IT Security News Daily Summary 2022-09-07

• Golang adds vulnerability management tooling

• Dashboard, sensors report real-time data on city flooding

• Zyxel Patches Critical Vulnerability in NAS Firmware

• Cymulate Closes $70M Series D Funding Round

• FTC Sues Location Data Broker

• Profiling DEV-0270: PHOSPHORUS’ ransomware operations

• Health info exchange’s data innovations take the ‘detective work’ out of public health

• iPhone 14 cheat sheet: Everything to know about Apple’s 2022 flagship phones

• Curious, Innovative, Creative, Community Driven: Meet Cyb3rWard0g, Roberto Rodriquez

• 7 CISO succession planning best practices

• Red Hat extends Common Vulnerabilities and Exposure Program expertise as newly-minted Root organization

• EFF to Ninth Circuit: Social Media Content Moderation is Not “State Action”

• WT1SHOP Cybercrime Market Seized by US and Portuguese Authorities

• CISA teases strategy to protect critical infrastructure

• White House’s cyber office seeks a workforce lead

• States build on COVID lessons for monkeypox tracking

• Google Details Recent Ukraine Cyberattacks

• Improving Threat Detection and Response is Key in 2022 and Beyond

• DEADBOLT ransomware rears its head again, attacks QNAP devices

• Apple’s Killing the Password. Here’s Everything You Need to Know

• Google: Former Conti ransomware members attacking Ukraine

• Ransomware protection from the top drawer

• US school year opens with reading, writing, and ransomware

• Trump’s Fourth Amendment Claims and the Strategy Behind the Challenge to the Mar-a-Lago Search

• Los Angeles School District – Hit By Cyberattack – Expert Comments

• Interpol Arrests 12 Suspects for Running Sextortion Racket

• Apple Live Blog: Far Out Event 7th September 2022

• ‘DangerousSavanna’ Hackers Targeted Financial Institutions in Africa For Two Years

• Analysis of Cyberthreats Linked to Gaming Industry in 2022

• CISO Conversations: U.S. Marine Corps, SAIC Security Leaders on Organizational Differences

• Experts spotted a new stealthy Linux malware dubbed Shikitega

• TikTok Denies Hacker Group’s Claim Of Massive Data Breach

• Holiday Inn Hotels Hit By Cyber Attack

• Mandiant Links APT42 To Iranian Terrorist Org

• Games Popular With Kids Used To Distribute Malware

• Hackers Are Using NASA Telescope Images To Push Ransomware

• One Microsoft manager’s entrepreneurial vision for multicloud identity and access

• Cryptominer Malware Posing as Desktop Version of Google Translate

• DTEX Systems and GuidePoint Security Partner to Deliver Human-Centric Insider Threat Intelligence and Security Solutions

• Mandiant CEO Kevin Mandia Joins Cohesity Board of Directors and Newly Formed Cohesity Security Advisory Council

• (ISC)² Closing the Cybersecurity Workforce Gap

• Establishing a mobile device vulnerability management program

• Guide to the best data privacy certifications for 2022

• Mirai botnet resurfaces with MooBot variant to target D-Link devices

• Authorities Seized Criminal Marketplace Selling Stolen Credit Cards and Millions of Login Details

• Consolidated Identity Protection in a Unified Security Platform Is a Must-Have for the Modern SOC

• Statistical uncertainty could be problematic for evidence-based policies, study finds

• New guide to secure software development passes on content but fails on communication, industry official says

• Japan Government Websites Hit By Cyber-Attacks, Killnet Suspected

• Elon Musk Denied Attempt To Delay Twitter Trial

• Essential Guide to Securing Node.JS Applications

• Some Members of Conti Group Targeting Ukraine in Financially Motivated Attacks

• The LockBit Ransomware Gang Is Surprisingly Professional

• Students find cybersecurity career success after completing Offensive Security courses

• Experts Insight On Holiday Inn Hack

• UK Transport Firm Go-Ahead Targeted in a Cyber Attack

• US Bans Tech Firms From Building Chinese Factories

• Cisco partners with Radiflow for its OT security expertise

• InterContinental Hotels Confirms Cyber-Attack After Two-Day Outage

• The New Defense Department Plan to Curb Civilian Harm: A Bold Blueprint for Change

• Why Should Tech Businesses Prioritise Occupational Health?

• Authorities Seize Online Marketplace for Stolen Credentials

• The Advantages of Threat Intelligence for Combating Fraud

• US Agencies Warn of ‘Vice Society’ Ransomware Gang Targeting Education Sector

• Albania Cuts Diplomatic Ties With Iran Over July Cyberattack

• The Lockbit Ransomware Gang is Surprisingly Professional

• Why the Search for Best-Of-Breed Tooling is Causing Issues for Security Teams

• 7 Tips for Choosing a Good Managed IT Service Provider

• Kubernetes Day 2 challenges — Isovalent brings secure connectivity, nabs funding

• Mandiant links APT42 to Iranian ‘terrorist org’

• This stealthy Linux malware starts off small but gradually takes control

• 4 Key Takeaways from “XDR is the Perfect Solution for SMEs” webinar

• North Korean Hackers Deploying New MagicRAT Malware in Targeted Campaigns

• New Stealthy Shikitega Malware Targeting Linux Systems and IoT Devices

• Authorities Shut Down WT1SHOP Site for Selling Stolen Credentials and Credit Cards

• Cyberattack Launched upon InterContinental Hotels Group

• Hacking Forum Thread Alleging TikTok Breach Has Been Deleted

• Scale security on the fly in Microsoft Azure Cloud with Cisco Secure Firewall

• API Security for the Modern Enterprise

• Cybercriminals target games popular with kids to distribute malware

• Enhancing Cloud Security by Reducing Container Images Through Distroless Techniques

• 4 Tips To Create a Conversion-Hungry Newsletter Pop Up In 2022

• How to Track a Lost Cell Phone

• How does an internet modem work?

• Most IT pros think a company breach could threaten national security

• Challenges of User Authentication: What You Need to Know

• Instagram Fined €405 Million For Teenager Data Violation

• The Cost of a Data Breach for Government Agencies

• Online casino security: why it matters

• UK Again Delays Chinese Purchase Of Newport Wafer Fab

• LAUSD, One of the Largest School Districts in the U.S., Suffers Ransomware Attack

• InterContinental Hotels Suffers Cyberattack

• UK Privacy Regulator Fines Halfords for Spam Deluge

• High-profile vulnerabilities encourage organizations to improve security posture

• Researchers publish post-quantum upgrade to the Signal protocol

• Most IT leaders think partners, customers make their business a ransomware target

• Samsung Hacked – Breach Exposed Customer’s Personal Information

• Authorities Take Down Prolific WT1SHOP Cybercrime Marketplace

• Zyxel addressed a critical RCE flaw in its NAS devices

• The Most Hated Man on the Internet: Has the world changed?

• FBI K-12 Ransomware Warning as LAUSD is Hit

• Critical RCE Vulnerability Affects Zyxel NAS Devices — Firmware Patch Released

• Mirai Variant MooBot Botnet Exploiting D-Link Router Vulnerabilities

• Moobot botnet is back and targets vulnerable D-Link routers

• Cyber Security Management System (CSMS) for the Automotive Industry

• Ransomware attack on InterContinental Hotels

• How to keep cloud storage secure and safe

• There is no secure critical infrastructure without identity-based access

• As Cybersecurity Week begins, Beijing claims US attacked Uni doing military research

• As China’s Cybersecurity Week begins, Beijing claims US attacked Uni that does military research

• A Complete Malware Analysis Tutorials, Cheatsheet & Tools list for Security Professionals

• Samsung Data Breach Exposed Customers Personal Information

• CISO Interview Series: The thinking of a CISO at the front end of the cyber threat landscape.

• eBook: 4 cybersecurity trends to watch in 2022

• 7 free online cybersecurity courses you can take right now

• Defeat social engineering attacks by growing your cyber resilience

• Drawbridge Announces Strategic Growth Investment from Francisco Partners

• TD SYNNEX to Announce Third Quarter Fiscal 2022 Results on September 27, 2022

• MITRE Expands Leadership Team to Enhance Innovation and Intelligence Capabilities

• OneSpan Appoints New Chief Financial Officer Jorge Martell

• NETSCOUT Provides End-to-End Visibility Across AWS Cloud WAN Environments with Aruba EdgeConnect Enterprise SD-WAN Platform

• Army updates cyber training after some graduates weren’t ready for their jobs

• Zyxel updates Nebula Cloud Networking Solution to improve user experience and network security

• SoftIron HyperCloud: Reducing the complexity of operating a multi-site hybrid cloud

• SymphonyAI Industrial KPI 360 allows manufacturers to view operational data through a single dashboard

• Pakistan government labels its own cybersecurity team ‘incompetent’

• Worok: The big picture

• Source Code of New ‘CodeRAT’ Backdoor Published Online

• Israeli Defence Minister’s Cleaner Sentenced for Spying Attempt

• The Dry Run: The Ouster of a County Official as an “Insurrectionist” Creates Ominous Precedents for Trump

• Kicking Off a New School Year with New Online Habits

• BlueHalo appoints Trip Ferguson as COO

• Jorge Martell joins OneSpan as CFO

• NETSCOUT and Aruba collaborate to provide enterprise connectivity to AWS Cloud WAN

• Silence Laboratories raises $1.7M to further widen its product offerings

• Bitwarden raises $100M to deliver online security options for customers

• Update now! QNAP warns users DeadBolt is exploiting Photo Station vulnerability

• Don’t share the WhatsApp ‘Martinelli’ phone hacking alert: It’s a hoax

• YouTuber on the run after allegedly swiping $55m from followers

• Instagram receives record fine of $400M for abuse of children’s data

• Go programming language arrives at security warnings that are useful

• 12 Arrested as Interpol Takes Down Transnational Sextortion Ring

• Passwords aren’t dead yet. Bitwarden raises $100M for password management

• The Dry Run: The Ouster of a County Official as an ‘Insurrectionist’ Creates Ominous Precedents for Trump

• 4 ways to streamline digital services with automation

• IT Security News Daily Summary 2022-09-06

• White House to tap DOD weapons testing lead for Navy acquisition role

• 5G and cloud can work together to improve government operations, experts say

• Worok Hackers Target High-Profile Asian Companies and Governments

• Global Shipping Industry Faces Wave of Cyber Threats

• How Bad Actors Are Learning to Hack Humans in Phishing Attacks

• Surviving and Thriving the Hacker Summer Camp

• LA schools hit with ransomware attack

• Healthcare and education remain common ransomware targets

• TeslaGun Primed to Blast a New Wave of Backdoor Cyberattacks

• Mysterious ‘Worok’ Group Launches Spy Effort With Obfuscated Code, Private Tools

• Cyberattack brings down InterContinental Hotels’ booking systems

• Multiple Vulnerabilities Found In WatchGuard Firewall

• The second-biggest school district in the US was hit with ransomware

• Ransomware hits Los Angeles Unified School District

• Meta Fined $400 Million For Failing To Protect Privacy Of Young Users

• Child abuse risk analysis tool flags families that need enhanced social services

• Name That Edge Toon: Mime’s the Word

• As LA Unified Battles Ransomware, CISA Warns About Back-to-School Attacks

• Benefits of edge computing

• Census bureau finishes some local count challenges

• Experts Discovered TeslaGun Panel Used by TA505 to Manage its ServHelper Backdoor

• What Are SOC and SIEM? How Are They Connected?

• The Los Angeles Unified School District hit by a ransomware attack

• Malicious Security App on Play Store Caught Dropping SharkBot Malware

• Internet Security & Encryption Pioneer Peter Eckersley Passes at 43

• Ransomware gang hits second-largest US school district

• The 3 Fundamentals of Building an Effective IoMT Security Strategy

• Election officials have been largely successful in deterring cyber threats, CISA official says

• Google Patches Sixth Chrome Zero-Day of 2022

• Huge Los Angeles Unified School District Hit by Cyberattack

• CISA Releases Five Industrial Control Systems Advisories

• A new Android malware used to spy on the Uyghur Community

• Hackers Honeytrap Russian Troops Into Sharing Location, Base Bombed

• Social Security Numbers Stolen In 49ers Data Breach

• Ireland Fines Instagram 405 Million Euros For Failing To Protect Children’s Data

• An Interview With Ukranian Hacker Herm1t On Countering Pro-Kremlin Attacks

• Geography Lessons From the 9/11 Terrorist Network

• Smart Manufacturing: A Linchpin in China’s Industrial Policy

• Demystifying the Financial Action Task Force

• Imperva Is a Magic Quadrant Leader for Web Application and API Protection (again)

• Newly discovered cyberspy crew targets Asian governments and corporations

• Shikitega – New stealthy malware targeting Linux

• CISA Releases Five Industrial Control Systems Advisories

• Expert Commentary: Go-Ahead Cyber Attack

• Arizona Law Tramples People’s Constitutional Right to Record Police

• Savannah College of Art & Design Data Breach

• Hacktivists Target Asian Government Organizations

• The Lessons to Learn from Nomad Crypto Hack

• Cymulate Raises $70M Series D Funding for Continuous Security Posture Testing

• London Transport Cybersecurity Incident – Expert Comment

• Chinese Loan Apps Fraud: Indian Agency Raids Razorpay, Paytm, Cashfree

• Dangerous SharkBot Malware Back on Google Play as Fake Antivirus Apps

• CISA Certification: What You Need to Know

• In the mighty Savanna: Check Point Research reveals a 2-year campaign targeting large financial institutions in French-Speaking African countries

• Go-Ahead cyberattack might derail UK public transport services

• KeyBank Suffers Data Breach, Third Party Steals Personal Information

• UK Agency Publishes New Guidelines for Crypto Exchanges to Stop Sanctions Evaders

• HHS Warns, Karakurt Ransomware Group Targeting Healthcare Providers

• Medicare boosts incentives for hospitals to provide data to public health agencies

• QNAP Warns of New ‘Deadbolt’ Ransomware Attacks Targeting NAS Users

• So You’re Certified in Cybersecurity – Now what?

• Botnets in the Age of Remote Work

• Experts discovered TeslaGun Panel used by TA505 to manage its ServHelper Backdoor

• How to Use a Virtual Number for SMS

• Unhappy about excluding nation-state attacks from cyberinsurance? Get ready to pay

• Report: Cybersecurity awareness increased to 97% in the last year

• Defenders Be Prepared: Cyberattacks Surge Against Linux Amid Cloud Migration

• DeadBolt is hitting QNAP NAS devices via zero-day bug, what to do?

• Nvidia, AMD caught in the middle of U.S.-China tech battle

• QNAP Warns of New DeadBolt Ransomware Attacks Exploiting Photo Station Flaw

• Researchers Find New Android Spyware Campaign Targeting Uyghur Community

• New EvilProxy Phishing Service Allowing Cybercriminals to Bypass 2-Factor Security

• Integrating Live Patching in SecDevOps Workflows

• TA505 Hackers Using TeslaGun Panel to Manage ServHelper Backdoor Attacks

• Healthcare ransomware attacks are increasing – how to prepare

• This overlooked cybersecurity risk could create an ocean of trouble for us all

• Half of Firms Report Supply Chain Ransomware Compromise

• Security Breach Allegations Hover Over TikTok

• It’s Time to Get Real About TikTok’s Risks

• New SharkBot Malware Variant Appears on Play Store

• NASA unveils draft solicitation for $1.3B IT contract

• Dispelling 5 Myths and Misconceptions Surrounding File Integrity Monitoring (FIM)

• AMTSO Publishes Guidance for Testing IoT Security Products

• How to Improve Mean Time to Detect for Ransomware

• Irish Watchdog Fines Instagram 405M Euros in Teen Data Case

• Cato Networks names as 2021 Innovation Award Winner

• In the mighty Savana: Check Point Research reveals a 2-year campaign targeting large financial institutions in French-Speaking African countries

• The Complete Guide to Industrial IoT for Manufacturers: How to Connect, Monitor, and Optimize Your Manufacturing Processes

• Interpol Busts Asian Sextortion Syndicate

• New strategic growth investment in Hornetsecurity

• London’s Biggest Bus Operator Hit by Cyber “Incident”

• China accuses the US of cyberattacks

• Good game, well played: an overview of gaming-related cyberthreats in 2022

• What’s the smallest variety of CHERI?

• Looking for adding new detection technologies in your security products?

• Windows Defender notifications about Win32/Hive.ZY virus were false positives

• Interpol dismantled sextortion ring in Asia

• Redline Stealer: Malware spread via hacked Facebook accounts

• What’s polluting your data lake?

• Data of Employees as Your Company’s Most Valuable Asset

• Samsung 2022 data breach leaks sensitive info of customers

• New UK Law terms detrimental Cryptocurrency Exchanges as Cyber Criminals

• Government guide for supply chain security: The good, the bad and the ugly

• Apple strengthens security and privacy in iOS 16

• 3 Hybrid Cloud Security Challenges & Solutions

• WhatsApp Scams in 2022: What to Look out for

• Umbraco Cloud introduces US data hosting option to meet data policies and privacy requirements

• 62% of consumers see fraud as an inevitable risk of online shopping

• EvilProxy phishing-as-a-service with MFA bypass emerged on the dark web

• Box Sign now helps customers move more of their transactions to the cloud

• Ant Group supports industrial collaborations in the digital economy with more accessible AI

• Forget the volatility — buy this cybersecurity ETF for a long-term growth story, analyst says

• A week in security (August 29 – September 4)

• Phishers use verified status as bait for Instagram users

• Microsoft will disable Basic authentication for Exchange Online in less than a month

• Zero-day puts a dent in Chrome’s mojo

• Aptum appoints Mark Millar as CFO

• Arlette Hart joins Appgate as VP Threat Advisory Service

• Valeo Networks acquires Alura Business Solutions and expands its MSSP reach

• HelpSystems acquires Outflank to help businesses pinpoint and address dangerous IT vulnerabilities

Generated on 2022-09-07 23:55:23.230743