IT Security News Daily Summary 2024-05-07

• Brandywine Realty Trust says data stolen in ransomware attack

• Law enforcement agencies identified LockBit ransomware admin and sanctioned him

• Google Continues Mixing Generative AI into Cybersecurity

• RSAC: Decoding US Government Plans to Shift the Software Security Burden

• INFRAM24: Measuring your IT strategy and capabilities to drive adoption and improve outcomes

• CISA’s early-warning system helped critical orgs close 852 ransomware holes

• The UK Says a Huge Payroll Data Breach by a ‘Malign Actor’ Has Exposed Details of Military Personnel

• #RSAC: Decoding US Government Plans to Shift the Software Security Burden

• 2024 OWASP Mobile Top Ten Risks

• HYPR and Microsoft Partner on Entra ID External Authentication Methods

• RSAC: Log4J Still Among Top Exploited Vulnerabilities, Cato Finds

• Security researchers say this scary exploit could render all VPNs useless

• TikTok sues America to undo divest-or-die law

• Danile Stori’s ‘Vulnerable Code’

• Google Makes Implementing 2FA Simpler

• Rising Threat: Hackers Exploit Microsoft Graph for Command-and-Control Operations

• Brokewell Malware Spreads Via Fake Chrome Updates On Mobile Devices

• Code Execution Vulnerability Found In R Language

• Android Ruins VPN Use Due To Its DNS Leak Flaw

• Feds Unmask LockBit Ransomware Leader as Dmitry Yuryevich Khoroshev

• The best travel VPNs of 2024: Expert tested and reviewed

• U.S. Charges Russian Man as Boss of LockBit Ransomware Group

• AT&T Splits Cybersecurity Services Business, Launches LevelBlue

• Speaking Freely : Nompilo Simanje

• LockBit Ransomware Mastermind Unmasked, Charged

• Microsoft Uncovers Major Security Flaw in Android Apps with Billions of Downloads

• What we learned from the indictment of LockBit’s mastermind

• TXOne Networks Scores $51M Series B Extension

• Check Point Protects Enterprises by Accelerating Security for Networks and AI Cloud Infrastructure, in Collaboration with NVIDIA

• Cops finally unmask ‘LockBit kingpin’ after two-month tease

• Germany Recalls Ambassador to Russia Over Cyberattacks

• Detect and Destroy Cyber Threats with Red Piranha

• Authorities identify, sanction LockBit ransomware ringleader

• Report: Only 45% of Organizations Use MFA to Protect Against Fraud

• ATM Card Trap Scam: How to Stay Safe

• #RSAC: Log4J Still Among Top Exploited Vulnerabilities, Cato Finds

• UK Military data breach and LockBit admin identified

• How to configure sudo privilege and access control settings

• New Attack on VPNs

• Niobium Raises $5.5M for Zero Trust Computing Hardware Acceleration

• LockBit leader unmasked: US charges Russian national

• Russian Hacker Dmitry Khoroshev Unmasked as LockBit Ransomware Administrator

• SUBNET Substation Server

• PTC Codebeamer

• CISA Releases Two Industrial Control Systems Advisories

• Cisco Observability Platform is a game changer for digital-first organizations

• Over 70% of Staff Use AI At Work, But Only 30% of European Organisations Provide AI Training

• Cybereason Announces the Availability of Cybereason Mobile Threat Defence in Response to Increases in Sophisticated Mobile Device Attacks

• zEus Stealer Distributed via Crafted Minecraft Source Pack

• White House in Talks With Industry to Build Legal Framework for Software Liability

• Investigators finally unmask LockBit kingpin after two-month tease

• Scammers Targeting WhatsApp Groups in UK

• Ransomware Strikes Wichita, Services Disrupted

• Hunters Announces Full Adoption of OCSF and Introduces OCSF-Native Search

• NCA Unmasks and Sanctions Leader of Notorious LockBit Ransomware Group

• Google unveils new threat intelligence service at RSAC 2024

• How to detect deepfakes manually and using AI

• US, UK police identify and charge Russian leader of LockBit ransomware gang

• Cisco Co-Selling Made Simple: Accelerate

• Digital Empowerment on Display at the Cisco Broadband Innovation Center

• MITRE attributes the recent attack to China-linked UNC5221

• DBIR: Supply Chain Breaches up 68% Year Over Year

• Akamai to Acquire API Protection Startup Noname Security for $450 Million

• Wiz Raises $1 Billion at $12 Billion Valuation

• LockBit Leader aka LockBitSupp Identity Revealed

• The Australian Government’s Manufacturing Objectives Rely on IT Capabilities

• The Alleged LockBit Ransomware Mastermind Has Been Identified

• Abnormal extends Account Takeover Protection to cloud apps, introduces AI Security Mailbox

• #RSAC: Three Battle-Tested Tips for Surviving a Cyber-Attack

• Accelerating Zero Trust Outcomes with Generative AI, Part 2: Guardicore AI

• How Effectively Are You Deploying Segmentation to Mitigate Cyberattack Risks?

• Remote access risks on the rise with CVE-2024-1708 and CVE-2024-1709

• Wiz raises $1B at a $12B valuation to expand its cloud security platform through acquisitions

• Cyber Threat Research: Poor Patching Practices and Unencrypted Protocols Continue to Haunt Enterprises

• Securing the Vault: ASPM’s Role in Financial Software Protection

• Mend.io and Sysdig Launch Joint Solution for Container Security

• China-Linked Hackers Used ROOTROT Webshell in MITRE Network Intrusion

• APT42 Hackers Pose as Journalists to Harvest Credentials and Access Cloud Data

• Honoring our Unsung Heroes – Celebrating Public Service Recognition Week

• BigID announces new AI data security features for Microsoft Copilot

• Synopsys to Sell its Software Integrity Business to Clearlake Capital and Francisco Partners

• Are The New AI PCs Worth The Hype?

• Dynatrace enhances its platform with new Kubernetes Security Posture Management capabilities

• Report Shows AI Fraud, Deepfakes Are Top Challenges For Banks

• Revolutionizing Cybersecurity Recruitment and Networking: The Cyberr.ai Approach

• China Suspected in Major Cyberattack on UK’s Ministry of Defence (MoD)

• Weaponized Windows Shortcut Files Deploying Fileless RokRat Malware

• Trend Micro Antivirus One Let Attacker Inject Malicious Code Into Application

• Exclusive: AI startup Tenyx’s fine-tuned open-source Llama 3 model outperforms GPT-4

• Espresso AI emerges from stealth with $11M to tackle the cloud cost crisis

• AT&T Launches New Managed Cybersecurity Services Business LevelBlue

• RSA Conference 2024 – Announcements Summary (Day 1)

• Dangerous Scammers From the Yahoo Boys Group Operate Openly on Social Media

• US Sets Sights on Partnerships to Counter Cyberthreats, Secure AI in New Global Cyber Strategy

• API Vulnerabilities Found Across AI Infrastructure Projects at NVIDIA, Mercedes

• Hackers Leak COVID-19 Data of 820K Dominicans, Including Vaccination Info

• How VISA is using generative AI to battle account fraud attacks

• Akamai confirms acquisition of Noname for $450M

• How I Found Work-Life Balance Through Fitness at Cisco

• Accelerating SaaS security certifications to maximize market access

• Counter AI Attacks with AI Defense

• Copilots in Cybersecurity — Realizing the Promise of Precision

• Accelerating Real Time Security Outcomes with Precision AI

• Krebs, Luber Added to Cyber Safety Review Board

• The truth about KEV: CISA’s vuln deadlines good influence on private-sector patching

• Microsoft Revamps Security Leadership, Empowering Deputy CISOs

• Here’s Why You Shouldn’t Trust VPNs Blindly

• Akamai to acquire Noname for $450 million

• New Case Study: The Malicious Comment

• TunnelVision attack against VPNs breaks anonymity and bypasses encryption

• Can VPNs Be Tracked by the Police?

• Global Fraud Prevention Leader BioCatch Valued at $1.3bn in Permira Takeover

• Ransomware Activity is Back on Track Despite Law Enforcement Efforts

• Germany Recalls Its Ambassador in Russia for a Week in Protest Over a Hacker Attack

• US Releases International Cyberspace Strategy

• From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats

• White House Cybersecurity Workforce Initiative Backed by Tech Titans

• Can’t Talk, I’m Onboarding My Kids To Their First Soccer Practice (Live in Mountain View, CA)

• Novel TunnelVision Attack Against Impacts Virtually All VPN Apps Through DHCP Server Manipulation

• Physical security biz exposes 1.2M files via unprotected database

• Ransomware operations are becoming less profitable

• BTC-e $9bn Crypto-Money Launderer Pleads Guilty

• Grayscale Bitcoin Shares Surge On First Inflow Since January

• Tesla Fires Software, Service, Engineering Staff

• Multiple Samsung Mobile Devices Flaw Let Attackers Execute Arbitrary Code

• Google AI-Powered Threat Intelligence Tool With Mandiant Expertise Released

• 10 Myths about Cybersecurity You Shouldn’t Believe

• Vectra AI Platform enhancements combat GenAI attacks

• Google Simplifies 2-Factor Authentication Setup (It’s More Important Than Ever)

• Exploits and vulnerabilities in Q1 2024

• Mastodon Delays Firm Fix to Solve Link Preview DDoS Issue

• What are Cyber Essentials? Requirements, Preparation Process & Certification

• BigID introduces dual-scanning capabilities for cloud native workloads

• Russian Operator of BTC-e Crypto Exchange Pleads Guilty to Money Laundering

• US Crypto Campaign Funding Groups Raise $102m

• WordPress Plugin Exploit Impacts Over 90,000 Websites

• Cranium AI Exposure Management Solution helps organizations secure internal and third-party AI systems

• Synopsys Spins Off App Security Unit In $2.1bn Deal

• Robinhood Served With SEC Crypto Enforcement Notice

• Silicon In Focus Podcast: A New Age of Cybersecurity?

• Does cloud security have a bad reputation?

• Data Brokers: What They Are and How to Safeguard Your Privacy

• Datadog Event Management helps teams reduce alert fatigue

• China Suspected After Major MoD Payroll Breach

• MITRE Hack: China-Linked Group Breached Systems in December 2023

• RSAC: Antony Blinken Highlights Urgency in Securing Foundational Tech

• Being Cybersmart is Always in Style

• Why Is Cyber Resilience Essential and Who’s Responsible for It?

• Alexander Vinnik, the operator of BTC-e exchange, pleaded guilty to money laundering

• Citrix Addresses High-Severity NetScaler Servers Flaw

• Elastic’s Search AI to transform SOCs with AI-driven SIEM solutions

• Sumo Logic’s analytics capabilities allow security teams to find insights within their data

• Forescout AI enables security leaders to make confident, informed decisions

• Notorious Finnish Hacker Jailed Over Patient Records Hack

• New TunnelVision Attack Lets Attackers Snoop on VPN Traffic

• Anetac Raises $16M in Funding

• NATO and the EU Formally Condemned APT28 Cyber Espionage

• Podcast Episode: Building a Tactile Internet

• Code42 unveils source code exfiltration detection and protection capabilities

• Citrix NetScaler ADC & Gateway Flaw Lets Attackers Obtain Sensitive Data Remotely

• Empowering Cybersecurity with AI: The Future of Cisco XDR

• Trellix Database Security protects sensitive data

• Arctic Wolf Cyber Resilience Assessment helps organizations advance business resilience

• User Behavior Analytics: Why False Positives are NOT the Problem

• Ekran System to Participate in Gartner Security & Risk Management Summit 2024

• Top Endpoint Security Tips Organizations Should Know In 2024

• ISC Stormcast For Tuesday, May 7th, 2024 https://isc.sans.edu/podcastdetail/8970, (Tue, May 7th)

• Google using Gemini AI to fight Cyber Threats

• Reality Defender Triumphs at RSAC 2024 with AI at the Forefront

• Elevating Cybersecurity: How CybeReady Transforms Threat Intelligence for Businesses

• Cybercrime stats you can’t ignore

• 6 tips to implement security gamification effectively

• The strategic advantages of targeted threat intelligence

• Pew Research Data Privacy Statistics 2024

• Ransomware activity is back on track despite law enforcement efforts

• Only 45% of organizations use MFA to protect against fraud

• Ransomware evolves from mere extortion to ‘psychological attacks’

• RSAC: Securing Foundational Tech Critical to Upholding Democratic Values, Says Blinken

• Google, Meta, Spotify break Apple’s device fingerprinting rules – new claim

• Accelerating Zero Trust Outcomes with Generative AI, Part 1: AI Labeling

• Fed-run LockBit site back from the dead and vows to really spill the beans on gang

• Mastodon delays firm fix for link previews DDoSing sites

• VERITI Wins Four Global InfoSec Awards during RSA Conference 2024

• RSAC: Law Enforcement Takedowns Force Ransomware Affiliates to Diversify

• RSAC: Threat Actors Weaponize Hacktivism for Financial Gain

• #RSAC: Threat Actors Weaponizing Hacktivism for Financial Gain

• Cuckoo Mac Malware Mimics Music Converter to Steals Passwords and Crypto

• Add Bluetooth to the Long List of Border Surveillance Technologies

• USENIX Security ’23 – Detecting API Post-Handling Bugs Using Code and Description in Patches

• IT Security News Daily Summary 2024-05-06

• Police resurrect LockBit’s site and troll the ransomware gang

• The waterproof Blink Mini 2 is the best Wyze Cam alternative available

• SSPM vs. CSPM: What’s the difference?

• Colorado Passes Law To Stop Facebook From Reading Your Thoughts

• Vulnerability Recap 5/6/24 – Aruba, Dropbox, GitLab Bugs

• How to Block a Program in a Firewall (Windows & Mac)

• VR may pose privacy risks for kids: A new study finds parents aren’t as worried as they should be

• RSA: Google Enhances its Enterprise SecOps Offerings With Gemini AI

• risk-based vulnerability management (RBVM)

• Mastodon delays fix for link previews DDoSing websites

• Vulnerability Summary for the Week of April 29, 2024

• RSAC: 70% of Businesses Prioritize Innovation Over Security in Generative AI Projects

• #RSAC: Law Enforcement Takedowns Force Ransomware Affiliates to Diversify

• Smart, Secure and Sustainable Manufacturing with Cisco + Splunk at Hannover Messe 2024

• Key Insights from the OpenText 2024 Threat Perspective

• AT&T Spins Out Its Cybersecurity Business to Create LevelBlue

• Fortinet Report Sees Faster Exploitations of New Vulnerabilities

• Boeing Starliner Set For First Crewed Flight After Delays

• Top 7 Multicloud Security Providers for 2024

• Google Steps Up The Battle Against Gmail Spam

• Google Debuts New Security Products, Hyping AI and Mandiant Expertise

• Germany Warns Russia: Hacking Will Have Consequences

• DHS, CISA Announce Membership Changes to the Cyber Safety Review Board

• Recorded Future observes ‘concerning’ hacktivism shift

• NiceCurl and TameCat Custom Backdoors Leveraged by Damselfly APT

• HijackLoader Evolves with New Evasion Techniques

• Belgium’s Aikido Lands $17M Series A for its Security Platform Aimed at Developers

• Randall Munroe’s XKCD ‘Software Testing Day’

• Consultant charged over $1.5M extortion scheme against IT giant

• Continuing to support cybersecurity teams with Award winning & innovative training in April

• Russian GRU Hackers Compromised German, Czech Targets

• The Evolution of Sports Fans: From Game Day to Experience Day

• BlackBasta Ransomware targets Synlab Italia

• cloud infrastructure entitlement management (CIEM)

• Splunk details Sqrrl ‘screw-ups’ that hampered threat hunting

• Police resurrect Lockbit’s site and troll the ransomware gang

• Android Flaw Exposes DNS Queries Despite VPN Kill Switch

• Microsoft Introduces Passkey Authentication for Personal Microsoft Accounts

• APT42 Hackers Posing As Event Organizers To Hijack Victim Network

• New Atomic Stealer Malware Copies Passwords & Wallets from Infected Macs

• EFF Zine on Surveillance Tech at the Southern Border Shines Light on Ever-Growing Spy Network

• Tracing what went wrong in 2012 for today’s teens, with Dr. Jean Twenge: Lock and Code S04E10

• Synopsys Sells Software Integrity Business in $2.1 Billion Deal

• USENIX Security ’23 – Remote Code Execution from SSTI in the Sandbox: Automatically Detecting and Exploiting Template Escape Bugs

• Experts Warn Criminals Could Exploit Jogging Apps for Targeting People

• $563 Bounty Awarded for Reflected Cross-Site Scripting Vulnerability Patched in Yoast SEO WordPress Plugin

• RSAC: Partners Make The Art of Possible, Possible

• City of Wichita hit by a ransomware attack

• Backdoor Malware: Iranian Hackers Disguised as Journalists

• Are Big Tech Companies Getting Rich from AI?

• Data of Domestic Violence Victims Leaked in ZircoDATA Hack

• Critical Tinyproxy Flaw Opens Over 50,000 Hosts to Remote Code Execution

• Best SIEM Tools List For SOC Team – 2024

• Why Your VPN May Not Be As Secure As It Claims

• Swimlane Marketplace simplifies automation for security teams

• VirusTotal’s Mission Continues: Sharing Knowledge, Protecting Together

• Beware of Phishing Attacks Targeting AmericanExpress Card Users

• StateRAMP: Understanding Authorization of Cisco’s Security Solutions

• MS Overhauls Cybersecurity Strategy After Scathing CSRB Report

• RSA Conference 2024: What To Expect

• What Palo Alto Networks and CrowdStrike Teach us About Using a Mobile Defense Platform

• Strengthening Cyber Defense with Threat Intelligence Operations

• CISA says ‘no more’ to decades-old directory traversal bugs

• New Cuttlefish Malware Hijacks Router Connections, Cloud Data Stolen

• China-Linked Hackers Suspected in ArcaneDoor Cyberattacks Targeting Network Devices

• Indonesia Emerging As A Hub For Highly Invasive Spyware

• What to know about hybrid data center security strategies

• IBM study shows security for GenAI projects is an afterthought

• Key Findings from the 2H 2023 FortiGuard Labs Threat Report

• Anetac Emerges From Stealth Mode With $16 Million in Funding

• CyberNut Emerges From Stealth With K-12 Security Awareness Training Solution

• Iranian Cyberspies Hit Targets With New Backdoors

• Identity, Credential Misconfigurations Open Worrying Security Gaps

• Tidal Cyber unveils customizations and integrations that improve data-driven defense

• Anomali introduces AI-powered Security Operations Platform

• #RSAC: 70% of Businesses Prioritize Innovation Over Security in Generative AI Projects

• Organizational Cybersecurity Hinges on End-User Satisfaction

• Critical Cybersecurity Loopholes Found in Paris 2024 Olympics Infrastructure

• New Gemini-powered Google Threat Intelligence platform fuses data from Mandiant, VirusTotal

• Gen AI innovation race is leading to security gaps, according to IBM and AWS

• Splunk Asset and Risk Intelligence accelerates security investigations

• Stanford AI Scientist Working On ‘Spatial Intelligence’ Start-Up

• Google, DOJ Closing Arguments Clash Over Search ‘Monopoly’

• Organizations Patch CISA KEV List Bugs 3.5 Times Faster Than Others, Researchers Find

• Apple’s iPhone Spyware Problem Is Getting Worse. Here’s What You Should Know

• Cisco & Splunk: A Complete SOC Platform Purpose-Built for the AI-Driven Future

• Cisco Hypershield – Our Vision to Combat Unknown Vulnerabilities

• Outshift Leads the Way with AI at RSA Conference 2024

• El Salvador suffered a massive leak of biometric data

• Finland Warns of Android Malware Attacks Breaching Bank Accounts

• Tracking CVE-2024-2876: Why does the latest WordPress exploit compromise over 90,000 websites?

• NinjaOne platform enhancements help security teams identify potential vulnerabilities

• It Costs How Much?!? The Financial Pitfalls of Cyberattacks on SMBs

• New Lawsuit Attempting to Make Adversarial Interoperability Legal

• Law Enforcement Seized LockBit Group’s Website Again

• Ransom Recovery Costs Reach $2.73 Million

• Cybersecurity M&A Roundup: 33 Deals Announced in April 2024

• US Cyber Command Appoints Morgan Adamski as Executive Director

• BlackBasta claims Synlab attack, leaks some stolen documents

• Cyber Security Headlines: Neuberger proposes improvements, Olympic cybersecurity preparations, North Korea DMARC warning

• Hackers Use Custom Backdoor & Powershell Scripts to Attack Windows Machines

• LayerX Raises $26 Million for its Browser Security Platform

• Proofpoint enhances email security with pre-delivery social engineering and link protection

• Xiaomi Android Devices Hit by Multiple Flaws Across Apps and System Components

• Financial cyberthreats in 2023

• Biden Vetoes Republican Measure In Row Over Contractors’ Unions

• Apple Shares Surge Ahead Of New AI Hardware Launches

• Europe’s Most Wanted Teenage Hacker Arrested

• Microsoft, Google Widen Passkey Support for Its Users

• Cisa Warned 1,750 Organizations of Ransomware Vulnerabilities Last Year. Only Half Took Action.

• Permira to Acquire Majority Stake in BioCatch at $1.3 Billion Valuation

• City of Wichita Shuts Down Network Following Ransomware Attack

• Cyber Security Today, May 6, 2024 – Ransomware gang claims responsibility for attacking Italian healthcare service, Russian gang blamed for attacks in Europe, and more

• Russia-Linked APT28 and Crooks are Still Using the Moobot Botnet

• European Raids Shut Down Call Centers Used to ‘Shock and Cheat’ Victims

• A week in security (April 29 – May 5)

• Taylor Swift tickets – how not to be scammed

• London Black Cabs Sue Uber In Latest Legal Tangle

• Lawyers Say Strict Child Controls In China Show TikTok Could Do Better

• New ‘Cuckoo’ Persistent macOS Spyware Targeting Intel and Arm Macs

• McAfee and Intel collaborate to combat deepfakes with Deepfake Detector

• Ensuring Privacy in the Age of AI: Exploring Solutions for Data Security and Anonymity in AI

• The Impact of NIST SP 800-171 on SMBs

• Finland authorities warn of Android malware campaign targeting bank users

• Electric Vehicle Turned Away From Hospital Car Park

• Crypto Recovery Scams – And How They Add Insult to Injury

• Linksys Router Flaw Let Attackers Perform Command Injection, PoC Released

• Tinyproxy Flaw Let Attackers Execute Remote Code

• Understanding GitGuardian’s Self-Hosted Solution

• KnowBe4 to acquire Egress Email Security

• Dealing with Stolen Data in Ransomware Attacks: A Comprehensive Guide

• Using MITM to bypass FIDO2 phishing-resistant protection

• Strategies for preventing AI misuse in cybersecurity

• How to prepare for the CISSP exam: Tips from industry leaders

• Organizations go ahead with AI despite security risks

• How MFA can improve your online security

• Privacy requests increased 246% in two years

• Germany points finger at Fancy Bear for widespread 2023 hacks, DDoS attacks

• eBook: CISSP fundamentals in focus

• ISC Stormcast For Monday, May 6th, 2024 https://isc.sans.edu/podcastdetail/8968, (Mon, May 6th)

• Ransomware drama: Law enforcement seized Lockbit group’s website again

Generated on 2024-05-07 23:55:11.117799