23174
๐ The finest daily news on cybersecurity and privacy. ๐ Daily releases. ๐ป Is your online life secure? ๐ฉ lalilolalo.dev@gmail.com
๐ต๏ธโโ๏ธ MoneyGram Goes Offline After Vague Cyber Woes ๐ต๏ธโโ๏ธThe moneytransfer company is going on day four of its services being suspended.
๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
๐ต๏ธโโ๏ธ Telegram to Share User Info With Law Enforcement in Policy Shift ๐ต๏ธโโ๏ธThe encrypted messaging service said it will share users' IP addresses and phone numbers with authorities when requested.
๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
๐ต๏ธโโ๏ธ 6 Cybersecurity Headaches Sports Organizations Have to Worry About ๐ต๏ธโโ๏ธLeaders in professional athletics lament the realities and risks of growth in connected stadium environments, social networks, and legalized gambling.
๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
๐ Threat Actors Shift to JavaScript-Based Phishing Attacks ๐Cybercriminals are increasingly prioritizing scriptbased phishing techniques over one based on traditional malicious documents.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ Cybersecurity Incident Affects Arkansas City Water Treatment Facility ๐Arkansas Citys water treatment facility faced a cyber incident on Sunday and has since switched to manual operations.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ฆ
Critical Vulnerability Discovered in Versa Director: What Organizations Need to Know ๐ฆ
Overview The Cybersecurity and Infrastructure Security Agency CISA has highlighted a vulnerability in Versa Networks' Versa Director, a centralized management platform for Secure SDWAN and SASE solutions. This vulnerability, identified as CVE202445229, stems from improper input validation and affects various versions of the software. Organizations using vulnerable versions of Versa Director are urged to take immediate action to protect their network security. Versa Director plays an important role in orchestrating and managing network and security policies across diverse locations. Its REST APIs facilitate automation and streamline operations through a unified interface, allowing IT teams to configure and monitor their network systems efficiently. However, the recent vulnerabili...
๐ Read more.
๐ Via "CYBLE"
----------
๐๏ธ Seen on @cibsecurity
๐ Europol: GenAI Offers โTreasure Trove of Possibilitiesโ ๐A new Europol report argues that AI tools could revolutionize policing across the region.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ Telegram Boss Agrees to Closer Police Cooperation ๐Pavel Durov says he will share details of bad actors and clean up Telegrams search function.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ US Mulls Ban on Russian, Chinese Parts in Connected Vehicles ๐The US Commerce Department wants to prohibit the sale or import of connected vehicles with Russian or Chinesemade hardware and software.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ #GartnerSEC: Zero Failure Tolerance, A Cybersecurity Myth Holding Back Organizations ๐Cybersecurity leaders should prioritize response and recovery over prevention to effectively navigate the everevolving threat landscape, according to Gartner analysts.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ 14 Million Patients Impacted by US Healthcare Data Breaches in 2024 ๐SonicWall found that data breaches caused by malware attacks on US healthcare organizations have affected 14 million people so far in 2024.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ New Octo2 Malware Variant Threatens Mobile Banking Security ๐Cybercriminals have been observed disguising Octo2 as legitimate apps like Google Chrome and NordVPN.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ New Octo2 Android Banking Trojan Emerges with Device Takeover Capabilities ๐๏ธCybersecurity researchers have discovered a new version of an Android banking trojan called Octo that comes with improved capabilities to conduct device takeover DTO and perform fraudulent transactions. The new version has been codenamed Octo2 by the malware author, Dutch security firm ThreatFabric said in a report shared with The Hacker News, adding campaigns distributing the malware have.
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ Kaspersky Exits U.S., Automatically Replaces Software With UltraAV, Raising Concerns ๐๏ธAntivirus vendor Kaspersky has formally begun pulling back its offerings in the U.S., migrating existing users to UltraAV, effective September 19, 2024, ahead of its formal exit at the end of the month. "Kaspersky antivirus customers received a software update facilitating the transition to UltraAV," the company said in a post announcing the move on September 21. "This update ensured that users.
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ U.S. Proposes Ban on Connected Vehicles Using Chinese and Russian Tech ๐๏ธThe U.S. Department of Commerce DoC said it's proposing a ban on the import or sale of connected vehicles that integrate software and hardware made by foreign adversaries, particularly that of the People's Republic of China PRC and Russia. "The proposed rule focuses on hardware and software integrated into the Vehicle Connectivity System VCS and software integrated into the Automated.
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐ต๏ธโโ๏ธ Critical Automated Tank Gauge Bugs Threaten Critical Infrastructure ๐ต๏ธโโ๏ธThe security vulnerabilities could lead to everything from gas spills to operations data disclosure, affecting gas stations, airports, military bases, and other hypersensitive locations.
๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
๐ต๏ธโโ๏ธ Kansas Water Plant Pivots to Analog After Cyber Event ๐ต๏ธโโ๏ธA water treatment facility in a small city took serious precautions to prevent any bad outcomes from a hazy cyber incident.
๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ Necro Android Malware Found in Popular Camera and Browser Apps on Play Store ๐๏ธAltered versions of legitimate Android apps associated with Spotify, WhatsApp, and Minecraft have been used to deliver a new version of a known malware loader called Necro. Kaspersky said some of the malicious apps have also been found on the Google Play Store. They have been cumulatively downloaded 11 million times. They include Wuta Camera Nice Shot Always com.benqu.wuta 10 million.
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐ข Where will AI take security, and are we ready? ๐ขSteer through the risks and capitalise on the benefits of AI in cyber security.
๐ Read more.
๐ Via "ITPro"
----------
๐๏ธ Seen on @cibsecurity
๐ฆ
Critical Vulnerability Discovered in Versa Director: What Organizations Need to Know ๐ฆ
Overview The Cybersecurity and Infrastructure Security Agency CISA has highlighted a vulnerability in Versa Networks' Versa Director, a centralized management platform for Secure SDWAN and SASE solutions. This vulnerability, identified as CVE202445229, stems from improper input validation and affects various versions of the software. Organizations using vulnerable versions of Versa Director are urged to take immediate action to protect their network security. Versa Director plays an important role in orchestrating and managing network and security policies across diverse locations. Its REST APIs facilitate automation and streamline operations through a unified interface, allowing IT teams to configure and monitor their network systems efficiently. However, the recent vulnerabili...
๐ Read more.
๐ Via "CYBLE"
----------
๐๏ธ Seen on @cibsecurity
๐ Europol: GenAI Offers โTreasure Trove of Possibilitiesโ ๐A new Europol report argues that AI tools could revolutionize policing across the region.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ Telegram Boss Agrees to Closer Police Cooperation ๐Pavel Durov says he will share details of bad actors and clean up Telegrams search function.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ US Mulls Ban on Russian, Chinese Parts in Connected Vehicles ๐The US Commerce Department wants to prohibit the sale or import of connected vehicles with Russian or Chinesemade hardware and software.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ #GartnerSEC: Zero Failure Tolerance, A Cybersecurity Myth Holding Back Organizations ๐Cybersecurity leaders should prioritize response and recovery over prevention to effectively navigate the everevolving threat landscape, according to Gartner analysts.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ 14 Million Patients Impacted by US Healthcare Data Breaches in 2024 ๐SonicWall found that data breaches caused by malware attacks on US healthcare organizations have affected 14 million people so far in 2024.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐ New Octo2 Malware Variant Threatens Mobile Banking Security ๐Cybercriminals have been observed disguising Octo2 as legitimate apps like Google Chrome and NordVPN.
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ Telegram Agrees to Share User Data With Authorities for Criminal Investigations ๐๏ธIn a major policy reversal, the popular messaging app Telegram has announced it will give users' IP addresses and phone numbers to authorities in response to valid legal requests in an attempt to rein in criminal activity on the platform. "We've made it clear that the IP addresses and phone numbers of those who violate our rules can be disclosed to relevant authorities in response to valid legal.
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ The SSPM Justification Kit ๐๏ธSaaS applications contain a wealth of sensitive data and are central to business operations. Despite this, far too many organizations rely on half measures and hope their SaaS stack will remain secure. Unfortunately, this approach is lacking and will leave security teams blind to threat prevention and detection, as well as open to regulatory violations, data leaks, and significant breaches. If.
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ Discover Latest Ransomware Tactics and Zero Trust Strategies in This Expert Webinar ๐๏ธRansomware is no longer just a threat it's an entire industry. Cybercriminals are growing more sophisticated, and their tactics are evolving rapidly. This persistent danger is a major concern for business leaders. But there's good news you don't have to be defenseless. What if you could gain a strategic edge? Join our exclusive webinar, "Unpacking the 2024 Ransomware Landscape Insights and.
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐ง SANS Institute: Top 5 dangerous cyberattack techniques in 2024 ๐ง The SANS Institute a leading authority in cybersecurity research, education and certification released its annual Top Attacks and Threats Report. This report provides insights into the evolving threat landscape, identifying the most prevalent and dangerous cyberattack techniques that organizations need to prepare for. This years report also highlighted the main takeaways from the The post SANS Institute Top 5 dangerous cyberattack techniques in 2024 appeared first on Security Intelligence.
๐ Read more.
๐ Via "Security Intelligence"
----------
๐๏ธ Seen on @cibsecurity