IT Security News Daily Summary 2024-04-08

• Greylock McKinnon Associates data breach exposed DOJ data of 341650 people

• Hashicorp Versus OpenTofu Gets Ugly

• US insurers use drone photos to deny home insurance policies

• Facebook Accused Of Censoring Small Newspaper That Criticized It

• Leveraging Cloud Native Technologies in the Broadcast Industry

• Crowdfense is offering a larger 30M USD exploit acquisition program

• USENIX Security ’23 – Lukas Seidel, Dominik Maier, Marius Muench – Forming Faster Firmware Fuzzers

• XZ Utils Supply Chain Attack: A Threat Actor Spent Two Years to Implement a Linux Backdoor

• HHS: Heath Care IT Helpdesks Under Attack in Voice Scams

• Barracuda Report Provides Insight into Cybersecurity Threat Severity Levels

• Vulnerability Summary for the Week of April 1, 2024

• Home Depot confirms worker data leak after miscreant dumps info online

• Lazy Koala: New Cyber Threat Emerges in CIS Region

• AGENT TESLA Malware Steals login Credentials From Chrome & Firefox

• The music industry must find a way to stay in tune with GenAI

• All eyes on cyberdefense as elections enter the generative AI era

• Home Depot confirms data theft after crook threatens to dump inside info online

• Threat Actors Deliver Malware via YouTube Video Game Cracks

• Here Comes the US GDPR: APRA, the American Privacy Rights Act

• Email Security Vulnerabilities: Shocking Gaps in Malware Detection

• backup storage device

• Hijacked Facebook Pages are pushing fake AI services to steal your data

• Hackers stole 340,000 Social Security numbers from government consulting firm

• #MIWIC2024: Jennifer Fernick, Senior Staff Security Engineer, Encryption Lead, Google

• Top 3 API Leaks Identified by Cybersecurity & InfoSec Experts

• An Unusual Tracking Feature Identified on Millions of iPhone Users

• Researchers Uncover Numerous Chinese Hacker Collectives Exploiting Ivanti Security Vulnerabilities

• The High Cost of Neglecting Backups: A Ransomware Wake-Up Call

• US Federal Data Privacy Law Introduced by Legislators

• Ransomware threat to diminish in this year 2024

• New Malware “Latrodectus” Linked to IcedID

• Byakugan Infostealer Capabilities Revealed

• ScrubCrypt Deploys VenomRAT with an Arsenal of Plugins

• Zero Trust Access: The Transformative Blueprint for Achieving Regulatory Compliance

• Porn panic imperils privacy online, with Alec Muffett (re-air): Lock and Code S05E08

• Indian audio giant BoAt says it’s investigating suspected customer data breach

• Transform Media Broadcasting with IP: Cisco and Imagine Communications

• Cisco Access Points among the First to Be Standard-Power Certified by the FCC

• The Quantum Shift

• Puppies, kittens, data at risk after ‘cyber incident’ at veterinary giant

• Thousands of Ivanti VPN Appliances Impacted by Recent Vulnerability

• Chinese Hackers Using AI Tools To Influence Upcoming Elections

• Cisco IOS Vulnerability Allows DOS Attacks via Malicious Traffic

• 4 lessons industrial companies can draw from the British Library cyberattack

• CISO Life: the Good, the Bad, the Ugly

• Protect Your Attack Surface from Evolving Attack Vectors

• What is Attack Surface Management (ASM) and How Has it Changed?

• Bitdefender Digital Identity Protection guards against web data leaks

• Google Chrome Adds V8 Sandbox – A New Defense Against Browser Attacks

• The Pitfalls of Periodic Penetration Testing & What to Do Instead

• Bing Ad Posing As NordVPN Aims To Spread SecTopRAT Malware

• Change Healthcare Faces Second Ransomware Dilemma

• US Lawmakers Strike Deal On Data Privacy Legislation

• Confidential VMs Hacked Via New Ahoi Attacks

• Company Offering $30 Million For Android, iOS, Browser Zero-Day Exploits

• Confidential VMs Hacked via New Ahoi Attacks

• Key Lawmakers Float New Rules for Personal Data Protection; Bill Would Make Privacy a Consumer Right

• Healthcare IT Help Desk Employees Targeted in Payment-Hijacking Attacks

• Best 5 Privacy Management Tools for 2024

• Exploiting limited markup features on web applications

• Cyber-Physical Systems Security Analysis Challenges and Solutions 2024

• Secrets Management in the Age of AI Cybercrime: Safeguarding Enterprises from Emerging Threats

• Join Cequence Security at RSA Conference 2024: Protect What Connects You with Advanced API Security Solutions

• Cracking Down on Crime: Europol Shares Data on Europe’s Top Threats

• Panera Bread and Omni Hotels Hit by Ransomware Outages: What You Need to Know

• The Legacy of a Security Breach

• Attackers Find Your Session Cookies Irresistible

• XZ Utils backdoor: Detection tools, scripts, rules

• Veriato introduces AI-driven predictive behavior analytics platform

• Vet Clinic Chain CVS Hit by Cyberattack, Disrupts UK Operations

• Change Healthcare faces second ransomware dilemma weeks after ALPHV attack

• Unleash Platform Power with Strata Cloud Manager’s Command Center

• Company Offering $30 Million for Android, iOS, Browser Zero-Day Exploits

• Veterinary Giant IT System Attacked by Hackers

• Understanding Infosec Isolation Solutions: Fortress Walls for Your Digital Assets

• SymphonyAI unveils SensaAI for Sanctions to detect hidden risk in unstructured data

• Quantum Security and Networking are Emerging as Lifelines in Our Quantum-powered Future

• Famous YouTube Channels Hacked to Distribute Infostealers

• Learn how to Protect Your Business With this $28 Cybersecurity Training

• AI Scam Calls: How to Protect Yourself, How to Detect

• U.S. Department of Health warns of attacks against IT help desks

• Google Adds V8 Sandbox to Chrome

• How to Get CMMC Certified

• Cyber Security Today, April 8, 2024 – Crooks are hijacking Facebook pages to spread phoney AI applications

• The Drop in Ransomware Attacks in 2024 and What it Means

• Watch Out for ‘Latrodectus’ – This Malware Could Be In Your Inbox

• Cybersecurity Incidents Making Headlines on Google

• Avoiding Cloud Breaches: Top 5 Misconfigurations to Watch For

• Vedalia APT Group Exploits Oversized LNK Files to Deliver Malware

• X Hands Out Blue Ticks To ‘Influential’ Users

• Google Sues Alleged Crypto Scammers

• EU Launches Probe Into China Legacy Chips, Following US Lead

• Senator Calls For ‘Path Forward On TikTok’

• NSA Appoints Dave Luber as Cybersecurity Director

• Understanding Cybersecurity Basics for Businesses

• Multiple CData Vulnerabilities Let Attackers Bypass Security Restrictions

• boAt – 7,528,986 breached accounts

• UK Retailers Lost £11.3bn to Fraud in 2023

• AI/ML Digital Everest: Dodging System Failure Summit Fever

• Gone Phishing 2023: Here Are the Results!

• Cybercriminals Targeting Latin America with Sophisticated Phishing Scheme

• Multiple Cisco Small Business Routers Vulnerable to XSS Attacks

• A week in security (April 1 – April 7)

• 92,000+ internet-facing D-Link NAS devices accessible via “backdoor” account (CVE-2024-3273)

• Hospital IT Helpdesks Targeted By Voice Fraudsters, Warns HHS

• A new smart home security standard is coming

• Samsung Expeccts 900 Percent Profit Jump Amidst AI Boom

• Samsung More Than Doubles Texas Chip Plant Investment

• AI-As-A-Service Providers Vulnerability Let Attackers Perform Cross-Tenant Attacks

• Massive AT&T Data Leak, The Danger of Thread Hijacking

• Veterinary Giant CVS Reveals Major Cyber-Attack

• Understanding ISO 27001:2022 Annex A.11 – Physical and Environmental Security

• Google Expands AI-Powered Search Test To UK Users

• Microsoft Two-Step Phishing Campaign Attack LinkedIn Users

• Cloudflare Acquires Baselime to Enhance Serverless Performance

• Head of Israeli cyber spy unit exposed … by his own privacy mistake

• Google Sues App Developers Over Fake Crypto Investment App Scam

• How can the energy sector bolster its resilience to ransomware attacks?

• April 2024 Patch Tuesday forecast: New and old from Microsoft

• WiCyS: A champion for a more diverse cybersecurity workforce

• How malicious email campaigns continue to slip through the cracks

• Threat actors are raising the bar for cyber attacks

• Industrial sectors embrace zero trust for enhanced security

• ISC Stormcast For Monday, April 8th, 2024 https://isc.sans.edu/podcastdetail/8928, (Mon, Apr 8th)

• CoralRaider Hackers Steals Login Credentials, Financial Data & Social Media Logins

• Hornetsecurity Nominated in 2024 ‘ASTORS’ Homeland Security Awards

• A Use Case for Adding Threat Hunting to Your Security Operations Team. Detecting Adversaries Abusing Legitimate Tools in A Customer Environment. [Guest Diary], (Sun, Apr 7th)

• The best secure browsers for privacy in 2024

• Security Affairs newsletter Round 466 by Pierluigi Paganini – INTERNATIONAL EDITION

• IT Security News Weekly Summary – Week 14

• IT Security News Daily Summary 2024-04-07

• A Breakthrough Online Privacy Proposal Hits Congress

• Conn. CISO Raises Security Concerns Over BadGPT, FraudGPT

• Privnote Secure Messaging App Is Under Phishing Threat

• US Environmental Protection Agency Allegedly Hacked, 8.5M User Data Leaked

• The Growing Threat of Remote Desktop Protocol (RDP) Attacks

• 60% of small businesses are concerned about cybersecurity threats

• Birmingham City Computers Breached by Hackers, Mayor Confirms

• The Case Study: The Exploitation of Mechatronics Systems

• Data Brokers are Preparing to Challenge Privacy Legislation

• Facebook Overhauls Confusing Censorship Policy For AI Videos

• LayerSlider Plugin Imperils 1 Million WordPress Sites, Urgent Fixes Mandated!

• Fund Manager Outlines Digital Data as Rising Asset Class

• Strengthening Financial Services: Embracing the Digital Operational Resilience Act (DORA) for Cybersecurity Resilience

• 9 Best Practices for Using AWS Access Analyzer

• Over 92,000 Internet-facing D-Link NAS devices can be easily hacked

• Week in review: 73M customers affected by AT&T data leak, errors led to US govt inboxes compromise

• Enterprise AI Security Firm TrojAI Raises $5.75M in Seed Funding

Generated on 2024-04-08 23:55:33.481314