IT Security News Weekly Summary – Week 25

• IT Security News Daily Summary 2023-06-25

• A New Era Of Security: Are Passwords No Longer Fit For Purpose?

• The Role Of Impactful Penetration Testing Amid Rise Of AI-Powered Threat Actors

• How Can Manufacturers Stop Being The Top Target For Cyber Crime?

• Twitter hacker sentenced to five years in prison for cybercrime offenses

• Microsoft’s Response to “Privacy-Concerns” of ChatGPT in Business

• Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition

• NHS: Hackers have Complete Access to Millions of Medical Devices in UK Hospitals

• Azure AD ‘Log in With Microsoft’ Authentication Bypass at Risk

• Some LastPass users are locked out of their accounts after trying to reset their authenticator app

• 5 Ways to Make Your Instant Messaging More Secure

• An AI for an AI: LLM-based Detection of GPT-Generated BEC Attacks

• Week in review: Microsoft confirms DDoS attacks on M365 and Azure Portal, Infosecurity Europe 2023

• Cyber Security Management System (CSMS) for the Automotive Industry

• BreachForums Clone – 4,204 breached accounts

• IT Security News Daily Summary 2023-06-24

• DFIR Core Principles

• Someone is sending mysterious smartwatches to the US Military personnel

• Web Application Security: A 2023 Guide

• Android Users Beware: Glitch in 999 Call Feature Raises Concerns

• Remote Work and the Cloud Create Various Endpoint Security Challenges

• Malaysia Threatens Legal Action Against Facebook For Failing To Remove Harmful Content

• Twitter Hacker Sentenced to 5 Years in Prison for $120,000 Crypto Scam

• U.S. Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog

• Gen Digital Falls Prey to MOVEit Data Breach Attack

• Here’s Why Cybercriminals are Shifting Their Base from Tor to Telegram

• All You Need to Know About the ‘Vehicle Privacy Report’

• Founder of the World’s Largest Hacker Forums Arrested

• Confidential computing: 5 support technologies to explore

• Google bug bounties inch closer to Microsoft’s payouts

• Update Your iPhone Right Now to Fix 2 Apple Zero Days

• Flying this weekend? This $6 USB condom will protect your data from suspicious outlets

• Amazon Faces Lawsuit for Deceptive Prime Practices

• Passport Forgery Suspect Do Kwon Jailed in South Korea

• Unlock the Power of Smart Lighting in Your Business – The Latest Trends & Technologies

• Build or Buy your own antivirus product

• New JavaScript-based Dropper Delivers Bumblebee and IcedID Malware

• Amazon Sued For Tricking Users to Get Prime Subscriptions

• Dell Technologies World 2023: Q&A on how Dell sees security at the edge

• 5 facts to know about the Royal ransomware gang

• Microsoft Azure AD flaw can lead to account takeover

• CISA orders govt agencies to fix recently disclosed flaws in Apple devices

• Civil Society Calls on Tech Firms to Oppose Protest Song Ban

• Californians: Tell the Governor and Legislature to Keep Their Promise on Broadband Funding

• IT Security News Daily Summary 2023-06-23

• Silobreaker Unveils Geopolitical Threat Intelligence Capabilities With RANE at Infosecurity Europe 2023

• ITDR Combines and Refines Familiar Cybersecurity Approaches

• NSA: BlackLotus BootKit Patching Won’t Prevent Compromise

• House Oversight members want Login.gov documents outlining $187M modernization award

• Public transit systems remain vulnerable to cyber threats

• Suspicious Smartwatches Mailed to US Army Personnel

• Chinese Espionage Malware Targets European Healthcare via USB Drives

• Democrats call YouTube ‘extremely irresponsible’ for election misinformation rollback

• 5 Best Chrome VPN Extensions for 2023

• Palo Alto Networks CTO Talks Securing ‘Code to Cloud’

• 11 Key Steps of the Patch Management Process

• VMware fixed five memory corruption issues in vCenter Server

• Most government software stinks. Here’s what you can do about it.

• EE To Deploy Temporary 4G, 5G Masts To Bolster Capacity

• Top 10 threat modeling tools, plus features to look for

• AWS Reveals $100m Programme To Fund AI Initiatives

• Dell Technologies World 2023: Interview with Rob Emsley on data protection, recovery and more

• GSA activates 5-year option on Alliant 2 IT vehicle

• The Pentagon’s ambitious AI plans look less and less like ChatGPT

• Why Legacy System Users Prioritize Uptime Over Security

• Microsoft Teams Attack Skips the Phish to Deliver Malware Directly

• NSA Releases Guide to Combat BlackLotus Malware

• First AI advisory committee report stresses getting regulatory balance right

• NIST launches new working group to tackle AI risks

• Air taxis are taking off. Cities should start planning now

• Patched OpenSSH Exploited for IoT, Linux Cryptomining

• Ransomware and phishing attacks continue to plague businesses in Singapore

• Aussie PM says, “Shut down your phone every 24 hours for 5 mins” – but that’s not enough on its own

• Black Hat Asia 2023: Cybersecurity Maturity and Concern in Asia

• Et tu, Brute? From Coworker and Confidant to Cybercriminal

• Business Logic Attacks: Why Should You Care?

• A Year Since Dobbs, The Fight For Reproductive Privacy and Information Access Continues

• Congress needs ‘private sector buy-in’ to address cyber workforce shortage

• Another state signals its intent to leave the voter data system

• NSA Issues Guidance on Mitigating BlackLotus Bootkit Infections

• US Military Personnel Warned of Malicious Smartwatches

• Supply chain security for Go, Part 2: Compromised dependencies

• Russia-Aligned Hackers Trying to Disrupt Canada’s Energy Sector

• Student Sues Whiteworth University for Ransomware Attack

• OpenSSH Trojan Campaign Targets IoT and Linux Systems

• Inside the Dangerous Underground Abortion Pill Market Growing on Telegram

• Fortinet fixes critical FortiNAC RCE, install updates asap

• Wallarm API Abuse Prevention protects organizations against bot-based attacks

• Meta To Pull News On Facebook, Instagram In Canada

• NIST wants to help prevent cyberattacks on the water sector

• USB Drives Used as Trojan Horses By Camaro Dragon

• Cybercrime Group ‘Muddled Libra’ Targets BPO Sector with Advanced Social Engineering

• Digital-First Economy Has Transformed Role of CISO

• Steering Mobility Data to a Better Privacy Regime

• These are the most-loved Club stocks on Wall Street. Here’s where we stand

• 100K+ ChatGPT Login Credentials Leaked to the Dark Web

• Millions of GitHub repositories vulnerable to RepoJacking: Report

• Ransomware and phishing attacks continue to plague businesses in Southeast Asia

• CISA Tells US Agencies to Patch Exploited Roundcube, VMware Flaws

• In Other News: Microsoft Win32 App Isolation,Tsunami Hits Linux Servers, ChatGPT Credentials Exposed on Dark Web

• How to Maximize the Value of Penetration Tests

• UPS Data Harvested for SMS Phishing Attacks

• Microsoft’s Bootkit Patches Offer False Sense Of Security Against BlackLotus Threat, NSA Says

• JavaScript Dropper Delivers Bumblebee And IcedID Malware

• Why Is It So Rare To Hear About Western Cyber Attacks?

• GCHQ Warns Ransomware Crews Are Targeting Law Firms

• Report: U.S. Intelligence Gathers ‘Sensitive and Intimate’ Data From ‘Nearly Everyone’

• PoC exploit released for Cisco AnyConnect, Secure Client vulnerability (CVE-2023-20178)

• PAIG combats the unpredictability of generative AI

• Tanium strengthens threat identification capabilities and enhances endpoint reach

• Digital Espionage: German Intelligence Agency’s NFT Collection Sets New Recruitment Standards

• The Rate of Rorschach Ransomware is Increasing; Here’s How to Safeguard Yourself

• Easy Configuration Fixes Can Protect Your Server from Attack

• Think Your Secrets are Safe in their Vault? Think Again

• How Government Contractors & Agencies Should Navigate New Cyber Rules

• Why Successful Central Bank Digital Currencies require Partnership engagement

• 12 Benefits of a VPN: Advantages of Network Protection

• What Is SCM (Security Configuration Management)?

• BlackLotus bootkit patch may bring “false sense of security”, warns NSA

• VMware Patches Code Execution Vulnerabilities in vCenter Server

• Millions of Repos on GitHub Are Potentially Vulnerable to Hijacking

• Deception Technologies Have a Maturity Problem

• More than 1 in 3 UK&I workers are likely to click a phishing link

• API Security Is a Hot Topic, Here’s Why

• Celerium Compromise Defender detects and disrupts cyber compromise activity

• Microsoft Teams vulnerability allows attackers to deliver malware to employees

• McAfee releases online protection solution for small businesses

• UPS Discloses Data Breach Caused by an SMS Phishing Campaign

• UK cyberspies warn ransomware crews targeting law firms

• #InfosecurityEurope: BlackBerry Cybersecurity President Warns Against Heavy-Handed AI Regulation

• The Power of Browser Fingerprinting: Personalized UX, Fraud Detection, and Secure Logins

• 2.5M Genworth Policyholders and 769K Retired California Workers and Beneficiaries Affected by Hack

• Powerful JavaScript Dropper PindOS Distributes Bumblebee and IcedID Malware

• Aviatrix appoints Doug Merritt as Chairman, CEO, and President

• An Overview of the Different Versions of the Trigona Ransomware

• Inside the Illicit Market for Abortion Pills on Telegram

• The Importance of Training Employees in Cybersecurity

• Governmental Agencies Ordered by CISA to Patch Vulnerabilities Exploited by Russian APT Groups

• NSA Releases Guide to Combat Powerful BlackLotus Bootkit Targeting Windows Systems

• IoT devices and Linux-based systems targeted by OpenSSH trojan campaign

• NCSC Updates Cybersecurity Guidance for the Legal Sector

• Millions of GitHub Repositories Are Vulnerable To RepoJacking

• Microsoft Teams Vulnerability Let Attackers Deliver Malware From External Accounts

• Manchester University Breach Victims Hit with Triple Extortion

• Keep it schtum!

• FBI Analyst Gets Three Years For National Security Breach

• New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices

• More than a million GitHub repositories potentially vulnerable to RepoJacking

• Want your endpoint security product in the Microsoft Consumer Antivirus Providers for Windows?

• Silicon UK Pulse: Your Tech News Update: Episode 8

• Apple M1 Chips face LockBit Ransomware threat in development

• Can we get loan to pay ransom in ransomware attacks

• New infosec products of the week: June 23, 2023

• Operationalizing zero trust in the cloud

• Chinese malware intended to infect USB drives accidentally infects networked storage too

• Why Sucessful Central Bank Digital Currencies require Partnership enagement

• Law enforcement’s battle against Cryptocurrency crime

• Insurance companies neglect basic email security

• Security investments that help companies navigate the macroeconomic climate

• US cyber ambassador says China knows how to steal its way to dominance of cloud and AI

• What is XSS (Cross-Site Scripting)? – A Detailed Understanding Of the Type of XSS

• 2023-06-21 – 30 days of Formbook: Day 17, Wednesday 2023-06-21 – ModiLoader for XLoader “NVP4”

• Files for an ISC diary (obama271 Qakbot)

• 2023-06-22 – 30 days of Formbook: Day 18, Thursday 2023-06-22 – “K2L0”

• From details to big picture: how to improve security effectiveness

• Unveiling the Dark Side of AI: How Prompt Hacking Can Sabotage Your AI Systems

• Enhancing Customer Engagement with Client Portals

• 6 tips for a cybersecure honeymoon

• Reducing your attack surface is more effective than playing patch-a-mole

• Update now! Apple fixes three actively exploited vulnerabilities

• UPS warns customers of phishing attempts after data accessed

• Malwarebytes only vendor to win every MRG Effitas award in 2022 & 2023

• Mullvad VPN Introduces Mullvad Leta: A Privacy-Focused Search Engine

• Agentless Workload Scanning Gets Supercharged with Malware Scanning

• U.S.-China tech battle entering its ‘primetime’ — and generative A.I. could be the next frontier

• What is Dynamic Application Security Testing (DAST)?

• How to bypass CAPTCHAs online with Safari on iOS 16

• Job Seekers, Look Out for Job Scams

• To kill BlackLotus malware, patching is a good start, but…

• IT Security News Daily Summary 2023-06-22

• Dangerous driving, poorly designed roadways accelerate pedestrian traffic deaths

• Growing SaaS Usage Means Larger Attack Surface

• LockBit Developing Ransomware for Apple M1 Chips, Embedded Systems

• US ‘can’t PSA our way out’ of cyber vulnerability, CISA director says

• Australia gives Twitter legal notice to clean up online hate content

• Former Duo Security Co-Founder Jon Oberheide Joins DNSFilter Board of Directors

• Airgap Networks Acquires NetSpyGlass

• New Mirai botnet targets tens of flaws in popular IoT devices

• US Auto Insurance Price Comparison Site RateForce Leaks Massive PII Data

• Google Backs Creation of Cybersecurity Clinics With $20 Million Donation

• Tanium Platform Advances Threat Identification Capabilities and Enhances Endpoint Reach

• Sumsub Launches Advanced Deepfakes Detector

• Even With No Recession, Smaller Firms Aim to Consolidate Security Tools

• How to Implement a Secure API Gateway

• Will Hurd, former GOP lawmaker with tech expertise, announces White House bid

• Legacy tech could undermine zero trust push

• SMS Phishers Harvested Phone Numbers, Shipment Data from UPS Tracking Tool

• Louisiana bans TikTok on state networks and devices. Will it make any difference?

• Azure AD ‘Log in With Microsoft’ Authentication Bypass Affects Thousands

• TikTok COO Pappas Steps Down

• Apple patches zero days used in spyware attacks on Kaspersky

• What is a VLAN? Ultimate Guide to How VLANs Work

• How will AI affect workers? Tech waves of the past show how unpredictable the path can be

• S3 Ep140: So you think you know ransomware?

• An Overview of OffSec’s OSCE³ Certification: The Ultimate Achievement in Offensive Security

• Student Monitoring Tools Should Not Flag LGBTQ+ Keywords

• Now BlackCat extortionists threaten to leak stolen plastic surgery pics

• Twitter Is Top Platform For Online Hate, Says Australia

• Microsoft Warns of Stealthy Password Attacks Using Proxy Services

• California Public Employees’ Retirement System Compromised by MOVEit Hackers

• Cyberattackers Target the Latin American Health Care Sector

• NIST wants to help prevent a major cyberattack on the water sector

• MULTI#STORM Campaign Targets India and U.S. with Remote Access Trojans

• US Military Personnel Receiving Unsolicited, Suspicious Smartwatches

• #InfosecurityEurope: Experts Highlight Evolving Attack Techniques

• #InfosecurityEurope Case Study: Attack Surface Operations at Nationwide

• 5 Steps for Minimizing Dark Data Risk

• Threat Hunt: KillNet’s DDoS HEAD Flood Attacks – cc.py

• Threat Hunting Uncovered: Innovative Strategies for Cybersecurity

• VA official expects Oracle Cerner to deliver on $10B EHR contract despite layoffs

• Apple Addresses Exploited Security Flaws in iOS, macOS and Safari

• Patch Now: Cisco AnyConnect Bug Exploit Released in the Wild

• Google Cloud Awards $313,337 in 2022 VRP Prizes

• Optimizing Network Security for Administrators

• US Military Personnel Targeted by Unsolicited Smartwatches Linked to Data Breaches

• Big tech is actually doing all this with your personal data. True or false?

• #InfosecurityEurope: Drones Contain Over 156 Different Cyber Threats, Angoka Research Finds

• US Justice Department Launches New National Security Cyber Section

• Report: Facebook Isn’t Fully Reviewing Content Users Flag For Violating Its Rules

• 6 Attack Surfaces You Must Protect

• Researchers released a PoC exploit for CVE-2023-20178 flaw in Cisco AnyConnect Secure

• AI as Sensemaking for Public Comments

• NCSC warns all British Law firms against ransomware attacks

• Apple Violated NYC Store Workers Union Rights, Judge Rules

• Records agency to DHS: Look into your watchdog’s use of text messages

• This $6 USB condom can protect your data in the most unsuspecting places

• North Korean Hackers Caught Using Malware With Microphone Wiretapping Capabilities

• China-Linked APT15 Targets Foreign Ministries With ‘Graphican’ Backdoor

• RedEyes Group Targets Individuals with Wiretapping Malware

• IT Staff Increasingly Saddled With Data Protection Compliance

• USB Drives Spread Spyware as China’s Mustang Panda APT Goes Global

• PwC Caught in the Crossfire: Australian Fallout from Major Cyber Breach Deepens

• Exabeam appoints Adam Geller as CEO

• What Is CIAM?

• Data Collection: What are Some ‘Unlikable’ Traits in This Growing Trend?

• DevSecOps: Striking a Balance Between Speed and Security

• Check Point Harmony Email & Collaboration Recognized as MVP APAC by Pax8

• The next wave of cyber threats: Defending your company against cybercriminals empowered by generative AI

• Plan ahead to reduce cloud forensics challenges

• Twitter Sued Over Unpaid Staff Bonuses

• Can ChatGPT Detect Phishing Sites? – Researchers Answered

• First Directory of Virtual CISO Providers Launched by Cynomi

• Building a Robust Cloud Migration Framework: Security Considerations

• Get three years of a powerful VPN plus 30 days of anti-virus protection for $30

• #InfosecurityEurope: Industry Pros Urged to Advocate For Neuroinclusion

• #InfosecurityEurope: It’s Time to Think Creatively to Combat Skills Shortages

• Lessons From a Pen Tester: 3 Steps to Stay Safer

• Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware

• Alert: Million of GitHub Repositories Likely Vulnerable to RepoJacking Attack

• Generative-AI apps & ChatGPT: Potential risks and mitigation strategies

• Norton parent firm Gen Digital, was victim of a MOVEit ransomware attack too

• vCISO Directory helps SMBs manage their cybersecurity

• Threat Actors Claim International Finance Corporation (IFC) Attack

• North Korean APT37 Exploits New FadeStealer Malware

• Mastering the Art of Playing in Crypto Casinos

• Critical WordPress Plugin Vulnerabilities

• Crimeware-as-a-Service on the Rise; Here’s How to Protect Yourself

• Can ChatGPT Detect Phishing Sites? Researchers Answered

• Stealthy USB: New versions of Chinese espionage malware propagating through USB devices found by Check Point Research

• The Benefits of Red Zone Threat Intelligence

• PoC Exploit Published for Cisco AnyConnect Secure Vulnerability

• #InfosecurityEurope: Dunelm Shifts Security to the Edge

• #InfosecurityEurope: Hackers Are the Immune System of the Digital Age

• Enterprise DevOps: Importance and Key Benefits You Need to Know

• 2 More Apple Zero-Days Exploited in Ongoing iOS Spy Campaign

• Apple Squashes Kernel Bug Used By TriangleDB Spyware

• Japan’s Digital ID Card Gets Emergency Review Amid Data Leaks

• North Korean APT Targets Defectors, Activists With Infostealer Malware

• Bipartisan Bill Proposes Cybersecurity Funds For Rural Water Systems

• API Security Testing: Importance, Risks, and Test Cases

• Massive Data Breach: Over 100,000 ChatGPT Accounts Stolen via Info-Stealing Malware

• Microsoft warns of rising NOBELIUM credential attacks on defence sector

• Former FBI Analyst Sentenced for Keeping Hundreds of National Defense Documents

• Bipartisan Bill Proposes Cybersecurity Funds for Rural Water Systems

• Unveiling the Unseen: Identifying Data Exfiltration with Machine Learning

• EU Now Wants Smartphones to Feature Replaceable Batteries

• Apple fixes zero-day vulnerabilities used to covertly deliver spyware (CVE-2023-32435)

• 1-15 May 2023 Cyber Attacks Timeline

• New Exploit Unleashed for Cisco AnyConnect Bug Granting SYSTEM Privileges

• Intel Restructures Manufacturing Business, Shares Slide

• Critical Flaw Found in WordPress Plugin for WooCommerce Used by 30,000 Websites

• Apple addressed actively exploited zero-day flaws in iOS, macOS, and Safari

• RedClouds APT Deploys RDStealer Against Remote Desktop

• Elon Musk Challenges Mark Zuckerberg To Cage Fight. Zuck Accepts

• #InfosecurityEurope: Angoka Named UK’s Most Innovative Cyber SME of 2023

• Docs Show FBI Pressures Cops to Keep Phone Surveillance Secrets

• Forcepoint DLP Product Review

• DoNot APT Target Android Users With Spyware Via Fake Apps

• Hackers Can Extract Cryptographic Keys Via Device’s Power LED Videos

• Norton Parent Ransomware Attack

• Maltego: Check how exposed you are online

• LockBit Green and phishing that targets organizations

• Cato Networks Recognized as Global Security Service Edge (SSE) Leader

• Apple Responds Swiftly to Active Security Threats with iOS 16.5.1 Update

• Navigating the Cyber Threat Landscape: Key Insights from Trellix ARC’s Q1 2023 Report

• New survey: 50% of Europeans do not know how to recognise fake news

• The Log4j vulnerability – how can we all do better next time?

• #InfosecurityEurope: Internet of Things Continues to Pose Security Risk

• Analyzing the TriangleDB implant used in Operation Triangulation

• Do you know what your supply chain is and if it is secure?

• Silicon Insights: The Evolution of Account Based Marketing: Part 2

• Zero-Day Alert: Apple Releases Patches for Actively Exploited Flaws in iOS, macOS, and Safari

• Preventing Attacks and Securing the Supply Chain in the Security Software Industry

• List of victimized companies of MOVEit Cyber Attack

• Using social media as a tool to share knowledge on day-to-day Cybersecurity risks

• Hackers Attack Linux SSH Servers with Tsunami DDoS Malware

• Photos: Infosecurity Europe 2023, part 3

• ChatGPT shows promise in detecting phishing sites

• 1Password adds Telemetry to its password manager, but it is opt-in, sort of

• Cloud-native security hinges on open source

• Japan’s digital ID card gets emergency review amid data leaks

• Unraveling the multifaceted threats facing telecom companies

• Understanding the interplay between DevOps productivity and security

• Xerosploit – Pentesting Toolkit to Perform MITM, Spoofing, Sniffing & DOS Attacks

• Increased spending doesn’t translate to improved cybersecurity posture

• A clash of titans

• Apple patch fixes zero-day kernel hole reported by Kaspersky – update now!

• Ironscales Adds AI Assistant to Suss Out Phishing Attempts

• DNA testing company failed to protect sensitive genetic and health data, says FTC

• Ransomware attackers email bemused students as leverage for a payout

• A (cautionary) tale of two patched bugs, both exploited in the wild

• A (cautionary) tale of two patched bugs, both being exploited in the wild

• New DDoS Botnet ‘Condi’ Targets Vulnerable TP-Link AX21 Routers

• FIRST Announces CVSS v4.0 Public Preview

• RHEL confidential virtual machines on Azure: A technical deep dive

• Vulnerability Summary for the Week of June 12, 2023

• 20-Year-Old Chinese APT15 Finds New Life in Foreign Ministry Attacks

• CFPB looks to existing law to regulate workplace surveillance tech

• Schumer says ‘don’t count Congress out’ when it comes to regulating AI

• New DoJ Cyber Prosecution Team Will Go After Nation-State Threat Actors

• 20 Year-Old Chinese APT15 Finds New Life in Foreign Ministry Attacks

• IT Security News Daily Summary 2023-06-21

• House panel zeros out TMF funding for 2024 fiscal year

• How a data-centric approach can lift agencies above the cybersecurity poverty line

• Apple just released iOS 16.5.1 with security fixes

• Ransomware Misconceptions Abound, to the Benefit of Attackers

• Avast, Norton Parent Latest Victim of MOVEit Ransomware Attacks

• New DOJ Cyber Prosecution Team Will Go After Nation-State Threat Actors

• Bias, privacy among governments’ generative AI headaches

• The best security cameras of 2023

• Remote work and the cloud create new endpoint security challenges

• #InfosecurityEurope: From Passion to Profession, Becky Pinkard’s Dedication to Cybersecurity

• Ransomware Misconceptions Abound, To the Benefit of Attackers

• Apple squashes kernel bug used by TriangleDB spyware

• 5 Benefits Of SIEM To The Cybersecurity Of Any Business

• Apple Patches iOS Flaws Used in Kaspersky ‘Operation Triangulation’

• Russia-linked APT28 hacked Roundcube email servers of Ukrainian entities

• Researcher Identifies Popular Swing VPN Android App as DDoS Botnet

• FTC accuses DNA testing company of lying about dumping samples

• Keep Job Scams From Hurting Your Organization

• Researchers Devise New EMFI Attack Leading To Drone Takeover

• There’s something DHS can do to help civilian agencies fight cyberattacks

• Beware bad passwords as attackers co-opt Linux servers into cybercrime

• Why Malware Crypting Services Deserve More Scrutiny

• Linux Patch Management: Tools, Issues & Best Practices

• What Happens When You Type a URL Into Your Browser?

• Critical VMware Aria Operations bug under active exploitation

• Emerging Ransomware Group 8Base Doxxes SMBs Globally

• SMB Edge Devices Walloped With Asus, Zyxel Patch Warnings

• Google Files FTC Cloud Complaint Against Microsoft

• Hiding in plain site: Women are part of ‘invisible’ labor market building Maine’s fiber networks

• Australia plans to mandate file scanning for all tech companies

• #InfosecurityEurope Hall of Fame: Becky Pinkard, Managing Director of Global Cyber Operations, Barclays

• Ethical Problems in Computer Security

• Google accuses Microsoft of unfair practices in Azure cloud unit

• When homes flood, who retreats and to where?

• Cooperation or Competition? China’s Security Industry Sees the US, Not AI, as the Bigger Threat

• CISOs’ New Stressors Brought on by Digitalization: Report

• Google accuses Microsoft of anticompetitive practices in Azure cloud unit

• Who’s responsible for securing the open-source software organizations used to build all applications?

• Zero Trust: The Key to a Hybrid Workforce

• Justice Department launches new unit to combat cyber threats

• ‘Muddled Libra’ Uses Oktapus-Related Smishing to Target Outsourcing Firms

• FTC Sues Amazon For ‘Duping’ Customers With Prime Subscriptions

• Military Satellite Access Sold on Russian Hacker Forum for $15,000

• #InfosecurityEurope: Cybersecurity Industry Still Fighting to Recruit and Retain Talent

• Cyberattacks on OT, ICS Lay Groundwork for Kinetic Warfare

• ScarCruft Hackers Exploit Ably Service for Stealthy Wiretapping Attacks

• Exabeam launches Outcomes Navigator to help organizations detect security threats

• Cloudflare joins forces with Databricks to enable organizations collaborate on live data

• Toward a more resilient SOC: the power of machine learning

• How can small businesses ensure Cybersecurity?

• Enphase Ignores CISA Request to Fix Remotely Exploitable Flaws

• Kaspersky Dissects Spyware Used in iOS Zero-Click Attacks

• Critical WordPress Plugin Vulnerabilities Impact Thousands of Sites

• Supply Chain and APIs Top Security Concerns, CISO Survey Shows

• New Condi DDoS botnet targets TP-Link Wi-Fi routers

• Progress Software Hit With Class Action Suit Over MOVEit Hack

• Oreo Cookie Maker Says Crooks Gobbled Up Staff Info

• Reddit Confirms BlackCat Gang Pinched Some Data

• Now Patched VMware Zero-Day Bug Exploited In Wild

• Government Agencies are Compromised by Russian Ransomware

• US DoJ creates a litigation section dedicated to Cybersecurity

• How to earn money using AI based ChatGPT

• Setting Up iPhone For Child Safety: Essential Parental Controls And Restrictions

• AI could shore up democracy—Here’s one way

• Security Researchers Uncover New Spyware Implant TriangleDB

• OffSec Guide: The OSCE³ Certification

• An Overview of OffSec’s OSCE³ Certification: The Ultimate Achievement in offensive security

• Chinese Hackers APT15 Use New Backdoor Malware to Target American Ministries

• Microsoft looks to speed up materials science research with quantum-compatible system

• phishing

• Cool, Aesthetic, Good & Unique Twitter Username – Stand Out in Style

• Delhi Police, FBI & Interpol in a Joint Operation Expose a Cybercrime Syndicate, Arrested Four

• School Kids are Stealing NFTs Worth Millions of Dollars to Purchase Roblox Skins

• How Generative AI is Creating New Classes of Security Threats

• Amazon Faces Senate Warehouse Safety Investigation

• Elon Musk Touts Significant India Investment By Tesla

• Habu announces AWS Clean Rooms solution for democratized data collaboration

• Patch Alert! Critical Command Injection Flaw Discovered in NAS Devices

• Windows Patch Management: Definition, How It Works and Why It Helps

• Paying Ransomware’s Ransom: Why it’s Time to Reconsider

• Going on vacation soon? Stay one step ahead of travel scammers

• DOJ Launches Cyber Unit to Prosecute Nation-State Threat Actors

• CISO Conversations: Three Leading CISOs From the Payment Industry

• “The Ransomware Documentary” – brand new video series from Sophos starting now!

• #InfosecurityEurope: Compliance Does Not Mean Security, Experts Warn

• Placing People & Realism at the Center of Your Cybersecurity Strategy

• New Report Exposes Operation Triangulation’s Spyware Implant Targeting iOS Devices

• Stealthy SMS Side-Channel Attack Exposes SMS Recipient Location

• AI Threats Today: The Unseen Challenges in Our Automated World

• Building Web Applications With .NET: Best Practices and Techniques

• #InfosecurityEurope: Security Training Failures Impacting Digital Transformation

• Critical ‘nOAuth’ Flaw in Microsoft Azure AD Enabled Complete Account Takeover

• Startup Security Tactics: Friction Surveys

• Training in Spanish for cyber security pros

• Orca Security expands partnership with Google Cloud to secure enterprise cloud estates

• #InfosecurityEurope: Transparency and Context Key to Insider Risk Management

• React Native vs Native: Which one is better?

• Real-World Cyberattacks Targeting Data Science Tools

• IRS direct file is a free and easy option for taxpayers from historically marginalized communities

• Chrome and Its Vulnerabilities – Is the Web Browser Safe to Use?

• The Quintessential Toolkit: Five Essential Skills for Advancing in the Cybersecurity Realm

• Island integrates DLP capabilities for ChatGPT, Bard, and other AI

• APIs Under Attack: How To Prepare for and Respond to Breaches

• Chinese Hacker Group ‘Flea’ Targets American Ministries with Graphican Backdoor

• From Offline To Online: Integrating QR Codes Into Your Instagram Marketing Strategy

• #InfosecurityEurope: One in Three UK&I Workers Susceptible to Phishing

• President Biden Meets AI Experts, Warns Of Risks

• Top Considerations for Securing AWS Lambda, part 3

• May ransomware activity rises behind 8base, LockBit gangs

• How the Most Popular Cars in the US Track Drivers

• How to create SBOMs for container images

• Compromised ChatGPT accounts garner rapid dark web popularity

• Photos: Infosecurity Europe 2023, part 2

• Infosecurity Europe 2023 video walkthrough

• VMware Aria Operations for Networks vulnerability exploited in the wild (CVE-2023-20887)

• Strengthening Cybersecurity Defenses: Cyber Assessment Framework

• Gaps in Azure Service Fabric’s Security Call for User Vigilance

• Over 100K+ Compromised ChatGPT Accounts on Dark Web Marketplaces

• Insider Risk Hits Closer to Home

• PCI DSS 4.0 Requirements – Restrict Access, Identify Users and Authenticate Access

• #InfosecurityEurope: Financial Firms to Build Resilience in Face of Growing Cyber-Threats

• Dissecting TriangleDB, a Triangulation spyware implant

• DoJ Creates Cyber Unit, Amid Growing National Security Focus

• Network security policy

• #InfosecurityEurope: Does Pentesting Need a New Service Model?

• #InfosecurityEurope: Why API Security Could Be the Next Big Thing in Cyber

• Linux Servers Hacked to Launch DDoS Attacks and Mine Monero Cryptocurrency

• Purely AI-generated songs declared ineligible for Grammy Awards

• Google’s $200 metal Pixel Watch band is very premium, very expensive

• Thousands of realistic but fake AI child sex images found online, report says

• How to Find the Titanic Sub Before It’s Too Late

• Virus definition updates for Avast version 9/10/11 end in summer 2023

• Hiring kit: GDPR data protection compliance officer

• Alert! Hackers Exploiting Critical Vulnerability in VMware’s Aria Operations Networks

• New Condi Malware Hijacking TP-Link Wi-Fi Routers for DDoS Botnet Attacks

• Best Methods to Know Who Viewed Your Facebook Profile – Alternatives You Need to Know About

• Phishing Tools for Purchase: A Closer Look at Facebook Scamming Groups

• #InfosecurityEurope: Security Training Needs to Nudge, Not Nag

• How to Login to Godaddy Account – Three Popular Methods

• Why performing security testing on your products and systems is a good idea

• 100,000 Stolen ChatGPT Account Credentials Found on Dark Web

• Hackers Attacks on Websites Developed by a Specific Website Development Company

• Critical RCE flaw CVE-2023-20887 in VMware vRealize exploited in the wild

• DDoS Attack Hits European Investment Bank – Websites Unavailable

• Azure AD アプリケーションにおける特権昇格の潜在的なリスクについて

• Asus releases firmware updates for routers to address critical security issues

• What is NFV

• Rise of AI in Cybercrime: How ChatGPT is revolutionizing ransomware attacks and what your business can do

• Biden Discusses Risks and Promises of Artificial Intelligence With Tech Leaders in San Francisco

• Organizations actively embrace zero trust, integration remains a hurdle

• NOS chooses Censys to monitor its attack surface

• Getting ahead of cyberattacks with a DevSecOps approach to web application security

• VMware Confirms Live Exploits Hitting Just-Patched Security Flaw

• Overcoming Challenges in Delivering Machine Learning Models from Research to Production

• Unraveling an AI Scam with AI

• Black Cat ransomware group wants $4.5m from Reddit or will leak stolen files

• Baby monitor safety: What you need to know

• Update now! ASUS fixes nine security flaws

• Why businesses need a disinformation defense plan, with Lisa Kaplan: Lock and Code S04E13

• 2023-06-17 – 30 days of Formbook: Day 13, Saturday 2023-06-17 – “MR04”

• 2023-06-18 – 30 days of Formbook: Day 14, Sunday 2023-06-18 – “JY05”

• 2023-06-19 – 30 days of Formbook: Day 15, Monday 2023-06-19 – “CE18”

• 2023-06-20 – 30 days of Formbook: Day 16, Tuesday 2023-06-20 – “F1W6”

• 3CX data exposed, third-party to blame

• DOJ launches cyber unit with national security focus as China, Russia threats mount

• An Analyst View of Gartner Security & Risk Management Summit 2023

• IT Security News Daily Summary 2023-06-20

• Passwords out, passkeys in: are you ready to make the switch?

• Netskope Enables Secure Enterprise Use of ChatGPT and Generative AI Applications

• Cymulate Announces Security Analytics for Continuous Threat Exposure Management

• eSentire’s AI Investigator Chatbot Aids Human Response to Security Incidents

• Vacant White House cyber post draws concern amid global software breach

• Mayors: There’s a mental health crisis in every city

• Oreo cookie maker says crooks gobbled up staff info

• Jordanian Cyber Leaders Kick Off Cybersecurity Framework Development

• 100K+ Infected Devices Leak ChatGPT Accounts to the Dark Web

• NineID Raises $2.6M to Build a Secure Bridge Between the Digital and Physical Worlds of Corporate Security

• New Tsunami botnet targets Linux SSH servers

• Modern Access Control Explained

• How to Get Started With Istio in Kubernetes in 5 Steps

• Bipartisan bill proposes blue-ribbon panel to address AI risks, regulations

• Researchers Flag Account Takeover Flaw in Microsoft Azure AD OAuth Apps

• Going On the Defensive: Turning the Tide on The Cybersecurity Vulnerabilities Of Smart Home Devices With Value-Added Services

• Communicating Cyber Risk

• Data Governance – Data Privacy and Security – Part 1

• Researchers Expose New Severe Flaws in Wago and Schneider Electric OT Products

• Passwordless security gains ground for authentication

• Fresh Ransomware Gangs Emerge As Market Leaders Decline

• BlackCat Ransomware Group Claims to Have Stolen 80GB of Data from Reddit

• Reddit confirms BlackCat gang pinched some data

• Choosing the Right Functions in C Programming: Strcpy vs. Strncpy

• 5 ways generative AI will help bring greater precision to cybersecurity

• AI could shore up democracy – here’s one way

• FEMA’s buyout program reduces flood risk. But does it deepen segregation?

• Okta moves passkeys to cloud, allowing multi-device authentication

• Reddit Braces for Data Leak as Hackers Threaten to Expose Stolen Information

• Microsoft Acknowledges Hacking Incident Targeting Outlook and OneDrive in June

• Largest US Publisher Sues Google Over Online Ad Monopoly

• Animal movement powers new GPS wildlife tracker

• Schneider Power Meter Vulnerability Opens Door to Power Outages

• IRONSCALES boosts email security with generative AI capabilities

• eSentire AI Investigator provides real-time answers to security data queries

• Blockchain security: Everything you should know for safe use

• Implement zero trust to improve API security

• #InfosecurityEurope: Certifications Are No Guarantee of Security

• Mysterious Mystic Stealer Spreads Like Wildfire in Mere Months

• Hackers Threatened to Leak 80GB of Data Allegedly Stolen From Reddit in February

• All Veterans Affairs police officers to be issued bodycams, dashcams by end of 2023

• Norton Parent Says Employee Data Stolen in MOVEit Ransomware Attack

• Russian APT Group Caught Hacking Roundcube Email Servers

• ASUS warns router customers: Patch now, or block all inbound requests

• #InfosecurityEurope: Certifications are no guarantee of security

• Hackers Will Be Quick to Bypass Gmail’s Blue Check Verification System

• Protect and manage browser extensions using Chrome Browser Cloud Management

• 100,000 Hacked ChatGPT Accounts Discovered on Dark Web

• #InfosecurityEurope: Digital Dependence Means Government and Industry Must Bolster Collaboration

• Smart Pet Feeders Expose Personal Data

• CYE Hyver enhancements empower organizations with real-time risk analysis module

• Next DLP Scoped Investigations separates employee identity from their behavioral data

• Biden hosts an AI Forum in San Francisco

• Next-Generation Firewalls: A comprehensive guide for network security modernization

• Digital dumpster diving: Exploring the intricacies of recycle bin forensics

• Suzuki Agrees To Make “Flying Cars” With SkyDrive

• Megaupload Developers Plead Guilty to Avoid US Extradition

• Majority of Users Neglect Best Password Practices: Keeper Security

• Securing the Secure: The Importance of Secure Software Practices in Security Software Development

• Join Our #BetheResource – Torches Challenge 2023

• Potential Risk of Privilege Escalation in Azure AD Applications

• Biden to meet with AI experts to talk regulation and safety

• New ‘RDStealer’ Malware Targets RDP Connections

• OT:Icefall: Vulnerabilities Identified in Wago Controllers

• Over 100,000 ChatGPT Accounts Found in Dark Web Marketplaces

• ExaGrid Version 6.3 guards customers against external threats

• Photos: Infosecurity Europe 2023

• Orange Business, Orange Cyberdefense and Palo Alto Networks improve security for enterprises

• Cymulate Exposure Analytics provides users with an attacker’s view of their cyber resilience

• Google Seeks To Move Some Pixel Production To India

• #InfosecurityEurope: CISOs Must Be Better Marketers and Negotiators

• Zyxel addressed critical flaw CVE-2023-27992 in NAS Devices

• One Overlooked Element of Executive Safety: Data Privacy

• As Data Gravity Goes Up, are Clouds Becoming Black Holes?

• Attackers discovering exposed cloud assets within minutes

• Facebook Rolls Back Controversial Misinformation Rules

• Adobe’s $20bn Deal For Figma At Risk From EU Regulators – Report

• PCI compliance

• #InfosecurityEurope: How to Weather the Coming Cybersecurity Storm

• Rorschach Ransomware: What You Need to Know

• We Can’t Do It Alone: Sharing Threat Intelligence Makes Everyone Safer

• Edgescan EASM allows organizations to secure their critical assets and applications

• Black Kite releases two modeling solutions for ransomware and business interruption scenarios

• Info Stealing Malware Dropped via Only Fans

• Progress Software Advises MOVEit Customers to Patch Third Severe Vulnerability

• #InfosecurityEurope: Michael Johnson Reminds Security Pros Where Success Comes from

• #InfosecurityEurope: ThriveDX Launches Cyber Academy for Enterprise to Address Skills Shortages

• Data Leak At Law Firm Sets Australia’s Elites Scrambling

• Over 100,000 ChatGPT Accounts Found For Sale On Dark Web

• Hacktivist Group Anonymous Sudan A Bear In Wolf’s Clothing

• Pentagon’s Secret Service: Monitoring Social Media for Criticism of Generals

• Microsoft: Disruptions in Outlook, Cloud Platform Services Were Caused by a Cyberattack

• Understanding Blockchain: The Network of Networks

• Massive Data Breach: Clop Ransomware Gang Targets MOVEit Transfer, Millions of Driver’s Licenses at Risk

• #InfosecurityEurope: Ironscales Launches GPT-Powered Chat Assistant for Self-Service Threat Reporting

• Zyxel Releases Urgent Security Updates for Critical Vulnerability in NAS Devices

• How to Solve “Tap to Load” Problem on Snapchat – Troubleshooting Tips

• The Reddit Files: Hackers Demand $4.5M Ransom and API Access Waiver

• Helping production agencies deliver

• One overlooked element of executive safety: Data privacy

• Australian Government Says Its Data Was Stolen in Law Firm Ransomware Attack

• Fulfilling Expected SEC Requirements for Cybersecurity Expertise at Board Level

• How Much Does Penetration Testing Cost? 11 Pricing Factors

• Experts Uncover Year-Long Cyber Attack on IT Firm Utilizing Custom Malware RDStealer

• SaaS in the Real World: How Global Food Chains Can Secure Their Digital Dish

• Enterprises Planning Expansion Worry Over Connectivity, Expereo Finds

• Kafka: Navigating GDPR Compliance

• Tackling Data Sovereignty with DDR

• Understanding Cyber Resilience: Building a Holistic Approach to Cybersecurity

• Compromised Linux SSH servers engage in DDoS attacks, cryptomining

• Malwarebytes launches Reseller Partner Program to drive partner profitability

• Netskope Intelligent SSE helps enterprises securely manage employee use of generative AI apps

• Silobreaker unveils new geopolitical threat intelligence capabilities With RANE

• Why Businesses Should Consider Implementing Proxy Servers for Enhanced Security

• Supply Chain Attack: Abandoned S3 Buckets Used for Malicious Payloads

• The Benefits of Paying More Than the Minimum on Credit

• New CA/B Forum Code Signing Requirements in Effect – Is Your Organization Compliant?

• Over 100,000 compromised ChatGPT accounts found for sale on dark web

• Terra Co-Founder Do Kwon Prison Sentence

• Sign in to Leak Your Credentials – Attackers Abusing Legitimate Services

• ASUS Releases Patches to Fix Critical Security Bugs Impacting Multiple Router Models

• A bowl full of security problems: Examining the vulnerabilities of smart pet feeders

• Zyxel patches critical vulnerability in NAS devices (CVE-2023-27992)

• 2023 Zero Trust Security Report Highlights

• The Real Value-Add of Red Teaming

• VirusTotal += Docguard

• Understanding the Microsoft Teams Vulnerability: The GIFShell Attack

• #InfosecurityEurope: Netskope Sets Out to Help Enterprises Safely Use ChatGPT

• Over 100,000 Stolen ChatGPT Account Credentials Sold on Dark Web Marketplaces

• ASUS addressed critical flaws in some router models

• 4 Tips for Cultivating a Healthy Work Environment for Your Employees

• Need to improve the detection capabilities in your security products?

• Understanding and Mitigating the MOVEit Incidents

• UK set to ramp up citizen surveillance program

• Hackers Are Actively Using New Mystic Stealer Malware in Cyber Attacks

• Cyber Attack on European Investment Bank and Redditt

• Rogue Android Apps Target Pakistani Individuals in Sophisticated Espionage Campaign

• Data leak at major law firm sets Australia’s government and elites scrambling

• 10 open-source recon tools worth your time

• ChatGPT and data protection laws: Compliance challenges for businesses

• The significance of CIS Control mapping in the 2023 Verizon DBIR

• What if the browser was designed for the enterprise?

• Demand for STEM training skyrockets

• The future of passwords and authentication

• The Need for Innovation in DFIR

• GraphQL vs gRPC: Which One Creates More Secure APIs?

• Decrypting Cyber Risk Quantification

• A week in security (June 12 – 18)

• Phishing scam takes $950k from DoorDash drivers

• US dangles $10 million reward for information about Cl0p ransomware gang

• VPN for Privacy: Shielding Your Online Activities from Prying Eyes

• Valence Revolutionizes SaaS Security with AI

• Hackers Threaten to Release Reddit Data Unless API Changes Are Rolled Back

• IT Security News Daily Summary 2023-06-19

• Asus Patches Highly Critical WiFi Router Flaws

• Experts found components of a complex toolkit employed in macOS attacks

• Unlocking the Secrets of Smooth Domain Transfers: A Step-by-Step Guide

• These are the most hacked passwords. Is yours on the list?

• Cloud security leader Zscaler bets on generative AI as future of zero trust

• The best home security systems of 2023

• Fortinet Quietly Patched Pre-Auth RCE Flaw In Fortigate Firmware

• Stripe Payment Gateway Plugin Patched Serious IDOR Flaw

• New Skuld Malware Targets Windows To Steal Data

• New GravityRAT Android Malware Variant Steals WhatsApp Backups

• This Side-Channel Attack Exploits SMS Delivery Reports To Retrieve Location

• Data Breach at New BreachForums: 4,000 members’ data leaked

• 2023-06-17 – 30 days of Formbook: Day 13, Thursday 2023-06-17 – “MR04”

• 2023-06-18 – 30 days of Formbook: Day 14, Thursday 2023-06-18 – “JY05”

• 2023-06-19 – 30 days of Formbook: Day 15, Thursday 2023-06-19 – “CE18”

• Microsoft: DDoS attacks caused M365, Azure disruptions

• Megaupload duo will go to prison at last, but Kim Dotcom fights on…

• The best VPN services for iPhone and iPad in 2023

• Best VPN for streaming TV and movies in 2023

• New Information Stealer ‘Mystic Stealer’ Rising to Fame

• Consumer Data: The Risk and Reward for Manufacturing Companies

• CIOp Attacks: Ransomware Group Reveal Names of the MOVEit Zero-Day Attack Victims

• Mastering Proactive Defense: The Changing Face of Threat Hunting

• #InfosecurityEurope: Asset Visibility Gaps Jeopardize Security Compliance in NHS Trusts, Report Finds

• Law enforcement’s battle against Cryptocurrency crime

• Secure Coding Best Practices

• ESET PROTECT Elite protects users against ransomware and zero-day threats

• How to make sure the reputation of your products and company is good

• Breached credentials of UK top universities available on dark web

• Binance Issues Cease-And-Desist Notice To ‘Binance Nigeria’

• New Mystic Stealer Malware Targets 40 Web Browsers and 70 Browser Extensions

• The US Navy, NATO, And NASA Are Using A Shady Chinese Company’s Encryption Chips

• MOVEit Customers Urged To Patch Third Critical Vulnerability

• Bill Allowing CISA To Assist Foreign Governments Passes Senate Committee

• Abandoned S3 Bucket Used To Launch Malicious Payloads

• Microsoft Admits DDoS As Cause Of Recent Cloud Outages

• New Stealer Malware on the Rise: Mystic Stealer

• 73% of consumers trust what generative AI wants us to see

• Keep it, Tweak it, Trash it – What to do with Aging Tech in an Era of Consolidation

• Ransomware Gang Takes Credit for February Reddit Hack

• Akeyless Launches SaaS-based External Secrets Manager

• Western Digital Blocks Unpatched Devices From Cloud Services

• EU member states are urged to restrict without delay 5G equipment from risky suppliers

• iStorage launches datAshur PRO+C with Type-C USB interface

• Guess what happened to this US agency using outdated software?

• Cybersecurity Must Adopt a New Approach to Combat Underground Cybercrime Activities

• Vulnerability Management in DevSecOps

• Get 408 hours of cybersecurity training with this $80 bundle

• US Department of Energy Receives Dual Ransom Demands Amidst Expanding MOVEit Hack Fallout

• Name That Toon: Time to Spare?

• Researchers Discover New Sophisticated Toolkit Targeting Apple macOS Systems

• PHP Hosting Explained ─ A Comprehensive Guide for Beginners

• Eve, Blade Team Up For Electric Flights In Europe

• ‘Sign in to continue’ and suffer : Attackers abusing legitimate services for credential theft

• Watch on Demand: 2023 CISO Forum Sessions

• IBM expands collaboration with Adobe to help users navigate the complex generative AI landscape

• Oil Industry Giant Shell Under Siege: Clop Group’s Ransomware Attack Exposes Vulnerabilities

• A History of Ransomware and the Cybersecurity Ecosystem

• Decoding Identity and Access Management For Organizations and Consumers

• US Investors Sniffing Around Blacklisted NSO Group Assets

• Generative AI Has Its Risks, But the Sky Isn’t Falling

• Intel Reaches Deal With Germany Over Magdeburg Chip Plant

• Introducing AI-guided Remediation for IaC Security / KICS

• Fighting Fire with Fire: Combatting LLM-Generated Social Engineering Attacks With LLMs

• Jaguar Land Rover Looks To AI To Secure Supply Chain

• Microsoft Discloses DDoS Attack Impact with Limited Details

• Microsoft confirms DDoS attacks against M365, Azure Portal

• A third MOVEit vulnerability fixed, Cl0p lists victim organizations (CVE-2023-35708)

• Android GravityRAT Spyware Steals WhatsApp Backup Files

• MOVEit Customers Urged to Patch Third Critical Vulnerability

• Microsoft Confirms Hacking of Outlook & OneDrive – Layer 7 DDoS Attacks

• Power LED Side-Channel Attack

• Jack Ma Meets With Students In Japan, China

• Foxconn Boss Discusses iPhone Plant Chaos, EV Plans

• Intel Invests $25bn In Israel Chip Plant

• SBOM Security: Fundamentals and Best Practices

• State-Backed Hackers Employ Advanced Methods to Target Middle Eastern and African Governments

• Importance Of Phone Validation For Businesses: Ensuring Accurate Customer Data

• How to Protect Against the Four Largest Cybersecurity Threats to Your Supply Chain

• US Offers $10m Reward For MOVEit Attackers

• Microsoft Blames Massive DDoS Attack for Azure, Outlook, and OneDrive Disruptions

• Inside of the WASP’s nest: deep dive into PyPI-hosted malware

• Millions of UK University Credentials Found on Dark Web

• Diicot cybercrime gang expands its attack capabilities

• Outsource to infill on cyber security

• UK Pledges Millions in Cyber-Defense Aid to Ukraine

• Software developers, how secure is your software?

• With dead-time dump, Microsoft revealed DDoS as cause of recent cloud outages

• Singapore is not looking to regulate A.I. just yet, says the city-state’s authority

• Get a $10m reward for information about Clop Ransomware Gang

• Enhancing Cybersecurity through Effective Cybersecurity Intelligence

• How to simplify the process of compliance with U.S. Executive Order 14028

• Goodbyes are difficult, IT offboarding processes make them harder

• Three cybersecurity actions that make a difference

• Exploring the role of AI in cybersecurity

• 10 Best Vulnerability Scanner Tools For Penetration Testing – 2023

• Untangling the web of supply chain security with Tony Turner

• Is ChatGPT Ready to Disrupt Cybersecurity?

• With dead-time dump, Microsoft revealed DDoS as cause of cloud outages

• Soap2day Shuts Down Permanently – Free Legal and Paid Alternatives

• Microsoft: June Outlook and cloud platform outages were caused by DDoS

• IT Security News Weekly Summary – Week 24

• IT Security News Daily Summary 2023-06-18

• Reddit Files: BlackCat/ALPHV ransomware gang claims to have stolen 80GB of data from Reddit

• How generative AI is creating new classes of security threats

• Companies Targeted by Clop Ransomware Gang Face Extortion of Stolen Data

• Ransomware Actors are Using Crypto Mining Pools to Launder Money

• Beware of Fake ChatGPT Apps: Android Users at Risk

• Ikigai: MIT-based AI Apps Startup is set to Alleviate Supply Chain Attacks with Advanced Cybersecurity

• US govt offers $10 million bounty for info linking Clop ransomware gang to a foreign government.

• MIT Startup Harnesses AI Technology to Safeguard Global Supply Chains Against Cyberattacks

• US Government Confirms Federal Agencies Affected by MOVEit Breach, Hackers Expand List of Victims

• Microsoft Says Early June Disruptions to Outlook, Cloud Platform, Were Cyberattacks

• Humans Aren’t Mentally Ready for an AI-Saturated ‘Post-Truth World’

• Week in review: Fortinet patches pre-auth RCE, Switzerland under cyberattack

• Cyber Security Management System (CSMS) for the Automotive Industry

• Cloud Penetration Testing Checklist – 2023

• How Does GDPR Impact the App Development Workflow?

• Virtualization Security Risks and Solutions

• Security Affairs newsletter Round 424 by Pierluigi Paganini – International edition

Generated on 2023-06-25 23:59:19.201067