IT Security News Daily Summary 2024-08-06

• Why You Should Use Buildpacks Over Docker

• OpenAI’s meltdown: Inside the summer that could redefine artificial intelligence

• Spring 2024 SOC 2 report now available in Japanese, Korean, and Spanish

• Daniel Stori’s ‘The chroot Case’

• USENIX Security ’23 – Prime Match: A Privacy-Preserving Inventory Matching System

• The best travel VPNs of 2024: Expert tested and reviewed

• CISA Releases Secure by Demand Guidance

• A ransomware attack hit French museum network

• Fortigate Cloud Native Firewall (FORTIGATE CNF)

• How ‘Shifting Left’ speeds compliance processes

• Google splats device-hijacking exploited-in-the-wild Android kernel bug among others

• CrowdStrike Releases Root Cause Analysis of Falcon Sensor BSOD Crash

• Massive Exposure of Illinois Voter Data Raises Security Concerns

• CISA Releases Secure by Demand Guide

• Security framework to determine whether defenders are winning

• Palo Alto Networks Zero Trust Platform Featured in New NIST Guidance

• Breach Debrief Series: EchoSpoofing Phishing Campaign Exploiting Proofpoint’s Email Protection

• The rise of RaaS; how Copilot can safeguard SMEs from the growing storm of AI-boosted cyberattacks

• How cybersecurity training can break the cyber impact chain

• Data Breach: 3 Billion National Public Data Records with SSNs Dumped Online

• Not All MFA Is Equal: Lessons From MFA Bypass Attacks

• A New Plan to Break the Cycle of Destructive Critical Infrastructure Hacks

• On the Cyber Safety Review Board

• Congratulations to the MSRC 2024 Most Valuable Security Researchers!

• New Study Shows GenAI Apps Are Vulnerable To PromptWare Threats

• Top Technology Sector Breaches and Threats

• Sonic Automotive says ransomware-linked CDK software outage cost it $30M

• Stop Using AI for Medical Diagnosis: Experts

• Sitting Ducks DNS Attack Hijack 35,000 Domains

• INTERPOL Recovers $41 Million in Largest Ever BEC Scam in Singapore

• What if a cyber attack takes place on a human body

• Cyberattack Wipes 13,000 School Devices in Mobile Guardian Breach

• Harnessing DevOps Potential: Why Backup Is a Missing Piece

• Cyberattack knocks Mobile Guardian MDM offline and wipes thousands of student devices

• French Museum Network Hit by Ransomware Attack, but No Disruptions Are Reported at Olympic Events

• The Prevalence of DarkComet in Dynamic DNS

• Indonesia Bans Search Engine DuckDuckGo

• #BHUSA: 17.8m Phishing Emails Detected in First Half of 2024

• Hardening the RAG chatbot architecture powered by Amazon Bedrock: Blueprint for secure design and anti-pattern mitigation

• 9 AI-proof IT jobs, plus how to be irreplaceable

• AI in Education: Balancing Innovation with Security

• MSPs: Capitalize on the Expanding Opportunities in the Booming MDU Market

• International Cyber Expo Announces Global Cyber Summit Theme: Resilience

• Bloody Wolf Strikes Organizations in Kazakhstan with STRRAT Commercial Malware

• Bad apps bypass Windows security alerts for six years using newly unveiled trick

• Meet BIX: Your New AI Ally in Cyber Risk and Exposure Management

• A Survey of Scans for GeoServer Vulnerabilities, (Tue, Aug 6th)

• Cost of a data breach: The healthcare industry

• Android vulnerability used in targeted attacks patched by Google

• CISA Releases One Industrial Control Systems Advisory

• Delta Electronics DIAScreen

• Sneaky SnakeKeylogger Slithers Into Windows Email Inboxes

• China’s National Digital ID System Trials Begin Across 80 Internet Service Applications

• NPCI Announces Full Recovery of Banking Services After Ransomware Incident

• Cryptonator Seized for Laundering Ransom Payments and Stolen Cryptocurrency

• What Is an Event-Driven Microservices Architecture?

• Panamorfi TCP flood DDoS Attack Targeting Jupyter Notebooks

• North Korean Hackers Exploit VPN Update Flaw To Breach Networks

• Chameleon Device-Takeover Malware Attacking IT Employees

• CISA adds Microsoft COM for Windows bug to its Known Exploited Vulnerabilities catalog

• Salt Security Enhances API Platform with AI-Powered Insights

• EDR Implementation: Essential Features, Considerations, And Best Practices

• Fighting Back Against Multi-Staged Ransomware Attacks Crippling Businesses

• Ransomware gang targets IT workers with new RAT masquerading as IP scanner

• Men report more pressure and threats to share location and accounts with partners, research shows

• New Generative AI-Powered Solutions to Secure the Workspace

• Securing Data in the AI Era: Introducing Check Point Harmony DLP

• Cyberattack Cost More Than $17 Million, Key Tronic Tells Regulators

• North Korean Hackers Exploit VPN Update Flaw to Install Malware

• Navigating the DORA Landscape with AttackIQ’s Automated Assessment

• Ransomware gang targets IT workers with new RAT maquerading as IP scanner

• CVEs Surge 30% in 2024, Only 0.91% Weaponized

• #BHUSA: Ransom Payments Surge, Organizations Pay Average of $2.5m

• Hardening the RAG chatbot architecture powered by Amazon Bedrock: Blueprint for secure design and anti-pattern migration

• KnowBe4 establishes 6th August as National Social Engineering Day to honour late Kevin Mitnick

• Ransomware Gang Targets IT Workers With New SharpRhino Malware

• Orca Security Extends Visibility Into the Cloud Security

• Building a Resilient Network and Workload Security Architecture from the Ground Up

• My Journey of Conservation and Fulfillment: Time2Give with Sea Turtles

• Cyberattacks Still Ravage Schools, Defying White House Efforts Launched Last Year

• Safeguarding The Backbone: The Critical Imperative to Protect Operational Technology (OT) Devices

• Users call on Microsoft to update Outlook’s friendly name feature

• Abnormal Security Raises $250 Million at $5.1 Billion Valuation

• Minimizing the Impact of Ransomware in the Cloud

• North Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm Registry

• Suspicious Minds: Insider Threats in The SaaS World

• Google warns of an actively exploited Android kernel flaw

• 5 Best Practices for Managing Endpoints On a Global Scale

• France Olympics venue hit by a ransomware attack

• 40 French Museums IT Systems Hit by Ransomware Attack

• Stellar Cyber launches Multi-Layer AI platform to enhance threat detection

• Researchers unearth MotW bypass technique used by threat actors for years

• Hero AI by Swimlane enhances security with context-aware recommendations

• More Developers are Learning to Code Using AI tools – But That Doesn’t Mean They Trust Them

• Non-Profit Blood Center OneBlood Recovering from Cripping Ransomware Attack

• Magniber ransomware targets home users

• #BHUSA: 99% of Global 2000 Firms Have Recently Breached Vendors

• UK Needs to Chart its Own Course Towards AI legislation

• Internet Resource Access Policy

• Mullvad vs NordVPN (2024): Which VPN Should You Choose?

• Around 20K Ubiquiti IoT Cameras & Routers are Sitting Ducks for Hackers

• Microsoft Bug Bounty Payouts Increased to $16.6 Million in Past Year

• SentinelOne unveils AI and cloud innovations on Singularity Platform

• New Android Spyware LianSpy Evades Detection Using Yandex Cloud

• Mobile Guardian Hack Leads to 13,000 Student Devices Wiped in Singapore

• Cybersecurity Headlines: CrowdStrike strikes back against Delta, Keytronic loses millions to ransomware, Flaw in Apache OFBiz

• We Make Threat Actors Read Our Resiliency Policy Before Attacking Us

• French Museums Hit By Ransomware Attack

• TikTok Asks Court To Reject Secret Court Filings In Ban Challenge

• Tripwire Patch Priority Index for July 2024

• Hurricane Season Scams: What you need to know

• Google Fixes Android Kernel Zero-Day Exploited in Targeted Attacks

• APIs, Web Applications Under Siege as Attack Surface Expands

• Police Recover Over $40m Headed to BEC Scammers

• Mercedes-Benz To Test Fully Autonomous Vehicles In Beijing

• Musk Files New Lawsuit Against Altman, OpenAI

• TikTok Withdraws Rewards Programme From EU After DSA Probe

• Researchers Warn of a New Critical Apache OFBiz Flaw

• Mint Stealer: New MaaS Malware Threatens Confidential Data

• North Korea-linked hackers target construction and machinery sectors with watering hole and supply chain attacks

• Should Organizations Pay Ransom Demands?

• Google Patches Android Zero-Day Exploited in Targeted Attacks

• Mobile Device Management Vendor Mobile Guardian Hacked

• EFF at the Las Vegas Hacker Conferences

• Support Justice for Digital Creators and Tech Users

• How to Secure Your Organization from Shadow IT?

• Authorities have Uncovered USD 40 Million from Hackers

• The Illusion of Reputational Damage

• Billion-dollar bust as international op shutters Cryptonator wallet

• 7 Data Security Systems & Products Driving Value

• Resecurity to introduce Context AI, a specialized generative AI framework

• MDM vendor Mobile Guardian attacked, leading to remote wiping of 13,000 devices

• Google Patches New Android Kernel Vulnerability Exploited in the Wild

• Proficio Unveils ProBAS Breach and Attack Simulation Service

• New Zero-Day Flaw in Apache OFBiz ERP Allows Remote Code Execution

• LianSpy Spyware ‘LianSpy’ Targets Android Users

• Mobile Guardian attacked, leading to remote wiping of 13,000 devices

• ITSM concerns when integrating new AI services

• Scaling data security solutions: What you need to know

• Email attacks skyrocket 293%

• Illinois relaxes biometric privacy law so snafus won’t cost businesses billions

• Whitepaper: Tools to tackle the multicloud environment

• AI-fueled phishing scams raise alarm ahead of U.S. presidential election

• ISC Stormcast For Tuesday, August 6th, 2024 https://isc.sans.edu/podcastdetail/9084, (Tue, Aug 6th)

• Protecting Your Digital Footprint: A Guide to Data Protection and Privacy Consulting

• NFL to begin using face scanning tech across all of its stadiums

• Shoe Zone – 46,140 breached accounts

• Fake Google Authenticator Sites Exploit Google Ads To Deliver Malware

• Google Chrome uBlock Origin Users Need To Switch Ad Blocker

• Elon Musk sues OpenAI again, alleging ‘Shakespearean’ betrayal of AI mission

• Physicists develop new method to combine conventional internet with the quantum internet

• To Fight Surveillance Pricing, We Need Privacy First

• MSN: Russia takes aim at Sitting Ducks domains, bags 30,000+

• IT Security News Daily Summary 2024-08-05

• US Judge Finds Google ‘Is Monopolist’ In Landmark Ruling

• Cisco IOS XE Automation from Cisco Live AMEA 2024

• How Using a VPN May Benefit Your Privacy

• USENIX Security ’23 – Gradient Obfuscation Gives a False Sense of Security in Federated Learning

• AWS Deploying ‘Mithra’ Neural Network to Predict and Block Malicious Domains

• StormBamboo APT Targets ISPs, Spreads Malware via Software Updates

• Schools will remove app from students’ Chromebooks and iPads following security breach

• Low-Drama ‘Dark Angels’ Reap Record Ransoms

• Vulnerability Recap 8/5/24 – Already-Fixed Flaws Are Still Targeted

• Vulnerability Summary for the Week of July 29, 2024

• Reimagining AI: Ensuring Trust, Security, and Ethical Use

• US Senate Confirms First DOD Cyber Policy Chief

• Why Did Turkey Suddenly Ban Instagram? The Shocking Reason Revealed

• Microsoft Bounty Program Year in Review: $16.6M in Rewards

• Bitcoin Plummets As Investors Dump Risky Assets

• More Legal Records Stolen in 2023 Than Previous 5 Years Combined

• That cyber-heist of 2.9B personal records? There’s a class-action lawsuit looming for that

• Randall Munroe’s XKCD ‘Exam Numbers’

• Generative AI Set To Transform Automotive Industry

• IBM Consulting Cybersecurity Assistant helps clients accelerate alert investigation

• It?s a New World: APIs Protected by the Power of N

• TryCloudflare Exploited In Malicious Campaigns Spreading Malware

• Google Chrome 127 Stable Release Addressed Multiple Security Bugs

• Google Chrome To Block Infostealers With App-Bound Encryption

• Government Takes Social Media To Task Over Violence

• How To Setup OAuth JWT in the Salesforce Connector

• Researchers warn of a new critical Apache OFBiz flaw

• Israeli Hacktivist Group Claims it Took Down Iran’s Internet

• Organizations Fail to Log 44% of Cyberattacks, Major Exposure Gaps Remain

• AppOmni unveils SaaS-aware ITDR capabilities

• Cisco takes a quantum leap ahead to build a more inclusive future

• 10 Best Fortinet Competitors and Alternatives

• US Sues TikTok for Violating Children Privacy Protection Laws

• National Public Data Sued for Hack that Exposed Data of 2.9 Billion People

• Black Hat Fireside Chat: Token’s wearable MFA solution combines PKI, biometrics — in a ring

• TikTok Abuses Kids, say DoJ and FTC

• #BHUSA: Nation-State Attacks Target Hardware Supply Chains

• SaaS authentication: Identity management with Amazon Cognito user pools

• Malware induction into Windows and MacOS devices via ISP

• 332 Million Email Addresses Scraped from SOCRadar.io Published Online

• Tips to provide network support for remote workers

• CrowdStrike fires back at Delta over outage allegations

• CISA Adds One Known Exploited Vulnerability to Catalog

• Surge in Magniber Ransomware Attacks Impact Home Users Worldwide

• Hackers Exploit Bytecode Interpreters to Inject Malicious Code

• Getting to Know Check Point Olympian: Ron Darmon

• Top Tech Conferences & Events to Add to Your Calendar in 2024

• CrowdStrike Outage Renews Supply Chain Concerns, Federal Officials Say

• Your copilot for improved cyber protection

• Black Basta Unleashes Custom Malware Following Qakbot Takedown

• Dark Web Actor Claims Responsibility of ADT Data Breach

• Critical Vulnerability in Apache OFBiz Requires Immediate Patching

• AWS unveils Mithra to identify and mitigate malicious domains across its massive system

• White House Officials Meet with Allies, Industry on Connected Car Risks

• Leveraging CRQ to Comply With DORA Regulations | Kovrr

• Novel SLUBStick Linux Exploit Gives Attackers Full System Control

• Sneaky SnakeKeylogger slithers into Windows inboxes to steal sensitive secrets

• Linux Kernel Impacted by New SLUBStick Cross-Cache Attack

• Cisco Umbrella for Government Achieves FedRAMP® “Authority to Operate”

• Mozilla Follows Google in Distrusting Entrust’s TLS Certificates

• AI in the Enterprise: Cutting Through the Hype and Assessing Real Risks

• Critical Apache OFBiz pre-auth RCE flaw fixed, update ASAP! (CVE-2024-38856)

• Apple Unveils Homomorphic Encryption Package for Secure Cloud Computing

• Cryptonator Seized for Laundering Ransom Payments, Stolen Crypto

• Salt Security Provides Free Scans for XXS Vulnerabilities Involving OAuth Protocol

• Kazakh Organizations Targeted by ‘Bloody Wolf’ Cyber Attacks

• Researchers Uncover Flaws in Windows Smart App Control and SmartScreen

• 86% of Firms Identify Unknown Cyber-Risks as Top Concern

• How AWS tracks the cloud’s biggest security threats and helps shut them down

• Threat Actor Claiming Breach of Gregory’s Foods 400Gb Database

• New LianSpy Attacking Android Users to Steal Sensitive Data

• Threat Actor Allegedly Claims Leak of SisaCloud Database

• AWS launches Mithra to identify and mitigate malicious domains across its massive system

• Keytronic incurred approximately $17 million of expenses following ransomware attack

• Who’s Minding the Store? Why Operational Technology Security Has Become a Top Priority for Federal Security Leaders

• CrowdStrike unhappy about Delta’s ‘litigation threat,’ claims airline refused ‘free on-site help’

• 7 features to look for in a PII Data Discovery Software: A guide for infosec and devops Professionals

• Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) released

• CrowdStrike trying to use legal threats to suppress criticism and parody of global IT outage

• The Pros and Cons of Bitcoin

• Beware Of Fake AI Editor Website That Steals Your Login Credentials

• Cisco XDR: Open Ecosystem Accelerated at Black Hat Events

• Protect AI Raises $60M in Series B Financing

• Abuse of Cloudflare Tunnel Service for Malware Campaigns Delivering RATs

• Rapid7 releases Command Platform, unified attack defense and response

• Ryan Pentney reflects on 10 years of Talos and his many roles from the Sourcefire days

• New BlankBot Android Malware Targets Users’ Banking Data

• Australian Companies Will Soon Need to Report Ransom Payments

• Apache OFBiz Users Warned of New and Exploited Vulnerabilities

• The Loper Bright Decision: How it Impacts Cybersecurity Law

• TikTok Withdraws Lite Rewards Program from EU Over Child Safety Fears

• Hackers Abused StackExchange Platform To Deliuver Malicious Python Package

• Mirai Botnet Attacking Apache OFBiz Directory Traversal Vulnerability

• Hackers Infect Windows With Backdoor Malware Via “Car For Sale” Ad

• Exodus Underground Market Place Emerging As A Heaven For Cybercriminals

• Mint-stealer Targeting web browsers, VPN clients & messaging apps to Steal Logins

• How Project 2025 Would Put US Elections at Risk

• US Releases Russian Hackers and Spies as Part of Prisoner Swap

• Chinese hackers compromised an ISP to deliver malicious software updates

• Amazon Shares Plummet On Slowing Sales

• Google Hires Character.AI Staff, Licenses Tech

• Coinbase Chief Executive Sees Political ‘Shift’ On Crypto

• Customers Flock To Shein South Africa Pop-Up Store

• The Top 6 Urban VPN Alternatives for 2024

• Newly Identified BITSLOTH Backdoor Uses Novel C2 Communication Channel

• FBI Warns of Scammers Posing as Crypto Exchange Employees

• Airlines are Flying Blind on Third-Party Risks

• Tech Support Scam Ring Leader Gets Seven Years in Prison, $6M Fine

• Security Bypass Vulnerability Exposed in Rockwell Automation Logix Controllers

• Enhancing Incident Response Readiness with Wazuh

• White House and EC-Council Launch $15m Cybersecurity Scholarship Program

• Hackers Hijacked ISP Service Provider To Poison Software Updates

• A flaw in Rockwell Automation ControlLogix 1756 could expose critical control systems to unauthorized access

• LianSpy: new Android spyware targeting Russian users

• Justice Department Sues TikTok, Accusing the Company of Illegally Collecting Children’s Data

• Cybersecurity Headlines: Software update malware, investors sue CrowdStrike, cybercriminals in prisoner swap

• Beware Of New BingoMod Android Malware Steals Money & Formats Device

• 5 Amazon Alexa privacy settings you should change right away

• US Sues TikTok For Children’s Law Violations

• Researchers Details How Hackers Can Steal Passwords via HDMI Cables

• 3 Types of Bot Attacks to Guard Against

• Cybersecurity: The Unsung Hero of SOX Compliance

• New Discord DDoS Campaign Called Panamorfi Targets Vulnerable Jupyter Notebooks

• US Senate Panel Advances Cyber Regulatory Harmonization Bill

• Germany Summons Chinese Ambassador Over Cyberattack on Cartography Agency

• APT Group StormBamboo Attacks ISP Customers Via DNS Poisoning

• US Sues TikTok Over ‘Massive’ Children’s Privacy Breach

• Google Project Astra: The AI Assistant We Have Been Waiting for?

• Is Australia’s Public Sector Ready for a Major Cyber Security Incident?

• Strategies for Mitigating LLM Risks in Cybersecurity

• DSPM: A Cybersecurity Approach Tailor-Made for This AI Era

• SEC Charges IRL Founder With Investor Fraud

• Intel, Nvidia Stocks Slide Amidst Chip Turmoil

• Leaked Wallpaper Vulnerability Exposes Windows Users to Privilege Escalation Attacks

• A week in security (July 29 – August 4)

• HP Wolf: Not just software attacks; hackers are coming for enterprise hardware, too

• Effective Third-Party Risk Management Under PCI DSS 4.0

• Industry Moves for the week of August 5, 2024 – SecurityWeek

• Ransomware Attack Cost Keytronic Over $17 Million

• Google Dark Web Monitoring goes free – so what?

• Authorities Seized Cryptonator Site & Charged the Admin

• China-linked APT41 breached Taiwanese research institute

• Wristband Releases Public Beta of its B2B Authentication Platform

• Critical Flaw in Rockwell Automation Devices Allows Unauthorized Access

• Script obfuscation using multiple instances of the same function, (Mon, Aug 5th)

• Threat Actor offers Car Selling Phishing lure

• Safeguarding Data in Container Security Environments

• Evasive Panda Compromises ISP to Distribute Malicious Software Updates

• China starts testing national cyber-ID before consultation on the idea closes

• The Great CrowdStrike Crash, AI’s Role in Employee Smiles

• The role of AI in cybersecurity operations

• China-Linked Hackers Compromise ISP to Deploy Malicious Software Updates

• New Android Trojan “BlankBot” Targets Turkish Users’ Financial Data

• How to start your cybersecurity career: Expert tips and guidance

• MISP: Open-source threat intelligence and sharing platform

• AI expected to improve IT/OT network management

• How life sciences companies use AI to fill the cybersecurity skills gap

• Google gamed into advertising a malicious version of Authenticator

• ISC Stormcast For Monday, August 5th, 2024 https://isc.sans.edu/podcastdetail/9082, (Mon, Aug 5th)

Generated on 2024-08-06 23:55:13.373961