IT Security News Daily Summary 2024-02-17

• USENIX Security ’23 – Xiaoguang Li, Ninghui Li, Wenhai Sun, Neil Zhenqiang Gong, Hui Li – Fine-grained Poisoning Attack to Local Differential Privacy Protocols for Mean and Variance Estimation

• Enhancing PCI DSS Compliance: The Urgent Need for Risk-Based Prioritization

• How Businesses Can Manage Cryptocurrency Fraud

• It’s Time to End the Myth of Untouchable Mainframe Security.

• From the SIEM to the Lake: Bridging the Gap for Splunk Customers Post-Acquisition

• Microsoft and OpenAI Reveal Hackers Weaponizing ChatGPT

• Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes

• Defense Department Notifies 20,000 People of Data Breach Due to Email Leak

• Here’s Why Passkeys is a Reliable Option to Safeguard Your Data

• Revolutionizing Cybersecurity: Integrating UEBA for Enhanced Data Protection

• Generative AI Redefines Cybersecurity Defense Against Advanced Threats

• Unseen Threats: Identity Blind Spots and Misconfigurations in Cybersecurity

• How to Not Get Scammed Out of $50,000

• The Kyivstar Breach and Its Implications for Global Cybersecurity

• New Study Shows Over Half of Organizations Experienced Significant Security Incidents in The Last Year

• New MonikerLink Flaw Exposes Outlook Users to Data Theft and Malware

• Why are ransomware gangs making so much money?

• How to weaponize LLMs to auto-hijack websites

• CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks

• How Businesses Can Safeguard Their Communication Channels Against Hackers

• Tech Disparity: Low-Income Students Exposed to More Ads

• Google Open Sources Magika: AI-Powered File Identification Tool

• Google open sources file-identifying Magika AI for malware hunters and others

• Cybersecurity Risk Assessment: Identifying and Managing Risks

• SpaceX Launched Military Satellites Designed to Track Hypersonic Missiles

• IT Security News Daily Summary 2024-02-16

• Friday Squid Blogging: Vegan Squid-Ink Pasta

• OpenAI’s Sora Generates Photorealistic Videos

• 6 Best Intrusion Detection & Prevention Systems for 2024 Reviewed

• New York City Sues Facebook For Allegedly Harming Kids

• State Government Organization Network Breach: SafeBreach Coverage for US-CERT Alert (AA24-046A)

• Leak of Russian ‘Threat’ Part of a Bid to Kill US Surveillance Reform, Sources Say

• Leak of Russian Threat Part of a Bid to Kill US Surveillance Reform, Sources Say

• CISA adds Microsoft Exchange and Cisco ASA and FTD bugs to its Known Exploited Vulnerabilities catalog

• Cyber Security Today, Week in Review for week ending Friday, Feb. 16, 2024

• Tech giants sign voluntary pledge to fight election-related deepfakes

• Fly to Amsterdam with the Cisco Store

• US gov offers a reward of up to $10M for info on ALPHV/Blackcat gang leaders

• Daniel Stori’s ‘Clojure Challenge’

• SpyNote Android Spyware Poses as Legit Crypto Wallets, Steals Funds

• ChatGPT Evolved with Digital Memory: Enhancing Conversational Recall

• Volt Typhoon Disrupts US Organizations, CISA Issues Alerts

• NIS2 compliance for industrial networks: Are you ready?

• GoldPickaxe Trojan steals your face!

• U.S. Offers $10 Million for Info on BlackCat/ALPHV Ransomware Leaders

• What Is a Passphrase? Examples, Types & Best Practices

• Beyond the Keyboard: “Try Harder” Mindset and Goals

• Zeus, IcedID malware kingpin faces 40 years in slammer

• Ottawa willing to improve cybersecurity bill, ministers tell MPs

• CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability

• OpenAI ‘upload file’ feature offers data security concerns

• DoD Email Breach: Pentagon Tells Victims 12 Months Late

• Bank of America Warns Its Customers About Data Breach

• The Convergence of CIO and CISO Roles in the Digital Age

• New Ivanti Vulnerability Observed as Widespread Security Concerns Grow

• Open Letter Urges Action To Address AI, And Other Global Risks

• Cybersecurity Insights with Contrast CISO David Lindner | 2/16/24

• Feds Dismantle Russian GRU Botnet Built On 1,000+ Home, Small Biz Routers

• Mysterious MMS Fingerprint Hack Used By Spyware Firm NSO Group Revealed

• Hackers Got Nearly 7 Million People’s Data From 23andMe

• Ex-Employee’s Admin Credentials Used In US Gov Agency hack

• USPS Scam Smishing Campaigns Could Move To Cloud

• How to Defend Against the 10 Most Dangerous Privileged Attack Vectors

• Mysterious ‘MMS Fingerprint’ Hack Used by Spyware Firm NSO Group Revealed

• In Other News: US Hacks Iranian Spy Ship, Rhysida Ransomware Decryption, NIST Guidance

• EU Watchdog Urged to Reject Meta ‘Pay for Privacy’ Scheme

• Ex-Employee’s Admin Credentials Used in US Gov Agency Hack

• Permit.io Raises $8 Million for Authorization Platform

• RustDoor macOS Backdoor Targets Cryptocurrency Firms with Fake Job Offers

• Israeli NSO Group Suspected of “MMS Fingerprint” Attack on WhatsApp

• CrowdStrike Named the Only Customers’ Choice: 2024 Gartner® “Voice of the Customer” for Vulnerability Assessment

• Seeing into the Shadows: Tackling ChromeOS Blind Spots with Dell and CrowdStrike

• CrowdStrike Is Proud to Sponsor the Mac Admins Foundation

• Experts Predict AI to Create Job Opportunities in Energy Sector

• Greatest Cyber Risks Are Extortion, Geopolitical Tension, SMB Attacks

• Microsoft Exchange vulnerability actively exploited

• With SNS Sender, USPS Smishing Scams Move to the Cloud

• Safeguarding Web Applications With Cloud Service Providers: Anti-CSRF Tokenization Best Practices

• ISC2 Collaborates with IBM to Launch Entry-Level Cybersecurity Certificate

• Vulnerabilities in CUSG CMS Exposed Credit Unions to Attacks

• Eight Vulnerabilities Disclosed in the AI Development Supply Chain

• SEC’s X Breach Highlights Need for Better Defense Against SIM Swap Attacks

• The Latest Prudential Financial Data Breach Exposes Vulnerabilities

• Cyber Security Today, Feb. 16, 2024 – US takes down Russian botnet of routers

• 1000+ JetBrains TeamCity Instances Vulnerable to RCE Bypass Attacks

• Agniane Stealer: Information stealer targeting cryptocurrency users

• Don’t Just Let It iPaaS: How To Get More Out of Your Digital Transformation

• U.S. CISA: hackers breached a state government organization

• Meet This Year’s Most Inspiring Women in Cyber Nominees: Part 3

• Meet This Year’s Most Inspiring Women in Cyber Nominees: Part 2

• Cutting kids off from the dark web – the solution can only ever be social

• Hackers Exploit EU Agenda in Spear Phishing Campaigns

• OpenAI Introduces AI Model That Turns Text Into Video

• GitHub: AI helps developers write safer code, but you need to get the basics right

• Meet This Year’s Most Inspiring Women in Cyber Nominees: Part 1

• CISA Urges Patching of Cisco ASA Flaw Exploited in Ransomware Attacks

• Malicious ‘SNS Sender’ Script Abuses AWS for Bulk Smishing Attacks

• Why We Must Democratize Cybersecurity

• Ukrainian Hacker Pleads Guilty for Leading Zeus & IcedID Malware Attacks

• All eyes on AI | Unlocked 403: A cybersecurity podcast

• Essential Information on Cloud Security Services

• Importance of Internet Security in Educational Environment

• PDF Malware on the Rise, Used to Spread WikiLoader, Ursnif and DarkGate

• Ukrainian Pleads Guilty in US to Key Role in Zeus, IcedID Malware Operations

• US Offers $10 Million for Information on BlackCat Ransomware Leaders

• U.S. authorities disrupt Russian intelligence’s botnet

• Cyberint Ransomania empowers organizations to proactively defend against ransomware attacks

• GitHub: AI helps developers write safer code, but basic safety is crucial

• Permit.io raises $8 million to simplify app development

• This Complete Ethical Hacking Bundle is Less Than $40

• Russia-linked Turla APT uses new TinyTurla-NG backdoor to spy on Polish NGOs

• U.S. State Government Network Breached via Former Employee’s Account

• Google Warns Unfair AI Rules Could Empower Hackers, Harming Defense

• New Outlook 0-day RCE Flaw Exploited in the Wild

• NTA Flow Configuration Example

• U.S. Government Disrupts Russian-Linked Botnet Engaged in Cyber Espionage

• US State Department offers $10m reward on leads on ALPHV aka Blackcat ransomware

• Difference between Whale Phishing and Spear Phishing

• Gmail & Yahoo DMARC rollout: When cyber compliance gives a competitive edge

• Dark Web Monitoring for Businesses

• New infosec products of the week: February 16, 2024

• Cybersecurity sectors adjust as DDoS attacks reach new heights

• Physical security is becoming a top priority in building design

• Cyber threats cast shadow over 2024 elections

• Wireshark 4.2.3 Released – What’s New!

• Cybersecurity Insurance: Understanding Coverage

• Quest Diagnostics pays $5M after mixing patient medical data with hazardous waste

• Google, Microsoft, OpenAI make AI pledges ahead of Munich Security Conference

Generated on 2024-02-17 23:55:47.704896