IT Security News Daily Summary 2024-02-05

• Enpass Review 2024: Pricing, Features, Pros, & Cons

• Clorox counts the cost of cyberattack

• The Trusted Liquid Workforce

• The Journey to CCDE, a Personal Story

• Ivanti devices hit by wave of exploits for latest security hole

• US to Roll Out Visa Restrictions on People Who Misuse Spyware to Target Journalists, Activists

• AnyDesk hacked, details unclear

• VulnRecap 2/5/24 – Azure, Apple, Ivanti, & Mastodon at Risk

• More mass exploits hit the same buggy Ivanti devices

• Pass Canadian AI law as soon as possible, expert tells Parliament

• The best VPN deals right now

• Facebook Oversight Board Says Company’s Rules Allow Fake Video Calling Biden Pedophile

• Experts warn of a surge of attacks targeting Ivanti SSRF flaw

• Vulnerability Summary for the Week of January 29, 2024

• Ignore Uncle Sam’s ‘voluntary’ cybersecurity goals for hospitals at your peril

• Snap Cuts 10 Percent Of Staff

• Safeguard Your Network in a Post-Quantum World

• AnyDesk revokes signing certs, portal passwords after crooks sneak into systems

• Shadow AI poses new generation of threats to enterprise IT

• Google Contributes $1 Million to Rust, Says It Prevented Hundreds of Android Vulnerabilities

• Mitsubishi Electric Factory Automation Flaws Expose Engineering Workstations

• Survey Surfaces Willingness to Switch Data Protection Platforms

• CFO Deepfake Fools Staff — Fakers Steal $26M via Video

• AsyncRAT Loader Delivers Malware via JavaScript

• CSO’s Guide: Water-Tight Account Security For Your Company

• Firm offers protection layer preventing sensitive data uploaded to ChatGPT

• ‘Control D for Organizations’ Launched – Democratizing Cybersecurity for Organizations of All Sizes

• Cybersecurity Tops 2024 Global Business Risks

• Mispadu Malware Exploits Windows SmartScreen Flaw to Attack Users

• Improving Interoperability Between Rust and C++

• 6 multi-cloud identity management tips and best practices

• HopSkipDrive says personal data of 155,000 drivers stolen in data breach

• How to hack the Airbus NAVBLUE Flysmart+ Manager

• Deepfake Fraud

• Belarusian National Linked to BTC-e Faces 25 Years for $4 Billion Crypto Money Laundering

• Python Info-stealer Distributed by Malicious Excel Document

• Cybersecurity Crisis on US Healthcare Sector Children Hospital in Alarms

• Congratulations to Cisco’s 2024 CRN Channel Chiefs!

• Privileged Accounts 101: Everything You Need to Know

• Top Trends in Cybersecurity, Ransomware and AI in 2024

• Pennsylvania Courts’ Website Disrupted by DoS Attack

• Interpol’s Operation ‘Synergia’ Secures Numerous Cybercriminal Arrests, Disrupts Global C2s

• Cloudflare Faces Cybersecurity Breach in Okta Supply-Chain Attack

• Local File Inclusion Vulnerability Patched in Shield Security WordPress Plugin

• Huawei ‘Faces Production Bottleneck’ Amidst AI, 5G Chip Success

• Data Lineage in Modern Data Engineering

• How to spot the bad actors this awards season

• Lurie Children’s Hospital back to pen and paper after cyberattack

• QNAP Patches High-Severity Bugs in QTS, Qsync Central

• AnyDesk Revokes Certificates, Urges Password Changes After Attack

• RBI Issues Warning Against Scam Via KYC trick

• Varonis MDDR helps organizations prevent data breaches

• Deepfaked video conference call makes employee send $25 million to scammers

• Employee Duped by AI-Generated CFO in $25.6M Deepfake Scam

• Remote access giant AnyDesk resets passwords and revokes certificates after hack

• Are Passwords Killing Your Customer Experience?

• Huawei Retakes Top China Smartphone Sales Spot

• Thoma Bravo takes critical event management software company Everbridge private in $1.5B deal

• Metomic for ChatGPT identifies critical risks in ChatGPT conversations

• OPSWAT enhances its MetaDefender Kiosk product line

• US Condemns Iran, Issues Sanctions for Cyber-Attacks on Critical Infrastructure

• Secureworks Applies Multiple Forms of AI to Assess Threat Risks

• Ex-CIA Developer Faces 40-Year Sentence for Leaking Classified Data to WikiLeaks

• Cyber Security Today, Feb. 5, 2024 – Warnings to AnyDesk and Mastodon administrators, a lesson from a Cloudflare breach, and more

• Airbus App Vulnerability Introduced Aircraft Safety Risk: Security Firm

• Google Open Sources AI-Aided Fuzzing Framework

• Two Practical Examples of Modern Cloud SecOps

• Facebook Manipulated Media Policy ‘Incoherent’, Board Finds

• Synthetic Solutions: Redefining Cybersecurity Through Data Generation in the Face of Hacking

• How to comply with GDPR requirements

• AnyDesk has been hacked, users urged to change passwords

• AnyDesk Hit by Cyber-Attack and Customer Data Breach

• Tesla Recalls More Than 2 Million Cars Over Warning Light Size

• AnyDesk Hacked: Revokes Passwords, Certificates in Response

• OT Maintenance Is Primary Source of OT Security Incidents: Report

• Vix Makes Travels Safer and Smoother With Proactive Global Visibility

• Crooks stole $25.5 million from a multinational firm using a ‘deepfake’ video call

• Combined Security Practices Changing the Game for Risk Management

• Ransomware Retrospective 2024: Unit 42 Leak Site Analysis

• Labour Would Bring In Mandatory AI Safety Testing

• Ethical Hackers Reported 835 Vulnerabilities, Earned $450K in 2023

• 2054, Part I: Death of a President

• Yandex to sell its remaining Russian businesses for $5.2B — half its market value

• AnyDesk Revokes Passwords, Certificates in Response to Hack

• Ukraine Faces PurpleFox Malware Crisis: Unraveling the Ongoing Battle and Countermeasures

• Are smart homes about to break free from smart phones?

• A Comprehensive Overview Of Nanotechnology And Applications Of Nanotechnology

• Clorox and Johnson Controls Reveal $76m Cyber-Attack Bill

• Lords: UK Risks Missing Out On AI ‘Goldrush’

• Tripwire Patch Priority Index for January 2024

• Preparing Cybersecurity for the Super Bowl

• UK Court Backlog Blocks Attempts to Fight Fraud Epidemic

• Software firm AnyDesk disclosed a security breach

• Pegasus Spyware Targeted iPhones of Journalists and Activists in Jordan

• Cisco CX is Accelerating Outcomes Through Technology Innovation

• Spoutible – 207,114 breached accounts

• A week in security (January 29 – February 4)

• Alert: Jenkins Vulnerabilities Open Servers To RCE Attacks

• ApateWeb: Hackers Using 130,000+ Domains to Launch Cyber Attacks

• Latio Application Security Tester: Use AI to scan your code

• KeePass 2.56 released: options search and history improvements

• AnyDesk hit by ransomware and Cloudflare hacked

• Unraveling the Differences: Hashing, Salting, and Encryption Explained

• Businesses banning or limiting use of GenAI over privacy risks

• Researchers discover exposed API secrets, impacting major tech tokens

• How cybersecurity strategies adapt to evolving threats

• New Mispadu Banking Trojan Exploiting Windows SmartScreen Flaw

• Migrating to the cloud: An overview of process and strategy

• SBF likely off the hook for misplaced FTX funds after cops bust SIM swap ring

• Mobile Device Security: Protecting Your Smartphone

• General Timothy Haugh Takes Lead of NSA and Cyber Command

• IT Security News Daily Summary 2024-02-04

• Facebook Whistleblower Says Hearing With Zuckerberg Could Signal Big Change For User Privacy

• Thousands of Stolen AnyDesk Login Credentials Sold on Dark Web

• Thousands of Stolen AnyDesk Logins Credentials Sold on Dark Web

• How to detect poisoned data in machine learning datasets

• How Artificial Intelligence Can Use To Fight Cybercrime?

• US government imposed sanctions on six Iranian intel officials

• 2022 End of Year Roundup

• Balbix Now Integrates BAS Data Into Your Risk Analysis

• USENIX Security ’23 – MorFuzz: Fuzzing Processor Via Runtime Instruction Morphing enhanced Synchronizable Co-simulation

• Crypto In Trouble: A US Money Laundering Scandal Has Charged The Latest Exchange

• Blackbaud Enhances Security Measures Following FTC Settlement

• A cyberattack impacted operations at Lurie Children’s Hospital

• Novel Crytpojacking Campaign is Targeting Docker APIs Across the Internet

• Cybercriminals Steal $112 Million Worth of Ripple’s XRP Cryptocurrency

• Sneaky USB Hackers Pose Threat on Favorite Sites

• Cybersecurity Crisis Looms: FBI Chief Unveils Chinese Hackers’ Plan to Target US Infrastructure

• Embrace the Multicloud Era with Cisco Learning and Certifications at Cisco Live Amsterdam

• Security Affairs newsletter Round 457 by Pierluigi Paganini – INTERNATIONAL EDITION

• AnyDesk Incident: Customer Credentials Leaked and Published for Sale on the Dark Web

• Week in review: Windows Event Log zero-day, exploited critical Jenkins RCE flaw

• The Crumbling Castle

• The Cybersecurity Bridge: A Necessary Connection for IT and Communications

• Three Things to Know About the New SEC Rules on Sharing Information and Breach Disclosure Deadlines

• Striking The Right Balance: Cloud and Cyber Priorities for SMEs

• Blocking Compromised Tokens with Wallarm

• USENIX Security ’23 – Kenneth G. Paterson, Matteo Scarlata, Kien Tuong Truong – Three Lessons From Threema: Analysis of a Secure Messenger

• Social Engineering Attacks: Tactics and Prevention

Generated on 2024-02-05 23:55:32.974894