IT Security News Daily Summary 2024-02-29

• Fulton County, Security Experts Call LockBit’s Bluff

• Researchers found a zero-click Facebook account takeover

• ALPHV Blackcat, GCP-Native Attacks, Bandook RAT, NoaBot Miner, Ivanti Secure Vulnerabilities, and More: Hacker’s Playbook Threat Coverage Round-up: February 2024

• A leaky database spilled 2FA codes for the world’s tech giants

• White House goes to court, not Congress, to renew warrantless spy powers

• USENIX Security ’23 – Suood Al Roomi, Frank Li – A Large-Scale Measurement of Website Login Policies

• We Flew a Plane Over San Francisco to Fight Proposition E. Here’s Why.

• Kali Linux 2024.1: Supercharge Your Penetration Testing with a Revamped Experience

• Seamless shopping with Room & Board

• Android Money Transfer XHelper App Exposed as Money Laundering Network

• How open source is disrupting enterprise security: Startup Filigran shows the way with collaborative threat defense

• RoboForm Free vs. Paid: Which Plan Is Best For You?

• ONCDs’ call for memory safety brings considerable challenges, changes, and costs

• CISA, U.S. and International Partners Warn of Ongoing Exploitation of Multiple Ivanti Vulnerabilities

• US President Biden Signed Order To Protect Americans Personal Data

• Consumer Groups Accuse Facebook Of “Massive, Illegal” Data Collection

• Chinese ‘connected’ cars are a national security threat, says Biden

• Why Apple added protection against quantum computing when quantum computing doesn’t even exist yet

• Free VPN vs Paid VPN: Which One Is Right for You?

• The Mysterious Case of the Missing Trump Trial Ransomware Leak

• A government watchdog hacked a US federal agency to stress-test its cloud security

• OpenAI Sued For Unauthorised Use Of Journalist Content, Again

• Security Vulnerabilities Popping Up on Hugging Face’s AI Platform

• Wordfence Intelligence Weekly WordPress Vulnerability Report (February 19, 2024 to February 25, 2024)

• German Steelmaker Thyssenkrupp Confirms Ransomware Attack

• Biden Administration Will Investigate National Security Risks Posed by Chinese-Made ‘Smart Cars’

• Pharma Giant Cencora Reports Cybersecurity Breach

• phishing

• Here Are the Google and Microsoft Security Updates You Need Right Now

• GitHub Fights Forks — Millions of Them — Huge Software Supply Chain Security FAIL

• Microsoft Investment In Mistral AI Prompts EU Scrutiny Calls

• Exploring the Differences Between Residential Proxies and VPNs: Which is Right for You?

• Ransomware gangs are paying attention to infostealers, so why aren’t you?

• Fraud Detection: Time is Not on Our Side

• New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems

• Savvy Seahorse Targets Investment Platforms With DNS Scams

• Apple To Disclose AI Plans This Year, Says Tim Cook

• Savvy Seahorse Using Fake ChatGPT, Facebook Ads in DNS Investment Scam

• Strategy, Incubation and Applications shows up strong at Cisco Live EMEA

• Discount Retail Giant Pepco Loses €15 Million to Cybercriminals

• Data security concerns with Chinese cars and Ban on mass data being imported to China

• Google Hit With $2.3bn Lawsuit Over Digital Ad Losses

• CISA, FBI, and MS-ISAC Release Advisory on Phobos Ransomware

• #StopRansomware: Phobos Ransomware

• UnitedHealth confirms ransomware gang behind Change Healthcare hack amid ongoing pharmacy outages

• CNCF Graduates Falco Project to Improve Linux Security

• How To Combat Cyber Threats In The Era Of AI

• Apple Cancels It’s Ambitious Plan of Building an Electric Car

• Notorious Hacker Group Strikes US Pharmacies

• Healthcare sector warned of ALPHV BlackCat ransomware after surge in targeted attacks

• Windows Zero Day Exploited By North Korean Hackers In Rootkit Attack

• Ubiquiti Router Users Urged To Secure Devices Targeted By Russian Hackers

• New SPIKEDWINE APT group is targeting officials in Europe

• Airbnb scam sends you to a fake Tripadvisor site, takes your money

• Meta Patches Facebook Account Takeover Vulnerability

• Iranian Hackers Target Aviation and Defense Sectors in Middle East

• A CISO’s Guide to SaaS Security Posture Management

• Legal Implications for Smart Doorbell Users: Potential £100,000 Fines

• Crypto Cautionary Tale: How a Man Lost $180,000 in a Scam

• Airbnb scammers pose as hosts, redirect users to fake Tripadvisor site

• Spring into Action! Earn up to $10,000 with our Extended Bug Bounty Program Extravaganza through Memorial Day!

• What Is Firewall-as-a-Service? FWaaS Ultimate Guide

• Promoting Sustainable Livelihoods in South America and the Amazon

• Cisco Accelerates Convergence of IT and Operations Technologies

• Veeam Data Cloud delivers data protection and recovery services on a single cloud platform

• Dark Web Market Revenues Rebound but Sector Fragments

• Russia Attacked Ukraine’s Power Grid at Least 66 Times to ‘Freeze It Into Submission’

• Meta’s pay-or-consent model hides ‘massive illegal data processing ops’: lawsuit

• Building Your Cyber Incident Response Team

• BlackCat Ransomware Gang Claims Attack on Change Healthcare

• The Imperative for Modern Security: Risk-Based Vulnerability Management

• Cisco Patches High-Severity Vulnerabilities in Data Center OS

• ALPHV/BlackCat threatens to leak data stolen in Change Healthcare cyberattack

• US Government Warns Healthcare is Biggest Target for BlackCat Affiliates

• Silicon In Focus Podcast: Your Life and Your Business on Your Phone

• Ivanti Pulse Secure Found Using End of Life CentOS 6 OS

• Lazarus Hackers Exploited Windows Kernel Flaw as Zero-Day in Recent Attacks

• How to Prioritize Cybersecurity Spending: A Risk-Based Strategy for the Highest ROI

• GTPDOOR Linux Malware Targets Telecoms, Exploiting GPRS Roaming Networks

• US SEC Investigates If OpenAI Investors Were Misled – Report

• How the “Frontier” Became the Slogan of Uncontrolled AI

• Facebook bug could have allowed attacker to take over accounts

• Windows Zero-Day Exploited by North Korean Hackers in Rootkit Attack

• What is cyber hygiene and why businesses should know about it

• Popular video doorbells can be easily hijacked, researchers find

• TimbreStealer Malware Targets Mexican Victims with Tax-Related Lures

• The Art of Domain Deception: Bifrost’s New Tactic to Deceive Users

• Odysseus Lander Reveals Moon Images, Despite Broken Leg

• Biden Crack Down Sale of Americans’ Personal Data to China & Russia

• Kali Linux 2024.1 Released – What’s New

• The White House Warns Cars Made in China Could Unleash Chaos on US Highways

• Kali Linux 2024.1 released: New tools, new look, new Kali Nethunter kernels

• Why passkeys will replace passwords

• Biden Bans Mass Sale of Data to Hostile Nations

• Is the LockBit gang resuming its operation?

• LOCKBIT 3.0 Ransomware – Complete Malware Analysis Report

• Chinese Mini PC Maker Acemagic Ships machines with Malware Pre-installed

• Silence Laboratories, a cryptographic security startup, secures funding

• Making Sense of Financial Services Cybersecurity Regulations

• A Pornhub Chatbot Stopped Millions From Searching for Child Abuse Videos

• Investing in partnerships for inclusion and innovation: a spotlight on Astia and Kiva

• Lazarus APT exploited zero-day in Windows driver to gain kernel privileges

• Lazarus Exploits Typos to Sneak PyPI Malware into Dev Systems

• New Backdoor Targeting European Officials Linked to Indian Diplomatic Events

• How to Configure the Most Secure Settings for Microsoft Defender

• Millions of GitHub Repos Found Infected with Malicious Code

• Chinese Hackers Exploiting Ivanti VPN Flaws to Deploy New Malware

• Lazarus Hackers Exploited Windows 0-Day to Gain Kernel read/write Access

• Vulnerabilities in business VPNs under the spotlight

• BobTheSmuggler: Open-source tool for undetectable payload delivery

• Cybersecurity startup makes open source pay, gains funding in a down market

• How organizations can navigate identity security risks in 2024

• President Biden Blocks Mass Transfer of Personal Data to High-Risk Nations

• Ransomware infection reach extends to Data Backups

• OpenCTI maker Filigran raises $16 million for its cybersecurity threat management suite

• Chinese PC-maker Acemagic customized its own machines to get infected with malware

• Cryptojacking is no longer the sole focus of cloud attackers

• Inside the book: Androids – The Team That Built the Android Operating System

• Vishing, smishing, and phishing attacks skyrocket 1,265% post-ChatGPT

• Infosec products of the month: February 2024

• The CISO’s guide to reducing the SaaS attack surface

• [Guest Diary] Dissecting DarkGate: Modular Malware Delivery and Persistence as a Service., (Thu, Feb 29th)

• ISC Stormcast For Thursday, February 29th, 2024 https://isc.sans.edu/podcastdetail/8874, (Thu, Feb 29th)

• Australian spy chief fears sabotage of critical infrastructure

• Safe Online Shopping: Protecting Your Financial Data

• Securing Smart Cameras and Baby Monitors

• ALPHV/BlackCat claims responsibility for Change Healthcare attack

• BEAST AI needs just a minute of GPU time to make an LLM fly off the rails

• Cutout.Pro – 19,972,829 breached accounts

• BEAST AI needs just a minute of GPU time to make an LLM fly over its safety guardrails

• Gone in 60 seconds: BEAST AI model attack needs just a minute of GPU time to breach LLM guardails

• USENIX Security ’23 – Yu Chen, Yang Yu, Lidong Zhai – InfinityGauntlet: Expose Smartphone Fingerprint Authentication to Brute-force Attack

• Facebook Subscription Feature Reportedly Allows For Child Exploitation

• IT Security News Daily Summary 2024-02-28

• Speedify VPN Free vs. Premium: Which Plan Is Right For You?

• Best Secure Access Service Edge Platforms in 2024

• High-risk open source vulnerabilities on the rise, Synopsys reports

• Wireless and the CiscoLive Network Operations Center

• Navigating the Waters of Generative AI

• Multi-cloud security challenges and best practices

• Stopping a targeted attack on a Managed Service Provider (MSP) with ThreatDown MDR

• 5 Microsoft Edge settings to change for more secure browsing than Chrome offers

• Biden Executive Order Bans Sale of US Data to China, Russia. Good Luck

• Pharmaceutical giant Cencora discloses a data breach

• CISA Publishes Guide to Support University Cybersecurity Clinics

• Vodafone Completes 3G Network Switch Off In UK

• CISA Releases Resource Guide for University Cybersecurity Clinics

• Anycubic users say their 3D printers were hacked to warn of a security flaw

• Why Companies Are Still Investing in Tech During an Economic Slowdown

• Why Higher Education Is So Vulnerable to Cyber Attacks — And What to Do

• FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure

• Imperva Customers are Protected Against New SQL Injection Vulnerability in WordPress Plugin

• Bitcoin Pushes Past $60,000, In First Time Since November 2021

• Calendar Meeting Links Used to Spread Mac Malware

• ALPHV is singling out healthcare sector, say FBI and CISA

• FBI Issues Alert on Russian Threats Targeting Ubiquiti Routers

• Multiple vulnerabilities in Adobe Acrobat Reader could lead to remote code execution

• Palo Alto investor sues over 28% share tumble

• White House Issues Executive Order on International Data Protection

• 34 Million Roblox Credentials Exposed on Dark Web in Three Years

• President Biden To Plug US Data Transfers To China, Russia Etc

• The Role of Penetration Testing in Strengthening Cyber Defenses

• $2,751 Bounty Awarded for Arbitrary File Upload Vulnerability Patched in Avada WordPress Theme

• New Ransomware gang steals about 200GB of data from Game Developer

• Ransomware gangs exploiting ConnectWise ScreenConnect flaws

• Dictators Used Sandvine Tech to Censor the Internet. The US Finally Did Something About It

• Showcasing Powerful Private 5G Use Cases at Cisco Live EMEA!

• Unmasking 2024’s Email Security Landscape

• One year later, Rhadamanthys is still dropped via malvertising

• Cyber Insights 2024: APIs – A Clear, Present, and Future Danger

• White House to Issue Executive Order on Personal Information Protection

• Iran-Linked UNC1549 Hackers Target Middle East Aerospace & Defense Sectors

• UK Unveils Draft Cybersecurity Governance Code to Boost Business Resilience

• BlackCat Ransomware Linked to UnitedHealth Subsidiary Optum Hack

• NVIDIA’s Dominance in Shaping the Digital World

• Optum CEO Stresses Communication’s Vital Role in Cyberattack Management

• Cohesity Gaia helps businesses transform secondary data into knowledge

• Exploit Attempts for Unknown Password Reset Vulnerability, (Wed, Feb 28th)

• BYD Ramps Up EV Price War In China With Cheaper Models

• FBI, CISA, HHS warn of targeted ALPHV/Blackcat ransomware attacks against the healthcare sector

• US Bans Trading With Canadian Network Intelligence Firm Sandvine

• European retailer Pepco loses €15.5 million in phishing (possibly BEC?) attack

• Researchers Uncover Tools And Tactics Used By Chinese Hackers

• Hackers Using Weaponized PDF Files To Kickstart Infection Chain

• Cato Networks Announces 59% Revenue Growth In 2023 Business Results

• The Silent Threat: Why Vishing is Causing Major Problems for Businesses

• Biden EO Will Keep China, Russia from Buying Americans’ Sensitive Data

• Tax Season Vigilance: Guarding Against Fraudulent Schemes

• Privacy Under Siege: Analyzing the Surge in Claims Amidst Cybersecurity Evolution

• Researchers Exposed Predator Spyware Infrastructure & Domains Associated

• FBI, CISA warns Of ALPHV Blackcat Ransomware Attacking Hospitals

• A Shadowed Menace : The Escalation of Web API Cyber Attacks in 2024

• WEF Is Waging War on Misinformation and Cyber Insecurity

• Today’s Attack Trends — Unit 42 Incident Response Report

• Hackers Steal Personal Information From Pharma Giant Cencora

• RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

• Cyber Security Today, Feb. 28, 2024 – Thousands of subdomains abused for phishing, the latest ransomware news and more

• FBI Warns U.S. Healthcare Sector of Targeted BlackCat Ransomware Attacks

• Apple iMessage Adds Quantum Resistance To Its Encryption With PQ3 Protocol

• AMOS macOS Stealer Steals Particular Files on the System & Browser Data

• VirusTotal Threat Intelligence Now Seamlessly Integrated in Infinity XDR/XPR

• 6 Best Digital Forensics Tools Used by Experts in 2024

• How HBCUs and Cisco Are Partnering to Provide Opportunities and Advancement for Students

• Synopsys Report: 74% of Codebases Harbour High-Risk Open Source Vulnerabilities, Up 54%

• Stop running security in passive mode

• Enterprise security: Making hot desking secure and accessible on a global scale

• Intel Core Ultra vPro Platform Brings New Security Features

• Chinese Cyberspies Use New Malware in Ivanti VPN Attacks

• Is XDR Enough? The Hidden Gaps in Your Security Net

• US Government Urges Cleanup of Routers Infected by Russia’s APT28

• UK ICO Vows to Safeguard Privacy in AI Era, Rules Out Bespoke Regulation

• How Security Leaders Can Break Down Barriers to Enable Digital Trust

• A Cyber Insurance Backstop

• Exabeam introduces new features to improve security analyst workflows

• State-sponsored hackers know enterprise VPN appliances inside out

• Building Your Privacy-Compliant Customer Data Platform (CDP) with First-Party Data

• Lawyer For Bankman-Fried Urges Judge Not To Impose 100-Year Sentence

• FBI Alert: Russian Hackers Target Ubiquiti Routers for Data, Botnet Creation

• LoanDepot January Hack: 16.9M Individuals Data Exposed

• Russia-linked APT28 compromised Ubiquiti EdgeRouters to facilitate cyber operations

• Change Healthcare outages reportedly caused by ransomware

• The Predator spyware ecosystem is not dead

• Navigating the Cloud: Exploring Lateral Movement Techniques

• GDPR Security Pack

• Apple Cancels Much Delayed Electric Car Project

• NIST Releases Cybersecurity Framework 2.0: Guide for All Organizations

• Geopolitics Accelerates Need For Stronger Cyber Crisis Management

• The ISO 27000 family of protocols and their role in cybersecurity

• Microsoft Copilot for Security: The great equalizer for government security

• Compliance Scorecard​ collaborates with ConnectSecure to automate asset governance

• Superusers Need Super Protection: How to Bridge Privileged Access Management and Identity Management

• Uncle Sam tells nosy nations to keep their hands off Americans’ personal data

• Over Half of UK Firms Concerned About Insider Threats

• ManageEngine partners with Check Point to help organizations tackle mobile threats

• Ads for Zero-Day Exploit Sales Surge 70% Annually

• What We Learned from the 2024 State of Cybersecurity Survey

• Hackers Advertising New Version Of WarZone RAT On Hacking Forums

• NinjaOne and SentinelOne integration enhances risk mitigation and IT security

• Is Network Security Still a Thing in the Age of Public Cloud?

• TimbreStealer Malware Spreading via Tax-themed Phishing Scam Targets IT Users

• The Importance of Implementing an Information Security Management System (ISMS)

• Beware of Typos that May lead to Malicious PyPI Package Installation

• Beware of Typos that May lead to malicious PyPI Package Installation

• Navigating Data Security Concerns in Cloud Migration: Strategies and Best Practices

• Cybersecurity Agencies Warn Ubiquiti EdgeRouter Users of APT28’s MooBot Threat

• Russia develops an AI Cyber Threat Tool to put a jolt in US democracy

• Preparing for the NIS2 Directive

• Understanding employees’ motivations behind risky actions

• When Cats Fly: Suspected Iranian Threat Actor UNC1549 Targets Israeli and Middle East Aerospace and Defense Sectors

• That home router botnet the Feds took down? Moscow’s probably going to try again

• AI-driven DevOps: Revolutionizing software engineering practices

• AI in cybersecurity presents a complex duality

• How AI is reshaping the cybersecurity job landscape

• Tangerine – 243,462 breached accounts

• ISC Stormcast For Wednesday, February 28th, 2024 https://isc.sans.edu/podcastdetail/8872, (Wed, Feb 28th)

• Cutting Edge, Part 3: Investigating Ivanti Connect Secure VPN Exploitation and Persistence Attempts

• Managing Cyber Risk for Under-Pressure CISOs

• Sen. Wyden Exposes Data Brokers Selling Location Data to Anti-Abortion Groups That Target Abortion Seekers

Generated on 2024-02-29 23:55:32.753163