Shows
CISO HeadlinesCISO Headlines - August 12, 2024This CISO Daily Update covers: 00:00 Introduction00:06 ADT Disclosed a Data Breach That Impacted More Than 30,000 Customers00:48 CSC ServiceWorks Discloses Data Breach After 2023 Cyberattack01:29 Iranian Hackers Ramping Up US Election Interference, Microsoft Warns02:09 Donald Trump’s Campaign Says Its Emails Were Hacked02:48 Malware Force-Installs Chrome Extensions on 300,000 Browsers, Patches DLLs03:30 Hackers Return $12 Million Taken During Ronin Network Breach04:13 Researchers Uncover 10 Flaws in Google's File Transfer Tool Quick Share04:53 Microsoft Warns of Unpatched Office Vulnerability Leading to Data Exposure05:40 New...
2024-08-1208 min
CISO HeadlinesCISO Headlines - August 9, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Cyber Incident Shuts Down North Miami City Hall: What You Need to Know00:43 Michigan Hospital System Struggles With Cyberattack as Healthcare Industry Decries ‘Russian’ Ransomware01:21 Rhysida Ransomware Group Claims to Have Breached Bayhealth Hospital in Delaware02:00 Massive DDoS Attack: Record-breaking 419 TB of Malicious Traffic Within 24 Hours02:32 US Offers $10 Million for Info on Iranian Leaders Behind CyberAv3ngers Water Utility Attacks03:06 Royal Ransomware Successor BlackSuit Has Demanded More Than $500 Million03:50 US Dismantles Laptop Farm Used by Under...
2024-08-0911 min
CISO HeadlinesCISO Headlines - August 8, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Microsoft Punches Back at Delta Air Lines and Its Legal Threats00:44 Ransomware Attack Cost LoanDepot $27 Million01:13 Largest Data Breach Ever? Lawsuit Against National Public Data for Allegedly Compromising Data of 3 Billion People02:06 Police Take Just 2 Days to Recover $40M Stolen in Business Email Scam02:56 Georgia’s Voter Portal Gets a Crash Course in Client Versus Backend Input Validation03:32 Critical Progress WhatsUp RCE Flaw Now Under Active Exploitation04:17 Hackers Could Spy on Cellphone Users by Abusing 5G B...
2024-08-0809 min
CISO HeadlinesCISO Headlines - August 7, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Hacker Wipes 13,000 Devices After Breaching Classroom Management Platform00:49 Calibrated Healthcare Suffers Data Breach, Patient Information Compromised01:26 Non-Profit Blood Center OneBlood Recovering from Cripping Ransomware Attack02:13 AI-Fueled Phishing Scams Raise Alarm Ahead of U.S. Presidential Election02:51 Illinois Relaxes Biometric Privacy Law So Snafus Won’t Cost Businesses Billions03:29 FTC Settles for $12M With Scammers Operating $213M Pyramid Scheme04:09 Google Warns of an Actively Exploited Android Kernel Flaw04:47 CISA Adds Microsoft COM for Windows Bug...
2024-08-0710 min
CISO HeadlinesCISO Headlines - August 6, 2024This CISO Daily Update covers: 00:00 Introduction00:06 CrowdStrike to Delta Airlines: Don’t Blame Us for Your Woes00:38 Insured Loss Impact Could Reach $1B Following CrowdStrike Outage01:16 Threat Actor Claiming Breach of Gregory’s Foods 400Gb Database01:40 Keytronic Incurred Approximately $17 Million of Expenses Following Ransomware Attack02:18 332 Million Email Addresses Scraped from SOCRadar. io Published Online02:55 Sneaky SnakeKeylogger Slithers Into Windows Inboxes to Steal Sensitive Secrets03:42 Ransomware Gang Targets IT Workers With New SharpRhino Malware04:13 Critical Vulnerability in Apache OFBiz Requires Immed...
2024-08-0608 min
CISO HeadlinesCISO Headlines - August 5, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Millions of US Voter Data Exposed in 13 Misconfigured Databases00:41 Hackers Attempt to Sell the Personal Data of 3 Billion People Resulting From an April Data Breach01:12 Surge in Magniber Ransomware Attacks Impact Home Users Worldwide01:51 City of Columbus Offers Credit Monitoring to Employees After Massive Cyberattack Hits Government Facilities02:36 DoJ and FTC Sue TikTok for Violating Children's Privacy Laws03:24 Avtech Camera Vulnerability Actively Exploited in the Wild, CISA Warns04:10 Linux Kernel Impacted by New SLUBStick Cross-Cache A...
2024-08-0507 min
CISO HeadlinesCISO Headlines - August 2, 2024This CISO Daily Update covers: 00:00 Introduction00:06 FBI Warns of Scammers Posing as Crypto Exchange Employees01:00 Pharma Giant Cencora Says Personal Health Data Leaked During February Cyber Incident01:45 Employees at Dell, AT&T, Verizon, Capital One, and Other Companies Exposed via Popular Office App02:22 DDoS Attacks May Target Election Infrastructure, FBI Warns02:59 Mining Giant Fresnillo Confirms Cyber Security Incident: Operations Continue Normally03:36 Smart Cars Share Driver Data, Prompting Calls for Federal Scrutiny04:20 Tech Support Scam Ring Leader Gets 7 Years in Prison, $6M Fi...
2024-08-0508 min
CISO HeadlinesCISO Headlines - August 1, 2024This CISO Daily Update covers: 00:00 Introduction00:06 DDoS Attack Triggers New Microsoft Global Outage00:36 Ransomware Attack on Major US Blood Center Prompts Hundreds of Hospitals to Implement Shortage Protocols01:06 CrowdStrike Faces Lawsuits From Customers, Investors01:44 Phishing Attack Steals Donations from Trump Voters Using Fake Website02:21 Fraud Ring Pushes 600+ Fake Web Shops via Facebook Ads03:06 Meta to Pay Texas $1.4bn for Unlawful Biometric Data Capture03:41 DigiCert Revoking Many Certificates Due to Verification Issue04:12 Multiple SMTP Servers Vulnerable to Spoofing Attacks, Let H...
2024-08-0108 min
CISO HeadlinesCISO Headlines - July 31, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Columbus Investigates Whether Data Was Stolen in Ransomware Attack00:47 Record-Breaking $75M Ransom Paid to Dark Angels Gang01:31 ‘LockBit of Phishing’ EvilProxy Used in More Than a Million Attacks Every Month02:10 Stolen GenAI Accounts Flood Dark Web With 400 Daily Listings02:46 OneDrive Phishing Scam Tricks Users into Running Malicious PowerShell Script03:15 U.S. Court Slashes $78M Lawyers’ Fee in T-Mobile Data Breach Settlement03:56 Google Workspace Vulnerability Allowed Hackers to Access 3rd-Party Services04:37 VMware ESXi Auth Bypass...
2024-07-3108 min
CISO HeadlinesCISO Headlines - July 30, 2024This CISO Daily Update covers: 00:00 Introduction00:06 4.3 Million Impacted by HealthEquity Data Breach00:45 SolarWinds Legal Ruling Expected to Narrow, but Maintain SEC Oversight on Cyber Transparency01:36 Casper Network Pauses Operations After Cyberattack: What You Need to Know02:04 Proofpoint Email Routing Flaw Exploited to Send Millions of Spoofed Phishing Emails02:51 US Border Agents Must Get Warrant Before Cell Phone Searches, Federal Court Rules03:23 Unveiling the Stargazer Goblin: A Closer Look at the Stargazers Ghost Network’s $100,000 Malware Operation04:05 Walmart Discovers New PowerShell Backdoor Lin...
2024-07-3008 min
CISO HeadlinesCISO Headlines - July 29, 2024This CISO Daily Update covers: 00:00 Introduction00:06 South Carolina’s Summerville Police Claimed by Rumored Alphv/BlackCat Ransomware Reboot00:47 Data Breach at Rhode Island Wyatt Detention Facility Estimated to Affect 20,00001:25 FBCS Data Breach Impact Now Reaches 4.2 Million People02:00 Columbus Reports Cyber Incident as Multiple Cities Recover From Ransomware Attacks02:33 US Indicts Alleged North Korean State Hacker for Ransomware Attacks on Hospitals03:07 A Bug in Chrome Password Manager Caused User Credentials to Disappear03:47 ServiceNow Flaw Let Remote Attackers Execute Arbitrary Code04:24 Wha...
2024-07-2909 min
CISO HeadlinesCISO Headlines - July 26, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Hackers Group Allegedly Leaked Threat Actor List from Crowdstrike With 250M IOC Data01:00 Bug in Update Checker Blamed for CrowdStrike Outages as Congress Demands Hearing01:32 Data Breach Exposes US Spyware Maker Behind Windows, Mac, Android and Chromebook Malware02:16 Hackers Outsmart SEGs with Unbelievably Sophisticated Malware02:49 Meta Nukes Massive Instagram Sextortion Network of 63,000 Accounts03:36 Critical ServiceNow RCE Flaws Actively Exploited to Steal Credentials04:23 GitLab Patched XSS Vulnerability that Lets Attackers Execute Arbitrary Code05:09 Docker Fi...
2024-07-2609 min
CISO HeadlinesCISO Headlines - July 25, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Pentagon & NASA IT Service Provider Hacked – Confidential Data Leaked Online – Exclusive!00:53 CrowdStrike Blames a Test Software Bug for That Giant Global Mess It Made01:34 TracFone to Pay $16 Million to Settle FCC Cyber and Privacy Investigation02:18 57,000 Patients Impacted by Michigan Medicine Data Breach02:59 Biggest-Ever Leak of Digital Pirates: 10 Million Exposed by Z-Library Copycat03:40 AT&T Outage Due to Failed Network Update, FCC Releases New Findings04:23 Network of Ghost GitHub Accounts Successfully Distributes Malware05:03 Ransomware Ecosy...
2024-07-2510 min
CISO HeadlinesCISO Headlines - July 24, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Ransomware Recovery Effort Cost Suffolk County $25.7 Million, Prompting Investigation00:53 Fake CrowdStrike Repair Manual Pushes New Infostealer Malware01:32 Cybercrooks Spell Trouble With Typosquatting Domains Amid CrowdStrike Crisis02:14 2 Million Microsoft 365 Data Compromised by CrowdStrike Bug03:09 US Gov Sanctioned Key Members of the Cyber Army of Russia Reborn Hacktivists Group04:03 BreachForums v1 Hacking Forum Data Leak Exposes Members’ Info04:44 Philips Vue PACS Vulnerabilities Put Patient Data at Risk: Healthcare Sector on High Alert05:29 Swipe Right for Dat...
2024-07-2411 min
CISO HeadlinesCISO Headlines - July 23, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Los Angeles Superior Court Shuts Down After Ransomware Attack00:52 EU Gave CrowdStrike the Keys to the Windows Kernel, Claims Microsoft01:28 Hackers Claim Breach of Daikin: 40 GB of Confidential Data Exposed01:57 New Linux Variant of Play Ransomware Targeting VMware ESXi Systems02:30 Hackers Inject Persistent Credit Card Skimmer to Abuse Swap File in Shopping Sites03:07 Check Point Research Reports Highest Increase of Global Cyber Attacks Seen in Last Two Years03:53 Ransomware Groups Fragment Amid Rising Cybercrime Threats
2024-07-2405 min
CISO HeadlinesCISO Headlines - July 22, 2024This CISO Daily Update covers: 00:00 Introduction00:06 CrowdStrike Says Logic Error Caused Windows BSOD Chaos00:49 Threat Actors Attempted to Capitalize CrowdStrike Incident01:31 Microsoft Says 8.5 Million Windows Devices Impacted by CrowdStrike Incident, Publishes Recovery Tool02:07 Safety Gear Giant Cadre Holdings Reports Cybersecurity Breach03:00 LAPD Warns Residents After Spike in Burglaries Using Wi-Fi Jammers That Disable Security Cameras, Smart Doorbells03:37 DHS Watchdog Rebukes CISA and Law Enforcement Training Center for Failing to Protect Data04:19 Two LockBit Ransomware Affiliates Plead Guilty in U.S. Federal C...
2024-07-2211 min
CISO HeadlinesCISO Headlines - July 19, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Live Updates: Global Tech Outage Grounds Flights and Hits Businesses00:42 Judge Mostly Drags SEC’s Lawsuit Against SolarWinds Into the Recycling Bin01:23 AT&T Reports Arrest Made in April Hack, Updates Affected Customers01:58 USPS Shared Customer Postal Addresses With Meta, LinkedIn and Snap02:31 Weaponized AWS Packages Spreading Malware through Innocent-Looking JPEGs03:09 Revolver Rabbit Gang Registers 500,000 Domains for Malware Campaigns03:51 SolarWinds Fixes 8 Critical Bugs in Access Rights Audit Software04:30 Critical Splunk Flaw Can Be Exp...
2024-07-1908 min
CISO HeadlinesCISO Headlines - July 18, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Furniture Giant Shuts Down Manufacturing Facilities After Ransomware Attack00:46 MNGI Digestive Health Data Breach Impacts 765,000 Individuals01:24 Over 400,000 Life360 User Phone Numbers Leaked via Unsecured API02:07 Yacht Giant MarineMax Data Breach Impacts Over 123,000 People02:50 Anime Figurine Maker Exposes North American Customer Names, Home Addresses03:30 Qilin Ransomware’s Sophisticated Tactics Unveiled By Experts04:11 Ivanti Endpoint Manager Flaw Let Hackers Gain Full Control EPM Server04:55 Atlassian Data Center & Server Flaw Let Hackers Execute Arbitrary Code0...
2024-07-1811 min
CISO HeadlinesCISO Headlines - July 17, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Car Dealership Company AutoNation Says CDK Ransomware Incident Cut Into Quarterly Earnings00:44 Virginia Elections Department Dismisses Data Breach Claims01:40 “Massive Data Sale in History: 2 Billion Rows, 122 GB, 361M Emails & Passwords for Just $500!”02:23 Email Addresses of 15 Million Trello Users Leaked on Hacking Forum03:01 Kaspersky Leaves U.S. Market Following the Ban on the Sale of Its Software in the Country03:39 New Jellyfish Loader Threat Discovered: Advanced Techniques for System Infiltration04:15 'Konfety' Ad Fraud Uses 250+ Google Play Decoy...
2024-07-1710 min
CISO HeadlinesCISO Headlines - July 16, 2024This CISO Daily Update covers: 00:00 Introduction00:06 AT&T Paid a $370,000 Ransom to Prevent Stolen Data From Being Leaked00:48 Data of Millions of mSpy Customers Leaked Online01:25 6 Million Records of Pinterest Database Leaked – What’s Inside!01:53 Attackers Exploit URL Protections to Disguise Phishing Links02:28 ZDI Shames Microsoft For – Yet Another – Coordinated Vulnerability Disclosure Snafu03:08 Facebook Ads for Windows Desktop Themes Push Info-Stealing Malware03:48 CRYSTALRAY Hackers Infect Over 1,500 Victims Using Network Mapping Tool04:33 Juniper Junos Flaw Let Attackers Gain Full ‘Root’ Access...
2024-07-1606 min
CISO HeadlinesCISO Headlines - July 15, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Rite Aid Disclosed Data Breach Following RansomHub Ransomware Attack00:52 Hackers Stole ‘Nearly All’ Call Logs Over Six Months From AT&T01:34 Indiana County Files Disaster Declaration Following Ransomware Attack02:22 Disney’s Internal Slack Breached? NullBulge Leaks 1.1 TB of Data03:04 ‘Magic Soap’ Producer Discloses Data Breach, but Details Are Scarce03:50 Homoglyphs and IL Weaving Used To Evade Detection in Malicious NuGet Campaign04:38 GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln05:25 Citrix NetS...
2024-07-1608 min
CISO HeadlinesCISO Headlines - June 28, 2024This CISO Daily Update covers: 00:00 Introduction00:06 CDK Expects Car Dealership System Outage to Last Until at Least June 3000:47 Designed Receivable Solutions Data Breach Impacts 585,000 People01:27 Dangerous AI Workaround: 'Skeleton Key' Unlocks Malicious Content02:08 Interpol Seizes Millions in Global Crackdown Against Scammers02:43 PoC Exploit for Critical Fortra FileCatalyst Flaw Published (CVE-2024-5276)03:28 Gas Chromatograph Hacking Could Have Serious Impact: Security Firm04:01 GitLab Security Updates Patch 14 Vulnerabilities04:44 CISA Warns of Exploited GeoServer, Linux Kernel, and Roundcube Vulnerabilities05:24 Prompt Injection F...
2024-06-2807 min
CISO HeadlinesCISO Headlines - June 27, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Microsoft Blamed for Million-Plus Patient Record Theft at US Hospital Giant00:44 LockBit Lied: Stolen Data Is From a Bank, Not US Federal Reserve01:29 BianLian Ransomware Targets Better Business Bureau, US Dermatology Partners02:15 Developer Errors Lead to Long-term Exposure of Sensitive Data in Git Repos02:48 New Medusa Android Trojan Targets Banking Users Across 7 Countries03:40 AzzaSec Reveals Advanced Windows Ransomware Builder, Threatens Cybersecurity04:24 Fresh MOVEit Bug Under Attack Mere Hours After Disclosure05:08 Apple Patches AirPods B...
2024-06-2708 min
CISO HeadlinesCISO Headlines - June 26, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Neiman Marcus Data Breach Disclosed as Hacker Offers to Sell Stolen Information00:45 CISA Confirms Hackers May Have Accessed Data From Chemical Facilities During January Incident01:24 Creditors’ Service Provider Leaked Millions of Records With Lawsuit History01:52 Several Plugins Compromised in WordPress Supply Chain Attack02:39 New Attack Technique Exploits Microsoft Management Console Files03:20 UK and US Cops Band Together to Tackle Qilin’s Ransomware Shakedowns03:56 Chrome 126 Update Patches Memory Safety Bugs04:37 Recent Zyxel NAS Vulnerability Explo...
2024-06-2706 min
CISO HeadlinesCISO Headlines - June 24, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Santander US Reveals Employee Bank Account Details Stolen00:49 Los Angeles Unified Confirms Student Data Stolen in Snowflake Account Hack01:33 Change Healthcare Lists the Medical Data Stolen in Ransomware Attack02:16 US Government Sanctions Twelve Kaspersky Lab Executives03:11 ANY. RUN Malware Sandbox Provider’s Employee Email Compromised03:54 CISA Issues New Advisory for Industrial Control Systems04:33 Facebook PrestaShop Module Exploited to Steal Credit Cards05:21 Risk of Getting Malicious Extension From Chrome Store Way Worse Than Google’s Let...
2024-06-2507 min
CISO HeadlinesCISO Headlines - June 21, 2024This CISO Daily Update covers: 00:00 Introduction00:06 CDK Global Cyberattack Cripples 15,000 US Auto Dealerships00:50 Baltimore, One of America’s Deadliest Cities, Leaks Identities of Residents Who Reported Crimes01:37 Advance Auto Parts Confirms Data Breach in SEC Filing; Reports Losses Around $300,00002:27 Alleged AMCOM Data Breach Exposes Sensitive Military Documents on Dark Web03:13 Hacker Leaks Data of 33,000 Accenture Employees in Third-Party Breach03:46 Linux Version of RansomHub Ransomware Targets VMware ESXi VMs04:31 An Unpatched Bug Allows Anyone to Impersonate Microsoft Corporate Email Accounts05:06 Res...
2024-06-2109 min
CISO HeadlinesCISO Headlines - June 20, 2024This CISO Daily Update covers: 00:00 Introduction00:06 IntelBroker Hacker Claims Apple Breach, Steals Source Code for Internal Tools00:39 MEDUSA Ransomware Targets AJE Group: $1.5M Price Tag for 646GB of Data01:21 Circle K Atlanta Allegedly Breached, Data Stolen02:02 Crown Equipment Confirms a Cyberattack Disrupted Manufacturing02:35 FTC Sues Adobe for ‘Trapping’ Users in Deceptive Subscription Practices03:13 ShrinkLocker Uses Windows BitLocker Utility To Infect Computers03:50 Cryptojacking Campaign Targets Exposed Docker APIs04:27 Warning: Markopolo's Scam Targeting Crypto Users via Fake Meeting Software04:57 Chrom...
2024-06-2009 min
CISO HeadlinesCISO Headlines - June 19, 2024This CISO Daily Update covers: 00:00 Introduction00:06 AMD Data Breach: IntelBroker Claims Theft of Employee and Product Info00:50 BlackSuit Ransomware Leaks Kansas City Police Data in Failed Ransom Plot01:34 Amtrak Discloses Data Breach, Users Urged to Reset Passwords02:14 Akira Ransomware Claims the TETRA Technologies, 40GB of Sensitive Data at Risk02:48 MEDUSA Ransomware Group Demands $220,000 from US Institutions, Threatens Data Exposure03:28 Medibank Breach: Security Failures Revealed (Lack of MFA Among Them)04:10 Guidehouse and Nan McKay to Pay $11.3M for Cybersecurity Failures in COVID-19 Re...
2024-06-1910 min
CISO HeadlinesCISO Headlines - June 18, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Hackers Detail How They Allegedly Stole Ticketmaster Data From Snowflake00:57 LA County’s Department of Public Health (DPH) Data Breach Impacted Over 200,000 Individuals01:47 Panera Bread Likely Paid a Ransom in March Ransomware Attack02:38 Fake Google Chrome Errors Trick You Into Running Malicious PowerShell Scripts03:25 Beware Of Malicious Search Results Leading To SolarMarker Malware Installation03:59 Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor04:39 Empire Market Owners Charged With Operating $430M Dark Web Marketplace05:28 Cri...
2024-06-1908 min
CISO HeadlinesCISO Headlines - June 17, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Dordt University Faces Massive Data Leak: Millions of Students and Staff Potentially Affected00:45 Keytronic Confirms Data Breach After Ransomware Gang Leaks Stolen Files01:37 New York Times Says Data Breach Affected Freelance Visual Contributors02:17 Globe Life Discloses Breach Amid Accusations of Fraud and Shady Business Tactics03:03 Los Angeles Schools Investigating Claims of Data for Sale on Dark Web03:46 Blackbaud Must Pay $6.75 Million, Improve Security After Lying About Scope of 2020 Hack04:31 Young Cyber Scammer Arrested, Allegedly Behind C...
2024-06-1810 min
CISO HeadlinesCISO Headlines - June 14, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Truist Bank Confirms Breach After Stolen Data Shows Up on Hacking Forum00:45 Panera Warns of Employee Data Breach After March Ransomware Attack01:28 Grand Traverse County Faces Cyberattack: FBI and State Police Investigate02:10 City of Cleveland Scrambling to Restore Systems Following Cyberattack03:02 Life360 Says Personal Information Stolen From Tile Customer Support Platform03:45 New Attack Technique 'Sleepy Pickle' Targets Machine Learning Models04:27 Dark Web Actor Advertises New Click Fraud Software for Online Marketing Deception05:07 Google W...
2024-06-1411 min
CISO HeadlinesCISO Headlines - June 13, 2024This CISO Daily Update covers: 00:00 Introduction00:06 CISA Warns of Criminals Impersonating Its Employees in Phone Calls00:42 Findlay Automotive Hit by Cybersecurity Attack, Investigation Ongoing01:15 Medusa Ransomware Group Claims Cyberattack on Organizations in USA, Canada01:46 Data Broker Shuts Down Product Related to Driver Behavior Patterns02:36 Ransomware Group May Have Exploited Windows Vulnerability as Zero-Day03:24 RansomHub Brings Scattered Spider Into Its RaaS Fold03:59 Chrome 126, Firefox 127 Patch High-Severity Vulnerabilities04:41 Fortinet Patches Code Execution Vulnerability in FortiOS05:22 Microsoft Patches Zero-Click Outlook V...
2024-06-1308 min
CISO HeadlinesCISO Headlines - June 12, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Cyber Incident Forces Cleveland to Shut Down City Hall00:43 Pure Storage Confirms Data Breach After Snowflake Account Hack01:27 Ascension Makes Progress in Restoring Systems After Cyberattack, Patients to See Improved Wait Times02:13 Central Securities Corporation Faces Cyberattack Claims By Underground Team Ransomware Group02:43 TellYouThePass Ransomware Exploits Recent PHP RCE Flaw to Breach Servers03:36 New Warmcookie Windows Backdoor Pushed via Fake Job Offers04:16 Users of JetBrains IDEs at Risk of GitHub Access Token Compromise04:55 A...
2024-06-1209 min
CISO HeadlinesCISO Headlines - June 11, 2024This CISO Daily Update covers: 00:00 Introduction00:06 LendingTree Confirms That Cloud Services Attack Potentially Affected Subsidiary00:50 Christie’s Data Breach Impacted 45,798 Individuals01:36 BlackBerry Disputes Cylance Hack Claims, New York Times Confirms Code Breach02:20 Ticketmaster Attacker Vanishes, Pundits Speculating Arrest03:00 More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack03:28 Unencrypting VPN Traffic Through a New TunnelVision Attack04:12 Azure Service Tags Vulnerability: Microsoft Warns of Potential Abuse by Hackers04:53 Critical PyTorch Vulnerability Can Lead to Sensitive AI Data Theft0...
2024-06-1110 min
CISO HeadlinesCISO Headlines - June 10, 2024This CISO Daily Update covers: 00:00 Introduction00:06 New York Times Source Code Stolen Using Exposed GitHub Token00:54 Frontier Says 750,000 Social Security Numbers Accessed During April Cyberattack01:45 Texas Attorney General Investigating Several Connected Car Manufacturers Over Data Sharing02:31 Nearly 400,000 Affected by Data Breach at Eye Care Management Services Company03:00 Beware of Fake Google Chrome Update Pop-Ups that Installs Malware03:36 LightSpy Spyware's macOS Variant Found with Advanced Surveillance Capabilities04:14 Hotel Check-in Kiosks Expose Guest Data, Room Keys04:47 EmailGPT Exposed to Prompt Injection A...
2024-06-1010 min
CISO HeadlinesCISO Headlines - June 7, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Advance Auto Parts: Alleged Data Breach Exposes Millions After Snowflake Cyberattack00:46 Financial Data Swiped From US Eye Clinics, Over 300k People Affected01:35 FBI Obtained 7,000 Lockbit Decryption Keys, Victims Should Contact the Feds to Get Support02:19 SecurityScorecard Files Complaint against Safe Security for Allegedly Misappropriating Trade Secrets03:14 RansomHub Operation Is a Rebranded Version of the Knight RaaS03:57 Muhstik Botnet Exploiting Apache RocketMQ Flaw to Expand DDoS Attacks04:42 Hackers Target Python Developers with Fake "Crytic-Compilers" Package on P...
2024-06-0710 min
CISO HeadlinesCISO Headlines - June 6, 2024This CISO Daily Update covers: 00:00 Introduction00:06 FBI Warns of Rise in Work-From-Home Scams00:42 Microsoft Paid Tenable a Bug Bounty for an Azure Flaw It Says Doesn’t Need a Fix, Just Better Documentation01:29 Celebrity TikTok Accounts Compromised Using Zero-Click Attack via DMs02:14 Nationwide Call Disruptions Trigger FCC Investigation into Major U.S. Wireless Carriers03:05 Accidental or Not, Another Google Leak Exposes Multiple Privacy Breaches03:52 Linux Version of TargetCompany Ransomware Focuses on VMware ESXi04:35 Zyxel Addressed Three RCEs in End-of-Life NAS Devices
2024-06-0608 min
CISO HeadlinesCISO Headlines - June 5, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Clevo Gaming Laptop-Maker Claimed by RansomHub Ransomware Gang00:52 361 Million Account Credentials Leaked on Telegram: Are Yours Among Them?01:37 Cyberattack on Telecom Giant Frontier Claimed by RansomHub02:14 Kickstarter Star Leaks Over Half a Million Records With Clients’ Data02:57 Christie’s Stolen Data Sold to Highest Bidder Rather Than Leaked, RansomHub Claims03:43 Dessky Snippets WordPress Plugin Exploited For Card Skimming Attacks04:31 Beware! New Android Trojan ‘Viper RAT’ on Dark Web Steals Your Data05:06 Cybercrooks Get Cozy With...
2024-06-0511 min
CISO HeadlinesCISO Headlines - June 4, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Dark Web Actor Claims to Pilfer 2TB of Compressed Data from QuoteWizard00:50 Collection Agency FBCS Ups Data Breach Tally to 3.2 Million People01:37 Alleged Heineken Data Breach Potentially Impacts Over 8,000 Employees02:11 Spoofing Shein for Credential Harvesting02:45 Utah Student Gives Hackers False Information to Thwart Phishing03:28 Authorities Ramp Up Efforts to Capture the Mastermind Behind Emotet04:25 Beware: Fake Browser Updates Deliver BitRAT and Lumma Stealer Malware05:12 High-Risk Atlassian Confluence RCE fixed, PoC Available (CVE-2024-21683)
2024-06-0410 min
CISO HeadlinesCISO Headlines - June 3, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Snowflake Denies Breach, Blames Data Theft on Poorly Secured Customer Accounts00:50 Ticketmaster Confirms Data Breach Impacting 560 Million Customers01:47 Data Leak Exposes Business Leaders and Top Celebrity Data02:28 AI Company Hugging Face Detects Unauthorized Access to Its Spaces Platform03:07 Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices03:55 More Than 600,000 Routers Knocked Out in October by Chalubo Malware04:41 Critical Apache LOG4J2 Flaw Still Threatens Global Finance05:23 Privacy is the Leading Concern R...
2024-06-0308 min
CISO HeadlinesCISO Headlines - May 31, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Nurses at Ascension Hospital in Michigan Raise Alarms About Safety Following Ransomware Attack00:55 Johnson & Johnson Reports Data Breach Potentially Linked to Massive Cencora Breach01:39 Everbridge Warns of Corporate Systems Breach Exposing Business Data02:23 Okta Warns of Credential Stuffing Attacks Targeting Customer Identity Cloud03:12 Police Seize Over 100 Malware Loader Servers, Arrest Four Cybercriminals04:12 Shady 'Merry-Go-Round' Ad Fraud Network Leaves Orgs Hemorrhaging Cash05:00 Family-Owned Woodworking Company Western Dovetail Hit by Akira Ransomware Attack05:35 Cyber Espionage A...
2024-05-3111 min
CISO HeadlinesCISO Headlines - May 30, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Massive Google Leak Exposes Search Algorithm Secrets00:44 First American December Data Breach Impacts 44,000 People01:27 Toshiba Email Compromise Reveals Social Security Numbers02:04 Internet Archive Disrupted by Sustained and “Mean” DDoS Attack02:50 Ransomware Attack on Seattle Public Library Knocks Out Online Systems03:36 U.S. Treasury Sanctions Chinese Nationals Behind Billion-Dollar 911 S5 Botnet Fraud04:18 U.S. Sentences 31-Year-Old to 10 Years for Laundering $4.5M in Email Scams05:11 Surge in Discord Malware Attacks as 50,000 Malicious Links Uncovered05...
2024-05-3012 min
CISO HeadlinesCISO Headlines - May 29, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Christie’s Confirms Breach After RansomHub Threatens to Leak Data01:04 Hacker Claims Ticketmaster Data Breach: 560M User Details and Card Info at Risk01:45 Check Point VPN Targeted for Initial Access in Enterprise Attacks02:24 WordPress Plugin Abused to Install E-Skimmers in E-Commerce Sites03:03 Alleged Cyberattack Strikes Allied Telesis: LockBit Ransomware Suspected03:37 Breach Forums Return to Clearnet and Dark Web Despite FBI Seizure04:21 TeaBot Banking Trojan Activity on the Rise, Zscaler Observes05:04 Novel BLOODALCHEMY Malware Exam...
2024-05-2909 min
CISO HeadlinesCISO Headlines - May 28, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Sav-Rx Discloses Data Breach Impacting 2.8 Million Americans01:02 Google Shares Details on Accidental File Deletion that Impacts Pension Fund’s Accounts01:42 The U.S. Moves a Step Closer to a Cyber Force02:33 New ATM Malware Family Emerged in the Threat Landscape03:18 Ransomware Attack Hits Medical Device Manufacturer03:55 A High-Severity Vulnerability Affects Cisco Firepower Management Center04:51 SingCERT Warns Critical Vulnerabilities Found in Multiple WordPress Plugins05:39 LangChain JS Framework Vulnerability Let Hackers Read Arbitrary File on Ser...
2024-05-2810 min
CISO HeadlinesCISO Headlines - May 27, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Cencora Data Breach Exposes US Patient Info From 11 Drug Companies 00:57 MITRE December 2023 Attack: Threat Actors Created Rogue VMs to Evade Detection01:42 Fake AV Websites Used to Distribute Info-Stealer Malware02:18 Arc Browser’s Windows Launch Targeted by Google Ads Malvertising03:09 Hackers Phish Finance Orgs Using Trojanized Minesweeper Clone03:59 Newly Discovered Ransomware Uses BitLocker to Encrypt Victim Data04:41 Experts Find Flaw in Replicate AI Service Exposing Customers' Models and Data05:26 CVE-2024-5148: GNOME Remote Desktop Vuln...
2024-05-2708 min
CISO HeadlinesCISO Headlines - May 24, 2024This CISO Daily Update covers: 00:00 Introduction00:06 A Consumer-Grade Spyware App Found in Check-in Systems of 3 US Hotels00:49 Cybercriminals Exploit Cloud Storage For SMS Phishing Scams01:34 Threat Actor Claiming Access to AWS, Azure, MongoDB & Github API Keys02:10 Compromised Recording Software Was Served From Vendor’s Official Site, Threat Researchers Say03:06 Ransomware Attacks Exploit VMware ESXi Vulnerabilities in Alarming Pattern03:57 Moroccan Cybercrime Group Impersonates Nonprofits and Abuses Cloud Services to Rake In Gift Card Cash05:03 Feds Continue to Rack Up Convictions in BEC Cas...
2024-05-2410 min
CISO HeadlinesCISO Headlines - May 23, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Threat Actors Exploited Bitbucket Artifacts to Expose AWS Secrets in Plaintext00:57 CentroMed Data Breach Exposed 400,000 Patient Records01:40 Laundering Cash From Healthcare, Romance Scams Lands US Man in Prison for a Decade02:21 Hackers Sell Fake Pegasus Spyware on Clearnet and Dark Web03:04 Intercontinental Exchange to Pay $10M SEC Penalty Over VPN Breach04:01 Critical Veeam Backup Enterprise Manager Flaw Allows Authentication Bypass04:49 Rockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber Threats05:38 UserPro Plugin Vulnerability Allows A...
2024-05-2310 min
CISO HeadlinesCISO Headlines - May 22, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Blackbasta Group Claims to Have Hacked Atlas, One of the Largest US Oil Distributors00:51 GhostEngine Mining Attacks Kill EDR Security Using Vulnerable Drivers01:43 EPA Issues Alert After Finding Critical Vulnerabilities in Drinking Water Systems02:35 Malware Delivery via Cloud Services Exploits Unicode Trick to Deceive Users03:24 23-Year-Old Arrested for Running 100M Incognito Dark Web Market04:05 Kansas City Cyberattack Disrupts KC Scout Cameras, Impacts Crash Investigations and Services04:45 CasperSecurity Stealer Attacking Windows Machine to Remote Desktop Credentials
2024-05-2311 min
CISO HeadlinesCISO Headlines - May 21, 2024This CISO Daily Update covers: 00:00 Introduction00:06 OmniVision Discloses Data Breach After 2023 Ransomware Attack00:50 Threat Actors USDoD and SXUL Claim 70 Million Rows of Sensitive Data in Alleged Prison Data Breach01:28 American Radio Relay League Cyberattack Takes Logbook of the World Offline02:08 Threat Actor Chucky, Owner of LeakBase Claims Knowmad Mood Data Breach02:52 GitCaught Campaign Relies on GitHub and Filezilla to Deliver Multiple Malware03:40 New BiBi Wiper Version Also Destroys the Disk Partition Table04:18 PoC Exploit for Ivanti EPMM Privilege Escalation Flaw Released (C...
2024-05-2108 min
CISO HeadlinesCISO Headlines - May 20, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Company That Assists Health Care Insurers Discloses 2023 Data Breach00:55 Grandoreiro Banking Trojan Resurfaces, Targeting Over 1,500 Banks Worldwide01:47 Chinese Nationals Arrested for Laundering $73 Million in Pig Butchering Crypto Scam02:30 Ransomware Gang Targets Windows Admins via PuTTy, WinSCP Malvertising03:13 North Korea-Linked IT Workers Infiltrated Hundreds of US Firms04:10 Rumors of BreachForums Reboot 3.0 Already Brewing on Socials04:53 Intel Discloses Max Severity Bug in Its AI Model Compression Software05:41 CISA Warns of Hackers Exploiting Chrome, EoL D-Link B...
2024-05-2009 min
CISO HeadlinesCISO Headlines - May 17, 2024This CISO Daily Update covers: 00:06 Cybercriminals Exploiting Microsoft's Quick Assist Feature in Ransomware Attacks01:07 Law Enforcement Data Stolen in Wichita Ransomware Attack01:46 Scammers Fake Docusign Templates to Blackmail & Steal From Companies02:32 Crook Brags About US Army and $75B Defense Biz Pwnage03:06 Rockford Public Schools Ransomware Attack Encrypted and Stole Student Data03:48 US Offers $5 Million for Info on North Korean IT Workers Involved in Job Fraud04:33 SugarGh0st RAT Variant Used in Targeted AI Industry Attacks05:28 IoT Cameras Exposed by Chainable Exploits, M...
2024-05-1711 min
CISO HeadlinesCISO Headlines - May 16, 2024This CISO Daily Update covers: 00:06 Ransomware Attack on Singing River Health System Impacted 895,000 People00:48 FBI Seize BreachForums Hacking Forum Used to Leak Stolen Data01:25 PDF Exploitation Targets Foxit Reader Users02:05 As the FBI Closes In, Scattered Spider Attacks Finance, Insurance Orgs02:52 MITM Attacks Can Still Bypass FIDO2 Security, Researchers Warn03:39 Nissan Attack Exposes Sensitive Data of Thousands04:22 Ebury Botnet Malware Compromises 400,000 Linux Servers Over Past 14 Years05:11 Adobe Fixed Multiple Critical Flaws in Acrobat and Reader06:01 D-Link Routers Vulnerable to T...
2024-05-1609 min
CISO HeadlinesCISO Headlines - May 15, 2024This CISO Daily Update covers: 00:06 Zscaler Confirms Only Isolated Test Server Was Hacked00:43 Ongoing Campaign Bombards Enterprises with Spam Emails and Phone Calls01:16 Phorpiex Botnet Sent Millions of Phishing Emails to Deliver LockBit Black Ransomware02:03 Telegram CEO Calls Out Rival Signal, Claiming It Has Ties to US Government02:41 NIST Confusion Continues as Cyber Pros Complain CVE Uploads Stalled03:33 Hackers Use DNS Tunneling to Scan and Track Victims04:06 Android Malware Poses as WhatsApp, Instagram, Snapchat to Steal Data05:02 Google Fixes Sixth Actively E...
2024-05-1510 min
CISO HeadlinesCISO Headlines - May 14, 2024This CISO Daily Update covers: 00:00 Introduction00:06 AI Abused to Clone Voices, FBI Warns00:52 Hacker Offers Data Allegedly Stolen from the City of New York01:34 INC Ransomware Source Code Selling on Hacking Forums for $300,00002:16 FCC Reveals Royal Tiger, Its First Tagged Robocall Threat Actor03:03 Vermont Passes Data Privacy Law Allowing Consumers to Sue Companies03:49 Malicious Python Package Hides Sliver C2 Framework in Fake Requests Library Logo04:39 Severe Vulnerabilities in Cinterion Cellular Modems Pose Risks to Various Industries05:24 Apple iTunes For W...
2024-05-1409 min
CISO HeadlinesCISO Headlines - May 13, 2024This CISO Daily Update covers: 00:06 The Post Millennial Hack Leaked Data Impacting 26 Million People00:47 U.S. Law Enforcement Cracks Down on Over 3,000 Money Mules01:41 New LLMjacking Attack Lets Hackers Hijack AI Models for Profit02:17 Ohio Lottery Data Breach Impacted Over 538,000 Individuals03:00 As White House Preps New Cyber Rules for Healthcare, Neuberger Says Backlash Is Unwarranted03:46 FIN7 Hacker Group Leverages Malicious Google Ads to Deliver NetSupport RAT04:32 Critical Next.js Vulnerability Let Attackers Compromise Server Operations05:29 PoC Released for Critical PuTTY Private K...
2024-05-1308 min
CISO HeadlinesCISO Headlines - May 10, 2024This CISO Daily Update covers: 00:06 Dell Warns of Data Breach, 49 Million Customers Allegedly Affected00:51 Boeing Confirms $200M Cyber Extortion Attempt of LockBit01:25 Catholic Health System Ascension Warns of Disruptions Following Cyberattack02:01 New 'LLMjacking' Attack Exploits Stolen Cloud Credentials02:47 Zscaler Is Investigating Data Breach Claims03:28 Monday[.]com Removes “Share Update” Feature Abused for Phishing Attacks04:05 Vast Network of Fake Web Shops Defrauds 850,000 & Counting04:50 F5 Fixes Big-IP Next Central Manager Flaws With Public PoCs (CVE-2024-21793, CVE-2024-26026)05:31 Mirai Botnet Exploits Ivant...
2024-05-1009 min
CISO HeadlinesCISO Headlines - May 9, 2024This CISO Daily Update covers: 00:06 Brandywine Realty Trust Confirms Data Breach After Ransomware Attack00:48 One Year On, Universities Org Admits MOVEit Attack Hit Data of 800K People01:27 Scattered Spider Group a Unique Challenge for Cyber Cops, FBI Leader Says02:06 MediExcel Exposes 500K Patient Documents02:36 FBI Warns of Gift Card Fraud Ring Targeting Retail Companies03:17 Attackers Leverage TunnelVision Vulnerability to Expose User Data03:46 Veeam Fixes RCE Flaw in Backup Management Platform (CVE-2024-29212)04:19 The CyberPower UPS Vulnerability Threatening Critical Systems Across Sectors
2024-05-0907 min
CISO HeadlinesCISO Headlines - May 8, 2024This CISO Daily Update covers: 00:06 LockbitSupp Identified As Dmitry Khoroshev and Indicted for Ransomware Crimes00:58 MITRE Hack: China-Linked Group Breached Systems in December 202301:41 Play Ransomware Group Claims Responsibility for Disrupting Kansas City Scout System02:23 RSAC: Securing Foundational Tech Critical to Upholding Democratic Values, Says Blinken03:20 BetterHelp to Pay $7.8 Million to 800,000 in Health Data Sharing Settlement04:07 Citrix Addresses High-Severity Flaw in NetScaler ADC and Gateway04:49 Oracle Weblogic Server Flaw Allows Attackers Full Control – PoC Released05:30 Report Shows AI Fraud, Deepfakes Are Top Cha...
2024-05-0807 min
CISO HeadlinesCISO Headlines - May 7, 2024This CISO Daily Update covers: 00:06 City of Wichita Shuts Down IT Network After Ransomware Attack00:38 Cyber Alliance Threatens Major U.S. Energy Firms: High Society and Cyber Army of Russia Collaborate01:17 MedStar Health Breach: Hackers Accessed Emails & Files02:02 CISA Says ‘No More’ to Decades-Old Directory Traversal Bugs02:43 Beware Of Phishing Attacks Targeting AmericanExpress Card Users03:26 APT42 Hackers Posing As Event Organizers To Hijack Victim Network04:07 New 'Cuckoo' Persistent macOS Spyware Targeting Intel and ARM Macs04:50 Critical Tinyproxy Flaw Opens Over 50,000 Hosts to Re...
2024-05-0709 min
CISO HeadlinesCISO Headlines - May 6, 2024This CISO Daily Update covers: 00:06 Microsoft Ties Executive Pay to Security Following Multiple Failures and Breaches01:00 F Society Targets Rutgers University, Bitfinex in Latest Cyberattack01:45 Ransomware Drama: Law Enforcement Seized Lockbit Group’s Website Again02:32 Illinois’ Biometric Data Privacy Law Could Soon Be Less Costly for Violators03:27 These Dangerous Scammers Don’t Even Bother to Hide Their Crimes04:13 Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks05:00 Path Traversal Vulnerability Elimination in Software Sought by Feds05:53 Android Bug Leaks DNS Traffic...
2024-05-0609 min
CISO HeadlinesCISO Headlines - May 3, 2024This CISO Daily Update covers: 00:06 Dropbox Says Attackers Accessed Customer and MFA Info, API Keys00:49 Data Breach Hits Panda Restaurants01:33 Cybersecurity Consultant Arrested After Allegedly Extorting IT Firm02:14 Microsoft Graph API Emerges as a Top Attacker Tool to Plot Data Theft02:56 DPRK's Kimsuky APT Abuses Weak DMARC Policies, Feds Warn03:50 US and UK Warn of Disruptive Russian OT Attacks04:47 REvil Ransomware Scum Sentenced to Almost 14 Years Inside, Ordered to Pay $16 Million05:45 Cisco IP Phones Exposed: Vulnerabilities Allow Hackers to Disrupt, Spy, a...
2024-05-0310 min
CISO HeadlinesCISO Headlines - May 2, 2024This CISO Daily Update covers: 00:06 More Than 450K Hit by JPMorgan Breach00:48 Ex-NSA Employee Sentenced to 22 Years for Trying to Sell U.S. Secrets to Russia01:25 US Charges 16 Over ‘Depraved’ Grandparent Scams02:11 Carmakers Lying About Requiring Warrants Before Sharing Location Data, Senate Probe Finds02:56 Bitcoin Forensic Analysis Uncovers Money Laundering Clusters and Criminal Proceeds03:31 New Cuttlefish Malware Infects Routers to Monitor Traffic for Credentials04:17 ZLoader Malware Evolves with Anti-Analysis Trick from Zeus Banking Trojan05:02 CISA Says GitLab Account Takeover Bug Is Activ...
2024-05-0210 min
CISO HeadlinesCISO Headlines - May 1, 2024This CISO Daily Update covers: 00:06 Kansas City System Providing Roadside Weather, Traffic Info Taken Down by Cyberattack00:42 Philadelphia Inquirer Struck by Cyberattack01:19 Change Healthcare Hacked Using Stolen Citrix Account With No MFA02:07 US Spy Agencies to Share Intelligence on Critical Infrastructure in Policy Revamp02:53 Google Blocked 2.3M Apps From Play Store Last Year for Breaking the G Law03:49 Millions of Malicious 'Imageless' Containers Planted on Docker Hub Over 5 Years04:31 New Latrodectus Malware Attacks Use Microsoft, Cloudflare Themes05:06 Threat Actors Claiming of 0...
2024-05-0108 min
CISO HeadlinesCISO Headlines - April 30, 2024This CISO Daily Update covers: 00:06 FCC Fines Carriers $200 Million for Illegally Sharing User Location00:46 Financial Business and Consumer Solutions (FBCS) Data Breach Impacted 2M Individuals01:27 Voter Registration System Taken Offline in Coffee County Cyber-Incident02:07 Agent Tesla and Taskun Malware Targeting US Education and Govt Entities02:43 HookChain – A New Sophisticated Technique Evades EDR Detection03:18 Sandbox Escape Vulnerabilities in Judge0 Expose Systems to Complete Takeover04:15 New R Programming Vulnerability Exposes Projects to Supply Chain Attacks04:54 Multiple Brocade SANnav Storage Area Network Flaws Allow Dev...
2024-04-3009 min
CISO HeadlinesCISO Headlines - April 29, 2024This CISO Daily Update covers: 00:06 Okta Warns of Unprecedented Surge in Proxy-Driven Credential Stuffing Attacks00:57 Hackers May Have Accessed Thousands of Accounts on the California State Welfare Platform01:36 US Post Office Phishing Sites Get As Much Traffic As the Real One02:24 FBI: Fraudsters Using Fake Online Dating Verification Apps to Scam Lovers03:16 Bogus npm Packages Used to Trick Software Developers into Installing Malware04:01 Kaiser’s Website Tracking Tools May Have Compromised Data on 13 Million Customers04:47 Thousands of Qlik Sense Servers Open to Cactus Ran...
2024-04-2910 min
CISO HeadlinesCISO Headlines - April 26, 2024This CISO Daily Update covers: 00:00 Introduction00:06 Central Power Systems & Services’ Website Down After Alleged Hunters Group Cyberattack00:43 Plasma Donation Company Octapharma Slowly Reopening As BlackSuit Gang Claims Attack01:20 Anti-Trump PAC Lincoln Project Scammed for $35,000 After Vendor Email Hack02:09 State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage02:53 Autodesk Drive Abused in Phishing Attacks03:29 DOJ Arrested the Founders of Crypto Mixer Samourai for Facilitating $2 Billion in Illegal Transactions04:30 DragonForce Ransomware Group Uses LockBit's Leaked Builder05:08 Supplement Maker Hack Allegedly Exposes 1M C...
2024-04-2609 min
CISO HeadlinesCISO Headlines - April 25, 2024This CISO Daily Update covers: 00:06 Russian Hackers Claim Cyberattack on Indiana Water Plant00:50 Volkswagen Hacked – Hackers Stolen 19,000 Documents From VW Server01:33 Ring Customers Get $5.6 Million in Privacy Breach Settlement02:17 US Offers a $10 Million Reward for Information on Four Iranian Nationals02:58 Threat Actor Uses Multiple Infostealers in Global Campaign03:46 Seedworm Hackers Exploit RMM Tools to Deliver Malware04:31 Siemens Working on Fix for Device Affected by Palo Alto Firewall Bug05:15 Google Patches Critical Chrome Vulnerability05:46 IBM QRadar XSS Flaw Let Attackers Exe...
2024-04-2509 min
CISO HeadlinesCISO Headlines - April 24, 2024This CISO Daily Update covers: 00:06 Nespresso Domain Serves Up Steamy Cup of Phish, No Cream or Sugar00:44 UnitedHealth CEO to Testify About Ransomware Attack01:22 CISA Releases Physical Security Checklist for Polling Locations to Safeguard U.S. Elections02:04 This Website is Selling Billions of Private Messages of Discord Users02:47 U.S. Imposes Visa Restrictions on 13 Linked to Commercial Spyware Misuse03:18 HelloKitty Ransomware Rebranded and Back in Business, Looking for Employees03:56 Microsoft DRM Hack Could Allow Movie Downloads From Popular Streaming Services04:32 Major S...
2024-04-2408 min
CISO HeadlinesCISO Headlines - April 23, 2024This CISO Daily Update covers: 00:06 Hackers Offering Admin Access to 3000 Fortinet SSL-VPN00:50 Rural Texas Towns Report Cyberattacks That Caused One Water System to Overflow01:30 Research Shows How Attackers Can Abuse EDR Security Products02:16 Microsoft: APT28 Hackers Exploit Windows Flaw Reported by NSA03:09 Alleged Cyberattack on Bureau van Dijk: US Consumer Data Compromised03:50 ToddyCat APT Hackers Deploy Multiple Tools to Hijack Network Infrastructure04:37 Family-Owned Music Store Targeted: MEDUSA Ransomware Strikes Ted Brown Music05:14 Fraudsters Exploit Telegram’s Popularity For Toncoin Scam0...
2024-04-2309 min
CISO HeadlinesCISO Headlines - April 22, 2024This CISO Daily Update covers: 00:06 MITRE Hit in Massive Supply Chain Attack: State-Backed Hackers Exploit Zero-Days00:47 Cybercriminals Threaten to Leak All 5 Million Records From Stolen Database of High-Risk Individuals01:32 Multiple LastPass Users Lose Master Passwords to Ultra-Convincing Scam02:20 Researchers Find Dozens of Fake E-ZPass Toll Websites After FBI Warning02:59 Malware Dev Lures Child Exploiters Into Honeytrap to Extort Them03:43 GitHub Comments Abused to Push Malware via Microsoft Repo URLs04:33 Androxgh0st Malware Compromises Servers Worldwide for Botnet Attack05:24 Critical Update: CrushFTP Z...
2024-04-2209 min
CISO HeadlinesCISO Headlines - April 19, 2024This CISO Daily Update covers: 00:06 Frontier Communications Shuts Down Systems After Cyberattack00:37 Akira Ransomware Gang Made $42 Million From 250 Attacks Since March 2023: FBI01:24 R00TK1T Claims that They have Acquired Confidential Data from Nestle01:59 ‘Crude’ Ransomware Tools Proliferating on the Dark Web for Cheap, Researchers Find02:56 Global Police Operation Disrupts 'LabHost' Phishing Service, Over 30 Arrested Worldwide03:33 Malicious Google Ads Pushing Fake IP Scanner Software with Hidden Backdoor04:23 Active Kubernetes RCE Attack Relies on Known OpenMetadata Vulns05:02 Cisco Warns of a Command Injec...
2024-04-1908 min
CISO HeadlinesCISO Headlines - April 18, 2024This CISO Daily Update covers: 00:06 OpenAI’s GPT-4 Can Exploit Real Vulnerabilities by Reading Security Advisories00:56 HHS Scrambles to Patch Security Hole After $7.5 Million Cyberattack01:32 Cherry Health Hit by Ransomware Attack02:03 Patients Sue Ernest Health After Data Breach of 94,747 Exposed02:41 Hackers Exploit Fortinet Flaw, Deploy ScreenConnect, Metasploit in New Campaign03:25 Critical Atlassian Flaw Exploited to Deploy Linux Variant of Cerber Ransomware04:02 Ivanti Patches Two Critical Avalanche Flaws in Major Update04:48 Researchers Released Exploit Code for Actively Exploited Palo Alto Pan-OS Bug
2024-04-1808 min
CISO HeadlinesCISO Headlines - April 17, 2024This CISO Daily Update covers: 00:06 UnitedHealth: Change Healthcare Cyberattack Caused $872 Million Loss00:57 SIM Swap Crooks Solicit T-Mobile US, Verizon Staff via Text to Do Their Dirty Work01:39 FTC Fines Mental Health Startup Cerebral $7 Million for Major Privacy Violations02:10 IntelBroker Claims Space-Eyes Breach, Targeting US National Security Data02:48 Steganography Leveraged in New Global TA558 Attack Campaign03:29 Blackjack Hackers Destroyed 87,000 Sensors Using Lethal ICS Malware03:57 AWS, Google, and Azure CLI Tools Could Leak Credentials in Build Logs04:43 PuTTY SSH Client Flaw Allows Recovery o...
2024-04-1709 min
CISO HeadlinesCISO Headlines - April 16, 2024This CISO Daily Update covers: 00:06 FBI Warns of Massive Toll Services Smishing Scam00:45 Roku Makes 2FA Mandatory for All After Nearly 600K Accounts Pwned01:19 Cisco Duo Warns Third-party Data Breach Exposed SMS MFA Logs01:56 DAIXIN Ransomware Group Claims Data Breach at Omni Hotels, Threatens Leaks02:28 Top Officials Again Push Back on Ransom Payment Ban03:09 Earth Hundun’s Hackers Employ Waterbear And Deuterbear Tools For Advanced Cyber Attacks03:50 Apache Kafka Flaw Let Attackers Gain Access To Sensitive Data04:29 PoC Released For Critical Zero...
2024-04-1607 min
CISO HeadlinesCISO Headlines - April 15, 2024This CISO Daily Update covers: 00:06 Gmail And YouTube Hackers Bypass Google’s 2FA Account Security00:56 CISA Issues Emergency Directive After Midnight Blizzard Microsoft Hits01:35 US Sanctions Hamas ‘Cyber Influence’ Leader02:21 Hackers Deploy Python Backdoor in Palo Alto Zero-Day Attack03:18 Crooks Manipulate GitHub’s Search Results to Distribute Malware03:52 FatalRAT Targets Cryptocurrency Users With DLL Side-loading Techniques04:28 Firebird RAT Creator and Seller Arrested in the U.S. and Australia05:12 Exploitation of Unpatched D-Link NAS Device Vulnerabilities Soars06:12 Telegram Fixes Windows App Zero...
2024-04-1507 min
CISO HeadlinesCISO Headlines - April 12, 2024This CISO Daily Update covers: 00:06 Microsoft Security Lapse Exposed Sensitive Credentials and Internal Resources of Employees00:42 Another Bank Hit: Wells Fargo Confirms Data Breach01:13 Universities in New Mexico, Oklahoma Respond to Ransomware Attacks01:53 Sisense Data Breach Triggers CISA Alert and Urgent Calls for Credential Resets02:29 LastPass: Hackers Targeted Employee in Failed Deepfake CEO Call03:03 Apple: Mercenary Spyware Attacks Target iPhone Users in 92 Countries03:43 Intel and Lenovo Servers Impacted by 6-Year-Old BMC Flaw04:25 Palo Alto Networks Fixed Multiple DoS Bugs in Its F...
2024-04-1208 min
CISO HeadlinesCISO Headlines - April 11, 2024This CISO Daily Update covers: 00:06 AT&T Now Says Data Breach Impacted 51 Million Customers00:45 X Fixes URL Blunder That Could Enable Convincing Social Media Phishing Campaigns01:20 Beware: GitHub's Fake Popularity Scam Tricking Developers into Downloading Malware02:01 Malicious PowerShell Script Pushing Malware Looks AI-Written02:35 Cagey Phishing Campaign Delivers Multiple RATs to Steal Windows Data03:09 Telegram Dismisses Claims of ‘High-risk’ RCE Bug in its Desktop Application03:43 Raspberry Robin Returns: New Malware Campaign Spreading Through WSF Files04:19 Researchers Resurrect Spectre v2 Attack Against Intel CPUs
2024-04-1109 min
CISO HeadlinesCISO Headlines - April 10, 2024This CISO Daily Update covers: 00:06 DOJ Data on 340,000 Individuals Stolen in Consulting Firm Hack00:41 Group Health Cooperative Falls Victim to Ransomware Attack, 500K People Affected01:22 Medusa Cybercrime Gang Takes Credit for Another Attack on US Municipality01:58 Hackers Using Malware-Driven Scanning Attacks To Pinpoint Vulnerabilities02:54 10-Year-Old 'RUBYCARP' Romanian Hacker Group Surfaces with Botnet03:50 Microsoft Plugs Gaping Hole in Azure Kubernetes Service Confidential Containers04:36 New SharePoint Flaws Help Hackers Evade Detection When Stealing Files05:24 Bug in IBM’s Enterprise Terminal Could Allow Attackers Ful...
2024-04-1010 min
CISO HeadlinesCISO Headlines - April 9, 2024This CISO Daily Update covers: 00:06 Change Healthcare Faces Second Ransomware Dilemma Weeks After Alphv Attack00:47 Targus Discloses Cyberattack After Hackers Detected on File Servers01:28 Cybercriminals Targeting Latin America with Sophisticated Phishing Scheme02:10 Hackers Deploy Crypto Drainers on Thousands of WordPress Sites02:49 New Malware “Latrodectus” Linked to IcedID03:40 Multiple CData Vulnerabilities Let Attackers Bypass Security Restrictions04:17 AI-As-A-Service Providers Vulnerability Let Attackers Perform Cross-Tenant Attacks04:47 Canon Printers: Critical CVE-2024-2184 (CVSS 9.8) Flaw Requires Immediate Firmware Update05:27 Confidential VMs Hacked via New Ahoi...
2024-04-0907 min
CISO HeadlinesCISO Headlines - April 8, 2024This CISO Daily Update covers: 00:06 US Health Dept Warns Hospitals of Hackers Targeting IT Help Desks00:50 US Environmental Protection Agency Allegedly Hacked, 8.5M User Data Leaked01:31 Attempted Hack on NYC Continues Wave of Cyberattacks Against Municipal Governments02:06 Home Depot Confirms Third-party Data Breach Exposed Employee Info02:33 Pacific Guardian Life Insurance Says 165,000 Had Financial Info Stolen in 2023 Attack03:06 Hackers Exploit Magento Bug to Steal Payment Data from E-commerce Websites03:45 More Than 16,000 Ivanti VPN Gateways Still Vulnerable to RCE CVE-2024-2189404:25 Cisco Warns o...
2024-04-0807 min
CISO HeadlinesCISO Daily Update - April 5, 2024This CISO Daily Update covers: 00:06 US Cancer Center Data Breach Exposes Info of 827,000 Patients00:45 Another Insider in OneCoin Cryptocurrency Scam Gets Prison Sentence01:36 Cybercriminals Are Spreading Malware Through Facebook Pages Impersonating AI Brands02:19 Hosting Provider VMware ESXi Servers Hit By New SEXi Ransomware02:53 New Phishing Campaign Targets Oil & Gas with Evolved Data-Stealing Malware03:21 Hackers Hijacked Notepad++ Plugin To Execute Malicious Code03:58 Visa Warns of New JSOutProx Malware Variant Targeting Financial Orgs04:51 Apache HTTP Server Hit by Triple Vulnerabilities – Users Urged to Upd...
2024-04-0509 min
CISO HeadlinesCISO Daily Update - April 4, 2024This CISO Daily Update covers: 00:06 U.S. Cyber Safety Board Slams Microsoft Over Breach by China-Based Hackers00:51 US Federal Employee Data Leaked, Claimed by Hacker Trio01:35 Cyberattack Cripples NorthBay VacaValley Hospital, Patients Left in Limbo02:14 Omni Hotels Confirms Cyberattack Behind Ongoing IT Outage02:49 Missouri County Home to Kansas City Says Suspected Ransomware Attack Affecting Tax Payments03:33 Halo Hacked, Private Data Stolen04:14 YouTube Channels Found Using Pirated Video Games As Bait for Malware Campaign04:55 Google Fixes Two Pixel Zero-Day Flaws Exploited by F...
2024-04-0409 min
CISO HeadlinesCISO Daily Update - April 3, 2024This CISO Daily Update covers: 00:06 Google to Delete Billions of Browsing Records in 'Incognito Mode' Privacy Lawsuit Settlement 00:43 Feds Finally Decide to Do Something About Years-Old SS7 Spy Holes in Phone Networks 01:24 Prudential Insurance Says Data of 36,000 Exposed During February Cyberattack 02:06 Vulnerability Database Backlog Due to Increased Volume, Changes in ‘Support,’ NIST Says 02:43 Trusted Contributor Plants Sophisticated Backdoor in Critical Open-Source Library 03:27 Massive Phishing Campaign Strikes Latin America: Venom RAT Targeting Multiple Sectors 04:08 China-linked Hackers Deploy New 'UNAPIMON' Malware for Stealthy Operations 04:43 Octop...
2024-04-0309 min
CISO HeadlinesCISO Daily Update - April 2, 2024This CISO Daily Update covers: 00:06 OWASP Discloses a Data Breach 00:41 Data Security Fears: Congress Bans Staff Use of Microsoft’s AI Copilot 01:19 Hackers Exploit Google Ads Tracking Feature To Deliver Malware 01:55 Shopping Platform PandaBuy Data Leak Impacts 1.3 Million Users 02:32 Yacht Retailer MarineMax Discloses Data Breach After Cyberattack 03:09 Malicious Apps Caught Secretly Turning Android Phones into Proxies for Cybercriminals 03:49 Imperva Web Application Firewall Flaw Let Attackers Bypass WAF Rules 04:26 Bitdefender CVE-2023-6154 Flaw Alert: Update Now to Prevent Potential Privilege Escalation05:11 CVE...
2024-04-0207 min
CISO HeadlinesCISO Daily Update - April 1, 2024This CISO Daily Update covers: 00:06 AT&T Confirmed That a Data Breach Impacted 73 Million Customers 00:40 Hackers Target macOS Users with Malicious Ads Spreading Stealer Malware 01:27 American Fast-Fashion Firm Hot Topic Hit by Credential Stuffing Attacks 02:03 Vultur Banking Malware for Android Poses As McAfee Security App 02:46 Prisma Finance Crypto Theft Caps Strange Week of Platform Breaches 03:29 DinodasRAT Linux Variant Targets Users Worldwide 04:10 Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros 04:59 New Linux Bug Could Lead to User Password Leaks and...
2024-04-0108 min
CISO HeadlinesCISO Daily Update - March 29, 2024This CISO Daily Update covers: 00:06 US Puts Up $10M Bounty on BlackCat Ransomware Gang Members00:45 UnitedHealth Group Disburses $3.3 Billion to Providers Affected by Change Healthcare Cyberattack01:25 Municipalities in Texas, Georgia See Services Disrupted Following Ransomware Attacks02:06 Cisco Warns of Password-Spraying Attacks Targeting VPN Services02:55 PyPI Suspends New User Registration to Block Malware Campaign03:41 Shopify Plugins Leaked Data From Nearly 2K Stores04:18 The Comeback of WarzoneRAT: Analyzing the Latest Multi-Stage Attacks05:01 Hackers Using Weaponized Virtual Hard Disk Files to Deliver Remcos RAT
2024-03-2910 min
CISO HeadlinesCISO Daily Update - March 28, 2024This CISO Daily Update covers: 00:06 Facebook May Have Exploited User Devices to Spy on Competitors, Documents Show00:54 Alert: New Phishing Attack Delivers Keylogger Disguised as Bank Payment Notice01:37 Apple ID ‘Push Bombing’ Scam Campaign Hits Cyber Startup Founders02:31 New Darcula Phishing Service Targets iPhone Users via iMessage03:37 Hackers Developing Malicious LLMs After WormGPT Falls Flat04:21 Worldwide Agenda Ransomware Wave Targets VMware ESXi Servers05:03 CISA Adds Microsoft SharePoint Bug Disclosed at Pwn2Own to Its Known Exploited Vulnerabilities Catalog05:45 Organizations Informed of 10 Vulne...
2024-03-2809 min
CISO HeadlinesCISO Daily Update - March 27, 2024This CISO Daily Update covers: 00:06 AI Generated Fake Obituary Websites Target Grieving Users 00:51 St. Cloud Most Recent in String of Florida Cities Hit With Ransomware 01:26 TheMoon Malware Infects 6,000 Asus Routers in 72 Hours for Proxy Service 02:32 Linux Admins Beware! Fake PuTTY Client is Rhadamanthys Stealer 03:06 New ShadowRay Campaign Targets Ray AI Framework in Global Attack 03:45 Fortinet SSL VPN Exploit Up for Sale on Dark Web 04:28 Apple Patches Code Execution Vulnerability in iOS, macOS 05:09 Rank Math SEO Plugin Vulnerability Exposes 2 Million WordPress Sites 05:45...
2024-03-2708 min
CISO HeadlinesCISO Daily Update - March 26, 2024This CISO Daily Update covers: 00:06 US Charges Chinese Nationals With Cyber-Spying on Pretty Much Everyone for Beijing 00:59 Hackers Poison Source Code From Largest Discord Bot Platform 01:41 New Tycoon 2FA Phishing Kit Raises Cybersecurity Concerns02:28 Fake Ozempic Deals on the Rise as Experts Warn of Phishing Scams 03:12 Panera Bread experiencing nationwide IT outage since Saturday 03:54 New GEOBOX Tool Hijacks Raspberry Pi, Lets Hackers Fake Location 04:33 CISA Adds FortiClient EMS, Ivanti EPM CSA, Nice Linear eMerge E3-Series bugs to its Known Exploited Vulnerabilities Catalog 05:26 MobSF P...
2024-03-2607 min
CISO HeadlinesCISO Daily Update - March 25, 2024This CISO Daily Update covers: 00:06 Illinois County Government, Local College Affected by Ransomware Attacks00:55 Jacksonville Beach and Other US Municipalities Report Data Breaches Following Cyberattacks01:45 Over 100 US and EU Orgs Targeted in StrelaStealer Malware Attacks02:28 German Police Seize 'Nemesis Market' in Major International Darknet Raid03:21 N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks04:28 New Sysrv Botnet Abuses Google Subdomain To Spread XMRig Miner05:12 Apple M-Series Chip Vulnerability Puts Encryption Keys at Risk05:58 Truck-to-Truck Worm Could Infect – and Disr...
2024-03-2509 min
CISO HeadlinesCISO Daily Update - March 22, 2024This CISO Daily Update covers: 00:06 Greensboro College Data Breach: 52,000 Affected in Ransomware Attack, Lawsuit Filed00:50 Vans Cyberattack: No Financial Info Breached, But Fraud Risk Remains01:33 Yacht Dealer to the Stars Attacked by Rhysida Ransomware Gang02:22 Two Russians Sanctioned by US for Alleged Disinformation Campaign03:14 Over 800 npm Packages Found with Discrepancies, 18 Exploitable to 'Manifest Confusion'04:01 Evasive Sign1 Malware Campaign Infects 39,000 WordPress Sites04:55 AndroxGh0st Malware Targets Laravel Apps to Steal Cloud Credentials05:51 Ivanti Releases Urgent Fix for Critical Sentry RCE Vulnerability...
2024-03-2211 min
CISO HeadlinesCISO Daily Update - March 21, 2024This CISO Daily Update covers: 00:06 Hackers Posing as Law Firms Phish Global Orgs in Multiple Languages00:57 Mintlify Confirms Data Breach Through Compromised GitHub Tokens01:40 Critical Infrastructure Alert: CISA Releases Fact Sheet on Volt Typhoon Cyber Threats02:25 Bunnyloader 3.0 Surfaces in the Threat Landscape03:13 Crinetics Confirms Cyberattack: Third-Party Experts Engaged, Security Tightened03:58 New 'Loop DoS' Attack Impacts Hundreds of Thousands of Systems04:37 'Fluffy Wolf' Spreads Meta Stealer in Corporate Phishing Campaign05:15 Chrome 123, Firefox 124 Patch Serious Vulnerabilities06:10 Atlassian Patches Critical Vulnerability in Ba...
2024-03-2114 min
CISO HeadlinesCISO Daily Update - March 20, 2024This CISO Daily Update covers: 00:06 Cybercriminals Beta Test New Attack to Bypass AI Security 00: 46 'PhantomBlu' Cyberattackers Backdoor Microsoft Office Users 01:30 Cyberattack Knocks Out Pensacola City Government Phone Lines 02:09 Nations Direct Mortgage Alerts 83,000 to Personal Data Leaks From December Cyberattack 02:53 Hackers Exploiting Popular Document Publishing Sites for Phishing Attacks 03:36 Unverified Claims: Russian Hackers Target US Defense Agency Website 04:15 Don’t Be Like These 900+ Websites and Expose Millions of Passwords via Firebase 05:07 133,000+ Vulnerable FortiOS/FortiProxy Instances: Exploitation Started 05:58 40,000+ Sites Exposed: WordPress Plugin Updat...
2024-03-2011 min
CISO HeadlinesCISO Daily Update - March 19, 2024This CISO Daily Update covers: 00:06 Fujitsu Found Malware on IT Systems, Confirms Data Breach00:51 APT28 Hacker Group Targeting Europe, Americas, Asia in Widespread Phishing Scheme01:41 Hackers Using Sneaky HTML Smuggling to Deliver Malware via Fake Google Sites02:34 The Aviation and Aerospace Sectors Face Skyrocketing Cyber Threats03:21 Apex Legends Players Worried About RCE Flaw After ALGS Hacks04:11 Chinese Earth Krahang Hackers Breach 70 Orgs in 23 Countries05:17 New DEEP#GOSU Malware Campaign Targets Windows Users with Advanced Tactics06:35 New Attack Shows Risks of Browsers Gi...
2024-03-1911 min
CISO HeadlinesCISO Daily Update - March 18, 2024This CISO Daily Update covers: 00:06 Threat Actors Leaked 70,000,000+ Records Allegedly Stolen From AT&T00:46 Hackers Claim Accessing 740GB of Data from Viber Messaging App01:25 Pennsylvania’s Scranton School District Dealing With Ransomware Attack02:15 New Acoustic Attack Determines Keystrokes From Typing Patterns03:04 “Gitgub” Malware Campaign Targets GitHub Users With RisePro Info-Stealer03:45 Lazarus Group Hackers Appear to Return to Tornado Cash for Money Laundering04:27 ChatGPT Side-Channel Attack Has Easy Fix: Token Obfuscation04:56 Hackers Exploit Aiohttp Bug to Find Vulnerable Networks05:45 Discontinued Security...
2024-03-1808 min
CISO HeadlinesCISO Daily Update - March 15, 2024This CISO Daily Update covers: 00:06 SIM Swappers Now Stealing Phone Numbers From eSIMs00:52 Meta Sues Former VP After Defection to AI Startup01:42 RedLine Malware Top Credential Stealer of Last 6 Months02:21 DarkGate Malware Exploited Recently Patched Microsoft Flaw in Zero-Day Attack03:01 Tech Support Firms Restoro, Reimage Fined $26 Million for Scare Tactics03:43 RedCurl Cybercrime Group Abuses Windows PCA Tool for Corporate Espionage04:20 Ande Loader Malware Targets Manufacturing Sector in North America05:14 Patch Now: Kubernetes RCE Flaw Allows Full Takeover of Windows Nodes...
2024-03-1511 min
CISO HeadlinesCISO Daily Update - March 14, 2024This CISO Daily Update covers: 00:06 Duty Free Americas Claimed by Black Basta Ransom Group 01:00 Billion-Dollar Boat Seller MarineMax Reports Cyberattack to SEC 01:39 LockBit Ransomware Affiliate Gets Four Years in Jail, to Pay $860K 02:20 Feds Seize $1.4 Million of Tech Support Scam Proceeds With the Help of Crypto Firm 03:02 'PixPirate' RAT Invisibly Triggers Wire Transfers From Android Devices 03:38 Anonymous Sudan Unleashes InfraShutdown: Alabama Government Agencies Targeted 04:21 Investment Scams Grow, 13,000 Domains Detected in January 2024 05:05 Researchers Highlight Google's Gemini AI Susceptibility to LLM Threats 05:42 For...
2024-03-1410 min
CISO HeadlinesCISO Daily Update - March 13, 2024This CISO Daily Update covers: 00:06 JetBrains Is Still Mad at Rapid7 for the Ransomware Attacks on Its Customers 00:47 US, Russia Accuse Each Other of Potential Election Cyberattacks 01:34 R00TK1T Hacker Group Issues Warning to Nestle in Dark Web Post 02:13 Over 12 Million Auth Secrets and Keys Leaked on GitHub in 2023 03:09 Stanford Says Data From 27,000 People Leaked in September Ransomware Attack 03:58 Three-Quarters of Cyber Incident Victims Are Small Businesses 04:49 Watch Out: These PyPI Python Packages Can Drain Your Crypto Wallets 05:33 ChatGPT-Next-Web SSRF Flaw Let...
2024-03-1311 min
CISO HeadlinesCISO Daily Update - March 12, 2024This CISO Daily Update covers: 00:06 Dropbox Abused in New Phishing, Malspam Scam to Steal SaaS Logins 00:41 Researchers Expose Microsoft SCCM Misconfigs Usable in Cyberattacks 01:16 Okta Says Data Leaked on Hacking Forum Not From Its Systems 02:00 EquiLend Warns Employees Their Data Was Stolen by Ransomware Gang 02:46 BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks 03:46 Roku Cancels Unauthorized Subscriptions and Provides Refunds for 15k Breached Accounts 04:35 Proof-of-Concept Exploit Released for Progress Software OpenEdge Vulnerability 05:29 Ultimate Member Plugin Flaw Exposes 100,000 WordPress Sites to Attack...
2024-03-1214 min
CISO HeadlinesCISO Daily Update - March 11, 2024This CISO Daily Update covers: 00:06 Microsoft Admits Russian State Hack Still Not Contained. ‘This Has Tremendous National Security Implications’01:01 Hacker Claims Breaching US Federal Contractor Acuity, Selling ICE, USCIS Data01:52 Threat Actors Breached Two Crucial Systems of the US CISA02:26 Dozens of Data Brokers Disclose Selling Reproductive Healthcare Info, Precise Geolocation and Data Belonging to Minors03:25 Paysign Investigating Reports of Consumer Information Data Breach04:08 Magnet Goblin Hackers Use 1-Day Flaws to Drop Custom Linux Malware05:11 New DoNex Ransomware Observed In The Wild Targeting Enter...
2024-03-1110 min