"Europol op shutters 12 scam call centers and cuffs 21 suspected fraudsters."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 03 May 2024, 1425 UTC.

Content and Source:  https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.theregister.co.uk%2Fsecurity%2Fheadlines.atom/The Register-Security.

Please scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The Register – Security

85K followers31 articles per week#security#tech

29

MOST POPULAR

Europol op shutters 12 scam call centers and cuffs 21 suspected fraudsters

German police bust Europe's largest scam call

•

by Jessica Lyons / 8h

Cops prevented crims from bilking victims out of more than €10m - but couldn't stop crime against art A Europol-led operation dubbed “Pandora” has shut down a dozen phone scam centers, and arrested 21 suspects. The cops reckon the action prevented criminals from bilking victims out of more than €10 million (£8.6 million, $11 million).…

UnitedHealth CEO: 'Decision to pay ransom was mine'

UnitedHealth cyberattack impacts substantial

•

23by Jessica Lyons / 2d

Congress to hear how Citrix MFA snafu led to massive data theft, $870M+ loss Updated UnitedHealth CEO Andrew Witty will tell US lawmakers Wednesday the cybercriminals who hit Change Healthcare with ransomware used stolen credentials to remotely access a Citrix portal that didn't have multi-factor authentication enabled.…

Federal frenzy to patch gaping GitLab account takeover hole

3 TTPs

•

by Connor Jones / 1d

Warning comes exactly a year after the vulnerability was introduced The US Cybersecurity and Infrastructure Security Agency (CISA) is forcing all federal agencies to patch a critical vulnerability in GitLab's Community and Enterprise editions, confirming it is very much under "active exploit."…

YESTERDAY

Indonesia sneakily buys spyware, claims Amnesty International

Indonesia imports spyware tools

•

by Laura Dobberstein / 9h

A 'murky' web sees many purchases run through Singapore in a way that hides potential users Indonesia has acquired spyware and surveillance technologies through a "murky network" that extends into Israel, Greece, Singapore and Malaysia for equipment sourcing, according to Amnesty International.…

Chinese government website security is often worryingly bad, say Chinese researchers

by Laura Dobberstein / 11h

Bad configurations, insecure versions of jQuery, and crummy cookies are some of myriad problems Exclusive Five Chinese researchers examined the configurations of nearly 14,000 government websites across the country and found worrying lapses that could lead to malicious attacks, according to a not-yet-peer-reviewed study released last week.…

Microsoft, Google do a victory lap around passkeys

Microsoft introduces passkey support for consumer

•

by Jessica Lyons / 15h

Windows giant extends passwordless tech to everyone else Microsoft today said it will now let us common folk — not just commercial subscribers — sign into their Microsoft accounts and apps using passkeys with their face, fingerprint, or device PIN.…

Florida man gets 6 years behind bars for flogging fake Cisco kit to US military

CEO sentenced to prison for selling fake Cisco

•

by Matthew Connatser / 17h

Operation busted after dodgy devices ended up at Air Force Miami resident Onur Aksoy has been sentenced to six and a half years in prison for running a multi-million-dollar operation selling fake Cisco equipment that ended up in the US military.…

Patch up – 4 critical bugs in ArubaOS lead to remote code execution

2 TTPs

•

by Connor Jones / 17h

Ten vulnerabilities in total for admins to apply Network admins are being urged to patch a bundle of critical vulnerabilities in ArubaOS that lead to remote code execution as a privileged user.…

MAY 1, 2024

Think tank: China's tech giants refine and define Beijing's propaganda push

by Laura Dobberstein / 1d

Taking down TikTok won't stop the CCP's attempt to control global narratives Chinese tech companies that serve as important links in the world's digital supply chains are helping Beijing to execute and refine its propaganda strategy, according to an Australian think tank.…

REvil ransomware scum sentenced to almost 14 years inside, ordered to pay $16 million

Ukrainian man sentenced for ransomware

•

by Jessica Lyons / 1d

After extorting $700 million from thousands of victims A Ukrainian man has been sentenced to almost 14 years in prison and ordered to pay more than $16 million in restitution for his role in infecting thousands of victims with REvil ransomware.…

A million Australian pubgoers wake up to find personal info listed on leak site

NSW clubs data breach exposes 1 million

•

by Simon Sharwood / 1d

Man arrested and blackmail charges expected after allegations of unpaid contractors and iffy infosec Updated Over a million records describing Australians who visited local pubs and clubs have apparently been posted online.…

Dropbox dropped the ball on security, haemorrhaging customer and third-party info

Dropbox reports hacker breach

•

by Simon Sharwood / 1d

Only from its digital doc-signing service, which is isolated from its cloudy storage Dropbox has revealed a major attack on its systems that saw customers' personal information accessed by unknown and unauthorized entities.…

Block accused of mass compliance failures that saw digi-dollars reach terrorists

Federal prosecutors investigating financial

•

by Iain Thomson / 1d

Developer of Square and Cash App reportedly has big back-end problems it was slow to fix Fintech biz Block is reportedly under investigation by US prosecutors over claims by a former employee that lax compliance checks mean its Square and Cash App services may have been used by terrorists – or in countries that US orgs are not permitted to do business.…

Infosec biz boss accused of BS'ing the world about his career, anti-crime product, customers

by Jessica Lyons / 1d

Intrusion investors went through Blount farce trauma, says SEC Jack Blount, the now-ex CEO of Intrusion, has settled with the SEC over allegations he made false and misleading statements about his infosec firm's product as well as his own background and experience.…

US charges 16 over 'depraved' grandparent scams

16 charged in grandparent scam

•

by Connor Jones / 1d

Vulnerable elderly people tricked into paying tens of thousands over fake car accidents Sixteen people are facing charges from US prosecutors for allegedly preying on the elderly and scamming them out of millions of dollars.…

Qantas app glitch sees boarding passes fly to other accounts

Qantas app security breach investigation underway

•

by Connor Jones / 1d

Issue now resolved and isn't thought to be the work of criminals Aussie airline Qantas says its app is now stable following a data breach that saw boarding passes take off from passengers' accounts.…

CyberHawaii

"You're Invited!  Access Management and Social Engineering Webinar."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 02 May 2024, 2127 UTC.

Content and Source:  https://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox/FMfcgzGxSvBmFxkmXjfTCZplRtmSBrQb/CyberHawaii.

Please scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

CyberHawaii, the Cybersecurity & Infrastructure Security Association, and the Federal Bureau of Investigation (FBI) present... Access Management & Social Engineering Webinar Tuesday, May 7, 2024 2 pm - 3 pm Due to the sensitive nature of this presentation, this session will not be recorded and the slides will not be posted to the CyberHawaii website following the presentation. Register today! As a business, you want to make sure only authorized individuals have access to your company's most valuable information. This requires strong access management controls to ensure only those authorized have access to the information. Unfortunately, hackers are expert in breaking through these controls. After they gain a foothold into your systems, hackers will not stop there. Their malware is programmed to try to access your databases, create new accounts, and move from one server to another server in your network. Hackers don't care about company size and target big and small alike. Hackers employ social engineering techniques to persuade legitimate users to willingly give up information to gain access to systems and information that should be accessible only to authorized personnel. Don't miss this opportunity to learn about Access Management and Social Engineering from experts from the Cybersecurity & Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI).    You’ll learn: What Access Management is. Access Management techniques and their strengths and weaknesses Social Engineering techniques Social Engineering scams How to protect yourself and your business.

Presenters

Bruce Mirante, Cybersecurity State Coordinator CISA Region 9, joined the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) in January 2024. Jasmine Lewis, FBI Special Agent, has worked for the FBI for over five years. SA Lewis works for the FBI Honolulu division Cyber Squad, focusing on cyber-criminal investigations.

Mahalo to our sponsors

This session is part of the 2024 Fortify Cybersecurity Webinar Series, sponsored by CyberHawaii and CISA. This series was made possible by a grant from the Hawaii Department of Business, Economic Development and Tourism. Other supporters of this series include the State Office of Homeland Security, the FBI, Chamber of Commerce Hawai‘i, the Hawai‘i Defense Alliance and the University of Hawai‘i. Register today! CyberHawaii | www.cyberhawaii.org

CyberHawaii | 2800 Woodlawn Drive, Suite 101G, Honolulu, HI 96822 cyberhi@cyberhawaii.org Unsubscribe kh6jrm@gmail.com Update Profile | Constant Contact Data Notice Sent by cyberhi@cyberhawaii.org powered by Try email marketing for free today!