IT Security News Daily Summary 2024-09-04

• Copilot for Microsoft 365 might boost productivity if you survive the compliance minefield

• That massive Pixel security flaw reported last month has been patched

• Planned Parenthood confirms cyber-attack as RansomHub threatens to leak data

• AWS achieves HDS certification in four additional AWS Regions

• What is a cloud architect and how do you become one?

• X is hiring staff for security and safety after two years of layoffs

• August Recap: New AWS Sensitive Permissions and Services

• White House Wants to Tighten Internet Routing Security

• CISO Series Podcast LIVE in Boca Raton, FL (09-21-24)

• White House unveils plan to improve BGP security

• EFF Calls For Release of Alexey Soldatov, “Father of the Russian Internet”

• FBI Warns of North Korea Attacks Against the Crypto Industry

• 20,000 WordPress Sites Affected by Remote Code Execution Vulnerability in Bit File Manager WordPress Plugin

• That massive Pixel security flaw has been patched

• Use AI threat modeling to mitigate emerging attacks

• US Government Isn’t Ready for Cyber Chaos in the Food and Agriculture Sector

• Microsoft Tackling Windows Logfile Flaws With New HMAC-Based Security Mitigation

• Build a mobile driver’s license solution based on ISO/IEC 18013-5 using AWS Private CA and AWS KMS

• Adapting Cybersecurity Practices to Modern Threats

• Researchers Discover SQL Injection Issue That Can Bypass Airport Security

• Trump Media Shares Hit New Post-IPO Low

• Nvidia Market Value Hit By Historic Single-Day Drop

• DDoS Attacks Hit France Over Telegram’s Pavel Durov Arrest

• “Hello pervert” sextortion scam includes new threat of Pegasus—and a picture of your home

• Iran Cyber Attack: Fox Kitten Facilitates Ransomware in US

• Everything you need to know about the OSCP+

• 28 Zyxel Access Points and Router Vulnerable to OS Command Injection

• Daniel Stori’s Turnoff.US: ‘pid 1’

• Security Analysts Observe Massive Surge in Telegram App Downloads Following Durov Arrest

• Adopting a Connected Mindset: A Strategic Imperative for National Security

• Is Telegram Still a Safe Messaging App? An In-Depth Look

• WordPress XSSplorer Challenge: An Expanded Scope for All Researchers in the Wordfence Bug Bounty Program

• CISA offers Voluntary Cyber Incident Reporting Portal

• Comprehensive Threat Protection Strategies for Google Workspace Environments

• Hacktivists Call for Release of Telegram Founder with #FreeDurov DDoS Campaign

• Deploying Rust in Existing Firmware Codebases

• Dutch Privacy Watchdog Fines Clearview AI $34 Million for ‘Illegal’ Database of Faces

• Researchers Find Over 22,000 Removed PyPI Packages at Risk of Revival Hijack

• Android Users Urged to Install Latest Security Updates to Fix Actively Exploited Flaw

• North Korean Hackers Targets Job Seekers with Fake FreeConference App

• US Government Set Out to Improve Internet Routing Security

• Scans for Moodle Learning Platform Following Recent Update, (Wed, Sep 4th)

• Stopping last year’s data spill becoming today’s headlines

• Rage Stealer Rebranded as Angry Stealer, Now Uses Telegram Bot for Data Theft

• How to avoid election related scams

• 500,000 tokens: How Anthropic’s Claude Enterprise is pushing AI boundaries

• Three myths preventing you from building your lifecycle practice

• Head Mare hacktivist group targets Russia and Belarus

• Discontinued D-Link DIR-846 routers are affected by code execution flaws. Replace them!

• Complying with PCI DSS Requirements by 2025

• Cicada ransomware may be a BlackCat/ALPHV rebrand and upgrade

• USENIX Security ’23 – ProSpeCT: Provably Secure Speculation for the Constant-Time Policy

• North Korea Targeting Crypto Industry, Says FBI

• Criminal IP Secures PCI DSS v4.0 Certification, Enhancing Payment Security with Top-Level Compliance

• 5 Steps To Integrate Istio With OPA

• What is a unique identifier (UID)?

• Microsoft Purview Audit helps IT flush out bad behavior

• How Ransomware Groups Weaponize Stolen Data

• FBI: North Korea Aggressively Hacking Cryptocurrency Firms

• EU’s Initiative to Define ‘Important Data’ in China: A Step Towards Global Data Governance

• AI System Optimise Could Help GPs Identify High-Risk Heart Patients

• Google Confirms CVE-2024-32896 Exploited in the Wild, Releases Android Security Patch

• Malwarebytes review: Solid, free protection with a user-friendly interface

• Worried about the YubiKey 5 vulnerability? Here’s why I’m not

• HHS Drops Appeal of Hospital Web Tracking Decision

• Secure by Demand: Going Beyond Questionnaires and SBOMs

• Yikes, YubiKey Vulnerable — ‘EUCLEAK’ FIDO FAIL?

• trackd AutoPilot leverages historical patch disruption data

• Hackers Hijack 22,000 Removed PyPI Packages, Spreading Malicious Code to Developers

• Warning: New Emansrepo Malware Uses HTML Files to Target Windows Users

• A Comprehensive Guide to Access and Secrets Management: From Zero Trust to AI Integration — Innovations in Safeguarding Sensitive Information

• AI startup You.com raises $50 million, predicts ‘more AI agents than people’ by 2025

• From Threats to Trends: Highlights from Perception Point’s H1 2024 Report

• Crush It, Don’t Get Crushed — Combat SOC Analyst Burnout with AI

• Damn Vulnerable UEFI: Simulate Real-world Firmware Attacks

• Red Teaming Tool Abused for Malware Deployment

• Crypto Vulnerability Allows Cloning of YubiKey Security Keys

• Automatic Burn-In Technology by Sinon Elevates Windows Deception Hosts

• North Korean hackers’ social engineering tricks

• The Importance Of Access Control

• Rethinking “I Have Nothing to Hide”: The Importance of Online Privacy

• Everyday Work at Home Security Tips

• 12 types of Phishing and how to avoid them

• What are APTs, and why are they dangerous?

• How To Conduct Effective Data Security Audits for Big Data Systems

• Leveraging Threat Intelligence in Cisco Secure Network Analytics

• Effective Privileged Access Management Implementation: A Step-by-Step Guide

• Transport for London (TfL) Targeted in Cyberattack

• Swan Bitcoin Alerts Users of Phishing Emails Carrying Fake Data Breach Notice

• Three UK Men Convicted of Running Website Behind Fraud Calls During COVID-19 Lockdown

• INE Security Announces 5 Practical Steps to Elevate Cyber Defense Strategies

• Security Flaw Allows Attackers to Clone YubiKeys by Extract Private Key

• ToddyCat APT Abuses SMB, Exploits IKEEXT A Exchange RCE To Deploy ICMP Backdoor

• Security Researcher Sued for Disproving Government Statements

• FTC: Over $110 Million Lost to Bitcoin ATM Scams in 2023

• Verkada to Pay $2.95 Million for Alleged CAN-SPAM Act Violations

• The New Effective Way to Prevent Account Takeovers

• Clearview AI Fined €30.5m by Dutch Watchdog Over Illegal Data Collection

• Record breaking Ransomware attacks on Schools and Colleges in 2023

• How to Combat APT Cyber Threats: A Comprehensive Guide

• Keeping up With Automated Threats is Becoming Harder

• White House Outlines Plan for Addressing BGP Vulnerabilities

• Prompt Security helps organizations monitor data shared with Microsoft 365 Copilot

• Feminists in South Korea’s fight against Deepfakes

• Trump Media Shares Hit Post-IPO Low

• White House Calls Attention to ‘Hard Problem’ of Securing Internet Traffic Routing

• Proofpoint launches NIST-inspired framework to tackle data loss prevention challenges

• Vulnerability allows Yubico security keys to be cloned

• Cybersecurity News: Halliburton data stolen, Columbus sues researcher, White House protects internet

• Automating Network Alert Investigations with Dropzone AI

• Fake GlobalProtect VPN Downloads Used to Spread WikiLoader Malware

• Mallox ransomware: in-depth analysis and evolution

• Android’s September 2024 Update Patches Exploited Vulnerability

• Halliburton Confirms that Hackers Stolen Data in Cyber Attack

• Zyxel Warns of Critical OS Command Injection Flaw in Routers

• Cthulhu Stealer: New macOS Malware Targets Apple Users’ Data

• Bad Reasons to Update Your Linux Kernel

• Debian Patches Two Dovecot Vulnerabilities

• Clearview AI Faces €30.5M Fine for Building Illegal Facial Recognition Database

• Initial Access Brokers Target $2bn Revenue Companies

• Intel ‘May Be Removed’ From Dow Index

• Goldman Sachs Research Finds AI Could Reduce Oil Prices

• AI Data Centre Boom Driving Huge Emissions Rise, Finds Research

• Starlink Says ‘Complying’ With X Ban In Brazil

• Employee Cybersecurity Awareness Training Strategies for AI-Enhanced Attacks

• Let’s Dance: Securing Access with PIM and PAM to Prevent Breaches

• Samba 4.21 comes with upgraded security features

• Earth Lusca Uses KTLVdoor Backdoor for Multiplatform Intrusion

• PoC Exploit Released For 0-Day Windows Kernel Privilege Escalation Vulnerability

• Connectivity they can count on: Claflin University’s tech revolution

• Can Every Business Afford to Be a Target?

• September is Preparedness Month

• Bluetooth Channel Sounding enhances security of Bluetooth connected devices

• APP Fraud Dominates as Scams Hit All-Time High

• Huawei Plans ‘Trifold’ Phone Launch Hours After Apple Event

• Google Patches Actively Exploited Android 0-day Privilege Escalation Vulnerability

• FBI Warns that North Korean Hackers Aggressively Attacking Employees of Crypto Companies

• Zyxel fixed critical OS command injection flaw in multiple routers

• Webinar: Unveiling Hidden APIs and Securing Vulnerabilities in the Healthcare Sector

• Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack

• The Japanese Robot Controversy Lurking in Israel’s Military Supply Chain

• Telegram apologizes to South Korea and takes down smutty deepfakes

• Rubrik Allies to Cisco to Improve Cyber Resiliency

• Protecting national interests: Balancing cybersecurity and operational realities

• OpenBAS: Open-source breach and attack simulation platform

• The Most Misunderstood Data Security Terms in The U.S.

• Ransomware attacks escalate as critical sectors struggle to keep up

• Cybersecurity jobs available right now: September 4, 2024

• ISC Stormcast For Wednesday, September 4th, 2024 https://isc.sans.edu/podcastdetail/9124, (Wed, Sep 4th)

• Ex-senior New York State staffer charged in cash-for-favors scandal with China

• Blackwired Launches ThirdWatch℠, A Paradigm Shift in Cybersecurity

• White House thinks it’s time to fix the insecure glue of the internet: Yup, BGP

• How AI Goes Rogue

• Top five strategies from Meta’s CyberSecEval 3 to combat weaponized LLMs

• Application Detection and Response: Understanding ADR’s Detection and Response Layers | Contrast Security

• Award Finalist: Contrast Security Application Detection and Response

• Apptio: How Australians Are Navigating Economic Pressure Through Strategic IT Investments

• VMware fixed a code execution flaw in Fusion hypervisor

• UK trio pleads guilty to operating $10M MFA bypass biz

• IT Security News Daily Summary 2024-09-03

• Google quietly launches Gemini AI integration in Chrome’s address bar

• Halliburton Confirms Data Stolen in Cyberattack

• Columbus Sues Expert, Fueling Debate About Ransomware Attack

• Victory! California Bill To Impose Mandatory Internet ID Checks Is Dead—It Should Stay That Way

• Randall Munroe’s XKCD ‘Sky Alarm’

• EFF to Tenth Circuit: Protest-Related Arrests Do Not Justify Dragnet Device and Digital Data Searches

• Spamouflage trolls pretend to be American patriots on X, TikTok ahead of US presidential election

• Transport For London Dealing With ‘Ongoing’ Cyber-Attack

• London’s city transport hit by cybersecurity incident

• What is cybercrime and how can you prevent it?

• Americans Are Uncomfortable with Automated Decision-Making

• 6,000 WordPress Sites Affected by Unauthenticated Critical Vulnerability in WP Job Portal WordPress Plugin

• Cyber A.I. Group Announces Global Presentation

• Open Standards for Data Lineage: OpenLineage for Batch and Streaming

• City of Columbus tries to silence security researcher

• VMware ESXi Servers Targeted by New Ransomware Variant from Cicada3301 Group

• Sextortion Scams Now Include Photos of Your Home

• List of Old NSA Training Videos

• What is Threat Hunting?

• Data watchdog fines Clearview AI $33M for ‘illegal’ data collection

• VMware Patches High-Severity Code Execution Flaw in Fusion

• Navigating new regulations and the role of SBOMs in software security

• USENIX Security ’23 – Ultimate SLH: Taking Speculative Load Hardening To The Next Level

• Ransomware Group Brain Cipher Targets French Museums During Olympics

• Cyberattack on TDSB Exposes Student Data, Sparks Parental Concerns

• Top 5 Notable Cyberattacks in Modern Warfare

• Threat Actors Install Backdoor via Fake Palo Alto GlobalProtect Lure

• Civil Rights Groups Call For Spyware Controls

• Cicada linked to ALPHV ransomware says report

• Bridging the Gap: How Developers and Security Professionals Can Collaborate for Better Cybersecurity

• Building Trust Through “Zero Trust:” Transforming Organizational Security Culture

• How to Use Dashlane in 2024: Complete Starter Guide

• U.S. oil giant Halliburton disclosed a data breach

• Vulnerability Summary for the Week of August 26, 2024

• Ping Identity strengthens security for federal agencies and government suppliers

• Rapid Growth of Password Reset Attacks Boosts Fraud and Account Takeovers

• DeFied Expectations — Examining Web3 Heists

• Trio Admits Running “OTP Agency” Enabling Bank Fraud, and 2FA Bypass

• Cost of a data breach: Cost savings with law enforcement involvement

• The waterproof Blink Mini 2 security camera is the best Wyze Cam alternative available

• Google Removing Poor-Quality Android Apps From Play Store to Boost Engagement

• LOYTEC Electronics LINX Series

• CISA Releases One Industrial Control Systems Advisory

• Simone Biles & Cyber Burnout: A Shared Path to Resilience

• Check Point Software Launches New MSSP Portal for Partners: Streamlining Service Delivery and Business Operations

• CISO Conversations: Jaya Baloo From Rapid7 and Jonathan Trull From Qualys

• Snyk Allies With Snowflake to Improve Data Security

• Why NTIA Support of Open-Source AI is Good for Security

• Kara Sprague joins HackerOne as CEO

• Veeam Software expands protection for Microsoft 365

• New Rust-Based Ransomware Cicada3301 Targets Windows and Linux Systems

• Hacktivists Exploits WinRAR Vulnerability in Attacks Against Russia and Belarus

• Active Ransomware Groups Surge by 56% in 2024

• How to Implement Zero Trust on a Budget

• New Fury Stealer Attacking Victims to Steal Login Passwords

• Ransomware attacks continue to increase in the US, UK, and Canada

• Vulnerabilities in Microsoft apps for macOS allow stealing permissions

• Canonical Addresses Critical Linux Kernel AWS Vulnerabilities with New Patches

• SaaS Security: Are You Moving Fast Enough?

• Palo Alto’s GlobalProtect VPN Spoofed to Deliver New Malware Variant

• Unlocking The Context Behind Bot Attacks: Protecting Your Go-To-Market Strategy

• Workload Protection in the Cloud: Why It Matters More Than Ever

• Halliburton confirms data was stolen in ongoing cyberattack

• The Future of Cybersecurity: AI Does Play a Role

• Emansrepo Stealer: Multi-Vector Attack Chains

• Is the “Network” Defendable?

• Critical flaw in Zyxel’s secure routers allows OS command execution via cookie (CVE-2024-7261)

• RCE Vulnerability in D-Link WAP Let Attackers Gain Remote Access

• Verkada to Pay $2.95 Million Over FTC Probe Into Security Camera Hacking

• U.S. Courts Under Cyberattack and the Impact on Justice

• Threat actors using MacroPack to deploy Brute Ratel, Havoc and PhantomCore payloads

• Silicon UK AI For Your Business Podcast: Copyright in the Age of AI

• Researchers Link ManticoraLoader Malware to Ares Malware Developer

• The US Navy Is Going All In on Starlink

• A deep dive into the most interesting incident response cases of last year

• Top 5 CVEs and Vulnerabilities of August 2024: Key Threats and How to Respond

• New ManticoraLoader – Malware Attacking Citrix Users To Steal Data

• Verkada Pay $2.95 Million Failed To Secure Data Lead To Massive Breach

• Researchers Find SQL Injection Flaw to Bypass Airport TSA Security Checks

• City of Columbus Sues Researcher Who Disclosed Impact of Ransomware Attack

• Rocinante Trojan Poses as Banking Apps to Steal Sensitive Data from Brazilian Android Users

• TikTok Parent ByteDance Seeks $9.5bn In Loans

• Binance Executive Renews Nigeria Bail Plea On Health Grounds

• New Custom Malware “Tickler” Attack Satellite Devices

• North Korean Hackers Actively Exploiting Chromium RCE Zero-Day In The Wild

• Head Mare Hacktivist Group Exploit WinRAR Vulnerability To Encrypt Windows And Linux

• 10 Topics Every Cybersecurity Awareness Training Program Should Cover

• The 6 Best Antivirus Software Options for Windows in 2024

• VIVOTEK RealSight Engine improves images clarity in various scenarios

• Red Flag? My Vendor Just Asked for My Mother’s Maiden Name

• Beware Of New Phishing Attack That Mimics ScreenConnect And Zoom

• Chrome Vulnerability Let Attackers Execute Arbitrary Code Remotely

• Researchers Detailed Russian Hacktivist/State Hackers Tactics

• Ransomhub Attacked 210 Victims Since Feb 2024, CISA Released Advisory For Defenders

• The six most dangerous new threats security teams need to know about

• INSIDER THREAT AWARENESS MONTH: Are you prepared?

• Transport for London confirms cyberattack, assures us all is well

• Qilin Ransomware Attack Used To Steal Chrome Browser Data

• TuxCare Completes FIPS 140-3 Certification for AlmaLinux 9.2 Kernel

• Ubuntu Patches Multiple Vim Vulnerabilities

• Transport for London is dealing with a cyber security incident

• Cybersecurity News: London transport cyberattack, German ATC attack, Sweden’s heightened risk

• Starlink Refuses To Block X In Brazil

• Iranian Hackers Using Multi-Stage Malware To Attack Govt And Defense Sectors Via LinkedIn

• Operation Oxidovy, Threat Actors Targeting Government And Military Officials

• Rural Hospitals and Patients Face high Risk from Ransomware Attacks: Report

• ACI Worldwide partners with Red Hat to simplify payment operations

• Three Plead Guilty to Running MFA Bypass Site

• Intel Considers Selling Altera, Splitting Fab Business

• CloudSOC – An OpenSource Project for SOC & Security Analysts

• The Power of Tripwire Enterprise SCM Policies

• Navigating Change: Three Levels to Filter Out the Noise in Tech Environments

• North Korea-linked APT Citrine Sleet Exploit Chrome Zero-Day to Deliver FudModule Rootkit

• Application builders get ready

• Industry Moves for the week of September 2, 2024 – SecurityWeek

• Chrome 128 Updates Patch High-Severity Vulnerabilities

• WordPress Sites at Risk from WPML Flaw

• Honor Tops Samsung In Western Europe Foldables

• China GPU Start-Up Dissolves, Lays Off Staff

• Operation DevilTiger, APT Hackers 0-Day Exploitation Tactics Exposed

• Critical Atlassian Vulnerability Exploited To Connect Servers In Mining Networks

• BlackByte Hackers Exploiting VMware ESXi Auth Bypass Vulnerability

• IT threat evolution Q2 2024

• IT threat evolution in Q2 2024. Mobile statistics

• IT threat evolution in Q2 2024. Non-mobile statistics

• Blooms Today – 3,184,010 breached accounts

• Novel Attack on Windows Spotted in Chinese Phishing Campaign

• Roblox Developers Under Attack by New Malicious NPM Campaign

• Secrets Exposed: Why Your CISO Should Worry About Slack

• TfL Claims Cyber-Incident is Not Impacting Services

• Brazilian Supreme Court Upholds X Ban

• Three men plead guilty to running MFA bypass service OTP.Agency

• Potential Ransomware Threat to Transport for London

• How Cyber Attacks can be a blessing to those buying cybersecurity stocks

• Explaining the OWASP API Security Top 10

• Major Data Breaches: Toronto Schools, TDECU, and Columbus Hacked: Cyber Security Today for Tuesday, September 3rd, 2024

• SLOW#TEMPEST Campaign Targets Chinese Users with Advanced Tactics

• Managing low-code/no-code security risks

• New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access

• The attack with many names: SMS Toll Fraud

• How ransomware tactics are shifting, and what it means for your business

• A third of organizations suffered a SaaS data breach this year

• Ex-Engineer Charged in Missouri for Failed $750,000 Bitcoin Extortion Attempt

• ISC Stormcast For Tuesday, September 3rd, 2024 https://isc.sans.edu/podcastdetail/9122, (Tue, Sep 3rd)

• Hacker Leaks Data of 390 Million Users from VK, a Russian Social Network

Generated on 2024-09-04 23:55:13.472100