IT Security News Daily Summary 2024-05-31

• US senator claims UnitedHealth’s CEO, board appointed ‘unqualified’ CISO

• Hacked, leaked, exposed: Why you should never use stalkerware apps

• Friday Squid Blogging: Baby Colossal Squid

• International Malware Takedown Seized 100+ Servers

• Exposed and vulnerable: Recent attacks highlight critical need to protect internet-exposed OT devices

• Nexus Dashboard Essentials: Learn How to Manage Your Data Center Fabric Like a Pro

• Keep your iPhone super secure. This app shows you how

• Cyber cops plead for info on elusive Emotet mastermind

• Senator Calls for FTC, SEC Probe Into UnitedHealth’s ‘Negligence’ in Breach

• Snowflake compromised? Attackers exploit stolen credentials

• Cyber Security Today Week in Review for week ending May 31, 2024

• Recall: Stealing everything you’ve ever typed or viewed on your own Windows PC is now possible.

• Proven Data Restores PowerHost’s VMware Backups After SEXi Ransomware Attack

• Immersive Labs Study Reveals AI Prompt Injection Vulnerability in Bots

• A Major Industrial Cybersecurity Threat: Living off the Land Attacks

• Mysterious Cyber Attack Took Down 600,000+ Routers in the U.S.

• Hackers steal $305M from DMM Bitcoin crypto exchange

• ‘Pumpkin Eclipse’ — 600,000+ Rural ISP Routers Bricked Beyond Repair

• How to tell if a VPN app added your Windows device to a botnet

• Hackers steal $305 million from DMM Bitcoin crypto exchange

• USENIX Security ’23 – zkSaaS: Zero-Knowledge SNARKs as a Service

• Part 13

• TrustCloud Product Updates: May 2024

• The NSA advises you to turn your phone off and back on once a week – here’s why

• Ransomware attack on Poland news agency and Seattle Public Library

• Essential Data Protection Starts with Least Privilege

• Proven Data Restores Powerhosts’ VMware Backups After SEXi Ransomware Attack

• Internet Safety Month: Keep Your Online Experience Safe and Secure

• New Nork-ish Cyberespionage Outfit Uncovered After Three Years

• CISA Warns Of Exploited Linux Kernel Vulnerability

• Mysterious Threat Actor Used Chalubo Malware To Brick 600,000 Routers

• Okta Says Customer Identity Cloud Prone To Credential Stuffing Attacks

• Information Of Hundreds Of European Politicians Found On Dark Web

• Fraudulent SMS Entities Blacklisted in Government Crackdown

• A Practical Guide to Applying Zero Trust Principles to Active Directory for Microsoft On-Premises and Hybrid Environment Protection

• New Nork-ish cyberespionage outfit uncovered after three years

• BSides Knoxville 2024: A Community Celebrating A Decade of Cybersecurity

• Facebook Account Takeovers: Can Tech Giant Stop Hijacking Scams?

• How to stop ransomware for good— and add the missing layer to ransomware resiliency

• A Data Responsibility: Leveraging the Power of Trust to Drive Growth

• Get Ready for more Cisco Software and Solutions on Google Cloud Marketplace

• CTI for M&A

• Cybersecurity Insights with Contrast CISO David Lindner | 5/31/24

• Phishing Campaigns Exploit Cloudflare Workers to Harvest User Credentials

• Edge Computing Versus Cloud Computing: Key Similarities and Differences

• Top Tech Conferences & Events to Add to Your Calendar in 2024

• Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours

• Effective Incident Response: A Cybersecurity Playbook for Executives

• Navigating the Danger Zone: Discord’s Battle Against Malware

• Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices

• The Public Sector’s Troubled Relationship to Ransomware in 2023: A Year in Review

• TikTok Developing Clone Of App’s Core Algorithm – Report

• In Other News: Apple WPS Surveillance, Canadian Gov Wants Backdoors, NIST AI Program

• ELLIO and ntop partnership to boost high-speed network traffic monitoring with real-time data on opportunistic scans, botnets, and mass attacks

• 25,000 individuals affected in BBC Pension Scheme data breach

• DDoS-as-a-Service Botnet Backed by Mirai Attacking Gaming Community

• Hackers Weaponizing MS Office-Cracked Versions to Deliver Malware

• FlyingYeti Exploits WinRAR Vulnerability For Targeted Malware Attacks

• LilacSquid Hackers Attacking IT Industries To Harvest Confidential Data

• Is Zero Trust Enough?

• Introducing the Open Supply-Chain Information Modeling (OSIM) Technical Committee

• LilacSquid APT targeted organizations in the U.S., Europe, and Asia since at least 2021

• Beyond Threat Detection – A Race to Digital Security

• New banking trojan “CarnavalHeist” targets Brazil with overlay attacks

• Data Leak Exposes Business Leaders and Top Celebrity Data

• Hackers Exploiting Stored XSS Vulnerabilities in WordPress Plugins

• OpenAI’s Altman Sidesteps Questions About Governance, Johansson at UN AI Summit

• CISA Warns of Exploited Linux Kernel Vulnerability

• Mysterious Threat Actor Used Chalubo Malware to Brick 600,000 Routers

• Information of Hundreds of European Politicians Found on Dark Web

• Google to push ahead with Chrome’s ad-blocker extension overhaul in earnest

• How AI Will Change Democracy

• Check Point VPN zero-day exploited since beginning of April (CVE-2024-24919)

• Amazon Given FAA Clearance To Expand Drone Deliveries

• 6 Best Enterprise VPN Solutions for 2024

• The Evolution of Security in Containerized Environments

• OpenAI, Meta, and TikTok Crack Down on Covert Influence Campaigns, Some AI-Powered

• Russian Hackers Target Europe with HeadLace Malware and Credential Harvesting

• BBC Pension Scheme Breached, Exposing Employee Data

• “K1w1” InfoStealer Uses gofile.io for Exfiltration, (Fri, May 31st)

• What Is Cloud Security? Definition, Best Practices & Types

• Hackers Boast Ticketmaster Breach on Relaunched BreachForums

• Cybersecurity News: UnitedHealth responsibility, Europol dropper takedown, malware bricks routers

• The 8 P’s to Mitigate Risks in Software Product Development Initiatives

• apexanalytix Cyber Risk provides instant alerts for supplier data breaches

• Terra Labs, Do Kwon Settle SEC Fraud Case

• VirusTotal Celebrates 20th Anniversary, What’s Next?

• Surge in fake pharmacy campaigns abusing Firebase link shortener

• BBC Data Breach Impacts 25,000 Employees

• #Infosec2024: Why Cybersecurity is Critical for the 2024 Paris Olympics

• OpenAI, Meta, TikTok Disrupt Multiple AI-Powered Disinformation Campaigns

• Beware of Fake Browser Updates That Deliver Bitrat & Lumma Stealer

• Check Point Releases Emergency Fix for Exploited VPN Zero-Day – Key Points

• BBC disclosed a data breach impacting its Pension Scheme members

• Over 600K routers in USA were disrupted by Cyber Attack

• The Crucial Role of Security in Accelerating 5G Adoption

• What is ISO 27701 PIMS?

• FlyingYeti phishing crew grounded after abominable Ukraine attacks

• AI in HR: Is artificial intelligence changing how we hire employees forever?

• Cyber Security Today, May 31, 2024 – Hundreds of thousands of routers are wiped, warnings to Okta and Snowflake administrators, and more

• Lack of skills and budget slow zero-trust implementation

• Operation Endgame – 16,466,858 breached accounts

• From Phishing to Fraud: How AI Can Safeguard Your Customers

• Encrypted Notepad: Open-source text editor

• New infosec products of the week: May 31, 2024

• ISC Stormcast For Friday, May 31st, 2024 https://isc.sans.edu/podcastdetail/9004, (Fri, May 31st)

• Ransomware Attack Struck This Medical Device Manufacturer

• Mystery miscreant remotely bricked 600,000 SOHO routers with malicious firmware update

• Mystery attacker remotely bricked 600,000 SOHO routers with malicious firmware update

• Hackers Use Trojanized Minesweeper Clone to Phish Financial Organizations

• In the jungle of AWS S3 Enumeration

• OpenAI is very smug after thwarting five ineffective AI covert influence ops

• Make Your Buildings Smarter with Cisco Spaces Cloud

• One Phish, Two Phish, Red Phish, Blue Phish

• US Treasury says NFTs ‘highly susceptible’ to fraud, but ignored by high-tier criminals

• IT Security News Daily Summary 2024-05-30

• Proofpoint’s CISO 2024 Report: Top Challenges Include Human Error & Risk

• Trump Guilty On All 34 Felony Counts

• What is extortionware? How does it differ from ransomware?

• CISA adds Check Point Quantum Security Gateways and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog

• Law enforcement conducts ‘largest ever’ botnet takedown

• The 7 core pillars of a zero-trust architecture

• AI Threat Scenario, GuLoader, DarkGate, MirrorBlast, Kutaki Stealer and More – Hacker’s Playbook Threat Coverage Round-up: May 2024

• Top 6 benefits of zero-trust security for businesses

• Experts found a macOS version of the sophisticated LightSpy spyware

• ShinyHunters Claims Santander Bank Breach: 30M Customers’ Data for Sale

• Is Imitation A Form Of Flattery? Scarlett Johansson Doesn’t Think So | Avast

• Cybersecurity Management Lessons from Healthcare Woes

• Ecuador Is Literally Powerless in the Face of Drought

• Mitigate Http/2 continuations with Imperva WAF

• Do you need an anti-spy camera finder and bug detector? How they work

• Zero-day flaw in Check Point VPNs is ‘extremely easy’ to exploit

• CISA Alerts Federal Agencies to Patch Actively Exploited Linux Kernel Flaw

• Attackers are impersonating a road toll payment processor across the U.S. in phishing attacks

• Analysis: US Sanctions Target Chinese Botnet Behind COVID Relief Theft

• The best VPN for streaming in 2024: Expert tested and reviewed

• The best travel VPNs of 2024: Expert tested and reviewed

• Euro cops disrupt malware droppers, seize thousands of domains

• E80 Group secures its AGVs with Cisco industrial solutions and Italtel system integration

• Investing in Cloud Infrastructure in the Kingdom of Saudi Arabia

• Important details about CIRCIA ransomware reporting

• Microsoft’s Windows Recall: Cutting-Edge Search Tech or Creepy Overreach?

• Cloudflare Expands Zero Trust Capabilities with Acquisition of BastionZero

• FlyingYeti Exploits WinRAR Vulnerability to Deliver COOKBOX Malware in Ukraine

• Beware of scammers impersonating Malwarebytes

• 4 Arrested as Operation Endgame Disrupts Ransomware Botnets

• What Is Cloud Security Management? Types & Strategies

• Solaris SE partners with Salt Security

• Ticketmaster Hack Ticks Off 560M Customers in 1.3TB Breach

• Cyber Espionage Alert: LilacSquid Targets IT, Energy, and Pharma Sectors

• Europol-Led Operation Endgame Hits Botnet, Ransomware Networks

• Eurojust conducts operation to shut malware and ransomware spreading botnets

• USENIX Security ’23 – Curve Trees: Practical and Transparent Zero-Knowledge Accumulators

• AI Transforming Education in the South East: A New Era for Schools

• Wordfence Intelligence Weekly WordPress Vulnerability Report (May 20, 2024 to May 26, 2024)

• We Made It, Together: 20 Years of VirusTotal!

• May 2024 Web Server Survey

• ‘Operation Endgame’ Hits Malware Delivery Platforms

• NIST Getting Outside Help for National Vulnerability Database

• Critical WordPress Plugin Flaws Exploited to Inject Malicious Scripts and Backdoors

• Investigating the Potential Benefits of Periodic iPhone Shutdowns

• First American Reveals Data Breach Impacting 44,000 Individuals

• RedTail Cryptominer Threat Actors Adopt PAN-OS CVE-2024-3400 Exploit

• Toshiba Email Compromise Leaks Social Security Numbers – Analysis

• Is Microsoft Recall a ‘privacy nightmare’? 7 reasons you can stop worrying about it

• Baxter Welch Allyn Connex Spot Monitor

• Inosoft VisiWin

• Inspiring Innovation at Cisco Live Las Vegas 2024

• Cross-Team Collaboration is Vital for Organizations in Today’s Digital Landscape

• I purchased a luxury vacation to Aruba for only $151.73 – thanks to credential stuffing

• RedTail Malware Abuses Palo Alto Flaw in Latest Cryptomining Campaign

• RedTail Crypto-Mining Malware Exploiting Palo Alto Networks Firewall Vulnerability

• What Is ShrinkLocker? New Ransomware Targets Microsoft BitLocker Encryption Feature

• Cisco Firepower Management Center Impacted By a High-Severity Vulnerability

• Researchers Uncover Active Exploitation of WordPress Plugin Vulnerabilities

• Cybercriminals raid BBC pension database, steal records of over 25,000 people

• Fuji Electric Monitouch V-SFT

• LenelS2 NetBox

• The power of community helps Cisco Insider Rob Taylor bring innovation to his customers.

• Researchers Crack 11-Year-Old Password, Recover $3 Million In Bitcoin

• FBCS Data Breach Impact Grows To 3.2 Million Individuals

• Massive 911 S5 Botnet Dismantled, Mastermind Arrested

• Critics Of Putin And His Allies Targeted With Spyware Inside The EU

• Australia Looking Into Alleged Ticketmaster Hack

• 16-29 February 2024 Cyber Attacks Timeline

• Top 7 Database Security Best Practices

• Strata Identity Wins 2024 Fortress Cybersecurity Award from Business Intelligence Group

• Analysis Uncovers Raft of Identity Issues in the Cloud

• History Meets Hackers: Internet Archive Battles Ongoing DDoS Attacks

• Centripetal Expands Portfolio with DNS Offering

• “Largest Botnet Ever” Disrupted. 911 S5’s Alleged Mastermind Arrested

• IT worker sued over ‘vengeful’ cyber harassment of policeman who issued a jaywalking ticket

• Revolutionizing Education in South Australia: Strong Networks, Strong Learning

• Full Drive Encryption Only a Half-Measure for Data Security

• Ask the Analyst: Nisos Anti-scraping Expert Scott Tessier

• Iranian Hacker Group Void Manticore Linked to Destructive Cyber Attacks on Israel and Albania

• Stopping Cloud-Based Identity Attacks with Push Security

• Pop Culture Passwords Most Likely to Get You Hacked, New Study

• Progress Telerik Report Server Flaw Let Attackers Bypass Authentication

• FBCS Data Breach Impact Grows to 3.2 Million Individuals

• TrickBot and Other Malware Droppers Disrupted by Law Enforcement

• How to Build Your Autonomous SOC Strategy

• LilacSquid: The stealthy trilogy of PurpleInk, InkBox and InkLoader

• CryptoChameleon Kit With Group of Tools Propagate Phishing Quickly into Infrastructure

• Managing Firewall complexity and Augmenting Effectiveness with AIOps for Cisco Firewall

• Cisco Secure Firewall integrates with Azure Virtual WAN (vWAN) to simplify firewall insertion in Azure environments

• Shifting gender stereotypes: ten years of Women Rock-IT

• Massive 911 S5 Botnet Dismantled, Chinese Mastermind Arrested

• 8 Degrees of Secure Access Service Edge

• Okta Warns of Credential Stuffing Attacks Targeting Cross-Origin Authentication

• Europol Shuts Down 100+ Servers Linked to IcedID, TrickBot, and Other Malware

• Spring Cloud Data Flow Let Attackers Compromise The Server

• Top 6 Database Security Solutions Available in 2024

• Supply Chain Attack against Courtroom Software

• IBM spin-off Kyndryl accused of discriminating on basis of age, race, disability

• Do VPNs Change or Hide Your IP Address?

• The Ticketmaster “breach”—what you need to know

• Pretty much all of the headaches affecting MSPs are due to cybersecurity

• NIST says NVD will be back on track by September 2024

• BlackRock $20bn ETF Becomes World’s Biggest Bitcoin Fund

• OpenAI Board ‘Not Aware Of ChatGPT Launch’

• Meta Finds Facebook Propaganda Network Using Generative AI

• HP Sales Beat Expectations As PCs Return To Growth

• The Unusual Espionage Act Case Against a Drone Photographer

• US-Led Operation Takes Down World’s Largest Botnet

• Recruiting From the Help Desk

• Employee Termination Policy

• Check Point VPN Attacks Involve Zero-Day Exploited Since April

• Ransomware Attack Disrupts Seattle Public Library Services

• VMware Workstation and Fusion: Critical Security Flaws Fixed

• Cybersecurity News:  New NK hackers, Dutch bank breached, Wayback Machine attacked

• Operation Endgame, the largest law enforcement operation ever against botnets

• RSAC Fireside Chat: Start-up Anetac rolls out a solution to rising ‘service accounts’ exposures

• U.S. Dismantles World’s Largest 911 S5 Botnet, with 19 Million Infected Devices

• Elevate Your IAM Strategy with Thales at EIC 2024

• Threat Hunting 101: Five Common Threats to Look For

• Former FTX Executive Ryan Salame Sentenced To Seven Years

• Shark Tank Host Launches Crowdfunding Site For TikTok Buy

• Law enforcement operation dismantled 911 S5 botnet

• #Infosec2024: Why Credential-Based Attacks Need Modern Solutions

• Okta Warns Credential Stuffing Attacks Targeting Customer Identity Cloud

• London Woman Jailed For Six Years For Laundering Bitcoin

• Okta warns of credential stuffing attacks targeting its Cross-Origin Authentication feature

• Okta Warns of Credential Stuffing Attacks Targeting Customer Identity Cloud

• Feeding MISP with OSSEC, (Thu, May 30th)

• Hackers Claiming Shell Data Breach On Popular Hacking Forum

• Cyber Attack news headlines trending on Google

• Indian stock exchange finally encrypting all messages to traders

• Operation Endgame – 16,455,383 breached accounts

• Decoding Water Sigbin’s Latest Obfuscation Tricks

• ESET World 2024: Big on prevention, even bigger on AI

• What is Security Orchestration?

• Cybercriminals Abuse Stack Overflow to Promote Malicious Python Package

• 59% of public sector apps carry long-standing security flaws

• A Year of Opportunity: Our Role in Empowering Global Progress

• Identity-related incidents becoming severe, costing organizations a fortune

• NIST unveils ARIA to evaluate and verify AI capabilities, impacts

• ISC Stormcast For Thursday, May 30th, 2024 https://isc.sans.edu/podcastdetail/9002, (Thu, May 30th)

• Chinese national cuffed on charges of running ‘likely the world’s largest botnet ever’

• Malicious PyPI Package ‘Pytoileur’ Targets Windows and Leverages Stack Overflow for Distribution

Generated on 2024-05-31 23:55:10.292006