IT Security News Daily Summary 2024-02-10

• CISA adds Fortinet FortiOS bug to its Known Exploited Vulnerabilities catalog

• Mozilla Firefox’s Premium Dark Web Monitoring Solution

• Smart Helmets Flaw Exposed Millions to Risk of Hacking and Surveillance

• More than 800 False “Temu” Domains Trick Customers Into Losing Their Credentials

• Protecting User Privacy by Removing Personal Data from Data Broker Sites

• CISA and Fortinet Warns of New FortiOS Zero-Day Flaws

• Microsoft Introduces PC Cleaner App to Boost PC Performance

• Millions are at Risk After a French HealthCare Services Firm’s Data Leak

• How 3 Million ‘Hacked’ Toothbrushes Became a Cyber Urban Legend

• Facebook fake videos

• Serious Security Vulnerability Patched In Shield Security WP Plugin

• Implementing Zero Trust Principles in Your Active Directory

• New Variant of Banking Trojan Discovered Targeting Mexico

• Unraveling the Aftermath of Verizon’s Insider Data Breach Impacting 63,000 Employees

• Meta’s AI Ambitions Raised Privacy and Toxicity Concerns

• Microsoft Copilot for Security provides immediate impact for the Microsoft Defender Experts team

• macOS Backdoor RustDoor likely linked to Alphv/BlackCat ransomware operations

• Ransomware payments hit a record high in 2023 – Week in security with Tony Anscombe

• Alert: New Stealthy “RustDoor” Backdoor Targeting Apple macOS Devices

• Meet VexTrio, a network of 70K hijacked websites crooks use to sling malware, fraud

• ‘World’s biggest casino’ app exposed customers’ personal data

• USENIX Security ’23 – Hyungseok Kim, Soomin Kim, Junoh Lee, Kangkook Jee, Sang Kil Cha – Reassembly is Hard: A Reflection on Challenges and Strategies

• IT Security News Daily Summary 2024-02-09

• Friday Squid Blogging: A Penguin Named “Squid”

• Shim vulnerability exposes most Linux systems to attack

• Apple defends parts pairing as Oregon mulls right-to-repair bill

• cyberterrorism

• Ivanti discloses fifth vulnerability, doesn’t credit researchers who found it

• Tax Season Alert: Common scams and cracked software

• Cyber Security Today, Week in Review for week ending Friday, Feb. 9, 2024

• Honoring Cisco Designated VIPs at Cisco Live Amsterdam 2024

• Ivanti urges customers to patch yet another critical vulnerability

• Checkmarx Report Surfaces Software Supply Chain Compromises

• 10 Major Benefits of Cloud-Native Application Development

• No, Toothbrushes Were Not Used in a Massive DDoS Attack

• Ivanti urges customer to patch yet another critical vulnerability

• Bitwarden Free vs. Premium: Which Plan Is Best For You?

• Lawmakers Want Clampdown on American VCs Funding Chinese Tech Companies

• Accepting Ethereum (ETH) for Businesses, An Overview

• QR Code Phishing Attacks Target High-Level Executives: Report

• Raspberry Robin Malware Upgrades with Discord Spread and New Exploits

• Akamai Named an Overall Leader for Zero Trust Network Access

• The AnyDesk Breach: Overview and Recommendations

• Meta Removes Facebook, Instagram Accounts Of Iran’s Supreme Leader

• What Is a Next-Generation Firewall?

• Cisco and Megaport Simplify Cloud Networking with Pay-As-You-Go Model

• Chinese Threat Actors Concealed in US Infrastructure Networks

• Combating Malware Threats

• JetBrains Releases Security Advisory for TeamCity On-Premises

• In Other News: $350 Million Google Settlement, AI-Powered Fraud, Cybersecurity Funding

• Nationwide Banking Crisis: Servers Down, UPI Transactions in Jeopardy

• Identity Fraud Affects Two Million Brits in 2023

• Microsoft to release its Windows Germanium with AI Security

• Nvidia Business Unit To Develop Bespoke Chips – Report

• Botnet Attack Targeted Routers: A Wake-Up Call for Securing Remote Employees’ Hardware

• Juniper Support Portal Exposed Customer Device Info

• Ransomware in 2023 recap: 5 key takeaways

• Exploiting a vulnerable Minifilter Driver to create a process killer

• Insider Data Breach at Verizon Affects Over 63,000 Employees

• The 11 Best Identity and Access Management Tools (2024)

• Fortinet’s week to forget: Critical vulns, disclosure screw-ups, and that toothbrush DDoS attack claim

• New macOS Backdoor Linked to Prominent Ransomware Groups

• Understand the pros and cons of enterprise password managers

• Black Basta ransomware gang hacked Hyundai Motor Europe

• The ever-present state of cyber security alert

• 3 Best Practices for SOC Leaders for Staying Ahead In 2024

• US Offers $10 Million Reward for Info About Hive Ransomware Leaders

• Geofencing: A Tech Set to Transform the Consumer Landscape?

• MoqHao Android Malware Evolves with Auto-Execution Capability

• US To Invest $5 Billion In Semiconductor Research

• January 2024’s Most Wanted Malware: Major VexTrio Broker Operation Uncovered and Lockbit3 Tops the Ransomware Threats

• Beyond Traditional Cyber Defences: The Rise of Outcome-Based Security In Modern Business

• Ai, Cybersecurity Awareness, And Communication

• Addressing Bias in Insider Risk Monitoring

• FBI and CISA publish guide to Living off the Land techniques

• Ivanti Patches High-Severity Vulnerability in VPN Appliances

• The ROI of Investing in Cybersecurity

• 2023 Sees Record Data Compromises Amidst Changing Tactics

• Empowering Women in Cybersecurity: Bridging the Gender Gap

• Own Company Unveils New Channel Partner Program

• Shim Bug Uncovered: A Ten-Year Security Breach in Linux Boot Loaders

• Ensuring Online Safety for Your Child: Tips and Measures

• AI-Powered Robocalls Banned Ahead of US Election

• Quantum computing: The data security conundrum

• Cyber Security Today, Feb. 9, 2024 – A record US$1 billion paid to ransomware gangs last year, and more

• Evolution of Privacy-Preserving AI: From Protocols to Practical Implementations

• Identity Hijack: The Next Generation of Identity Theft

• AI-generated voices in robocalls now illegal

• Hands-on Review: Myrror Security Code-Aware and Attack-Aware SCA

• 20 Years of Facebook, but Trust in Social Media Remains Rock Bottom

• New Rust-Based macOS Backdoor Steals Files, Linked to Ransomware Groups

• Chinese Hackers Exploiting VMware 0-Day Flaw Since 2021

• Fortinet Warns of New FortiOS Zero-Day

• US Offers $10M Reward for Information on Hive Ransomware Leaders

• AnyDesk Shares More Information on Recent Hack

• 2054, Part V: From Tokyo With Love

• Action1 platform update improves patching workflows

• Over 800 Phony “Temu” Domains Lure Shoppers into Credential Theft

• New Coyote Trojan Targets 61 Brazilian Banks with Nim-Powered Attack

• Securing the Keys to the Kingdom: Exploring the Depths of Privileged Access Management (PAM)

• Ivanti warns of a new auth bypass flaw in its Connect Secure, Policy Secure, and ZTA gateway devices

• Fortinet warns of a new actively exploited RCE flaw in FortiOS SSL VPN

• Verizon Breach – Malicious Insider or Innocuous Click?

• U.S. Offers $10 Million Reward for Information on Hive Ransomware

• 26 Cyber Security Stats Every User Should Be Aware Of in 2024

• Hiring for Tech Managers jobs? Should Tech Managers Be Developers First?

• Wazuh in the Cloud Era: Navigating the Challenges of Cybersecurity

• Researchers Use Raspberry Pi Pico to Crack BitLocker Under a Minute

• Fortinet Warns of Critical FortiOS SSL VPN Flaw Likely Under Active Exploitation

• Stealthy Zardoor Backdoor Targets Saudi Islamic Charity Organizations

• New infosec products of the week: February 9, 2024

• Why we fall for fake news and how can we change that?

• February 2024 Patch Tuesday forecast: Zero days are back and a new server too

• France data breach triggers among half of the populace

• Enhancing Application Code Security: Best Practices and Strategies

• 2024-02-08 – Pikabot infection

• IoT Testing: Best Practices And Challenges in 2024

• Fortinet Warns of Critical FortiOS SSL VPN Vulnerability Under Active Exploitation

• India to make its digital currency programmable

• Cybersecurity teams recognized as key enablers of business goals

• Key strategies for ISO 27001 compliance adoption

• Crime gang targeted jobseekers across Asia, looted two million email addresses

• How AI is revolutionizing identity fraud

• How companies are misjudging their data privacy preparedness

• Cybersecurity for Small Businesses: Essential Steps

• Warning: New Ivanti Auth Bypass Flaw Affects Connect Secure and ZTA Gateways

• Zero-Day Vulnerabilities: Threats and Mitigation

• Uncle Sam sweetens the pot with $15M bounty on Hive ransomware gang members

• CodeSignal targets skills gap with ‘Learn’ platform amidst tech talent crunch

• FBI: Give us warrantless Section 702 snooping powers – or China wins

• EFF Helps News Organizations Push Back Against Legal Bullying from Cyber Mercenary Group

Generated on 2024-02-10 23:55:47.991390