Thursday, July 4, 2024

Palomar Health Medical Group employees frustrated over cybersecurity incident fallout - NBC San Diego

Palomar Health Medical Group employees frustrated over cybersecurity incident fallout  NBC San Diego


http://dlvr.it/T98yMN

Brazil Halts Meta's AI Data Processing Amid Privacy Concerns

Brazil's data protection authority, Autoridade Nacional de Proteção de Dados (ANPD), has temporarily banned Meta from processing users' personal data to train the company's artificial intelligence (AI) algorithms.
The ANPD said it found "evidence of processing of personal data based on inadequate legal hypothesis, lack of transparency, limitation of the rights of data subjects, and risks to


http://dlvr.it/T98Z66

Wednesday, July 3, 2024

LexisNexis Risk Solutions Brings Cloud Hosting to the Australian Market - Australia Cyber Security Magazine

LexisNexis Risk Solutions Brings Cloud Hosting to the Australian Market  Australia Cyber Security Magazine


http://dlvr.it/T97WDH

Florida health department data captured in cyberattack, hackers claim - Tampa Bay Times

Florida health department data captured in cyberattack, hackers claim  Tampa Bay Times


http://dlvr.it/T97W7K

Cambridge University Press & Assessment hit by cyberattack - Times Higher Education

Cambridge University Press & Assessment hit by cyberattack  Times Higher Education


http://dlvr.it/T96qKV

RSA security conference video roundup: 2024 perspectives - TechTarget

RSA security conference video roundup: 2024 perspectives  TechTarget


http://dlvr.it/T96TwL

FakeBat Loader Malware Spreads Widely Through Drive-by Download Attacks

The loader-as-a-service (LaaS) known as FakeBat has become one of the most widespread loader malware families distributed using the drive-by download technique this year, findings from Sekoia reveal.
"FakeBat primarily aims to download and execute the next-stage payload, such as IcedID, Lumma, RedLine, SmokeLoader, SectopRAT, and Ursnif," the company said in a Tuesday analysis.
Drive-by attacks


http://dlvr.it/T965Xv

Tuesday, July 2, 2024

Israeli Entities Targeted by Cyberattack Using Donut and Sliver Frameworks

Cybersecurity researchers have discovered an attack campaign that targets various Israeli entities with publicly-available frameworks like Donut and Sliver.
The campaign, believed to be highly targeted in nature, "leverage target-specific infrastructure and custom WordPress websites as a payload delivery mechanism, but affect a variety of entities across unrelated verticals, and rely on


http://dlvr.it/T9544Y

South Korean ERP Vendor's Server Hacked to Spread Xctdoor Malware

An unnamed South Korean enterprise resource planning (ERP) vendor's product update server has been found to be compromised to deliver a Go-based backdoor dubbed Xctdoor.
The AhnLab Security Intelligence Center (ASEC), which identified the attack in May 2024, did not attribute it to a known threat actor or group, but noted that the tactics overlap with that of Andariel, a sub-cluster within the


http://dlvr.it/T953w5

NIST selects Post-Quantum for National Cybersecurity Center of Excellence Quantum Migration Project - SecurityInfoWatch

NIST selects Post-Quantum for National Cybersecurity Center of Excellence Quantum Migration Project  SecurityInfoWatch


http://dlvr.it/T94PLH

Supreme Court ruling on Chevron doctrine may upend future cybersecurity regulation - Cybersecurity Dive

Supreme Court ruling on Chevron doctrine may upend future cybersecurity regulation  Cybersecurity Dive


http://dlvr.it/T9447t

CISA updates Secure Tomorrow Series Toolkit to enhance preparedness across critical infrastructure - IndustrialCyber

CISA updates Secure Tomorrow Series Toolkit to enhance preparedness across critical infrastructure  IndustrialCyber


http://dlvr.it/T93grP

Monday, July 1, 2024

High school students learn cybersecurity, cyberthreat essentials at computer science camp - Grambling State University

High school students learn cybersecurity, cyberthreat essentials at computer science camp  Grambling State University


http://dlvr.it/T92fGh

CDK eyes service restoration for all car dealers by Fourth of July - Cybersecurity Dive

CDK eyes service restoration for all car dealers by Fourth of July  Cybersecurity Dive


http://dlvr.it/T92SZB

Critical Flaws in CocoaPods Expose iOS and macOS Apps to Supply Chain Attacks

A trio of security flaws has been uncovered in the CocoaPods dependency manager for Swift and Objective-C Cocoa projects that could be exploited to stage software supply chain attacks, putting downstream customers at severe risks.
The vulnerabilities allow "any malicious actor to claim ownership over thousands of unclaimed pods and insert malicious code into many of the most popular iOS and


http://dlvr.it/T920w9

Forbes ranks UTSA's online B.B.A. in Cyber Security No. 5 in the nation - The University of Texas at San Antonio

Forbes ranks UTSA's online B.B.A. in Cyber Security No. 5 in the nation  The University of Texas at San Antonio


http://dlvr.it/T91gvM

New OpenSSH Vulnerability Could Lead to RCE as Root on Linux Systems

OpenSSH maintainers have released security updates to contain a critical security flaw that could result in unauthenticated remote code execution with root privileges in glibc-based Linux systems.
The vulnerability has been assigned the CVE identifier CVE-2024-6387. It resides in the OpenSSH server component, also known as sshd, which is designed to listen for connections from any of the client


http://dlvr.it/T91HPr

Saturday, June 29, 2024

Satellites in orbit can now be hacked. Here's why that's really (really) bad - BBC Science Focus

Satellites in orbit can now be hacked. Here's why that's really (really) bad  BBC Science Focus


http://dlvr.it/T8yLsB

2024 Cybersecurity Almanac: 100 Facts, Figures, Predictions And Statistics - Cybercrime Magazine

2024 Cybersecurity Almanac: 100 Facts, Figures, Predictions And Statistics  Cybercrime Magazine


http://dlvr.it/T8yLlS

Gallatin College MSU hosts third annual Montana Cybersecurity Summer Initiative Camp - Montana State University

Gallatin College MSU hosts third annual Montana Cybersecurity Summer Initiative Camp  Montana State University


http://dlvr.it/T8y1FK

Google to Block Entrust Certificates in Chrome Starting November 2024

Google has announced that it's going to start blocking websites that use certificates from Entrust starting around November 1, 2024, in its Chrome browser, citing compliance failures and the certificate authority's inability to address security issues in a timely manner.
"Over the past several years, publicly disclosed incident reports highlighted a pattern of concerning behaviors by Entrust


http://dlvr.it/T8xnKx

Hackers Created 250 npm Packages, Mimicking Popular AWS And Microsoft Projects - CybersecurityNews

Hackers Created 250 npm Packages, Mimicking Popular AWS And Microsoft Projects  CybersecurityNews


http://dlvr.it/T8xVqD

Friday, June 28, 2024

Data Doctors: Tips for Kaspersky antivirus removal - WTOP

Data Doctors: Tips for Kaspersky antivirus removal  WTOP


http://dlvr.it/T8wJfz

CISO Corner: The NYSE & the SEC; Ransomware Negotiation Tips - Dark Reading

CISO Corner: The NYSE & the SEC; Ransomware Negotiation Tips  Dark Reading


http://dlvr.it/T8wJSp

Cybersecurity Insights with Contrast SVP of Cyber Strategy Tom Kellermann | 6/28 - Security Boulevard

Cybersecurity Insights with Contrast SVP of Cyber Strategy Tom Kellermann | 6/28  Security Boulevard


http://dlvr.it/T8w1WZ

GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others

GitLab has released security updates to address 14 security flaws, including one critical vulnerability that could be exploited to run continuous integration and continuous deployment (CI/CD) pipelines as any user.
The weaknesses, which affect GitLab Community Edition (CE) and Enterprise Edition (EE), have been addressed in versions 17.1.1, 17.0.3, and 16.11.5.
The most severe of the


http://dlvr.it/T8vg2J

Elite remote guarding: Secure video-based detection systems | Security News - SourceSecurity.com

Elite remote guarding: Secure video-based detection systems | Security News  SourceSecurity.com


http://dlvr.it/T8vF1n

Thursday, June 27, 2024

NYPD officer database had security flaws that could have let hackers covertly modify officer data - City & State New York

NYPD officer database had security flaws that could have let hackers covertly modify officer data  City & State New York


http://dlvr.it/T8sfqY

Fortifying the software supply chain: A crucial security practice - Security Magazine

Fortifying the software supply chain: A crucial security practice  Security Magazine


http://dlvr.it/T8sMbx

Surge in Industrial Investment Elevates OT Cybersecurity Market - Manufacturing.net

Surge in Industrial Investment Elevates OT Cybersecurity Market  Manufacturing.net


http://dlvr.it/T8sMPB

Rust-Based P2PInfect Botnet Evolves with Miner and Ransomware Payloads

The peer-to-peer malware botnet known as P2PInfect has been found targeting misconfigured Redis servers with ransomware and cryptocurrency miners.
The development marks the threat's transition from what appeared to be a dormant botnet with unclear motives to a financially motivated operation.
"With its latest updates to the crypto miner, ransomware payload, and rootkit elements, it demonstrates


http://dlvr.it/T8s0H2

Critical SQLi Vulnerability Found in Fortra FileCatalyst Workflow Application

A critical security flaw has been disclosed in Fortra FileCatalyst Workflow that, if left unpatched, could allow an attacker to tamper with the application database.
Tracked as CVE-2024-5276, the vulnerability carries a CVSS score of 9.8. It impacts FileCatalyst Workflow versions 5.1.6 Build 135 and earlier. It has been addressed in version 5.1.6 build 139.
"An SQL injection vulnerability in


http://dlvr.it/T8rYhZ

Wednesday, June 26, 2024

DHS cyber hiring program got off on the wrong foot, CIO says, but progress is showing - Nextgov/FCW

DHS cyber hiring program got off on the wrong foot, CIO says, but progress is showing  Nextgov/FCW


http://dlvr.it/T8pzlV

FinTech Evolve Bancorp Hit by Major Ransomware Attack - PYMNTS.com

FinTech Evolve Bancorp Hit by Major Ransomware Attack  PYMNTS.com


http://dlvr.it/T8phbY

New MOVEit Transfer Vulnerability Under Active Exploitation - Patch ASAP!

A newly disclosed critical security flaw impacting Progress Software MOVEit Transfer is already seeing exploitation attempts in the wild shortly after details of the bug were publicly disclosed.
The vulnerability, tracked as CVE-2024-5806 (CVSS score: 9.1), concerns an authentication bypass that impacts the following versions -

From 2023.0.0 before 2023.0.11
From 2023.1.0 before 2023.1.6, and&


http://dlvr.it/T8pL3t

Stolen Data Across UK Signals Hospital Hack Worse Than Disclosed - Bloomberg

Stolen Data Across UK Signals Hospital Hack Worse Than Disclosed  Bloomberg


http://dlvr.it/T8pKsN

EU Tests Cybersecurity Readiness With Major Exercise Targeting Energy Sector - SolarQuarter

EU Tests Cybersecurity Readiness With Major Exercise Targeting Energy Sector  SolarQuarter


http://dlvr.it/T8nvSb

Tuesday, June 25, 2024

CHKP: 3 Cybersecurity Stocks to Watch as Threats Increase - StockNews.com

CHKP: 3 Cybersecurity Stocks to Watch as Threats Increase  StockNews.com


http://dlvr.it/T8m5VZ

Reynolds & Reynolds President Chris Walsh addresses the impact of CDK Cyberattacks on automotive retailers - CBT Automotive News

Reynolds & Reynolds President Chris Walsh addresses the impact of CDK Cyberattacks on automotive retailers  CBT Automotive News


http://dlvr.it/T8m5JZ

WordPress Plugins Backdoored - Spiceworks News and Insights

WordPress Plugins Backdoored  Spiceworks News and Insights


http://dlvr.it/T8lkkj

iON Launches New Unified, AI-Powered Cybersecurity Solution to Secure Small and Medium-Sized Businesses - Yahoo Finance

iON Launches New Unified, AI-Powered Cybersecurity Solution to Secure Small and Medium-Sized Businesses  Yahoo Finance


http://dlvr.it/T8lKkc

MEF State of the Industry Report Highlights Critical Need for Certified SASE Solutions to Combat Rising Cyber Threats - GlobeNewswire

MEF State of the Industry Report Highlights Critical Need for Certified SASE Solutions to Combat Rising Cyber Threats  GlobeNewswire


http://dlvr.it/T8lKQ2

Palomar Health Medical Group employees frustrated over cybersecurity incident fallout - NBC San Diego

Palomar Health Medical Group employees frustrated over cybersecurity incident fallout  NBC San Diego http://dlvr.it/T98yMN