IT Security News Daily Summary 2024-09-19

The time I almost got scammed from my college email
Ivanti warns of a new actively exploited Cloud Services Appliance (CSA) flaw
HuntStand – 2,795,947 breached accounts
Iran’s cyber-goons emailed stolen Trump info to Team Biden – which ignored them
Product Updates: Escape’s Advanced Jira Integration – Send Remediation Details to Your Developers
Compliance webinar series: Understanding the Cyber Resilience Act
Sonatype can help you navigate DORA compliance
Tackle Cyber Resilience Act requirements with our CRA checklist
Join us at Microsoft Ignite 2024 and learn to build a security-first culture with AI
Fake GitHub Site Targeting Developers, (Thu, Sep 19th)
How to block YouTube on your children’s school devices
Tor anonymity compromised by law enforcement. Is it still safe to use?
Test page title
This Windows PowerShell Phish Has Scary Potential
Square Peg, Meet Round Hole: Previously Classified TikTok Briefing Shows Error of Ban
Century-Long Innovation: A Legacy of Outpacing Cyber Threats
CISO Series Podcast LIVE in Los Angeles (10-09-24)
FTC report exposes massive data collection by social media brands – how to protect yourself
International law enforcement operation dismantled criminal communication platform Ghost
Wherever There’s Ransomware, There’s Service Account Compromise. Are You Protected?
Building Cybersecurity Leadership Skills
Talk of election security is good, but we still need more money to solve the problem
YouTube Confirms Ads When Screen Is Paused
Hacker Claims “Minor” Data Breach at DELL; Leaks Over 10,000 Employee Details
Microsoft’s GRIN-MoE AI model takes on coding and math, beating competitors in key benchmarks
Apple’s new macOS Sequoia update is breaking some cybersecurity tools
Strong End-to-End Encryption Comes to Discord Calls
BMJ Warns: Deepfake Doctors Fueling Health Scams on Social Media
Wordfence Intelligence Weekly WordPress Vulnerability Report (September 9, 2024 to September 15, 2024)
Beware of Google Street View Images Extortion Email Scams
AI Excites But Stresses CIOs, IDC Expereo Finds
EU Begins Proceedings To Force Apple To Open Up iOS, iPadOS
Fake CAPTCHA Verification Pages Spreading Lumma Stealer Malware
SambaSpy Using Weaponized PDF Files to Attack Windows Users
Threat Actors Forcing victims Into Entering Login Credentials For Stealing
Hackers Using Supershell Malware To Attack Linux SSH Servers
Researchers Detailed Raptor Train Botnet That 60,000+ Compromised Devices
Cybersecurity and Identity Verification Services: Safeguarding Personal Information in a Digital Age
Google Chrome just made it even easier to use passkeys across all your devices
The NSA advises you to turn off your phone once a week – here’s why
Digital Maturity Key to AI Success in Australian Cyber Security
Google rolls out automatic passkey syncing via Password Manager
Apple’s new macOS Sequoia update breaks cybersecurity tools, experts say
Re-Imagining Zero Trust With an In-Office Experience, Everywhere
U.S. CISA adds Microsoft Windows, Apache HugeGraph-Server, Oracle JDeveloper, Oracle WebLogic Server, and Microsoft SQL Server bugs to its Known Exploited Vulnerabilities catalog
FBI Shuts Down Chinese Botnet
Thoughtworks and ACDS Partner to Advance Cybersecurity Solutions
Beyond A Buzzword: What Resilience in Cyber Really Means
Check Point Software is Recognised as a Leader in Email Security, Showcasing its Innovative AI-based Threat Intelligence Capabilities
Canada’s Leaders Must Reject Overbroad Age Verification Bill
Getting Out in Front of Post-Quantum Threats with Crypto Agility
1 in 10 orgs dumping their security vendors after CrowdStrike outage
Watch on Demand: 2024 Attack Surface Management Summit – All Sessions Available
What is the KEV Catalog?
The EU AI Act and the Need for Data-Centric Security
USENIX NSDI ’24 – Sifter: An Inversion-Free and Large-Capacity Programmable Packet Scheduler
North Korean Hackers Target Energy and Aerospace Industries in Novel Espionage Campaign
US Steps up Pressure on Intellexa Spyware Maker with New Sanctions
Hackers Exploit Default Credentials in FOUNDATION Software to Breach Construction Firms
Infostealers Cause Surge in Ransomware Attacks, Just One in Three Recover Data
AWS renews its GNS Portugal certification for classified information with 66 services
Hacker group Handala Hack Team claim battery explosions linked to Israeli battery company.
UNC1860 and the Temple of Oats: Iran’s Hidden Hand in Middle Eastern Networks
Access To X In Brazil Temporarily Restored After Change
Webdav Malicious File Hosting Powering Stealthy Malware Attacks
PoC Exploit Released for CVE-2024-7965 Zero-Day Chrome Vulnerability
Threat Actor Allegedly Claims Breach of Federal Bank Customer Data
Tor Claims Network is Safe Following Enforcement Infiltration to Expose Criminals
Reporting on Threathunt 2030: Navigating the future of the cybersecurity threat landscape
Your Phone Won’t Be the Next Exploding Pager
First Israel’s Exploding Pagers Maimed and Killed. Now Comes the Paranoia
CISA Releases Six Industrial Control Systems Advisories
IDEC CORPORATION WindLDR and WindO/I-NV4
Kastle Systems Access Control System
IDEC PLCs
MegaSys Computer Technologies Telenium Online Web Application
Thousands of orgs at risk of knowledge base data leaks via ServiceNow misconfigurations
UK Leads Global Cybersecurity Dialogue
Columbus Faces Scrutiny for Handling of Ransomware Attack and Lawsuit Against IT Consultant
Zenity unveils agent-less security solution for Microsoft 365 Copilot
Windows users targeted with fake human verification pages delivering malware
New TeamTNT Cryptojacking Campaign Targets CentOS Servers with Rootkit
New Brazilian-Linked SambaSpy Malware Targets Italian Users via Phishing Emails
Western Agencies Warn Risk from Chinese-Controlled Botnet
US Sanctions Intellexa Spyware Network Over Threat to National Security
CISA chief AI officer follow-up: Current state of the role (and where it’s heading)
DNS security best practices to implement now
Picus Security, founded by 3 Turkish mathematicians, raises $45M after simulating 1B cyber attacks
Europe’s Digital Decade Requires Audacious Connectivity Policies
CISA Warns of Actively Exploited Adobe Flash Player Vulnerabilities
Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APAC Region
Microsoft Confirms CVE-2024-37985 as Zero-Day Bug in Windows
Security Validation Firm Picus Security Raises $45 Million
International Raids Shut Down Ghost Encrypted Messaging App
Aembit Unveils 2024 Survey Report Highlighting Major Gaps in Securing Non-Human Identities
Permiso Launches Universal Identity Graph to Advance Zero-Trust IT
Picus Security raises $45 million to help organizations reduce cyber risk
Patch this critical Safeguard for Privileged Passwords auth bypass flaw (CVE-2024-45488)
Juniper extends AI-Native Networking Platform to maximize the full potential of Wi-Fi 7
Picus Security, founded by Turkish 3 mathematicians, raises $45M after simulating 1B cyberattacks
UK activists targeted with Pegasus spyware ask police to charge NSO Group
Healthcare’s Diagnosis is Critical: The Cure is Cybersecurity Hygiene
The Evolution of Cyber Warfare: The Rise of Kinetic Attacks
Transport for London Cyberattack: Employee Passwords Reset; Teen Suspect Arrested
Chinese Hackers Failed To Defeat FBI Botnet Takedown
Astra Vulnerability Scanner Review (2024): How Good Is Astra?
Keeper Security Appoints James Edwards as Senior Director of Engineering
10 Best Huntress Alternatives & Competitors in 2024 (Features, Pricing & Reviews)
Rethinking TPRM: Managing Third-Party SaaS Risks | Grip
RansomHub Ransomware Targets 210 Victims Since February 2024
Best 10 Regulatory Change Management Software of 2024
Two QEMU Vulnerabilities Fixed in Ubuntu 24.04 LTS
Forescout for OT Security secures OT, IoT, and IT hybrid environments
FBI forced Flax Typhoon to abandon its botnet
8000 Claimants Sue Outsourcing Giant Capita Over 2023 Data Breach
Tor anonymity infiltrated: Law enforcement monitors servers successfully
Discovering Splinter: A First Look at a New Post-Exploitation Red Team Tool
Intel To Spin Off Foundry Unit As Independent Subsidiary
Solar Cybersecurity And The Nuances Of Renewable Energy Integration
SIEM for Small and Medium-Sized Enterprises: What you need to know
Ransomware Gangs Now Abuse Microsoft Azure Tool for Data Theft
Update: PoC Exploit Released for Unauthenticated RCE in Veeam Backup & Replication
GitLab Releases Critical Security Patch for CVE-2024-45409 (CVSS 10) Vulnerability
Update: PKfail Secure Boot Bypass Remains a Significant Risk Two Months Later
US Disrupts ‘Raptor Train’ Botnet of Chinese APT Flax Typhoon
Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector
FCC $200m Cyber Grant Pilot Opens Applications for Schools and Libraries
Cybersecurity News: Derailing Raptor Train, Volunteer Civil Cyber Defense, US AI safety summit
Are Phishing Tests Helping or Hurting Our Security Program?
SYXSENSE ENTERPRISE
Meeting the New Cyber Insurance Requirements
Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APAC
Authorities Seized Ghost Communication Platform Used by Cyber Criminals
Antivirus firm Dr.Web disconnected all servers following a cyberattack
Emerging Technologies in Cloud Security for Enhanced Protection Against Cyber Threats
Cyber Warfare: A Growing Concern for the British Public
Tenable Enclave Security enables discovery, assessment and analysis of IT assets
Strivacity AI Assist optimizes digital identity management
Cryptojacking Gang TeamTNT Makes a Comeback
WebDAV-as-a-Service: Uncovering the infrastructure behind Emmenhtal loader distribution
Cyber Attack on Dr.Web Forces Servers Disconnection
Understanding cyber-incident disclosure
Tor insists its network is safe after German cops convict CSAM dark-web admin
Edera raises $5 million to improve Kubernetes security
Insecure APIs and Bot Attacks Cost Global Firms $186bn
The Top 7 Enterprise VPN Solutions for 2024
More Hezbollah Devices Explode in Lebanon, Heightening Fears of Regional Conflict
How digital wallets work, and best practices to use them safely
Differential privacy in AI: A solution creating more problems for developers?
GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions
NIST’s Dioptra Platform is a Critical Step Forward in Making AI Safer
Hezbollah Pager Attack: A Wake-up Call to Tech Manufacturers to Secure their Supply Chains?
Data disposal and cyber hygiene: Building a culture of security within your organization
Essential metrics for effective security program assessment
Security leaders consider banning AI coding due to security risks
ISC Stormcast For Thursday, September 19th, 2024 https://isc.sans.edu/podcastdetail/9144, (Thu, Sep 19th)
Time-to-Live Analysis of DShield Data with Vega-Lite, (Wed, Sep 18th)
Craig Newmark pledges $100M to fight hacking by foreign governments
FBI Dismantles Chinese-Linked Botnet of 260,000 IoT Devices
Joint ODNI, FBI, and CISA Statement
Everything you need to know about VPN tracking
Human Rights Claims Against Cisco Can Move Forward (Again)
How comprehensive security simplifies the defense of your digital estate
IT Security News Daily Summary 2024-09-18
Gleaming Pisces Poisoned Python Packages Campaign Delivers PondRAT Linux and MacOS Backdoors
Fal.Con 2024: CrowdStrike unveils resilient-by-design framework to bolster global cybersecurity
Deja blues… LockBit boasts once again of ransoming IRS-authorized eFile.com
FBI boss says China ‘burned down’ 260,000-device botnet when confronted by Feds
AT&T to Pay $13 Million to Settle FCC Case of 2023 Data Breach
Webroot SecureAnywhere Internet Security Ranks #1 Among 8 Competitors for Overall Performance
Experts warn of China-linked APT’s Raptor Train IoT Botnet
Putin really wants Trump back in the White House
LockBit boasts of ransoming IRS-authorized eFile.com
Global Crime Hit as Europol Shuts Down Encrypted Chat App Ghost
Singapore mandates face authentication for ‘higher risk’ bank transactions
US government ‘took control’ of a botnet run by Chinese government hackers, says FBI director
FBI Disrupts Another Massive Chinese-Linked Botnet
Refine unused access using IAM Access Analyzer recommendations
Securing Your Enterprise With an Identity-First Security Strategy
Lebanon now hit with deadly walkie-talkie blasts as Israel declares ‘new phase’ of war
Pulumi Adds Cloud Security Intelligence Tool to Portfolio
23andMe Agrees to $30 Million Settlement Over Data Breach Impacting 6.9 Million Customers
Microsoft’s Hiring Of Inflection AI Staff Does Not Meet EU Merger Thresholds
Censys Uncovers Hidden Infrastructure of Iranian Fox Kitten Group
Senate Vote Tomorrow Could Give Helping Hand To Patent Trolls
Chinese spies spent months inside aerospace engineering firm’s network via legacy IT
Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military
E2EE is MIA in iPhone/Android Chat — GSMA Gonna Fix it
New “Raptor Train” IoT Botnet Compromises Over 200,000 Devices Worldwide
Rising Threat of Ransomware Targeting Cloud Services
US To Host International Network of AI Safety Institutes In November
Google Urges London Tribunal To Dismiss Mass Lawsuit
Walmart customers scammed via fake shopping lists, threatened with arrest
Two-Thirds of Security Leaders Consider Banning AI-Generated Code, Report Finds
Walkie-Talkies Explode in New Attack on Hezbollah
CISA Adds Five Known Exploited Vulnerabilities to Catalog
Apple Releases Security Updates for Multiple Products
U.S. government ‘took control’ of a botnet run by Chinese government hackers, says FBI director
Critical Infrastructure at Risk From Email Security Breaches
Using Amazon Detective for IAM investigations
Server Misconfiguration at Fuel Industry Software Provider Exposes SSNs, PII Data
Nobody Cares About Security
What is email spam and how to fight it?
The best secure browsers for privacy in 2024: Expert tested
Windows MSHTML Platform Spoofing Vulnerability Exploited as Zero-Day
The Perils of Settling: Why ‘Good Enough’ Fails in Modern Cybersecurity
SecurityWeek to Host 2024 Attack Surface Management Summit Today
North Korean Group Uses Fake Job Offers to Target Energy, Aerospace Sectors
Here’s How to Remove Malware From Your Chromebook
Six Hackers Linked to Worldwide Cyber Attacks Arrested in Singapore
Kawasaki Motors Europe Targeted by RansomHub Ransomware Attack
E-commerce Threat: The WooCommerce Skimming Attacks
Chinese Engineer Charged in U.S. for Years-Long Cyber Espionage Targeting NASA and Military
Google Street View Images Used For Extortion Scams
Qualcomm Loses Appeal Over EU Antitrust Fine
LibreOffice Repair Mode Vulnerability Let Attackers Mark the Document as Not Valid
Ransomware Groups Abusing Azure Storage Explorer For Stealing Data
Exploiting Windows MiniFilter to Bypass EDR Protection
Cybersecurity risks in healthcare are an ongoing crisis
Scam ‘Funeral Streaming’ Groups Thrive on Facebook
Credential Flusher, understanding the threat and how to protect your login data
The Rising Cost of Vulnerable APIs and Bot Attacks – A $186 Billion Wake-Up Call for Businesses
10 Best Attack Surface Management Tools
Post-Quantum Cryptography: The Future of Secure Communications and the Role of Standards
Hackers breaching construction firms via specialized accounting software
Snapchat wants to put your AI-generated face in its ads
Check Point SASE: Triple Threat Protection for the New Perimeter
Orca: AI services, models falling short on security
CREST CAMP: A Catalyst for Global Cyber Security Growth
Unveiling Venezuela’s Repression: A Legacy of State Surveillance and Control
SpyCloud Unveils Massive Scale of Identity Exposure Due to Infostealers, Highlighting Need for Advanced Cybersecurity Measures
Analysis Identifies Web Servers as Weakest Cybersecurity Link
Komodor Klaudia identifies the root cause of issues in Kubernetes
PREVIEW: CISO Series Game Show LIVE in Washington, DC 10-2-24
Get to know Amazon GuardDuty Runtime Monitoring for Amazon EC2
Microsoft Windows Kernel Vulnerability Exploited in the Wild
UNC2970 Hackers Attacking Job Seekers Using Weaponized PDF Reader
Routed Optical Networking Continues to Transform the Industry
Sandbox scores are not an antivirus replacement
Cops across the world arrest 51 in orchestrated takedown of Ghost crime platform
Australian Police Infiltrate Encrypted Messaging App Ghost and Arrest Dozens
Ghost: Criminal communication platform compromised, dismantled by international law enforcement
Why Pay A Pentester?
Vulnerabilities in Cellular Packet Cores Part IV: Authentication
Meta Bans Russian State Media Networks
EU Court Rules Google’s €1.49bn Fine Should Be Annulled
Discord Announces End-to-End Encryption for Audio & Video Chats
U.S. Treasury issued fresh sanctions against entities linked to the Intellexa Consortium
CISA Urges Software Developers to Weed Out XSS Vulnerabilities
Red Hat OpenShift Receives Patches for Two Critical Flaws
INE Security Wins 2024 SC Excellence Award
Critical VMware vCenter Server bugs fixed (CVE-2024-38812)
Fivetran Hybrid Deployment keeps sensitive data within the customer’s environment
North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware
Problems in the Parking Lot: Threat Actors Use IRL Quishing to Target Travelers
Uber launches new rider verification program as a safety measure for drivers across the US
Build Your Network Skills With the 2024 Network Fundamentals Bundle — Only $39.99
Exotic SambaSpy is now dancing with Italian users
US Indicts Chinese National for Phishing for NASA Tech
Data Theft Risk in Salesforce by Manipulating Public Links
Valid Accounts Remain Top Access Point for Critical Infrastructure Attacks, Officials Say
Construction Companies Potentially Vulnerable Through Accounting Software
Russian Security Firm Doctor Web Hacked
PlainID introduces identity security for Zscaler
Rapid7 launches Vector Command for continuous red teaming and security gap identification
Europol Taskforce Disrupts Global Criminal Network Through Supply Chain Attack
Cybersecurity News: Exploding pager analysis, construction company vulnerability, cyberattack job loss
Apple released iOS 18, check out the new features
RAMBO Attack: Electromagnetic Waves Steal Data from Air-Gapped Systems
Threat Actor Allegedly Selling Bharat Petroleum Database
The Role of Zero Trust Architecture in Enhancing SSO Security
NESA Standard Ensures Security of UAE’s Cyberspace
Critical Flaws Found in VICIdial Contact Center Suite, PoC Published
Despite Russia warnings, Western critical infrastructure remains unprepared
Intezer raises $33 million to further develop its AI-based security operations solution
Verimatrix XTD Network Monitoring provides real-time detection of malicious activities
Chrome Introduces One-Time Permissions and Enhanced Safety Check for Safer Browsing
AT&T Agrees $13m FCC Settlement Over Cloud Data Breach
Python Infostealer Patching Windows Exodus App, (Wed, Sep 18th)
VMware vCenter Server Vulnerability Let Attackers Escalate Privileges
Chrome 129 Released with Fix for Multiple Security Vulnerabilities
Did a Chinese University Hacking Competition Target a Real Victim?
Broadcom fixed Critical VMware vCenter Server flaw CVE-2024-38812
Cyware Joins Coalition for Secure AI (CoSAI) to Advance Safe and Ethical AI Technologies
Deadly Pager Explosions in Lebanon Linked to Possible Supply Chain Attack
Apache Flaw: High Severity Vulnerability Fix Via Update
Building a Secure Linux Environment for Enterprise Applications
Hydden raises $4.4 million to improve identity security
CISA Issues Advice to Help Eliminate XSS Bugs
Big Tech Prioritizes Security with Zuckerberg at the Helm
GSMA Plans End-to-End Encryption for Cross-Platform RCS Messaging
London Transport requires in person password validation for 30,000 employees, Cyber Security Today for Wednesday, September 18, 2024
Binance issues malware threat to Bitcoins users
What to do if a Ransomware Decryptor Doesn’t Work Even After Paying the Ransom
Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution
Fair Ball or Foul Play? EU’s Digital Markets Act Puts App Security on Shaky Ground
CrowdSec: Open-source security solution offering crowdsourced protection
Cybersecurity jobs available right now: September 18, 2024
The proliferation of non-human identities
Detecting vulnerable code in software dependencies is more complex than it seems
Australian Police conducted supply chain attack on criminal collaborationware
Organizations overwhelmed by numerous and insecure remote access tools
ISC Stormcast For Wednesday, September 18th, 2024 https://isc.sans.edu/podcastdetail/9142, (Wed, Sep 18th)
The New U.S. House Version of KOSA Doesn’t Fix Its Biggest Problems
WhatsApp fix to make View Once chats actually disappear is beaten in less than a week