IT Security News Daily Summary 2024-03-05

• VMware urgent updates addressed Critical ESXi Sandbox Escape bugs

• Self-Replicating AI Malware is Here😱 #ComPromptMized

• Executive leadership changes to drive innovation, simplicity, and growth

• Self-Replicating AI Malware is Here😱 #ComPromptMized

• Report Uncovers Massive Sale of Compromised ChatGPT Credentials

• Self-Replicating AI Malware is Here😱 #ComPromptMized

• Canada’s anti-money laundering agency hit by a cyber attack

• US Sanctions Spyware Company and Executives Who Targeted American Journalists, Government Officials

• Apple Blunts Zero-Day Attacks With iOS 17.4 Update

• Insider Risk Digest: February

• Self-Replicating AI Malware is Here😱 #ComPromptMized

• Badgerboard: A PLC backplane network visibility module

• Cloudflare announces Firewall for AI

• US Gov sanctioned Intellexa Consortium individuals and entities behind Predator spyware attacks

• Self-Replicating AI Malware is Here😱 #ComPromptMized

• HIMSS 2024 Know Before You Go

• Self-Replicating AI Malware is Here😱 #ComPromptMized

• Apple Releases iOS/iPadOS Updates with Zero Day Fixes., (Tue, Mar 5th)

• Fidelity customers’ financial info feared stolen in suspected ransomware attack

• Inside Registered Agents Inc., the Shadowy Firm Pushing the Limits of Business Privacy

• VMware Patches Critical ESXi Sandbox Escape Flaws

• Self-Replicating AI Malware is Here😱 #ComPromptMized

• Congratulating Check Point’s CPX Americas Partner Award Winners

• What Is Passwordless Authentication?

• How to use Surfshark VPN (A Step-by-Step Guide)

• How to use Proton VPN (A Step-by-Step Guide)

• Self-Replicating AI Malware is Here😱 #ComPromptMized

• Inside an Alphv/BlackCat ransomware attack

• Facebook and Other Meta Owned Properties Suffer Mass Outage

• The Essential Soft Skills for Cybersecurity Leaders

• 2024 Predictions: The Rise of AI Brings New Security Challenges

• SIEM vs XDR: Capabilities and Key Differences

• NetApp Leverages AI to Make File System Ransomware Resistant

• DoS vs. DDoS: How they differ and the damage they cause

• Check your DNS! Abandoned domains used to bypass spam checks

• How to Create a Sandbox Environment For Malware Analysis – A Complete Guide

• Cybersecurity in the Cloud: Integrating Continuous Security Testing Within DevSecOps

• How to install and configure fail2ban for even more SSH security

• Boston Red Sox Choose Centripetal as Cyber Network Security Partner

• US accuses Army vet cyber-Casanova of sharing Russia-Ukraine war secrets

• Hamilton confirms ransomware is behind cyber attack

• Meta Platforms Face Outage: Facebook, Instagram, Messenger, Threads Down

• Breaking News: Facebook and Instagram Experience Outage Officially Confirmed

• How to use TunnelBear VPN (Step-by-Step Tutorial)

• Santesoft Sante FFT Imaging

• Nice Linear eMerge E3-Series

• CISA Releases Three Industrial Control Systems Advisories

• CISA Adds Two Known Exploited Vulnerabilities to Catalog

• Mend.io Launches Mend AI

• Cloudflare Unveils a Firewall Designed to Keep LLMs Safe

• Hackers Exploit ConnectWise ScreenConnect Flaws to Deploy TODDLERSHARK Malware

• CISA ADDS MICROSOFT WINDOWS KERNEL BUG USED BY LAZARUS APT TO ITS KNOWN EXPLOITED VULNERABILITIES CATALOG

• IP address X-posure now a feature on Musk’s social media platform

• Cloudflare Introduces AI Security Solutions

• Webinar Today: OT Cybersecurity Risk Mitigation Strategies

• Dtex Systems Snags $50M from Alphabet’s CapitalG

• Dark Web Sale Exposes 3.6 Crore Stolen AI Gaming Accounts

• Look Out For This New Emerging Threat In The World Of AI

• Sentra Jagger provides real-time security insights and AI-assisted remediation guidelines

• GhostSec Evolves With Website Compromise Tools

• Why Your Firewall Will Kill You, (Tue, Mar 5th)

• Ransomware news headlines trending on Google

• How DataDome’s Anti-DDoS Mode Protected a Leading US News Website

• Unveiling the Power of Zero-Knowledge Proofs in Blockchain Technology

• Cloudflare announces Firewall for AI to help security teams secure their LLM applications

• Final post of the series on our cybersecurity survey: Data privacy

• US sanctions founder of spyware maker Intellexa for targeting Americans

• Axonius secures $200 million to scale its global reach and product innovation

• Bitdefender releases GravityZone Cloud MSP Security Solutions

• South Korean Police Develops Deepfake Detection Tool Ahead of April Elections

• Continuous Threat Management’s Strong, Proactive Protection Against CVEs

• From federation to fabric: IAM’s evolution

• Zeek Security Tool Vulns Allow ICS Network Hacking

• An Air Force Employee Shared Highly Classified Data Via Dating App

• Discord Leaker Jack Teixeira Pleads Guilty, Seeks Light 11-Year Sentence

• Cybersecurity M&A Roundup: 27 Deals Announced in February 2024

• Investment Firm Team8 Raises Additional $500 Million

• Axonius Banks $200 Million in Late-Stage Funding

• Tax Season Phishing Surge: Cyber Exploits with AsyncRAT

• Evolving Threats from Within: Insights from the 2024 Data Exposure Report

• 5 Security Benefits of Configuration as Code (CaC)

• Lazarus Group Exploits Microsoft Zero-Day in a Covert Rootkit Assault

• Cyberattack Fallout: Minnesota Hospitals Grapple with Financial Strain

• ALPHV/BlackCat Ransomware Servers Go Down

• American Express warns customers about third party data breach

• Pure360 SPF and DKIM configuration: Step By Step Guideline

• Experts Issue Warning Regarding Rising Threat of AI-Driven Cyber-Physical Attacks

• NetApp cyber-resiliency capabilities protect both primary and secondary data

• Delinea Privilege Control for Servers enforces least privilege principles on critical systems

• European Court of Human Rights Confirms: Weakening Encryption Violates Fundamental Rights

• American Express Data Breach Exposed Customer Data

• American Express Warns Credit Card Data Exposed in Third-Party Breach

• New IDC survey confirms how far CISOs have evolved

• IAM vs PAM: What’s the Difference And Why It Matters

• Rapid7 throws JetBrains under the bus for ‘uncoordinated vulnerability disclosure’

• American Express Discloses Data Breach

• German Police Bust Massive Cybercrime Hub ‘Crimemarket’ with 180,000 Users

• Okta FGA enables developers to define authorization in a way that best fits their business

• GhostSec’s joint ransomware operation and evolution of their arsenal

• ALPHV BlackCat New Leak Site Seized by Authorities

• RA World Ransomware Attack Windows Using Hacked Domain Control & Anti-AV Tactics

• CrowdStrike and Dell unleash an AI-powered, unified security vision

• Bitwarden vs 1Password: 2024 Business Password Manager Comparison

• Axonius, a specialist in cyber asset managment, secures $200M at a flat $2.6B valuation

• Celebrating women’s inclusion in the climate innovation space

• Mitigating Lateral Movement with Zero Trust Access

• Researchers Test Zero-click Worms that Exploit Generative AI Apps

• What Are Command and Control Attacks?

• What Are the Top 7 DDoS Mitigation Tactics for Energy Grids?

• The Insecurity of Video Doorbells

• Zeek Security Tool Vulnerabilities Allow ICS Network Hacking

• Critical Vulnerability Exposes TeamCity Servers to Takeover

• No “Apple magic” as 11% of macOS detections last year came from malware

• Over 225,000 Compromised ChatGPT Credentials Up for Sale on Dark Web Markets

• Cybercriminals Using Novel DNS Hijacking Technique for Investment Scams

• What is Exposure Management and How Does it Differ from ASM?

• Ex-Twitter Execs Sue Elon Musk Over Unpaid Severance

• China Offers Start-Ups AI Computing Vouchers

• Pegasus spyware creator ordered to reveal code used to spy on WhatsApp users

• Accelerate Your Cybersecurity Transformation at Ignite On Tour

• Sensitive data exposure: How to prevent it and where do we stand in 2024

• Hundreds of orgs targeted with emails aimed at stealing NTLM authentication hashes

• Warning: Thread Hijacking Attack Targets IT Networks, Stealing NTLM Hashes

• First look at Malwarebytes 5.0

• Amazon Web Services Plans Saudi Arabia Infrastructure Region

• New CHAVECLOAK Banking Trojan Targets Brazilians via Malicious PDFs

• Ukraine Claims it Hacked Russian MoD

• Nissan Ends Sunderland Production Of Leaf EV

• Winklevoss’ Gemini To Return More Than $1bn To Customers

• Apple Adds ‘AI’ M3 Chip To MacBook Air Laptops

• The Need For Cybersecurity in Agriculture

• The Role of Security Configuration Management (SCM) in Preventing Cyberattacks

• Spam crusade lands charity in hot water with data watchdog

• Experts disclosed two severe flaws in JetBrains TeamCity On-Premises software

• TeamCity Users Urged to Patch Critical Vulnerabilities

• Preparedness is the key: training with the Crisis Response Community

• Overview of AI Regulations and Regulatory Proposals of 2023

• EU Fines Apple 1.8bn Euros Over Music Streaming Restrictions

• CACTUS Hackers Exploiting Software Bug to Attack Corporate Networks

• Leaksearch – To Search and Parse Plain Text Passwords Using ProxyNova

• Network tunneling with… QEMU?

• NIS2: 1. Perform a gap analysis

• Ukraine’s GUR hacked the Russian Ministry of Defense

• North Korea launches cyber-attacks on Semiconductor industry

• Why cyber maturity assessment should become standard practice

• Secure your hybrid workforce: The advantages of encrypted storage

• 3 free data protection regulation courses you can take right now

• Data Processing in Cisco Observability Platform – A Step-by-Step Guide

• Organizations are knowingly releasing vulnerable applications

• What organizations need to know about the Digital Operational Resilience Act (DORA)

• Home Cybersecurity for Seniors: Tips and Resources

• GTPDOOR – Previously Unknown Linux Malware Attack Telecom Networks

• Critical JetBrains TeamCity On-Premises Flaws Could Lead to Server Takeovers

• LogRhythm Promotes Joanne Wong to Interim Chief Marketing Officer

• Prevention & Cure: Countermeasures Against Healthcare Cyberattacks

• Ensuring Security and Compliance: A Detailed Guide to Testing the OAuth 2.0 Authorization Flow in Python Web Applications

• ISC Stormcast For Tuesday, March 5th, 2024 https://isc.sans.edu/podcastdetail/8880, (Tue, Mar 5th)

• Cloudflare wants to put a firewall in front of your LLM

• Is the BlackCat/AlphV ransomware gang self-destructing?

• Don’t Believe the Hype: Myth-busting Zero Trust Marketing

• Proactive Patching Translates into Less Ransomware Payouts

• Unpacking Our Findings From Assessing Numerous Infrastructures (Part 2)

• Home Privacy Invasion: Protecting Against Surveillance

• Microsoft Secure: Learn expert AI strategy at our online event

• American Express Customer Data Compromised in Third-Party Service Provider Breach

• Elon Musk switched on X calling by default: Here’s how to switch it off

• American Express admits card data exposed and blames third party

• TrustCloud Welcomes Security and Compliance Expert Dixon Wright as VP GRC Transformation

• Defend against human-operated ransomware attacks with Microsoft Copilot for Security​​

• IT Security News Daily Summary 2024-03-04

• Epic Games ‘hackers’ admit threat of leak was phony

• Voting No on Prop E Is Easy and Important for San Francisco

• Secure Your API With These 16 Practices With Apache APISIX (Part 2)

• White House Recommends Memory-Safe Programming Languages and Security-by-Design

• Facebook Allows Ads For Illegal Drugs Like LSD And Mushrooms

• VulnRecap 3/4/24 – Ivanti, Ubiquiti, AppLocker Under Attack

• Pentagon Leaker Jack Teixeira Pleads Guilty Under a Deal That Calls for at Least 11 Years in Prison

• Vulnerability Summary for the Week of February 26, 2024

• Change Healthcare attack latest: ALPHV bags $22M in Bitcoin amid affiliate drama

• Infosec pros weigh in on proposed ransomware payment bans

• Why Signal ‘turned our architecture inside out’ for its latest privacy feature

• Some American Express customers’ data exposed in a third-party data breach

• Entro Streamlines Machine Identity Life Cycle Management

• CISA and Partners Coordinate on Security and Resilience for Super Tuesday

• Seoul accuses North Korea of stealing southern chipmakers’ designs

• LockBit, Alphv/BlackCat highlight February ransomware activity

• American Express Cardholders Impacted by Third-Party Vendor Data Breach

• The Marvels and Challenges of AI

• Secure by Design: Google’s Perspective on Memory Safety

• Singapore reviews ways to boost digital infrastructures after big outage

• Privacy Isn’t Dead. Far From It. | EFFector 36.3

• Celebrating 15 Years of Surveillance Self-Defense

• Africa’s Cyber Threats Rise With AI Development

• Guarding the Gates of GenAI: Security Challenges in AI Evolution

• CISA Updates Toolkit to Promote Public Safety Communications and Cyber Resiliency

• Hackers Behind the Change Healthcare Ransomware Attack Just Received a $22 Million Payment

• German defense chat overheard by Russian eavesdroppers on Cisco’s WebEx

• Self-Propagating Worm Created to Target Generative AI Systems

• Russian Operatives Expose German Military Webex Conversations

• cloud audit

• A Virtual Reality Tour of Surveillance Tech at the Border: A Conversation with Dave Maass of the Electronic Frontier Foundation

• USENIX Security ’23 – Evangelos Bitsikas, Theodor Schnitzler, Christina Pöpper, Aanjhan Ranganathan – Freaky Leaky SMS: Extracting User Locations by Analyzing SMS Timings

• CISA Warns Phobos Ransomware Groups Attacking Critical Infrastructure

• Hacktivist Collective NoName057 Strikes European Targets

• CISA Adds One Known Exploited Vulnerability to Catalog

• Is Bitcoin Changing? Big Shifts and What It Means for Us

• How Sandboxes Can Help You Investigate Linux Malware

• New Banking Trojan “CHAVECLOAK” Targets Brazil

• Critical vulnerabilities in TeamCity JetBrains fixed, release of technical details imminent, patch quickly! (CVE-2024-27198, CVE-2024-27199)

• TA577 Exploits NTLM Authentication Vulnerability

• Can ban on ransom payments block ransomware spread

• Top Tech Conferences & Events to Add to Your Calendar in 2024

• Should we ban ransom payments?

• Why it Pays to Have a Comprehensive API Security Strategy

• Chinese nation state actors to ramp up cyber espionage attempts in 2024

• Hamilton City’s Network is the Latest Casualty of the Global Cyberwar.

• AppSec Survey Reveals Troubling Trends

• Ransomware Ban Backers Insist Thugs Must Be Cut Off From Payday

• Researchers Create AI Worms That Can Spread From One System To Another

• GTPDOOR – A Novel Backdoor Tailored For Covert Access Over The Roaming Exchange

• Remote Stuxnet Style Attack Possible With Web Based PLC Malware

• 90% of Leaders Plan to Integrate AI into their Organisations in 2024

• Generative AI Worms: Threat of the Future?

• Cloudflare Defensive AI protects organizations against AI-enhanced attacks

• Predator Spyware Targeted Mobile Phones in New Countries

• Threat Brief: WordPress Plugin Exploit Leads to Godzilla Web Shell, Discovery & New CVE

• German Authorities Take Down Crimemarket Cybercrime Website

• Ransomware ban backers insist thugs must be cut off from payday

• German Authorities Take Down ‘Crimemarket’ Cybercrime Website

• Cyolo PRO simplifies remote privileged access in OT environments

• How Cybercriminals are Exploiting India’s UPI for Money Laundering Operations

• 6 Ways Akamai Innovates to Strengthen Their Leadership in Application Security

• Like 5G, telcos must seek commercial use cases to move GenAI forward

• META hit with privacy complaints by EU consumer groups

• Revolutionizing Identity Theft with AI

• 5 Ways to Prevent Prompt Injection Attacks

• GitHub push protection now on by default for public repositories

• Simplifying Firewall Management: Cisco Defense Orchestrator Nears FedRAMP® Authorization

• Linux Foundation Tackles Financial Fraud With Open Source Platform

• How Traffic, State, and Organizational Data Help Fortify Your Network

• Webinar Tomorrow: OT Cybersecurity Risk Mitigation Strategies

• Hikvision Patches High-Severity Vulnerability in Security Management System

• GitHub Under Siege: Unraveling the Ongoing Automated Attack on Open-Source Repositories

• Darktrace partners with Xage Security to detect threats deep inside IT and OT systems

• Identiv ScrambleFactor provides privacy and security in restricted access environments

• Navigating the Evolution of Cybersecurity: The Leap from NIST 1 to NIST 2

• Akamai App & API Protector enhancements detect and mitigate short DDoS attack bursts

• Heather Couk is here to keep your spirits up during a cyber emergency, even if it takes the “Rocky” music

• Cyber Security Today, March 4, 2024 – A hacker is trying to trick the U.S. telecom regulator, WhatsApp gets to see Pegasus code and more

• Zyxel Networks introduces affordable WiFi 7 solution for SMBs

• Phishers target FCC, crypto holders via fake Okta SSO pages

• US Court Orders NSO Group to Handover Code for Spyware, Pegasus to WhatsApp

• New GTPDOOR backdoor is designed to target telecom carrier networks

• Remote Stuxnet-Style Attack Possible With Web-Based PLC Malware: Researchers

• FCC Employees Targeted in Sophisticated Phishing Attacks

• Prescription Insecurity: The Russian Connection to Healthcare Cyber Attacks

• AI-Fueled Cyber-Attacks: A Growing Threat to Critical Infrastructure

• Securing software repositories leads to better OSS security

• Silobreaker enhances threat intelligence platform with MITRE ATT&CK TTP detection capabilities

• From 500 to 5000 Employees – Securing 3rd Party App-Usage in Mid-Market Companies

• Hackers simulating cyber-attacks in labs

• Apple Reverses Course Over EU Ban On Web Apps

• Nepali Hacker Tops Hall of Fame by Exposing Facebook’s Zero-Click Flaw

• Reddit Looks For $6.5bn Valuation In NYSE IPO

• Clouded II Documentary Reveals the True Cost of the Cloud

• Exceptional Women Recognised for Contribution to Cyber Industry at Most Inspiring Women in Cyber Awards 2024

• Ubuntu 18.04 Security Updates for Linux Kernel Vulnerabilities

• UK Proposes Faster, More Powerful E-Bikes

• Nigeria Detains Two Binance Executives Amidst Crypto Probe

• Nvidia Shares Close Over $2tn For First Time

• Securing Perimeter Products Must Be a Priority, Says NCSC

• Tripwire Patch Priority Index for February 2024

• #TripwireBookClub – Black Hat GraphQL

• The federal bureau of trolling hits LockBit, but the joke’s on us

• Over 100 Malicious AI/ML Models Found on Hugging Face Platform

• New SSO-Based Phishing Attack Trick Users into Sharing Login Credentials

• Protect Yourself and Your Business With This $40 Cybersecurity E-Learning Bundle

• Threat actors hacked Taiwan-based Chunghwa Telecom

• Drugs and Cybercrime Market Busted By German Cops

• Boarding pass and ID will no longer be required at some of the biggest airports in the USA

• Multistage RA World Ransomware Uses Anti-AV Tactics, Exploits GPO

• Huge Surge in Ransomware-as-a-Service Attacks targeting Middle East & Africa

• U.S. Charged Iranian Hacker, Rewards up to $10 Million

• A week in security (February 26 – March 3)

• Risk and Regulation: A Strategic Guide to Compliance Risk Assessment

• New Linux variant of BIFROSE RAT uses deceptive domain strategies

• How-To: NIS2 EU Directive

• PyRIT: Open-source framework to find risks in generative AI systems

• Phobos Ransomware Aggressively Targeting U.S. Critical Infrastructure

• Integrating software supply chain security in DevSecOps CI/CD pipelines

• 95% believe LLMs making phishing detection more challenging

• New compensation trends in the cybersecurity sector

• Photos: BSidesZagreb 2024

• Enhancing security through proactive patch management

• LockBit’s contested claim of fresh ransom payment suggests it’s been well hobbled

• Home Network Security Audits: Protecting Your Wi-Fi

• ISC Stormcast For Monday, March 4th, 2024 https://isc.sans.edu/podcastdetail/8878, (Mon, Mar 4th)

• New Silver SAML Attack Let Attackers Forge Any SAML Response To Entra ID

• Threat Brief: WordPress Exploit Leads to Godzilla Web Shell, Discovery & New CVE

• Ahead of Super Tuesday, US elections face existential and homegrown threats

• IoT Device Privacy: Managing Smart Home Data

• Capturing DShield Packets with a LAN Tap [Guest Diary], (Sun, Mar 3rd)

Generated on 2024-03-05 23:55:48.510258