Tuesday, December 24, 2024

Security News Bundle.

"North Korean hackers pull off $308M bitcoin heist from cypto firm DMM Bitcoin."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.

Content and Source: A comprehensive review of cybersecurity information and trends compiled by https://feedly.com.

https://feedly.com/i/collection/content/user/f401222a-bca6-4c45-9cc1-183f239e8d86/category/7737d3c9-5fe2-4b34-8708-85e57085f895

Please check link or scroll down to read your selections. Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Security News Bundle

252

Most popular

North Korean Hackers Pull Off $308M Bitcoin Heist from Crypto Firm DMM Bitcoin
4 TTPs
•
54The Hacker News / 5h
•
North Korean hackers steal $308 million
Japanese and U.S. authorities have formerly attributed the theft of cryptocurrency worth $308 million from cryptocurrency company DMM Bitcoin in May 2024 to North Korean cyber actors. "The theft is affiliated with TraderTraitor threat activity, which is also tracked as Jade Sleet, UNC4899, and Slow Pisces," the agencies said. "TraderTraitor activity is often characterized by targeted social
Trump 2.0 Portends Big Shift in Cybersecurity Policies
Dark Reading / 2h
Changes at CISA and promises of more public-private partnerships and deregulation are just a few ways the incoming administration could upend the feds' role in cybersecurity.
This Linux laptop has a brilliant display and performance that rivals my MacBook
ZDNet | Security / 4h
If you're looking for a laptop with Linux pre-installed, Tuxedo Computers' Infinity Book Pro 14 (Gen 9) has a gorgeous display and impressive performance.

Today

How Androxgh0st rose from Mozi's ashes to become 'most prevalent malware'
7 TTPs
•
The Register – Security / 13min
•
Androxgh0st botnet exploits IoT vulnerabilities
Botnet's operators 'driven by similar interests as that of the Chinese state' After the Mozi botnet mysteriously disappeared last year, a new and seemingly more powerful botnet, Androxgh0st, rose from its ashes and has quickly become a major threat to critical infrastructure.…
FBI Blames North Korea for $308M Cryptocurrency Hack as Losses Surge in 2024
2 TTPs
•
SecurityWeek / 48min
•
North Korean hackers steal $308 million
The FBI said the target was tricked into downloading a malicious Python script under the guise of a pre-employment test hosted on GitHub. The post appeared first on SecurityWeek .
Too Much 'Trust,' Not Enough 'Verify'
Dark Reading / 1h
"Zero trust" doesn't mean "zero testing."
The best Linux distribution of 2024 is MacOS-like but accessible to all
ZDNet | Security / 1h
I've used and covered Linux for nearly 30 years. Here's my top pick for my favorite open-source distro in 2024.
Security Serious Unsung Heroes 2024: Winner’s Spotlight on Diversity Champion
IT Security Guru / 1h
This year’s Security Serious Unsung Heroes Awards uncovered and celebrated the individuals and teams that go above and beyond to make the UK a safer place to do business, as well as a more inclusive industry for all. The sponsors included KnowBe4, Check Point Software, ThinkCyber, The Zensory, Hornetsecurity and Pulse Conferences. Today’s spotlight is on Emma Mallett, Regional Sales Manager- Opti
FBI links North Korean hackers to $308 million crypto heist
3 TTPs
•
36BleepingComputer / 2h
•
North Korean hackers steal $308 million
The North Korean hacker group 'TraderTraitor' stole $308 million worth of cryptocurrency in the attack on the Japanese exchange DMM Bitcoin in May. [...]
Researchers Uncover PyPI Packages Stealing Keystrokes and Hijacking Social Accounts
20 TTPs
•
23The Hacker News / 2h
•
Malicious Python packages detected
Cybersecurity researchers have flagged two malicious packages that were uploaded to the Python Package Index (PyPI) repository and came fitted with capabilities to exfiltrate sensitive information from compromised hosts, according to new findings from Fortinet FortiGuard Labs. The packages, named zebo and cometlogger, attracted 118 and 164 downloads each, prior to them being taken down.
DNSSEC Denial-of-Service Attacks Show Technology's Fragility
Dark Reading / 2h
The security extensions for the Domain Name System aimed to make the Internet more reliable, but instead the technology has exchanged one set of problems for another.
How to buy Casio's tiny digital watch for your finger in the US this week
Casio launches 50th anniversary ring watch
•
ZDNet | Security / 2h
If you like your watches extra little and maybe not-so smart, Casio has something for you.
Clop ransomware threatens 66 Cleo attack victims with data leak
3 TTPs
•
21BleepingComputer / 3h
The Clop ransomware gang started to extort victims of its Cleo data theft attacks and announced on its dark web portal that 66 companies have 48 hours to respond to the demands. [...]
Generative AI is now a must-have tool for technology professionals
ZDNet | Security / 3h
In just two years, AI has gone from hype to essential skill, offering massive productivity gains and increasing creativity among teams who use it. Here's how.
American Addiction Centers Data Breach Impacts 422,000 People
2 TTPs
•
SecurityWeek / 4h
American Addiction Centers says the personal information of more than 422,000 people was stolen in a data breach. The post appeared first on SecurityWeek .
What do ransomware and Jesus have in common? A birth month and an unwillingness to die
The Register – Security / 4h
35 years since AIDS first borked a PC and we're still no closer to a solution Feature Your Christmas holidays looked quite different in the '80s to how they do today. While some will remember what it was like to wake up on the 25th back then, some of you won't even have been born. The food hasn't changed much. Turkey, stuffing, Brussels sprouts… that's all been around for some time.…
2025 NDAA Provides $3 Billion Funding for FCC’s Rip-and-Replace Program
SecurityWeek / 4h
The 2025 National Defense Authorization Act (NDAA) has been signed into law and it authorizes several cyber-related initiatives. The post appeared first on SecurityWeek .
Adobe Patches ColdFusion Flaw at High Risk of Exploitation
Execution (Enterprise TA0002)
•
SecurityWeek / 5h
•
CVE-2024-53961
Adobe has released patches for a high-severity ColdFusion vulnerability for which proof-of-concept (PoC) code exists. The post appeared first on SecurityWeek .
CISA Adds Acclaim USAHERDS Vulnerability to KEV Catalog Amid Active Exploitation
Execution (Enterprise TA0002)
•
43The Hacker News / 5h
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a now-patched high-severity security flaw impacting Acclaim Systems USAHERDS to the Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation in the wild. The vulnerability in question is CVE-2021-44207 (CVSS score: 8.1), a case of hard-coded, static credentials in Acclaim USAHERDS that

Yesterday

One third of adults can't delete device data
14 million lack data erasure knowledge
•
The Register – Security / 6h
Easier to let those old phones gather dust in a drawer, survey finds The UK's Information Commissioner's Office (ICO) has warned that many adults don't know how to wipe their old devices, and a worrying number of young people just don't care.…
Apache Foundation fixed a severe Tomcat vulnerability
4 TTPs
•
Security Affairs / 6h
The Apache Software Foundation fixed a Tomcat server software flaw that could lead to remote code execution under certain conditions. The Apache Software Foundation (ASF) addressed an important vulnerability, tracked as CVE-2024-56337 , in its Tomcat server software. The researchers warn that exploiting this vulnerability could result in remote code execution under certain conditions. Apache Tomc
Italy’s data protection watchdog fined OpenAI €15 million over ChatGPT’s data management violations
Italy fines OpenAI 15 million euros
•
Security Affairs / 8h
Italy’s data protection watchdog fined OpenAI €15 million for ChatGPT’s improper collection of personal data. Italy’s privacy watchdog, Garante Privacy, fined OpenAI €15M after investigating ChatGPT’s personal data collection practices. The Italian Garante Priacy also obliges OpenAI to conduct a six-month informational campaign over ChatGPT’s data management violations. The decision stems from a
Apache Tomcat Vulnerability CVE-2024-56337 Exposes Servers to RCE Attacks
4 TTPs
•
100+The Hacker News / 10h
•
CVE-2024-56337
The Apache Software Foundation (ASF) has released a security update to address an important vulnerability in its Tomcat server software that could result in remote code execution (RCE) under certain conditions. The vulnerability, tracked as CVE-2024-56337, has been described as an incomplete mitigation for CVE-2024-50379 (CVSS score: 9.8), another critical security flaw in the same product that
U.S. CISA adds Acclaim Systems USAHERDS flaw to its Known Exploited Vulnerabilities catalog
Security Affairs / 17h
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Acclaim Systems USAHERDS flaw to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added an Acclaim Systems USAHERDS vulnerability, tracked as CVE-2021-44207 (CVSS score: 8.1) to its Known Exploited Vulnerabilities (KEV) catalog. USAHERDS, developed by Acclaim Systems, is
'That's not a bug, it's a feature' takes on a darker tone when malware's involved
The Register – Security / 18h
Mummy, where do zero days come from? Opinion One of the charms of coding is that malice can be indistinguishable from incompetence. Last week's Who, Me? story about financial transfer test software running amok is a case in point.…
Non-Human Identities Gain Momentum, Requires Both Management, Security
Dark Reading / 18h
The number of Non-Human Identities (NHIs) in many organizations has exploded. Key trends, drivers, and market landscape in this fast-developing area are explored.
I found the ultimate laptop accessory for power users - and it's gloriously designed
ZDNet | Security / 19h
The Razer Laptop Cooling Pad ranks as one of my new favorite laptop accessories thanks to its customizability and powerful cooling.
The next big HDMI leap is coming next month - what the 2.2 standard means for you
ZDNet | Security / 19h
Voluminous bandwidth, buttery-smooth refresh rates, and pricier cables are on deck for the New Year.
I've tested dozens of MagSafe wallets, but this is the most premium one yet
ZDNet | Security / 19h
Ohsnap's new Snap Grip Wallet is a stylish MagSafe wallet that securely holds up to eight cards on the back of your phone.
The upcoming Ray-Ban Meta smart glasses may feature the display upgrade we've been hoping for
Ray-Ban Meta glasses gain AI features
•
ZDNet | Security / 19h
The upcoming Ray-Ban smart glasses will reportedly feature similar 'in-lens' displays as Meta's Orion prototype for augmented reality experiences.
Adobe warns of critical ColdFusion bug with PoC exploit code
74BleepingComputer / 20h
Adobe has released out-of-band security updates to address a critical ColdFusion vulnerability with proof-of-concept exploit code. [...]
ExpressVPN vs NordVPN: Which VPN is best for you?
52ZDNet | Security / 20h
Many experts deem these two VPN providers to be the best in the game, but which is better? My in-depth research reveals which VPN should be your pick for every user case.
Ultramarine Linux 40 continues to be one fine unofficial Fedora Spin
ZDNet | Security / 21h
If you're looking for a version of Fedora that offers a few extra tweaks to make the desktop even more user-friendly, look no further than Ultramarine Linux.
TunnelBear VPN review: An affordable, easy-to-use VPN with a few notable pitfalls
ZDNet | Security / 21h
TunnelBear is one of our favorite free VPNs, thanks to its secure encryption, access to over 40 servers, and access to most features with a free plan.
FTC orders Marriott and Starwood to implement strict data security
FTC orders Marriott to enhance security
•
41BleepingComputer / 21h
The Federal Trade Commission (FTC) has ordered Marriott International and Starwood Hotels to define and implement a robust customer data security scheme following failures that led to massive data breaches. [...]
I used Copilot AI Vision to browse the web for me, and it has big potential
ZDNet | Security / 23h
Who really needs an AI assistant to help find information on the internet? It depends on what you're trying to find.
Premium WPLMS WordPress plugins address seven critical flaws
3 TTPs
•
58BleepingComputer / 23h
Two WordPress plugins required by the premium WordPress WPLMS theme, which has over 28,000 sales, are vulnerable to more than a dozen critical-severity vulnerabilities. [...]
US court finds spyware maker NSO liable for WhatsApp hacks
WhatsApp wins lawsuit against NSO Group
•
32BleepingComputer / 23h
A U.S. federal judge has ruled that Israeli spyware maker NSO Group violated U.S. hacking laws by using WhatsApp zero-days to deploy Pegasus spyware on at least 1,400 devices. [...]
Why I recommend this Android phone for kids over a cheap Samsung or Motorola model
ZDNet | Security / 23h
Pinwheel offers a way to make smartphones more kid-friendly and manageable for parents. But is it worth the cost?
The Linux log files you should know and how to use them
ZDNet | Security / 23h
If you really want to see what's happening beneath the hood of your Linux distribution, you need to use log files.
Name That Toon: Sneaking Around
Dark Reading / 1d
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 gift card.
3 lucrative side hustles you can start right now with OpenAI's Sora video generator
ZDNet | Security / 1d
AI is cool but can you make money with it? I've got three ways you can turn OpenAI's Sora into cash flow, along with a free cheat sheet to help you get going.
How to use Microsoft's Copilot AI on Linux
ZDNet | Security / 1d
If you're a fan of Microsoft's Copilot AI and you're looking to use it on Linux, there's a simple way to make it look and feel like its own app.
U.S. Court rules against NSO Group in WhatsApp spyware Lawsuit
Security Affairs / 1d
A U.S. court ruled in favor of WhatsApp against NSO Group, holding the spyware vendor liable for exploiting a flaw to deliver Pegasus spyware. WhatsApp won a legal case against NSO Group in a U.S. court over exploiting a vulnerability to deliver Pegasus spyware . Will Cathcart of WhatsApp called the ruling a major privacy victory, emphasizing accountability for spyware firms after a five-year leg
How CISOs Can Communicate With Their Boards Effectively
Dark Reading / 1d
With the increased frequency of board reporting, CISOs need to ensure their interactions are brief, productive, and valuable.
I tested Samsung's 98-inch 4K QLED TV, and watching Hollywood movies on it left me in awe
ZDNet | Security / 1d
Exceptional brightness, color accuracy, and a potent AI processor make Samsung's 4K Neo QLED a superb choice among supersized TVs.
Apple is working on a doorbell that unlocks your door Face ID-style
Apple developing Face ID door locks
•
ZDNet | Security / 1d
Apple's next smart home device could eliminate the need for keys but it's not the first to do it.
15 surprising ways I used AI to save me weeks of work in 2024
ZDNet | Security / 1d
In 2024, AI became truly helpful. Here are 15 clever ways I integrated it into my workflow for quicker, better results - and what I hope to do with it in 2025.
Beware Of Shadow AI – Shadow IT’s Less Well-Known Brother
SecurityWeek / 1d
While AI tools can enable employees to be innovative and productive, significant data privacy risks can stem from their usage. The post appeared first on SecurityWeek .
5 biggest Linux and open-source stories of 2024: From AI arguments to security close calls
ZDNet | Security / 1d
AI arrived, security troubles were dodged, and after years of development, real-time Linux finally made it into mainstream Linux. Here's what shook up the open-source world this year and what it means for 2025.
Middle East Cyberwar Rages On, With No End in Sight
4 TTPs
•
Dark Reading / 1d
Since October 2023, cyberattacks among countries in the Middle East have persisted, fueled by the conflict between Israel and Hamas, reeling in others on a global scale.
AI Could Generate 10,000 Malware Variants, Evading Detection in 88% of Case
4 TTPs
•
92The Hacker News / 1d
Cybersecurity researchers have found that it's possible to use large language models (LLMs) to generate new variants of malicious JavaScript code at scale in a manner that can better evade detection. "Although LLMs struggle to create malware from scratch, criminals can easily use them to rewrite or obfuscate existing malware, making it harder to detect," Palo Alto Networks Unit 42 researchers
⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips
27 TTPs
•
33The Hacker News / 1d
The online world never takes a break, and this week shows why. From ransomware creators being caught to hackers backed by governments trying new tricks, the message is clear: cybercriminals are always changing how they attack, and we need to keep up. Hackers are using everyday tools in harmful ways, hiding spyware in trusted apps, and finding new ways to take advantage of old security gaps.
Suspected LockBit dev, facing US extradition, 'did it for the money'
Israeli hacker faces US extradition
•
The Register – Security / 1d
Dual Russian-Israeli national arrested in August An alleged LockBit ransomware developer is in custody in Israel and awaiting extradition to the United States.…

No comments:

Post a Comment

Please leave a comment about our recent post.

Subscribe to: Post Comments (Atom)