Every week I publish a post containing the progress and learning that I did in the past week. I hope this helps those like me, who are trying to keep up with everything happening in the cybersecurity world. There is a lot!
- Dave Hylender, Suzanne Widup – 2023 Data Breach Investigations Report (DBIR) Key Findings– 6/6/23 – 2023 Verizon’s Data Breach Investigations Report is here! Cybercrime can come in any shape or size, and not always in the form you’d expect. Security professionals across the world use the annual DBIR to validate their security program priorities and to communicate with stakeholders and business leaders.
- Proofpoint – Prevent Data Loss by Careless Employees – 6/8/23 – In today’s work from anywhere and everywhere world, you need a modern approach to data loss prevention. Careless knowledge workers pose a significant compliance risk to organizations. They may expose sensitive data in cloud applications. They may download sensitive information onto their personal devices.
- A Confession Exposes India’s Secret Hacking Industry – “Everyone’s hackable,” one slide promised. The company charged twenty-five hundred dollars for a month of work by a single hacker, and the presentation said that it had taken less than two weeks for Appin to obtain confidential e-mails and photographs confirming a husband’s suspicion that his wife had cheated on him (“even though she was using an updated Norton 360 antivirus”).
- KeePass v2.54 fixes bug that leaked cleartext master password – KeePass has released version 2.54, fixing the CVE-2023-3278 vulnerability that allows the extraction of the cleartext master password from the application’s memory.
- Mass Exploitation of Zero-Day Bug in MOVEit File Transfer Underway – With shades of the GoAnywhere attacks, a cyber threat actor linked to FIN11 is leveraging a bug in the widely used managed file transfer product to steal data from organizations in multiple countries.
- Atomic Wallet hacks lead to over $35 million in crypto stolen – The developers of Atomic Wallet are investigating reports of large-scale theft of cryptocurrency from users’ wallets, with over $35 million in crypto reportedly stolen.
- FTC Slams Amazon with $30.8M Fine for Privacy Violations Involving Alexa and Ring – The U.S. Federal Trade Commission (FTC) has fined Amazon a cumulative $30.8 million over a series of privacy lapses regarding its Alexa assistant and Ring security cameras.
- Verizon DBIR: Social Engineering Breaches Double, Leading to Spiraling Ransomware Costs – Ransomware continues its runaway growth with median payments reaching $50,000 per incident.
- Outlook.com hit by outages as hacktivists claim DDoS attacks – Outlook.com is suffering a series of outages today after being down multiple times yesterday, with hacktivists known as Anonymous Sudan claiming to perform DDoS attacks on the service.
- Microsoft to pay $20 million for XBOX children privacy violations – Microsoft has agreed to pay a $20 million fine and change data privacy procedures for children to settle Federal Trade Commission (FTC) charges over Children’s Online Privacy Protection Act (COPPA) violations.
- Filling the Gaps: How to Secure the Future of Hybrid Work – By enhancing remote management and adopting hardware-enforced security, productivity can continue without inviting extra cyber-risk.
- Honda API flaws exposed customer data, dealer panels, internal docs – Honda’s e-commerce platform for power equipment, marine, lawn & garden, was vulnerable to unauthorized access by anyone due to API flaws that allow password reset for any account.
- Microsoft Links MOVEit Attack to Cl0p as British Airways, BBC Fall – Some billion-dollar organizations have already been identified as victims of the prolific ransomware group’s latest exploit, amidst ongoing attacks.
- Microsoft OneDrive down worldwide following claims of DDoS attacks – Microsoft is investigating an ongoing outage that is preventing OneDrive customers from accessing the cloud file hosting service worldwide, just as a threat actor known as ‘Anonymous Sudan’ claims to be DDoSing the service
- Cybercrooks Scrape OpenAI API Keys to Pirate GPT-4 – With more than 50,000 publicly leaked OpenAI keys on GitHub alone, OpenAI developer accounts are the third-most exposed in the world.
- University of Manchester says hackers ‘likely’ stole data in cyberattack – The University of Manchester warns staff and students that they suffered a cyberattack where threat actors likely stole data from the University’s network.
- Microsoft’s Azure portal down following new claims of DDoS attacks – The Microsoft Azure Portal is down on the web as a threat actor known as Anonymous Suda claims to be targeting the site with a DDoS attack.
TryHackMe – SOC Level 1 – Zeek – Completed.