IT Security News Daily Summary 2024-07-08

• Buy a Samsung Galaxy Watch 6 on sale and save $130 on a pair of Galaxy Buds 2 Pro

• Save up to $1,500 on new Samsung Galaxy Z Fold 6 and Z Flip 6 phones – here’s how

• The best early Prime Day deals on the weirdest tech we could find

• The best iPhone 15 screen protectors of 2024: Expert tested

• Ransomware hits CDK Global, public sector targets in June

• The best Prime Day 2024 tablet deals

• The 20 best Prime Day 2024 deals under $25

• Microsoft Banning Android Phones for Staff in China

• Context window overflow: Breaking the barrier

• How to Get Rid of a Computer Virus [Mac and PC]

• Stacks L2 Security Soars with Hypernative’s Ecosystem-Wide Protection

• Shopify says stolen customer data was taken in third-party breach

• The best MagSafe wallets of 2024: Expert tested and reviewed

• How AI-driven SOC tech eased alert fatigue: Case study

• How API attacks work, plus 5 common types

• Mastering Efficient Data Processing for LLMs, Generative AI, and Semantic Search

• An In-Depth Look at Crypto-Crime in 2023 Part 1

• The 45+ best Walmart deals right now

• 5 Linux commands for managing users

• $3,094 Bounty Awarded and 150,000 WordPress Sites Protected Against Arbitrary File Upload Vulnerability Patched in Modern Events Calendar WordPress Plugin

• Ticketmaster Hackers Leak 30K Ticket Barcodes, Share Counterfeit Tutorial

• FTC’s non-compete ban almost certainly dead, based on a Texas federal court decision

• The 8 best early Amazon Prime Day Kindle deals

• Apple removes VPN apps at request of Russian authorities, say app makers

• Critical Ghostscript flaw exploited in the wild. Patch it now!

• The best early Amazon Prime Day laptop deals

• The 26 best early Prime Day 2024 Nintendo deals

• Vulnerability Recap 7/8/24 – Intel, Cisco & More Face Risks

• Mandiant Highlights Russian and Chinese Cyber Threats to NATO on Eve of 75th Anniversary Summit

• New Golang-Based Botnet ‘Zergeca’ Discovered

• Proton Docs Arrives As An Encrypted Document Sharing Platform

• The best business internet providers of 2024

• You can get Amazon’s new Echo Spot alarm clock at 40% off through Prime Day

• Grab a Microsoft Visual Studio Pro license for $35

• On the CSRB’s Non-Investigation of the SolarWinds Attack

• Get Microsoft Office for Windows or Mac for $25 right now

• Windows Notepad gets spellcheck and autocorrect, after 41 years

• Amazon’s new Echo Spot makes nightstand clocks cool again with a smart home twist

• Take Your ST 2110 Workflow to the Next Level

• Hundreds of Tech Companies Want to Cash In on Homeland Security Funding. Here’s Who They Are and What They’re Selling.

• TeamViewer: Network segmentation hobbled Midnight Blizzard’s attack

• How to switch from a Microsoft account to a local account, and tricks to avoid a Microsoft account

• What Is a Cybersecurity Platform?

• New APT Group “CloudSorcerer” Targets Russian Government Entities

• Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government

• Hacked Ethereum Foundation Account Used to Send 35,000 Phishing Emails

• USENIX Security ’23 – Lost in Conversion: Exploit Data Structure Conversion with Attribute Loss to Break Android Systems

• OpenAI Hack Exposes Hidden Risks in AI’s Data Goldmine

• New APT CloudSorcerer Malware Hits Russian Targets

• Twitter Data breach and 10 billion password leak details

• Industrial Cyber Security Basics Can Help Protect APAC Operational Technology Operators: Dragos

• Dark Web Malware Logs Expose 3,300 Users Linked to Child Abuse Sites

• Mekotio Trojan Targets Latin American Banking Credentials

• Apple Removes VPN Apps from Russian App Store as Censorship Tightens

• Continued Progress Towards a Secure Open Source Ecosystem

• New Ghostscript Vulnerability Alarms Experts as Major Breach Threat

• Robot ‘Suicide’ in South Korea Raises Questions About AI Workload

• FIA Confirms Cyberattack Compromising Email Accounts

• BianLian Ransomware Strikes: US Companies Grapple with Data Breach Fallout

• Vulnerability Summary for the Week of July 1, 2024

• New Ransomware-as-a-Service ‘Eldorado’ Targets Windows and Linux Systems

• Microsoft forgets about SwiftKey’s support site

• Cisco Warns regreSSHion Vulnerability Impacts Multiple Products

• AI SPERA Partners with Devcons to Expand ‘Criminal IP’ into the Middle Eastern Market

• Former Nuance Employee Arrested After Geisinger Data Breach Exposed 1.2 Million Records

• Supreme Court Ruling Threatens the Framework of Cybersecurity Regulation

• IoT Vulnerabilities and BotNet Infections: What Executives Need to Know

• Russia Blocks VPN Services in Information Crackdown

• Defend Against Account Abuse in Financial Services

• Check Point – ISC2 Partnership Cross the 4,000 Hours of Training Milestone

• 7 Tips on Keeping Your Data Private When Using AI

• Indian Government Issues Serious Warning on Phishing Scams Alleging Sexual Offenses

• Decryptor for DoNex, Muse, DarkRace, (fake) LockBit 3.0 Ransomware Released

• Avast secretly gave DoNex ransomware decryptors to victims before crims vanished

• Eldorado Ransomware is Targeting Windows, VMware ESXi VMs

• Centrally manage VPC network ACL rules to block unwanted traffic using AWS Firewall Manager

• Major ISP Accused of Mass Malware Attack on Customers

• Apple Removed VPN Services from the Russian AppStore

• New Variation of WordFence Evasion Malware Discovered

• Cloudy with a Chance of Cyberattack: Understanding LOTC Attacks and How ZTNA Can Prevent Them

• Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript

• OWASP Penetration Testing: Methodology, Kit, Checklist (Downloadable)

• Database Penetration Testing: Secure Your Data

• Apple removed 25 VPN apps from the App Store in Russia following Moscow’s requests

• Optimizing IT Team Collaboration – An Innovative Approach to Enhancing Productivity

• Why SPRS Matters and 4 Steps to Improve Your Security Posture

• 5 Key Questions CISOs Must Ask Themselves About Their Cybersecurity Strategy

• Crypto Thefts Double to $1.4 Billion, TRM Labs Finds

• Made in the UK

• ‘RockYou2024’: Nearly 10 billion passwords leaked online

• Cybersecurity Glossary Pack

• Experts Warn of Mekotio Banking Trojan Targeting Latin American Countries

• Answering SEC’s Question of Materiality of a Breach

• Emboldened and Evolving: A Snapshot of Cyber Threats Facing NATO

• Guarding Health: Errol Weiss on Protecting the Healthcare Sector from Cyber Threats

• GAO Urges Stronger Federal Cybersecurity Measures Amid Rising Threats

• AI-Powered Super Soldiers Are More Than Just a Pipe Dream

• Vinted Fined $2.6m Over Data Protection Failure

• Gogs Vulnerabilities May Put Your Source Code at Risk

• Report: 47% of Corporate Data Stored in the Cloud Is Sensitive

• Balancing Security and Convenience with EV Charging

• Decryptor for DoNex, Muse, DarkRace, (fake) LockBit 3.0 ransomware released

• 10 Billion Passwords Leaked on Hacking Forum

• Cybersecurity News: Alabama Education breach, OpenAI secrets breach, Florida Health breach

• Egyptian Health Department Data Breach: 120,000 Users’ Data Exposed

• Europol Concerns Over Privacy Enhancing Technologies Challenge Lawful Interception

• Report: 99% of IoT Exploitation Attempts Rely on Previously Known CVEs

• Cyber Security Today, July 8, 2024 – A New Ransomware Group Is Discovered

• GootLoader is Still Active and Efficient

• Infostealing Malware Masquerading as Generative AI Tools

• Pro-Bangladeshi Hacktivists Enter Global Stage with Matryoshka 424 Alliance

• Navigating Europe’s digital identity crossroads

• Human Vigilance is Required Amid AI-Generated Cybersecurity Threats

• Critical Unpatched Flaws Disclosed in Popular Gogs Open-Source Git Service

• Orcinius Trojan Attacking Users Via Dropbox & Google Docs

• CISA adds Cisco NX-OS Command Injection bug to its Known Exploited Vulnerabilities catalog

• PSA: This Microsoft Update is essential

• A week in security (July 1 – July 7)

• Kunai: Keep an Eye on your Linux Hosts Activity, (Mon, Jul 8th)

• CloudSorcerer – A new APT targeting Russian government entities

• Apple Removes VPN Apps from Russian App Store Amid Government Pressure

• Roblox Data Breach: Email & IP address Details Exposed

• Mobile based cyber threats to watch out for at Paris Olympic Games 2024

• Top 5 Mobile Security Benefits with Samsung Knox

• Selfie-based authentication raises eyebrows among infosec experts

• Continuous Threat Exposure Management for Google Cloud

• July 2024 Patch Tuesday forecast: The end of an AV giant in the US

• How nation-state cyber attacks disrupt public services and undermine citizen trust

• Monocle: Open-source LLM for binary analysis search

• Organizations change recruitment strategies to find cyber talent

• ISC Stormcast For Monday, July 8th, 2024 https://isc.sans.edu/podcastdetail/9042, (Mon, Jul 8th)

• Not-so-OpenAI allegedly never bothered to report 2023 data breach

• Paperclip Maximizers, Artificial Intelligence and Natural Stupidity

• A decade after collapsing, crypto exchange Mt Gox repays some investors

• IT Security News Weekly Summary – Week 27

• IT Security News Daily Summary 2024-07-07

• Husky Owners – 16,502 breached accounts

• Hacker Breaches OpenAI, Steals Sensitive AI Tech Details

• Passkeys Aren’t Foolproof: New Study Reveals Vulnerabilities in Popular Authentication Method

• Apache fixed a source code disclosure flaw in Apache HTTP Server

• USENIX Security ’23 – Notice the Imposter! A Study on User Tag Spoofing Attack in Mobile Apps

• Qilin Attack On London Hospitals Leaves Cancer Patient With No Option

• Security Affairs Malware Newsletter – Round 1

• Critical npm Account Takeover Vulnerability Sold on Dark Web

• The Decline of Serverless Computing: Lessons For Enterprises To Learn

• Applying Bloch’s Philosophy to Cyber Security

• Breaking the Silence: The OpenAI Security Breach Unveiled

• Twilio Alerts Authy Users of Potential Security Risks Involving Phone Numbers

• Security Affairs newsletter Round 479 by Pierluigi Paganini – INTERNATIONAL EDITION

• Alabama State Department of Education suffered a data breach following a blocked attack

• Week in review: A need for a DDoS response plan, human oversight in AI-enhanced software development

Generated on 2024-07-08 23:55:08.263427