IT Security News Daily Summary 2024-09-03

• Google quietly launches Gemini AI integration in Chrome’s address bar

• Halliburton Confirms Data Stolen in Cyberattack

• Columbus Sues Expert, Fueling Debate About Ransomware Attack

• Victory! California Bill To Impose Mandatory Internet ID Checks Is Dead—It Should Stay That Way

• Randall Munroe’s XKCD ‘Sky Alarm’

• EFF to Tenth Circuit: Protest-Related Arrests Do Not Justify Dragnet Device and Digital Data Searches

• Spamouflage trolls pretend to be American patriots on X, TikTok ahead of US presidential election

• Transport For London Dealing With ‘Ongoing’ Cyber-Attack

• London’s city transport hit by cybersecurity incident

• What is cybercrime and how can you prevent it?

• Americans Are Uncomfortable with Automated Decision-Making

• 6,000 WordPress Sites Affected by Unauthenticated Critical Vulnerability in WP Job Portal WordPress Plugin

• Cyber A.I. Group Announces Global Presentation

• Open Standards for Data Lineage: OpenLineage for Batch and Streaming

• City of Columbus tries to silence security researcher

• VMware ESXi Servers Targeted by New Ransomware Variant from Cicada3301 Group

• Sextortion Scams Now Include Photos of Your Home

• List of Old NSA Training Videos

• What is Threat Hunting?

• Data watchdog fines Clearview AI $33M for ‘illegal’ data collection

• VMware Patches High-Severity Code Execution Flaw in Fusion

• Navigating new regulations and the role of SBOMs in software security

• USENIX Security ’23 – Ultimate SLH: Taking Speculative Load Hardening To The Next Level

• Ransomware Group Brain Cipher Targets French Museums During Olympics

• Cyberattack on TDSB Exposes Student Data, Sparks Parental Concerns

• Top 5 Notable Cyberattacks in Modern Warfare

• Threat Actors Install Backdoor via Fake Palo Alto GlobalProtect Lure

• Civil Rights Groups Call For Spyware Controls

• Cicada linked to ALPHV ransomware says report

• Bridging the Gap: How Developers and Security Professionals Can Collaborate for Better Cybersecurity

• Building Trust Through “Zero Trust:” Transforming Organizational Security Culture

• How to Use Dashlane in 2024: Complete Starter Guide

• U.S. oil giant Halliburton disclosed a data breach

• Vulnerability Summary for the Week of August 26, 2024

• Ping Identity strengthens security for federal agencies and government suppliers

• Rapid Growth of Password Reset Attacks Boosts Fraud and Account Takeovers

• DeFied Expectations — Examining Web3 Heists

• Trio Admits Running “OTP Agency” Enabling Bank Fraud, and 2FA Bypass

• Cost of a data breach: Cost savings with law enforcement involvement

• The waterproof Blink Mini 2 security camera is the best Wyze Cam alternative available

• Google Removing Poor-Quality Android Apps From Play Store to Boost Engagement

• LOYTEC Electronics LINX Series

• CISA Releases One Industrial Control Systems Advisory

• Simone Biles & Cyber Burnout: A Shared Path to Resilience

• Check Point Software Launches New MSSP Portal for Partners: Streamlining Service Delivery and Business Operations

• CISO Conversations: Jaya Baloo From Rapid7 and Jonathan Trull From Qualys

• Snyk Allies With Snowflake to Improve Data Security

• Why NTIA Support of Open-Source AI is Good for Security

• Kara Sprague joins HackerOne as CEO

• Veeam Software expands protection for Microsoft 365

• New Rust-Based Ransomware Cicada3301 Targets Windows and Linux Systems

• Hacktivists Exploits WinRAR Vulnerability in Attacks Against Russia and Belarus

• Active Ransomware Groups Surge by 56% in 2024

• How to Implement Zero Trust on a Budget

• New Fury Stealer Attacking Victims to Steal Login Passwords

• Ransomware attacks continue to increase in the US, UK, and Canada

• Vulnerabilities in Microsoft apps for macOS allow stealing permissions

• Canonical Addresses Critical Linux Kernel AWS Vulnerabilities with New Patches

• SaaS Security: Are You Moving Fast Enough?

• Palo Alto’s GlobalProtect VPN Spoofed to Deliver New Malware Variant

• Unlocking The Context Behind Bot Attacks: Protecting Your Go-To-Market Strategy

• Workload Protection in the Cloud: Why It Matters More Than Ever

• Halliburton confirms data was stolen in ongoing cyberattack

• The Future of Cybersecurity: AI Does Play a Role

• Emansrepo Stealer: Multi-Vector Attack Chains

• Is the “Network” Defendable?

• Critical flaw in Zyxel’s secure routers allows OS command execution via cookie (CVE-2024-7261)

• RCE Vulnerability in D-Link WAP Let Attackers Gain Remote Access

• Verkada to Pay $2.95 Million Over FTC Probe Into Security Camera Hacking

• U.S. Courts Under Cyberattack and the Impact on Justice

• Threat actors using MacroPack to deploy Brute Ratel, Havoc and PhantomCore payloads

• Silicon UK AI For Your Business Podcast: Copyright in the Age of AI

• Researchers Link ManticoraLoader Malware to Ares Malware Developer

• The US Navy Is Going All In on Starlink

• A deep dive into the most interesting incident response cases of last year

• Top 5 CVEs and Vulnerabilities of August 2024: Key Threats and How to Respond

• New ManticoraLoader – Malware Attacking Citrix Users To Steal Data

• Verkada Pay $2.95 Million Failed To Secure Data Lead To Massive Breach

• Researchers Find SQL Injection Flaw to Bypass Airport TSA Security Checks

• City of Columbus Sues Researcher Who Disclosed Impact of Ransomware Attack

• Rocinante Trojan Poses as Banking Apps to Steal Sensitive Data from Brazilian Android Users

• TikTok Parent ByteDance Seeks $9.5bn In Loans

• Binance Executive Renews Nigeria Bail Plea On Health Grounds

• New Custom Malware “Tickler” Attack Satellite Devices

• North Korean Hackers Actively Exploiting Chromium RCE Zero-Day In The Wild

• Head Mare Hacktivist Group Exploit WinRAR Vulnerability To Encrypt Windows And Linux

• 10 Topics Every Cybersecurity Awareness Training Program Should Cover

• The 6 Best Antivirus Software Options for Windows in 2024

• VIVOTEK RealSight Engine improves images clarity in various scenarios

• Red Flag? My Vendor Just Asked for My Mother’s Maiden Name

• Beware Of New Phishing Attack That Mimics ScreenConnect And Zoom

• Chrome Vulnerability Let Attackers Execute Arbitrary Code Remotely

• Researchers Detailed Russian Hacktivist/State Hackers Tactics

• Ransomhub Attacked 210 Victims Since Feb 2024, CISA Released Advisory For Defenders

• The six most dangerous new threats security teams need to know about

• INSIDER THREAT AWARENESS MONTH: Are you prepared?

• Transport for London confirms cyberattack, assures us all is well

• Qilin Ransomware Attack Used To Steal Chrome Browser Data

• TuxCare Completes FIPS 140-3 Certification for AlmaLinux 9.2 Kernel

• Ubuntu Patches Multiple Vim Vulnerabilities

• Transport for London is dealing with a cyber security incident

• Cybersecurity News: London transport cyberattack, German ATC attack, Sweden’s heightened risk

• Starlink Refuses To Block X In Brazil

• Iranian Hackers Using Multi-Stage Malware To Attack Govt And Defense Sectors Via LinkedIn

• Operation Oxidovy, Threat Actors Targeting Government And Military Officials

• Rural Hospitals and Patients Face high Risk from Ransomware Attacks: Report

• ACI Worldwide partners with Red Hat to simplify payment operations

• Three Plead Guilty to Running MFA Bypass Site

• Intel Considers Selling Altera, Splitting Fab Business

• CloudSOC – An OpenSource Project for SOC & Security Analysts

• The Power of Tripwire Enterprise SCM Policies

• Navigating Change: Three Levels to Filter Out the Noise in Tech Environments

• North Korea-linked APT Citrine Sleet Exploit Chrome Zero-Day to Deliver FudModule Rootkit

• Application builders get ready

• Industry Moves for the week of September 2, 2024 – SecurityWeek

• Chrome 128 Updates Patch High-Severity Vulnerabilities

• WordPress Sites at Risk from WPML Flaw

• Honor Tops Samsung In Western Europe Foldables

• China GPU Start-Up Dissolves, Lays Off Staff

• Operation DevilTiger, APT Hackers 0-Day Exploitation Tactics Exposed

• Critical Atlassian Vulnerability Exploited To Connect Servers In Mining Networks

• BlackByte Hackers Exploiting VMware ESXi Auth Bypass Vulnerability

• IT threat evolution Q2 2024

• IT threat evolution in Q2 2024. Mobile statistics

• IT threat evolution in Q2 2024. Non-mobile statistics

• Blooms Today – 3,184,010 breached accounts

• Novel Attack on Windows Spotted in Chinese Phishing Campaign

• Roblox Developers Under Attack by New Malicious NPM Campaign

• Secrets Exposed: Why Your CISO Should Worry About Slack

• TfL Claims Cyber-Incident is Not Impacting Services

• Brazilian Supreme Court Upholds X Ban

• Three men plead guilty to running MFA bypass service OTP.Agency

• Potential Ransomware Threat to Transport for London

• How Cyber Attacks can be a blessing to those buying cybersecurity stocks

• Explaining the OWASP API Security Top 10

• Major Data Breaches: Toronto Schools, TDECU, and Columbus Hacked: Cyber Security Today for Tuesday, September 3rd, 2024

• SLOW#TEMPEST Campaign Targets Chinese Users with Advanced Tactics

• Managing low-code/no-code security risks

• New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access

• The attack with many names: SMS Toll Fraud

• How ransomware tactics are shifting, and what it means for your business

• A third of organizations suffered a SaaS data breach this year

• Ex-Engineer Charged in Missouri for Failed $750,000 Bitcoin Extortion Attempt

• ISC Stormcast For Tuesday, September 3rd, 2024 https://isc.sans.edu/podcastdetail/9122, (Tue, Sep 3rd)

• Hacker Leaks Data of 390 Million Users from VK, a Russian Social Network

• Introducing Goffloader: A Pure Go Implementation of an In-Memory COFFLoader and PE Loader

• IT Security News Daily Summary 2024-09-02

• Puter – The Internet OS! Free, Open-Source, and Self-Hostable

• Transport for London (TfL) is dealing with an ongoing cyberattack

• Protected OOXML Text Documents, (Mon, Sep 2nd)

• Cox Media Group To Listen To Users Devices For Ad Targeting

• Cybersecurity Tips For Businesses Using Remote Workers

• Top Cybersecurity Startups You Need to Know in 2024

• Vulnerability Recap 9/2/24 – Big Companies Upgrade vs Risks

• CrowdStrike faces onslaught of legal action from faulty software update

• Innovator Spotlight: Cobalt

• Innovator Spotlight: BackBox

• Innovator Spotlight: Delinea

• Innovator Spotlight: Pentera

• Oil Giant Halliburton Partly Went Offline Following Cyberattack

• High-Severity DoS Flaw Patched In Cisco NX-OS Software

• Tracelo Location Tracker Data Breach: 1.4 Million Users’ Data Dumped Online

• Owners of 1-Time Passcode Theft Service Plead Guilty

• Telegram CEO was ‘too free’ on content moderation, says Russian minister

• The Role of Digital Adoption in Email Deliverability & Security

• Play Ransomware Claims Attack on US Semiconductor Manufacturer Microchip Technology

• Fota Wildlife Park Issues Urgent Warning After Website Cyberattack

• Emailing in Different Languages Just Got Easier— This AI Will Amaze You

• Google issues warning on Russian Cyber Attack on Safari and Chrome browsers

• Best Practices for Salesforce Data Management and Security

• Three Cyber Extortion Schemes Attackers Can Employ Against You

• Irish Wildlife Park Warns Customers to Cancel Credit Cards Following Breach

• From Transparency to the Perils of Oversharing

• Data Breaches for the Month August 2024

• US Authorities Issue RansomHub Ransomware Alert

• Global Phishing Scam Hits Canadian Pizza Chains for Credit Card Data

• Going on a Threat Hunt: Advanced Strategies for Defending the Digital Frontier

• Forrester’s CISO budget priorities for 2025 focus on API, supply chain security

• DevOpsDays Birmingham AL 2024: Guardrails, Immutable Infrastructures, and Community

• Esso Corporate Fleet Programme Hit by Ransomware Attack on Abecha Servers

• RansomHub Ransomware Group Targets 210 Victims Across Critical Sectors

• Boeing Starliner Set For Uncrewed Return Flight This Week

• Crypto Executives Plan Kamala Harris Fundraiser

• For Windows 11 setup, which user account type should you choose? How to decide

• Lockbit gang claims the attack on the Toronto District School Board (TDSB)

• South Korea Police Investigates Telegram Over Deepfake Porn

• Zero Trust and Its Impact on Cybersecurity

• A Macro Look at the Most Pressing Cybersecurity Risks

• The Internet of Things Technological Perspective

• Security Alert for Gmail, Facebook, and Amazon Users

• Verkada Facing $3m Penalty After Hackers Viewed Sensitive Video Footage

• Why Incident Response Planning is Critical for Cybersecurity Resilience

• Passkey Adoption Is Accelerating in APAC — Except for Australia

• The 6 Best Small Business VPNs for 2024

• SQL Injection Attack on Airport Security

• Sinon: Open-Source Automatic Generative Burn-in for Windows Deception Hosts

• GreenCharlie Infrastructure Targeting US Political Entities with Advanced Phishing and Malware

• Uniqkey Raises $5.92M in Funding

• A New Variant of Cicada Ransomware Targets VMware ESXi Systems

• France Arrested Telegram Owner Charging For Criminal Activity Support

• Hackers Implant Backdoor via Fake Palo Alto GlobalProtect Lure

• SafeTech Labs Launches World’s First Comprehensive Digital Legacy Solution for $52B Industry

• Spoofed GlobalProtect Used to Deliver Unique WikiLoader Variant

• Fake Palo Alto GlobalProtect Tool Used as Lure to Backdoor Enterprises

• Ubuntu Fixes Several Linux Kernel AWS Vulnerabilities

• Guardians of the Files: Tracing the Evolution of File Integrity Monitoring

• Tripwire Patch Priority Index for August 2024

• Head Mare: adventures of a unicorn in Russia and Belarus

• CISA Launches Cyber Incident Reporting Portal To Streamline Breach Disclosure

• NIST Releases New Draft of Digital Identity Proofing Guidelines

• Cybersecurity News: Seattle airport woes, aircraft cockpit SQL, North Korea’s FudModule

• Aricell Chief Arrested Over Massive Battery Plant Fire

• Beijing Sets Up $1bn Semiconductor Fund

• Cyber Threats That Shaped the First Half of 2024

• North Korean Cyberattacks Persist: Developers Targeted via npm Packages

• Complying with PCI DSS requirements by 2025

• Webinar: Learn to Boost Cybersecurity with AI-Powered Vulnerability Management

• Cicada3301 Ransomware Group Emerges From the Ashes of ALPHV

• TechRepublic Premium Editorial Calendar: Policies, Hiring Kits, and Glossaries for Download

• OceanLotus APT Group Targeting Vietnamese Human Rights Defenders

• SafeTech Labs Takes Aim at $52B Digital Legacy Industry with World’s First Fully Comprehensive Digital Legacy Solution

• RansomHub Gang Breaches More Than 200 Organisations

• Iran Government-Backed Hackers ‘Making Cash From Ransomware’

• A week in security (August 26 – September 1)

• State-Backed Attackers and Commercial Surveillance Vendors Repeatedly Use the Same Exploits

• Scores of Organizations Hit By Novel Voldemort Malware

• The MadRadar Hack Can Cause Autonomous Cars to Malfunction and Hallucinate

• X Shut Down In Brazil Amidst Supreme Court Spat

• A new variant of Cicada ransomware targets VMware ESXi systems

• Risk Register Templates: Enhancing Your Risk Management Strategy

• Next-Generation Attacks, Same Targets – How to Protect Your Users’ Identities

• Trending Cybersecurity News Headlines on Google

• Essential Cybersecurity Tips for Travelers and Vacationers

• How to Stay One Step Ahead of Data Breaches and Master Cloud Threat Detection

• North Korean Threat Actor Exploits Chrome Zero-Day

• SQL Injection Vulnerability Could Enable Attackers to Bypass Airport Security

• Keeping up with automated threats is becoming harder

• Ransomware crisis deepens as attacks and payouts rise

• Damn Vulnerable UEFI: Simulate real-world firmware attacks

• Malicious npm Packages Mimicking ‘noblox.js’ Compromise Roblox Developers’ Systems

• Novel attack on Windows spotted in phishing campaign run from and targeting China

• Infosec products of the month: August 2024

Generated on 2024-09-03 23:55:12.712719