IT Security News Daily Summary 2024-03-24

• Some 300,000 IPs vulnerable to this Loop DoS attack

• Controversy Surrounds Flipper Zero Amid Car Theft Concerns

• Security Affairs newsletter Round 464 by Pierluigi Paganini – INTERNATIONAL EDITION

• USENIX Security ’23 – Jinwen Wang, Yujie Wang, Ao Li, Yang Xiao, Ruide Zhang, Wenjing Lou, Y. Thomas Hou, Ning Zhang – ARI: Attestation of Real-time Mission Execution Integrity

• Unpatchable Security Flaw in Apple Silicon Macs: A Cryptocurrency Nightmare

• Critical Flaw Identified in Apple’s Silicon M-Series Chips – And it Can’t be Patched

• General Motors Ceases Sharing Driver Behavior Data with Data Brokers

• Unveiling the MaaS Campaign: Safeguarding Android Users in India

• Akamai Research Exposes Vulnerability: APIs Now Prime Targets for 29% of Web Attacks

• Classic Information Security Management Errors

• The Rise of Open-Source AI: How Companies like Mistral AI are Shaping the Future

• Cybercriminals Accelerate Online Scams During Ramadan and Eid Fitr

• Vans claims cyber crooks didn’t run off with its customers’ financial info

• Federal, State, Local Cyber Leaders Meet to Discuss Threats

• Week in review: Ivanti fixes RCE vulnerability, Nissan breach affects 100,000 individuals

• Building Resilient Web Applications on AWS: A Comprehensive Approach to Security

• N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks

• German Police Seize ‘Nemesis Market’ in Major International Darknet Raid

• Sign1 Malware Hijacked 39,000 WordPress Websites

• Cloud Security Best Practices: Protecting Cloud Environments

• Get A Day’s Schedule From Fantastical On The Command Line With Shortcuts

• Prioritizing Action After the Threat Headlines

• How to Identify and Respond to End-of-Life and Out-of-Service Operating Systems?

• IT Security News Daily Summary 2024-03-23

• Windows Server 2012 / 2012 R2 End of Life – Here’s How to Secure your Legacy Servers

• Russia-linked APT29 targeted German political parties with WINELOADER backdoor

• Will AI augment or annex cybersecurity jobs?

• Cyber Extortion Stoops Lowest: Fake Attacks, Whistleblowing, Cyber Extortion

• USENIX Security ’23 – Yijie Bai, Yanjiao Chen, Hanlei Zhang, Wenyuan Xu, Haiqin Weng, Dou Goodman – VILLAIN: Backdoor Attacks Against Vertical Split Learning

• Multi-Cloud and Hybrid Cloud Backup: Best Practices to Reliably Secure Your Data

• GitHub Unveils AI-Driven Tool to Automatically Rectify Code Vulnerabilities

• Gmail and Facebook Users Advised to Secure Their Accounts Immediately

• A hacker’s view of the civic infrastructure: Hashtag Trending, the Weekend Edition for March 23rd, 2024

• Spain Temporarily Suspends Telegram – Here is The Reason?

• Payments Watchdog Assessing McDonald’s and Greggs Tech Outages

• VulnCheck’s Free Community KEV & CVE APIs (Code & Golang CLI Utility)

• Ivanti Releases Security Updates for Neurons for ITSM and Standalone Sentry

• CISA Releases One Industrial Control Systems Advisory

• Mozilla fixed Firefox zero-days exploited at Pwn2Own Vancouver 2024

• Large-scale Sign1 malware campaign already infected 39,000+ WordPress sites

• From Personal Computer to Innovation Enabler: Unveiling the Future of Computing

• Splunk, Azure, or Sentinel for FedRAMP/NIST Compliance

• The Akamai Foundation Continues to Give Back and Amplify Impact

• Distributed Cloud and Edge Computing: A Cheat Sheet for IT Leaders

• Apple Chip Flaw Leaks Secret Encryption Keys

• 1768.py’s Experimental Mode, (Sat, Mar 23rd)

• German police seized the darknet marketplace Nemesis Market

• Hackers Deploy STRRAT & VCURMS Malware on Windows Via GitHub

• Evolving beyond your core expertise: it’s time to add security

• Microsoft Xbox Gaming Services Flaw Let Attackers Gain SYSTEM Privileges

• GoFetch Side-Channel Attack Impact Apple CPUs: Attackers Steal Secret Keys

• Russia’s Cozy Bear caught phishing German politicos with phony dinner invites

• AceCryptor attacks surge in Europe – Week in security with Tony Anscombe

• Unsafelok Threat Highlights It’s About Both IoT Devices and Applications

• Russian Hackers Use ‘WINELOADER’ Malware to Target German Political Parties

• Finite State Raises $20 Million to Grow Software Supply Chain Security Business

• Data Privacy Regulations: Compliance and Beyond

• German Authorities Shut Down Online Marketplace for Drugs, Data and Cybercrime Services

• USENIX Security ’23 – ASSET: Robust Backdoor Data Detection Across a Multiplicity of Deep Learning Paradigms

• Incident Response Planning: Effective Cyber Crisis Management

Generated on 2024-03-24 23:55:31.444476