IT Security News Daily Summary 2024-01-03

• Terrapin Flaw, CVE-2023-48795, Leaves 11 million SSH Servers Vulnerable

• Facebook Introduces New Tool To Track The Websites You Visit

• Freight giant Estes refuses to deliver ransom, says personal data opened and stolen

• Crypto losses declined over 50% in 2023

• SentinelOne Snaps up Seed-Stage CNAPP Startup PingSafe

• Aqua Security Scores $60M Series E Funding

• Scammers Selling Twitter (X) Gold Accounts Fueling Disinfo, Phishing

• What is Adversary-in-the-Middle AITM Attack?

• CISA ADDS CHROME AND PERL LIBRARY FLAWS TO ITS KNOWN EXPLOITED VULNERABILITIES CATALOG

• Comprehensive Guide to Fraud Detection, Management, & Analysis

• Human Behavior In Digital Forensics

• Hacking Protected Java-Based Programs

• What the cybersecurity workforce can expect in 2024

• Why Google Settles $5B Lawsuit Over User Tracking- Analysis

• Randall Munroe’s XKCD ‘Iceland’

• Abnormal Security Shares Examples of Attacks Using Generative AI

• Victory! Police Drone Footage is Not Categorically Exempt From California’s Public Records Law

• Over 100 European Banks Face Cyber Resilience Test

• T-Mobile US Confirms SpaceX Satellite ‘Direct to Cell’ Launch

• Power of Flexible Tech: Applying Conference Room Tech to Front Lines

• Worried about online privacy and security? This browser protects you more than Firefox

• Developers, watch your code: Official Python respository spread malicious projects

• Uncertainty Is the Biggest Challenge to Australia’s Cyber Security Strategy

• 23andMe tells victims it’s their fault that their data was breached

• Massive Fallon Ambulance Data Breach Impacts Nearly One Million People

• Canadian Senator temporarily loses control of X account

• Mend’s Handy Guide to Using EPSS Scores

• CyberTalk Series: MSP Challenges: Managed Security Services with Ken Patterson

• USENIX Security ’23 – ‘Auditing Frameworks Need Resource Isolation: A Systematic Study On The Super Producer Threat To System Auditing And Its Mitigation’

• Facebook’s New Privacy Nightmare: ‘Link History’

• Flaw in Black Basta Ransomware Exploited to Create Decryptor

• Intel Spins Out AI Firm Articul8, With DigitalBridge Backing

• Cloud-native cybersecurity startup Aqua Security raises $60M and remains a unicorn

• Three New Malicious PyPI Packages Deploy CoinMiner on Linux Devices

• SonicWall Buys Banyan Security For ZTNA Technology

• Stolen Gold X accounts are increasingly being peddled on dark web, says report

• Cyber Kidnapping picks pace in the United States

• Value Of Twitter/X Falls 71 Percent Since Elon Musk Takeover – Report

• Google, Meta, TikTok Russian Debts Removed From Bailiff Database – Report

• Montana Appeals, After Judge Blocked State Ban On TikTok Use

• Vulnerability Recap – 1/2/2024 – Barracuda ESG, Apache OfBiz Vulnerabilities Persist

• Don’t trust links with known domains: BMW affected by redirect vulnerability

• The best iOS fax app to protect your privacy

• VPN to protect against DDoS attacks on Twitch

• Atos confirms talks with Airbus over cybersecurity wing sale

• Hacker Conversations: Runa Sandvik

• Several Infostealers Using Persistent Cookies to Hijack Google Accounts

• Over 900k Impacted by Data Breach at Defunct Boston Ambulance Service

• HTTP/2 Rapid Reset Mitigation With Imperva WAF

• Records of Crucial Cases May Have Been Compromised by a Cyberattack on Victoria’s Court System

• New Google Cookies Exploit Allows Access After Password Reset

• Google Settles $5B Lawsuit Over User Tracking- Analysis

• I added a hardware security key to my MacBook, and it made my logins faster and safer

• Court Hearings Become Ransomware Concern After Breach

• October 2023 Cyber Attack Statistics

• Future Health: AI’s Impact on Personalised Care in 2024

• Exploring the Security Risks of Large Language Models

• Identity as a Service (IDaaS): The Future of Secure and Convenient Authentication

• Xerox Confirms Data Breach At US Subsidiary Following Ransomware Attack

• How A Group Of Train Hackers Exposed A Right-To-Repair Nightmare

• Qualcomm Chip Vulnerability Enables Remote Attack By Voice Call

• Palestinian Hackers Hit 100 Israeli Organizations in Destructive Attacks

• Cybersecurity M&A Roundup: 25 Deals Announced in December 2023

• “Pink Drainer” Siphons $4.4 Million Chainlink Through Phishing

• Hangzhou’s Cybersecurity Breakthrough: How ChatGPT Elevated Ransomware Resolution

• Zeppelin2 Ransomware: An Emerging Menace in the Dark Web Ecosystem

• Comcast-Owned Telcom Business ‘Xfinity’ Suffers Data Breach

• The Top 6 Cybersecurity Threats Businesses Must Tackle in 2024

• New Xamalicious Backdoor Infects 25 Android Apps, Affects 327K Devices

• Is your ID badge giving away too much about you?

• Microsoft Defender for Endpoint is Integrated with Check Point Horizon XDR/XPR

• Why effective cybersecurity is important for businesses

• CISOs Take Note — Don’t Let AI Adoption Outpace Due Diligence

• The Kubernetes Cost Features You Need in 2024

• Best of 2023: Diamond Model of Intrusion Analysis: A Quick Guide

• Fake and Stolen X Gold Accounts Flood Dark Web

• SonicWall acquires Banyan to boost zero-trust, SSE offerings

• Copy that? Xerox confirms ‘security incident’ at subsidiary

• Malware Using Google MultiLogin Exploit to Maintain Access Despite Password Reset

• 21 New Mac Malware Families Emerged in 2023

• SonicWall acquires Banyan Security

• BT Misses Deadline For Huawei Equipment Removal From Core Network

• Xerox Confirms Data Breach at US Subsidiary Following Ransomware Attack

• The Importance of SOC 2 Templates

• SMTP Smuggling: New Flaw Lets Attackers Bypass Security and Spoof Emails

• 5 Ways to Reduce SaaS Security Risks

• Hackers stole more than $81 million worth of crypto assets from Orbit Chain

• Russia Spies on Kyiv Defenses via Hacked Cameras Before Missile Strikes

• Xerox Business Solutions Reveals Security Breach

• Google Kubernetes Engine Vulnerabilities Could Allow Cluster Takeover

• Is Cybercrime Only Going to Get Worse?

• CI/CD Security: Advanced Best Practices to Secure Your Pipelines

• TechRepublic Premium Editorial Calendar: Policies, Checklists, Hiring Kits and Glossaries for Download

• VoIP Firm XCast Agrees to Settle $10m Illegal Robocall Case

• Formal ban on ransomware payments? Asking orgs nicely to not cough up ain’t working

• DOJ Slams XCast with $10 Million Fine Over Massive Illegal Robocall Operation

• As Digital Payments Explode in Popularity, Cybercriminals are Taking Notice

• Why Continuous Training Must Come Before The AI-driven SDLC

• How to Secure virtual machines (VMs) in cloud computing environments

• Understanding the Escalating Threat of Web DDoS Tsunami Attacks

• Learn How to Decrypt Black Basta Ransomware Attack Without Paying Ransom

• Cybersecurity challenges emerge in the wake of API expansion

• Emerging cybersecurity trends and expectations for 2024

• Facts and misconceptions about cybersecurity budgets

• Legal, compliance and privacy leaders anxious about rapid GenAI adoption

• 29 malware families target 1,800 banking apps worldwide

• Cybersecurity Curriculum Development Tips for Schools

• New DLL Hijacking Technique Let Attackers Bypass Windows Security

• Ukraine’s SBU said that Russia’s intelligence hacked surveillance cameras to direct a missile strike on Kyiv

• Cybersecurity New Year’s resolutions every enterprise leader (and user) should make

• IT Security News Daily Summary 2024-01-02

• States and Congress Wrestle With Cybersecurity After Iran Attacks Small Town Water Utilities

• New SEC Cybersecurity Reporting Rules Take Effect

• Vulnerability Summary for the Week of December 25, 2023

• Fake Facebook Ads Scam Tens Of Thousands Of Dollars From Small Business Owner

• Ban ransomware payments, Emsisoft urges governments

• Safeguarding Patient Health Data Means Balancing Access and Security

• cybercrime

• Weekly Vulnerability Recap – January 2, 2024 – Barracuda ESG, Apache OfBiz Vulnerabilities Persist

• CISA Adds Two Known Exploited Vulnerabilities to Catalog

• Pros and cons of 10 common hybrid cloud use cases

• USENIX Security ’23 – Cong Zhang, Yu Chen, Weiran Liu, Min Zhang, Dongdai Lin – ‘Linear Private Set Union From Multi-Query Reverse Private Membership Test’

• Quantum computing will enable a safer, more secure world

• Defunct Ambulance Service Data Breach Impacts Nearly 1 Million People

• Researchers released a free decryptor for Black Basta ransomware

• Google password resets not enough to stop these info-stealing malware strains

• Are Security Appliances fit for Purpose in a Decentralized Workplace?

• GKE Case Highlights Risks of Attackers Chaining Vulnerabilities

• Navigating the Complex World of Capital Markets with Technology

• Juniper Releases Security Advisory for Juniper Secure Analytics

• Google Cloud Report Spotlights 2024 Cybersecurity Challenges

• Coffee Briefing Jan. 2 – Ski and Snowboard Cybersecurity Conference; Federal government provides update on connectivity targets; Montreal company secures pre seed investment to fuel AI growth; and more

• Exploiting an API with Structured Format Injection

• What is Security Posture?

• Free Decryptor Released for Black Basta Ransomware

• Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old

• Cybersecurity Predictions And Challenges in 2024

• The 10 best cloud security certifications for IT pros in 2024

• Court hearings become ransomware concern after justice system breach

• New DLL Search Order Hijacking Technique Targets WinSxS Folder

• Time to Guard : Protect Your Google Account from Advanced Malware

• Google Patches Around 100 Security Bugs

• New DLL Search Order Hijacking Variant Evades Windows 10 and 11 Protections

• Tesla AI Robot Attacks raises concerns over Cybersecurity

• Tesla Expands Market Share Lead In Norway

• DWP Clarifies What Bank Accounts are Targeted in Crackdown on Benefit Fraud

• Tesla Loses Top Electric Car Spot To China’s BYD

• New DLL Search Order Hijacking Technique Targets WinSxS folder

• Two Cyber Scammers Arrested; Police Uncover Transactions of ₹60 crore in Bank Accounts

• 2024 Tech Landscape: AI Evolution, Emotion Tech Dominance, and Quantum Advances

• So You Want to be a Leader in Cybersecurity? Follow this Path

• ASML Says Chip System Export Licence For China Partially Revoked

• Experts warn of JinxLoader loader used to spread Formbook and XLoader

• Bitcoin Surges Over $45,000 Amidst Fund Speculation

• Iranian Food Delivery Giant Snappfood Cyber Attack: 3TB of Data Stolen

• New DLL Hijacking Technique Let Attackers Bypass Windows Security Mechanisms

• Over $80m in Crypto Stolen in Cyber-Attack on Orbit Chain

• Multiple Flaws in Google Kubernetes Engine Let Attackers Escalate Privileges

• Multiple Orgs In Iran Were Breached By A Mysterious Hacker

• Bitcoin Climbs Above $45,000 For First Time Since April 2022

• Hackers Hit Australian State’s Court Recording Database

• Best of 2023: Western Digital Hacked: ‘My Cloud’ Data Dead (Even Local Storage!)

• FBI makes a move against ALPHV/Blackcat, the cybergang fights back

• US Chief Justice Urges ‘Caution And Humility’ With AI

• What It’s Like to Use Apple’s Lockdown Mode

• Xiaomi Aims To Become ‘Top Five’ Car Maker With SU7 EV

• Hackers Attack UK’s Nuclear Waste Services Through LinkedIn

• Australian Court Service Hacked, Hearing Recordings at Risk

• Terrapin attack allows to downgrade SSH protocol security

• Google Settles $5 Billion Privacy Lawsuit Over Tracking Users in ‘Incognito Mode’

• The Definitive Enterprise Browser Buyer’s Guide

• Unlocking the Potential: Blockchain’s Impact on the Oil and Gas Industry

• Teen Found Alive After “Cyber-Kidnapping” Incident

• BYD Close To Passing Tesla As World’s Biggest EV Maker

• What Is the Future and Technology of Zero Trust?

• Multiple organizations in Iran were breached by a mysterious hacker

• Black Basta Ransomware Decryptor Published

• Alert: New Chrome Zero-Day Vulnerability Being Exploited

• Poor Patch Management in Cybersecurity

• 10 Most Common Types of Cyber Attacks in 2023

• 650,000+ Malicious Domains Registered Resembling ChatGPT

• Australia Victoria State Court System data breach by Russia

• Key cybersecurity skills gap statistics you should be aware of

• Hackers employ nuanced tactics to evade detection

• Cybercriminals set their sights on crypto markets

• Wi-Fi 7’s mission-critical role in enterprise, industrial networking

• Securing Educational Robots: IoT Security in Robotics Education

• Teaching Digital Ethics: Navigating the Digital Age

• Welcome To 2024

Generated on 2024-01-03 23:55:40.999492