IT Security News Daily Summary 2024-09-06

• Critical GeoServer Vulnerability Exploited in Global Malware Campaign

• Live Video of Promachoteuthis Squid

• Cyber Security Today – Week In Review for the September 7th, 2024

• Top API risks and how to mitigate them

• Cisco merch shoppers stung in Magecart attack

• Ransomware attacks continue to increase in the US, UK, and Canada

• CISO Series Podcast LIVE in Houston (09-24-24)

• Tenable: 26,500 Cyber Vulnerabilities Risk SE Asia’s Banks

• SonicWall warns that SonicOS bug exploited in attacks

• Top 5 Best Talks from Black Hat USA 2024

• Key Takeaways from the Fortinet Skills Gap Report: Why Cybersecurity Training is Crucial for Mitigating Cyber Risk

• Cyber Insurers Are Not Your Friend – Why a Warranty May Be a Better Option

• Threat Actors Abuse Red Team Tool MacroPack to Deliver Malware

• How to Use A Password Manager: Setup, Benefits & Best Practices in 2024

• You Really Do Have Some Expectation of Privacy in Public

• US Gov Removing Four-Year-Degree Requirements for Cyber Jobs

• Mozilla Released Firefox 130 With Handy AI Chatbot Feature And Security Fixes

• Zyxel Patched Numerous Security Flaws Across Different Products

• AI Firm’s Misconfigured Server Exposed 5.3 TB of Mental Health Records

• One million US Kaspersky customers to be migrated to this lesser-known alternative

• Russian ‘WhisperGate’ Hacks: 5 More Indicted

• Halliburton Hit by Cyberattack, Data Stolen

• Iran Cyber Attack: Fox Kitten Aids Ransomware Operations in the U.S

• SonicWall Urges Users to Patch Critical Firewall Flaw Amid Possible Exploitation

• Critical Arbitrary File Deletion Vulnerability in MP3 Audio Player WordPress Plugin Affects Over 20,000 Sites

• Alternative search engines to Google for achieving data privacy

• Elon Musk’s X Head Of Global Affairs Resigns

• Principles of Modern Data Infrastructure

• The Windows 10 clock is ticking: here are 5 ways to save your old PC in 2025 (most are free)

• ESET Research Podcast: HotPage

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Gen Alpha: Navigating Cybersecurity in an AI-Native World

• Microchip Technology Confirms Private Data Stolen in Ransomware Attack

• GitHub Actions Vulnerable to Typosquatting, Exposing Developers to Hidden Malicious Code

• GeoServer Vulnerability Targeted by Hackers to Deliver Backdoors and Botnet Malware

• AI Innovation in the Spotlight at Fal.Con 2024

• New global standard aims to build security around large language models

• Ransomware rocked healthcare, public services in August

• 7 Best User & Entity Behavior Analytics (UEBA) Tools

• Transport for London outages drag into weekend after cyberattack

• Building a New Service Offering around Cisco ThousandEyes: A Guide for Managed Service Providers

• YubiKey Side-Channel Attack

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• CISA Launches Major Effort to Secure the 2024 U.S. Elections

• Protecting Your Digital Identity: The Impact of EUCLEAK on FIDO Devices

• Predator Spyware Exploiting “one-click” & “zero-click” Flaws

• BBTok Abuses Legitimate Windows Utility Command Tool to Stay Undetected

• How cyber criminals are compromising AI software supply chains

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Microchip Technology Confirms Data Was Stolen in August Cyberattack

• Sami Khoury, Head of Canada’s Cyber Agency, Starts New Role in Government

• New Android SpyAgent Campaign Steals Crypto Credentials via Image Recognition

• OpenStack Ironic Users Urged to Patch Critical Vulnerability

• Exposed: Russian military Unit 29155 does digital sabotage, espionage

• The 2024 Threat Landscape State of Play

• The NSA Has a Podcast—Here’s How to Decode It

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• US Posts Indictments, Rewards in Russia’s WhisperGate Hacks Against Ukraine

• Critical Foreman Flaw Exposes Red Hat Satellite to Unauthorized Access

• Hackers Linked to Russia and Belarus Increasingly Target Latvian Websites, Officials Say

• MuddyWater Hijacks RMM Software for Espionage

• Report: 83% of Organizations Experienced at Least One Ransomware Attack in the Last Year

• Recent SonicWall Firewall Vulnerability Potentially Exploited in the Wild

• WazirX Hacker Starts Moving Stolen Ether Anonymously Using Tornado Cash

• Sophos X-Ops Uncovers Major Qilin Ransomware Breach Targeting Chrome Browser Credentials

• Spyware Vendors’ Nebulous Ecosystem Helps Them Evade Sanctions

• CMA Halts Probe Into Microsoft’s Inflection AI Staff Hiring

• 1Password review: A premium password manager well worth the money

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Goffloader: In-Memory Execution, No Disk Required

• CVE-2024-26581 PoC Exploit Released: Linux Systems at Risk of Root Compromise

• Respotter: Open-Source Responder Honeypot

• White House Launches Cybersecurity Hiring Sprint To Help Fill 500,000 Job Openings

• Malvertising Campaign Phishes Lowe’s Employees

• Apache Makes Another Attempt at Patching Exploited RCE in OFBiz

• BIMI Setup Guide for Zoho Mail – Getting the Blue Verified Checkmark

• Therapy Sessions Exposed by Mental Health Care Firm’s Unsecured Database

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Russian Threat Actors Target Critical Infrastructure in the U.S. and Across the World

• Critical Vulnerability Discovered in Progress LoadMaster

• Infosec Spending to Hit 3-Year Growth Peak, Reach $212B Next Year: Gartner

• Use of Predator Spyware Rebounds After a Dip From Biden Sanctions, Researchers Say

• Vulnerability in Tencent WeChat custom browser could lead to remote code execution

• Goodbye Windows Control Panel?

• TIDRONE Targets Military and Satellite Industries in Taiwan

• Telegram’s Pavel Durov Speaks Out Against French Charges

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Webmin/Virtualmin Vulnerability Opens Door to Loop DoS Attacks

• Head Mare Hacktivist Group Targets Russia and Belarus

• LiteSpeed Cache Plugin Vulnerability Exposes Millions of WordPress Sites to Attacks

• Apache OFBiz team patches critical RCE vulnerability (CVE-2024-45195)

• The State of the Virtual CISO Report: MSP/MSSP Security Strategies for 2025

• US and Allies Accuse Russian Military of Destructive Cyber-Attacks

• Cybersecurity News: Planned Parenthood cyberattack, DoJ propaganda takedown, Microchip Technology theft

• SonicWall Access Control Vulnerability Exploited in the Wild

• Fog Ransomware Now Targeting the Financial Sector; Adlumin Thwarts Attack

• NoiseAttack is a Novel Backdoor That Uses Power Spectral Density For Evasion

• Tropic Trooper Attacks Government Organizations to Steal Sensitive Data

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Critical Zero-Click Exploit Discovered in Popular Wi-Fi Chipsets, PoC Published

• Cequence Security partners with Netskope to provide protection for business-critical APIs

• Apache OFBiz for Linux & Windows Vulnerability Allows Unauthenticated Remote Code Execution

• Apache fixed a new remote code execution flaw in Apache OFBiz

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Why and How to Secure GenAI Investments From Day Zero

• Veza and HashiCorp join forces to help prevent credential exposure

• Resecurity gains recognition in Frost & Sullivan’s 2024 Cyber Threat Intelligence report

• Russian Military Hackers Attacking US and Global Critical Infrastructure

• To patch this server, we need to get someone drunk

• Russia-linked GRU Unit 29155 targeted critical infrastructure globally

• Tropic Trooper Expands Targeting: Middle East Government Entity Hit in Strategic Cyber Attack

• Bitdefender Debuts Security Solution for YouTube Content Creators and Influencers

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Frustration Trying to Opt-Out After the National Public Data Breach

• Is Cloud Security Ready for a Pivot to Behavioral Detection & Response

• Overcoming the Challenges of Zero-Trust

• Critical Security Flaw Found in LiteSpeed Cache Plugin for WordPress

• Sales Force acquires cloud based data security startup Own for $1.9 billions

• A Deep Dive into IoT Communication Protocols

• New PyPI Supply Chain Attack Technique Puts 22,000 Packages at Risk

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Fake OnlyFans Tool Backstabs Cybercriminals, Steals Passwords

• Pavel Durov Criticizes Outdated Laws After Arrest Over Telegram Criminal Activity

• Apache OFBiz Update Fixes High-Severity Flaw Leading to Remote Code Execution

• AI – What did you miss this summer? Hasthtag Trending for Friday, September 5th, 2024

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• Respotter: Open-source Responder honeypot

• Human firewalls are essential to keeping SaaS environments safe

• September 2024 Patch Tuesday forecast: Downgrade is the new exploit

• Identity verification: The key to the security of sporting events

• Championing the Wins to Improve Wellbeing in the Cyber Workplace

• UK Public Worried About Global Over Reliance on IT Systems

• The GRC Group Strengthens Cybersecurity Offering with Acquisition of Pentest People, Expanding Its Global Reach and Expertise

• Keeper Security Named a Value Leader in EMA’s 2024 PAM Radar™ Report

• 83% of organizations experienced at least one ransomware attack in the last year

• The true cost of cybercrime for your business

• Researchers Unpacked AvNeutralizer EDR Killer Used By FIN7 Group

• Why Are Organizations Losing the Ransomware Battle?

• New infosec products of the week: September 6, 2024

• ISC Stormcast For Friday, September 6th, 2024 https://isc.sans.edu/podcastdetail/9128, (Fri, Sep 6th)

• Enrichment Data: Keeping it Fresh, (Fri, Sep 6th)

• Homeland security hopes to scuttle maritime cyber-threats with port infosec testbed

• Understanding Quantum Threats and How to Secure Data with Post-Quantum Cryptography

• Randall Munroe’s XKCD ‘Lava Lakes’

• Managing Certificate Chaos After Google’s Entrust Distrust

• An Introduction to Trackers and the Data They Collect

• USENIX Security ’23 – UnGANable: Defending Against GAN-based Face Manipulation

• RansomHub Claims Planned Parenthood Hack, Steals 93GB of Sensitive Data

• White House’s new fix for cyber job gaps: Serve the nation in infosec

• BlindEagle Targets Colombian Insurance Sector with BlotchyQuasar

• IT Security News Daily Summary 2024-09-05

• How To Find XSS (Cross-Site Scripting) Vulnerabilities in WordPress Plugins and Themes

• 5 Reasons Why You Need API Discovery

• How AI can help fix this global healthcare challenge

• YubiKeys Are a Security Gold Standard—but They Can Be Cloned

• Uncle Sam charges Russian GRU cyber-spies behind ‘WhisperGate intrusions’

• How to Use a VPN: Complete User Guide

• Veeam fixed a critical flaw in Veeam Backup & Replication software

• Security baseline for Microsoft Edge version 128

• US charges Russian GRU hackers behind WhisperGate intrusions

• Join Us 9-23-24 For a CISO Series Meetup in Houston

• IBM Executive on Future Cybersecurity: Passkeys, Deepfakes & Quantum Computing

• US charges five Russian military hackers with targeting Ukraine’s government with destructive malware

• Cisco Insider Mateusz Frąk is passionate about gaining—and sharing—knowledge.

• Russian GRU Unit Tied to Assassinations Linked to Global Cyber Sabotage and Espionage

• How StorageGuard Can Assist With CISA’s Advised Mitigations For Newly Emerged BlackSuit Ransomware

• Storage & Data Protection Trends & Innovations To Watch in 2025

• The best and worst ways to get users to improve their account security

• The AI Security Gap: Protecting Systems in the Age of Generative AI

• Tracelo Data Breach: 1.4 Million Records Exposed

• Russian Military Cyber Actors Target US and Global Critical Infrastructure

• Baxter Connex Health Portal

• Cisco Networking Academy unveils new unified teaching and learning experience on NetAcad.com

• Cisco’s Smart Licensing Utility flaws suggest it’s pretty dumb on security

• The Deception Game: How Cyber Scams Manipulate Trust to Access Sensitive Information

• WordPress Mandates 2FA, SVN Passwords for Plugin, Theme Authors

• Russia’s Most Notorious Special Forces Unit Now Has Its Own Cyber Warfare Team

• Cisco Fixes Root Escalation Vulnerability With Public Exploit Code

• Intricate Babylon RAT Campaign Targets Malaysian Politicians, Government

• Litespeed Cache Flaw Exposes Millions of WordPress Sites to Takeover Attacks

• EFF & 140 Other Organizations Call for an End to AI Use in Immigration Decisions

• Transport for London Faces Ongoing Cyber Security Incident, Works to Safeguard Systems and Data

• IT Manager Faces Charges for Locking Computers to Demand Money

• Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues

• Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle East

• Watch our new documentary, “The Light We Keep: A Project PowerUp Story”

• Russia APT28 Cyber Attacks German Air Traffic Control

• Planned Parenthood partly offline after ransomware attack

• Lowe’s employees phished via Google ads

• Why It’s So Hard to Fully Block X in Brazil

• CISA Releases Four Industrial Control Systems Advisories

• New Omdia report offers first of its kind analysis of the industrial edge

• CISO Role Expands as Cybersecurity Becomes Integral to Business Strategy

• PyPI Revival Hijack Puts Thousands of Applications at Risk

• Businesses still ready to invest in Gen AI, with risk management a top priority

• Cicada Ransomware – What You Need To Know

• Australia Proposes Mandatory Guardrails for AI

• Hughes Network Systems WL3000 Fusion Software

• Partnering for Purpose: Join the Movement to Amplify Positive Impact

• Cisco Warns of Backdoor Admin Account in Smart Licensing Utility

• Security boom is over, with over a third of CISOs reporting flat or falling budgets

• Quantum computing is coming – are you ready?

• MIT Database Lists Hundreds of AI Dangers Impacting Human Lives

• Citrine Sleet APT Exploits Chrome Zero-Day Vulnerability for Rootkit Infiltration

• UK Signs Council of Europe AI Convention

• Security Budgets Come Under Pressure as “Hypergrowth” Ends

• Wordfence Intelligence Weekly WordPress Vulnerability Report (August 26, 2024 to September 1, 2024)

• New report shows ongoing gender pay gap in cybersecurity

• EUCLEAK Attack Allows Yubico Security Keys to be Cloned

• The AI Wild West: Unraveling the Security and Privacy Risks of GenAI Apps

• Rise in Ransomware Attacks in Southeast Asia Driven by Rapid Digitalization and Security Gaps

• Vanta empowers GRC teams to make their security and compliance automated

• Earth Lusca adds multiplatform malware KTLVdoor to its arsenal

• Google Fixed Actively Exploited Android Privilege Escalation Flaw (CVE-2024-32896)

• U.S. Seizes 32 Pro-Russian Propaganda Domains in Major Disinformation Crackdown

• Abusix Launches Guardian: Cutting-Edge Security Platform for Email and Network Providers

• Lazarus Hackers Attacking Job-Seekers to Deliver Javascript Malware

• Earth Lusca Using Multiplatform Backdoor to Attack Windows & Linux Machines

• Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401

• Revival Hijack Attack Puts 22,000 PyPI Packages at Risk of Hijack

• Cisco Patches Critical Vulnerabilities in Smart Licensing Utility

• Choosing the Best Cybersecurity Prioritization Method for Your Organization

• RansomHub Emerges in Rapidly Evolving Ransomware Landscape

• RomCom Group’s Underground Ransomware Exploits Microsoft Zero-Day Flaw

• CISA Warns of Three Actively Exploited Vulnerabilities That Demand Immediate Attention

• Fake OnlyFans Checker Tool Infects Hackers with Lummac Stealer Malware

• One League, 32 Teams, One Cisco

• 6 Best Enterprise Antivirus Software Choices in 2024

• Long Analysis of the M-209

• Two Nigerians Sentenced to Prison in US for BEC Fraud

• Proofpoint helps organizations simplify governance of communication data

• Researcher Finds Unfixable Yet Tricky to Exploit Flaw in Yubikeys

• We Hunted Hidden Police Signals at the DNC

• Pool Your Cybersecurity Resources to Build the Perfect Security Ecosystem

• Cloud Access Security Brokers (CASBs): Are They Still Relevant?

• Vestager To Step Down As EU Competition Chief

• US Probes Four-Vehicle Crash Involving AI Driver Assistance

• Growth of Web3 Fuled New Opportunities for Threat Actors to Attack Finance Sectors

• Is Russian group APT28 behind the cyber attack on the German air traffic control agency (DFS)?

• The fingerpointing starts as cyber incident at London transport body continues

• Bitdefender Security for Creators protects YouTube content creators and influencers from hackers

• Hiring Cyber Teenagers with Criminal Records

• Banking Trojans: Mekotio Looks to Expand Targets, BBTok Abuses Utility Command

• US Targets Russian Election Influence Operation With Charges, Sanctions, Domain Seizures

• Revenera OSS Inspector enables developers to assess open source software risks

• NIST Cybersecurity Framework (CSF) and CTEM – Better Together

• Cybersecurity News: Spyware research, Cicada rebrand, MacroPack malware

• EU Seeks Industry Views On Google DMA Compliance

• Quishing, an insidious threat to electric car owners

• Microchip Technology confirms theft of employee data

• OnlyFans Hackers Targeted With Infostealer Malware

• A Powerful Approach to SaaS ITDR – Avoiding False Positives on Improbable Travel

• Skyhigh AI mitigates risks associated with AI applications

• Nvidia Served With Subpoena In US Antitrust Probe

• Nvidia Invests In Japan Start-Up Sakana AI

• China Accused Of Poaching Talent Amidst Chip Plant Drive

• Veeam Backup & Replication Vulnerabilities Let Attackers Execute Remote Code

• Tor Browser 13.5.3 Released, What’s New?

• Tropic Trooper spies on government entities in the Middle East

• Double Trouble: DOJ Exposes Russian AI-Powered Disinformation

• The Six Most Dangerous New Threats Security Teams Need to Know About

• Threat Actors Using MacroPack to Deploy Brute Ratel, Havoc, and PhantomCore Payloads

• FBI Warns Crypto Firms of Aggressive Social Engineering Attacks

• Binarly Transparency Platform 2.5 identifies critical vulnerabilities before they can be exploited

• Malware Attackers Using MacroPack to Deliver Havoc, Brute Ratel, and PhantomCore

• Russian Blamed For Mass Disinformation Campaign Ahead of US Election

• Cisco Smart Licensing Utility Vulnerability Let Attackers Gain Admin Control

• Iran pays millions to stop data leak related to banks

• Phishing Remains Top Cyber Threat Despite Drop in Incidents

• Cisco Warns of Critical Vulnerabilities in Smart Licensing Utility

• New Cross-Platform Malware KTLVdoor Discovered in Attack on Chinese Trading Firm

• “Active Listening” software reportedly used to listen in on smart phone conversations. Cyber Security Today for Thursday, September 5, 2024

• Security biz Verkada to pay $3m penalty under deal that also enforces infosec upgrade

• The future of automotive cybersecurity: Treating vehicles as endpoints

• Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks

• How to gamify cybersecurity preparedness

• ISC Stormcast For Thursday, September 5th, 2024 https://isc.sans.edu/podcastdetail/9126, (Thu, Sep 5th)

• vCISO services thrive, but challenges persist

• Enterprise DSPM for Fortune 500 – 1touch.io is your go-to solution

• Managing Automatic Certificate Management Environment (ACME) in Identity Management (IdM)

• White House seizes 32 domains, issues criminal charges in massive election-meddling crackdown

• Attack Surface [Guest Diary], (Wed, Sep 4th)

• Check Point Software Celebrates Partner Success at the Asia Pacific Partner Conference 2024

• North Korean scammers plan wave of stealth attacks on crypto companies, FBI warns

• News alert: Blackwired launches ‘ThirdWatch?’ — an advanced third-party risk management platform

• News alert: INE Security releases a strategies guide for cyber threat preparedness, response capabilities

• News alert: AI SPERA attains PCI DSS certification for its search engine solution ‘Criminal IP’

Generated on 2024-09-06 23:55:11.086421