IT Security News Daily Summary 2022-08-15

• DEF CON 30: Hackers Come Home to Vibrant Community

• Best SIEM Tools & Software for 2022

• CI/CD Pipeline is Major Software Supply Chain Risk: Black Hat Researchers

• Thoughts on the Mar-a-Lago Search and the President’s Classification and Declassification Authority

• EFF & ACLU Brief: SFPD Violated Surveillance Law by Spying on Protests for Black Lives

• Smart cities grow up

• It’s Time to Rethink Endpoint Security

• Safeguarding Industrial Control Systems Environments

• CIA accused of illegally spying on Americans visiting Assange in embassy

• Black Hat – Windows isn’t the only mass casualty platform anymore

• Black Hat USA 2022: Burnout, a significant issue

• In security, there is no average behavior

• Microsoft Announces Disruption of Russian Espionage APT

• Most Q2 Attacks Targeted Old Microsoft Vulnerabilities

• Transitioning From VPNs to Zero-Trust Access Requires Shoring Up Third-Party Risk Management

• ‘Evil PLC’ Could Turn PLCs Into Attack Vectors

• IoT + Cloud Growth = Greatest Cybersecurity Risk

• Survey: performance, pressure have increased among remote government employees during COVID

• House cyber director: ‘Defense is the new offense’ for cyber

• How to use Dropbox Transfer to securely share files with other people

• Researcher Hacked Space-X Starlink Via A $25 Tool

• Windows, Linux and macOS Users Targeted by Chinese Iron Tiger APT Group

• Improving CX through consistency

• Misinformation ‘harms nearly every element of election administration,’ committee report finds

• Assange Lawyers Sue CIA for Spying on Them

• Credential Theft Is (Still) A Top Attack Method

• VNC instances exposed to Internet pose critical infrastructures at risk

• Announcing Microsoft Dev Box Preview

• Dutch authorities arrest 29-year-old dev with suspected ties to Tornado Cash

• Black Hat 2022 reveals enterprise security trends

• Zoom for Mac patches get-root bug – update now!

• Everything you need to know about the new features in VSS & MVP

• Software Patches Flaw on macOS Could Let Hackers Bypass All Security Levels

• Watch CNBC’s full interview with Guggenheim’s John DiFucci

• Disrupting SEABORGIUM’s ongoing phishing operations

• What is not included in a Cyber Insurance Policy

• XDR Momentum Grows as Industry Calls for Solution to Common Security Challenges

• Open Source OSINT Tools and Techniques

• Authentication and Authorizing for Webservice/ Rest API Calls

• Black Hat 2022: Why machine identities are the most vulnerable

• Luckymouse Uses Compromised MiMi Chat App to Target Windows and Linux Systems

• SOVA Android malware now also encrypts victims’ files

• Black Hat And DEF CON Roundup

• Indian Military Puts Quantum Key Distribution On The Line

• This String Of Emojis Is Actually Malware

• Hacker Conference DEF CON Bans Pro Trump Outlet OAN

• Cisco Confirms Hack: Yanluowang Ransom Gang Claims 2.8GB Of Data

• Six Ways Of Safeguarding Employee Workstations

• Thinking like a cyber-attacker to protect user data

• Guggenheim’s DiFucci reveals what separates good and bad security software companies

• Multilingual Cybersecurity Awareness Training adapted for your needs

• How to become a video game tester

• Black Hat 2022 reveals why machine identities are the most vulnerable

• Thousands of VNC Instances Exposed to Internet as Attacks Increase

• Secure Boot Bypass Flaws Affect Bootloaders of Many Devices Made in Past Decade

• Dutch Authorities Arrest Tornado Cash Developer Following US Sanctions on Crypto Mixer Firm

• $23 Million YouTube Royalties Scam

• America’s Allies and the War in Afghanistan

• Common Smartphone Problems and How to Fix Them Fast

• Prepare for Quantum Encryption Today

• Black Hat and DEF CON Roundup

• How and Why to Apply OSINT to Protect the Enterprise

• Feedzai with Lloyds Banking Group wins Aite-Novarica Fraud Impact Award

• This Android banking malware now also infects your smartphone with ransomware

• Cyble: Over 9,000 VNC Sessions Without a Password Found

• What Is Network-Attached Storage(NAS), and How Does It Work?

• #DEFCON: How Sanctions Impact Internet Operators

• Chinese tech giants share details of their prized algorithms with regulator in unprecedented move

• Cybersecurity Has Never Been More Unstable Than It Is Now

• Google Boosts Bug Bounty Rewards for Linux Kernel Vulnerabilities

• SOVA Android Banking Trojan Returns With New Capabilities and Targets

• IT threat evolution in Q2 2022. Non-mobile statistics

• IT threat evolution in Q2 2022. Mobile statistics

• Software Development: Top Services Affecting Your Business

• Effective Security Using Zero Trust Architecture

• Researchers Noticed a Peak in VNC Attacks – Over 8,000 Servers Exposed Online without a Password

• Space Force takes robot patrol dogs for a walk

• IT threat evolution Q2 2022

• Chinese Cyberspies Use Supply Chain Attack to Deliver Windows, macOS Malware

• Weaponized PLCs Can Hack Engineering Workstations in Attacks on Industrial Orgs

• The State of Quantum Security

• #DEFCON: CISA Director Praises Congress and International Cybersecurity Cooperation

• Disney Brings Ads To Streaming Platform As It Surpasses Netflix

• ESA In Talks With SpaceX Over Launches To Replace Soyuz

• Mercedes-Benz And CATL To Build Massive EV Battery Plant In Hungary

• US Carmakers Warn Over Upcoming Electric Vehicle Incentives

• Russia’s Shuckworm cyber group launching ongoing attacks on Ukraine

• Three Extradited from UK to US on $5m BEC Charges

• Bringing Light to the Dark Web

• Xiaomi Phones’ TEE Vulnerability May Allow Forge Mobile Payments

• Vulnerabilities Found in Xiaomi’s Mobile Payment Software

• Google Fined A$60million in Penalties For Misleading Users on Location Data

• New Study Reveals Serious Cyber Insurance Shortfalls

• Critical Infrastructure at Risk as Thousands of VNC Instances Exposed

• NHS Software Supplier Confirms Ransomware Attack

• Hackers Steal Documents From Defence Companies

• Meta Gathers AI Data As Chatbot Calls Zuckerberg ‘Creepy’

• A new PyPI Package was found delivering fileless Linux Malware

• How Manufacturers Are Adapting to a Post-Covid World?

• What Do QuickTake, iSight, and iBook Have in Common? How Apple Reuses Trademarks

• Software developers, how secure is your software ?

• Comparing Twilio and Slack breach responses

• Newly Uncovered PyPI Package Drops Fileless Cryptominer to Linux Systems

• Iron Tiger APT is behind a supply chain attack that employed messaging app MiMi

• Indian military ready to put long-range quantum key distribution on the line

• Russia to end cyber-attacks on Ukraine after talks with the West

• Ransomware news headlines trending on Google

• How to manage the intersection of Java, security and DevOps at a low complexity cost

• Why it’s past time we operationalized cybersecurity

• Oil and Gas Cybersecurity: Recommendations Part 3

• Black Hat and DEF CON visitors differ on physical risk management

• Ransomware is back, healthcare sector most targeted

• Credential phishing attacks skyrocketing, 265 brands impersonated in H1 2022

• Tackling the dangers of internal communications: What can companies do?

• NetWitness Appoints Industry Veteran Ken Naumann as New CEO

• The 5 best identity theft protection and credit monitoring services of 2022

• 5 tips for spotting and avoiding Pig butchering scams

• Zoom’s latest update on Mac includes a fix for a dangerous security flaw

• Employee’s compromised Google credentials led to Cisco breach

• Epson’s bricked printers highlight the industry’s reparability problem

• Samsung heir pardoned due to South Korean economic needs

• Elon Musk wrote article for China’s internet regulator, hinted at aged care robots

• IT Security News Weekly Summary – Week 32

• IT Security News Daily Summary 2022-08-14

• The problem with our cybersecurity problem

• Cisco Confirms Network Breach After Employee’s Google Account was Hacked

• A flaw in Xiaomi phones using MediaTek Chips could allow to forge transactions

• Responsible use of machine learning to verify identities at scale

• Upcoming Speaking Engagements

• Network Perception CEO Robin Berthier to Speak at SCADA Tech Summit

• Rethinking How the United States Trains Foreign Militaries

• U.S. Bans Crypto Mixing Service Tornado Cash

• Thoughts on the Mar-a-Lago Search

• Microsoft Patch Tuesday August Fixes 120+ Vulnerabilities

• Palo Alto Warns About PAN-OS Vulnerability Under Attack

• Researchers Discover Zimbra Authentication Bypass Flaw Under Attack

• Research Finds Facebook Tracks In-App Browser Activities On iOS Devices

• How to Create a Secure Folder on Your Phone

• How Technology Continues to Improve Card Games

• Copyright and Cyber Security Rules for SoundCloud Creators: How to Promote Your Account Safely?

• Week in review: Cisco hacked, Kali Linux 2022.3 released, Black Hat USA 2022

• Penetration testing

• Tornado Cash Developer Arrested After U.S. Sanctions the Cryptocurrency Mixer

• CISA, FBI shared a joint advisory to warn of Zeppelin ransomware attacks

• Bitter APT and Transparent Tribe Campaigns on Social Media

• Appgate Announces Second Quarter 2022 Financial Results

• Peraton gets second chance at $800M in Social Security IT work

• Playing for All the Jelly Beans at the EFF Benefit Poker Tournament at DEF CON

• A New Tractor Jailbreak Rides the Right-to-Repair Wave

• Killnet Claim They’ve Stolen Employee Data from Lockheed Martin

• ColorTokens partners with Aligned Automation to provide end-to-end solutions for enterprise customers

Generated on 2022-08-15 23:55:23.168159

Liked it? Take a second to support IT Security News on Patreon!