IT Security News Daily Summary 2024-12-04

140 posts were published in the last hour

• 22:31 : Black Basta ransomware gang hit BT Group
• 22:31 : Location Tracking Tools Endanger Abortion Access. Lawmakers Must Act Now.
• 22:5 : IT Security News Hourly Summary 2024-12-04 23h : 6 posts
• 22:4 : OpenAI inks deal to upgrade Anduril’s anti-drone tech
• 22:4 : It’s the Senate’s last chance to pass the PRESS Act
• 21:32 : Microsoft Announces Security Update with Windows Resiliency Initiative
• 21:32 : Authorities shut down Crimenetwork, the Germany’s largest crime marketplace
• 21:6 : API Security in Open Banking: Balancing Innovation with Risk Management
• 21:6 : Sharing your Max password? That’s about to get more difficult
• 21:5 : IT Security News Hourly Summary 2024-12-04 22h : 1 posts
• 20:34 : National Public Data Shuts Down Months After Massive Breach
• 20:5 : IT Security News Hourly Summary 2024-12-04 21h : 4 posts
• 19:36 : Meta Looks To Nuclear Energy For US Data Centres
• 19:36 : Are We on the Brink of Saying Goodbye to Passwords?
• 19:36 : Deloitte UK Hacked – Brain Cipher Group Claim to Have Stolen 1 TB of Data
• 19:36 : Nikesh Arora on Mad Money
• 19:5 : IT Security News Hourly Summary 2024-12-04 20h : 12 posts
• 19:2 : Senators say US military is failing to secure its phones from foreign spies
• 19:2 : Fortinet’s Secure-by-Design Commitments: Making Measurable Progress in Cybersecurity
• 19:2 : Veeam Warns of Critical Vulnerability in Service Provider Console
• 18:41 : Critical Veeam Vulnerabilities Allow Remote Code Execution – Update Now
• 18:41 : Video: Salt Typhoon Hacks Major Telecom Giants Using Malware
• 18:40 : CISA Releases New Public Version of CDM Data Model Document
• 18:40 : Printer Problems? Don’t Fall for These Dangerous Scams
• 18:7 : CMA Delays Cloud Computing Report Until 2025
• 18:7 : How to protect against malware as a service
• 18:7 : Spy v Spy: Russian APT Turla Caught Stealing From Pakistani APT
• 18:6 : Russia-Linked Turla Exploits Pakistani Hackers’ Servers to Target Afghan and Indian Entities
• 18:6 : Ransomware Costs Manufacturing Sector $17bn in Downtime
• 18:5 : IT Security News Hourly Summary 2024-12-04 19h : 14 posts
• 17:34 : Resilient by Design: Akamai?s Data-Driven Path to Climate Adaptation
• 17:34 : FBI, CISA urge Americans to use secure messaging apps in wake of massive cyberattack
• 17:34 : Senators say U.S. military is failing to secure its phones from foreign spies
• 17:34 : Wirral Hospital Recovery Continues One Week After Cyber Incident
• 17:34 : FTC Safeguards US Consumers from Location Data Misuse
• 17:9 : (QR) Coding My Way Out of Here: C2 in Browser Isolation Environments
• 17:9 : NHS Ransomware Attack: Russian INC Ransom Gang Steals Patient Data
• 17:9 : Are Long-Lived Credentials the New Achilles’ Heel for Cloud Security?
• 17:9 : Senators Warn the Pentagon: Get a Handle on China’s Telecom Hacking
• 17:9 : CISA, FBI urge Americans to use encrypted messaging apps to combat Chinese telco hackers
• 17:9 : Preparing for 2025 Cybersecurity Warnings
• 17:8 : Spy v Spy: Russian APT Turla Caught Stealing from Pakistani APT
• 17:8 : China is Still Inside US Networks — It’s Been SIX Months
• 17:5 : IT Security News Hourly Summary 2024-12-04 18h : 17 posts
• 16:36 : Intel Approaches Ex Board Member Lip-Bu Tan, Others As CEO Replacement
• 16:36 : Weaponized Word Documents Attacking Windows Users to Deliver NetSupport & BurnsRAT
• 16:36 : Hackers Exploit Docker Remote API Servers To Inject Gafgyt Malware
• 16:36 : Cloudflare Developer Domains Abused For Cyber Attacks
• 16:36 : CISA Adds One Known Exploited Vulnerability to Catalog
• 16:36 : US government says Chinese hackers are still lurking in American phone networks
• 16:36 : Veeam addressed critical Service Provider Console (VSPC) bug
• 16:36 : How to Become the Company Top Cyber Talent Wants to Join
• 16:36 : Poor mobile security practices rife at SMEs, CyberSmart survey finds
• 16:36 : Crypto’s rising value likely to bring new wave of scams
• 16:36 : Liverpool Children’s Hospital Confirms Cyber-Attack
• 16:7 : Crypto and Cybersecurity: How to Keep Your Cryptocurrency Safe in 2025
• 16:7 : How to recover from a DDoS attack
• 16:6 : She Was a Russian Socialite and Influencer. Cops Say She’s a Crypto Laundering Kingpin
• 16:6 : UnitedHealthcare CEO Brian Thompson shot and killed in New York
• 16:6 : How CSPs are Adapting to the Threat Landscape and Meeting new Cybersecurity Challenges
• 16:6 : Solana’s popular web3.js library backdoored in supply chain compromise
• 16:5 : IT Security News Hourly Summary 2024-12-04 17h : 4 posts
• 15:34 : Satellite receivers enriched with DDoS Attack functionality led to CEO Arrests
• 15:34 : The Road to Agentic AI: Exposed Foundations
• 15:34 : Celsius Founder Alex Mashinsky Pleads Guilty To Fraud
• 15:34 : Cops arrest suspected admin of German-language crime bazaar
• 15:5 : IT Security News Hourly Summary 2024-12-04 16h : 73 posts
• 14:56 : Data Analysis: The Unsung Hero of Cybersecurity Expertise [Guest Diary], (Wed, Dec 4th)
• 14:56 : ISC Stormcast For Wednesday, December 4th, 2024 https://isc.sans.edu/podcastdetail/9240, (Wed, Dec 4th)
• 14:56 : Implementing blocklists in the Sekoia SOC platform
• 14:56 : Stoli bankruptcy with ransomware, malware distribution via resume and Kash Patel Trump Cyber Attack
• 14:56 : Can Failing to Log Out from Online Accounts Pose a Cybersecurity Threat?
• 14:56 : The Dark Side of Viral Content: How Negative Reviews Can Snowball
• 14:55 : US Chips ‘No Longer Safe’, Chinese Industry Bodies Claim
• 14:55 : Telegram Joins Child Safety Scheme
• 14:55 : The Role of Salesforce Implementation in Digital Transformation
• 14:55 : 15 SpyLoan Apps Found on Play Store Targeting Millions
• 14:55 : Authorities Take Down Criminal Encrypted Messaging Platform MATRIX
• 14:55 : Cisco Urges Immediate Patch for Decade-Old WebVPN Vulnerability
• 14:55 : CISA Releases Advisory to Monitor Networks to Detect Malicious Cyber Actors
• 14:55 : MobSF XSS Vulnerability Let Attackers Inject Malicious Scripts
• 14:55 : Progress WhatsUp Gold RCE Vulnerability – PoC Exploit Released
• 14:55 : Google Chrome Security Update, Patch for High-severity Vulnerability
• 14:55 : New TLDs Such as .shop, .top and .xyz Leveraged by Phishers
• 14:55 : Ecosystem Security: The State of Puebla’s Success Story
• 14:55 : From Trust to Technology: The Cyber Security Pillar of Modern Banking
• 14:55 : FTC says AI company Evolv ‘falsely hyped’ its security scanners
• 14:55 : CIS Control 10: Malware Defenses
• 14:54 : Tripwire Patch Priority Index for November 2024
• 14:54 : Tech Support Scams Exploit Google Ads to Target Users
• 14:54 : How to Implement Zero Trust: Best Practices and Guidelines
• 14:54 : CISA, FBI Issue Guidance for Securing Communications Infrastructure
• 14:54 : Ransomware attacks on critical sectors ramped up in November
• 14:54 : U.S. Offered $10M for Hacker Just Arrested by Russia
• 14:54 : A New Phone Scanner That Detects Spyware Has Already Found 7 Pegasus Infections
• 14:54 : Tuskira unifies and optimizes disparate cybersecurity tools
• 14:54 : Linux Foundation report highlights the true state of open-source libraries in production apps
• 14:54 : Business leaders among Pegasus spyware victims, says security firm
• 14:54 : Ransomware hackers target NHS hospitals with new cyberattacks
• 14:54 : The ASA flaw CVE-2014-2120 is being actively exploited in the wild
• 14:54 : U.S. CISA adds ProjectSend, North Grid Proself, and Zyxel firewalls bugs to its Known Exploited Vulnerabilities catalog
• 14:54 : Australia, Canada, New Zealand, and the U.S. warn of PRC-linked cyber espionage targeting telecom networks
• 14:54 : Kaspersky Security Bulletin 2024. Statistics
• 14:53 : AI and the 2024 Elections
• 14:53 : Navigating Australia’s Evolving Cyber Threat Landscape: Insights on AI-Driven Scams, Ransomware, and more
• 14:53 : APIs and the Demise of Direct Database Access: A Safer World?
• 14:53 : How widespread is mercenary spyware?
• 14:53 : Top Ten EFF Digital Security Resources for People Concerned About the Incoming Trump Administration
• 14:53 : AI chatbot provider exposes 346,000 customer files, including ID documents, resumes, and medical records
• 14:53 : Perfect 10 directory traversal vuln hits SailPoint’s IAM solution
• 14:53 : FTC scolds two data brokers for allegedly selling your location to the metre
• 14:53 : Eurocops take down ‘secure’ criminal chat system known as Matrix
• 14:53 : Microsoft says premature patch could make Windows Recall forget how to work
• 14:53 : Tuskira Scores $28.5M for AI-Powered Security Mesh
• 14:53 : Are We Too Trusting of Employees?
• 14:53 : Defending Against Email Attachment Scams
• 14:52 : A Strategic Approach to Building a Comprehensive Third-Party Risk Framework
• 14:52 : Why Technology Interoperability is the Key to a Safer Internet of Things (IoT)
• 14:52 : Chinese-Made LiDAR Systems a National Security Risk, Think Tank Says
• 14:52 : User Tracking: Google to Store User Data for 180 Days
• 14:52 : DeepMind Pushes AI Frontiers with Human-Like Tech
• 14:52 : Orbit Under Siege: The Cybersecurity Challenges of Space Missions
• 14:52 : Understanding Mimic Ransomware: Features, Threats, and Noteworthy Exploits
• 14:52 : Meet Chameleon: An AI-Powered Privacy Solution for Face Recognition
• 14:44 : AttackIQ Flex 3.0 empowers security teams to take control of their detection strategies
• 14:44 : FortiAppSec Cloud simplifies web application security management
• 14:44 : PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785)
• 14:44 : Product showcase: Securing Active Directory passwords with Specops Password Policy
• 14:44 : How widespread is mercenary spyware? More than you think
• 14:44 : Joint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom Networks
• 14:44 : Researchers Uncover Backdoor in Solana’s Popular Web3.js npm Library
• 14:44 : How to Plan a New (and Improved!) Password Policy for Real-World Security Challenges
• 14:44 : 7 PAM Best Practices to Secure Hybrid and Multi-Cloud Environments
• 14:44 : Europol Dismantles Criminal Messaging Service MATRIX in Major Global Takedown
• 14:43 : German Police Shutter Country’s Largest Dark Web Market
• 14:43 : Vodka Giant Stoli Files for Bankruptcy After Ransomware Attack
• 14:43 : ENISA Launches First State of EU Cybersecurity Report
• 14:43 : Security Risks Persist in Open Source Ecosystem
• 14:43 : Stoli U.S. bankrupts, German Crimenetwork seized, FBI telecom advisory
• 14:43 : Hackers Move From Data Theft To Complete Destruction: Cyber Security Today For Wednesday, December 4, 2024