IT Security News Daily Summary 2024-01-19

• Chinese threat group exploited VMware vulnerability in 2021

• Friday Squid Blogging: New Foods from Squid Fins

• CISA Issues Emergency Directive on Ivanti Zero-Days

• Microsoft Actions Following Attack by Nation State Actor Midnight Blizzard

• Five ripped off IT giant with $7M+ in bogus work expenses, prosecutors claim

• Database Security: Best Practices and What You Need to Know

• Threat Modeling

• Using Pen Tests to Protect Your Company From Digital Threats

• How to Build a Data Foundation for Generative AI

• 7 Best Vulnerability Scanning Tools & Software for 2024

• Parrot TDS: A Persistent and Evolving Malware Campaign

• Zelle Is Using My Name and Voice without My Consent

• Companies Make it Too Easy for Thieves to Impersonate Police and Steal Our Data

• Cyber Security Today, Week in Review for the week ending Friday, Jan. 19, 2024

• CISA Issues Emergency Directive Requiring Federal Agencies to Mitigate Ivanti Connect Secure and Policy Secure Vulnerabilities

• China-linked APT UNC3886 exploits VMware zero-day since 2021

• Randall Munroe’s XKCD ‘Net Rotations’

• CISA Issues Emergency Directive on Ivanti Vulnerabilities

• Securing Digital Frontiers: The Essential Role of Network Access Control in Modern Cybersecurity

• Building a More Inclusive Cybersecurity Strategy Requires Public and Private Cooperation

• Iran’s Mint Sandstorm APT Hits Universities with Hamas-Israel Phishing Scam

• Securing Applications in ROKS Cluster

• Protecting Privacy in the Age of Edge AI: The Role of Homomorphic Encryption

• Ivanti EPMM and MobileIron Core vulnerability is actively exploited, CISA confirms (CVE-2023-35082)

• Virtual kidnapping: How to see through this terrifying scam

• Critical Vulnerabilities Found in Open Source AI/ML Platforms

• Latest OpenPubkey Project Initiative Makes SSH More Secure

• Cloud Security Is Best Achieved With The Right Preparation

• The hidden costs of pirated software: A cautionary tale for small businesses

• USENIX Security ’23 – Hidden Reality: Caution, Your Hand Gesture Inputs in the Immersive Virtual World are Visible to All!

• The best VPN routers of 2024: Expert researched

• Is Your Money Safe? SEC’s New Rules to Guard Against Cyber Threats

• 2023 ‘ASTORS’ Champ HID Enhances its PKI Offerings with ZeroSSL

• Canadian Man Stuck in Triangle of E-Commerce Fraud

• Ransomware attacks break records in 2023: the number of victims rose by 128%

• Ransomware attacks pushing suicidal tendencies among Cybersecurity professionals

• Innovation Unleashed: Indian AI and Robotics Giant Attains Level 5 Autonomy

• Lock down TeamViewer or pay a price

• Toronto to integrate IT systems after ransomware attacks on zoo, public library

• Top IT Trends in Australia for IT Pros to Prepare For in 2024

• U.S. CISA warns of actively exploited Ivanti EPMM flaw CVE-2023-35082

• US Charges Russian Involved in 2013 Hacking of Neiman Marcus, Michaels

• Anthropic Research Indicates That AI Algorithms May Turn Into “Sleeper Cell” Backdoors

• Bill Gates Explains How AI will be Transformative in 5 Years

• CISA & FBI released Incident Response Guide for WWS Sector

• 71 Million Emails Added to Have I Been Pwned From Naz.API Stolen Account List

• Ransomware Activity Surged in 2023, Likely to Evolve in 2024

• How to Shine in Your Next Cybersecurity Audit

• New Sophisticated NFT Airdrop Attack  Steals Funds From Victim’s Wallet

• What Do You Need to Know About DevOps Lifecycle Phases?

• Revolutionizing Kubernetes With K8sGPT: A Deep Dive Into AI-Driven Insights

• LoanDepot outage drags into second week after ransomware attack

• Driving a Cloud Operating Model in Education

• Thieves steal 35.5M customers’ data from Vans sneakers maker

• Experts Warn of macOS Backdoor Hidden in Pirated Versions of Popular Software

• How to Opt Out of Comcast’s Xfinity Storing Your Sensitive Data

• FTC bans another data broker from selling consumers’ location data

• Cyber Security Today, Jan. 19, 2024 – Vulnerabilities found in server firmware, a warning to Docker administrators, and more

• Google To Invest $1 Billion To Build UK Data Centre

• Critical “PixieFail” Flaws Expose Millions of Devices to Cyberattacks

• Black Hat Europe 2023 NOC: Threat Hunting

• VF Corp Says Data Breach Resulting From Ransomware Attack Impacts 35 Million

• Serious Vulnerability Spotted In Bosch Thermostat

• 5 Things to Consider Before Buying a File Integrity Monitoring (FIM) Solution

• US Gov Publishes Cybersecurity Guidance for Water and Wastewater Utilities

• Amazon Lays Off 5 Percent Of Staff At ‘Buy With Prime’ Unit

• YouTube Crypto Con: Scammers Rake in $600K with Deepfakes and QR Codes

• VMware vCenter Server Vulnerability Exploited in Wild

• Ivanti EPMM Vulnerability Targeted in Attacks as Exploitation of VPN Flaws Increases

• Preventing Data Loss: Backup and Recovery Strategies for Exchange Server Administrators

• Ransomware Attacks Rose 128 Percent In 2023, Report Finds

• This Top-Rated Data Recovery Tool is More Than $100 Off Now

• Russian Coldriver Hackers Deploy Malware to Target Western Officials

• Kansas State University suffered a serious cybersecurity incident

• The Quantum Computing Cryptopocalypse – I’ll Know It When I See It

• Experts Urge Clearer Direction in South Africa’s Cyber Strategy

• Microsoft at Legalweek: Secure data and gain efficiencies with Microsoft Purview eDiscovery enhanced by generative AI

• Npm Trojan Bypasses UAC, Installs AnyDesk with “Oscompatible” Package

• OSINVGPT – A Tool For Open-source Investigations

• Orange Spain Outage: BGP Traffic Hijacked by Threat Actor

• FBI & CISA Warns of risk to critical infrastructure by Chinese Drones

• Bigpanzi Bot Hacks 170,000+ Android TVs to Launch DDoS Attacks

• IT consultant fined for daring to expose shoddy security

• Navigating Cyber Threats in the Era of AI Weaponization

• Out with the old and in with the improved: MFA needs a revamp

• Hackers steal $7.5 million funds from US Health Department via email spoofing cyber attack

• New infosec products of the week: January 19, 2024

• U.S. Cybersecurity Agency Warns of Actively Exploited Ivanti EPMM Vulnerability

• Top Official Says Kansas Courts Need at Least $2.6 Million to Recover From Cyberattack

• Unlocking GenAI’s full potential through work reinvention

• Digital nomads amplify identity fraud risks

• Test Post

• US agencies warn made-in-China drones might help Beijing snoop on the world

• The Unseen Threats: Anticipating Cybersecurity Risks in 2024

• Unleashing the Power of OAuth Authentication in Computing

• The Role of AI in Business Operations

• CISA posts incident response guide for water utilities

• The Benefits of Using DCIM Software for Data Center Cable Management

• Vans, Supreme owner VF Corp says hackers stole 35 million customers’ personal data

• IT Security News Daily Summary 2024-01-18

• CISA and FBI Reveal Known Androxgh0st Malware IoCs and TTPs

• Akira Ransomware Attacks Surge. Finnish Companies Among Targets

• White House Revamps Cybersecurity Hiring Strategy

• Lawsuit Claims Over 100,000 Children On Facebook Are Sent Sex Abuse Material Every Day

• Cisco and Schneider Electric Are Creating Smarter, More Efficient Buildings

• Reduce Business Email Compromise with Collaboration

• USENIX Security ’23 – Xingman Chen, Yinghao Shi, Zheyu Jiang, Yuan Li, Ruoyu Wang, Haixin Duan, Haoyu Wang, Chao Zhang – MTSan: A Feasible and Practical Memory Sanitizer for Fuzzing COTS Binaries

• Defining Good: A Strategic Approach to API Risk Reduction

• A Q&A with Rubrik CEO and venture capitalist Bipul Sinha

• Significance of CMDB in Device Visibility To Control Unauthorized Access in Banks

• CISA adds Chrome and Citrix NetScaler to its Known Exploited Vulnerabilities catalog

• Is Temu safe? What to know before you ‘shop like a billionaire’

• Empowering Exceptional Digital Experiences at Cisco Live EMEA

• JPMorgan exec claims bank repels 45 billion cyberattack attempts per day

• What to do with that fancy new internet-connected device you got as a holiday gift

• Androxgh0st Malware Botnet Steals AWS, Microsoft Credentials and More

• Attackers Could Eavesdrop on AI Conversations on Apple, AMD, Imagination and Qualcomm GPUs

• Future of America’s Cyber Safety Review Board hangs in balance amid calls for rethink

• PixieFail Bugs in UEFI Open Source Implementation Threaten Computers

• Sam Altman Surprised At NYT Lawsuit

• Do you love or fear your smart home devices? For most Americans, it’s both

• Should the CIO be solely responsible for keeping AI in check? Info-Tech weighs in

• Web monitors say Gaza week-long internet outage is longest yet

• Court Bans Apple Watch Imports Amid Patent Dispute

• Meet Turbine Canvas and Embrace the Art of Powerful Simplicity

• Massive ‘New’ Leaked Credentials List: Naz.API Pwns Troy

• New Docker Malware Steals CPU for Crypto & Drives Fake Website Traffic

• TA866 Resurfaces in Targeted OneDrive Campaign

• Ransomware attacks hospitalizing security pros, as one admits suicidal feelings

• How Secure Is Cloud Storage? Features, Risks, & Protection

• Oracle Releases Critical Patch Update Advisory for January 2024

• AVEVA PI Server

• Incident Response Guide for the WWS Sector

• Spamhaus Blocklist (SBL) listings are moving

• Want to Justify Your IT Investments Faster? Measure Business Outcomes.

• Digitizing the Physical World: Insights from Cisco Live Melbourne and the Industrial IoT Industry Summit

• Time to bring order to Cyber Chaos

• Russian threat group spreading backdoor through phishing, says Google

• New TTPs observed in Mint Sandstorm campaign targeting high-profile individuals at universities and research orgs

• New Microsoft Incident Response guides help security teams analyze suspicious activity

• 70 million account credentials were leaked in a massive password dump

• GCHQ Releases Unseen Photos Of WW2 Colossus Computer

• Anonymous Sudan’s DDoS Attacks Disrupt Network at Israeli BAZAN Group

• What is a TPM, and why does your PC need one?

• SolarWinds breach news center

• Chainalysis observes decrease in cryptocurrency crime in 2023

• Unpatched Rapid SCADA Vulnerabilities Expose Industrial Organizations to Attacks

• New Malware Campaign Exploits 9hits in Docker Assault

• CISA, FBI and EPA Release Incident Response Guide for Water and Wastewater Systems Sector

• How to lock a file or folder in MacOS Finder – to save you from yourself

• CISA Releases One Industrial Control Systems Advisory

• EFF’s 2024 In/Out List

• Protect AI Report Surfaces MLflow Security Vulnerabilities

• As Deepfake of Sachin Tendulkar Surface, India’s IT Minister Promises Tighter Rules

• Vercara UltraSecure offers protection from malicious attacks

• Russian COLDRIVER Hackers Expand Beyond Phishing with Custom Malware

• Iranian Phishing Campaign Targets Israel-Hamas War Experts

• Students and teachers fight back cyber attack on University Network

• Sheryl Sandberg To Step Down From Meta’s Board

• Check Point Research Unfolds: Navigating the Deceptive Waters: Unmasking A Sophisticated Ongoing NFT Airdrop Scam

• Two more Citrix NetScaler bugs exploited in the wild

• GitHub, PyTorch and More Organizations Found Vulnerable to Self-Hosted Runner Attacks

• Creator of ‘Ready Player One’ Ventures into Launching Metaverse

• VulnCheck IP Intelligence identifies vulnerable internet-connected infrastructure

• Wordfence Intelligence Weekly WordPress Vulnerability Report (January 8, 2024 to January 14, 2024)

• Multichain Inferno Drainer Abuse Web3 Protocols To Connect Crypto Wallets

• AI trends: A closer look at machine learning’s role

• Drupal Releases Security Advisory for Drupal Core

• Google TAG warns that Russian COLDRIVER APT is using a custom backdoor

• Software Supply Chain Security Startup Kusari Raises $8 Million

• Data is the Missing Piece in the AI Jigsaw, Here’s How to Bridge the Gap

• Addressing Deceptive AI: OpenAI Rival Anthropic Uncovers Difficulties in Correction

• N-able MDR ingests data from existing security and IT tools

• Poorly secured PostgreSQL, MySQL servers targeted by ransomware bot

• ‘Stablecoins’ Enabled $40 Billion in Crypto Crime Since 2022

• Are You Ready for PCI DSS 4.0?

• Energy Department to Invest $30 Million in Clean Energy Cybersecurity Solutions

• Russian APT Known for Phishing Attacks Is Also Developing Malware, Google Warns

• SOC-as-a-Service: The Five Must-Have Features

• Oleria raises $33 million to accelerate its product innovation

• Google TAG: Kremlin cyber spies move into malware with a custom backdoor

• Google says Russian espionage crew behind new malware campaign

• How AI-Powered Security Capabilities Implement Real-Time Cybersecurity

• Illicit Cryptocurrency Flows Drop 39% in 2023

• Reduce API Security Risk by Fixing Runtime Threats in Code Faster

• What is the Windows Security Account Manager (SAM)?

• List Containing Millions of Credentials Distributed on Hacking Forum, but Passwords Old

• Oleria Secures $33M Investment to Grow ID Authentication Business

• ESET launches MDR service to improve cybersecurity for SMBs

• Exploring malicious Windows drivers (Part 1): Introduction to the kernel and drivers

• How Do You Protect Your APIs From DDoS Attacks?

• MFA Spamming and Fatigue: When Security Measures Go Wrong

• TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks

• Cisco Secure Equipment Access wins “IoT Security Innovation of the Year” in the 2024 IoT Breakthrough Awards

• Samsung Embeds Google’s AI Tech In S24 Smartphones

• Canadian Citizen Gets Phone Back from Police

• Customer Information of Toyota Insurance Company Exposed Due to Misconfigurations

• Malware Exploits 9Hits, Turns Docker Servers into Traffic Boosted Crypto Miners

• PixieFail: Nine flaws in UEFI open-source reference implementation could have severe impacts

• DevOps’ Big Challenge: Limiting Risk Without Impacting Velocity

• Webinar: Managing Without Governing? Why Your Organization Needs a Management System to Govern Your Information Resilience Program

• ChatGPT For Enterprises Is Here – But CEOs First Want Data Protections

• Why is data security important?

• Swimlane enhances Turbine platform to alleviate the pressure on SecOps teams

• Google CEO Warns Staff To Expect More Job Cuts – Report

• Ransomware Group Targets Foxconn Subsidiary Foxsemicon

• Outsmarting Ransomware’s New Playbook

• Sourcepoint introduces sensitive data opt-in feature to prepare users for privacy changes

• FBI: Androxgh0st Malware Building Mega-Botnet for Credential Theft

• Vast botnet hijacks smart TVs for prime-time cybercrime

• VMware: Plug critical Aria Automation hole immediately! (CVE-2023-34063)

• Citrix NetScaler 0-day Vulnerability Exploited In The Wild, CISA Urges Patching

• Enter the era of platform-based cloud security

• PixieFail UEFI Flaws Expose Millions of Computers to RCE, DoS, and Data Theft

• NCSC Builds New “Cyber League” Threat Tracking Community

• Confessions on MFA and Security Best Practices

• JinxLoader Malware: Next-Stage Payload Threats Revealed

• HealthEC Data Breach Impacts 4.5 Million Patients

• Navigating the Debian 10 EOL: A Guide to the Future

• Hackers Deploying Androxgh0st Botnet Malware that Steals AWS, Microsoft Credentials

• iShutdown lightweight method allows to discover spyware infections on iPhones

• Your iPhone is at risk – Signs of Viruses You Shouldn’t Ignore!

• Attribute-based encryption could spell the end of data compromise

• Fujitsu issues apology for IT and Data Privacy scandal of UK Post Offices

• Skytrack: Open-source aircraft reconnaissance tool

• Ransomware negotiation: When cybersecurity meets crisis management

• Iranian Hackers Masquerade as Journalists to Spy on Israel-Hamas War Experts

• Adversaries exploit trends, target popular GenAI apps

• The power of AI in cybersecurity

• Business Continuity Planning: Ensuring Tech Resilience

• Navigating the Dark Web: Business Risks and Precautions

• Insurance website’s buggy API leaked Office 365 password and a giant email trove

• A fortified approach to preventing promo, bonus, and other multi-account abuse

• Embracing a risk-based cybersecurity approach with ASRM

• The Perils of Platformization

• USENIX Security ’23 – FloatZone: Accelerating Memory Error Detection using the Floating Point Unit

• Calling Home, Get Your Callbacks Through RBI

Generated on 2024-01-19 23:55:50.482275