IT Security News Daily Summary 2024-10-26

• Mastering Cybersecurity: A Comprehensive Guide to Self-Learning

• How (and why) federated learning enhances cybersecurity

• Security Defenses Crippled by Embargo Ransomware

• CISA Proposes New Security Measures to Protect U.S. Personal and Government Data

• Artifact Tracking: Workstation Names

• Chinese cyber spies targeted phones used by Trump and Vance

• Lazarus Group Exploits Chrome Zero-Day Flaw Via Fake NFT Game

• Microsoft and Salesforce Clash Over AI Autonomy as Competition Intensifies

• New Attack Lets Hackers Downgrade Windows to Exploit Patched Flaws

• Four REvil Ransomware Members Sentenced in Rare Russian Cybercrime Convictions

• Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining

• Irish Data Protection Commission fined LinkedIn €310M for GDPR infringement

• Cyber Security Research from CDW: Interview with Ivo Wiens, Field CTO Cybersecurity: Cyber Security Today Weekend for October 26, 2024

• The Club Penguin Experience – 6,342 breached accounts

• Worker surveillance must comply with credit reporting rules

• CERT-UA Identifies Malicious RDP Files in Latest Attack on Ukrainian Entities

• Joint ODNI, FBI, and CISA Statement

• LinkedIn founder Reid Hoffman unveils ‘super agency’ vision at TED AI conference, takes subtle shot at Elon Musk

• The Real Monsters of Street Level Surveillance

• Week in Review: Solar Winds fines, Microsoft loses security logs, employee security awareness lacking

• IT Security News Daily Summary 2024-10-25

• Chinese Hackers Target Trump Campaign via Verizon Breach

• Innovator Spotlight: Legit Security

• Sophos Acquires Dell’s Secureworks for $859 Million

• 7 Best Attack Surface Management Software for 2025

• Friday Squid Blogging: Giant Squid Found on Spanish Beach

• How to mitigate bot traffic by implementing Challenge actions in your AWS WAF custom rules

• 12 Expert Tips for Secure Cloud Deployments

• Joint Statement by FBI and CISA on PRC Activity Targeting Telecommunications

• Pentest People Achieves CREST Cyber Security Incident Response (CSIR) Accreditation

• Apple will pay you up to $1 million if you can hack into Apple Intelligence servers

• Change Healthcare Cyberattack Exposed Data of Over 100 Million People

• Change Healthcare data breach impacted over 100 million people

• Relearning past lessons in assessing cloud risk

• WhatsApp Moves Toward Usernames, Phasing Out Phone Numbers

• Best Cybersecurity Software & Tools for 2025

• Prominent crypto critic says someone offered bribes to take down a blog post

• DDoS mitigation: How to stop DDoS attacks

• SonicWall Doubles Down on Edge Security With Risk-Based Connectivity and Threat Protection

• Intel To Invest More Than $28 Billion In Ohio Chip Factories – Report

• Data Breach Exposes 93,000 Transak Users Due to Employee’s Device Misuse

• Elon Musk reportedly chats regularly with Putin

• AWS Seizes Domains Used by Russian Threat Group APT29

• Australia government looses visa holders sensitive details in cyber attack

• How to Shift Your Cybersecurity Focus from Breach to Impact (& Manage Risk)

• Apple Returns To Top 5 Smartphone Ranks In China, Amid Tim Cook Visit

• 100 million US citizens officially impacted by Change Healthcare data breach

• The best AirTag wallets of 2024: Expert tested

• Cisco ASA and FTD zero day used in password spraying attacks

• The Three Pillars of Shift-Left API Security

• A Preemptive Guide to State Cybersecurity Compliance

• It’s Time to Take Action This Cybersecurity Awareness Month

• Unlocking Business Growth: The Need for Cyber Risk Quantification

• Linux Kernel Project Drops 11 Russian Developers Amid US Sanctions Concerns

• Cybercrime Atlas: An Effective Approach to Collaboration in Cybersecurity

• Just how private is Apple’s Private Cloud Compute? You can test it to find out

• 100 MILLION Americans in UnitedHealth PII Breach

• The Growing Role of AI in Ethical Hacking: Insights from Bugcrowd’s 2024 Report

• Enhancing Study with QR Codes: A Modern Educational Tool

• Enter the World of Ethical Hacking with Confidence

• How AI Will Help Empower SMB Cybersecurity

• New Qilin Ransomware Variant Spotted by Cybersecurity Researchers

• Cybersecurity Insights with Contrast CISO David Lindner | 10/25/24

• How LLMs could help defenders write better and faster detection

• Researchers Discover Command Injection Flaw in Wi-Fi Alliance’s Test Suite

• In Other News: CVE Turns 25, Henry Schein Data Breach, Reward for Shahid Hemmat Hackers

• Addressing growing concerns about cybersecurity in manufacturing

• Watermark for LLM-Generated Text

• UnitedHealth: 100 Million Individuals Affected by the Change Healthcare Data Breach

• LinkedIn Hit With 310 Million Euro Fine for Data Privacy Violations From Irish Watchdog

• Change Healthcare Breach Affects 100 Million Americans

• Worms vs. Viruses: What’s the Difference?

• Windows 11 CLFS Driver Vulnerability Let Attackers Escalate Privileges – PoC Exploit Released

• Elon Musk reportedly chats often with Putin

• Safeguarding Corporate Secrets: Best Practices and Advanced Solutions

• Over $1 Million Paid Out at Pwn2Own Ireland 2024

• Apple Opens PCC Source Code for Researchers to Identify Bugs in Cloud AI Security

• CDK Cyber Attack

• 10 Best Linux Distributions In 2024

• Cloud Risk Management: The DevOps Guide

• US, Australia Release New Security Guide for Software Makers

• Protect Your Devices With Free Virus Removal

• Protecting Your Website From DDoS Attack

• SEC fines tech companies for misleading SolarWinds disclosures

• what is Malware

• UNC5820 Exploits FortiManager Zero-Day Vulnerability (CVE-2024-47575)

• CISOs Should Be Directing IAM Strategy — Here’s Why

• Worldwide IT Spending To Grow 9.3 Percent In 2025, Gartner Predicts

• AWS CDK Vulnerabilities Let Takeover S3 Bucket

• Landmark Admin Discloses Data Breach Impacting 800,000 People

• EDR Dependency: Ensuring Uninterrupted and Comprehensive Security Coverage

• Eliminating AI Deepfake Threats: Is Your Identity Security AI-Proof?

• OnePoint Patient Care data breach impacted 795916 individuals

• SEC Charges 4 Companies Over Misleading SolarWinds Cyberattack Disclosures

• Ukraine Warns of Mass Phishing Campaign Targeting Citizens Data

• Exploited: Cisco, SharePoint, Chrome vulnerabilities

• From Risk Assessment to Action: Improving Your DLP Response

• Why Is Privileged Access Management (PAM) Important?

• AWS Seizes Domains Used by Russia’s APT29

• Irish Data Protection Watchdog Fines LinkedIn $336m

• New Rules for US National Security Agencies Balance AI’s Promise With Need to Protect Against Risks

• Proof Verify reduces false positives and improves fraud detection accuracy

• NVIDIA Patch Multiple GPU Display Driver for Windows & Linux

• OnePoint Patient Care Data Breach Impacts Nearly 800,000 People

• 3 Tips for Organizations to Shore Up Their Cyber Resilience Strategies This Fall

• Cyberattacks Against Sporting Events are Growing More Calculated

• Inequity Challenges Women in Digital Trust, But Progress is Being Made

• Concentric AI raises $45 million to expand go-to-market strategies

• AuthenticID360 blocks AI-generated IDs during digital onboarding

• 7 essential password rules to follow in 2024, according to security experts

• U.S. CISA adds Cisco ASA and FTD, and RoundCube Webmail bugs to its Known Exploited Vulnerabilities catalog

• MacOS-Focused Ransomware Attempts Leverage LockBit Brand

• Qiliin ransomware upgrade, Sharepoint KEV flaw, Rhysida ransoms Easterseals

• Ransomware threat to Apple MacOS devices

• Understanding NIS2 and DORA: What executives need to know

• Sysdig Predicts Global Cyberattacks Costs Will Exceed $100B in 2025

• Safely Scale Your Data Center With These Five Cybersecurity Measures

• Irish Watchdog Imposes Record €310 Million Fine on LinkedIn for GDPR Violations

• US Energy Sector Faces Growing Cybersecurity Threats

• A Dangerous Alliance: Scattered Spider, RansomHub Join Forces

• AI-Driven Deepfake Scams Cost Americans Billions in Losses

• Achieving peak cyber resilience

• ESET Research Podcast: CosmicBeetle

• How to fend off a quantum computer attack

• The future of cyber insurance: Meeting the demand for non-attack coverage

• How to Protect Against Ransomware Attacks?

• New infosec products of the week: October 25, 2024

• Unclear pricing for GRC tools creates market confusion

• ISC Stormcast For Friday, October 25th, 2024 https://isc.sans.edu/podcastdetail/9196, (Fri, Oct 25th)

• digiDirect – 304,337 breached accounts

• Putin’s pro-Trump trolls accuse Harris of poaching rhinos

• Have you stayed at a Marriott? Here’s what its settlement with the FTC means for you

• Is the Blockchain Secure? Yes, and Here’s Why

Generated on 2024-10-26 23:55:04.101274