99Articles
9Categories
2024-08-26Date
🚨 CISA KEV 2[−]
26 Aug KEVCISA Adds Versa Director Bug to its Known Exploited Vulnerabilities CatalogThe vulnerability, CVE-2024-39717, allows administrators to upload a malicious file disguised as a PNG image through the "Change Favicon" feature in Versa Director's GUI.SECURITYAFFAIRS.COM
26 Aug KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-7971  Google Chromium V8 Type Confusion Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
26 AugIs the vulnerability disclosure process glitched? How CISOs are being left in the darkIn its July Patch Tuesday updates, Microsoft fixed a zero-day flaw, CVE-2024-38112 (7.5 CVSS), in Trident, Microsoft’s proprietary browser engine for Internet Explorer. Microsoft called the vulnerability a spoofing flaw, while Trend Micro’s Zero Day Initiative (ZDI) team, which c…CSOONLINE.COM
26 AugAnother Critical SolarWinds Web Help Desk Bug Fixed (CVE-2024-28987)SolarWinds has fixed another critical bug in Web Help Desk, known as CVE-2024-28987. This flaw involves hardcoded credentials that can be exploited by remote unauthenticated users to access internal functions and alter data.HELPNETSECURITY.COM
26 AugTwo Remote Code Execution Vulnerabilities Discovered in Traccar GPS Tracking SystemThe two vulnerabilities are path traversal flaws, with CVE-2024-24809 allowing unrestricted file upload with dangerous types and CVE-2024-31214 enabling remote code execution through device image uploads.HORIZON3.AI
26 AugSonicWall Patches Critical SonicOS VulnerabilitySonicWall has patched CVE-2024-40766, a critical SonicOS vulnerability that can lead to unauthorized access or a firewall crash. The post SonicWall Patches Critical SonicOS Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
26 AugSonicWall Issues Critical Patch for Firewall Vulnerability Allowing Unauthorized AccessSonicWall has released security updates to address a critical flaw impacting its firewalls that, if successfully exploited, could grant malicious actors unauthorized access to the devices. The vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), has been described as an im…THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 16[−]
26 AugFAA Proposes New Cybersecurity Rules for AirplanesThe increasing connectivity of airplanes to data networks has prompted regulators to consider cybersecurity threats from various sources, including maintenance laptops, airport networks, wireless sensors, and satellite communications.THERECORD.MEDIA
26 AugCritical Flaws in Traccar GPS System Expose Users to Remote AttacksTwo security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated attackers to achieve remote code execution under certain circumstances. Both the vulnerabilities are path traversal flaws and cou…THEHACKERNEWS.COM
26 AugTo pay or not to pay: CISOs weigh in on the ransomware dilemmaIn its “2024 Voice of the CISO” report, Proofpoint found that ransomware remains a top concern among CISOs worldwide. More surprising, however, is how CISOs say their organizations would deal with a specific incident: 62% stated that their enterprise would likely pay a ransom to …CSOONLINE.COM
26 Aug4 Fragen vor dem CISO-JobDie richtigen Fragen im Bewerbungsgespräch können CISO-Kandidaten dabei unterstützen, besser abzuschätzen, was beim neuen Arbeitgeber auf sie zukommen könnte. Foto: N Universe | shutterstock.com Der Bewerbungsprozess ist nicht für Unternehmen eine Gelegenheit, den passenden Kandi…CSOONLINE.COM
26 AugResearchers Identify Over 20 Supply Chain Vulnerabilities in MLOps PlatformsCybersecurity researchers are warning about the security risks in the machine learning (ML) software supply chain following the discovery of more than 20 vulnerabilities that could be exploited to target MLOps platforms. These vulnerabilities, which are described as inherent- and…THEHACKERNEWS.COM
26 AugPatelco Credit Union Ransomware Attack, Customers & Employees Data StolenPatelco Credit Union has disclosed a ransomware attack that compromised the personal data of its members and employees. The breach, which occurred earlier this year, has raised concerns about data security and privacy. The Incident: How It Unfolded Patelco Credit Union detected t…GBHACKERS.COM
26 AugSome interesting ways consoles are hackedsubmitted by yokonzo to cybersecurity 1 points | 0 comments https://www.xda-developers.com/how-console-exploits-discovered/?user=bWlrZWF3ZXNvbWUzQGdtYWlsLmNvbQ&lctg=460c8af606d1876987d97a4a94224d36b1d50f51a3dc2956018d5d51f9ee7af8XDA-DEVELOPERS.COM
26 AugCISA’s $524M headquarters slated for DHS campus in 2027CISA's new $524M headquarters, set to be completed in 2027, will be located at the DHS campus in Washington. Construction is expected to begin in the fall, consolidating the agency's workforce currently spread across five office rentals.CYBERSECURITYDIVE.COM
26 AugCheana Stealer Attacking Windows & macOS VPN Users to Deploy Malware PayloadsThreat actors exploit phishing websites to distribute malware, often posing as well-known product brands on several platforms in order to increase their authenticity. Cyble Research and Intelligence Lab recently found a rather sophisticated phishing campaign that mimicked “…GBHACKERS.COM
26 AugSonicWall warns of critical access control flaw in SonicOSSonicWall's SonicOS is vulnerable to a critical access control flaw that could allow attackers to gain access unauthorized access to resources or cause the firewall to crash. [...]BLEEPINGCOMPUTER.COM
26 AugRemote Work: A Ticking Time Bomb Waiting to be ExploitedThreatLocker has created a list of the top 15 actions to secure an organization if employing a remote or hybrid workforce. Learn more in this free e-book from ThreatLocker. [...]BLEEPINGCOMPUTER.COM
26 Aug KEVVersa fixes Director zero-day vulnerability exploited in attacksVersa Networks has fixed a zero-day vulnerability exploited in the wild that allows attackers to upload malicious files by exploiting an unrestricted file upload flaw in the Versa Director GUI. [...]BLEEPINGCOMPUTER.COM
26 AugChinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-DayMalware hunters catch Chinese APT Volt Typhoon exploiting a zero-day in Versa Director servers used by ISPs and MSPs. The post Chinese APT Volt Typhoon Caught Exploiting Versa Networks SD-WAN Zero-Day appeared first on SecurityWeek .SECURITYWEEK.COM
26 AugVulnerability Prioritization is Only the BeginningVulnerability prioritization is crucial in managing security threats but is only the beginning. Knowing which vulnerabilities to address is not enough; the focus should be on quickly addressing and mitigating them.HELPNETSECURITY.COM
26 Aug KEVGoogle tags a tenth Chrome zero-day as exploited this yearToday, Google revealed that it patched the tenth zero-day exploited in the wild in 2024 by attackers or security researchers during hacking contests. [...]BLEEPINGCOMPUTER.COM
26 AugFrench Prosecutors Detail Motives For Telegram CEO ArrestActivists Raise Concerns Over Privacy and Hostility to End-to-End Encryption The Saturday evening arrest of Telegram CEO Pavel Durov by French law enforcement agencies thrust the already controversial social media platform further into the international spotlight as Paris authori…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 8[−]
26 AugNIST Hands Off Post-Quantum Cryptography Work to Cyber TeamsNIST has issued new quantum-resistant cryptography standards, alerting cybersecurity teams to prepare for quantum threats. Quantum computing is expected to jeopardize current cryptographic methods within ten years.DARKREADING.COM
26 AugFrench Authorities Arrest Telegram CEO Pavel Durov at a Paris Airport, French Media ReportFrench media reported that the warrant for Durov was issued by France at the request of the special unit at the country’s interior ministry in charge of investigating crimes against minors. The post French Authorities Arrest Telegram CEO Pavel Durov at a Paris Airport, French Med…SECURITYWEEK.COM
🔥 INCIDENT REPORTING 23[−]
26 AugSeattle port systems shut down due to possible cyber attack: Cyber Security Today for Monday August 26, 2024Cybersecurity Failures: Lawsuits, Outages, and International Threats In this episode of Cybersecurity Today, host Jim Love covers a range of critical cybersecurity issues. The U.S. sues Georgia Tech for not meeting cybersecurity standards as a Pentagon contractor. A potential cyb…CYBERSECURITYTODAY.LIBSYN.COM
26 AugMost Ransomware Attacks Occur Between 1 AM and 5 AMCybercriminals are continuously evolving their tactics, emphasizing the need for organizations to have continuous monitoring to detect suspicious activities, according to a report by Malwarebytes.HELPNETSECURITY.COM
26 AugFinancial Firm Fined $850K for Violating SEC Cyber RulesEquiniti Trust Company, a financial services company, has been fined $850,000 by the Securities and Exchange Commission for failing to protect customer assets in two separate cyberattacks that resulted in the theft of over $6.6 million.THERECORD.MEDIA
26 AugWhy C-Suite Leaders are Prime Cyber TargetsAs per GetApp's 2024 Executive Cybersecurity Report, 72% of cybersecurity professionals in the US have reported attacks on senior executives in the past 18 months, with AI-generated deepfakes playing a role in 27% of these incidents.HELPNETSECURITY.COM
26 AugPatelco Credit Union Says Breach Impacts 726k After Ransomware Gang Auctions DataPatelco Credit Union has confirmed a data breach impacting many individuals after the RansomHub ransomware group stole some databases. The post Patelco Credit Union Says Breach Impacts 726k After Ransomware Gang Auctions Data appeared first on SecurityWeek .SECURITYWEEK.COM
26 AugYouTube Launches AI Tool to Recover Hacked AccountsYouTube has launched an AI tool to help users recover hacked accounts more easily. The AI chatbot called "support assistant" will guide users through the process of securing their login and recovering their account.INFOSECURITY-MAGAZINE.COM
26 AugHackers can Take Over Ecovacs Home Robots to Spy on Device OwnersResearchers recently warned that Ecovacs vacuum and lawn mower robots could be hacked to spy on their owners, with one flaw that allows attackers to take over devices' cameras and microphones via Bluetooth.SECURITYAFFAIRS.COM
26 AugIndia's Critical Infrastructure Suffers Spike in Cyberattackssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/cyber-risk/india-s-critical-infrastructure-suffers-spike-in-cyberattacksDARKREADING.COM
26 AugGenAI Models are Easily CompromisedGenAI security measures are easily compromised, with 95% of experts expressing low confidence in their security. Attack methods specific to GenAI make it easy for anyone to manipulate applications, gain unauthorized access, and steal data.HELPNETSECURITY.COM
26 AugUnpacking Slack Hacks: 6 Ways to Protect Sensitive Data with Secure CollaborationNowadays, sensitive and critical data is traveling in everyday business channels that offer only the basic level of security and encryption, and companies are often oblivious to the risk. A case in point: Disney suffered a devastating data leak by a hacktivist group known as Null…THEHACKERNEWS.COM
26 AugPort of Seattle Hit by Cyberattack, Services & Websites DownThe Port of Seattle and Seattle-Tacoma International Airport (Sea-Tac) were hit by a cyberattack over the weekend. Airport officials confirmed the attack, which shut down websites, email, and phone services, causing widespread inconvenience and delays for travelers. Cyberattack D…GBHACKERS.COM
26 AugSeattle-Tacoma Airport IT systems down due to a cyberattackThe Seattle-Tacoma International Airport has confirmed that a cyberattack is likely behind the ongoing IT systems outage that disrupted reservation check-in systems and delayed flights over the weekend. [...]BLEEPINGCOMPUTER.COM
26 AugUS Authorities Warn Healthcare Sector of Everest Ransomware ThreatsThe group, which has been active since 2020, specializes in data extortion and ransomware attacks. They have targeted at least 20 healthcare entities since 2021 and claim to have stolen patient information.HEALTHCAREINFOSECURITY.COM
26 Aug500k Impacted by Texas Dow Employees Credit Union Data BreachThe personal information of 500,000 Texas Dow Employees Credit Union members was compromised in the MOVEit hack last year. The post 500k Impacted by Texas Dow Employees Credit Union Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
26 AugAmerican Radio Relay League Paid $1 Million to Ransomware GangThe American Radio Relay League (ARRL) says it paid out a $1 million ransom after falling victim to ransomware in May 2024. The post American Radio Relay League Paid $1 Million to Ransomware Gang appeared first on SecurityWeek .SECURITYWEEK.COM
26 AugHundreds of Online Stores Hacked in New CampaignA new malware campaign has targeted numerous online stores, compromising their security by injecting digital skimmers that can steal credit card information during the checkout process.MALWAREBYTES.COM
26 AugCredit Union Issues Belated MOVEit Data Breach NotificationTexas Credit Union Only Just Notifying 500,000 Members About May 2023 Data Theft Fifteen months after a massive supply-chain attack hit users of MOVEit secure file-transfer software, Texas Dow Employees Credit Union has issued a data breach notification pertaining to 500,474 vict…DATABREACHTODAY.CO.UK
26 AugWordPress Websites Used to Distribute ClearFake Trojan MalwareWordPress websites were found distributing the ClearFake Trojan malware, a dangerous threat that can lead to ransomware infections. The malware was disguised as a prompt to install a root certificate.SUCURI.NET
26 AugDid MITRE ATT&CK Change the Game in Cybersecurity? 🤔Did MITRE ATT&CK kickstart the breach and attack simulation industry? 🤔 Adam Pennington from MITRE ATT&CK joins us with some fascinating insights on how this framework has shaped cybersecurity today! You’ve got to hear this! Full episode here: https://www.youtube.com/watc…YOUTUBE.COM
26 AugUS Charges Alleged Member of Russian Karakurt Ransomware GroupA 33-year-old Latvian man, Deniss Zolotarjovs, residing in Moscow, has been charged in the U.S. with money laundering, financial fraud, and extortion related to the Russian ransomware group Karakurt.THERECORD.MEDIA
26 AugSeattle-Tacoma Airport IT Outages Persist Into Day 3Travelers in the Pacific Northwest's busiest airport should travel light and gird for extra levels of frustration in the aftermath of a suspected Saturday cyberattack. The Seattle-Tacoma International Airport said that systems "experienced certain system outages indicating a poss…DATABREACHTODAY.CO.UK
26 AugPatelco notifies 726,000 customers of ransomware data breachPatelco Credit Union warns customers it suffered a data breach after personal data was stolen in a RansomHub ransomware attack earlier this year. [...]BLEEPINGCOMPUTER.COM
26 AugSmall Rural Alabama Hospital Reports Big 2023 Hacking BreachWhy Did it Take So Long to Notify Regulators and Affected Patients? A small rural Alabama hospital is notifying more than 61,000 patients that their sensitive information was potentially compromised in an October 2023 hacking incident. Why the many months-long delay in notifying …DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 22[−]
26 AugAfter cybersecurity lab wouldn’t use AV software, US accuses Georgia Tech of fraudsubmitted by neme to cybersecurity 2 points | 0 comments https://arstechnica.com/security/2024/08/oh-your-cybersecurity-researchers-wont-use-antivirus-tools-heres-a-federal-lawsuit/ARSTECHNICA.COM
26 AugISC Stormcast For Monday, August 26th, 2024 https://isc.sans.edu/podcastdetail/9112, (Mon, Aug 26th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
26 AugTelegram Founder Arrested Arrested at France AirportPavel Durov, Telegram’s billionaire founder and CEO, was arrested on August 25, 2024, at Le Bourget Airport near Paris. French authorities detained the 39-year-old as he arrived on his private jet from Azerbaijan, acting on an arrest warrant linked to allegations concerning…GBHACKERS.COM
26 AugGuest Essay: The urgent need to improve firmware security — especially in OT and IoT routersAs our world becomes increasingly interconnected, the security of Operational Technology (OT) and Internet of Things (IoT) devices is more critical than ever. New findings from Forescout ­– Vedere Labs , the industry leader in device intelligence, and Finite State … (more…)…LASTWATCHDOG.COM
26 AugFrom Highly Obfuscated Batch File to XWorm and Redline, (Mon, Aug 26th)If you follow my diaries, you probably already know that one of my favorite topics around malware is obfuscation. I&#;x26;#;39;m often impressed by the crazy techniques attackers use to make reverse engineers&#;x26;#;39; liv…ISC.SANS.EDU
26 AugMeta Says Iran-backed Hackers Targeted Political Figures on WhatsAppMeta Platforms revealed an Iranian hacker group targeting global political figures on WhatsApp. The Iranian state-sponsored threat actor APT42 used WhatsApp accounts to target individuals in Israel, Palestine, Iran, the U.K., and the U.S.YAHOO.COM
26 AugFormer Verizon employee pleads guilty to conspiring to aid Chinese spy agencysubmitted by kid to cybersecurity 1 points | 0 comments https://cyberscoop.com/former-verizon-employee-pleads-guilty-to-conspiring-to-aid-chinese-spy-agency/CYBERSCOOP.COM
26 AugAmerican Radio Relay League Paid $1 Million Ransomsubmitted by kid to cybersecurity 2 points | 0 comments https://virtualattacks.com/american-radio-relay-league-paid-1-million-ransom/VIRTUALATTACKS.COM
26 AugRussian National Arrested for Laundering Crypto Payments from Lazarus GroupArgentine authorities have arrested a Russian national accused of laundering cryptocurrency payments linked to the notorious North Korean Lazarus Group. The operation, led by the Argentine Federal Police (PFA) and the San Isidro Specialized Fiscal Unit in Cybercrime Investigation…GBHACKERS.COM
26 AugUber to Appeal Dutch €290 Million GDPR FineThe Dutch Data Protection Authority has fined Uber €290 million ($320 million) for driver data transfer practices that allegedly violate GDPR. The post Uber to Appeal Dutch €290 Million GDPR Fine appeared first on SecurityWeek .SECURITYWEEK.COM
26 AugUS Federal Court Rules Against Geofence WarrantsThis is a big deal. A US Appeals Court ruled that geofence warrants—these are general warrants demanding information about all people within a geographical boundary—are unconstitutional. The decision seems obvious to me, but you can’t take anything for granted.SCHNEIER.COM
26 AugMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 2 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
26 AugKnowBe4 Expands Children’s Interactive Cybersecurity Activity Kit for 2024/2025 School YearCan you believe it’s already back-to-school time for many? Where has the summer gone?KNOWBE4.COM
26 AugCyber Hacktivist Campaign “FreeDurov” Emerges Following Arrest of Telegram CEOSeveral cyber hacktivist groups have launched a campaign dubbed “FreeDurov” following the arrest of Pavel Durov, CEO of the popular messaging app Telegram, by French authorities. According to a recent tweet by FalconFeeds, this movement has quickly gained momentum, wi…GBHACKERS.COM
26 AugRussian Laundering Millions for Lazarus Hackers Arrested in ArgentinaA 29-year-old Russian national has been arrested in Buenos Aires, Argentina by the federal police on charges of money laundering for North Korean Lazarus hackers using cryptocurrency.BLEEPINGCOMPUTER.COM
26 AugGeorgia Tech Sued Over Alleged False Cybersecurity Reports to Win DoD ContractsComplaint alleges that defendants submitted a false and fraudulent cybersecurity assessment score. The post Georgia Tech Sued Over Alleged False Cybersecurity Reports to Win DoD Contracts appeared first on SecurityWeek .SECURITYWEEK.COM
26 AugAndroid malware steals payment card data using previously unseen techniquesubmitted by return2ozma to cybersecurity 3 points | 0 comments https://arstechnica.com/security/2024/08/android-malware-uses-nfc-to-read-payment-card-data-then-sends-it-to-attacker/ARSTECHNICA.COM
26 AugAuditors Uncover Lax FBI Hard Drive Disposal PracticesHard Drives Slated For Destruction Kept in Open Cardboard Boxes The FBI had a loose hard disk disposal problem that auditors say put classified information at risk. The bureau, auditor said, has a tracking system for obsolete computers and servers earmarked for destruction - but …DATABREACHTODAY.CO.UK
26 AugThe Changing Risk Landscape: CISO Liability - Darren Shou - BSW #362How are personal liability and indemnification impacting the CISO role? Darren Shou, Chief Strategy Officer from RSA Conference, describes the current landscape of CISO liability and the challenges facing CISOs today. He discusses the implications of the SEC's recent actions, inc…YOUTUBE.COM
26 Aug[Question] best way to check an unknown external drive rwsrlivrly safely on Windows 10?submitted by can to cybersecurity 1 points | 0 comments I could really use the extra storage right now but I know it’s not best practice to just plug it into my PC. I’m tempted to risk it but I’m wondering if a virtual machine would provide any benefit? Unless I find any cool mus…SH.ITJUST.WORKS
26 AugCEOs need to be bold, but can CISOs keep up? - BSW #362This week we talk a lot about the CISO's relationship with the business and the challenges of being aligned and keeping up. We also talk about budget priorities, the challenge of doing security in small businesses, and the ever-present challenge of burnout. Finally, we discuss wh…YOUTUBE.COM
26 AugHow Microsoft Entra ID supports US government agencies in meeting identity security requirementsUnited States Government agencies are adopting Microsoft Entra ID to consolidate siloed identity solutions, reduce operational complexity, and improve control and visibility across all users. The post How Microsoft Entra ID supports US government agencies in meeting identity secu…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 7[−]
26 AugNew Android Malware NGate Steals NFC Data to Clone Contactless Payment CardsCybersecurity researchers have uncovered new Android malware that can relay victims' contactless payment data from physical credit and debit cards to an attacker-controlled device with the goal of conducting fraudulent operations. The Slovak cybersecurity company is tracking the …THEHACKERNEWS.COM
26 AugC-Suite Involvement in Cybersecurity is Little More Than Lip ServiceThe C-suite's lack of engagement in cybersecurity poses a significant risk despite the growing threat landscape. Organizations need to prioritize cyber-risk management to prevent financial losses and damage to their reputation.DARKREADING.COM
26 AugStealthy Memory-Only Dropper Delivers PEAKLIGHT Loader on Windows SystemsA memory-only dropper decrypts and executes a PowerShell-based downloader known as PEAKLIGHT, allowing for the distribution of malware such as Lumma Stealer, Hijack Loader, and CryptBot.CLOUD.GOOGLE.COM
26 AugStealthy 'sedexp' Linux Malware Evaded Detection for Two YearsA sophisticated Linux malware called 'sedexp' has been flying under the radar since 2022, utilizing a unique persistence technique not yet recognized by the MITRE ATT&CK framework.BLEEPINGCOMPUTER.COM
26 AugMicrosoft: Exchange Online mistakenly tags emails as malwareMicrosoft is investigating an Exchange Online false positive issue causing emails containing images to be wrongly tagged as malicious and sent to quarantine. [...]BLEEPINGCOMPUTER.COM
26 AugFraud Tactics and the Growing Prevalence of AI ScamsHiya, a call-blocking service, identified nearly 20 billion spam calls in the first half of 2024, with over 107 million spam calls daily. Of the 42 countries analyzed, 25 had spam flag rates exceeding 20%, some even surpassing 50%.HELPNETSECURITY.COM
🎙️ PODCASTS 1[−]
26 AugExploring Android threats and ways to mitigate them | Unlocked 403 cybersecurity podcast (ep.5)The world of Android threats is quite vast and intriguing. In this episode, Becks and Lukáš demonstrate how easy it is to take over your phone, with some added tips on how to stay secureWELIVESECURITY.COM
📡 INFOSEC NEWS 15[−]
26 AugGartner Spotlights AI, Security in 2024 Hype Cycle for Emerging TechGartner's 2024 Hype Cycle for Emerging Technologies highlights autonomous AI, developer productivity, total experience, and human-centric security and privacy programs as the key technology trends to look out for.DARKREADING.COM
26 AugIndustry Moves for the week of August 26, 2024 - SecurityWeekExplore industry moves and significant changes in the industry for the week of August 26, 2024. Stay updated with the latest industry trends and shifts.SECURITYWEEK.COM
26 AugKremlin Blames Widespread Website Disruptions on DDoS Attack; Digital Experts DisagreeThe Kremlin attributed the widespread website disruptions in Russia to a DDoS attack, but digital experts disagree, stating that it is unlikely to target all 2,000 Russian telecom operators simultaneously.THERECORD.MEDIA
26 AugGeorgia Tech Sued Over Cybersecurity ViolationsThe US government has filed a lawsuit against the Georgia Institute of Technology (Georgia Tech) and its affiliate Georgia Tech Research Corporation (GTRC) for alleged cybersecurity violations.INFOSECURITY-MAGAZINE.COM
26 AugTelecom Company Hit with $1 Million Penalty Over AI-Generated Fake RobocallsLingo Telecom failed to comply with caller ID rules before the New Hampshire primary. FCC is seeking a $6 million fine against political consultant Steve Kramer for arranging the calls.THERECORD.MEDIA
26 AugSafe LibreOffice settings for all platforms | Kaspersky official blogA guide to centralized configuration of the free office suite LibreOffice for use in a managed corporate environmentKASPERSKY.COM
26 AugFake Funeral Live Stream Scams Target Grieving Users on FacebookThis type of scam typically starts with a comment on a funeral home's Facebook notification, promoting a fake live stream of the funeral service or soliciting donations on behalf of the deceased family.MALWAREBYTES.COM
26 AugOver 3400 High and Critical Cyber Alerts Recorded in First Half 2024A report from Critical Start’s Cyber Research Unit revealed over 3400 high and critical cyber alerts in the first half of 2024, marking a 46.15% increase in attacks in the US compared to 2023.INFOSECURITY-MAGAZINE.COM
26 AugDutch Regulator Fines Uber €290 Million for GDPR Violations in Data Transfers to U.S.The Dutch Data Protection Authority (DPA) has fined Uber a record €290 million ($324 million) for allegedly failing to comply with European Union (E.U.) data protection standards when sending sensitive driver data to the U.S. "The Dutch DPA found that Uber transferred personal da…THEHACKERNEWS.COM
26 AugUber fined $325 million for moving driver data from Europe to USThe Dutch Data Protection Authority (Autoriteit Persoonsgegevens, AP) has imposed a fine of €290,000,000 ($325 million) on Uber Technologies Inc. and Uber B.V. over GDPR violations. [...]BLEEPINGCOMPUTER.COM
26 AugMarketing Data Security Threats Are Rising: Where CMOs See GapsA new report from the CMO Council and KPMG shows that building strong relationships between marketing and data security teams is crucial, but one-third of partnerships struggle with collaboration.CYBERSECURITYDIVE.COM
26 AugAudit Finds Notable Security Gaps in FBI’s Storage Media ManagementThe FBI lacks proper policies and controls for tracking and disposing of storage media, leading to risks of loss or theft. The audit also identified physical security gaps in the media destruction process at FBI facilities.BLEEPINGCOMPUTER.COM