IT Security News Daily Summary 2023-03-27

• State mandates K-12 cyber education

• New MacStealer macOS malware appears in the cybercrime underground

• How to prepare for a world without passwords

• ODNI official details efforts to use automation to speed talent recruitment timelines

• The best security cameras of 2023: Protect your home

• It’s time to update all of your Apple devices again. Here’s why

• Microsoft: No-Interaction Outlook Zero Day Exploited Since Last April

• A Review Of Helm And Kubernetes For Your DevOps Pipeline

• GitHub Publishes RSA SSH Host Keys by Mistake, Issues Update

• Portion of Twitter’s proprietary source code leaked on GitHub

• Reducing health disparities through effective data management

• Passwords vs Passwordless: A Debate on Online Security

• Planned Login-dot-gov deployment at IRS is postponed

• Hackers Earn Over $1 Million at Pwn2Own Exploit Contest

• US to Adopt New Restrictions on Using Commercial Spyware

• Imperva recognized as a Strong Performer in Forrester Wave: Data Security Platforms, Q1 2023

• How to secure your GitHub account with two-factor authentication

• How shift left security and DevSecOps can protect the software supply chain

• White House bans government ‘operational’ use of commercial spyware in executive order

• Analysis of 7 single-vendor SASE platforms

• 7 Women Leading the Charge in Cybersecurity Research & Analysis

• Upgrading Online Security with Password Managers

• Twitter Says Source Code Was Leaked on GitHub, Now It’s Trying to Find the Culprit

• Introduction To OpenSSH

• The best home security cameras of 2023

• Microsoft assigns CVE to Snipping Tool bug, pushes patch to Store

• Pwn2Own 2023: Tesla Model 3, Windows 11, Ubuntu and more Pwned

• 2023-03-24 – IcedID (Bokbot) with BackConnect traffic and Cobalt Strike

• Australia Dismantles BEC Group That Laundered $1.7 Million

• GoAnywhere Zero-Day Attack Hits Major Orgs

• Drive to Pervasive Encryption Boosts Key Management

• Pwn2Own Hacking Competition Awards Over $1 Million In Vancouver

• US needs improved regulation to foster drone R&D

• How often should security audits be?

• US Lawmakers Push TikTok Ban Bill After CEO Testimony

• Musk’s Neuralink ‘Approached Partner’ For Human Trials

• Microsoft Fixes Security Flaw in Windows Screenshot Tools

• AI and Twitter could help predict opioid deaths

• Three Variants of IcedID Malware Discovered

• 20-Year-Old BreachForums Founder Faces Up to 5 Years in Prison

• Pleading TikTok to “Think of the Children” Misses the Point

• How to make sure the reputation of your products and company is good

• Source Code of Twitter leaked on GitHub

• New MacStealer Targets Catalina, Newer MacOS Versions

• GoAnywhere Hack Targets UK Pension Protection Fund

• TikTok Bans: Governments Worldwide Take Action Over Security and Privacy Concerns

• Webinar Tomorrow: Understanding Hidden Third-Party Identity Access Risks

• ‘Grim’ Criminal Abuse of ChatGPT is Coming, Europol Warns

• 5 Best Password Managers (2022): Features, Pricing, and Tips

• Malvertising Gives Cybercriminals Access to Big Technologies

• Watch Out for These Common Signs to Identify an Email Phishing Scam

• The Role of Human Resources in Cybersecurity

• Updates from the MaaS: new threats delivered through NullMixer

• CISA Unleashes Untitled Goose Tool To Honk At Danger In Microsoft’s Cloud

• Five Takeaways From TikTok CEO’s Congress Grilling

• Android App From China Executed Zero Day Exploit On Millions Of Devices

• Singapore Businesses Stumbling Over What Security Culture Entails

• Twitter Takes Legal Action After Source Code Leaked Online

• Critical Vulnerability Fixed In WooCommerce Payments WordPress Plugin

• Hackers Exploited Critical Microsoft Outlook Vulnerability To Gain Exchange Server Access

• Cybersecurity vs. Everyone: From Conflict to Collaboration

• Climate Change Advisory Opinion Requests: Risk and Reward

• GitHub Rotates Publicly Exposed RSA SSH Private Key

• OpenAI: ChatGPT Payment Data Leak Caused By Open-Source Bug

• 10 Best Browser Based FPS Games in 2023 – No Downloads No Limits

• Zoom launches Okta Authentication for E2EE to verify identity

• Baidu Shows Corporate Chatbot Skills In Closed Session

• Latitude Financial Data Breach: 14 Million Customers Affected

• Scaling Your Testing Efforts With Cloud-Based Testing Tools

• Weakness at the Network Edge: Mandiant Examines 2022’s Zero-Day Exploits

• Technical analysis of China-linked Earth Preta APT’s infection chain

• A bug revealed ChatGPT users’ chat history, personal and billing data

• BEC scammers are after physical goods, the FBI warns

• Cookie Clicker Garden Guide to Unlocking Every Seed – Quick Tutorial

• Women in Cybersecurity – History to Today

• Intel Co-Founder Gordon Moore Dies At 94

• The Power of Docker Images: A Comprehensive Guide to Building From Scratch

• GitHub Suspends Repository Containing Leaked Twitter Source Code

• Gone in 120 seconds: Tesla Model 3 child’s play for hackers

• VERT Reads All About It – Cybersecurity News March 27, 2023

• New MacStealer macOS Malware Steals iCloud Keychain Data and Passwords

• Where SSO Falls Short in Protecting SaaS

• Hacks at Pwn2Own Vancouver 2023

• 14 Million Customer Details Breached In Latitude Financial Firm

• Congratulations to Our 2023 CPX 360 Award Winners in EMEA

• Alibaba’s Jack Ma Returns To China After Year’s Absence

• Microsoft Issues Patch for aCropalypse Privacy Flaw in Windows Screenshot Tools

• Earth Preta’s Cyberespionage Campaign Hits Over 200

• Failed Silicon Valley Bank Assets Acquired By Rival

• Financial Institutions and Cybersecurity Risk: Why you need ISO27001

• Avoiding the Pitfalls of Tax Season: Philadelphia Warns Against Sophisticated Phishing Attacks

• Parts of Twitter`s Source Code Were Leaked on GitHub, According to Elon Musk

• China crisis is a TikToking time bomb

• NCA Harvests Info on DDoS-For-Hire With Fake Booter Sites

• Known unknowns: Refining your approach to uncategorized web traffic

• Twitter Says Source Code Posted Online

• New BEC Tactics Enable Fake Asset Purchases

• Latitude Financial Admits Breach Impacted Millions

• How scammers employ IPFS for email phishing

• Software developers, how secure is your software?

• Malicious Python Package uses Unicode support to evade detection

• What Goes “App” Could Take You Down

• They Posted Porn on Twitter. German Authorities Called the Cops

• ChatGPT users data leaked because of bug vulnerability

• Artificial Intelligence vs Machine Learning: Understanding the Differences

• ChatGPT Exposes Email Address of Other Users – Open-Source Bug

• Prioritizing data security amid workforce disruptions

• Veterans Affairs committee Dems offer bills to streamline VA operations

• The era of passive cybersecurity awareness training is over

• Understanding adversaries through dark web intelligence

• CISA to Start Issuing Early-Stage Ransomware Alerts

• In Memoriam – Gordon Moore, who put the more in “Moore’s Law”

• OpenAI: A Redis bug caused a recent ChatGPT data exposure incident

• Zero Trust in a DevOps World

• IT Security News Weekly Summary – Week 12

• IT Security News Daily Summary 2023-03-26

• Host Hack Attempt Detection Using ELK

• Microsoft Offers Guidelines on Detecting Outlook Zero-day Exploits

• Security Affairs newsletter Round 412 by Pierluigi Paganini – International edition

• NCA Infiltrates Cybercrime Market With Fake DDoS Sites

• Afghanistan’s Crises Require a Clear Statement of U.S. Policy

• Microsoft shares guidance for investigating attacks exploiting CVE-2023-23397

• Users’ Private Info Accidentally Made Public by ChatGPT Bug

• New Backdoor Attack Uses Russian-Ukrainian Conflict Phishing Emails

• A ChatGPT Bug Exposes Sensitive User Data

• Schools’ Files Leak Online Days After Ransomware Deadline

• How Do I Get My Phone To Stop Tracking My Activity?

• Google Leads $16 Million Investment in Dope.security

• Intel Co-founder, Philanthropist Gordon Moore Dies at 94

• Crypto Was Afraid to Show Its Face at SXSW 2023

• The Uniquely American Future of US Authoritarianism

• Week in review: Manage the risk of ChatGPT use, know the danger of failed Okta logins

• A Major Flaw in the AI Testing Framework MLflow can Compromise the Server and Data

• Cyber Security Management System (CSMS) for the Automotive Industry

• Vice Society claims attack on Puerto Rico Aqueduct and Sewer Authority

• USB bombs sent to news organizations

• ChatGPT leaks bits of users’ chat history

Generated on 2023-03-27 23:55:22.538658