IT Security News Daily Summary 2024-06-25

• LockBit holds 33TB of stolen data and its ransom deadline is almost up: What’s next and is it real or hoax?

• Comparing MDR vs SIEM: Which Is Better for Your Business?

• Rogue Nations: An Assessment of State-Sponsored Cyberattacks.

• The AI Arms Race Shaping Federal Cyber Resilience

• Large Issue Cleanup in OpenSSL

• U.S. Imposes Ban on Russia’s Kaspersky; Sanctions 12 Executives

• Get 10x more Visibility across APTs with Red Piranha’s SOC-as-a-Service and Crystal Eye

• Fiend touts stolen Neiman Marcus customer info for $150K

• Indonesia won’t pay $8M ransom in data center attack that disrupted major public services

• Cybersecurity Essentials for Software Developers

• SonarQube 10.6 Release Announcement

• LockBit Claims Ransomware Attack on U.S. Federal Reserve

• Crypto scammers circle back, pose as lawyers, steal an extra $10M in truly devious plan

• Best practices for protection from ransomware in cloud storage

• $50 Million in BEC Losses

• IT and Consulting Firms Leverage Generative AI for Employee Development

• Progress quietly fixes MOVEit auth bypass flaws (CVE-2024-5805, CVE-2024-5806)

• Mirai-like botnet is exploiting recently disclosed Zyxel NAS flaw

• Google Framework Helps LLMs Perform Basic Vuln Research

• Neiman Marcus Data Breach Exposed As Hacker Offers To Sell Stolen Info

• Julian Assange Pleads Guilty, Goes Home

• Meta’s VR Headset Vulnerable To Ransomware Attacks

• Deadline Looms For Alleged LockBit Extortion Over Feds Of 33TB Of Data

• Index Engines’ Cybersense Delivers Unparalleled Ransomware Detection With 99.99% Accuracy

• What is security information and event management (SIEM)?

• EFF Statement on Assange Plea Deal

• How platform engineering helps you get a good start on Secure by Design

• Hacking APIs with HTTPie

• Microsoft Privacy FAIL: Windows 11 Silently Backs Up to OneDrive

• Google’s Project Naptime Aims for AI-Based Vulnerability Research

• CDK Global faced second ransomware attack

• Ransomware attacks on obsolete Android devices

• EDR vs. antivirus: What’s the difference?

• New Medusa Trojan Variant Emerges with Enhanced Stealth Features

• WordPress 6.5.5 Security Release – What You Need to Know

• NIS2 for manufacturing organizations: 3 steps towards compliance

• Report: Cloud Breaches Impact Nearly Half of Organizations

• The Growing Threat of Malware Concealed Behind Cloud Services

• Four FIN9-linked Vietnamese Hackers Indicted in $71M U.S. Cybercrime Spree

• FBI Warns of Fake Law Firms Targeting Crypto Scam Victims

• EU Sanctions Six Russian Hackers

• Dark Web Sees 230% Rise in Singapore Identity Theft

• How Anthropic’s ‘Projects’ and new sharing features are revolutionizing AI teamwork

• ABB Ability System 800xA

• CISA Releases Two Industrial Control Systems Advisories

• PTC Creo Elements/Direct License Server

• A Week in Vegas with the Cisco Store

• Enhancing Your Network Security Growth: New Partner Offers

• Android RAT SpyMax Targets Telegram Users

• Ensuring Secure Communication in the Digital Age with VPNs and Post-Quantum Cryptography

• NTA Faces Exam Security Crisis Amid Darknet Threats

• What?s that scraping sound? How web scraper bots erode ecommerce profits

• digital signature

• P2PInfect Botnet Targets Redis Servers with New Ransomware Module

• eSentire introduces MDR for GenAI Visibility

• Create order from chaos

• Stolen Singaporean Identities Sold on Dark Web Starting at $8

• Manage AI threats with the right technology architecture

• 8 Best Enterprise Password Managers for 2024

• CISA says crooks used Ivanti bugs to snoop around high-risk chemical facilities

• Indonesia Says a Cyberattack Has Compromised Its Data Center but It Won’t Pay the $8 Million Ransom

• Recent Zyxel NAS Vulnerability Exploited by Botnet

• Top 6 Compliance Reporting Tools in 2024

• How AttackIQ Can Bolster CORA Compliance in the Federal Government

• Beware Of Shorten URLs With Word Files That Install Remcos RAT

• What Is a Secure Web Gateway? Features, Benefits & Challenges

• The Julian Assange Saga Is Finally Over

• Celebrating Authenticity at Cisco and London Pride

• SnailLoad Attack can Exploit Remote Network Latency Measurements to Infer User Activity

• Campaign Oversight Results in Leak of Senior Tories’ Private Info

• What is a Secure Web Gateway? Features, Benefits & Challenges

• Several Plugins Compromised in WordPress Supply Chain Attack

• Hackers Steal Over $2 Million in Cryptocurrency From CoinStats Wallets

• Cloud Breaches Impact Nearly Half of Organizations

• Omdia Report: Trend Disclosed 60% of Vulnerabilities

• Top 10 Best Penetration Testing Companies & Services in 2024

• Telegram says it has ‘about 30 engineers’; security experts say that’s a red flag

• Is the Cybersecurity Industry Ready for AI?

• Manufacturing Cybersecurity at Heart of New White House Guidance

• New Attack Uses MSC Files and Windows XSS Flaw to Breach Networks

• Boolka Group’s Modular Trojan BMANAGER Exposed

• Hackers Create Rogue Admin Accounts via Backdoored WordPress Plugins

• Akamai Doubles Down on API Security

• Security Measures to Look for in Online Gaming

• Tor Browser 13.5 Released With Improved Bridges, Feature Upgrades

• Hackers Use Windows XSS Flaw To Execute Arbitrary Command In MMC Console

• How adversarial AI is creating shallow trust in deepfake world

• UK and US cops band together to tackle Qilin’s ransomware shakedowns

• Meta’s Virtual Reality Headset Vulnerable to Ransomware Attacks: Researcher

• Ransomware disrupts Indonesia’s national data centre, LockBit gang claims US Federal Reserve breach

• New Attack Technique Exploits Microsoft Management Console Files

• Wikileaks founder Julian Assange is free

• Breaking the M-209

• KnowBe4 Launches Ransomware Awareness Month With IT Resource Kit at No Cost

• Sophos vs. Trend Micro: How Do They Shape Up?

• Reverse engineering eBPF programs

• From Code to Chaos: BlackSuit Ransomware and The CDK Global Cyber Crisis

• Google’s Naptime Framework to Boost Vulnerability Research with AI

• New Webkit Vulnerabilities Let Attackers Exploit PS4 And PS5 Playstations

• The Mystery of AI Gunshot-Detection Accuracy Is Finally Unraveling

• How AI Tool Marketplaces Are Revolutionising Business Efficiency

• Car Dealerships in North America Revert to Pens and Paper After Cyberattacks on Software Provider

• How to Cut Costs with a Browser Security Platform

• Malware Sandbox Any.Run Targeted in Phishing Attack

• New security loophole allows spying on internet users’ online activity

• How About This? Only Attack the Endpoints We Configured

• Hackers Exploit Multiple WordPress Plugins to Hack Websites & Create Rogue Admin Accounts

• Deepfake Creators Are Revictimizing GirlsDoPorn Sex Trafficking Survivors

• Cybersecurity in the SMB space — a growing threat

• Cybersecurity News: Indonesia battles Lockbit, DOJ charges cybercrime group, SEC reports following CDK attack

• Recording Labels Sue Start-Ups Over AI-Generated Music

• AT&T Says Tech Giants Should Fund Rural Broadband

• Zero Trust Maturity: How to Know When You’re Getting Close

• How Artificial General Intelligence Will Redefine Cybersecurity

• Ransomware thieves beware

• Suspected North Korean Attack Drains $2m from CoinStats Wallets

• Protect your network

• Neiman Marcus Data Breach Disclosed as Hacker Offers to Sell Stolen Information

• China Memory Chip Maker YMTC Sues Tech Consultancy For Libel

• White House Says Microsoft’s G42 AI Deal ‘Positive’ As It Ousted Huawei

• Credential Stuffing Attack Hits 72,000 Levi’s Accounts

• Hackers Attacking Windows IIS Server to Upload Web Shells

• Cisco NGO partner Simprints to advance ethical, inclusive AI for face recognition biometrics

• Chrome 126 Update Patches Memory Safety Bugs

• EU, China Agree To Talks Over Planned EV Tariffs

• WikiLeaks Founder Julian Assange Released in Stunning Deal with U.S.

• Intermediate vs Root Certificates

• Four Members of FIN9 Hackers Charged for Attacking U.S. Companies

• CISA confirmed that its CSAT environment was breached in January.

• Wikileaks’ Julian Assange Released from U.K. Prison, Heads to Australia

• Back to the Future: What AppSec Can Learn From 30 Years of IT Security

• BREAKING: NHS England’s Synnovis Hit by Massive Cyber Attack

• CISOs’ new ally: Qualys CyberSecurity Asset Management 3.0

• Zeek: Open-source network traffic analysis, security monitoring

• Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts

• 4 FIN9-linked Vietnamese Hackers Indicted in $71M U.S. Cybercrime Spree

• Telegram says it has ‘about 30 engineers’; security experts say that’s . . . not good

• Breaking down the numbers: Q2 2024 cybersecurity funding activity recap

• 2024-06-24 – ClickFix popup leads to Lumma Stealer

• Guide to mitigating credential stuffing attacks

• Telegram says it has just ’30 engineers’; security experts say that’s . . . not good

• ISC Stormcast For Tuesday, June 25th, 2024 https://isc.sans.edu/podcastdetail/9034, (Tue, Jun 25th)

• Julian Assange to go free in guilty plea deal with US

• EFF Opposes the American Privacy Rights Act

• Julian Assange freed in UK after agreeing to plead guilty to US charges

• Julian Assange freed after agreeing to plead guilty to US charges

• America’s best chance for nationwide privacy law could do more harm than good

• WikiLeaks Founder Julian Assange Will Plead Guilty in Deal With US and Return to Australia

• Zip Slip Meets Artifactory: A Bug Bounty Story

• StealC & Vidar Malware Campaign Identified

• IT Security News Daily Summary 2024-06-24

• Ollama drama as ‘easy-to-exploit’ critical flaw found in open source AI server

• Experts say Telegram’s ’30 engineers’ team is a security red flag

• Securing AI-Native Platforms: A Comprehensive Approach with SecureFLO

• Cybersecurity strategies for protecting data against ransomware and other threats

• USENIX Security ’23 – A Two-Decade Retrospective Analysis of a University’s Vulnerability to Attacks Exploiting Reused Passwords

• Tech Leaders Gather This Week for AI Risk Summit + CISO Forum at the Ritz-Carlton, Half Moon Bay

• Chinese Hackers Have Stepped Up Attacks on Taiwanese Organizations, Cybersecurity Firm Says

• The best travel VPNs of 2024: Expert tested and reviewed

• Vulnerability Recap 6/24/24 – Patch Highlights Across Platforms

• Navigating Cybersecurity and Regulatory Challenges in Financial Services

• Threat actors compromised 1,590 CoinStats crypto wallets

• Cyberattacks Threaten US Hospitals: Patient Care at Risk

• Massive Data Breach Hits London Hospitals Following Cyber Attack

• Car dealers stuck in the slow lane after cyber woes at software biz CDK

• Rafel RAT Used in 120 Campaigns Targeting Android Device Users

• Workers Killed In Fire At South Korean Battery Plant

• Hacker Claims TEG Ticket Vendor Breach: 30M User Records for Sale

• Change Healthcare confirms the customer data stolen in ransomware attack

• How to Create the Future of the Guest and Fan Experience

• Customize your Red Hat OpenShift nodes and keep them updated

• Passkey is the Future, and the Future is Now with Red Hat Enterprise Linux

• The Marvin Attack

• Understanding Qilin Ransomware: Threats, Origins, and Impacts on Healthcare

• EU Finds Apple In Breach Of DMA Competition Rules

• Corvus: Cyber insurance premiums see ‘stabilization’

• New SnailLoad Attack Relies on Network Latency Variations to Infer User Activity

• Modular Malware Boolka’s BMANAGER Trojan Exposed

• LockBit ransomware spinoff variant targets Indonesia Govt data centers

• Infamous Hacker IntelBroker Breaches Apple’s Security, Leaks Internal Tool Source Code

• Supply Chain Attack on WordPress.org Plugins Leads to 5 Maliciously Compromised WordPress Plugins

• Widespread Use of Rafel RAT Puts 3.9 Billion Android Devices at Risk

• Millions and Millions of Fraud Domains: China attacks Illegal Gambling and Telecom Fraud

• LivaNova USA Discloses Data Breach Impacting 130,000 Individuals

• EFF Issues New Warning After Discovery of Automated License Plate Reader Vulnerabilities

• Google Introduces Project Naptime for AI-Powered Vulnerability Research

• Android Users Warned of Rising Malware Threat From Rafel RAT

• Car dealership outages drag on after CDK cyberattacks

• Automating How DevNet Produces API Changelogs

• Cisco Unveils Workflows in Cisco Networking Cloud for Secure Network Automation

• ‘Mirai-like’ botnet observed attacking EOL Zyxel NAS devices

• Fast Food Giant Jollibee Suffers Major Cyberattack, 32 Million Affected

• Mozilla Firefox Now Requires Device Lock To Access Stored Passwords

• Malware Campaign Targets F5 BIG-IP Appliances To Steal Data For Years

• Google Addressed Numerous Security Flaws With Chrome 126

• Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool

• Push Notification Fatigue Leads to LA County Health Department Data Breach

• Vietnamese Members of FIN9 Hacking Group Charged in US

• Vulnerability Summary for the Week of June 17, 2024

• Provenir’s AI-powered risk decisioning platform increases fraud detection

• Women in Tech: Remain Open to Unexpected Opportunities

• LockBit Ransomware Group Claims Hack of US Federal Reserve

• Threat Actor Claiming a 0-day in Linux LPE Via GRUB bootloader

• Experts observed approximately 120 malicious campaigns using the Rafel RAT

• Zip Slips Meets Artifactory: A Bug Bounty Story

• LockBit Ransomware Claims 33 TB of US Federal Reserve Data for Ransom

• Comprehensive Guide To Troubleshooting IPsec VPN Site-To-Site Connections With PSK on FortiGate Firewalls

• Levi’s And More Affected In Pants Dropping Week Of Data Breaches

• CDK Global Begins To Restore Systems After Cyber Attack Hits Thousands Of Retailers

• Cyber Attack Compromised Indonesian Datacenter, Ransom Sought

• Snowflake Breach Snowballs With More Victims

• Britain’s Ministry of Defence accused of wasting £174M on ‘external advice’

• Behind the Breach: Understanding the Change Healthcare Cyberattack

• US Sanctions 12 Kaspersky Executives

• Cyber Security Today, June 24, 2024 – Ransomware gang reportedly behind the hack of car dealership software provider

• Mailcow Patches Critical XSS and File Overwrite Flaws – Update NOW

• Sparking Growth and Inspiration: How Cisco Illuminates a New Path for Learning

• Striving for Sustainability: Meet Pelin

• Exciting News: CDO India and CDO Australia Now Generally Available!

• Open-source Rafel RAT steals info, locks Android devices, asks for ransom

• China-Based RedJuliett Targets Taiwan in Cyber Espionage Campaign

• Paul Nakasone Joins OpenAI’s Board of Directors

• Ease the Burden with AI-Driven Threat Intelligence Reporting

• Microsoft Power BI Vulnerability Let Attackers Access Organizations Sensitive Data

• Advance Auto Parts – 79,243,727 breached accounts

• Levi’s and more affected in pants-dropping week of data breaches

• Say Hello to Scytale’s Newest Integrations, Enabling Deeper Compliance Automation

• Intrusion Detection in Linux: Protecting Your System from Threats

• Real-time Ubuntu 24.04 LTS is Available

• Booking.com Warns Of AI-Fuelled 900 Percent Scam Surge

• China-Linked Shein Faces Uphill Battle For IPO In US Or UK

• US Publishes Draft Rules On China AI, Chip Investment

• US Government Prepares TikTok Lawsuit Over Child Privacy

• Apple Delays AI Features In EU Over DMA Rules

• Get a Lifetime Subscription of FastestVPN for just $32 Through 6/26

• Bitdefender VPN vs NordVPN (2024): Which VPN Is the Best?

• LockBit claims the hack of the US Federal Reserve

• XZ backdoor: Hook analysis

• VBSpam tests to be executed under the AMTSO framework

• Japan’s Space Agency Was Hit by Multiple Cyberattacks, but Officials Say No Sensitive Data Was Taken

• Hacker Claims Theft of 30M User Records From Australia Ticketing Company TEG

• Cybersecurity News: BlackSuit behind CDK, Microsoft spoofing bug, Nuclear compliance failures

• Ransomware threat landscape Jan-Apr 2024: insights and challenges

• Polish Prosecutors Step Up Probe into Pegasus Spyware Operation

• Configuration Scanners Adding Java Specific Configuration Files, (Mon, Jun 24th)

• Red Tape Is Making Hospital Ransomware Attacks Worse

• On-Demand Materiality Analysis Guides Determination | Kovrr

• TikTok Offered US ‘Kill Switch’ Over Data Concerns

• Nvidia Cedes Top Market Spot To Microsoft

• IoT Security Regulations: A Compliance Checklist – Part 1

• Gaining Network Transparency with Asset Discovery and Compliance for IT/OT

• 7 Challenges in Scaling SOC Operations and How to Overcome Them

• Meta and SQL Server make strange bedfellows on a couch of cyber-pain

• ExCobalt Cybercrime group targets Russian organizations in multiple sectors

• Enzoic appoints Kristen Ranta Haikal Wilson as CEO

• RedJuliett Cyber Espionage Campaign Hits 75 Taiwanese Organizations

• Sellafield Pleads Guilty to Historic Cybersecurity Offenses

• Social Media Warning Labels, Should You Store Passwords in Your Web Browser?

• A week in security (June 17 – June 23)

• Techie took out a call center – and almost their career – with a cut and paste error

• Facial Recognition Startup Clearview AI Settles Privacy Suit

• Consulting Companies to Pay $11 Million Failing Cybersecurity Requirements

• The Importance of Whitelisting Scanner IPs in Cybersecurity Assessments

• NHS Qilin Ransomware gang is shrugging off the blame

• Top 10 Industries Most Vulnerable to Cyber Attacks

• Multiple Threat Actors Deploying Open-Source Rafel RAT to Target Android Devices

• New RAT Malware SneakyChef & SugarGhost Attack Windows Systems

• The End of Our Dog Era

• Securing the video market: From identification to disruption

• Why are threat actors faking data breaches?

• Cracking down on cybercrime: Who you gonna call?

• 1 out of 3 breaches go undetected

• Snowflake breach snowballs as more victims, perps, come forward

• ISC Stormcast For Monday, June 24th, 2024 https://isc.sans.edu/podcastdetail/9032, (Mon, Jun 24th)

• Investigation of Russian Hack on London Hospitals May Take Weeks Amid Worries Over Online Data Dump

Generated on 2024-06-25 23:55:09.634329