"Emerald Whale's massive git breach highlights config gaps."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 01 November 2024, 2305 UTC.

Content and Source:  Email subscription via https://feedly.com.   https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.darkreading.com%2Frss%2Fall.xml

Please scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Dark Reading

158K followers44 articles per week#security#tech

43

TODAY

EmeraldWhale's Massive Git Breach Highlights Config Gaps

8 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 1h

•

15k cloud credentials stolen from Git

The large-scale operation took advantage of open repositories, hardcoded credentials in source code, and other cloud oversights.

AU10TIX Q3 2024 Global Identity Fraud Report Detects Skyrocketing Social Media Attacks

Social media fraud surges pre-election

•

1h

[no content]

Privacy Anxiety Pushes Microsoft Recall AI Release Again

by Becky Bracken, Senior Editor, Dark Reading / 1h

The Recall AI tool will be available to Copilot+ PC subscribers in December, and can be used to record images of every interaction on the device for review later. Critics say this introduces major privacy and security concerns along with useful functionality.

SOFTSWISS Expands Bug Bounty Program

SOFTSWISS expands Bug Bounty program

•

1h

[no content]

Chinese APTs Cash In on Years of Edge Device Attacks

5 TTPs

•

by Nate Nelson, Contributing Writer / 3h

•

Sophos battles Chinese hackers for years

The sophisticated Chinese cyberattacks of today rest on important groundwork laid during the pandemic and before.

Critical Auth Bugs Expose Smart Factory Gear to Cyberattack

4 TTPs

•

by Tara Seals, Managing Editor, News, Dark Reading / 5h

Factory automation software from Mitsubishi Electric and Rockwell Automation could be subject to remote code execution (RCE), denial-of-service (DoS), and more.

IT Security Centralization Makes the Use of Industrial Spies More Profitable

by Aybars Tuncdogan, Fulya Acikgoz / 6h

As organizations centralize IT security, the risk of espionage is silently becoming a more profitable threat.

Developer Velocity & Security: Can You Get Out of the Way in Time?

by Matt Middleton-Leal / 9h

When a CISO can articulate risk in context to the business as a whole, development teams can better prioritize their activities.

YESTERDAY

Taiwanese Facebook Biz Pages Fall to Infostealer Phishing Campaign

10 TTPs

•

by Dark Reading Staff / 1d

The threat actors deceive their victims by impersonating the legal teams of companies, well-known Web stores, and manufacturers.

Cybersecurity Job Market Stagnates, Dissatisfaction Abounds

by Tara Seals, Managing Editor, News, Dark Reading / 1d

The 2024 ISC2 Cybersecurity Workforce Study found that amid a tightening job market and dynamic cyber-threat environment, ongoing staffing and skills shortages are putting organizations at serious risk. Can AI move the needle in defenders' favor?

Canada Grapples With 'Second-to-None' PRC-Backed Threat Actors

Canada releases National Cyber Threat Assessment

•

by Dark Reading Staff / 1d

Chinese APTs lurked in Canadian government networks for five years — and that's just one among a whole host of threats from Chinese bad actors.

North Korea's Andariel Pivots to 'Play' Ransomware Games

11 TTPs

•

by Elizabeth Montalbano, Contributing Writer / 1d

•

Jumpy Pisces collaborates with Play ransomware

The prominent state-sponsored advanced persistent threat (APT), aka Jumpy Pisces, appears to be moving away from its primary cyber-espionage motives and toward wreaking widespread disruption and damage.

The Overlooked Importance of Identifying Riskiest Users

by Garrett Hamilton / 1d

"See one, teach one, do one" takes a page out of the healthcare playbook to reduce human vulnerabilities where they matter most in cybersecurity.

Noma Launches With Plans to Secure Data, AI Life Cycle

Noma develops AI security tools

•

by Dark Reading Staff / 1d

Application security teams from Fortune 500 companies are already using Noma's life cycle platform, which offers organizations data and AI supply chain security, AI security posture management, and AI threat detection and response.

The Case Against Abandoning CrowdStrike Post-Outage

by Vishaal "V8" Hariprasad / 1d

Knee-jerk reactions to major vendor outages could do more harm than good.

China Says Seabed Sentinels Are Spying, After Trump Taps

by Tara Seals, Managing Editor, News, Dark Reading / 1d

On the heels of a Chinese APT eavesdropping on phone calls made by Trump and Harris campaign staffers, Beijing says foreign nations have mounted an extensive seafaring espionage effort.

OCT 30, 2024

Regulators Combat Deepfakes With Anti-Fraud Rules

by Stephen Lawton, Contributing Writer / 1d

Despite the absence of laws specifically covering AI-based attacks, regulators can use existing rules around fraud and deceptive business practices.

MIND Launches 'Intelligent' DLP Platform

MIND raises 11M for data security

•

by Dark Reading Staff / 1d

The company's data loss prevention platform helps customers identify and classify data across SaaS and GenAI applications, endpoints, and email.

White House Outlines AI's Role in National Security

US issues AI national security memo

•

by Jennifer Lawinski, Contributing Writer / 1d

A national security memorandum on artificial intelligence tasks various federal agencies with securing the AI supply chain from potential cyberattacks and disseminating timely threat information about them.

'Midnight Blizzard' Targets Networks With Signed RDP Files

11 TTPs

•

by Jai Vijayan, Contributing Writer / 2d

•

Midnight Blizzard targets Ukrainian sectors

The Russian-backed group is using a novel access vector to harvest victim data and compromise devices in a large-scale intelligence-gathering operation.

15 Leading Technology and Service Providers Achieve SASE Certification

2d

[no content]

Ex-Disney Employee Charged With Hacking Menu Database

Ex-Disney employee hacks menu system

•

by Dark Reading Staff / 2d

In a vengeful move against the happiest place on Earth, the former employee allegedly used his old credentials to make potentially deadly changes.

Zenity Raises $38M Series B Funding Round to Secure Agentic AI

Zenity secures 38M for AI

•

2d

[no content]

Norton Report Reveals Nearly Half of US Consumers Were Targeted by a Scam While Online Shopping

Norton warns of holiday shopping scams

•

2d

[no content]

The Open Source Initiative Announces Open Source AI Definition

OSI defines Open Source AI

•

2d

[no content]

Business Email Compromise (BEC) Impersonation: The Weapon of Choice of Cybercriminals

BEC attacks surge targeting manufacturers

•

2d

[no content]

Casap Secures $8.5M in Funding

Casap raises 8.5M for fraud prevention

•

2d

[no content]

Cybersecurity Training Resources Often Limited to Developers

by Dark Reading Staff / 2d

With a lack of cybersecurity awareness training resources for all employees, organizations are more susceptible to being breached or falling short when it comes to preventing threats.

Vishing, Mishing Go Next-Level With FakeCall Android Malware

2 TTPs

•

by Elizabeth Montalbano, Contributing Writer / 2d

•

FakeCall malware targets bank calls

A new variant of the sophisticated attacker tool gives cybercriminals even more control over victim devices to conduct various malicious activities, including fraud and cyber espionage.

When Cybersecurity Tools Backfire

by Yvonne Dickinson / 2d

Outages are inevitable. Our focus should be on minimizing their scope, addressing underlying causes, and understanding that protecting systems is about keeping bad actors out while maintaining stability and reliability.

'CrossBarking' Attack Targeted Secret APIs, Exposing Opera Browser Users

2 TTPs

•

by Nate Nelson, Contributing Writer / 2d

Using a malicious Chrome extension, researchers showed how an attacker could use a now-fixed bug to inject custom code into a victim's Opera browser to exploit special and powerful APIs, used by developers and typically saved for only the most trusted sites.

OCT 29, 2024

China's Elite Cyber Corps Hone Skills on Virtual Battlefields

by Robert Lemos, Contributing Writer / 3d

The nation leads in the number of capture-the-flag tournaments sponsored by government and industry — a strategy from which Western nations could learn.

Recurring Windows Flaw Could Expose User Credentials

21by Jai Vijayan, Contributing Writer / 3d

Now a zero-day, the vulnerability enables NTLM hash theft, an issue that Microsoft has already fixed twice before.

China's 'Evasive Panda' APT Debuts High-End Cloud Hijacking

5 TTPs

•

by Tara Seals, Managing Editor, News, Dark Reading / 3d

•

Evasive Panda targets Taiwan with CloudScout

A professional-grade tool set, appropriately dubbed "CloudScout," is infiltrating cloud apps like Microsoft Outlook and Google Drive, targeting sensitive info for exfiltration.

French ISP Confirms Cyberattack, Data Breach Affecting 19M

Collection (Enterprise TA0009)

•

by Dark Reading Staff / 3d

•

Free suffers data breach affecting millions

In the latest attack against ISPs, second-largest French provider Free fell victim to unknown cyberattackers who attempted to sell the compromised data it stole from the company on an underground cybercrime forum.

FBI, Partners Disrupt RedLine, Meta Stealer Operations

7 TTPs

•

by Elizabeth Montalbano, Contributing Writer / 3d

•

Dutch police disrupt RedLine MetaStealer

A collaboration with the FBI and law-enforcement agencies in Europe, the UK, and Australia, Operation Magnus has seized servers and source code related to the two malware families, which have stolen data from millions of victims worldwide.

How to Find the Right CISO

by Martha Heller / 3d

Great CISOs are in short supply, so choose wisely. Here are five ways to make sure you've made the right pick.