IT Security News Weekly Summary – Week 23

• IT Security News Daily Summary 2024-06-09

• Attacker Probing for New PHP Vulnerablity CVE-2024-4577, (Sun, Jun 9th)

• Cybersecurity 101: Understanding the Basics of Online Protection

• New Ransomware Variant “Fog” Targets U.S. Education and Recreation Sectors

• Attackers Exploit 2018 ThinkPHP Vulnerabilities to Install ‘Dama’ Web Shells

• Software Supply Chain Attacks: A Major Strategy for Cybercriminals

• New macOS Malware Threat: What Apple Users Need to Know

• PHP addressed critical RCE flaw potentially impacting millions of servers

• eSIM Connections: Redefining Mobile Service and Flexibility

• Akira: Perhaps the next big thing in ransomware, says Tidal threat intelligence chief

• The Evolving Cyber Landscape: Insights from 2024 Reports

• 5 Signs Your Wi-Fi Has Been Hacked: Protect Your Bank Details

• Security Affairs newsletter Round 475 by Pierluigi Paganini – INTERNATIONAL EDITION

• Seccomp for Kubernetes workloads

• FBI Reveals 7,000 Decryption Keys to Combat LockBit Ransomware

• Week in review: Atlassian Confluence RCE PoC, new Kali Linux, Patch Tuesday forecast

• Ticketmaster and Santander Breaches Expose Cloud Security Flaws

• IT Security News Daily Summary 2024-06-08

• New York Times source code compromised via exposed GitHub token

• USENIX Security ’23 – “If Sighted People Know, I Should Be Able To Know:” Privacy Perceptions Of Bystanders With Visual Impairments Around Camera-Based Technology

• Upcoming June 11th CISA Deadline Exposes Widespread Unpreparedness in Software Security Compliance

• GoldPickaxe iOS Malware Harvests Facial Recognition Data & Bank Accounts

• Sticky Werewolf Weaponizing LNK Files Group Attacking To Attack Organizations

• Employees Claim OpenAI and Google DeepMind Are Hiding Dangers From the Public

• The Underestimated Cyber Threat: Anticipating and Combatting Supply Chain Attacks

• Uber ex-CSO Joe Sullivan: We need security leaders running to work, not giving up

• The Hidden Cost of Connected Cars: Your Driving Data and Insurance

• Cyber Resiliency in The Age Of AI: Securing the Digital Perimeter

• Security researcher says Azure Tags are security threat but Microsoft disagrees

• Nvidia Climbs to Second Place in Global Market Value, Surpassing Apple

• Experts Warn: AI Chatbots a ‘Treasure Trove’ for Criminals, Avoid ‘Free Accounts

• Apple Is Coming for Your Password Manager

• Snowflake Security Incident: A Wake-Up Call for CISOs | Grip

• New PHP Vulnerability Exposes Windows Servers to Remote Code Execution

• Microsoft Revamps Controversial AI-Powered Recall Feature Amid Privacy Concerns

• StateRAMP vs FedRAMP: What’s The Difference Between Them?

• 560 million Ticketmaster customer data for sale? – Week in security with Tony Anscombe

• 2024-06-08: Three days of server scans and probes

• Behind the Breach: How ARRL Fought Back Against Cyber Intruders

• What Snowflake isn’t saying about its customer data breaches

• Discovery highlights ‘critical oversight’ in perceived security of wireless networks

• Harvard, MIT, and Wharton research reveals pitfalls of relying on junior staff for AI training

• ‘New York Times source code’ leaks online via 4chan

• FCC takes some action against notorious BGP

• The Dark Side of Free VPNs: Hidden Dangers and Privacy Risks

• SolarWinds fixed multiple flaws in Serv-U and SolarWinds Platform

• New Phishing Campaign Uses Stealthy JPGs to Drop Agent Tesla

• OpenAI, Anthropic Research Reveals More About How LLMs Affect Security and Bias

• IT Security News Daily Summary 2024-06-07

• Microsoft’s Recall feature will now be opt-in and double encrypted after privacy outcry

• Cultivating a Secure Business-Led IT Environment | Grip

• Microsoft temporarily disables Recall on Copilot+ PCs amid security and privacy concerns

• Security and Human Behavior (SHB) 2024

• How AI-driven identity attacks are defining the new threatscape

• Senator: HHS Needs to Require Security Measures for Health Sector

• Snowflake’s customer breaches make 2024 the year of the identity siege

• Defiant Microsoft pushes ahead with controversial Recall – tho as an opt-in

• Windows Recall will be opt-in and the data more secure, Microsoft says

• Cyber Security Today, Week in Review for week ending June 7, 2024

• AI-Enabled ICT Workforce Consortium Expands to G7 Countries

• FCC Pushes Ahead with Internet Routing Security Requirements

• How to back up (and restore) your saved MacOS passwords

• After brutal critiques, Microsoft Recall will get these major privacy and security changes

• EFF Covers Secrets in Your Data on NOVA

• Frontier Communications: 750k people’s data stolen in April attack on systems

• Newfoundland TV Station Hit by Ransomware Attack

• electronic intelligence (ELINT)

• EFF Covers Secrets in Your Data on NOVΛ

• Organizations Move to Establish Dedicated SaaS Security Teams

• Microsoft Bows to Public Pressure, Disables Controversial Windows Recall by Default

• Google will start deleting location history

• NCSWIC releases the NCSWIC Video Series

• How to backup (and restore) your saved MacOS passwords

• After brutal privacy critiques, Microsoft Recall will get major privacy and security changes

• Imperva Protects Against Critical PHP Vulnerability CVE-2024-4577

• The UN Cybercrime Draft Convention Remains Too Flawed to Adopt

• LockBit Victim? Ask FBI for Your Ransomware Key

• Cisco Extends Cybersecurity Portfolio with Help from AI

• SolarWinds fixes severe Serv-U vulnerability (CVE-2024-28995)

• Microsoft Will Switch Off Recall by Default After Security Backlash

• Surveillance Defense for Campus Protests

• Lockbit ransomware targets data of 400000 patients at Panorama Eyecare

• Industry Veterans and New Talent Recognised at European Cybersecurity Blogger Awards 2024

• In Other News: TikTok Zero-Day, DMM Bitcoin Hack, Free VPN App Analysis

• Tenable to Acquire Eureka Security to Boost DSPM Capabilities

• USENIX Security ’23 – Othered, Silenced and Scapegoated: Understanding the Situated Security of Marginalised Populations in Lebanon

• A Salt Security Perspective on the 2024 Gartner® Market Guide for API Protection

• CDW Survey Surfaces Cybersecurity Tool Sprawl Challenges

• SASE Threat Report:Evolving Threat Actors and the Need for Comprehensive Cyber Threat Intelligence

• LightSpy Spyware’s macOS Variant Found with Advanced Surveillance Capabilities

• Ultimate Cyber Hygiene Guide: Learn How to Simplify Your Security Efforts

• Elon Musk May Retreat From Tesla If Not Granted $56Bn Pay Package

• New Agent Tesla Campaign Targeting Spanish-Speaking People

• Meta Addresses AI Chatbot’s YouTube Training Data Assertion

• Embracing Responsible AI: Principles and Practices

• Cisco fixes WebEx flaw that allowed government, military meetings to be spied on

• How to navigate NIS2 and secure your vulnerabilities

• Securely Connect Everything Everywhere with a Unified SASE Platform

• It’s Not the Customer’s Job to Know What They Want

• Rising Ransomware Attacks Highlight Persistent Cybersecurity Challenges

• EU Accuses Microsoft of Secretly Harvesting Children’s Data

• Not a Science Fiction: What NVIDIA CEO Thinks About AI

• Open source, open risks: The growing dangers of unregulated generative AI

• Get 2 Lifetime Password Manager Subscriptions for Only $50

• proof of concept (PoC) exploit

• Pandabuy was extorted twice by the same threat actor

• Limits of Automation

• Finding End of Support Dates: UK PTSI Regulation, (Fri, Jun 7th)

• Emergency Response: A Harmony SASE Rapid Deployment Story

• Mozilla Launches 0Din Gen-AI Bug Bounty Program

• Insider Threat Detection: What You Need to Know

• Hotel Kiosks Vulnerability Exposed Guest Data, Room Access

• Muhstik Malware Attacking Apache RocketMQ To Execute Remote Code

• EmailGPT Exposed to Prompt Injection Attacks

• Summer Seasonal Businesses Can’t Afford to Ignore Ransomware Resilience

• North Korean Kimsuky Attacking Arms Manufacturer In Europe

• Hacktivist Groups Attacking Industrial Control Systems To Disrupt Services

• The Myth of “Fileless” Malware

• AirMDR Raises $5 Million for AI-Powered Managed Detection and Response

• FCC Proposes BGP Security Reporting for Broadband Providers

• Security, the cloud, and AI: building powerful outcomes while simplifying your experience

• The AI Debate: Google’s Guidelines, Meta’s GDPR Dispute, Microsoft’s Recall Backlash

• Cyber Landscape is Evolving – So Should Your SCA

• Staff At Samsung Stage First Ever Walk Out

• UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces

• The Justice Department Took Down the 911 S5 Botnet

• Cybersecurity for Schools: Challenges, Threats, and Solutions

• Mike Lynch Cleared In HP Autonomy Fraud Trial

• SPECTR Malware Attacking Defense Forces of Ukraine With a batch script

• 750k Impacted by Frontier Communications Data Breach

• SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester

• Russian hacktivists vow mass attacks against EU elections

• Apple Says iPhones Will Get Security Updates for at Least 5 Years

• #Infosec2024: Cyber Resilience Means Being Willing to Learn From a Crisis

• Security Flaws Found in Popular WooCommerce Plugin

• Cybersecurity News: FCC moves forward with BGP security, LockBit victims get lifeline, Gitloker attacks target GitHub

• 5 Tips for Improving Your Business Security

• Cyber Security Today, June 7, 2024 – More news about Snowflake attacks, and a warning to better protect Docker containers

• Everything You Need to Know About Cross-Site Scripting

• Medical Software: Advancements and Security Concerns in 2024

• 5 Ways to Strengthen the Weak Link in Cybersecurity

• FBI Distributes 7,000 LockBit Ransomware Decryption Keys to Help Victims

• In Bad Company: JScript RAT and CobaltStrike

• Chinese threat actor exploits old ThinkPHP flaws since October 2023

• #Infosec2024: Collaboration is Key to an Effective Security Culture

• 300+ Times Downloaded Package from PyPI Contains Wiper Components

• Easily integrate Secrets Management System with Ansible Automation Platform to update systems passwords

• Exploring security by design and loosening guides

• SPECTR Malware Targets Ukraine Defense Forces in SickSync Campaign

• Top Computer Security Risks and How to Stay Safe

• How to securely transfer files with presigned URLs

• Tenable Acquires Eureka Security To Provide Data Security Across Infrastructure

• Apple to launch app that will have ability to generate and store passwords

• Safeguarding the Fortress: Google’s Battle Against Cyber Attacks

• Microsoft Details On Using KQL To Hunt For MFA Manipulations

• Spam blocklist SORBS closed by its owner, Proofpoint

• Google Leak Reveals Concerning Privacy Practices

• Commando Cat Cryptojacking Attacks Target Misconfigured Docker Instances

• June 2024 Patch Tuesday forecast: Multiple announcements from Microsoft

• The job hunter’s guide: Separating genuine offers from scams

• NVD Update: Help Has Arrived

• Cyber insurance isn’t the answer for ransom payments

• Unpacking CISA’s AI guidelines

• My thoughts and experiences at Infosec EU 2024

• 26% of organizations lack any form of IT security training

• New infosec products of the week: June 7, 2024

• Microsoft’s Recall Feature Is Even More Hackable Than You Thought

• ISC Stormcast For Friday, June 7th, 2024 https://isc.sans.edu/podcastdetail/9014, (Fri, Jun 7th)

• Bangladeshi police agents accused of selling citizens’ personal information on Telegram

• Microsoft’s Recall Feature Is Even More Hackable Than You Thought

• POC exploit code published for 9.8-rated Apache HugeGraph RCE flaw

• Highlights from the ConnectWise IT Nation Secure Event 2024

• Critical Progress Telerik vulnerability under attack

• Important Security Update – Stay Protected Against VPN Information Disclosure (CVE-2024-24919)

• IT Security News Daily Summary 2024-06-06

• ChatGPT privacy tips: Two important ways to limit the data you share with OpenAI

• Google and Microsoft confirm Cyber Threat to 2024 Paris Olympics

• New EmailGPT Flaw Puts User Data at Risk: Remove the Extension NOW

• EU Council Presidency’s Last-Ditch Effort For Mass Scanning Must Be Rejected

• Why Do Hackers Love Cryptocurrency?

• Narrowing the Stubborn Cybersecurity Worker Gap

• Galileo’s Luna redefines GenAI evaluation, boasting 97% lower costs and 11x faster speeds

• The Snowflake Attack May Be Turning Into One of the Largest Data Breaches Ever

• Cisco AI Assistant for Managing Firewall Policies Is Now Available

• Security, Surveillance, and Government Overreach – the United States Set the Path but Canada Shouldn’t Follow It

• FBI encourages LockBit victims to step right up for free encryption keys

• How DataDome Protects AI Apps from Prompt Injection & Denial of Wallet Attacks

• Alphabet Names Anat Ashkenazi As CFO

• Microsoft Shows Venerable And Vulnerable NTLM Security Protocol The Door

• US Proposes To Boost Internet Security, Citing Chinese Carrier Action

• data splitting

• Singapore, US expand AI partnership to focus on upskilling youth and women

• The best travel VPNs of 2024: Expert tested and reviewed

• A new Linux version of TargetCompany ransomware targets VMware ESXi environments

• Insights from RSA Conference 2024: Transformative Innovations in Cybersecurity

• The sliding doors of misinformation that come with AI-generated search results

• Amazon’s Zoox Begins Testing In Austin, Miami

• Crimson Palace: Chinese Hackers Steal Military Secrets Over 2 Years

• Mocking Dependencies and AI Is the Next Frontier in Vue.js Testing

• Ethical hacker releases tool to exploit Microsoft’s Recall AI, says it’s not ‘rocket science’

• You’ll soon be able to text 911 via RCS on your Android phone. Here’s how it works

• Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks

• Microsoft Recall is a Privacy Disaster

• SpaceX Completes Fourth Starship Test Flight

• #Infosec2024: Ransomware Ecosystem Transformed, New Groups “Changing the Rules”

• #Infosec2024: CISOs Need to Move Beyond Passwords to Keep Up With Security Threats

• Why SAST + DAST can’t be enough

• Prompt Injection Vulnerability in EmailGPT Discovered

• Navigating Meta’s AI Data Training: Opt-Out Challenges and Privacy Considerations

• Google Faces Scrutiny Over Internal Database Leak Exposing Privacy Incidents

• Google n Microsoft confirm Cyber Threat to 2024 Paris Olympics

• The hidden pitfalls of travel apps

• Hit by LockBit? The FBI is waiting to help you with over 7,000 decryption keys

• Espionage with a Drone

• USENIX Security ’23 – Near-Ultrasound Inaudible Trojan (Nuit): Exploiting Your Speaker to Attack Your Microphone

• Automation Takes Off: A New Dawn for Enterprises to Guard Against the Cyberattack Barrage

• #Infosec2024: AI Red Teaming Provider Mindgard Named UK’s Most Innovative Cyber SME

• US Regulators To Open Antitrust Probes Into Microsoft, OpenAI, Nvidia

• Wordfence Intelligence Weekly WordPress Vulnerability Report (May 27, 2024 to June 2, 2024)

• Ransomware ravaged schools and cities in May

• Emerson Ovation

• Cryptographic Protocol Challenges

• Why Hackers Love Logs

• US Authorities Attempting to Recover $5.3 Million Stolen in BEC Scam

• First American Reveals Impact of December Cyberattack

• Some Generative AI Company Employees Pen Letter Wanting ‘Right to Warn’ About Risks

• Leveraging Escalation Attacks in Penetration Testing Environments – Part 2

• Leveraging Escalation Attacks in Penetration Testing Environments – Part 1

• TargetCompany’s Linux Variant is Targeting ESXi Environments

• Strengthening Healthcare Cybersecurity: A Collaborative Imperative

• Muhstik Botnet Exploiting Apache RocketMQ Flaw to Expand DDoS Attacks

• Nvidia Overtakes Apple As Second Most Valuable Tech Firm

• AI-driven compliance: The key to cloud security

• What Are the Benefits of Choosing an AI Trading Bot?

• Cybersecurity Concerns Facing the 2024 U.S. Elections

• Exploitation of Recent Check Point VPN Zero-Day Soars

• A Russian Cyber Gang Is Thought to Be Behind a Ransomware Attack That Hit London Hospitals

• Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics

• Darktrace MDR service improves cyber resilience for organizations

• 9 Malware Types Enterprise Professionals Need to Know

• Kali Linux 2024.2: A Security Powerhouse Unbound with t64 Transition and New Tools

• Getting to Know Natalia Vezhevatova

• Uncle Sam seeks to claw back $5M+ stolen from trade union through spoofed email

• #Infosec2024: Experts Share How CISOs Can Manage Change as the Only Constant

• Crypto Kaleidoscope: Investing in Colorful Coins, Living a Vibrant Life

• Advance Auto Parts customer data posted for sale

• 1Password Review (2024): Is It a Safe Password Manager?

• Mastering Cyber Risk Quantification Methods: A Strategic Approach

• Listen up: 10 cybersecurity podcasts you can learn from

• #Infosec2024: How to Change Security Behaviors Beyond Awareness Training

• #Infosec2024: Third of Web Traffic Comes from Malicious Bots, Veracity Says

• Cybersecurity Jobs: The Demand Grows, but Supply Falls Short, Report

• Husband stalked ex-wife with seven AirTags, indictment says

• Vulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure Process

• Third-Party Cyber Attacks: The Threat No One Sees Coming – Here’s How to Stop Them

• #Infosec2024: Mandatory Ransomware Reporting Would Be Positive Move, Say Experts

• Microsoft Recall snapshots can be easily grabbed with TotalRecall tool

• Microsoft shows venerable and vulnerable NTLM security protocol the door

• Securing Meraki Networks with Cisco XDR

• Multiple Chinese APTs Targeted Southeast Asian Government for Two Years

• Upleveling the State of SMB Cybersecurity

• Interpol and FBI Break Up a Cyber Scheme in Moldova to Get Asylum for Wanted Criminals

• Zyxel patches critical flaws in EOL NAS devices

• Digital natives are not cybersecurity natives

• Windows AI’s Screenshot Feature Labeled a ‘Disaster’ for Security

• FORTIGATE CLOUD NATIVE FIREWALL (FORTIGATE CNF)

• 1Password Review: Features, Pricing & Security

• 7-year-old Oracle WebLogic bug under active exploitation

• #Infosec2024: Supply Chains Remain Hidden Threat to Business

• The Lords of Silicon Valley Are Thrilled to Present a ‘Handheld Iron Dome’

• FBI obtained 7,000 LockBit decryption keys, victims should contact the feds to get support

• Hackers Exploit Legitimate Packer Software to Spread Malware Undetected

• Prevent Account Takeover with Better Password Security

• We Want a Solution to Remediate, Not Just Detect Problems

• Salesforce Opens First AI Centre In London

• Fog Ransomware Attacking Windows Servers Administrators To Steal RDP Logins

• UNC1151 Hackers Weaponizing Excel Documents To Attack Windows Machine

• FBI Says It Has 7,000 LockBit Ransomware Decryption Keys

• Cybersecurity News: Psychology vs. threat actors, AI leveling up, Qilin hit Synnovis

• Malicious Python Script with a “Best Before” Date, (Thu, Jun 6th)

• Hackers Attacking Banking Customers Using Phishing-As-A-Service V3B Toolkit

• Python Developers Beware! Russian Hackers Targeting You With Malicious Packages

• Pester Power – How Hackers Wear Down Your Defences

• Parrot Security OS 6.1 Released – What’s New

• What is the Standard of Good Practice for Information Security?

• What Is the Difference between FIM and DLP?

• RansomHub operation is a rebranded version of the Knight RaaS

• Tenable partners with Deloitte to help organizations reduce cyber risk

• Google Maps Timeline Data to be Stored Locally on Your Device for Privacy

• Commando Cat: A Novel Cryptojacking Attack Abusing Docker Remote API Servers

• Apple Refused to Pay $1 Million Bounty to Kaspersky Lab for iOS Zero-days

• How to Lead an Army of Digital Sleuths in the Age of AI

• Microsoft Research chief scientist has no issue with Windows Recall

• Symmetry Systems Recognized as a Strong Performer in the 2024 Gartner® Peer Insights™ Voice of the Customer for Data Security Posture Management report

• GHOSTENGINE Exploit: Vulnerable Drivers Facing Attack

• HYPR raises $30 million to combat threats posed by generative AI

• Webinar: Exposure management and your attack surface

• #Infosec2024: Small Firms Need to Work Smarter to Stretch Security Budgets

• Buffalo Man Pleads Guilty To Buying Stolen Data From Genesis Market

• IoT Security Means Remediation Not Mitigation

• Hackers Target Python Developers with Fake “Crytic-Compilers” Package on PyPI

• Spain defense company servers hacked

• Bitcoin Heist Hits Japanese Exchange DMM Bitcoin

• Kali Linux 2024.2 Released With New Hacking Tools

• Sniffnet: Free, open-source network monitoring

• 90% of threats are social engineering

• Chinese attackers leverage previously unseen malware for espionage

• 78% of SMBs fear cyberattacks could shut down their business

• ISC Stormcast For Thursday, June 6th, 2024 https://isc.sans.edu/podcastdetail/9012, (Thu, Jun 6th)

• BTS #31 – Managing Complex Digital Supply Chains – Cassie Crossley

• Windows Recall Demands An Extraordinary Level Of Trust That Microsoft Hasn’t Earned

• TikTok Hackers Target Paris Hilton, CNN, And Other High Profile Users

• Emergency Patches Released For Critical Vulns Impacting EOL Zyxel NAS Boxes

• Ransomware Attack Disrupting London Hospitals

• Webex Bugs Patched Post Exposure Of German Govt Meetings

• Hundreds of Snowflake customer passwords found online are linked to info-stealing malware

• TikTok confirms CNN, other high-profile accounts hijacked via zero-day vulnerability

• Safeguarding AWS AI Services: Protecting Sensitive Permissions

• IT Security News Daily Summary 2024-06-05

• Malware can steal data collected by the Windows Recall tool, experts warn

• Dependency Injection

• Win for Free Speech! Australia Drops Global Takedown Order Case

• What is RansomHub? Looks like a Knight ransomware reboot

• Who are these RansomHub cyber-thieves? Looks like a Knight ransomware reboot

• Database Mess Up: Aussie Food Giant Patties Foods Leaks Trove of Data

• Cybersecurity Training Reduces Phishing Threats – With Numbers to Prove It

• Marketing Vs. Reality—What We Can Learn From The Ashley Madison Hack | Avast

• Cisco Talos: LilacSquid Threat Actor Targets Multiple Sectors Worldwide With PurpleInk Malware

• RansomHub Rides High on Knight Ransomware Source Code

• Vulnerability in Cisco Webex cloud service exposed government authorities, companies

• What is a cloud security framework? A complete guide

• Kali Linux 2024.2 released: 18 new tools, countless updates

• Few But High-Profile TikTok Accounts Hacked Via Zero-Click Attack in DM

• Emergency patches released for critical vulns impacting EOL Zyxel NAS boxes

• SUSE Linux Enterprise Server (SLES)

• How Proactive Responsible Radical Transparency Benefits Customers

• Bridging the gap between legacy tools and modern threats: Securing the cloud today

• Cisco Live 2024: New Unified Observability Experience Packages Cisco & Splunk Insight Tools

• Unseen Challenges in OT Security with DirectDefense

• How Proactive Responsible Transparency Benefits Customers

• Polish State Media Targeted in Alleged Russian-Backed Cyberattack

• Chinese State-Sponsored Operation “Crimson Palace” Revealed

• #Infosec 2024: Small Firms Need to Work Smarter to Stretch Security Budgets

• NHS Ransomware Attack 2024 launched by Russia

• Google Must Face $17 Billion Adtech Lawsuit, Tribunal Rules

• CEO Corner: Preparing for the Unavoidable – Why Incident Response Readiness is Non-Negotiable

• USENIX Security ’23 – HOMESPY: The Invisible Sniffer of Infrared Remote Control of Smart TVs

• Global Resurgence of Grandoreiro Banking Trojan Hitting High

• CISA Hosts First Annual Information and Communications Technology Supply Chain Risk Management Task Force Conference

• Outshift by Cisco Releases Motific’s AI Capabilities with the Power of Mistral AI Behind It

• Cisco Continues Elevating Partner AI Capabilities to Meet Customer Demand

• WhatsApp Bans 7.1 Million Indian Users, Warns of More Bans for Rule Violations

• #Infosec2024 Spyware: A Threat to Civil Society and a Threat to Business

• FBI Warns of Rise in Work-From-Home Scams

• Join Us 06-21-24 for “Hacking Generative AI Anxiety” – Super Cyber Friday

• 40,000 WordPress Sites affected by Vulnerability That Leads to Privilege Escalation in Login/Signup Popup WordPress Plugin

• Russian Hackers Blamed As Ransomware Impacts London Hospitals

• Reporting ransomware attacks: Steps to take

• Bringing the Cisco AppDynamics + Splunk Better Together story to Cisco Live

• CES: AI at the Forefront of Cybersecurity’s Future

• How Poor Cryptographic Practices Endanger Banking Software Security

• Zoho’s security stack improves businesses’ protections against breaches and attacks

• #Infosec24: 104 EU Laws Have Different Definitions of Cybersecurity

• Brute Force Attacks Against Watchguard VPN Endpoints, (Wed, Jun 5th)

• Akamai Celebrates Earth Day with a Cleanup of Rio Agres

• 2024: Old CVEs, New Targets ? Active Exploitation of ThinkPHP

• Cisco addressed Webex flaws used to compromise German government meetings

• What Are the Benefits of Choosing an AI Trading Bots?

• Tines’ AI features enhance workflow automation for security and IT teams

• Financial sextortion scams on the rise

• Why Millions of Pcs Aren’t Ready for Evolving Cyber Threats

• #Infosec24: Go Back to Basics With Risk Management to Tackle AI Risk

• Amazon’s First Trade Union Seeks Association With Largest US Union

• Researchers Show How Malware Could Steal Windows Recall Data

• Hypr Raises $30 Million for Passwordless Authentication

• Why Digital Threats are the New Frontier in Executive Protection

• Rise of Cybercrime in India: Reasons, Impacts & Safety Measures

• Securing India’s Infrastructure: Key Takeaways from the Colonial Pipeline Hack

• Globl Cybercrime Ring Dismantled in Landmark Operation by Thai and US Authorities

• Netskope introduces SaaS security enhancements to Netskope One for GenAI and SaaS collaboration

• Infosec24: Go Back to Basics With Risk Management to Tackle AI Risk

• Chinese Hackers Attacking Government Organization In Southeast Asia

• Say hello to the fifth generation of Malwarebytes

• Attention TikTok Users: Celebrities Accounts Targeted Including Paris Hilton

• The 4 Biggest Challenges for the Hybrid Enterprise and What CISOs Need to Solve Them

• What Individuals Get Wrong About Business Email Compromise

• Photos: Infosecurity Europe 2024

• Protecting PII Data With JWT

• Are Password Managers Safe to Use? (Benefits, Risks & Best Practices)

• 4 cuffed following probe into holiday scheme for cybercrooks

• Thales Passwordless 360° enables organizations to improve their identity management practices

• Intel 471 launches 471 Attack Surface Protection to enhance external threat visibility

• DarkGate switches up its tactics with new payload, email templates

• Understanding HyperCycle’s HyperShare Smart Contract Feature

• Beware Of Phishing Emails Prompting Execution Via Paste (CTRL+V)

• Resurgence of Ransomware: Mandiant Observes Sharp Rise in Criminal Extortion Tactics

• ‘NsaRescueAngel’ Backdoor Account Again Discovered in Zyxel Products

• Unpacking 2024’s SaaS Threat Predictions

• Chinese State-Backed Cyber Espionage Targets Southeast Asian Government

• CNN, Paris Hilton, and Sony TikTok accounts hacked via DMs

• MSPs Look to Streamline Cybersecurity Partnerships, Skills Shortage Persists

• Phishing for Gold: Cyber Threats Facing the 2024 Paris Olympics

• OpenAI, DeepMind Workers Warn Of AI Risks In Open Letter

• 361 Million Unique Email Credentials Leaked On Telegram Channels

• Online Privacy and Overfishing

• 225,000 More Cybersecurity Workers Needed in US: CyberSeek

• Rebranded Knight Ransomware Targeting Healthcare and Businesses Worldwide

• What’s up with the new kids?

• Hackers Leak 230,000 Users’ Data in “Tech in Asia” News Outlet Breach

• Big name TikTok accounts hijacked after opening DM

• The Age of the Drone Police Is Here

• TotalRecall shows how easily data collected by Windows Recall can be stolen

• TargetCompany’s Linux Variant Targets ESXi Environments

• TikTok Warns Cyberattack Targetted High Profile Accounts

• London Hospitals Cancel Operations and Appointments After Being Hit in Ransomware Attack

• Cisco Patches Webex Bugs Following Exposure of German Government Meetings

• Certificate Lifecycle Management The Key to Robust Digital Security in Healthcare

• Verimatrix XTD Accessibility Abuse Detector identifies Android mobile app threats

• #Infosec2024: Organizations Urged to Adopt Safeguards Before AI Adoption

• #Infosec2024: Data Security Needs to Catch Up With Growing Threats

• Cybersecurity News: London hospitals hit by ransomware, Christie’s stolen data sold, RansomHub claims Frontier breach

• Australia Drops Knife Attack Case Against X

• A Brief Look at AI in the Workplace: Risks, Uses and the Job Market

• Life in Cybersecurity: From the Classroom to the Next Generation of Cybersecurity Professional

• AI Autonomy and the Future of Cybersecurity

• An American Company Enabled a North Korean Scam That Raised Money for WMDs

• Ransomware Gang Leaks Data From Australian Mining Company

• Cyber Security Today, June 5, 2024 – New threat actor going after American IT firms, Canada’s Auditor General slams federal cybercrime-fighting agencies

• Threat Actors Weaponize Excel Files To Attack Windows Machines

• Microsoft Details AI Jailbreaks And How They Can Be Mitigated

• ESAs and ENISA sign a Memorandum of Understanding to strengthen cooperation and information exchange

• Appdome SDKProtect reduces third-party mobile supply chain risk

• How Hackers Using Packers To Hide Malware & Bypass Defenses

• Darkcrystal RAT Malware Attacking Government Officials Via Signal Messenger

• Zyxel addressed three RCEs in end-of-life NAS devices

• N2WS launches cross-cloud volume restore for AWS and Azure

• #Infosec2024: Tackling Cyber Challenges of AI-Generated Code

• Zyxel Releases Patches for Firmware Vulnerabilities in EoL NAS Models

• Celebrity TikTok Accounts Compromised Using Zero-Click Attack via DMs

• TikTok faces cyber attack but only few celebrities and brands impacted

• Unveiling the Mechanics of Offline Data Theft: How Your Information Can Be Compromised Beyond the Digital Realm

• Microsoft paid Tenable a bug bounty for an Azure flaw it says doesn’t need a fix, just better documentation

• Command Senior Chief Convicted For Setting Up Wi-Fi On US Navy Combat Ship

• Breaking a Password Manager

• Developers Beware Of Malicious npm Package Delivers Sophisticated RAT

• No summer break for cybercrime: Why educational institutions need better cyber resilience

• How AI-powered attacks are accelerating the shift to zero trust strategies

• Find out which cyber threats you should be concerned about

• Cybersecurity jobs available right now: June 5, 2024

• ISC Stormcast For Wednesday, June 5th, 2024 https://isc.sans.edu/podcastdetail/9010, (Wed, Jun 5th)

• 8 Takeaways from Apple 2023 Threat Research

• Congratulations to the 2024 Americas CX Customer Hero Award Winners

• A ransomware attack on Synnovis impacted several London hospitals

• IT Security News Daily Summary 2024-06-04

• A SANS’s 2024 Threat-Hunting Survey Review

• Utility scams update

• SecOps Teams Shift Strategy as AI-Powered Threats, Deepfakes Evolve

• Cogility Launches TacitRed – Tactical Attack Surface Management

• Command senior chief busted for secretly setting up Wi-Fi on US Navy combat ship

• RelationalAI launches powerful Knowledge Graph Coprocessor for Snowflake users

• 5 ways to save your Windows 10 PC in 2025 – and most are free

• Former OpenAI Employees Lead Push to Protect Whistleblowers Flagging Artificial Intelligence Risks

• Russian Threat Groups Turn Eyes to the Paris Olympic Games

• TikTok acknowledges exploit targeting high-profile accounts

• Car Makers Shouldn’t Be Selling Our Driving History to Data Brokers and Insurance Companies

• Pentagon ‘doubling down’ on Microsoft despite ‘massive hack,’ senators complain

• NIST 2.0: Securing Workload Identities and Access

• Life in the Swimlane with Emily Spector, Senior SDR

• The Role of DevSecOps in Enhancing CNAPP Efficiency

• TikTok Hack Targets ‘High-Profile’ Users via DMs

• Best of the Best: Cisco Customer Advocate Awards: Americas 2024 Winners

• RansomHub gang claims the hack of the telecommunications giant Frontier Communications

• Security challenges in the financial sector⎪Max Imbiel (CISO, Bitpanda)

• The best secure browsers for privacy in 2024: Expert tested

• London NHS Crippled by Ransomware, Several Hospitals Targeted edit

• Industry Innovation: Solving Business Challenges in Retail

• Cybercriminals attack banking customers in EU with V3B phishing kit – PhotoTAN and SmartID supported.

• Security Considerations When Building SaaS

• Was the Ticketmaster Leak Snowflake’s Fault?

• UAE Takes Measures to Strengthen Cybersecurity in the META Region

• London Hospitals Cancel Operations Following Ransomware Incident

• Ransomware attack on NHS and Google Data Breach 2024 details

• Paris Olympics 2024: Cyber Attackers are Targeting Companies Associated With Games, Report Finds

• Cisco Live 2024: Cisco Unveils AI Deployment Solution With NVIDIA

• #Infosec2024 Ransomware: The Key Updates You Need to Know

• New OpenSSL Patch Releases Available

• Ukraine Hit by Cobalt Strike Campaign Using Malicious Excel Files

• Developers Beware Of Malicious npm Package That Delivers Sophisticated RAT

• Secure Web Gateway vs Firewall: Learn the Difference

• Russian Power Companies, IT Firms, and Govt Agencies Hit by Decoy Dog Trojan

• London hospitals declare critical incident after service partner ransomware attack

• CISOs and Senior Leadership at Odds Over Security

• 5G and SASE: Reimagining WAN Infrastructure

• Check Point Warns Of Zero-Day In Network Security Gateway Products

• Europol Puts An End To Major Botnets With ‘Operation Endgame’

• XSS Flaws In Multiple WordPress Plugins Exploited To Deploy Malware

• Cracked Microsoft Office Version Delivers Multiple Pronged Malware

• This Hacker Tool Extracts All the Data Collected by Windows’ New Recall AI

• AI Takes Center Stage in the Data Center

• Cisco Live 2024: Ensure Digital Resilience, Pervasive Security, and Simpler Operations

• Entering the New Era of Digital Experience Assurance Across Every Network

• Cisco Security at Cisco Live 2024: Innovating at Scale

• Cisco Live 2024: Enhancing Network Simplicity and Efficiency While Facilitating Superior Digital Experiences

• Fraudulent Browser Updates Are Propagating BitRAT and Lumma Stealer Malware

• RedTail Cryptominer Exploits Critical Zero-Day in PAN-OS

• Why Mid-Sized Businesses Are Attractive Targets for Cyber Criminals

• Veeam Data Cloud Vault enables users to securely store backup data

• LOKKER Consent Verification identifies potential compliance issues

• Account Takeovers Outpace Ransomware as Top Security Concern

• Help Desk Personnel are the Side Door for Cybercriminals

• Decoding Router Vulnerabilities Exploited by Mirai: Insights from Honeypot Data

• The Year in GenAI: Security Catches Up with Innovation

• Telerik Report Server Flaw Could Let Attackers Create Rogue Admin Accounts

• Cisco Enhances Zero Trust Access with Google

• The Cybersecurity Conundrum: Navigating the Challenges with Fewer Resources and Rising Threats

• Christie’s stolen data sold to highest bidder rather than leaked, RansomHub claims

• PoC for Progress Telerik RCE chain released (CVE-2024-4358, CVE-2024-1800)

• Embracing the benefits of LLM securely

• How to ensure the security of your SaaS platform

• Extend & Strengthen DDoS Security Across the Entire Network with Infinity Playblocks

• Details of Atlassian Confluence RCE Vulnerability Disclosed

• AI’s Impact on the Job Market: 12 Million Occupational Transitions by 2030

• ManageEngine unveils passwordless, phishing-resistant FIDO2 authentication

• #Infosec2024: How to Develop Your Future Team

• New Ways for CNAPP to Shift Left and Shield Right: The Technology Trends That Will Allow CNAPP to Address More Extensive Threat Models

• Microsoft accused of tracking kids with education software

• Uniview NVR301-04S2-P4

• CISA Releases Four Industrial Control Systems Advisories

• Cybercrooks Get Cozy With BoxedApp To Dodge Detection

• NIST Turns To IT Consultants To Clear National Vulnerability Database

• Google Accidentally Published Internal Search Docs To GitHub

• Vulnerabilities Exposed Millions Of Cox Modems To Remote Hacking

• Tightening Water Cybersecurity is Now Imperative as Biden Administration Issues Urgent Warning to State Leaders

• Microsoft is again named the overall leader in the Forrester Wave for XDR

• SailPoint Risk Connectors helps organizations identify and act on risks

• New Multi-Stage Malware Targets Windows Users in Ukraine

• No-Defender, Yes-Defender, (Tue, Jun 4th)

• Mastering the Art of Least Privilege Access Implementation: A Comprehensive Guide

• The Importance of Crypto Agility in Preventing Certificate-Related Outages

• Consolidation is Coming to Corporate Security Technology

• eBook: Breaking bad actors

• #Infosec24: Enterprise Browser Touted as Solution to GenAI Privacy Risks

• Relying on the Unreliable

• Ransomware Group Claims Cyberattack on Frontier Communications

• CISA Warns of Attacks Exploiting Old Oracle WebLogic Vulnerability

• Progress Patches Critical Vulnerability in Telerik Report Server

• Wipro Cyber X-Ray empowers CXOs to make optimized security investment decisions

• Combining Sekoia Intelligence and OpenCTI

• Transforming SOC Operations: How TacitRed Curated Threat Intelligence Boosts Analyst Efficiency and Delivers Tactical Attack Surface Intelligence

• ShinyHunters Resurrect BreachForums Shortly After FBI Takedown

• CISA Adds A Linux Vulnerability To Its Known Exploits Catalog

• Replicate AI Vulnerability Could Expose Sensitive Data

• Dessky Snippets WordPress Plugin Exploited For Card Skimming Attacks

• ChatGPT plugin flaws introduce enterprise security risks

• February 2024 Cyber Attacks Statistics

• 361 million account credentials leaked on Telegram: Are yours among them?

• Hackers Use MS Excel Macro to Launch Multi-Stage Malware Attack in Ukraine

• The Next Generation of RBI (Remote Browser Isolation)

• Debt collection agency FBCS leaks information of 3 million US citizens

• Cybercrooks get cozy with BoxedApp to dodge detection

• Ransomware Group Creation Touched Yearly All Time High

• Russian Hackers In Attempt To Distrupt The 2024 Paris Olympic Games

• Experts released PoC exploit code for a critical bug in Progress Telerik Report Servers

• Unlocking HIPAA Compliance: Navigating Access Control and MFA Guidelines

• #Infosec24: Deepfake Expert Warns of “AI Tax Havens”

• The Value of Data

• 6 Best VPNs for the UK in 2024

• AI Is Your Coworker Now. Can You Trust It?

• Snowflake Warns: Targeted Credential Theft Campaign Hits Cloud Customers

• From Text to Action: Chatbots in Their Stone Age

• Tech Titans Adopt Post-Quantum Encryption to Safeguard User Data

• How to Start a Career in Cybersecurity

• Vulnerabilities Exposed Millions of Cox Modems to Remote Hacking

• Cybersecurity M&A Roundup: 28 Deals Announced in May 2024

• I’m Rewarding Your Successful Use of the Security Budget by Giving You Less of It

• Prosecutors Say Lynch Behind Autonomy Fraud

• Inside the Biggest FBI Sting Operation in History

• What is DKIM Vulnerability? DKIM l= tag Limitation Explained

• Cybersecurity News: Russian criminals unmasked, Background check firm breach, Creds added to HIBP

• Microsoft ‘Cuts Hundreds Of Cloud Jobs’

• Spotify Raises US Prices In Profit Drive

• Zyxel NAS Devices Vulnerability Let Attackers Execute Code Remotely

• 37 Vulnerabilities Patched in Android

• Soliciting Input Regarding a Potential Hardening Effort

• Russians Love YouTube. That’s a Problem for the Kremlin

• Nvidia, AMD Hawk AI Chips As Computex Opens

• Computex: Qualcomm Promotes Windows AI Chips With ‘I’m A Mac’ Actor

• Plainsea cybersecurity platform to launch at Infosecurity Europe

• Data Defense: Leveraging SaaS Security Tools

• Trend Micro Inline NDR enhances threat detection and response

• #Infosec2024: UK Businesses Faced with Month-Long Recoveries from Supply Chain Attacks

• Google To Scale Back AI Searches In Latest Controversy

• Multiple flaws in Cox modems could have impacted millions of devices

• Podcast Episode: AI on the Artist’s Palette

• It?s Getting Hot in Here: EMEA SOTI

• Underground Ransomware Continues to Attack Industries Of Various Sizes

• DarkGate Malware Replaces AutoIt with AutoHotkey in Latest Cyber Attacks

• #Infosec2024: Conflicts Drive DDoS Attack Surge in EMEA

• Android and iPhone users are vulnerable to Zero Click hacks

• 20 free cybersecurity tools you might have missed

• Third-party vendors pose serious cybersecurity threat to national security

• Oracle WebLogic Server OS Command Injection Flaw Under Active Attack

• Security challenges mount as as companies handle thousands of APIs

• 50 CISOs & Cybersecurity Leaders Shaping the Future

• Hudson Rock yanks report fingering Snowflake employee creds snafu for mega-leak

• ISC Stormcast For Tuesday, June 4th, 2024 https://isc.sans.edu/podcastdetail/9008, (Tue, Jun 4th)

• The NIST Finally Hires a Contractor to Manage CVEs

• Vulnerability Recap 6/3/24 – Check Point, Okta & Fortinet Issues

• NIST turns to IT consultants to clear National Vulnerability Database backlog

• IT Security News Daily Summary 2024-06-03

• Telegram Combolists – 361,468,099 breached accounts

• Is Your Phone Vulnerable? NSA Recommends a Simple Fix: Restart

• Cybersecurity Automation in Healthcare Program Launched by HHS Agency

• Enhancing Vehicle Routing Problems With Deep Reinforcement Learning and Metaheuristics

• Zero-Click Attacks: The Silent Assassins of the Digital World

• Mandiant: Ransomware investigations up 20% in 2023

• Crooks threaten to leak 3B personal records ‘stolen from background check firm’

• CISA adds Oracle WebLogic Server flaw to its Known Exploited Vulnerabilities catalog

• Cyberattack Risks Keep Small Business Security Teams on Edge

• Google Hates Ad Blockers: Manifest V3 Push Starts Today

• EFF Appeals Order Denying Public Access to Patent Filings

• Randall Munroe’s XKCD ‘Modes of Transportation’

• The Myth of “Fileless” Malware

• Popular WordPress Plugins Leave Millions Open to Backdoor Attacks

• The best Bluetooth trackers of 2024: Expert tested

• Kaspersky released a free Linux virus removal tool – but is it necessary?

• Using ChatGPT as a SAST tool to find coding errors

• Donald Trump Joins TikTok After Trying To Ban It

• New security superpowers to help IT with OT security

• Forrester Names Palo Alto Networks a Leader in XDR

• Santander Bank Faces Major Data Breach Affecting 30 Millions

• Snowflake cloud customers warned against data theft and extortion attacks

• 800 arrests, 40 tons of drugs, and one backdoor, or what a phone startup gave the FBI, with Joseph Cox: Lock and Code S05E12

• CISA Adds One Known Exploited Vulnerability to Catalog

• Menace Unleashed: Excel File Deploys Cobalt Strike at Ukraine

• A Practical Guide for Handling Unauthorized Access to Snowflake

• Securing Your Snowflake Environments

• USENIX Security ’23 – Automated Exploitable Heap Layout Generation for Heap Overflows Through Manipulation Distance-Guided Fuzzing

• Ransomware Rises Despite Law Enforcement Takedowns

• It’s Time to Up-Level Your EDR Solution

• The Giro Effect: Transforming Partnerships in the Ecosystem Era

• Russia takes gold for disinformation as Olympics approach

• Insikt Group Tracks GRU’s BlueDelta Cyber-Espionage Campaigns Across Europe

• Ransomware Attacks on the Rise! Nearly 2900 Assaults Reported in the First Quarter of 2024

• Google Confirms Leak of 2,500 Internal Documents on Search Algorithm

• Vulnerability Summary for the Week of May 27, 2024

• Ransomware Rises Amid Law Enforcement Takedowns

• Authorities Ramp Up Efforts to Capture the Mastermind Behind Emotet

• Researchers Uncover RAT-Dropping npm Package Targeting Gulp Users

• WhatsApp cryptocurrency scam goes for the cash prize

• go-secdump Tool Remotely Dump Secrets From Windows registry

• Identities of Cybercriminals Linked to Malware Loaders Revealed

• Meta to Train AI with Public Facebook and Instagram Posts

• Running CloudTest on Akamai Cloud Computing

• CarnavalHeist Weaponizing Word Documents To Steal Login Credentials

• Spanish police shut down illegal TV streaming network

• Less Is More: Why MSPs Are Moving to the Cybersecurity Platform Model

• Improved Guidance for Azure Network Service Tags

• 5 Reasons Why You Should Use a Password Manager

• How Do Password Managers Work and Why Do You Need One?

• Funding a Whole of State Approach for your Community

• PoC Published for Exploited Check Point VPN Vulnerability

• Online Banking Frauds: The Silent Threat to India’s Financial Stability

• Live Nation Confirms Massive Ticketmaster Data Breach

• CVE-2024-24919 Exploitation, Veriti Proactive Remediation

• Seeing Like a Data Structure

• NYDFS Cybersecurity Regulation: Automated Blocking of Commonly Used Passwords

• 8220 Gang Exploiting Oracle WebLogic Server Flaw To Deploy Cryptominer

• Check Point warns customers to patch VPN vulnerability under active exploitation

• XDR means so much more than some may realize

• Snowflake Data Breach Impacts Ticketmaster, Other Organizations

• Zyxel Networks USG LITE 60AX improves network security

• Shining the Light on Shadow IT: Top Five SaaS Security Tips for Third-Party Risk Management

• SASE Threat Report: 8 Key Findings for Enterprise Security

• A Wireshark Lua Dissector for Fixed Field Length Protocols, (Mon, Jun 3rd)

• Ransomware Rebounds: Extortion Threat Surges in 2023, Attackers Rely on Publicly Available and Legitimate Tools

• Facebook Sees Most Young Adult Users In Three Years

• Saudi Fund Invests In China’s Biggest AI Start-Up

• New V3B Phishing Kit Steals Logins and OTPs from EU Banking Users

• Price Drop: Learn Cybersecurity Skills From Scratch for Just $35

• How Donald Trump Could Weaponize US Surveillance in a Second Term

• APT28 targets key networks in Europe with HeadLace malware

• Researcher Uncovers Flaws in Cox Modems, Potentially Impacting Millions

• UK School Forced to Close Following Cyber-Attack

• Demystifying SOC 2 and ISO 27001

• Hugging Face Hack: Spaces Secrets Exposed

• Important Security Reminder – Install the Fix to Stay Protected

• IT threat evolution in Q1 2024. Non-mobile statistics

• IT threat evolution Q1 2024

• IT threat evolution in Q1 2024. Mobile statistics

• Task Force Triumphs in Shutting Down Six Notorious Malware Droppers

• Cybersecurity News: Ticketmaster breached, Ticketek Australia breached, HHS notification change

• South Korea Chip Stockpiles Drop Amidst Surge In AI Chip Demand

• US Regulator Asks For More Data In Zoox Self-Driving Probe

• What Is SOAR? Definition, Benefits & Use Cases

• High-risk Atlassian Confluence RCE fixed, PoC available (CVE-2024-21683)

• #Infosec2024: Nearly All of FTSE 100 Exposed to Third and Fourth-Party Breaches

• Cyber Security Today, June 3, 2024 – Four cloud-related data breaches

• PikaBot: a Guide to its Deep Secrets and Operations

• Advanced CI/CD: 6 steps to better CI/CD pipelines

• Understanding Vulnerability Management and Patch Management

• How Can FIM Protect Against Insider Threats

• Derisking your CNI

• Int’l Police Target Botnets In ‘Operation Endgame’

• Hackers Offer To Sell Hacked Data On Santander Customers, Staff

• Sanctioned Huawei Takes Global Top Spot For Foldable Smartphones

• TechRepublic Premium Editorial Calendar: Policies, Checklists, Hiring Kits and Glossaries for Download

• Secrets Exposed in Hugging Face Hack

• Andariel Hackers Target South Korean Institutes with New Dora RAT Malware

• Ticketmaster Confirms Breach Potentially Impacting 560 Million Users

• Critical wpDataTables Vulnerability Let Attackers Perform SQL Injection

• Insider Risk Digest: May

• Experts found information of European politicians on the dark web

• A week in security (May 27 – June 2)

• Threat Actors Claiming Breach Of Heineken Employees Data

• Exploring the Most Common Types of Cyber Attacks: Understanding the Threat Landscape

• Researchers crash Baidu robo-cars with tinfoil and paint daubed on cardboard

• NSA suggests these 11 mobile security tips to Android and iPhone users

• NethSecurity: Open-source Linux firewall

• Businesses must prioritize digital trust to avoid major problems

• Beware: Fake Browser Updates Deliver BitRAT and Lumma Stealer Malware

• Infosec products of the month: May 2024

• Organizations are moving from experimenting with AI to adopting it

• ISC Stormcast For Monday, June 3rd, 2024 https://isc.sans.edu/podcastdetail/9006, (Mon, Jun 3rd)

• Liquidmatrix Security Digest Podcast – Episode 77

• IT Security News Weekly Summary – Week 22

• IT Security News Daily Summary 2024-06-02

• Explore AI-Driven Cybersecurity with Trend Micro, Using NVIDIA NIM

• Keeping Pace with an Evolving Security and Trust Landscape

• How Main Street Businesses Can Up Their Cybersecurity Game

• FlyingYeti targets Ukraine using WinRAR exploit to deliver COOKBOX Malware

• Cisco Defense Orchestrator’s Path to FedRAMP Authorization

• California Advances AI Regulation to Tackle Discrimination and Privacy Concerns

• Ransomware Attacks in Healthcare: A Threat to Patient Safety

• Shell Data Breach: Hacker Group 888 Claims Responsibility

• Seattle Public Library Hit by Ransomware Attack, Online Services Disrupted

• USENIX Security ’23 – Bleem: Packet Sequence Oriented Fuzzing for Protocol Implementations

• RedTail Cryptomining Malware Exploits Zero-Day Vulnerability in PAN-OS

• Professional Sporting Events: The Next Frontier of Cybersecurity?

• Security Affairs newsletter Round 474 by Pierluigi Paganini – INTERNATIONAL EDITION

• Snowflake at centre of world’s largest data breach

• Navigating Email: From Spam Wars to Trusted Relationships

• Week in review: Attackers trying to access Check Point VPNs, NIST CSF 2.0 security metrics evolution

Generated on 2024-06-09 23:58:21.370411