IT Security News Daily Summary 2024-10-04

• No Way to Hide: Uncovering New Campaigns from Daily Tunneling Detection

• How open-source LLMs enable security teams to stay ahead of evolving threats

• Google removed Kaspersky’s security apps from the Play Store

• Why MFA alone won’t protect you in the age of adversarial AI

• EFF to Fifth Circuit: Age Verification Laws Will Hurt More Than They Help

• About a quarter million Comcast subscribers had their data stolen from debt collector

• Are Ghost Calls a Problem? Yes, if They Don’t Stop

• Digital Inclusion Week, Highlighting an EFA Members Digital Equity Work:

• About a quarter million Comcast subscribers had data stolen from debt collector

• Randall Munroe’s XKCD ‘Ingredientsl’

• USENIX NSDI ’24 – Gemino: Practical and Robust Neural Compression for Video Conferencing

• Join the Movement for Public Broadband in PDX

• Contact center fraud: How to detect and prevent it

• Crypto Wallet App on Google Play Steals $70,000 from Mobile Users

• DoJ, Microsoft Seize 100 Russian Phishing Sites Targeting US

• Summer 2024 SOC 1 report now available in Japanese, Korean, and Spanish

• Over 5,000 Fake Microsoft Notifications Fueling Email Compromise Campaigns

• Mark Zuckerberg Overtakes Bezos To Become Second-Richest Man

• Cybersecurity professionals are turning to AI as more lose control of detection tools

• How to conduct firewall testing and analyze test results

• 8 Tips to protect your devices from malware attacks

• Biggest Ever DDoS is Threat to OT Critical Infrastructure

• Fileless malware eating computing power of Linux Servers

• Enhanced API Security: Fine-Grained Access Control Using OPA and Kong Gateway

• GPT-4o: OpenAI’s shield against $40B deepfake threat to enterprises

• New CUPS Vulnerability Can Amplify DDoS Attacks: Patch Now!

• Fake Trading Apps for Android, iOS Lead to Pig Butchering Scam

• Windows 11’s Recall feature is Now Ready For Release, Microsoft Claims

• Necro Trojan Uses Steganography to Attack 11 Million Devices

• Palo Alto Networks: 5x Leader in the Gartner Magic Quadrant for SD-WAN

• How Cloud-Based Solutions Are Transforming Software Quality Assurance

• AFP Reports Potential Data Breach to French Authorities

• Survey of CUPS exploit attempts, (Fri, Oct 4th)

• Cybersecurity Snapshot: Many Employees Overshare Work Info with AI Tools, Report Finds, as ‘Cybersecurity Awareness Month’ Kicks Off

• DOJ, Microsoft Take Down Domains Used by Russian-Backed Group

• U.S. and Microsoft Seize 107 Russian Domains in Major Cyber Fraud Crackdown

• US, Microsoft Disrupts Russian FSB Hackers

• How Confidence Between Teams Impacts Cyber Incident Outcomes

• Are we getting better at quantifying risk management?

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Hispanic Heritage Month: Roberto Galindo

• New Perfctl Malware targets Linux servers in cryptomining campaign

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• SEC Cybersecurity Disclosure Rules – Are CISOs Ready to Go Beyond the Tip of the Iceberg?

• New MedusaLocker Ransomware Variant Deployed by Threat Actor

• Mike Lynch Died From Drowning, Coroner Inquest Rules

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• 5 reasons to update your iPhone to iOS 18.0.1 right now

• This Video Game Controller Has Become the US Military’s Weapon of Choice

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• How This Video Game Controller Became the US Military’s Weapon of Choice

• Open-Source Security Through the Lens of Tidelift

• Apple fixes bug that let VoiceOver shout your passwords

• Cloudflare Mitigates Record Breaking 3.8 Tbps DDoS Attack

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• The secret to secure DNS? It’s all in the policies

• 100+ domains seized to stymie Russian Star Blizzard hackers

• Cloudflare Mitigates Record 3.8 Tbps DDoS Attack

• Understanding Quishing: The Rise of QR Code Scams in Cybersecurity

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Massive Data Breach Exposes Personal Info of Millions of Americans

• How Reachability Analysis Is Streamlining Security for Developers

• Cloud Security Challenges Catch Executives Off Guard

• Avoid Evil Twin Attacks: Hackers Target Public Wi-Fi in Airports and Coffee Shops

• Cybersecurity in Logistics and Transportation Sector: Key Threats and Challenges

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks

• Cloudflare Thwarts Largest-Ever 3.8 Tbps DDoS Attack Targeting Global Sectors

• How to Get Going with CTEM When You Don’t Know Where to Start

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Iranian APT Facilitating Remote Access To Target Networks

• CentOS vs Ubuntu: Enterprise Linux Comparison

• Sellafield Fined for Cybersecurity Failures at Nuclear Site

• Prince Ransomware Hits UK and US via Royal Mail Phishing Scam

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Scam Information and Event Management

• Unprecedented Surge in Mobile Application Security Breaches: Understanding Risks and Remediation Efforts

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• ExpressVPN Review (2024): Pricing, Features, Pros, & Cons

• Microsoft and DOJ seized the attack infrastructure used by Russia-linked Callisto Group

• Visit CyberThreat 2024 to hone your cybersecurity skills

• CRI Releases Guidance on Avoiding Ransomware Payments

• Getting started with Detection-as-Code and Sekoia Platform

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Cloud Penetration Testing Checklist – 2024

• Microsoft, DOJ Dismantle Domains Used by Russian FSB-Linked Hacking Group

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Microsoft Takes Unprecedented Action Against Cyber Threat Actor Star Blizzard

• Linux Malware perfctl Attacking Millions of Linux Servers

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Harvard duo hacks Meta Ray-Bans to dox strangers on sight in seconds

• National Vulnerability Database backlog, update on CIRA study: Cyber Security Today for Friday, October 4, 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Black Kite Research Reveals 80% of Manufacturing Companies Face Critical Cyber Vulnerabilities

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Strengthening Security Posture Through People-First Engagement

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• October 2024 Patch Tuesday forecast: Recall can be recalled

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• E-Commerce Protection Lags Behind: Insights from the 2024 Global Bot Security Report

• California’s Deepfake Regulation: Navigating the Minefield of AI, Free Speech, and Election Integrity

• Best practices for implementing threat exposure management, reducing cyber risk exposure

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Big names among thousands infected by payment-card-stealing CosmicSting crooks

• MaLDAPtive: Open-source framework for LDAP SearchFilter parsing, obfuscation, and more!

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Cybercriminals capitalize on poorly configured cloud environments

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• New infosec products of the week: October 4, 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• ISC Stormcast For Friday, October 4th, 2024 https://isc.sans.edu/podcastdetail/9166, (Fri, Oct 4th)

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Exposing the Credential Stuffing Ecosystem

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• How GPT-4o defends your identity against AI-generated deepfakes

• Dutch police breached by a state actor

• USENIX NSDI ’24 -LiFteR: Unleash Learned Codecs in Video Streaming with Loose Frame Referencing

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• IT Security News Daily Summary 2024-10-03

• Understanding the Dependency Injection Lifecycle: Singleton, Scoped, and Transient With Detailed Examples

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• 3thix partners with Avalanche on web3 gaming ad data

• Make Cybersecurity Awareness Month a Game-Changer for You and Your Career

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• A Leader in 2024 Forrester Enterprise Firewall Solutions Wave

• Average North American CISO pay now $565K, mainly thanks to one weird trick

• Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks

• 2024-10-01 – Ukrainian language malspam pushes RMS-based malware

• 2024-10-03 – SmartLoader to Lumma Stealer

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Microsoft SFI progress report elicits cautious optimism

• News alert: SquareX shows how Google’s MV3 standard falls short, putting millions at risk

• News alert: Doppler fortifies ‘secrets management’ with Change Requests auditable approval feature

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Microsoft security overhaul offers blueprint for SecOps

• Tesla Recalls 27,000 Cybertrucks Over Rear Camera Issue

• Voting for the first time—4 cybersecurity tips for new voters

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• You don’t need to pay for antivirus software – here’s why

• CISA is warning us (again) about the threat to critical infrastructure networks

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Daniel Stori’s Turnoff.US: ‘Terminal Password Typing’

• Android 14 Adds New Security Features to Block 2G Exploits and Baseband Attacks

• Browser Firms Press EU To Reconsider Microsoft Edge As Gatekeeper

• New Linux Malware ‘Perfctl’ Targets Millions by Mimicking System Files

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• The TechCrunch Cyber Glossary

• Evaluating Mitigations & Vulnerabilities in Chrome

• Pixel’s Proactive Approach to Security: Addressing Vulnerabilities in Cellular Modems

• How Snoozing on Cybersecurity Fails Modern Businesses

• Evil Corp Faces New Sanctions and BitPaymer Ransomware Charges

• Beware of These Email Warning Signs to Stay Safe Online

• JPCERT Shares Tips for Detecting Ransomware Attacks Using Windows Event Logs

• Cybersecurity Attacks Rise in Hong Kong, Scammers Steal Money

• The Rise of VPNs: A Tool for Privacy or a False Promise

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• The 6 Best Email Security Software & Solutions of 2024

• Microsoft Invests €4.3 Billion In Italy For AI, Cloud

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• ‘Defunct’ DOJ ransomware task force raises questions, concerns

• Celebrating Latin and Hispanic Heritage Month

• DOJ, Microsoft seize 107 domains used in Russia’s Star Blizzard phishing attacks

• Litespeed Cache Plugin Flaw Allows XSS Attack, Update Now

• Customer compliance and security during the post-quantum cryptographic migration

• Wordfence Intelligence Weekly WordPress Vulnerability Report (September 23, 2024 to September 29, 2024)

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• One-Third of UK Teachers Lack Cybersecurity Training, While 34% Experience Security Incidents

• Eliminating Memory Safety Vulnerabilities at the Source

• The Secret Weakness Execs Are Overlooking: Non-Human Identities

• Microsoft and US Government Disrupt Russian Star Blizzard Operations

• Operation Cronos extension on LockBit Ransomware and FIN7 Deepfake Malware

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• The state of generative AI in 2024

• Celebrating Cisco’s Solutions Engineers in Honor of National Techies Day

• Thousands of Adobe Commerce e-stores hacked by exploiting the CosmicSting bug

• The Complete Guide to PAM Tools, Features, And Techniques

• Critical Ivanti Endpoint Manager flaw exploited (CVE-2024-29824)

• CeranaKeeper Emerges as New Threat to Thai Government Networks

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• UWA Innovates: Network Upgrade Transforms Student Experience, Boosts Security, and Drives Sustainability

• Doppler Launches ‘Change Requests’ to Strengthen Secrets Management Security with Audited Approvals

• New Perfctl Malware Targets Linux Servers for Cryptocurrency Mining and Proxyjacking

• Millions of Enterprises at Risk: SquareX Shows How Malicious Extensions Bypass Google’s MV3 Restrictions

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• OpenText report raises awareness for consumer digital life protection as privacy concerns increase with generative AI use

• Subnet Solutions Inc. PowerSYSTEM Center

• CISA Releases Three Industrial Control Systems Advisories

• TEM Opera Plus FM Family Transmitter

• Delta Electronics DIAEnergie

• CISA issues warning about another Ivanti flaw under active attack

• Average North American CISO salary now $565K, mainly thanks to one weird trick

• Why Fuzzing Isn?t Enough to Test Your APIs for Security Issues

• Harvard Students Use Meta Glasses To Dox People In Real-Time

• Webinar Announcement: Attack Surface Management to the Rescue – Find, Fix, Fortify Your ASM with Criminal IP

• Trends: Hardware gets AI updates in 2024

• Check Point Software Recognized as a Leader in The Forrester Wave™: Enterprise Firewall Solutions, Q4 2024

• Virtual Patching: A Proactive Approach to API Security

• Darktrace brings real-time cloud detection and response to Microsoft Azure customers

• Malwarebytes Browser Guard updates block unwanted and unsafe content

• North Korean Hackers Using New VeilShell Backdoor in Stealthy Cyber Attacks

• Not Black Mirror: Meta’s smart glasses used to reveal someone’s identity just by looking at them

• Browser Guard now flags data breaches and better protects personal data

• Stay Safe This Prime Day: Check Point Identifies Rise in Phishing Attacks and Scam Emails

• Customers Praise Check Point CloudGuard WAF for Exceptional Web Application and API Security

• Cryptomining perfctl malware swarms Linux machines

• A Single Cloud Compromise Can Feed an Army of AI Sex Bots

• License Plate Readers Are Creating a US-Wide Database of More Than Just Cars

• Cloudflare mitigated new record-breaking DDoS attack of 3.8 Tbps

• India Launches New Initiatives to Combat Spam and Cyber Fraud

• CUPS vulnerabilities could be abused for DDoS attacks

• Tick Tock.. Operation Cronos Arrests More LockBit Ransomware Gang Suspects

• The First 10 Days of a vCISO’S Journey with a New Client

• Two British-Nigerian men sentenced over multimillion-dollar business email scam

• Northern Ireland Police to Pay £750,000 Fine Following Data Breach

• Radiology provider exposed tens of thousands of patient files

• 2024’s Best Open Source Cybersecurity Tools

• Empathy in Action: How Cisco Changes Lives with The Opportunity Platform

• Legit Posture Score empowers security teams to measure and manage their AppSec posture

• Cybersecurity Spending on the Rise, But Security Leaders Still Feel Vulnerable

• Microsoft Makes Recall Opt-In While Improving Privacy

• Biden Exempts Some Chip Factories From Extra Environmental Scrutiny

• ANY.RUN Upgrades Threat Intelligence to Identify Emerging Threats

• Weird Zimbra Vulnerability

• License Plate Readers Are Creating a US-Wide Database of Political Lawn Signs and Bumper Stickers

• Private US companies targeted by Stonefly APT

• INTERPOL Arrests 8 in Major Phishing and Romance Fraud Crackdown in West Africa

• Hunting for IoCs: from singles searches to an automated and repeatable process

• ChatGPT Maker OpenAI Raises $6.6bn In Funding

• How to Balance Data Storage, Features, and Cost in Security Applications

• 10 Must-Read Books on Cybersecurity

• The 2024 ERA-ENISA Conference on Railway Cybersecurity seeks to strengthen sector preparedness and resilience against current threats

• Ransomware crew infects 100+ orgs monthly with new MedusaLocker variant

• Northern Ireland Police Data Leak Sees Service Fined by ICO

• Threat actor believed to be spreading new MedusaLocker variant since 2022

• Is it a good idea to pirate a video game?

• Q2 2024 Cyber Attacks Statistics

• Brits hate how big tech handles their data, but can’t be bothered to do much about it

• LockBit Ransomware and Evil Corp Members Arrested and Sanctioned in Joint Global Effort

• Crypto-Doubling Scams Surge Following Presidential Debate

• Email Phishing Attacks Surge as Attackers Bypass Security Controls

• Rogue AI: What the Security Community is Missing

• China-aligned CeranaKeeper Makes a Beeline for Thailand

• SSPM: A Better Way to Secure SaaS Applications

• LockBit Ransomware and Evil Corp Leaders Arrested and Sanctioned in Joint Global Effort

• FIN7 Gang Hides Malware in AI “Deepnude” Sites

• Hackers Now Exploit Ivanti Endpoint Manager Vulnerability to Launch Cyber Attacks

• Cisco Nexus Vulnerability Let Hackers Execute Arbitrary Commands on Vulnerable Systems

• CISA Warns of Critical Vulnerabilities Switches Used in Critical Manufacturing

• Decoding the Double-Edged Sword: The Role of LLM in Cybersecurity

• AuthenticID Velocity Checks detects fraudulent activities

• Tor Browser 13.5.6 Released – What’s New!

• Telegram revealed it shared U.S. user data with law enforcement

• Ivanti Endpoint Manager Flaw Actively Targeted, CISA Warns Agencies to Patch

• Hackers distributing Prince Ransomware by impersonating Royal Mail

• Small Steps, Big Impact: Expert Tips for Building a Stronger Cyber Defense

• Three hard truths hindering cloud-native detection and response

• Spotting AI-generated scams: Red flags to watch for

• How to use the Apple Passwords app

• 15% of office workers use unsanctioned GenAI tools

• Ransomware activity shows no signs of slowing down

• Whitepaper: Reach higher in your career with cloud security

• ISC Stormcast For Thursday, October 3rd, 2024 https://isc.sans.edu/podcastdetail/9164, (Thu, Oct 3rd)

• Kickstart Your DShield Honeypot [Guest Diary], (Thu, Oct 3rd)

• US and Other Countries Outline Principles for Securing OT

Generated on 2024-10-04 23:55:10.821072