hackers Hijack Industrial Control System At US Water Utility

• Appscook Data Breach: App Used by Hundreds of Schools Leak Children’s Data

• AWS re:Invent grabs the spotlight, with cloud, cybersecurity and AI in a business focus

• Fortanix Key Insight discovers and remediates data security risks in hybrid multicloud environments

• SysJoker Malware: Hamas-Related Threat Expands With Rust Variant

• GE servers hacked n DARPA Military Info Leaked

• New Alerts Issued For CitrixBleed Flaw Following Active Exploits

• Binance Founder Zhao Pleads To Leave United States

• ChatGPT Applications: Unleashing the Potential Across Industries

• CRN Names Check Point’s Christina Ruth to its 2023 Channel Women on the Rise List

• Iranian hacker group Cyber Av3ngers hacked the Municipal Water Authority of Aliquippa in Pennsylvania

• Henry Schein Again Restoring Systems After Ransomware Group Causes More Disruption

• Private Data Of 185,000 Customers Stolen in AutoZone Cyber Attack

• You Don’t Need to Turn Off Apple’s NameDrop Feature in iOS 17

• Study Finds Amazon, eBay and Afterpay as Top Android User Data Collectors

• DPRK Hackers Exploit MagicLine4NX Zero-day in Supply Chain Attacks

• NukeSped Malware Exploiting Apache ActiveMQ Vulnerability

• A New Telekopye Bots That Tricks Users to Steal Payment Details

• Cybersecurity tool investments are rising in Asia-Pacific as Cyberattacks grow

• How generative AI  will enhance cybersecurity in a zero-trust world

• Data De-Identification: Balancing Privacy, Efficacy & Cybersecurity

• Return to Sender: Why DMARC is no longer a “nice to have”

• Leader of pro-Russia DDoS crew Killnet ‘unmasked’ by Russian state media

• Hacktivism: What’s in a Name… It May be More Than You Expect

• US, UK Cybersecurity Agencies Publish AI Development Guidance

• Data Breach Threat: OwnCloud Users Urged to Patch Vulnerabilities Now

• Australia’s Cyber Strategy: No Ransomware Payment Ban

• Crypto Investors Face Nearly $1M in Losses Due to Rug Pull Schemes

• Veracode’s latest innovations help developers enhance cloud-native security

• Small Business Cybersecurity Hampered by Fear of Change, Judgement

• Security is an Economically Resilient Market: Strategies for Uncertain Times

• Released: AI security guidelines backed by 18 countries

• The Importance of DevOps Engineers for Your Business

• Managing SELinux Policies: Implementing and Customizing

• PyPI Malicious Packages with Thousands of Downloads Targeting Python Developers

• Cyber Security Today, Nov. 27, 2023 – Ransomware gang posts data stolen from a Canadian POS provider, and more

• Experts Uncover Passive Method to Extract Private RSA Keys from SSH Connections

• UK, Korea Warn of DPRK Supply Chain Attacks Involving Zero-Day Flaws

• Fidelity National Financial Takes Down Systems Following Cyberattack

• Elon Musk To Meet Israeli President Amid Anti-Semitism Row

• Hackers compromised sensitive data of Rivers Casino employees and customers

• Silicon In Focus Podcast: Tech and Mental Health

• Nissan To Invest £3bn, Switch All UK Models To Full Electric

• Konni Group Uses Weaponized Word Documents to Deliver RAT Malware

• Hackers Hijack Industrial Control System at US Water Utility

• Trellix accelerates threat detection and response with GenAI capabilities

• Leader of pro-Russia DDoS crew Killnet unmasked by Russian state media

• Guarding the Grid: Navigating the Current and Future Landscape of Utility Cybersecurity

• PoC for Splunk Enterprise RCE flaw released (CVE-2023-46214)

• MDP warns parents about this iOS feature

• Modern Attack Surface Management for Cloud Teams

• NIST NCCoE Publishes Cybersecurity Framework Profile for Hybrid Satellite Networks

• KyberSwap Says Hackers Stole $55m in Crypto

• Education is the foundation of modern cyber defence

• Computer Equipment Disposal policy

• Keep Web Traffic Streamlined and Safe With This $29.99 DNS

• Ransomware-hit British Library: Too open for business, or not open enough?

• UK Publishes First Guidelines on Safe AI Development

• General Electric Investigates Alleged DARPA Breach

• MOVEit Hack : Over 185,000 AutoZone Users Personal Data Hacked

• A week in security (November 20 – November 26)

• Balancing Simplicity and Security in the Digital Experience

• The hack of MSP provider CTS potentially impacted hundreds of UK law firms

• U.S., U.K., and Global Partners Release Secure AI System Development Guidelines

• OpenSSL 3.2.0 released: New cryptographic algorithms, support for TCP fast open, and more!

• North Korean Hackers Exploiting Zero-day Vulnerabilities & Supply Chains

• Topics to study for job in Artificial Intelligence

• DarkGate Malware-as-a-Service Evolved as Complete Toolkit

• Comprehensive Cyber Security Audit Checklist for 2024

• A Comprehensive Guide to Writing a Cyber Security Audit Report

• A Comprehensive Guide to Software Penetration Testing

• AWS Kill Switch: Open-source incident response tool

• Windows 11 new update bolsters cybersecurity of healthcare

• Crypto crasher Do Kwon’s extradition approved, but destination is unclear

• Why it’s the perfect time to reflect on your software update policy

• Security leaders on high alert as GenAI poses privacy and security risks

• Jam Tangan – 434,784 breached accounts

• Vulnerability disclosure: Legal risks and ethical considerations for researchers

• Beijing fosters foreign influencers to spread its propaganda

• Pentagon’s AI Initiatives Accelerate Hard Decisions on Lethal Autonomous Weapons

• Building cyber resilience for tomorrow’s threats

• Cyber-Physical Systems: Where the Digital and Physical Worlds Converge

• CISA and UK NCSC Unveil Joint Guidelines for Secure AI System Development

• DHS CISA and UK NCSC Release Joint Guidelines for Secure AI System Development

• IT Security News Weekly Summary – Week 47

• IT Security News Daily Summary 2023-11-26

• Facebook Approves Ads Calling For Genocide, Assassination, And More

• DEF CON 31 – Ricky Lawshae’s ‘Fantastic Ethertypes and Where to Find Them’

• Taj Hotels Faces Data Breach, Revealing Data of 1.5 Million Customers

• Private and Secure Web Search Engines: DuckDuckGo, Brave, Kagi, Startpage

• Seventy One Percent of Employers Might Fall Behind in the Race for Generative AI, BTG Report Warns

• How to Stay Protect From Cybercrimes in This Holiday Season?

• Laptops with Windows Hello Fingerprint Authentication Vulnerable

• Security Affairs newsletter Round 447 by Pierluigi Paganini – INTERNATIONAL EDITION

• Week in review: LockBit exploits Citrix Bleed, Apache ActiveMQ bug exploited for cryptojacking

• Big Data and Analytics: The Engine Driving Insights

• Post-Quantum Cryptography: Safeguarding the Digital Future and Bolstering Security in Critical Sectors

• With Americans Traveling More Than Ever Before, It’s Time Businesses Increase Their Mobile Security Efforts

Generated on 2023-11-27 23:55:41.435773