Cybersecurity Digest #98: 20/06/2024 – 04/07/2024

Cybersecurity News

• Researchers have spotted exploitation attempts for the critical vulnerability impacting all D-Link DIR-859 WiFi routers.
• Brain Cipher has released decryption keys for free, allowing victims to recover their encrypted data.
• Apple’s CocoaPods platform bugs expose millions of Apps to code injection.
• Ticketmaster has started to notify customers who were impacted by a recent data breach.
• Researchers discovered a new Android malware, “Snowblind”, running active campaigns since early 2024.
• OpenSSH addressed a critical vulnerability, tracked as CVE-2024-6387, that can lead to unauthenticated remote code execution.
• Cisco has patched a zero-day vulnerability exploited in April attacks to install previously unknown malware.
• Critical GitLab vulnerability could allow attackers to run a pipeline as another user.

Cybersecurity Blog Posts

• Tara Seals, managing editor at Dark Reading, has published a list of tips for CISOs and key decision makers in companies.
• Sue Poremba, author at Cybersecuritydive, talks about the interaction between artificial intelligence and information security solutions.
• Sriram Dandapani, Chief Information Security Officer at BILL, speaks about creating secure social norms.
• Tarlogic published an article about the most common threat search models.
• Robert Lemos from Darkreading reviewed changes in the SIEM systems market in recent years.

Research and Analytics

• Sophos has published up-to-date statistics on the results of the implementation of cybersecurity solutions.
• Thales Group has released an annual report on trends in the world of cloud security.
• ABI Research’s new report predicts further growth in the industrial cybersecurity.
• Zerto presented a report on creating a comprehensive recovery strategy after big data breaches.
• Darkreading has released a new report “Threat Hunting’s Evolution:From On-Premises to the Cloud.”
• Cisco Duo has published a report on Multifactor Authentication and security strategies.

Major Cyber Incidents

• The BlackSuit ransomware organization claimed a recent cyberattack on KADOKAWA corporation.
• Luxury department store Neiman Marcus confirmed that 65,000 customers were impacted by the recent data breach.
• Prudential Financial has reported a data breach that has affected over 2.5 million individuals.
• Agropur, one of the largest dairy cooperatives in North America, is notifying customers of a data breach.
• A full 791,000 of patients have had their personal information compromised in a cyberattack that resulted in Lurie Children’s Hospital in Chicago.
• 30 million customers were potentially affected in Tickettek Australia cloud breach.