06/06/2024
Cybersecurity News
- Hackers use authentication tools to deliver NiceRAT malware via botnet.
- XSS flaws in multiple WordPress plugins exploited to deploy malware.
- 361 million stolen accounts leaked on Telegram were added to Have I Been Pwned.
- Google will roll out Chrome’s new extension Manifest V3 next week.
- Cybercriminals attack banking customers in EU with V3B phishing kit.
- SonicWall Capture Labs discovered a remote code execution vulnerability in Atlassian Confluence.
- Microsoft announces first Windows 10 Beta build since 2021.
- A new hacker tool extracts all the data collected by Windows’ new Recall AI.
- Hackers employ JavaScript framework to trick users Copy, Paste and Command execution.
Cybersecurity Blog Posts
- Joan Goodchild from Darkreading shares 9 Tips on how to avoid burnout in cybersecurity.
- McAfee released a tutorial about phishing scam protection.
- Nathan Vega, VP at Protegrity, discusses data privacy questions in the era of generative AI.
- Khurram Mir, CMO at Kualitatem, shares thoughts about AI and human rivalry in cybersecurity industry.
- Brian Krebs investigates probably the largest botnet network ever existed.
Research and Analytics
- IBM presents an annual Threat Intelligence report based on 150 billion security events.
- Verizon shares a 2024 data breach investigations report.
- Proofpoint surveyed 1,600 CISOs from around the world to share their experience of the past 12 months.
- The CSA Annual SaaS Security Survey asked over 450 IT and security professionals to better understand the industry’s priorities and plans.
- Veracode’s report explains how critical the security debt endemic is and why risk prioritization is key.
- Cado Security releases new research finding nearly 90% of organizations suffer damage before containing security incidents.
Major Cyber Incidents
- Hugging Face says it detected “unauthorized access” to its AI model hosting platform.
- Ticketmaster confirms data breach and personal info lost. Snowflake systems were hacked.
- TikTok says its security team is addressing an issue that allowed hackers to compromise several celebrity and brand accounts.
- BBC has confirmed it experienced a breach, or “data security incident”, compromising the information of its pension scheme members.
- Mysterious hack destroyed 600,000 internet routers in North America.