IT Security News Daily Summary 2024-06-03

• Telegram Combolists – 361,468,099 breached accounts

• Is Your Phone Vulnerable? NSA Recommends a Simple Fix: Restart

• Cybersecurity Automation in Healthcare Program Launched by HHS Agency

• Enhancing Vehicle Routing Problems With Deep Reinforcement Learning and Metaheuristics

• Zero-Click Attacks: The Silent Assassins of the Digital World

• Mandiant: Ransomware investigations up 20% in 2023

• Crooks threaten to leak 3B personal records ‘stolen from background check firm’

• CISA adds Oracle WebLogic Server flaw to its Known Exploited Vulnerabilities catalog

• Cyberattack Risks Keep Small Business Security Teams on Edge

• Google Hates Ad Blockers: Manifest V3 Push Starts Today

• EFF Appeals Order Denying Public Access to Patent Filings

• Randall Munroe’s XKCD ‘Modes of Transportation’

• The Myth of “Fileless” Malware

• Popular WordPress Plugins Leave Millions Open to Backdoor Attacks

• The best Bluetooth trackers of 2024: Expert tested

• Kaspersky released a free Linux virus removal tool – but is it necessary?

• Using ChatGPT as a SAST tool to find coding errors

• Donald Trump Joins TikTok After Trying To Ban It

• New security superpowers to help IT with OT security

• Forrester Names Palo Alto Networks a Leader in XDR

• Santander Bank Faces Major Data Breach Affecting 30 Millions

• Snowflake cloud customers warned against data theft and extortion attacks

• 800 arrests, 40 tons of drugs, and one backdoor, or what a phone startup gave the FBI, with Joseph Cox: Lock and Code S05E12

• CISA Adds One Known Exploited Vulnerability to Catalog

• Menace Unleashed: Excel File Deploys Cobalt Strike at Ukraine

• A Practical Guide for Handling Unauthorized Access to Snowflake

• Securing Your Snowflake Environments

• USENIX Security ’23 – Automated Exploitable Heap Layout Generation for Heap Overflows Through Manipulation Distance-Guided Fuzzing

• Ransomware Rises Despite Law Enforcement Takedowns

• It’s Time to Up-Level Your EDR Solution

• The Giro Effect: Transforming Partnerships in the Ecosystem Era

• Russia takes gold for disinformation as Olympics approach

• Insikt Group Tracks GRU’s BlueDelta Cyber-Espionage Campaigns Across Europe

• Ransomware Attacks on the Rise! Nearly 2900 Assaults Reported in the First Quarter of 2024

• Google Confirms Leak of 2,500 Internal Documents on Search Algorithm

• Vulnerability Summary for the Week of May 27, 2024

• Ransomware Rises Amid Law Enforcement Takedowns

• Authorities Ramp Up Efforts to Capture the Mastermind Behind Emotet

• Researchers Uncover RAT-Dropping npm Package Targeting Gulp Users

• WhatsApp cryptocurrency scam goes for the cash prize

• go-secdump Tool Remotely Dump Secrets From Windows registry

• Identities of Cybercriminals Linked to Malware Loaders Revealed

• Meta to Train AI with Public Facebook and Instagram Posts

• Running CloudTest on Akamai Cloud Computing

• CarnavalHeist Weaponizing Word Documents To Steal Login Credentials

• Spanish police shut down illegal TV streaming network

• Less Is More: Why MSPs Are Moving to the Cybersecurity Platform Model

• Improved Guidance for Azure Network Service Tags

• 5 Reasons Why You Should Use a Password Manager

• How Do Password Managers Work and Why Do You Need One?

• Funding a Whole of State Approach for your Community

• PoC Published for Exploited Check Point VPN Vulnerability

• Online Banking Frauds: The Silent Threat to India’s Financial Stability

• Live Nation Confirms Massive Ticketmaster Data Breach

• CVE-2024-24919 Exploitation, Veriti Proactive Remediation

• Seeing Like a Data Structure

• NYDFS Cybersecurity Regulation: Automated Blocking of Commonly Used Passwords

• 8220 Gang Exploiting Oracle WebLogic Server Flaw To Deploy Cryptominer

• Check Point warns customers to patch VPN vulnerability under active exploitation

• XDR means so much more than some may realize

• Snowflake Data Breach Impacts Ticketmaster, Other Organizations

• Zyxel Networks USG LITE 60AX improves network security

• Shining the Light on Shadow IT: Top Five SaaS Security Tips for Third-Party Risk Management

• SASE Threat Report: 8 Key Findings for Enterprise Security

• A Wireshark Lua Dissector for Fixed Field Length Protocols, (Mon, Jun 3rd)

• Ransomware Rebounds: Extortion Threat Surges in 2023, Attackers Rely on Publicly Available and Legitimate Tools

• Facebook Sees Most Young Adult Users In Three Years

• Saudi Fund Invests In China’s Biggest AI Start-Up

• New V3B Phishing Kit Steals Logins and OTPs from EU Banking Users

• Price Drop: Learn Cybersecurity Skills From Scratch for Just $35

• How Donald Trump Could Weaponize US Surveillance in a Second Term

• APT28 targets key networks in Europe with HeadLace malware

• Researcher Uncovers Flaws in Cox Modems, Potentially Impacting Millions

• UK School Forced to Close Following Cyber-Attack

• Demystifying SOC 2 and ISO 27001

• Hugging Face Hack: Spaces Secrets Exposed

• Important Security Reminder – Install the Fix to Stay Protected

• IT threat evolution in Q1 2024. Non-mobile statistics

• IT threat evolution Q1 2024

• IT threat evolution in Q1 2024. Mobile statistics

• Task Force Triumphs in Shutting Down Six Notorious Malware Droppers

• Cybersecurity News: Ticketmaster breached, Ticketek Australia breached, HHS notification change

• South Korea Chip Stockpiles Drop Amidst Surge In AI Chip Demand

• US Regulator Asks For More Data In Zoox Self-Driving Probe

• What Is SOAR? Definition, Benefits & Use Cases

• High-risk Atlassian Confluence RCE fixed, PoC available (CVE-2024-21683)

• #Infosec2024: Nearly All of FTSE 100 Exposed to Third and Fourth-Party Breaches

• Cyber Security Today, June 3, 2024 – Four cloud-related data breaches

• PikaBot: a Guide to its Deep Secrets and Operations

• Advanced CI/CD: 6 steps to better CI/CD pipelines

• Understanding Vulnerability Management and Patch Management

• How Can FIM Protect Against Insider Threats

• Derisking your CNI

• Int’l Police Target Botnets In ‘Operation Endgame’

• Hackers Offer To Sell Hacked Data On Santander Customers, Staff

• Sanctioned Huawei Takes Global Top Spot For Foldable Smartphones

• TechRepublic Premium Editorial Calendar: Policies, Checklists, Hiring Kits and Glossaries for Download

• Secrets Exposed in Hugging Face Hack

• Andariel Hackers Target South Korean Institutes with New Dora RAT Malware

• Ticketmaster Confirms Breach Potentially Impacting 560 Million Users

• Critical wpDataTables Vulnerability Let Attackers Perform SQL Injection

• Insider Risk Digest: May

• Experts found information of European politicians on the dark web

• A week in security (May 27 – June 2)

• Threat Actors Claiming Breach Of Heineken Employees Data

• Exploring the Most Common Types of Cyber Attacks: Understanding the Threat Landscape

• Researchers crash Baidu robo-cars with tinfoil and paint daubed on cardboard

• NSA suggests these 11 mobile security tips to Android and iPhone users

• NethSecurity: Open-source Linux firewall

• Businesses must prioritize digital trust to avoid major problems

• Beware: Fake Browser Updates Deliver BitRAT and Lumma Stealer Malware

• Infosec products of the month: May 2024

• Organizations are moving from experimenting with AI to adopting it

• ISC Stormcast For Monday, June 3rd, 2024 https://isc.sans.edu/podcastdetail/9006, (Mon, Jun 3rd)

• Liquidmatrix Security Digest Podcast – Episode 77

• IT Security News Weekly Summary – Week 22

• IT Security News Daily Summary 2024-06-02

• Explore AI-Driven Cybersecurity with Trend Micro, Using NVIDIA NIM

• Keeping Pace with an Evolving Security and Trust Landscape

• How Main Street Businesses Can Up Their Cybersecurity Game

• FlyingYeti targets Ukraine using WinRAR exploit to deliver COOKBOX Malware

• Cisco Defense Orchestrator’s Path to FedRAMP Authorization

• California Advances AI Regulation to Tackle Discrimination and Privacy Concerns

• Ransomware Attacks in Healthcare: A Threat to Patient Safety

• Shell Data Breach: Hacker Group 888 Claims Responsibility

• Seattle Public Library Hit by Ransomware Attack, Online Services Disrupted

• USENIX Security ’23 – Bleem: Packet Sequence Oriented Fuzzing for Protocol Implementations

• RedTail Cryptomining Malware Exploits Zero-Day Vulnerability in PAN-OS

• Professional Sporting Events: The Next Frontier of Cybersecurity?

• Security Affairs newsletter Round 474 by Pierluigi Paganini – INTERNATIONAL EDITION

• Snowflake at centre of world’s largest data breach

• Navigating Email: From Spam Wars to Trusted Relationships

• Week in review: Attackers trying to access Check Point VPNs, NIST CSF 2.0 security metrics evolution

Generated on 2024-06-03 23:55:09.215956