Cybersecurity Digest #97: 06/06/2024 – 20/06/2024

Cybersecurity News
 

• VMware has released a critical security advisory, addressing multiple vulnerabilities in VMware vCenter Server.
• Microsoft recommends to migrate to “Always On VPN” as it deprecates Windows DirectAccess.
• ASUS addresses a critical remote authentication bypass vulnerability, impacting seven router models.
• A newly discovered Linux malware uses emojis to execute commands on infected devices.
• CISA adds Android Pixel, Microsoft Windows, Progress Telerik Report Server bugs to its known exploited vulnerabilities catalog.
• Microsoft June 2024 Patch Tuesday update fixed more than 50 vulnerabilities, including 0-day.
• The SOC analysts identified a drive-by download attack leveraging SolarMarker malware.

Cybersecurity Blog Posts
 

• Kate O’Flaherty from Wired discusses privacy and security questions of using generative AI in business.
• Rob Shavell, CEO of Abine, tells why trading privacy for “free” web services must end.
• Kaaviya Ragupathy from Cyber Security News shares a tutorial on how to use Threat Intelligence Feeds for SOC/DFIR Teams.
• Roman Arutyunov, Co-Founder & Senior Vice President of Xage, talks about addressing misinformation in critical infrastructure security.
• Justin Pot from Wired explains how to spot a business email compromise scam.

Research and Analytics

• Cybersecurity experts from Mandiant analyse an increase in ransomware activity in the past years.
• Forescout published a report about the most vulnerable devices in 2024.
• IBM tells about 6 hard truths that CEOs must face in the generative AI era.
• Deep Instinct published a report on capabilities of generative AI in Cybersecurity.
• Proofpoint posted a Threat Report about the root cause of most data loss incidents.
• Mandiant shares expert insights into today’s top cybersecurity trends and attacker developments of the last 15 years.

Major Cyber Incidents
 

• Total Fitness health club exposed 500k images of members & staff.
• Hackers detail how they allegedly stole Ticketmaster data from Snowflake.
• A threat actor is selling the data belonging to BlackBerry’s Cylance cybersecurity unit.
• Truist Bank confirms breach after stolen data shows up on hacking forum.
• The Los Angeles County Department of Public Health has announced that it experienced a phishing attack.
• Christie’s, the world-famous art auction house, disclosed a major data breach that impacted around 45,798 individuals.
• Keytronic has confirmed a data breach after a ransomware group leaked allegedly stolen personal information from its systems.