Every week I publish a post containing the progress and learning that I did in the past week. Again, no podcasts or webinars. I have been very busy at work and I have not had the time to fit them into my schedule.
- No webinars this week.
- OpenAI Confirms ChatGPT Data Breach – OpenAI, the creator of ChatGPT, has confirmed that a bug in the AI’s source code resulted in a breach of sensitive data. The vulnerability was in the Redis memory database, which OpenAI uses to store user information. Actors were able to access the open-source library and view users’ chat history.
- U.K. Fraudster Behind iSpoof Scam Receives 13-Year Jail Term for Cyber Crimes – A U.K. national responsible for his role as the administrator of the now-defunct iSpoof online phone number spoofing service has been sentenced to 13 years and 4 months in prison.
- China Bans U.S. Chip Giant Micron, Citing “Serious Cybersecurity Problems” – China has banned U.S. chip maker Micron from selling its products to Chinese companies working on key infrastructure projects, citing national security risks.
- Meta Hit With $1.3B Record-Breaking Fine for GDPR Violations – The technology conglomerate has until later this year to end its transfer of European user’s data across the Atlantic.
- IT employee impersonates ransomware gang to extort employer – A 28-year-old United Kingdom man from Fleetwood, Hertfordshire, has been convicted of unauthorized computer access with criminal intent and blackmailing his employer.
- 130K+ Patients’ Social Security Numbers Leaked in UHS of Delaware Data Breach – Approximately 130,000 patients in Texas — and an untold number of others nationwide — are being notified that their protected health information was compromised when hackers breached the computer system of Universal Health Services of Delaware, Inc. (“UHS”) earlier this year.
- Tesla Whistleblower Leaks 100GB of Data, Revealing Safety Complaints – Informants have released data that includes thousands of safety complaints the company has received about its self-driving capability, as well as sensitive information regarding current and past employees.
- Travel-Themed Phishing, BEC Campaigns Get Smarter as Summer Season Arrives – Phishing campaigns targeting travelers have evolved from simple, easy-to-spot fraud attempts to highly sophisticated operations.
- Mozilla stops Firefox fullscreen VPN ads after user outrage – Firefox users have been complaining about very intrusive full-screen advertisements promoting Mozilla VPN displayed in the web browser when navigating an unrelated page.
- No podcasts this week.
- TryHackMe – SOC Level 1 – Snort Challenge – Live Attacks completed!