IT Security News Daily Summary 2023-01-21

• Backdoor into FortiOS: Chinese Threat Actors Utilize 0-Day

• The Irish DPC fined WhatsApp €5.5M for violating GDPR

• Blockchain: Is it hackable?

• Advertising Strategies For PaaS Services

• Arcserve Unified Data Protection 9.0 Boosts Enterprise Data Resilience

• (ISC)² New Jersey Chapter Hosts International Event with 500 Attendees

• Darktrace Unveils Cyberattack Data Trends for Energy, Healthcare & Retail

• What diabetes is revealing about benefits and risks of personal medicine connected to the internet

• What diabetes reveals about benefits and risks of personal medicine connected to the internet

• Cybersecurity in 2023: Russian Intelligence, Chinese Espionage, and Iranian Hacktivism

• DoControl: Growing its SaaS Security Platform

• The benefits and risks of personal medical monitoring on the internet

• Key to success while implementing IAM- Best practices that every company should implement

• Hackers Actively Exploiting Critical ManageEngine Vulnerability

• The Biggest US Surveillance Program You Didn’t Know About

• US Criminals Responsible for Widespread Credit Card Fraud

• Bogus DHL Emails Enable Attackers to Hack Microsoft 365 Accounts

• Google Receives Sensitive Data From Abortion Pill Websites

• Around 19,500 end-of-life Cisco routers are exposed to hack

• Publisher’s Weekly Review of A Hacker’s Mind

• PayPal Data Breach – Over 35000 Thousand Users’ Accounts Compromised

• DefenseStorm Named Inc. 5000 Fastest-Growing Private Company with 251% Growth Rate

• LATEST CYBERTHREATS AND ADVISORIES – JANUARY 20, 2023

• Ransomware payments down 40% in 2022 – Week in security with Tony Anscombe

• Beware of the New ‘Blank Image’ Attack that Hides Malicious Scripts in Image Files

• 20 Top Cybersecurity Companies for 2023

• Bitwarden acquires Passwordless.dev to boost passwordless solutions

• Fingerprint partners with Ping Identity to help customers prevent fraud

• T-Mobile suffered a new data breach, 37 million accounts have been compromised

• Chinese 8220 Gang Aims For Public Clouds And Vulnerable Apps

• Ransomware money laundering operation disrupted, founder arrested

• Credit card fraud group member could get up to 30 years in jail

• Mailchimp breach feels like deja vu

• T-Mobile’s New Data Breach Shows Its $150 Million Security Investment Isn’t Cutting It

• Drupal Releases Security Advisories to Address Multiple Vulnerabilities

• Ireland’s privacy watchdog fines WhatsApp €5.5 million

• Ransomware Profits Decline as Victims Dig In, Refuse to Pay

• T-Mobile’s 2023 Data Breach Shows Its $150 Million Security Investment Isn’t Cutting It

• Drupal Releases Security Advisories to Address Multiple Vulnerabilities

• IT Security News Daily Summary 2023-01-20

• T-Mobile Breached Again, This Time Exposing 37M Customers’ Data

• Booklist Review of A Hacker’s Mind

• Friday Squid Blogging: Another Giant Squid Captured on Video

• T-Mobile data breach shows API security can’t be ignored

• Facial recognition: Can fake data produce real results?

• AI-enabled robots may increase recycling, workplace safety

• How to select a security analytics platform, plus vendor options

• GPT Emerges as Key AI Tech for Security Vendors

• Compromised Zendesk Employee Credentials Lead to Breach

• Database Malware Strikes Hundreds of Vulnerable WordPress Sites

• Cisco Releases Security Advisory for Unified CM and Unified CM SME

• For Would-Be Censors and the Thin-Skinned, Copyright Law Offers Powerful Tools

• Risk & Repeat: Breaking down the LastPass breach

• 6 cybersecurity buzzwords to know in 2023

• Cisco Releases Security Advisory for Unified CM and Unified CM SME

• How AI and data enrichment can protect the vulnerable during a recession

• Automated vehicles coming to Ohio roads

• The 5 best VPN routers of 2023

• ChatGPT’s Dark Side: An Endless Supply of Polymorphic Malware

• Dissecting and Exploiting TCP/IP RCE Vulnerability “EvilESP”

• Orca Security deploys ChatGPT to secure the cloud with AI

• Keeper vs LastPass (2023): Which password manager is better for you?

• ManageEngine Vulnerability CVE-2022-47966

• Microsoft Innovations for 2023: What to Look Out for This Year

• Defense industry decries possible GOP-led spending cuts

• T-Mobile admits to 37,000,000 customer records stolen by “bad actor”

• What is an IP address and how can you change it with a VPN?

• T-Mobile data breach affects 37M customers

• LATEST CYBERTHREATS AND ADVISORIES – JANUARY 20, 2023

• Malvertiser Makes the Big Bucks on Black Friday

• IT/OT convergence and Cybersecurity best practices

• FAA attributes ground-stop glitch to contractor error

• Tech gig workers love the flexibility, report finds

• Get lifetime access to this powerful backup tool for $59.99

• Roaming Mantis Spreading Mobile Malware That Hijacks Wi-Fi Routers’ DNS Settings

• Ireland’s data protection watchdog fines WhatsApp €5.5 million

• Critical Manufacturing Sector in the Bull’s-eye

• Taking patch management to the next level with automation

• Right to Repair Advocates Have Had Good Victories. We Have To Keep Fighting.

• AT&T Cybersecurity awarded the Palo Alto Networks 2022 Partner of the Year Award

• T-Mobile Hacked Again: 37 Million Accounts Compromised

• NIST releases potential updates to its cybersecurity framework

• 35,000 PayPal Accounts Hacked

• T-Mobile Data Breach: 37 million customers affected

• Ransomware Payouts in Review: Highest Payments, Trends & Stats

• ISG to Publish Reports Evaluating Cybersecurity Providers

• Hacker steals data of 37 million T Mobile customers

• Sophisticated ‘VastFlux’ Ad Fraud Scheme That Spoofed 1,700 Apps Disrupted

• In-the-Wild Exploitation of Recent ManageEngine Vulnerability Commences

• What Is a Brute Force Attack?

• Hackers Steal Data from  KFC, Pizza Hut, Taco Bell & Habit Burger

• WhatsApp Hit with €5.5m fine for GDPR Violations

• The Evolution of Account Takeover Attacks: Initial Access Brokers for IoT

• The Small but Mighty Danger of Echo Chamber Extremism

• PayPal notifies 34942 users of data breach over credential stuffing attack

• Malicious Android App Incorporates DNS Hijacking

• Pros Blame 3rd Parties For The Increase Of Security Incidents

• New FTX Boss Could Bring Back Bankrupt Crypto Firm

• Criminals Steal Data On 40 Million T-Mobile US Customers

• 37 Million T-Mobile API Data On Customers Stolen in Hack

• Threat from Cyberspace Pushing Data Budgets Up and Delaying Digital Transformation

• Info-stealing Ads Spread by Malvertising

• A Cautionary Tale: What Iran and Cuba Can Teach Us About Designating Russia a State Sponsor of Terrorism

• From Fake News to Fake Views: New Challenges Posed by ChatGPT-Like AI

• The Rise in Cyber-Attacks from Bad International Actors

• Gamaredon Group Launches Cyberattacks Against Ukraine Using Telegram

• Ransomware Revenue Down As More Victims Refuse to Pay

• Major Companies Impacted by Ransomware [2022-2023]

• After a Security Incident, CircleCI Urges Customers to Rotate Secrets

• Lazarus Moves More than $60 Million from Harmony Bridge Hack

• How Much is the U.S. Investing in Cyber (And is it Enough)?

• Critical Vulnerabilities Patched in OpenText Enterprise Content Management System

• Welcome to the Era of Internet Blackouts

• T-Mobile Hacked – Over 37 Million Customer Data Exposed

• WhatsApp Hit with €5.5 Million Fine for Violating Data Protection Laws

• C++ programming language and safety: Here’s where it goes next

• T-Mobile API Data Breach Affects 37 Million Customers

• Ransomware Profits Declined by 40% in 2022

• Ransomware Revenue Plunged in 2022 as More Victims Refuse to Pay Up: Report

• PayPal Warns 35,000 Users of Credential Stuffing Attacks

• EU’s Breton Warns TikTok CEO: Comply With New Digital Rules

• Real-World Steganography

• What Is a DNS Zone and How to Keep Safe From DNS Zone Transfer Attacks

• OpenAI’s ChatGPT Can Create Polymorphic Malware

• “Workarounds” Helped Royal Mail Resume Shipping After Ransomware Attack

• Chinese hackers used recently patched FortiOS SSL-VPN flaw as a zero-day in October

• 35k PayPal Accounts Compromised In Credential Stuffing Attack

• Google Delays Potion Of Bonus Payments To Staff

• 12 Ways to make ZTNA deployments effortless

• Drupal Patches Vulnerabilities Leading to Information Disclosure

• Ransomware Shuts Hundreds of Yum Brands Restaurants in UK

• A Change in Mindset: From a Threat-based to Risk-based Approach to Security

• Chinese Hackers Exploited Fortinet VPN Vulnerability as Zero-Day

• Exploring The Dangers of EmojiDeploy: A New Microsoft Azure Vulnerability for RCE Attacks

• What Is Cybersecurity Risk Management: Explaining the Concept And Process

• Phishers Use Blank Images to Disguise Malicious Attachments

• Ransomware Attack Shuts Down KFC and Pizza Hut Brand Owner`s Restaurants

• Russian Hackers Responsible for Attack on Samsung

• T-Mobile Confirms Hacker Stole Data Of 37 Million Customers

• API Attacker Steals Data on 37 Million T-Mobile Customers

• Massive Credential Stuffing Campaign Hits 35,000 PayPal Users

• Crypto Lender Genesis Files For Chapter 11

• Chinese Hackers Exploited Recent Fortinet Flaw as 0-Day to Drop Malware

• A New Era is Emerging in Cybersecurity, but Only the Best Algorithms will Survive

• Want your endpoint security product in the Microsoft Consumer Antivirus Providers for Windows?

• TOP 10 Deep Web Search Engine Alternatives for Google and Bing – 2023

• Weekly Update 331

• New Chinese Malware Spotted Exploiting Recent Fortinet Firewall Vulnerability

• TOP 10 Deep Web Search Engine Alternatives for Google and Bing 2023

• Cyber Attack news headlines trending on Google

• TLS Connection Cryptographic Protocol Vulnerabilities

• 11 robot toys that make great gifts in 2023

• Cisco fixes SQL Injection flaw in Unified CM

• New infosec products of the week: January 20, 2023

• Miscreants sure do love ransacking cloud networks, more so than before

• Enterprises remain vulnerable through compromised API secrets

• The threat of location spoofing and fraud

• Zero trust network access for Desktop as a Service

• New T-Mobile Breach Affects 37 Million Accounts

• New Survey Sheds Light on Why Enterprises Struggle to Thwart API Attacks

• Impact Podcast with John Shegerian Features The Home Depot’s Ron Jarvis

• Are WE the firewall?

• Immuta Detect provides insights into risky user data access behavior

• Arcserve Unified Data Protection 9.0 enhances data resilience

• Tech support scammers are still at it: Here’s what to look out for in 2023

• T-Mobile Says Hackers Used API to Steal Data on 37 Million Accounts

• Crims steal data on 40 million T-Mobile US customers

• Ransomware severs 1,000 ships from on-shore servers

• PayPal says crooks poked around 35,000 accounts in credential stuffing attack

• PayPal Breach Exposed PII of Nearly 35K Accounts

• PayPal says crooks accessed 35,000 customers’ info in credential stuffing attack

• Google sponsored ads lead to rogue imitation sites

• How to find out if an AirTag is tracking you

• T-Mobile reports another data breach, impacting 37 million customers

• Dashlane vs 1Password: Which password manager should you use in 2023?

• Hornetsecurity appoints Irvin Shillingford as Regional Manager for Northern Europe

• PayPal says crooks accessed 34,942 customers’ info in credential stuffing attack

Generated on 2023-01-21 23:55:21.173740