IT Security News Daily Summary 2024-04-13

• Crooks manipulate GitHub’s search results to distribute malware

• ISC Stormcast For Sunday, April 14th, 2024 https://isc.sans.edu/podcastdetail/8938, (Sat, Apr 13th)

• What is Web Application Security Testing?

• BatBadBut flaw allowed an attacker to perform command injection on Windows

• Offensive Security Necessitates a Data-driven Approach for CISOs

• Unmasking the “Golden Top” Cybercrime Syndicate: Zambia’s Battle Against Deception

• AI’s Role in Averting Future Power Outages

• U.S. Treasury Hamas Spokesperson for Cyber Influence Operations

• Ex-Security Engineer Jailed 3 Years for $12.3 Million Crypto Exchange Thefts

• X’s URL Blunder Sparks Security Concerns

• E-Challan Fraud, Man Loses Rs 50,000 Despite Not Sharing Bank OTP

• Critical Palo Alto GlobalProtect Vulnerability Exploited (CVE-2024-3400), (Sat, Apr 13th)

• House Passes Reauthorization of Key US Surveillance Program After Days of Upheaval Over Changes

• Government spyware is another reason to use an ad blocker

• Stay Safe This Tax Season: Fake Tax Apps Pushing Malware on the Rise

• Windows Apps Vulnerable to Command Injection via “BatBadBut” Flaw

• Space Force Is Planning a Military Exercise in Orbit

• From Alert Fatigue to Leadership Acumen: How MDR Empowers CISO Aspirations

• Keeping cybersecurity within focus as economic pressures take hold

• Roku Breach Hits 567,000 Users

• Cybercriminals Employ Obfuscation in Invoice Phishing Malware Campaigns

• Hackers Deploy Python Backdoor in Palo Alto Zero-Day Attack

• Cyber Attacks: The Need For an IT and Board-Level Understanding of the Risks

• Introducing the Cyber Security & Cloud Congress North America 2024, just 10 weeks away!

• S.T.O.P. is Working to ‘Ban The Scan’ in New York

• Giant Tiger – 2,842,669 breached accounts

• CISA Warns of Compromised Microsoft Accounts

• Retail Tech Deep-Dive: Meraki MT Sensors

• Cisco Gold Partner: A Team Approach to Certification Turns to Gold at Advanced Unibyte

• Zero-day exploited right now in Palo Alto Networks’ GlobalProtect gateways

• USENIX Security ’23 – Fast IDentity Online with Anonymous Credentials (FIDO-AC)

• EFF Submits Comments on FRT to Commission on Civil Rights

• iPhone Users in 92 Countries Targeted by Mercenary Spyware Attacks

• IT Security News Daily Summary 2024-04-12

• State-Sponsored Hackers Exploit Zero-Day to Backdoor Palo Alto Networks Firewalls

• Rust gets security fix for Windows vulnerability

• Pros and cons of 7 breach and attack simulation tools

• Roku disclosed a new security breach impacting 576,000 accounts

• Google One VPN axed for everyone but Pixel loyalists … for now

• CISA Briefs World Travel Organization Expedia with Advice on Security

• House Votes to Extend—and Expand—a Major US Spy Program

• AI Safety Summit round two draws government, industry leaders to Seoul next month

• 12 Data Loss Prevention Best Practices (+ Real Success Stories)

• NordPass Review 2024: Is It the Right Fit for Your Business?

• Cyber Security Today, Week in Review for week ending Friday, April 12, 2024

• CVE-2024-3400 exploited: Unit 42, Volexity share more details about the attacks

• Roku Faces Cyber Attack Impact 500000 Accounts – The Analysis

• OAuth (Open Authorization)

• Change Healthcare Faces Another Ransomware Threat—and It Looks Credible

• What Does EFF Mean to You?

• Why you need an SBOM (Software Bill Of Materials)

• Cybersecurity Decluttered: A Journey to Consolidation

• Communication Skills in Cybersecurity

• Shadow AI: The Murky Threat to Enterprise Adoption of Generative AI

• Sisense Hacked: CISA Warns Customers at Risk

• Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400

• Apple Alerts iPhone Users in 92 Countries to Mercenary Spyware Attacks

• Security engineer jailed for 3 years for $12M crypto hacks

• How to change your Social Security Number

• Wiz Acquires Gem Security, Pushes Security Tools Consolidation

• The essential duo of SCA and SBOM management

• Windows Systems Vulnerable to Attacks Due to Critical ‘BatBadBut’ Rust Flaw

• LastPass Dodges Deepfake Scam: CEO Impersonation Attempt Thwarted

• Alert! Palo Alto RCE Zero-day Vulnerability Actively Exploited in the Wild

• Sisense’s data breach is serious enough that CISA is investigating. Here’s what you need to do

• Roku says 576,000 user accounts hacked after second security incident

• Calling All Past Alumni to Test their Strength and Compete

• Secrets of SharePoint Security: New Techniques to Evade Detection

• US House bill prohibits ransomware payments over $100,000

• Sophos Study: 94% of Ransomware Victims Have Their Backups Targeted By Attackers

• Free and Downloadable Email Security Policy Template

• RubyCarp: Insights Into the Longevity of a Romanian Cybercriminal Gang

• The Future of Quantum Computers: Challenging Space Encryption with Light

• AI Could Be As Impactful as Electricity, Predicts Jamie Dimon

• Popular Rust Crate liblzma-sys Compromised with XZ Utils Backdoor Files

• Palo Alto Networks discloses RCE zero-day vulnerability

• China Tells Telecom Carriers To Phase Out Foreign Chips – Report

• The best VPN services for iPhone and iPad in 2024: Expert tested and reviewed

• Keeper Password Manager Review 2024: Who Should Use It?

• How Ukraine’s cyber police fights back against Russia’s hackers

• Maximize Managed Services: Cisco ThousandEyes Drives MSPs Towards Outstanding Client Experiences

• Roku Says More Than 500,000 Accounts Impacted In Cyberattack

• Palo Alto Networks Warns Of Exploited Firewall Vulnerability

• More Legal Acrimony For Truth Social, As Executive Says He Was Hacked

• French Issue Alerte Rouge After Local Govs Knocked Offline By Cyberattack

• LockBit Copycat DarkVault Spurs Rebranding Rumor

• Microsoft breach allowed Russian spies to steal emails from US government

• US-China Competition to Field Military Drone Swarms Could Fuel Global Arms Race

• In Other News: Moscow Sewage Hack, Women in Cybersecurity Report, Dam Security Concerns

• Lessons from XZ Utils: Achieving a More Sustainable Open Source Ecosystem

• Juniper Releases Security Bulletin for Multiple Juniper Products

• CISA Adds One Known Exploited Vulnerability to Catalog

• Citrix Releases Security Updates for XenServer and Citrix Hypervisor

• CISA Urges Immediate Credential Reset After Sisense Breach

• 6-year-old Lighttpd Flaw Impacts Intel And Lenovo Servers

• The Zensory Partners with UK Cyber Week to Showcase Importance of Inclusivity With ‘The Inclusive Cyber Space’

• SharePoint Flaws Could Help Threat Actors Evade Detection Easier When Stealing Files

• Safeguarding America’s Future: Mitigating the Implications of Chinese Control Over U.S. Critical Infrastructure

• Case Study Segregation of Duties Oracle ERP Cloud

• 5 Best CAPTCHA Plugins for WordPress Websites

• AT&T emails 70M customers, causes massive traffic spike at Experian. Here’s what happened

• DevSecOps Practices for a Secure Cloud

• The Vulture in Cyberspace: A Threat to Your Finances

• Vendors Beware of the Cybersecurity Audit

• Hackers Employ Deepfake Technology To Impersonate as LastPass CEO

• US think tank Heritage Foundation hit by cyberattack

• LastPass employee targeted via an audio deepfake call

• Sam Bankman-Fried Appeals FTX Fraud Sentence Of 25 Years

• ‘BatBadBut’ Command Injection Vulnerability Affects Multiple Programming Languages

• Threat Actors Manipulate GitHub Search to Deliver Malware

• Palo Alto Networks Warns of Exploited Firewall Vulnerability

• Exploitation of Unpatched D-Link NAS Device Vulnerabilities Soars

• Code Keepers: Mastering Non-Human Identity Management

• Understanding ISO 27001:2022 Annex A.13 – Communications Security

• Smuggling Gold by Disguising it as Machine Parts

• Top MSP Events to Attend in 2024 – A Cybersecurity Expert’s Choice

• CISA Urges Sisense Customers to Reset Credentials and Report Suspicious Activity

• CISA Issues Emergency Directive and Orders Agencies to Mitigate the Risks of the Microsoft Hack

• Cyber Security Today, April 12, 2024 – A warning to Sisense customers, a new tactic for spreading the Raspberry Robin worm, and more

• Palo Alto Networks Warns About Critical Zero-Day in PAN-OS

• AT&T finally acknowledges data breach affecting 51 million people

• DuckDuckGo Launches Privacy Pro: 3-in-1 service With VPN

• Sisence Data Breach, CISA Urges To Reset Login Credentials

• UK Regulator Flags Competition Risks Of AI Foundation Models

• Checklist: Securing Digital Information

• TA547 targets German organizations with Rhadamanthys malware

• Check Point boosts security in Harmony Email & Collaboration

• Zero-Day Alert: Critical Palo Alto Networks PAN-OS Flaw Under Active Attack

• Iranian MuddyWater Hackers Adopt New C2 Tool ‘DarkBeatC2’ in Latest Campaign

• LastPass Employee Targeted With Deepfake Calls

• Zscaler extends zero trust SASE and eliminates the need for firewall-based segmentation

• Cyber Attack Surge by 28%:Education Sector at High Risk

• XZ backdoor story – Initial analysis

• Palo Alto Networks firewalls under attack, hotfixes incoming! (CVE-2024-3400)

• Cado Security teams up with Wiz to accelerate forensic investigations and minimize cloud threats

• Midnight Blizzard’s Microsoft Corporate Email Hack Threatens Federal Agencies: CISA Warns

• Palo Alto Networks enhances Cortex XSIAM to help SecOps teams identify cloud threats

• YouTube being used by hackers to spread Malware

• Safeguarding Your Data: Strategies to Mitigate AI-Related Security Risks

• French issue alerte rouge after local governments knocked offline by cyber attack

• Sneaky Credit Card Skimmer Disguised as Harmless Facebook Tracker

• Building a Live SIFT USB with Persistence, (Fri, Apr 12th)

• CISA: Russian Hackers Stole Emails Between U.S. Agencies and Microsoft

• Apple stops warning of ‘state-sponsored’ attacks, now alerts about ‘mercenary spyware’

• Strategies to cultivate collaboration between NetOps and SecOps

• U.S. Federal Agencies Ordered to Hunt for Signs of Microsoft Breach and Mitigate Risks

• The next wave of mobile threats

• Why women struggle in the cybersecurity industry

• NIPS Troubleshooting Steps for No Log

• New infosec products of the week: April 12, 2024

• ISC Stormcast For Friday, April 12th, 2024 https://isc.sans.edu/podcastdetail/8936, (Fri, Apr 12th)

• Cypago Unveils New Automation Support for AI Security and Governance

• Taxi App Vendor Data Leak: 300K Passengers Data Exposed

• Best Paid and Free OSINT Tools for 2024

• AT&T blasts email to 70M customers, causes massive traffic spike at Experian. Here’s what happened

• Space Force boss warns ‘the US will lose’ without help from Musk and Bezos

Generated on 2024-04-13 23:55:09.159927