IT Security News Daily Summary 2024-05-24

• An XSS flaw in GitLab allows attackers to take over accounts

• ShrinkLocker Ransomware Leverages BitLocker for File Encryption

• Suspected supply chain attack backdoors courtroom recording software

• Cyber Security Today, Week in Review for week ending May 24, 2024

• USENIX Security ’23 – Detecting Union Type Confusion in Component Object Model

• Top Cloud Services Used for Malicious Website Redirects in SMS Scams

• Resolving the Zero Trust Encryption Paradox

• The best VPN for streaming in 2024: Expert tested and reviewed

• Apple explains why iOS 17.5 restored your deleted photos – and what you can do now

• The Rise and Risks of Shadow AI

• Black Basta Ascension Attack Redux — can Patients Die of Ransomware?

• Case Study: Implementing an Anti-Phishing Product and Take-Down Strategy

• Attempts to Regulate AI’s Hidden Hand in Americans’ Lives Flounder in US Statehouses

• Evolving Detection Engineering Capabilities with Breach & Attack Simulation (BAS)

• Understanding the SOC 2 Certification

• Beware: These Fake Antivirus Sites Spreading Android and Windows Malware

• Hackers Created Rogue VMs to Evade Detection in Recent MITRE Cyber Attack

• The best VPN services for iPhone and iPad in 2024: Expert tested and reviewed

• Cisco Meraki Secures the Postman “Best API Award”

• New Ransomware Gang exploits Microsoft Bitlocker to lockup databases

• US Probe Of Waymo Uncovers More Incidents – Report

• How FHE Technology Is Making End-to-End Encryption a Reality

• USENIX Security ’23 – Mitigating Security Risks in Linux with KLAUS: A Method for Evaluating Patch Correctness

• APT41 Strikes Again: Attacks Italian Industry Via Keyplug Malware

• Mike Lynch Defends Himself At HP-Autonomy Trial In US

• Fake Accounts Proliferating On X, Study Warns

• BloodAlchemy Malware Used to Target Government Agencies in Southern and Southeastern Asia

• CISOs Pursuing AI Readiness Should Start by Updating Their Email Security Policy

• Cybersecurity Insights with Contrast CISO David Lindner | 5/24/24

• Shadow IT Surge Poses Growing Threat to Corporate Data Security

• Cloud Security Fundamentals: Understanding the Basics

• Cisco Releases May 2024 Cisco ASA, FMC, and FTD Software Security Publication

• Three-Year-Old Apache Flink Flaw Now Under Active Attack

• Bugcrowd Buys Informer to Enhance Attack Surface Management

• Morocco-based Cybercriminals Cashing in on Bold Gift Card Scams

• The Critical Role of Training and Phishing Testing in Safeguarding Financial Data

• US pharma giant Cencora says Americans’ health information stolen in data breach

• Google fixes eighth actively exploited Chrome zero-day this year, the third in a month

• High-Severity GitLab Flaw Lets Attackers Take Over Accounts

• Wanna Make Big Tech Monopolies Even Worse? Kill Section 230

• Have You Been Defrauded? This Scam Survival Toolkit Can Help You Recover

• YouTube Emerging as a Hotspot for Cyber Threats: Avast Report

• EPA Report Reveals Cybersecurity Risks in U.S. Water Systems

• AI Seoul Summit: 4 Key Takeaways on AI Safety Standards and Regulations

• Get a Lifetime of 1TB Cloud Storage for Only $80 With FolderFort

• US drug maker Cencora says Americans’ health information stolen in data breach

• Cyber Force Provision Gets House Committee’s Approval

• Fake Antivirus Websites Deliver Malware to Android and Windows Devices

• Health Information Published Online After MediSecure Ransomware Attack

• 5 Patch Management Best Practices for Success in 2024

• CISOs in Australia Urged to Take a Closer Look at Data Breach Risks

• Machine Identities Lack Essential Security Controls, Pose Major Threat

• Google Fixes Eighth Actively Exploited Chrome Zero-Day This Year

• Averlon Emerges From Stealth Mode With $8 Million in Funding

• JAVS Courtroom Audio-Visual Software Installer Serves Backdoor

• Hackers Weaponizing Microsoft Access Documents To Execute Malicious Program

• Unveiling CNAPP+P: The Extra Mile in Cyber Defense

• AI and Automation in the Race to Reduce Attack Dwell Time

• Monetize Magnet – Understanding What This Crypto CPA Network Provides to Affiliate Marketers

• Courtroom Recording Software Compromised With Backdoor Installer

• A Transformative Landscape in Legal Technology: From the Past to AI-Powered Future

• Chinese Hackers Stay Hidden On Military And Government Networks For Six Years

• NSA Releases Guidance On Zero Trust Maturity To Secure Application From Attackers

• Kinsing Malware Attacking Apache Tomcat Server With Vulnerabilities

• Microsoft Warns Of Storm-0539’s Aggressive Gift Card Theft

• White House Seeks Critical Cyber Assistance for Water Utilities, Healthcare

• In Other News: China’s Undersea Spying, Hotel Spyware, Iran’s Disruptive Attacks

• Russian Hackers Shift Tactics, Target More Victims with Paid Malware

• DNSBomb : A New DoS Attack That Exploits DNS Queries

• Ireland Police Facing Nearly a Million-Dollar Fine After Data Breach Exposes Officers’ Details

• Chinese Cyberespionage Campaign Targets Governmental Entities in the Middle East, Africa, and Asia

• SoSafe Human Risk OS reduces human-related security risks

• How Do Hackers Blend In So Well? Learn Their Tricks in This Expert Webinar

• Malicious PyPI & NPM Packages Attacking MacOS Users

• CISA adds Apache Flink flaw to its Known Exploited Vulnerabilities catalog

• On the Zero-Day Market

• APT41 Deploys KeyPlug Backdoor Against Italian Industries

• Chinese State-Backed Hackers Turn to Massive ORB Proxy Networks to Evade Detection

• What are the Hallmarks of Strong Software Security?

• CISO Cite Human Error as Top IT Security Risk

• Google Detects 4th Chrome Zero-Day in May Actively Under Attack – Update ASAP

• DevOps Dilemma: How Can CISOs Regain Control in the Age of Speed?

• Mike Lynch Defends Himself At HP, Autonomy Trial In US

• 11 Cloud Security Best Practices & Tips in 2024 + Free Checklist

• Bolster Raises $14M Led by Microsoft’s M12

• LockBit Ransomware Gang Claims Responsibility for London Drugs Cyberattack

• US retailers under attack by gift card-thieving cyber gang

• Microsoft: Gift Card Fraud Rising, Costing Businesses up to $100,000 a Day

• Cyberattacks are Good for Security Vendors, and Business is Booming

• Japanese Experts Warn of BLOODALCHEMY Malware Targeting Government Agencies

• Courtroom Software Backdoored to Deliver RustDoor Malware in Supply Chain Attack

• Cybersecurity News: Chinese hack military, search engine outage, Mattis speaks out

• Usage of TLS in DDNS Services leads to Information Disclosure in Multiple Vendors

• US Man Gets 10 Years for Laundering Cash From Online Fraud

• Google Patches Fourth Chrome Zero-Day in Two Weeks

• Ekran System Enhances Privileged Access Management: New Workforce Password Management Feature

• Huntress adds Active Remediation and macOS coverage to its EDR solution

• Cyber Security Today, May 24, 2024 – A threat actor leverages Windows BitLocker in ransomware attacks, beware of ORB networks, and more

• Beware Of HTML That Masquerade As PDF Viewer Login Pages

• Get a Lifetime Subscription of FastestVPN for just $32

• UK Government in $10.8m Bid to Tackle AI Cyber-Threats

• Why Shareable SBOMs are Essential for Software Security

• Fake Pegasus Spyware Strains Populate Clear and Dark Web

• Recall feature in Microsoft Copilot+ PCs raises privacy and security concerns

• Pakistani-Aligned APT36 Targets Indian Defense Organizations

• Optimizing CI/CD Security: Best Practices for a Robust Software Delivery Pipeline

• Illumio and Netskope join forces to strengthen enterprise resilience against cyberattacks

• Google fixes yet another Chrome zero-day exploited in the wild (CVE-2024-5274)

• Picus Security introduces security validation for Kubernetes

• Introducing Nimfilt: A reverse-engineering tool for Nim-compiled binaries

• Microsoft President Set to Testify Before Congress on ‘Security Shortcomings’

• Code42 partners with Mimecast to protect organizations from data leaks

• Operation SpecTor: Authorities Seized Dark Markets Offering Illicit Goods

• Gift Card Fraud on the Rise: Storm-0539 and Their Deceptive Techniques

• Cryptojacking Alert: GhostEngine Disables Endpoint Protections

• Leveraging Data Consolidation to Strengthen Cybersecurity: A Comprehensive Approach

• Product showcase: Alert – Data breach detector for your email, credit card, and ID

• US to stop GPS data communication from Foreign Satellites

• Fail2Ban: Ban hosts that cause multiple authentication errors

• Worried about job security, cyber teams hide security incidents

• Despite increased budgets, organizations struggle with compliance

• Effective GRC programs rely on team collaboration

• New infosec products of the week: May 24, 2024

• ISC Stormcast For Friday, May 24th, 2024 https://isc.sans.edu/podcastdetail/8996, (Fri, May 24th)

• 6 Factors to Consider When Choosing a SIEM Solution

• 2024: The Year of Secure Design

• Ad Protect: Mastering the Detection of Bot-Driven Ad Fraud

• Three-year-old Apache Flink flaw under active attack

• Three-year-old Apache Flink flaw now under active attack

• Stark Industries Solutions: An Iron Hammer in the Cloud

• NETMundial+10 Multistakeholder Statement Pushes for Greater Inclusiveness in Internet Governance Processes

• IT Security News Daily Summary 2024-05-23

• Efficient Document Merging Strategies for Professionals

• Here’s yet more ransomware using BitLocker against Microsoft’s own users

• Leading LLMs Insecure, Highly Vulnerable to Basic Jailbreaks

• Compromised courtroom recording software was served from vendor’s official site

• The SEC slaps NYSE’s parent company with a $10M fine for not immediately reporting a hack

• Casino cyberattacks put a bullseye on Scattered Spider – and the FBI is closing in

• Anthropic’s Generative AI Research Reveals More About How LLMs Affect Security and Bias

• Apple API Allows Wi-Fi AP Location Tracking

• Elon Musk Disagrees With US Tariffs On Chinese EVs

• Google guru roasts useless phishing tests, calls for fire drill-style overhaul

• IBM X-Force Report: Grandoreiro Malware Targets More Than 1,500 Banks in 60 Countries

• US Intelligence Agencies’ Embrace of Generative AI Is at Once Wary and Urgent

• GitHub Issues Patch for Critical Exploit in Enterprise Server

• Apple and Google are taking steps to curb the abuse of location-tracking devices — but what about others?

• WhatsApp Engineers Fear Encryption Flaw Exposes User Data, Memo

• He Trained Cops to Fight Crypto Crime—and Allegedly Ran a $100M Dark-Web Drug Market

• CISA Warns of Actively Exploited Apache Flink Security Vulnerability

• Ransomware Attacks Exploit VMware ESXi Vulnerabilities in Alarming Pattern

• Former Cybersecurity Boss Warns UK Not Heeding China Threat

• He Trained Crypto Cops to Fight Crypto Crime—and Allegedly Ran a $100M Dark Web Drug Market

• Randall Munroe’s XKCD ‘Exponential Growth’

• Sharenting: What parents should consider before posting their children’s photos online

• The 10 most common ERP security issues and ways to fix them

• Cisco Live Customer Experience Activations and Sweepstakes

• New Bitcoin Token Protocol “Runes” Carries Potential Phishing Risk

• How I got started: AI security researcher

• The WAF Oath: Primum Non Nocere | Impart Security

• Cybercriminals Exploit Cloud Storage For SMS Phishing Scams

• Deepfakes turn into second most common cybersecurity incident

• 93% of vulnerabilities unanalyzed by NVD since February

• A Leak of Biometric Police Data Is a Sign of Things to Come

• What America’s Federal Privacy Bill Means for Data Protection

• YouTube Threatens To Block Russian Protest Group’s Anti-War Content

• 8 Best Penetration Testing Tools and Software

• Cybercriminals are Targeting Elections in India With Influence Campaigns

• Defending Digital Frontiers: Strategies for Organizations in an Unstable World

• Indian Election Faces Cyber-Attacks, Data Leaks on Dark Web

• Wordfence Intelligence Weekly WordPress Vulnerability Report (May 13, 2024 to May 19, 2024)

• Guntech 2.5 to Launch in Upland’s Gaming Ecosystem

• AutomationDirect Productivity PLCs

• Navigating Multicloud Security: How MSPs Can Leverage the Cloud Protection Suite to Secure their Customers

• Chinese Hackers Hide on Military and Government Networks for Six Years

• Veeam says critical flaw can’t be abused to trash backups

• Compromised recording software was served from vendor’s official site, threat researchers say

• New Frontiers, Old Tactics: Chinese Espionage Group Targets Africa & Caribbean Govts

• 55,000 Impacted By Cyberattack On California School Association

• Veeam Patches Critical Flaw That Puts Enterprise Backups At Risk

• 70% Of CISOs Worry Their Org Is At Risk Of A Material Cyber Attack

• VMware Abused In Recent MITRE Hack For Persistence, Evasion

• How Apple Wi-Fi Positioning System Can Be Abused To Track People Around The Globe

• Microsoft’s Recall Stokes Security and Privacy Concerns

• VMware Abused in Recent MITRE Hack for Persistence, Evasion

• Hospitals Hacked: Urgent Care Needed

• Beyond the Basics: Exploring Uncommon NTLM Relay Attack Techniques

• Breach Forums Plans Dark Web Return Despite FBI Crackdown

• ICO Warns PSNI It Faces £750k Fine Over Data Breach

• Analog Launches Testnet, Allocates 2% Token Supply for Participants

• Consumer Industries at Cisco Live 2024

• U.S. House Panel Takes on AI Security and Misuse

• Keylogger Malware Campaign Exploits Microsoft Exchange Server Flaws to Hit Over 30 Victims

• 70% of CISOs worry their org is at risk of a material cyber attack

• Chinese Espionage Campaign Expands to Target Africa and The Caribbean

• Estimate the financial benefits of using CloudGuard Network Security

• 10 Years in Prison for $4.5 million BEC Scammer Who Bought Ferrari to Launder Money

• APT41: The threat of KeyPlug against Italian industries

• CLOUD#REVERSER Campaign Leverages Cloud Storage for Malware Delivery

• Cybersecurity Labeling for Smart Devices Aims to Help People Choose Items Less Likely to be Hacked

• 55,000 Impacted by Cyberattack on California School Association

• Bolster Raises $14 Million for AI-Powered Phishing Protection

• Ransomware Fallout: 94% Experience Downtime, 40% Face Work Stoppage

• Major Security Flaw Discovered in Popular Cloud Logging Tool

• NVD Leaves Exploited Vulnerabilities Unchecked

• Snowflake’s Anvilogic Investment Signals Changes in SIEM Market

• Consumer-Grade Spyware App Found on US Hotel Check-in Computers

• Legacy Windows OSes Fall Prey to Rapid Online Attacks

• LastPass Rolls Out URL Encryption In Password Vaults

• Demystifying Multicloud Networking with Cisco Multicloud Defense

• ShrinkLocker: Turning BitLocker into ransomware

• Creating a Security Program with Less Complexity and More Visibility

• Apple’s Wi-Fi Positioning Can Be System Abused To Track Users

• Inside Operation Diplomatic Specter: Chinese APT Group’s Stealthy Tactics Exposed

• Are Your SaaS Backups as Secure as Your Production Data?

• Bugcrowd, the crowdsourced white-hat hacker platform, acquires Informer to ramp up its security chops

• Critical SQL Injection flaws impact Ivanti Endpoint Manager (EPM)

• Heimdal to Showcase Widest Cybersecurity Tech Stack at Infosecurity Europe 2024

• Apple Wi-Fi Positioning System Open to Global Tracking Abuse

• Rockwell Automation Urges Disconnection of ICS from the Internet

• NYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 Hack

• 400,000 Impacted by CentroMed Data Breach

• Newly Detected Chinese Group Targeting Military, Government Entities

• Why We Need to Get a Handle on AI

• Zero-Day Attacks and Supply Chain Compromises Surge, MFA Remains Underutilized: Rapid7 Report

• EU Data Centers to Report Energy and Water Use Under New Rules

• National Records of Scotland Data Breached in NHS Cyber-Attack

• Apple Appeals Against EU’s $2bn Music Streaming Fine

• Spyware App Found Running on Multiple US Hotel Check-In Computers

• OpenText Acquires Cybersecurity MDR Platform for MSPs

• Personal AI Assistants and Privacy

• Former White House Cyber Official Jeff Greene to Join CISA

• How AI will change your credit card behind the scenes

• My 5 must-have extensions for Firefox on Android (and what I use them for)

• Using AI, Mastercard Expects to Find Compromised Cards Quicker, Before They Get Used by Criminals

• GitHub fixes maximum severity Enterprise Server auth bypass bug (CVE-2024-4985)

• How Do We Build a Security Program to Thwart Deepfakes?

• Operation Diplomatic Specter: An Active Chinese Cyberespionage Campaign Leverages Rare Tool Set to Target Governmental Entities in the Middle East, Africa and Asia

• OpenAI Agrees Content Deal With News Corp

• SEC Fines NYSE Owner ICE for Delay in Reporting VPN Breach

• Ivanti Patches Critical Remote Code Execution Flaws in Endpoint Manager

• Cybersecurity News: NY Stock Exchange owner fined, $50 million towards hospital security, LockBit no longer reigns supreme

• Chinese actor ‘Unfading Sea Haze’ remained undetected for five years

• Scammers are Selling Fake NSO Pegasus Spyware

• OpenText Boosts MDR Offering for MSPs With Pillr Acquisition

• Watch on Demand: Threat Detection and Incident Response (TDIR) Summit

• OneTrust helps organizations meet the framework requirements

• GitHub Fixes Maximum Severity Flaw in Enterprise Server

• A journey into forgotten Null Session and MS-RPC interfaces

• UK data watchdog wants six figures from N Ireland cops after 2023 data leak

• RSAC Fireside Chat: Qwiet AI leverages graph-database technology to reduce AppSec noise

• Dota2 – 1,907,205 breached accounts

• PSNI Faces £750,000 Data Breach Fine After Spreadsheet Leak

• SOCRadar raises $25.2 million to accelerate investments in key areas

• What happens when AI goes rogue (and how to stop it)

• A consumer-grade spyware app found in check-in systems of 3 US hotels

• Server-Side Credit Card Skimmer Lodged in Obscure Plugin

• HHS pledges $50M for autonomous vulnerability management solution for hospitals

• Microsoft Replacing VBScript With JavaScript & PowerShell

• How Apple Wi-Fi Positioning System can be abused to track people around the globe

• Would you buy Pegasus spyware from this scammer?

• The End of an Era: Microsoft Phases Out VBScript for JavaScript and PowerShell

• Cyber Threat news headlines trending on Google

• Frida-JIT-unPacker: An Imperva Contribution to the Security Research Community, Presented at Black Hat Asia 2024

• CISOs pursuing AI readiness should start by updating the org’s email security policy

• Strategies for transitioning to a SASE architecture

• Ransomware fallout: 94% experience downtime, 40% face work stoppage

• ‘China-aligned’ spyware slingers operating since 2018 unmasked at last

• Machine identities lack essential security controls, pose major threat

• 2024 sees continued increase in ransomware activity

• The Crux of Android 14 Application Migration and Its Impact

• ISC Stormcast For Thursday, May 23rd, 2024 https://isc.sans.edu/podcastdetail/8994, (Thu, May 23rd)

• Human Error and AI Emerge as Key Challenges in Survey of CISOs

• BTS #30 – Systems Of Trust – Robert Martin

• Lawmakers advance bill to tighten White House grip on AI model exports

• Analysis of ?redtail? File Uploads to ICS Honeypot, a Multi-Architecture Coin Miner [Guest Diary], (Wed, May 22nd)

Generated on 2024-05-24 23:55:09.938369