IT Security News Daily Summary 2024-09-22

Hackers claim second Dell data breach in one week
Google Cloud Document AI vulnerability could expose sensitive data, experts warn
Global Task Force Dismantles Encrypted Criminal Platform ‘Ghost’, Leading to 51 Arrests
Tor Project assures users it is safe amid controversy over user deanonymization
USENIX NSDI ’24 – Jolteon: Unleashing the Promise of Serverless for Serverless Workflows
IT leaders raise concerns about generative AI security
Large Chinese botnet infects SOHO routers and IP cameras
macOS Sequoia breaks VPNs and EDRs after update
Newsletter Safety Affairs Round 490 by Pierluigi Paganini – INTERNATIONAL EDITION
NEWSLETTER ON MALWARE IN SECURITY MATTERS – ROUND 12
The TechCrunch Cyber Glossary
Noise Storms: Mysterious, Massive Waves of Fake Traffic Observed Since 2020
The Great Ai Scam
Tor assured security amid deanonymization claims from authorities
Lumma Stealer Uses Fake CAPTCHA Pages to Spread Malware
Weekly Review: Critical VMware vCenter Server Bugs Fixed, Apple Releases iOS 18
2024-09-19 – File Downloader to Lumma Stealer
FBI, CISA warn of false claims of hacked voter data – Week in security with Tony Anscombe
IT Security News Daily Summary 2024-09-21
‘Harvest Now, Decipher Later’: Why Hackers Are Waiting for Quantum Computing
Cloudflare outage disrupts website access in multiple regions, impacting users worldwide
Understanding the Critical Role of Resilience in Defending Against Ransomware
Technology governance must be rethought to prioritize resilience against digital threats
GitLab addresses a critical SAML authentication flaw with the latest release
Hackers stole over $44 million from Asian crypto platform BingX
Apple’s macOS Sequoia update breaks security tools
USENIX NSDI ’24 – Autothrottle: A Practical Bi-Level Approach to Resource Management for SLO-centric Microservices
Email attacks target 80% of top infrastructure companies, research finds
Ransomware organizations abuse Microsoft Azure tool for data theft
The Growing PKfail Vulnerability in Secure Boot and Its Alarming Impact
Hacktivist group Twelve targets Russian entities with destructive cyberattacks
OP KAERB: Europol dismantles phishing scheme targeting mobile users
Kawasaki Ransomware Attack: 500GB of Alleged Data Leaked, Claims RansomHub
Ukraine bans use of Telegram for government and military personnel
LinkedIn stops AI data processing in the UK amid privacy concerns raised by ICO
How Apple, Google and Microsoft can save us from AI deepfakes
Modernizing and Adopting FedRAMP Security Standards to Accelerate Secure AI
Watch Now: Attack Surface Management Summit – All Sessions On Demand
China Linked APT: Raptor Train Botnet Attacks IoT Devices
Iranian hackers tried to give hacked Trump campaign emails to Democrats
Prime Day is coming, and so is the scam surrounding it
Cybersecurity Laws and Regulations 2024
Earth Baxia leverages GeoServer to launch APAC spear phishing attacks
CISA Adds Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and MSSQL Server Bugs to its KEV Catalog
Patch this critical protection against authentication flaw bypass using privileged passwords
Microsoft Entra ID administrative units have been transformed into a weapon to achieve stealthy persistence
Germany seizes 47 crypto exchanges used by ransomware gangs
Clever ‘GitHub Scanner’ campaign abuses repositories to spread malware
Ukraine bans Telegram for government agencies, military, critical infrastructure
A Hacker’s View of Civil Infrastructure: Cyber Security Today – Special Feature
Customer Story | Lanett City Schools Works Smarter Using Cloud Monitor
Friday Squid Blogging: Squid Game Season Two Teaser
Increasing adversarial attacks on AI models: what should you do now?