IT Security News Daily Summary 2023-09-18

• Hardcoded Secret at the Heart of the Dell Compellent VMware Vulnerability

• WSI Technologies a New Competitor in 2023 ‘ASTORS’ Awards Program

• Facebook Criticized For Refusing To Remove Animal Cruelty Videos

• Microsoft Azure Data Leak Exposes Dangers of File-Sharing Links

• Microsoft AI research division accidentally exposed 38TB of sensitive data

• Google Reveals Combined SIEM and SOAR Update for Chronicle Security Operations Platform

• Microsoft AI researchers mistakenly expose 38 TB of data

• LockBit Is Using RMMs to Spread Its Ransomware

• Security Conferences Keep Us Honest

• Publisher’s Spotlight: Dataminr: Real-time AI for Event and Risk Detection

• Former CIO accuses Penn State of faking cybersecurity compliance

• What to consider when creating a SaaS security strategy

• Companies Explore Ways to Safeguard Data in the Age of LLMs

• How a North Korean cyber group impersonated a Washington D.C. analyst

• electronically stored information (ESI)

• One of the FBI’s most wanted hackers is trolling the U.S. government

• Microsoft AI Researchers Expose 38TB of Top Sensitive Data

• Why security and DevOps need to join forces to safeguard containerized environments

• CISA Sponsors Hack the Building 2.0 Hospital Competition

• UK police officers’ data stolen in cyberattack on ID supplier

• Vulnerability Summary for the Week of September 11, 2023

• New MidgeDropper Malware Variant Found Targeting Windows Users

• Decoding Business Source Licensing: A New Software Licensing Model

• CISA Aims For More Robust Open Source Software Security for Government and Critical Infrastructure

• Microsoft AI Researchers Expose 38TB of Data, Including Keys, Passwords and Internal Messages

• How to Get Your Board on Board With Cybersecurity

• Microsoft worker accidentally exposes 38TB of sensitive data in GitHub blunder

• PRODUCT REVIEW: ISC2 CGRC Certification

• Secure Azure Functions with these authentication methods

• Weekly Vulnerability Recap – September 18, 2023 – Patch Tuesday Also For Adobe, Apple and More

• Product Boss Panos Panay Departs Microsoft

• Apple ‘Constantly’ Evaluating Advertising Spend On Elon Musk’s X

• Breach and Attack Simulation Technology (Short Version)

• If the worst happens: How to prep your accounts so your loved one can get into them

• ‘Elon Musk’ Book Reveals: Musk Wanted to use Tesla Cameras to Surveille on Drivers

• SAS unveils innovations and partnerships during Explore 2023

• What Does Closed-Door Meeting With AI Industry Leaders Mean for Business?

• Dragos Raises $74M in Latest Funding Round

• Unmasking antiforensics techniques: Strategies for effective defense

• Crooks Exploited Satellite Live Feed Delay for Betting Advantage

• Venafi Control Plane enhancements help enterprises manage machine identities of all kinds

• SentiLink unveils Facets to improve financial fraud detection

• TikTok Faces Massive €345 Million Penalty for Mishandling Kids’ Data Privacy

• Getting to Know: Kacey Darling

• Best IT Asset Management Software for 2023

• Cyber Mindfulness Corner Company Spotlight: Cybermindz

• Another Crypto Exchange Hacked, Following CoinEx Hack by Three Days

• How to make sure the reputation of your products and company is good

• Scattered Spider managed MGM Resort Network Outage brings $8m loss daily

• Safety and the digital age, terms that should go hand in hand with our kids

• OT/IoT and OpenTitan, an Open Source Silicon Root of Trust

• Google Extends Chromebook Lifespan, Promises 10 Years of Automatic Updates

• A Playbook for Bridging Africa’s Cybersecurity Skills Shortage

• CISA Adds Eight Known Exploited Vulnerabilities to Catalog

• Cryptocurrency Scams to Heavily Target TikTok Users

• Adaptive DDoS Attacks Get More Sophisticated: How to Beat Attackers’ New Ground Game

• Blockchain Technology: Strengthening Cybersecurity and Protecting Against Password Leaks and Data Breaches

• Here’s How Supermarket Loyalty Cards are Exploiting Consumers Weakness

• Foxconn To Double Jobs, Investment In India In Next 12 Months

• How to Build an Effective ICS Security Program

• How to Protect Your Facebook Account from Cybercriminals

• Fraudsters Steal Over $1m in Three Weeks Through ‘Pig Butchering’ Crypto Scam

• German intelligence warns cyberattacks could target liquefied natural gas (LNG) terminals

• Wipro partners with ServiceNow to optimize clients’ risk and security operations

• Microsoft Wins US Army Order For Upgraded HoloLens – Report

• How Microsoft and Illumio are reinventing firewall security for the cloud era

• The State of Windows Digital Analysis

• Microsoft mitigated exposure of internal information in a storage account due to overly-permissive SAS token

• Two Vegas Casinos Fell Victim to Cyberattacks, Shattering the Image of Impenetrable Casino Security

• Fortinet Patches High-Severity Vulnerabilities in FortiOS, FortiProxy, FortiWeb Products

• Canadian Government Targeted With DDoS Attacks by Pro-Russia Group

• Hook: New Android Banking Trojan That Expands on ERMAC’s Legacy

• Think Your MFA and PAM Solutions Protect You? Think Again

• New AMBERSQUID Cryptojacking Operation Targets Uncommon AWS Services

• Microsoft AI researchers accidentally exposed terabytes of internal sensitive data

• How Google Authenticator Made One Company’s Network Breach Much, Much Worse

• Senators Want Clarity From Pentagon On Ukraine Starlink Access Fiasco

• BlackCat/ALPHV Reportedly Encrypted More Than 100 MGM ESXi Hypervisors

• Fortinet Patches High Severity Vulnerabilities In Multiple Products

• Multiple Crypto Raids Net Lazarus Group $290m In 15 Weeks

• Industrial Cybersecurity Leader Dragos Raises an Additional $74M in Series D Round Extension Funding Led by WestCap

• Clorox says last month’s cyberattack is still disrupting production

• Rust Implant Used in New Malware Campaign Against Azerbaijan

• Supporting Africa’s Cybersecurity Talent Makes the World Safer

• California passes bill to set up one-stop data deletion shop

• ThemeBleed – Code Execution Vulnerability In Windows 11 Themes

• CISA Releases New Identity and Access Management Guidance

• iOS 17 includes these new security and privacy features

• Brits Are in the Dark About the Dark Web

• Digital Deficit: 93% of UK Employers Identify An IT Skills Gap Within The UK Job Market

• Kubernetes vulnerability allows RCE on Windows endpoints (CVE-2023-3676)

• Resecurity names Mohammed Alghamdi as the Managing Director in the Kingdom of Saudi Arabia

• Cyber Security Today, Sept. 18, 2023 – How a deepfake voice caused a company to be hacked

• TikTok slapped with €345m Child Privacy penalty by EU

• Top 5 Search Engines for Cybersecurity Research

• Earth Lusca Employs New Linux Backdoor, Uses Cobalt Strike for Lateral Movement

• Apple To Issue Update In France To Resolve iPhone 12 Sales Ban

• Deepfake and smishing. How hackers compromised the accounts of 27 Retool customers in the crypto industry

• Cryptojackers spread their nets to capture more than just EC2

• 10 Top DDoS Attack Protection and Mitigation Companies in 2023

• ICS Security Firm Dragos Raises $74 Million in Series D Extension

• TikTok Is Hit With $368 Million Fine Under Europe’s Strict Data Privacy Rules

• Industrial cybersecurity giant Dragos rakes in new funding, sets sights on global expansion

• TikTok Fined 345 Million Euros Over Child Data

• Remote Access Checklist

• What ChatGPT doesn’t say about Kubernetes in production

• Another $40m Dispersed to Western Union Fraud Victims

• Illegal Betting Ring Used Satellite Tech to Get Scoop on Results

• TikTok Fined $368m For Child Data Privacy Offenses

• EDR for Banking: 6 Ways EDR Can Help Financial Organizations

• Common Cyber Threats and How to Avoid Them?

• Innovative Trends in Flyer Distribution: Embracing Technology and Digital Integration

• Software developers, how secure is your software?

• The Future of E-commerce

• Retool Falls Victim to SMS-Based Phishing Attack Affecting 27 Cloud Clients

• FBI hacker USDoD leaks highly sensitive TransUnion data

• AI in Software Development: The Good, the Bad, and the Dangerous

• Evaluating New Partners and Vendors From an Identity Security Perspective

• North Korea’s Lazarus APT stole almost $240 million in crypto assets since June

• The hidden dangers of low-value data

• PostgreSQL 16: Where enhanced security meets high performance

• When data falls into the wrong hands

• Critical business app outages cost $500,000 per hour of downtime

• Regulatory activity forces compliance leaders to spend more on GRC tools

• Financially Motivated UNC3944 Threat Actor Shifts Focus to Ransomware Attacks

• Imagine Making Shadowy Data Brokers Erase Your Personal Info. Californians May Soon Live the Dream

• IT Security News Weekly Summary – Week 37

• IT Security News Daily Summary 2023-09-17

• MetaStealer Emerges As The New Malware Threat For Mac Devices

• Israeli Cyber Firms Unveil Groundbreaking Spyware Tool

• Researchers Say Facebook’s Fake News Policies Are Weak

• Billionaire Mark Cuban Falls Victim to Crypto Hack Again, Loses $900K

• Cyber resilience through consolidation part 1: The easiest computer to hack

• Cyber resilience through consolidation part 2: Resisting modern attacks

• Espionage Group Suspected of Intruding Asian Nation’s Power Grid

• Law Enforcement Faces Unprecedented Cyber Threat as Hackers Swipe Police Officer Data

• Cybercriminals are Targeting Schools, They are not Ready

• Clop gang stolen data from major North Carolina hospitals

• Apple Seeks to Defuse a French iPhone 12 Issue as EU Inquiry Intensifies

• OpenAI’s ChatGPT Enterprise Addresses Data Privacy Concerns

• CardX released a data leak notification impacting their customers in Thailand

• Week in review: 17 free AWS cybersecurity courses, exploited Chrome zero-day

• Security Affairs newsletter Round 437 by Pierluigi Paganini – International edition

• North Korea’s Lazarus Group Suspected in $31 Million CoinEx Heist

• Cyber Security Management System (CSMS) for the Automotive Industry

• How To Validate Archives and Identify Invalid Documents in Java

Generated on 2023-09-18 23:55:24.539021