IT Security News Daily Summary 2024-06-27

• How To Plan a (Successful) MuleSoft VPN Migration (Part I)

• LockBit group wrongly claimed the hack of the Federal Reserve

• New Relic CEO sets observability strategy for the AI age

• ACM will no longer cross sign certificates with Starfield Class 2 starting August 2024

• An Inside Look at The Malware and Techniques Used in the WordPress.org Supply Chain Attack

• GitHub Artifact Attestions now generally available

• AI Is Changing the Way Enterprises Look at Trust: Deloitte & SAP Weigh In

• Container Security Scanning: Vulnerabilities, Risks and Tooling

• An Artificially Intelligent Peer Reviewer Arrives

• US Announces Charges, Reward for Russian National Behind Wiper Attacks on Ukraine

• Drone As First Responder Programs Are Swarming Across the United States

• 14 Types of Malware and How to Prevent Them

• Thousands of UEFA Customer Credentials Sold on Dark Web

• Third-Party Trust Issues: AppSec Learns from Polyfill

• Rethinking the Cloud: Why Companies Are Returning to Private Solutions

• We’re not talking about cryptocurrency as much as we used to, but there are still plenty of scammers out there

• A new MOVEit vulnerability is igniting hacking attempts. Companies should patch ASAP

• What to do if you’re using Kaspersky security software that is now banned in the U.S.

• VMware vCenter RCE Vulnerability: What You Need to Know

• FBI Offers $5 Million Bounty For Fugitive ‘CryptoQueen’ Ruja Ignatova

• Precision AI — Revolutionizing Cybersecurity with Our Latest Campaign

• Toward greater transparency: Unveiling Cloud Service CVEs

• Polyfill Library Injected with Malware Impacting 100,000 Websites

• 2024-06-25 – Latrodectus infection with BackConnect and Keyhole VNC

• Smart Infrastructure Gets Lit Up!

• The Evolving SSL/TLS Certificate Lifecycle & How to Manage the Changes

• Driving licences and other official documents leaked by authentication service used by Uber, TikTok, X, and more

• Surprise! The Latest ‘Comprehensive’ US Privacy Bill Is Doomed

• Startups scramble to assess fallout from Evolve Bank data breach

• CISOs Reveal Firms Prioritize Savings Over Long-Term Security

• Lack Of Clarity On AI Regulation Hindering UK Projects

• Datadog DASH updates push into fresh IT automation turf

• CISA adds GeoSolutionsGroup JAI-EXT, Linux Kernel, and Roundcube Webmail bugs to its Known Exploited Vulnerabilities catalog

• Access AWS services programmatically using trusted identity propagation

• LockBit ransomware attack on Evolve Bank via US Federal Reserve

• Data Governance: Data Integration (Part 4)

• MerkSpy: Exploiting CVE-2021-40444 to Infiltrate Systems

• Operation First Light Seizes $257m in Global Scam Bust

• Wordfence Intelligence Weekly WordPress Vulnerability Report (June 17, 2024 to June 23, 2024)

• VinFast Touts Cheap And Tiny EV, Amid Sales Concerns

• TELSAT marKoni FM Transmitter

• Johnson Controls Illustra Essentials Gen 4

• Yokogawa FAST/TOOLS and CI Server

• LogRhythm Partners with The National Museum of Computing to Preserve Technological Heritage and Promote Inclusion in the Cybersecurity Industry

• Ransomware Strikes Auto Dealerships: The CDK Global Incident

• Rust-Based P2PInfect Botnet Evolves with Miner and Ransomware Payloads

• Global Revival of Hacktivism Requires Increased Vigilance from Defenders

• 12 Common Concerns of the Permeable IoT Attack Surface

• Check Point vs Palo Alto (2024): Which NGFW Is Better?

• What Is Cloud Data Security? Definition, Benefits & Best Practices

• PoC Exploit for Critical Fortra FileCatalyst Flaw Published

• Government Has Extremely Heavy Burden to Justify TikTok Ban, EFF Tells Appeals Court

• Elevating Disaster Recovery in Cybersecurity With AI-Driven Hyperautomation

• US lawmakers wave red flags over Chinese drone dominance

• Inside the Mind of a CISO: Survey and Analysis

• US, Allies Warn of Memory Unsafety Risks in Open Source Software

• GitLab Security Updates Patch 14 Vulnerabilities

• Designed Receivable Solutions Data Breach Impacts 585,000 People

• P2Pinfect Worm Now Delivering Ransomware on Redis Servers

• The Blockchain Revolution: Transforming Industries Beyond Finance

• Celebrating a Year of Innovation with Akamai Brand Protector

• SpaceX Wins Contract For International Space Station Disposal

• ‘Poseidon’ Mac stealer distributed via Google ads

• Strengthening Digital Defenses: Cyber Security Challenges and Top Tips for MSMEs

• Majority of Critical Open Source Projects Contain Memory Unsafe Code

• Infinidat Introduces Cyber Storage Protection to Reduce Ransomware and Malware Threats

• What is the Fediverse and the Social Network Platforms It Powers

• Exclusive: Zip’s AI procurement platform drives $4.4 billion in savings, reshaping enterprise spending

• Palo Alto Networks Cybersecurity Academy Supports Future Cyber Leaders

• Third of Organisations Have Suffered Three or More Data Breaches in the Last 24 Months

• Poc Exploit Released for Fortra Filecatalyst SQL Injection Vulnerability

• Malicious NPM Package Targets AWS Users to Deploy Backdoor

• CISA Warns of Exploited GeoServer, Linux Kernel, and Roundcube Vulnerabilities

• Gas Chromatograph Hacking Could Have Serious Impact: Security Firm

• The Secrets of Hidden AI Training on Your Data

• Snowflake isn’t an outlier, it’s the canary in the coal mine

• PortSwigger, the company behind the Burp Suite of security testing tools, swallows $112M

• Korean Telco Allegedly Infected Around 600,000 P2P Users with Malware

• Software composition analysis (SCA): A beginner’s guide

• Infinidat Revolutionizes Enterprise Cyber Storage Protection to Reduce Ransomware and Malware Threat Windows

• Bluesky Offers Starter Packs For Friends, Feeds To Follow

• Xeno RAT Attacking Users Via GitHub Repository And .gg Domains

• Ransomware Cheat Sheet: Everything You Need To Know In 2024

• Security Analysis of the EU’s Digital Wallet

• Largest Croatian hospital under cyberattack

• Top Tips to Keep Data Safe During the 2024 Paris Olympics

• Maryland Association of Community Colleges Receives Funding for the Cyber Workforce Accelerator

• ICO Scams Leverage 2024 Olympics to Lure Victims, Use AI for Fake Sites

• Odaseva raises $54M to secure Salesforce users

• Novel Snowblind Malware Targets Banking Customers in Southeast Asia

• Evolve Bank Data Leaked After LockBit’s ‘Federal Reserve Hack’

• Cloud Security Tops Priority List for Organizations Globally

• US Charges Russian Individual for Pre-Invasion Ukraine Hack

• 1-Click Exploit In Kakaotalk’s Android App Allows Arbitrary Code Execution

• Lastwall Quantum Shield delivers protection against Q-Day threats

• How to Use Python to Build Secure Blockchain Applications

• Securing Identities in the Cloud

• Amazon Finally Breaches $2 Trillion Valuation

• New Medusa RAT Attacking Android Devices to Steal SMS & Screen Controls

• Hackers Attacking Linux Cloud Servers To Gain Complete Control

• Too good to be true: Beware the temptation of recovery scams

• ‘Phantom’ Source Code Secrets Haunt Major Organizations

• Security Budgets Grow, but Inefficiencies Persist

• IT Leaders Split on Using GenAI For Cybersecurity

• Cybersecurity News: Snowblind Android, identity services leaks data, Polyfill.io supply chain attack

• The State of Kubernetes Security in 2024

• Phantom Secrets: Undetected Secrets Expose Major Corporations

• Datadog LLM Observability secures generative AI applications

• PoC exploit for critical Fortra FileCatalyst flaw published (CVE-2024-5276)

• Prompt Injection Flaw in Vanna AI Exposes Databases to RCE Attacks

• Russian National Indicted for Cyber Attacks on Ukraine Before 2022 Invasion

• Google Announced Chrome Enterprise Core Features for IT, Security Teams

• Heimdal and Escom Bulgaria Partner to Strengthen Cybersecurity in Bulgaria

• Update: MOVEit Transfer Vulnerability Targeted Amid Disclosure Drama

• Chinese State Actors Use Ransomware to Conceal Real Intent

• Multiple TP-Link Omada Vulnerabilities Let Attackers Execute Remote Code

• Chinese Cyberspies Employ Ransomware in Attacks for Diversion

• Strong Authentication: What It Is and Why You Need It

• Lattice launches two solutions to help users stay ahead of cyberthreats

• Critical SQLi Vulnerability Found in Fortra FileCatalyst Workflow Application

• US offers $10 million for information on indicted WhisperGate malware suspect

• New P2Pinfect version delivers miners and ransomware on Redis servers

• Adversaries Seek to Take Advantage of Global Events – How To Prepare for the 2024 Paris Olympics

• Ransomware attacks launched on the world by China and North Korea

• Cyber insurance as part of the cyber threat mitigation strategy

• Gitleaks: Open-source solution for detecting secrets in your code

• New ransomware, infostealers pose growing risk in 2024

• 75% of new vulnerabilities exploited within 19 days

• Exploit Attempts Recorded Against New MOVEit Transfer Vulnerability – Patch ASAP!

• Google Chrome Users at Risk: Study Reveals Dangerous Extensions Affecting 280 Million

• Enterprises increasingly turn to cloud and AI for database management

• ISC Stormcast For Thursday, June 27th, 2024 https://isc.sans.edu/podcastdetail/9038, (Thu, Jun 27th)

• BSNL Data Breach Exposes Millions of Users to Fraud and Security Risks

• Korean telco allegedly infected its P2P users with malware

• WhisperGate suspect indicted as US offers a $10M bounty for his capture

• Hack of Age Verification Company Shows Privacy Danger of Social Media Laws

• How NinjaOne’s New MDM Capabilities Transform IT Management

• Chinese Espionage Group “ChamelGang” Uses Attacks for Disruption and Data Theft

• LockBit claim about hacking U.S. Federal Reserve fizzles

• US charges Russian civilian for allegedly helping GRU spies target Ukrainian government systems with data-destroying malware

• Leverage Platformization – Strengthen, Unify and Simplify Cybersecurity Tools

• What Setting Live Traps for Cybercriminals Taught Me About Security [Guest Diary], (Wed, Jun 26th)

• Developer Accounts Compromised Due to Credential Reuse in WordPress.org Supply Chain Attack

• Feds put $5M bounty on ‘CryptoQueen’ Ruja Ignatova

• IT Security News Daily Summary 2024-06-26

• US charges Russian for allegedly helping GRU spies target Ukrainian government systems with data-destroying malware

• Microsoft clamps down on Windows 11 users who want local accounts – but this trick still works

• New MOVEit Transfer critical bug is actively exploited

• Chinese APT Groups Use Ransomware to Hide Spying Activities

• Pen Testing Across the Environment: External, Internal, and Wireless Assessments

• Scattered Spider: Evolving & Resilient Group Proves Need for Constant Defender Vigilance

• A Foundation for AI and ML: Cisco Intelligent Industrial IoT Network Drives Uptime, Yield, Security, and Revenue

• New “Snowblind” Android Malware Steals Logins, Bypasses Security Features

• How to become a cybersecurity architect

• MoveIt Transfer vulnerability targeted amid disclosure drama

• LockBit Claims Breaching the US Federal Reserve but Fails to Prove It

• US convicts crypto-robbing gang leader who kidnapped victims before draining their accounts

• WikiLeaks Founder Julian Assange Returns to Australia a Free Man After US Legal Battle Ends

• Episode 2: Behind the Scenes of a Tailor-Made Massive Phishing Campaign Part 2

• EFF livestream series coming to a platform near you!

• BSNL Reportedly Suffers Major Data Breach: Sensitive User Information at Risk

• Supreme Court Backs Biden In Social Media Misinformation Case

• War Crime Prosecutions Enter a New Digital Age

• Kaspersky resellers deride US government ban: ‘Complete bulls—t’

• Digital Afterlife: Are We Ready for Virtual Resurrections?

• Rivian To Gain Up To $5 Billion Investment From Volkswagen

• Hugging Face’s updated leaderboard shakes up the AI evaluation game

• The CDK Global outage: Explaining how it happened

• 5 essential programming languages for cybersecurity pros

• Google Unveils New Chrome Enterprise Core Features for IT, Security Teams

• Progress Discloses Two New Vulnerabilities in MOVEit Products

• Multiple vulnerabilities in TP-Link Omada system could lead to root access

• AI driven Google Naptime to help LLM to conduct vulnerability research

• Attackers in Profile: menuPass and ALPHV/BlackCat

• Shortened Links, Big Risks: Unveiling Security Flaws in URL Shortening Services

• 12 common types of malware attacks and how to prevent them

• LockBit Claims Breaching the US Federal Reserve but Fails Proving It

• How the Kaspersky ban will hit resellers in the US

• The AI Revolution and Critical Infrastructure

• Former Global CISO of Wells Fargo, Sunil Seshadri, Joins Board of Directors at Obsidian Security

• WordPress Plugin Supply Chain Attack Gets Worse

• New MOVEit Transfer Vulnerability Under Active Exploitation – Patch ASAP!

• Novel Banking Malware Targets Customers in Southeast Asia

• Incident Response: SOC’s Role in Managing Cyber Threats

• Tesla Issues Fourth Recall For Cybertruck

• Federal Reserve “breached” data may actually belong to Evolve Bank

• Hacker claims data breach of India’s eMigrate labor portal

• Google Disrupts More China-Linked Dragonbridge Influence Operations

• Law Enforcement is Spying on Thousands of U.S. Citizens’ Mail

• From Hype to Reality: Understanding Abandoned AI Initiatives

• CISA and Partners Release Guidance for Exploring Memory Safety in Critical Open Source Projects

• Misconfigured MFA Increasingly Targeted by Cybercriminals

• GAO Urges Action to Address Critical Cybersecurity Challenges Facing U.S.

• Cofense enhances PhishMe to identify engagement and resilience gaps across all employee levels

• Keep Your Tech Flame Alive: Trailblazer Mie Elmkvist Schneider

• Companies Optimize Cloud Costs and Deliver Superior Experiences on Akamai

• Microsoft At Risk Of EU Antitrust Charge Over Teams Bundling With Office

• The dangers of anthropomorphizing AI: An infosec perspective

• The 6 Best LastPass Alternatives for 2024

• Probllama: Ollama Remote Code Execution Vulnerability

• Top 10 NinjaOne Alternatives to Consider in 2024

• GrimResource Technique Exploits Years-Old Unpatched Windows XSS Flaw

• Batten down the hatches, it’s time to patch some more MOVEit bugs

• Prioritizing Exposures vs. Prioritizing Actions

• The XZ Utils Backdoor in Linux: A Symptom of Ailing Security in the Software Supply Chain

• Check Point SecureAcademy Launches Special Program Offering Content and Services Valued Up to $60K to Help Close the Global Cyber Security Skills Gap

• Fortinet vs Palo Alto (2024): Which NGFW Is Best for Your Team?

• Multiple Vulnerabilities in Siemens Power Automation Products

• ARMO launches behavioral-based cloud detection and response

• 6 Best LastPass Alternatives for 2024

• An Unforgettable Week at Cisco Live 2024 in Las Vegas

• Is Your Organization a Laggard or a Leader in Digital Trust?

• The EU Targets Russia’s LNG Ghost Fleet With Sanctions as Concern Mounts About Hybrid Attacks

• Gaining and Retaining Security Talent: A Cheat Sheet for CISOs

• Malware peddlers experimenting with BPL sideloading and masking malicious payloads as PGP keys

• The Crucial Role of Network Segmentation in OT Environments with DirectDefense

• Waymo Opens Autonomous Ride Hailing Taxi To All San Fran Residents

• OilRig Hackers Attacking Individuals And Organizations In The Middle East

• Securing the Foundation: Optimizing Governmental Critical Infrastructure

• P2Pinfect Worm Now Dropping Ransomware on Redis Servers

• 6 Tips for Preventing DDoS Attacks Using Rate Limits

• Cyber Attackers Turn to Cloud Services to Deploy Malware

• P2Pinfect Redis Server with New Ransomware Payload

• Ollama AI Platform Flaw Let Attackers Execute Remote Code

• NTT Data and Zebra Technologies partner on private 5G and device as a service

• Digital Forensics for Investigating the Metaverse

• New Caesar Cipher Skimmer targets popular CMS used by e-stores

• New Medusa Malware Variants Target Android Users in Seven Countries

• Cybercriminal Group UNC5537 Strikes with Major Data Breaches

• Developer errors lead to long-term exposure of sensitive data in Git repos

• Identity Crime Reports Drop 16% Annually but Job Scams Surge

• Julian Assange Freed After US Plea Deal, Returns To Australia

• P2Pinfect Botnet Now Targets Servers with Ransomware, Cryptominer

• Malwarebytes Premium stops 100% of malware during AV Lab test

• The US Is Banning Kaspersky

• Understanding Compliance and File Integrity Monitoring (FIM)

• Polyfill Supply Chain Attack Hits Over 100k Websites

• Navigating Security Challenges in Containerized Applications

• Critical ADOdb Vulnerabilities Fixed in Ubuntu

• Why Cybercriminals Keep Targeting the NHS: Insights into the Latest Attack

• New North Korean Actor Distributing Malicious npm Packages To Compromise Organizations

• Malicious JavaScript Snippets Served Due to Supply Chain Attack on Polyfills Site

• UK and US Law Enforcement Put Qilin Ransomware Criminals in the Crosshairs

• Apple Patches AirPods Bluetooth Vulnerability That Could Allow Eavesdropping

• Practical Guidance For Securing Your Software Supply Chain

• Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware

• Attackers Exploiting Public Cobalt Strike Profiles

• Threat Actor Claims 0Day Sandbox Escape RCE in Chrome Browser

• Business Email Compromise Attacks Are Evolving: How Organizations Can Stay Ahead of the Curve

• Best Practices for Password Creation and Storage

• Share your feedback: ENISA public consultation bolsters EU5G Cybersecurity Certification

• Zeek: Open-Source Network Traffic Analysis, Security Monitoring

• Update: CISA Warns Chemical Facilities of Potential Data Theft

• Exploitation Attempts Target New MOVEit Transfer Vulnerability

• Siemens Sicam Vulnerabilities Could Facilitate Attacks on Energy Sector

• Kivu Consulting introduces CyberCertainty Managed XDR

• Cybersecurity News: Julian Assange plea, Latest MOVEit bug, Neiman Marcus data sale

• NSA Recommends users restart mobile devices weekly

• Defending Gold: Protecting the 2024 Olympics from Cyber Threats

• The 5 Industries Most Vulnerable to Data Breaches in 2024

• New Credit Card Skimmer Targets WordPress, Magento, and OpenCart Sites

• Cyber Security Today, June 26, 2024 – New vulnerability in MOVEit and a warning to WordPress administrators on poisoned plugins

• Russian Hackers Target Ukraine with XWorm RAT Malware Payload

• Grammarly delivers enhanced security and control features for safer AI use

• Compromised plugins found on WordPress.org

• New Medusa Android Trojan Targets Banking Users Across 7 Countries

• Authentication Bypasses in MOVEit Transfer and MOVEit Gateway

• How to boost your incident response readiness

• Fake Law Firms Con Victims of Crypto Scams, Warns FBI

• Cisco Umbrella: A Leader in the GigaOm Radar for DNS Security

• FireTail Unveils Free Access for All to Cutting-Edge API Security Platform

• Cloud Security becoming a priority for businesses in 2024

• How to safeguard oneself from sectortion attacks online

• Microsoft Announced Copilot for Security TI in Defender XDR

• EU Opens the App Store Gates: A Call to Arms for MDM Implementation

• Stepping Into the Attacker’s Shoes: The Strategic Power of Red Teaming (Insights from the Field)

• Efficiency is Key to Cybersecurity in the Post-Cloud Era

• Back-to-Back Cyberattacks Disrupt Car Dealers in the US and Canada

• Welcome to the fediverse: Your guide to Mastodon, Threads, Bluesky and more

• Yahoo! Japan to waive $189 million ad revenue after detecting fraudulent clicks

• Critical Vulnerability in MOVEit Transfer Let Hackers Gain Files Access

• Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack

• Cybersecurity jobs available right now: June 26, 2024

• Organized crime and domestic violence perps are big buyers of tracking devices

• Future trends in cyber warfare: Predictions for AI integration and space-based operations

• B+ security rating masks healthcare supply chain risks

• ISC Stormcast For Wednesday, June 26th, 2024 https://isc.sans.edu/podcastdetail/9036, (Wed, Jun 26th)

• What?s That Scraping Sound? How Web Scraper Bots Erode Ecommerce Profits

• Microsoft blamed for million-plus patient record theft at US hospital giant

• If you’re using Polyfill.io code on your site – like 100,000+ are – remove it immediately

Generated on 2024-06-27 23:55:09.184040