IT Security News Weekly Summary – Week 01

• IT Security News Daily Summary 2024-01-07

• A cyber attack hit the Beirut International Airport

• USENIX Security ’23 – Oshrat Ayalon, Dana Turjeman, Elissa M. Redmiles – ‘Exploring Privacy And Incentives Considerations In Adoption Of COVID-19 Contact Tracing Apps’

• North Korean Actors Behind $600M in Crypto Thefts: TRM Labs

• Cybercriminals Exploit X Gold Badge, Selling Compromised Accounts on Dark Web

• 9 Questions to Ask a Privileged Access Provider

• Security Issue in Banking Applications?

• Google Removes Foreign eSIM Apps Airola and Holafly from PlayStore

• Prior to Cyber Attack, Russian Attackers Spent Months Inside the Ukraine Telecoms Giant

• Iranian crypto exchange Bit24.cash leaks user passports and IDs

• SBU Cybersecurity Chief Exposes Persistent Hacker Presence in Kyivstar

• Security Affairs newsletter Round 453 by Pierluigi Paganini – INTERNATIONAL EDITION

• Microsoft is Rolling out an AI Powered Key

• Turkish Sea Turtle APT targets Dutch IT and Telecom firms

• Week in review: 15 open-source cybersecurity tools, Patch Tuesday forecast

• FAQ: What Is DFARS Compliance and How Does It Work?

• Three Years After January 6th: The Insurrection’s Impact on U.S. Democracy

• Explore Redis for User Session Management on AWS Elasticache

• An Age-by-Age Guide to Online Safety for Kids

• Your #1 Security Initiative in 2024 Should be Operational Resilience

• Overcoming Multi-Cloud Security Challenges: The Power of a Unified Configuration of Clouds

• AI Will Be Powerful, But No Panacea

• IT Security News Daily Summary 2024-01-06

• USENIX Security ’23 – “If I Could Do This, I Feel Anyone Could” *The Design And Evaluation Of A Secondary Authentication Factor Manager’

• Cybersecurity trends and challenges to watch out for in 2024 – Week in security with Tony Anscombe

• Human Behavior In Digital Forensics, pt II

• Experts spotted a new macOS Backdoor named SpectralBlur linked to North Korea

• Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

• Google Disables 30 Million Chrome User Cookies

• 23andMe Faces Legal Backlash Over Data Breach and Blames Victims

• Orbit Chain Loses $86M in Cross-Chain Bridge Hack

• Estes Declines Ransom Demand Amidst Personal Data Breach and Theft

• Russia Hacks Surveillance Cameras to Monitor Attacks in Kyiv

• Law firm Orrick data breach impacted 638,000 individuals

• 23andMe Blames Users for Recent Data Breach as It’s Hit With Dozens of Lawsuits

• Ransomware payment ban: Wrong idea at the wrong time

• Regenerate and Conquer: Wolverine’s Real-Time Damage System to Dominate the Gaming Landscape

• Sea Turtle Cyber Espionage Campaign Targets Dutch IT and Telecom Companies

• Cyber Kidnapping: A Digital Nightmare

• Pro-Iranian Hacker Group Targeting Albania with No-Justice Wiper Malware

• Cybersecurity for Art and Design Schools

• The Role of AI in Personalized Learning

• What Is OAuth 2.0?

• After injecting cancer hospital with ransomware, crims threaten to swat patients

• 6 Best Cybersecurity Training for Employees in 2024

• Hacked U.S. healthcare provider’s data archive involved over 900,000 people

• IT Security News Daily Summary 2024-01-05

• Friday Squid Blogging—18th Anniversary Post: New Species of Pygmy Squid Discovered

• What Is a Firewall Policy? Steps, Examples & Free Template

• After crippling cancer hospital with ransomware, crims threaten to swat patients

• How to Build a Phishing Playbook Part 2: Wireframing

• AI and Cybersecurity in 2024: What’s Changing and Why It Matters

• AI Watermarking Won’t Curb Disinformation

• EFF Urges Pennsylvania Supreme Court to Find Keyword Search Warrant Unconstitutional

• How to create an incident response playbook

• Signal, AI Generated Art Least, Amazon, Facebook Most Invasive Apps, Study

• The best travel VPNs of 2024: Expert tested and reviewed

• The best VPN for streaming in 2024

• Mimecast Acquires Elevate Security to Personalize Controls

• 7 keys to an effective hybrid cloud migration strategy

• Strong Encryption Explained: 6 Encryption Best Practices

• USENIX Security ’23 – Sharbani Pandit, Krishanu Sarker, Roberto Perdisci, Mustaque Ahamad, Diyi Yang – ‘Combating Robocalls With Phone Virtual Assistant Mediated Interaction’

• Nest Wallet CEO Loses $125,000 in Wallet Draining Scam

• Hackers Leak 50 Million Records in ‘Free Leaksmas’ Spree

• U.S DOE Announces $70 Million Funding for Improving

• IoT Security in the Age of Cyber Threats

• Law Firm Orrick Reveals Extensive Data Breach, Over Half a Million Affected

• Merck Settles NotPetya Insurance Claim, Leaving Cyberwar Definition Unresolved

• SpectralBlur: New macOS Backdoor Threat from North Korean Hackers

• Data Breached firm blames customers for reusing passwords

• The source code of Zeppelin Ransomware sold on a hacking forum

• 19 xDedic Cybercrime Market Users and Admins Face Prison

• EU’s Antitrust Head To Meet Tech CEOs Next Week

• Alert: BlackSuit Ransomware Strikes US Schools – Defend With These Security Measures

• In Other News: US Ransomware Attacks, 23andMe Blames Victims, Nuclear Waste Hacking Attempt

• Cyber-Attacks Drain $1.84bn from Web3 in 2023

• Terrorism Tsar Warns Of AI Chatbot Radicalisation Risk

• 23andMe Told Victims Of Data Breach That Suing Is Futile, Letters Shows

• Google Chrome Starts Blocking Data Tracking Cookies

• Ukraine: Russia Hacked Webcams To Aid Missile, Drone Strikes On Kyiv

• A Heimdal MXDR Expert on Incident Response Best Practices and Myth Busting

• BreachForums boss busted for bond blunders – including using a VPN

• Open AI Moves to Minimize Regulatory Risk on Data Privacy in EU

• Unveiling Free VPN Risks: Protecting Online Privacy and Security

• AI and ML — The Keys to Modernizing the SOC

• New ‘SpectralBlur’ macOS Backdoor Linked to North Korea

• Wordfence Intelligence Weekly WordPress Vulnerability Report (December 18, 2023 to December 31, 2023)

• How To Use AzureSignTool to Sign Executables With Azure DevOps

• IoT – The key to connected care excellence

• Best of 2023: Enterprises Are Getting Better at Breach Prevention. But Attackers Are Getting Better, Too.

• How a Regional Credit Union Reinvented Email Security with Votiro Cloud

• SpaceX Sues US Agency That Alleged Illegal Firings

• Russia-linked APT Sandworm was inside Ukraine telecoms giant Kyivstar for months

• US Says 19 People Charged Following 2019 Takedown of xDedic Cybercrime Marketplace

• Cyber Security Today, Jan. 5, 2023 – 23andMe blames poor user password practices for a data breach

• Lost and found: How to locate your missing devices and more

• How to Be More Anonymous Online

• Ivanti Patches Critical Vulnerability in Endpoint Manager

• NIST Fortifies Chatbots and Self-Driving Cars Against Digital Threats

• Ivanti fixed a critical EPM flaw that can result in remote code execution

• SessionGuardian Mobile delivers identity assurance and data protection for iOS mobile devices

• Tackling Anti-Analysis Techniques of GuLoader and RedLine Stealer

• Russia Hacked Residential Cameras in Ukraine to Spy on Air Defense, Critical Infrastructure

• Energy Department Offering $70 Million for Security, Resilience Research

• Nigerian Arrested, Charged in $7.5 Million BEC Scheme Targeting US Charities

• Singapore telcos to let subscribers block international calls in new anti-scam measure

• MyEstatePoint Property Search Android app leaks user passwords

• 23andMe shifts blame to users for data breach

• 23andMe Blames User “Negligence” for Data Breach

• 3 New Malicious PyPI Packages Found Installing CoinMiner on Linux Devices

• UAC-0050 Group Using Remcos RAT to Attack Government Agencies

• Widespread Vulnerability in SSH Servers: The Terrapin Attack Threat

• Vigilant Ops Raises $2 Million for SBOM Management Platform

• Exposed Secrets are Everywhere. Here’s How to Tackle Them

• $22 Million Wake-up Call to Improve Security

• Russian Hackers Had Covert Access to Ukraine’s Telecom Giant for Months

• Alert: Ivanti Releases Patch for Critical Vulnerability in Endpoint Manager Solution

• Sandworm’s Kyivstar attack should serve as a reminder of the Kremlin crew’s ‘global reach’

• How Can Data Breach Be A Trouble For Your Industry?

• FBI says Capitol Bomb Threat hackers are hard to identify

• What is the qualification to become a Cybersecurity Analyst

• January 2024 Patch Tuesday forecast: A Focus on Printing

• New Bandook RAT Variant Resurfaces, Targeting Windows Machines

• Artificial Deception: The State Of “AI” In Defense and Offense

• Master Security by Building on Compliance with A Risk-Centric Approach

• Charting a Trustworthy AI Journey

• Escalating cyber threats: Bots, fraud farms, and cryptojacking surge, urgently requiring attention

• Breaking down the state of authentication

• Budget cuts take a toll on IT decision makers’ mental health

• Cybersecurity Challenges in Remote Learning

• Online Assessment Security Best Practices for Educators

• Best EDR Of The Market (BEOTM) – Endpoint Detection and Response Testing Tool

• IT Security News Daily Summary 2024-01-04

• Facebook Suspends Then Reinstates Popular Conservative Account

• Ransomware gang starts leaking data stolen from Quebec university

• Survey Surfaces Lack of Confidence in Existing Cybersecurity Tools

• X-ploited: Mandiant restores hijacked Twitter account after attempted crypto heist

• 23andMe blames its users for the massive data breach

• 10 of the biggest zero-day attacks of 2023

• USENIX Security ’23 – Sathvik Prasad, Trevor Dunlap, Alexander Ross, Bradley Reaves – ‘Diving into Robocall Content With SnorCall’

• SentinelOne Acquires PingSafe to Advance CNAPP Ambitions

• The best VPN trials of 2024

• The best Bluetooth trackers of 2024

• X marks the spot: Mandiant restores hijacked Twitter account after attempted crypto heist

• 8 hybrid cloud security challenges and how to manage them

• Legendas.TV – 3,869,181 breached accounts

• Netography Fusion Expands Microsoft Integrations for Greater Context Enrichment and Faster Compromise Detection

• Intel Spins Off Enterprise Generative AI Deployment Firm Articul8

• 8 Types of Firewalls Explained & When to Use Each

• Hacker hijacked Orange Spain RIPE account causing internet outage to company customers

• EFF Asks Court to Uphold Federal Law That Protects Online Video Viewers’ Privacy and Free Expression

• Randall Munroe’s XKCD ‘2024’

• Apple Watch Credited With Saving Woman’s Life After Poisoning

• Meta tracks your Facebook link history, but now you can opt out

• Infosec experts divided over 23andMe’s ‘victim-blaming’ stance on data breach

• To Beat Russia, Ukraine Needs a Major Tech Breakthrough

• HealthEC data breach impacted more than 4.5 Million people

• Mimecast Acquires User Education Startup Elevate Security

• Ontario healthcare providers now face possible fines for ‘severe’ data privacy violations

• Mitsubishi Electric Factory Automation Products

• Rockwell Automation FactoryTalk Activation

• CISA Releases Three Industrial Control Systems Advisories

• Law firm that handles data breaches was hit by data breach

• The Biggest Tech Talent Gap Can Be Found in the SAP Ecosystem

• Cryptocurrency wallet CEO loses $125,000 in wallet-draining scam

• Software supply chain security remains a challenge for most enterprises

• Q&A: Supporting SOC Teams and Avoiding Burnout

• Enhancing Web Security: NSFOCUS WAF Integration Solutions

• Embattled LastPass Enforcing 12-Character Passwords for All

• LastPass Enforces 12-Character Master Passwords

• Biden Admin To Award $162m To Microchip Tech For US Chip Production

• Ukraine Blames Russian Sandworm Hackers for Kyivstar Attack

• SentinelOne acquires PingSafe

• Create a Registration API in 15 minutes

• Experts found 3 malicious packages hiding crypto miners in PyPi repository

• Major Data Breach at HealthEC Affects Millions

• Microsoft To Add Copilot Key To Windows PC Keyboards

• Google Chrome Use After Free Flaw Let Attacker Hijack Browser

• IT and OT cybersecurity: A holistic approach

• Airbus Offering to Buy Atos Cybersecurity Unit for Up to $2 Billion

• Google Patches Six Vulnerabilities With First Chrome Update of 2024

• Fortifying iPhone Security: Stolen Device Protection & Essential Tips Amid Rising Theft Concerns

• SaaS Challenges and How to Overcome Them

• Ahmedabad Creates History as India’s First City With AI-Linked Surveillance System

• Cyber Security Today, January 3, 2024 – Prepare for upcoming privacy legislation

• Free Decryptor Tool Released for the Black Basta Ransomware

• Black Basta Buster Utilizes Ransomware Flaw to Recover Files

• 23andMe: It’s YOUR Fault We Lost Your Data

• Using Stronger Passwords Among Top 2024 Digital Resolutions

• Unveiling the Power of NFC Technology: Transforming Connectivity in the Digital Era

• Mandiant regains control of X/Twitter account

• Avast researchers detect a surge in fake e-shops following holidays

• Estes Express Lines Says Personal Data Stolen in Ransomware Attack

• Beyond Protocols: How Team Camaraderie Fortifies Security

• 4.5 Million Individuals Affected by Data Breach at HealthEC

• With Deepfakes on Rise, Where is AI Technology Headed?

• Intellicheck announces Identity Platform advancements

• HealthEC Data Breach Impacts 4.5 Million Patients

• LastPass is enforcing some security changes to user accounts

• Apple Settles Lawsuit Concerning iTunes Gift Card Scam

• CISA Warns of Exploited Vulnerabilities in Chrome and Excel Parsing Library

• Zero Trust in API Management

• Mastering the Art of Cyber Resilience in Operational Technology

• Millions Still Haven’t Patched Terrapin SSH Protocol Vulnerability

• SRLabs Develops Black Basta Ransomware Decryptor

• Estes Express Lines Says Personal Data Stolen In Ransomware Attack

• Hacked Mandiant X Account Abused For Cryptocurrency Theft

• Infostealer malware, weak password leaves Orange Spain RIPE for plucking

• Best of 2023: Best online .apk virus scanners – Hackernet

• A Delhi Lawyer’s Encounter Exposes Hidden Perils of SIM Swap Scam

• Three Ways To Supercharge Your Software Supply Chain Security

• Resecurity Identifies AI Tool Being Used to Compromise Business Email

• Hackers turn to generative AI to commit crime

• SpaceX Illegally Fired Staff Critical Of Elon Musk, Says US Agency

• Four Cyber Criminals Convicted of Spreading ChatGPT-Assisted Ransomware

• Crooks hacked Mandiant X account to push cryptocurrency scam

• As lawmakers mull outlawing poor security, what can they really do to tackle online gangs?

• Hacked Mandiant X Account Abused for Cryptocurrency Theft

• Identity Crisis: 14 Million Individuals at Risk After Mortgage Lender’s Data Breach

• Over 1800 global banking apps targeted by 29 malware variants

• Xerox Axes 15 Percent Of Workforce, Admits ‘Cyber Incident’

• X Account of Google Cybersecurity Firm Mandiant Hacked in Crypto Scam

• Don’t get hacked! Apply the right vulnerability metrics to Kubernetes scans

• Beware: 3 Malicious PyPI Packages Found Targeting Linux with Crypto Miners

• This company says AI can help design sustainable smart home appliances

• Industrial Defender Risk Signal integrates threat intelligence and business context

• Experts Clash Over Ransomware Payment Ban

• Active Directory Infiltration Methods Employed by Cybercriminals – ASEC Report

• Three Chinese balloons float near Taiwanese airbase

• SentinelOne acquires PingSafe to expand cloud security capabilities

• Nigerian Faces $7.5m BEC Charges After Charities Are Swindled

• OpenSSL 3.1 FIPS Module Has Been Submitted for Validation

• UAC-0050 Group Using New Phishing Tactics to Distribute Remcos RAT

• Securing Gold: Assessing Cyber Threats on Paris 2024

• Wireshark 4.2.1 Released: What’s New!

• WinRAR Flaw: LONEPAGE Malware Strikes Ukrainian Firms

• Mandiant’s Twitter Account Restored After Six-Hour Crypto Scam Hack

• DriveFS Sleuth: Open-source tool for investigating Google Drive File Stream’s disk forensic artifacts

• The dynamic relationship between AI and application development

• 15 open-source cybersecurity tools you’ll wish you’d known earlier

• EdTech Evaluation: Choosing Secure Educational Software

• Five New Year Resolutions to Secure Your Data in 2024

• Consumers prepared to ditch brands after cybersecurity issues

• The state of container security: 5 key steps to locking down your releases

• Democracy 2024: Stakes vs. Horses

• Mandiant loses control of X/Twitter account

• Building a Culture of Digital Responsibility in Schools

• Microsoft kills off Windows app installation from the web, again

• USENIX Security ’23 – Bingyu Shen, Tianyi Shan, Yuanyuan Zhou – ‘Improving Logging to Reduce Permission Over-Granting Mistakes’

• How 50% of telco Orange Spain’s traffic got hijacked — a weak password

• Cybercriminals Implemented Artificial Intelligence (AI) for Invoice Fraud

• IT Security News Daily Summary 2024-01-03

• Terrapin Flaw, CVE-2023-48795, Leaves 11 million SSH Servers Vulnerable

• Facebook Introduces New Tool To Track The Websites You Visit

• Freight giant Estes refuses to deliver ransom, says personal data opened and stolen

• Crypto losses declined over 50% in 2023

• SentinelOne Snaps up Seed-Stage CNAPP Startup PingSafe

• Aqua Security Scores $60M Series E Funding

• Scammers Selling Twitter (X) Gold Accounts Fueling Disinfo, Phishing

• What is Adversary-in-the-Middle AITM Attack?

• CISA ADDS CHROME AND PERL LIBRARY FLAWS TO ITS KNOWN EXPLOITED VULNERABILITIES CATALOG

• Comprehensive Guide to Fraud Detection, Management, & Analysis

• Human Behavior In Digital Forensics

• Hacking Protected Java-Based Programs

• What the cybersecurity workforce can expect in 2024

• Why Google Settles $5B Lawsuit Over User Tracking- Analysis

• Randall Munroe’s XKCD ‘Iceland’

• Abnormal Security Shares Examples of Attacks Using Generative AI

• Victory! Police Drone Footage is Not Categorically Exempt From California’s Public Records Law

• Over 100 European Banks Face Cyber Resilience Test

• T-Mobile US Confirms SpaceX Satellite ‘Direct to Cell’ Launch

• Power of Flexible Tech: Applying Conference Room Tech to Front Lines

• Worried about online privacy and security? This browser protects you more than Firefox

• Developers, watch your code: Official Python respository spread malicious projects

• Uncertainty Is the Biggest Challenge to Australia’s Cyber Security Strategy

• 23andMe tells victims it’s their fault that their data was breached

• Massive Fallon Ambulance Data Breach Impacts Nearly One Million People

• Canadian Senator temporarily loses control of X account

• Mend’s Handy Guide to Using EPSS Scores

• CyberTalk Series: MSP Challenges: Managed Security Services with Ken Patterson

• USENIX Security ’23 – ‘Auditing Frameworks Need Resource Isolation: A Systematic Study On The Super Producer Threat To System Auditing And Its Mitigation’

• Facebook’s New Privacy Nightmare: ‘Link History’

• Flaw in Black Basta Ransomware Exploited to Create Decryptor

• Intel Spins Out AI Firm Articul8, With DigitalBridge Backing

• Cloud-native cybersecurity startup Aqua Security raises $60M and remains a unicorn

• Three New Malicious PyPI Packages Deploy CoinMiner on Linux Devices

• SonicWall Buys Banyan Security For ZTNA Technology

• Stolen Gold X accounts are increasingly being peddled on dark web, says report

• Cyber Kidnapping picks pace in the United States

• Value Of Twitter/X Falls 71 Percent Since Elon Musk Takeover – Report

• Google, Meta, TikTok Russian Debts Removed From Bailiff Database – Report

• Montana Appeals, After Judge Blocked State Ban On TikTok Use

• Vulnerability Recap – 1/2/2024 – Barracuda ESG, Apache OfBiz Vulnerabilities Persist

• Don’t trust links with known domains: BMW affected by redirect vulnerability

• The best iOS fax app to protect your privacy

• VPN to protect against DDoS attacks on Twitch

• Atos confirms talks with Airbus over cybersecurity wing sale

• Hacker Conversations: Runa Sandvik

• Several Infostealers Using Persistent Cookies to Hijack Google Accounts

• Over 900k Impacted by Data Breach at Defunct Boston Ambulance Service

• HTTP/2 Rapid Reset Mitigation With Imperva WAF

• Records of Crucial Cases May Have Been Compromised by a Cyberattack on Victoria’s Court System

• New Google Cookies Exploit Allows Access After Password Reset

• Google Settles $5B Lawsuit Over User Tracking- Analysis

• I added a hardware security key to my MacBook, and it made my logins faster and safer

• Court Hearings Become Ransomware Concern After Breach

• October 2023 Cyber Attack Statistics

• Future Health: AI’s Impact on Personalised Care in 2024

• Exploring the Security Risks of Large Language Models

• Identity as a Service (IDaaS): The Future of Secure and Convenient Authentication

• Xerox Confirms Data Breach At US Subsidiary Following Ransomware Attack

• How A Group Of Train Hackers Exposed A Right-To-Repair Nightmare

• Qualcomm Chip Vulnerability Enables Remote Attack By Voice Call

• Palestinian Hackers Hit 100 Israeli Organizations in Destructive Attacks

• Cybersecurity M&A Roundup: 25 Deals Announced in December 2023

• “Pink Drainer” Siphons $4.4 Million Chainlink Through Phishing

• Hangzhou’s Cybersecurity Breakthrough: How ChatGPT Elevated Ransomware Resolution

• Zeppelin2 Ransomware: An Emerging Menace in the Dark Web Ecosystem

• Comcast-Owned Telcom Business ‘Xfinity’ Suffers Data Breach

• The Top 6 Cybersecurity Threats Businesses Must Tackle in 2024

• New Xamalicious Backdoor Infects 25 Android Apps, Affects 327K Devices

• Is your ID badge giving away too much about you?

• Microsoft Defender for Endpoint is Integrated with Check Point Horizon XDR/XPR

• Why effective cybersecurity is important for businesses

• CISOs Take Note — Don’t Let AI Adoption Outpace Due Diligence

• The Kubernetes Cost Features You Need in 2024

• Best of 2023: Diamond Model of Intrusion Analysis: A Quick Guide

• Fake and Stolen X Gold Accounts Flood Dark Web

• SonicWall acquires Banyan to boost zero-trust, SSE offerings

• Copy that? Xerox confirms ‘security incident’ at subsidiary

• Malware Using Google MultiLogin Exploit to Maintain Access Despite Password Reset

• 21 New Mac Malware Families Emerged in 2023

• SonicWall acquires Banyan Security

• BT Misses Deadline For Huawei Equipment Removal From Core Network

• Xerox Confirms Data Breach at US Subsidiary Following Ransomware Attack

• The Importance of SOC 2 Templates

• SMTP Smuggling: New Flaw Lets Attackers Bypass Security and Spoof Emails

• 5 Ways to Reduce SaaS Security Risks

• Hackers stole more than $81 million worth of crypto assets from Orbit Chain

• Russia Spies on Kyiv Defenses via Hacked Cameras Before Missile Strikes

• Xerox Business Solutions Reveals Security Breach

• Google Kubernetes Engine Vulnerabilities Could Allow Cluster Takeover

• Is Cybercrime Only Going to Get Worse?

• CI/CD Security: Advanced Best Practices to Secure Your Pipelines

• TechRepublic Premium Editorial Calendar: Policies, Checklists, Hiring Kits and Glossaries for Download

• VoIP Firm XCast Agrees to Settle $10m Illegal Robocall Case

• Formal ban on ransomware payments? Asking orgs nicely to not cough up ain’t working

• DOJ Slams XCast with $10 Million Fine Over Massive Illegal Robocall Operation

• As Digital Payments Explode in Popularity, Cybercriminals are Taking Notice

• Why Continuous Training Must Come Before The AI-driven SDLC

• How to Secure virtual machines (VMs) in cloud computing environments

• Understanding the Escalating Threat of Web DDoS Tsunami Attacks

• Learn How to Decrypt Black Basta Ransomware Attack Without Paying Ransom

• Cybersecurity challenges emerge in the wake of API expansion

• Emerging cybersecurity trends and expectations for 2024

• Facts and misconceptions about cybersecurity budgets

• Legal, compliance and privacy leaders anxious about rapid GenAI adoption

• 29 malware families target 1,800 banking apps worldwide

• Cybersecurity Curriculum Development Tips for Schools

• New DLL Hijacking Technique Let Attackers Bypass Windows Security

• Ukraine’s SBU said that Russia’s intelligence hacked surveillance cameras to direct a missile strike on Kyiv

• Cybersecurity New Year’s resolutions every enterprise leader (and user) should make

• IT Security News Daily Summary 2024-01-02

• States and Congress Wrestle With Cybersecurity After Iran Attacks Small Town Water Utilities

• New SEC Cybersecurity Reporting Rules Take Effect

• Vulnerability Summary for the Week of December 25, 2023

• Fake Facebook Ads Scam Tens Of Thousands Of Dollars From Small Business Owner

• Ban ransomware payments, Emsisoft urges governments

• Safeguarding Patient Health Data Means Balancing Access and Security

• cybercrime

• Weekly Vulnerability Recap – January 2, 2024 – Barracuda ESG, Apache OfBiz Vulnerabilities Persist

• CISA Adds Two Known Exploited Vulnerabilities to Catalog

• Pros and cons of 10 common hybrid cloud use cases

• USENIX Security ’23 – Cong Zhang, Yu Chen, Weiran Liu, Min Zhang, Dongdai Lin – ‘Linear Private Set Union From Multi-Query Reverse Private Membership Test’

• Quantum computing will enable a safer, more secure world

• Defunct Ambulance Service Data Breach Impacts Nearly 1 Million People

• Researchers released a free decryptor for Black Basta ransomware

• Google password resets not enough to stop these info-stealing malware strains

• Are Security Appliances fit for Purpose in a Decentralized Workplace?

• GKE Case Highlights Risks of Attackers Chaining Vulnerabilities

• Navigating the Complex World of Capital Markets with Technology

• Juniper Releases Security Advisory for Juniper Secure Analytics

• Google Cloud Report Spotlights 2024 Cybersecurity Challenges

• Coffee Briefing Jan. 2 – Ski and Snowboard Cybersecurity Conference; Federal government provides update on connectivity targets; Montreal company secures pre seed investment to fuel AI growth; and more

• Exploiting an API with Structured Format Injection

• What is Security Posture?

• Free Decryptor Released for Black Basta Ransomware

• Google Whistles While OAuth Burns — ‘MultiLogin’ 0-Day is 70+ Days Old

• Cybersecurity Predictions And Challenges in 2024

• The 10 best cloud security certifications for IT pros in 2024

• Court hearings become ransomware concern after justice system breach

• New DLL Search Order Hijacking Technique Targets WinSxS Folder

• Time to Guard : Protect Your Google Account from Advanced Malware

• Google Patches Around 100 Security Bugs

• New DLL Search Order Hijacking Variant Evades Windows 10 and 11 Protections

• Tesla AI Robot Attacks raises concerns over Cybersecurity

• Tesla Expands Market Share Lead In Norway

• DWP Clarifies What Bank Accounts are Targeted in Crackdown on Benefit Fraud

• Tesla Loses Top Electric Car Spot To China’s BYD

• New DLL Search Order Hijacking Technique Targets WinSxS folder

• Two Cyber Scammers Arrested; Police Uncover Transactions of ₹60 crore in Bank Accounts

• 2024 Tech Landscape: AI Evolution, Emotion Tech Dominance, and Quantum Advances

• So You Want to be a Leader in Cybersecurity? Follow this Path

• ASML Says Chip System Export Licence For China Partially Revoked

• Experts warn of JinxLoader loader used to spread Formbook and XLoader

• Bitcoin Surges Over $45,000 Amidst Fund Speculation

• Iranian Food Delivery Giant Snappfood Cyber Attack: 3TB of Data Stolen

• New DLL Hijacking Technique Let Attackers Bypass Windows Security Mechanisms

• Over $80m in Crypto Stolen in Cyber-Attack on Orbit Chain

• Multiple Flaws in Google Kubernetes Engine Let Attackers Escalate Privileges

• Multiple Orgs In Iran Were Breached By A Mysterious Hacker

• Bitcoin Climbs Above $45,000 For First Time Since April 2022

• Hackers Hit Australian State’s Court Recording Database

• Best of 2023: Western Digital Hacked: ‘My Cloud’ Data Dead (Even Local Storage!)

• FBI makes a move against ALPHV/Blackcat, the cybergang fights back

• US Chief Justice Urges ‘Caution And Humility’ With AI

• What It’s Like to Use Apple’s Lockdown Mode

• Xiaomi Aims To Become ‘Top Five’ Car Maker With SU7 EV

• Hackers Attack UK’s Nuclear Waste Services Through LinkedIn

• Australian Court Service Hacked, Hearing Recordings at Risk

• Terrapin attack allows to downgrade SSH protocol security

• Google Settles $5 Billion Privacy Lawsuit Over Tracking Users in ‘Incognito Mode’

• The Definitive Enterprise Browser Buyer’s Guide

• Unlocking the Potential: Blockchain’s Impact on the Oil and Gas Industry

• Teen Found Alive After “Cyber-Kidnapping” Incident

• BYD Close To Passing Tesla As World’s Biggest EV Maker

• What Is the Future and Technology of Zero Trust?

• Multiple organizations in Iran were breached by a mysterious hacker

• Black Basta Ransomware Decryptor Published

• Alert: New Chrome Zero-Day Vulnerability Being Exploited

• Poor Patch Management in Cybersecurity

• 10 Most Common Types of Cyber Attacks in 2023

• 650,000+ Malicious Domains Registered Resembling ChatGPT

• Australia Victoria State Court System data breach by Russia

• Key cybersecurity skills gap statistics you should be aware of

• Hackers employ nuanced tactics to evade detection

• Cybercriminals set their sights on crypto markets

• Wi-Fi 7’s mission-critical role in enterprise, industrial networking

• Securing Educational Robots: IoT Security in Robotics Education

• Teaching Digital Ethics: Navigating the Digital Age

• Welcome To 2024

• IT Security News Daily Summary 2024-01-01

• Unlocking the Secrets of Data Privacy: Navigating the World of Data Anonymization, Part 1

• Microsoft Disabled App Installer Following Malware Abuse

• Malware exploits undocumented Google OAuth endpoint to regenerate Google cookies

• Top 2023 Security Affairs cybersecurity stories

• What is RabbitMQ?

• Researchers Crack Tesla Autopilot with ‘Elon Mode,’ Access Critical Data

• Multiple Malware Exploit Google Cookie Flaw For Session Hijacking

• DragonForce Ransomware Gang Prompts Ohio Lottery to Shut Down

• A Crucial Update from EPFO Regarding Your PF Account

• Hackers Breach Steam Discord Accounts, Launch Malware

• School student info proving valuable to hackers

• US Senators Targeted by Swatting Incidents in Multiple States

• New Variant of DLL Search Order Hijacking Bypasses Windows 10 and 11 Protections

• Year In Review: Google’s Corporate Paternalism in The Browser

• Digital Rights for LGBTQ+ People: 2023 Year in Review

• Cactus RANSOMWARE gang hit the Swedish retail and grocery provider Coop

• Trading Tomorrow’s Technology for Today’s Privacy: The AI Conundrum in 2024

• New Terrapin Attack Demonstrates SSH Vulnerabilities

• Microsoft Deprecates Application Guard For Edge For Business Users

• Xamalicious Android Malware Targeted Users Via Google Play Store Apps

• Monitoring malware trends with VT Intelligence

• Insights from CISA HPH Sector Risk and Vulnerability Assessment

• Happy New Year 2024

• 4 key devsecops skills for the generative AI era

• The Three Keys to Success in Cybersecurity

• New Terrapin Flaw Could Let Attackers Downgrade SSH Protocol Security

• A Closer Look At The Future of MagSafe in Apple’s Ecosystem

• 50+ Network Penetration Testing Tools for Hackers & Security Professionals – 2024

• New JinxLoader Targeting Users with Formbook and XLoader Malware

• Crafting an Effective Cyber Attack Response Plan: A Comprehensive Guide

• The Future of Modern Networks Is Automated Threat Intelligence.

• The State of DDoS Attacks: Evolving Tactics and Targets Businesses Must Be Aware Of

• The U. S. Cyber Trust Mark: Providing Assurance That IoT Devices Are Trustworthy

• URL Hunting: Proactive Cybersecurity Designed to Improve Outcomes

• Developing Cybersecurity Awareness Programs for Schools

• Biometric Security in Educational Environments

• IT Security News Weekly Summary – Week 52

• IT Security News Daily Summary 2023-12-31

• Microsoft Disables App Installer After Feature is Abused for Malware

• USENIX Security ’23 – Alexander Bienstock, Sarvar Patel, Joon Young Seo, Kevin Yeo ‘Near-Optimal Oblivious Key-Value Stores For Efficient PSI, PSU And Volume-Hiding Multi-Maps’

• Google agreed to settle a $5 billion privacy lawsuit

• How are LLMs with Endpoint Data Boost Cybersecurity

• Microsoft Implements Disablement of Widely Exploited MSIX App Installer Protocol Due to Malware Attacks

• Taking Back the Web with Decentralization: 2023 in Review

• How To Fight Bad Patents: 2023 Year In Review

• 2023 Wrap-up

• Data Insights Exposes Ledger’s Granular Tracking: Is Privacy at Stake?

• Google Fixes Nearly 100 Android Security Issues

• Tech Security Year in Review

• Security Affairs newsletter Round 452 by Pierluigi Paganini – INTERNATIONAL EDITION

• Vietnam’s Massive CAPTCHA crackers vs. Microsoft DCU

• Vietnam’s Massive CAPTCHA crackers vs. Microsoft DCU

• Student Cybersecurity Clubs: Fostering Online Safety

Generated on 2024-01-07 23:59:05.039696