IT Security News Daily Summary 2024-09-28

• USENIX NSDI ’24 – SwiftPaxos: Fast Geo-Replicated State Machines

• Kansas Water Plant Switches to Manual Operations Following Cyberassault

• Protecting Your Business from Cybercriminals on Social Media

• Mozilla Privacy: Tracking Users Without Consent

• Reading Encrypted WhatsApp Messages Through Digital Forensics

• Ethics and Tech: Data Privacy Concerns Around Generative AI

• Irish Data Protection Commission fined Meta €91 million for storing passwords in readable format

• Getting Out in Front of Post-Quantum Threats with Crypto Agility

• The US Could Finally Ban Inane Forced Password Changes

• Crypto Scam App Disguised as WalletConnect Steals $70K in Five-Month Campaign

• Non-Human Identity Management: Addressing the Gaping Hole in the Identity Perimeter

• A cyberattack on Kuwait Health Ministry impacted hospitals in the country

• Critical RCE Vulnerability Found in OpenPLC

• BBTok Targeting Brazil Using the AppDomain Manager Injection Technique

• HPE Patches Three Critical Security Holes in Aruba PAPI

• Microsoft Tightens Cloud Security After Major Breaches

• Cyber Security Today – Week in Review for September 28th, 2024

• Gamaredon’s operations under the microscope – Week in security with Tony Anscombe

• China-linked APT group Salt Typhoon compromised some US ISPs

• Kia Dealer Portal Flaw Could Let Attackers Hack Millions of Cars

• U.S. Charges Three Iranian Nationals for Election Interference and Cybercrimes

• Locked In – The Cybersecurity Event of the Year

• When Innovation Outpaces Financial Services Cybersecurity

• Unlocking Deeper Visibility and Control Over SaaS Risks

• The Kaseya Advantage: 10 Years and $12B in the Making

• VirusTotal AI-Generated Conversations: Threat Intel Made Easy

• The Tor Project and Tails have merged operations

• Why Microsoft’s security initiative and Apple’s cloud privacy matter to enterprises now

• Feds charge 3 Iranians with ‘hack-and-leak’ of Trump 2024 campaign

• IT Security News Daily Summary 2024-09-27

• Recall the Recall recall? Microsoft thinks it can make that Windows feature palatable

• How to Use a Conference Bridge to Run a Smooth Meeting

• Australian Organisations Targeted by Phishing Attacks Disguised as Atlassian

• What you need to know: The biggest cyber threats in 2024

• Iranian hackers charged with hacking Trump campaign to ‘stoke discord’

• New Email Scam Includes Pictures of Your House. Don’t Fall For It.

• Recall that Recall recall? Now Microsoft thinks it can make Windows feature palatable

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Phishing Attacks on Australian Organisations Disguised as Atlassian

• CUPS vulnerabilities could put Linux systems at risk

• Cyber vandalism on Wi-Fi networks at UK train stations spread an anti-Islam message

• Critical Linux RCE in CUPS ? What We Know and How to Prepare

• The 2024 DSPM Adoption Report

• Growing data security concerns Over Facebook and Instagram Scam

• How to Stay Ahead of Deepfakes and Other Social Engineering Attacks

• Hackers Could Remotely Control Kia Cars by Exploiting License Plates

• First Mobile Crypto Drainer on Google Play Steals $70K from Users

• CrowdStrike Named a Leader in 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Recognizing the Resilience of the CrowdStrike Community

• How CrowdStrike Hunts, Identifies and Defeats Cloud-Focused Threats

• Millions of Kia vehicles were vulnerable to remote attacks with just a license plate number

• Microsoft announces sweeping changes to controversial Recall feature for Windows 11 Copilot+ PCs

• US government charges three Iranian hackers with Trump campaign hack

• What is Threat Intelligence?

• CISA Warns: Industrial Systems Targeted by Threat Actors Using Unsophisticated Methods

• Torq Secures $70M Series C for HyperSOC

• Enhancing Cybersecurity Post-Breach: A Comprehensive Guide

• Daniel Stori’s Turnoff US: ‘Disney Buys Linux’

• Daniel Stori’s Turnoff.US: ‘’

• Daniel Stori’s Turnoff.US: ‘Disney Buys Linux’

• “Hacking” an Election is Harder Than You Think – But Security is Still a Priority

• Progress Software Releases Patches for 6 Flaws in WhatsUp Gold – Patch Now

• Too Good To Be True? For True Value, Look Beyond Vendors? Sales Claims

• Delivering Proactive Protection Against Critical Threats to NVIDIA-powered AI Systems

• Government Nationalises One Of UK’s Last Semiconductor Factories

• Malicious App On Google Play Steals Cryptocurrency From Android Users

• Hackers Attacking AI Agents To Hijacking Customer Sessions

• LummaC2 Stealer Leverages Customized Control Flow Indirection For Execution

• Hackers Abuse HTML Smuggling Technique To Deliver Sophisticated Phishing Page

• Is Spring AI Strong Enough for AI?

• The best VPN for Mac in 2024: Expert tested and reviewed

• The best VPN for streaming in 2024: Expert tested and reviewed

• Join Cisco at Enlit Europe 2024

• CUPS flaws allow remote code execution on Linux systems under certain conditions

• Innovator Spotlight: Zilla Security

• Innovator Spotlight: Guardio

• USENIX NSDI ’24 – Alea-BFT: Practical Asynchronous Byzantine Fault Tolerance

• Car Dealership Auto Canada Confirms Cyberattack, Alleged Data Leak

• AI-Generated Malware Discovered in the Wild

• Fortinet Cybersecurity Breach Exposes Sensitive Customer Data

• MoneyGram Faces Service Disruption Amid Cybersecurity Threat

• New Mallox Ransomware Linux Variant Built on Leaked Kryptina Source Code

• Ireland’s DPC Hits Meta with €91 Million Penalty for GDPR Violation

• Governments Urge Improved Security and Resilience for Undersea Cables

• Intel Rejects ARM Approach To Purchase Product Unit – Report

• Access control is going mobile — Is this the way forward?

• Worried about that critical RCE Linux bug? Here’s why you can relax

• What is a cloud access security broker (CASB)?

• 23 Top Open Source Penetration Testing Tools

• Critical Vulnerabilities Discovered in Automated Tank Gauge Systems From Multiple Vendors

• Ransomware gang using stolen Microsoft Entra ID creds to bust into the cloud

• Five Eyes Agencies Release Guidance on Detecting Active Directory Intrusions

• US Sanctions Crypto Exchanges for Facilitating Russian Cybercrime

• Hispanic Heritage Month Spotlight: Ana Perez Quiles

• Critical Flaw in HashiCorp Vault Enables Unrestricted SSH Access, Threatens System Security

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Critical Linux CUPS Printing System Flaws Could Allow Remote Command Execution

• When LLMs day dream: Hallucinations and how to prevent them

• Red Hat’s response to OpenPrinting CUPS vulnerabilities: CVE-2024-47076, CVE-2024-47175, CVE-2024-47176 and CVE-2024-47177

• CISA Warns of Hackers Targeting Industrial Systems Using “Unsophisticated Methods”

• Top Tips and Risks Ahead of the 2024 Olympic Games

• US Announces Charges, Sanctions Against Russian Administrator of Carding Website

• UK data watchdog confirms it’s investigating MoneyGram data breach

• Acumen Cyber Achieves CREST Security Operations Centre Accreditation

• Check Point Software Named a Visionary in 2024 Gartner Magic Quadrant for Endpoint Protection Platforms

• Critical WhatsUp Gold Vulnerabilities Demand Immediate Action

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• European Cybersecurity Skills Conference: Intensifying our efforts to close the cybersecurity skills gap in the EU

• Black Hat 2024: SOC in the NOC

• Phishing-as-a-Service Platform Sniper Dz Used to Create 140,000 Phishing Sites in One Year

• Sophistication of AI-Backed Operation Targeting Senator Points to Future of Deepfake Schemes

• NIST Recommends Some Common-Sense Password Rules

• Critical Flaws Discovered in Jupiter X Core WordPress Plugin Affecting Over 90,000 Sites

• Millions of Kia Cars Were Vulnerable to Remote Hacking: Researchers

• Top 6 Cloud Security Threats to Watch Out For

• Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks

• How to Plan and Prepare for Penetration Testing

• Meta Unveils Orion AR Glasses, Quest 3S VR Headset

• G2 Names INE 2024 Enterprise and Small Business Leader

• Hackers Abusing Third-Party Email Infrastructure to Send Spam Mails

• U.S. sanctioned virtual currency exchanges Cryptex and PM2BTC for facilitating illegal activities

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Storm-0501: Ransomware attacks expanding to hybrid cloud environments

• Is Google Password Manager Safe to Use in 2024?

• Tesla’s Cybertruck Goes, Inevitably, to War

• How a RevOps Consultant Can Drive Growth for Your SaaS Business

• VLC Media Player Update Needed: CVE-2024-46461 Discovered

• Kaspersky, Pango Respond to User Backlash as Transition to UltraAV Nearly Complete

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• CUPS vulnerabilities affecting Linux, Unix systems can lead to RCE

• Cloud Security Policy

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• New HTML Smuggling Campaign Delivers DCRat Malware to Russian-Speaking Users

• Cybersecurity Certifications: The Gateway to Career Advancement

• Man Arrested Over UK Railway Station Wi-Fi Hack

• Cybersecurity News: Train station WiFi hack, Mozilla tracking complaint, NIST password changes

• Critical CUPS Vulnerabilities Expose Linux and Other Systems to Remote Attacks

• Supreme Court Ruling May Question FTC Authority to Regulate Privacy and Security

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Russian Hackers Target Ukrainian Servicemen via Messaging Apps

• Critical Vulnerabilities Found in NVIDIA Container Toolkit

• See No Evil – NY AG Letitia James Cracks Down on Banks Refusing to Foot the Bill for Consumer Phishing and Fraud

• An Unexamined Life – Virginia Court Strikes Down Automated License Plate Readers (ALPRs)

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• SpyCloud Connect delivers automated remediation of compromised identities

• U.S. Sanctions Two Crypto Exchanges for Facilitating Cybercrime and Money Laundering

• How to protect yourself against cyber espionage

• AuditBoard’s risk platform enhancements empower teams to boost efficiency

• Cyber Attack news headlines trending on Google

• Hacking Kia Cars Remotely with a License Plate

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Critical NVIDIA Container Toolkit Vulnerability Could Grant Full Host Access to Attackers

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Vulnerabilities in OT systems pose real environmental and safety issues in fuel storage. Cyber Security Today for Friday, September 27, 2024

• Are You Sabotaging Your Cybersecurity Posture?

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Mozilla Faces Legal Complaint Over Firefox’s New “Privacy Preserving” Tracking Feature

• The AI-Cybersecurity Paradox: How AI is Revolutionizing Defenses While Empowering Hackers

• The Return of the Laptop From Hell

• Security Professionals Cite AI as Top Security Risk

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Tosint: Open-source Telegram OSINT tool

• 3 tips for securing IoT devices in a connected world

• Dell’s Security Woes Deepen: Attackers Strike Twice in One Week

• How the Promise of AI Will Be a Nightmare for Data Privacy

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• Developing an effective cyberwarfare response plan

• How The NIST Cybersecurity Framework is enhanced by Identity Continuity

• Anton’s Security Blog Quarterly Q3 2024

• CVE-2024-47076, CVE-2024-47175, CVE-2024-47176, CVE-2024-47177: Frequently Asked Questions About Common UNIX Printing System (CUPS) Vulnerabilities

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• How to lock and hide iPhone apps in iOS 18

• New infosec products of the week: September 27, 2024

• ISC Stormcast For Friday, September 27th, 2024 https://isc.sans.edu/podcastdetail/9156, (Fri, Sep 27th)

• Cybersecurity Compass: Bridging the Communication Gap

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

• 42% of daily X users have a negative view of it – losing the block feature won’t help

• Hacking Kia cars made after 2013 using just their license plate

• New Threats in Cybersecurity: September 2024 CVE Roundup

• ​​Microsoft is named a Leader in the 2024 Gartner® Magic Quadrant™ for Endpoint Protection Platforms

Generated on 2024-09-28 23:55:07.381060