Cyber Weekly Newsletter
Riskigy Cybersecurity & Tech Advisors
Fractional Cybersecurity and Tech compliance leadership and consulting for start-up, emerging and beyond!
The?weekly?Security, Tech and Cybercrime newsletter from Riskigy's vCISO Cybersecurity team
Cybersecurity awareness tips and alerts from Riskigy to empower your team to #BeCyberSmart #CyberAware
This Weeks Need-to-Know News and Alerts
???More than 40,000 Cisco devices running the IOS XE operating system have been compromised after hackers exploited a recently disclosed maximum severity vulnerability tracked as CVE-2023-20198. https://www.bleepingcomputer.com/news/security/over-40-000-cisco-ios-xe-devices-infected-with-backdo...
?? Cyberattacks exploiting a high-severity vulnerability in WinRAR, a compression software used by over 500 million users, aiming to gain arbitrary code execution on targets' systems. https://www.bleepingcomputer.com/news/security/google-links-winrar-exploitation-to-russian-chinese-s...
?? Citrix is warning of exploitation of a recently disclosed critical security flaw in NetScaler ADC and Gateway appliances that could result in exposure of sensitive information. Tracked as CVE-2023-4966 (CVSS score: 9.4) https://thehackernews.com/2023/10/critical-citrix-netscaler-flaw.html
?? Two critical security flaws discovered in the open-source CasaOS cloud software could be successfully exploited by attackers to achieve arbitrary code execution and take over susceptible systems. Both carry a CVSS score of 9.8 out of 10. https://thehackernews.com/2023/10/critical-vulnerabilities-uncovered-in.html
?? A Google Ads campaign was found pushing a fake KeePass download site that used Punycode to appear as the official domain of the KeePass password manager to distribute malware. https://www.bleepingcomputer.com/news/security/fake-keepass-site-uses-google-ads-and-punycode-to-pus...
?? Researchers found that IT administrators are using tens of thousands of weak passwords to protect access to portals, leaving the door open to cyberattacks on enterprise networks. https://www.bleepingcomputer.com/news/security/over-40-000-admin-portal-accounts-use-admin-as-a-pass...
?? Cybercriminals register .AI domains of trusted brands for malicious activity phishing attacks or other types of brand abuse. https://www.csoonline.com/article/655785/cybercriminals-register-ai-domains-of-trusted-brands-for-ma...
?? Microsoft disabled a bad anti-spam rule flooding Microsoft 365 admins' inboxes with blind carbon copies (BCC) of outbound emails mistakenly flagged as spam. https://www.bleepingcomputer.com/news/microsoft/microsoft-disables-bad-spam-rule-flagging-all-sent-e...
?? Progress Software confirms the SEC has launched its own investigation into costly ransomware zero-days in the MOVEit file transfer software. https://www.securityweek.com/sec-investigating-progress-software-over-moveit-hack/
?? Microsoft has resolved a known issue that caused Windows 10 security updates released during this month's Patch Tuesday to fail with 0x8007000d errors. https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-windows-10-security-update-installat...
?? EPA calls off cyber regulations for water sector. The announcement is a major blow to the Biden administration's efforts to improve the cybersecurity of U.S. critical infrastructure. https://cyberscoop.com/epa-calls-off-cyber-regulations-for-water-sector/
?? A resurgence of phishing campaigns using LinkedIn Smart Links has been observed in a sizable credential phishing campaign that targets Microsoft Office credentials and has been creeping into user email inboxes once again. https://www.scmagazine.com/news/credential-phishing-campaign-using-linkedin-smart-links-resurfaces
?? Microsoft has announced that it plans to eliminate NT LAN Manager (NTLM) in Windows 11 in the future, as it pivots to alternative methods for authentication and bolster security. https://thehackernews.com/2023/10/microsoft-to-phase-out-ntlm-in-favor-of.html
From Our Blog
GenAI Powered Software Serving Malware and Malvertisements
Cybercriminals have targeted users of the Bing AI Chatbot with malicious ads, leading to infected software downloads. Malvertisements are fake advertisements attackers use to direct victims to fake websites that contain malware and steal login credentials and other sensitive information. Attackers may purchase legitimate advertisement services like Google Ads to impersonate brands and avoid detection by the algorithm....read more now!
领英推荐
NSA and CISA Reveal Top Ten Security Misconfigurations
The NSA and CISA listed the ten most common network misconfigurations, showing a trend of systemic weaknesses in many large organizations with varying cyber postures. As a result, the NSA and CISA strongly encourage network defenders to implement their recommendations and software manufacturers to incorporate secure-by-design and default principles and tactics....read more now!
Critical WebP Vulnerability Under Active Exploitation
Originally classified as simply a Chrome bug, the flaw has a much broader impact than originally thought because of its relation to the open libwebp library used by a multitude of software, applications, operating systems, and packages to process WebP images. The popularity of libwebp alone increases the attack surface significantly, raising concerns for users and organizations...read more now!
Data Breach News?
???Networking equipment manufacturer D-Link confirmed a data breach linked to information stolen from its network and put up for sale on BreachForums. https://www.bleepingcomputer.com/news/security/d-link-confirms-data-breach-after-employee-phishing-a...
?? A hacker has leaked an additional 4.1 million stolen 23andMe genetic data profiles for people in Great Britain and Germany on a hacking forum. https://www.bleepingcomputer.com/news/security/hacker-leaks-millions-of-new-23andme-genetic-data-pro...
?? Electronics manufacturer Casio disclosed a data breach impacting customers from 149 countries after hackers gained to the servers of its ClassPad platform. https://www.bleepingcomputer.com/news/security/casio-discloses-data-breach-impacting-customers-in-14...
?? Kwik Trip has been impacted by a range of mysterious business disruptions since this weekend that are indicative of a ransomware attack. Kwik Trip is a US chain of over 800 convenience stores and gas stations. https://www.bleepingcomputer.com/news/technology/kwik-trip-it-systems-outage-caused-by-mysterious-ne...
Cybersecurity Resources
According to Verizon's latest annual Data Breach report, 75% of Data Breaches Involve: Human Error, Social Engineering, and Use of Stolen Credentials. Leverage our free Cyber Awareness training videos to improve exposure to cybersecurity concepts, terminology, and activities associated with implementing cybersecurity best practices.
??Looking for Cybersecurity Policy templates? Tabletop Exercise (TTE) scenarios? Click here to see the full library
Cybersecurity Is Complex! We Are Here To Help!
e: [email protected] | p: 888.333.6553