Cyber Weekly Newsletter

Cyber Weekly Newsletter for Friday September 27th, 2024

The weekly Security, Tech and Cybercrime newsletter from Riskigy's vCISO Cybersecurity team

Cybersecurity awareness tips and alerts from Riskigy to empower your team to #BeCyberSmart #CyberAware

This Weeks Need-to-Know News and Alerts

?? NIST Drops Password Complexity, Mandatory Reset Rules. The latest draft of NIST's password guidelines simplifies password management best practices, no longer recommends using a mixture of character types in passwords and regularly changing passwords. https://www.darkreading.com/identity-access-management-security/nist-drops-password-complexity-mandatory-reset-rules

?? Hackers Infiltrated U.S. internet service providers (ISPs) and telecoms as part of a possible cyber espionage campaign allowing the threat actors to harvest sensitive data or launch a damaging cyber attack. https://thehackernews.com/2024/09/chinese-hackers-infiltrate-us-internet.html

?? Hackers Could Have Remotely Controlled Kia Cars Using Only License Plates. These attacks could be executed remotely on any hardware-equipped vehicle in about 30 seconds, regardless of whether it had an active Kia Connect subscription. https://thehackernews.com/2024/09/hackers-could-have-remotely-controlled.html

?? Aruba Networking fixes critical flaws impacting Access Points. Three critical vulnerabilities in the Command Line Interface (CLI) service of its Aruba Access Points could let unauthenticated attackers gain remote code execution on vulnerable devices. https://www.bleepingcomputer.com/news/security/hpe-aruba-networking-fixes-three-critical-rce-flaws-impacting-its-access-points/

?? Progress Software warned customers to patch multiple critical and high-severity vulnerabilities in its WhatsUp Gold network monitoring tool as soon as possible. The WhatsUp Gold team has identified six vulnerabilities that exist in versions below 24.0.1. https://www.bleepingcomputer.com/news/security/progress-urges-admins-to-patch-critical-whatsup-gold-bugs-asap

?? Ransomware attacks rose 73% between 2022 and 2023, according a report published by the Ransomware Task Force. The report refers to the trend and increased attacks in “big game hunting,” in which cybercriminals target high-value and high-risk organizations. https://statescoop.com/ransomware-incidents-rose-73-globally-in-2023-report-shows

?? Critical NVIDIA Container Toolkit Vulnerability Could Grant Full Host Access to Attackers if successfully exploited. The vulnerability, tracked as CVE-2024-0132, carries a CVSS score of 9.0 out of a maximum of 10.0. https://thehackernews.com/2024/09/critical-nvidia-container-toolkit.html

?? Third Ivanti Bug Comes Under Active Exploit, CISA Warns. Though the critical vulnerability was patched in August, Ivanti is reminding customers to update as soon as possible as attacks from unauthenticated threat actors start circulating. https://www.darkreading.com/vulnerabilities-threats/cisa-adds-patched-ivanti-bug-kev-catalog

?? Infostealer malware bypasses Chrome’s new cookie-theft defenses . Infostealer malware developers released updates claiming to bypass Google Chrome’s recently introduced feature App-Bound Encryption to protect sensitive data such as cookies. https://www.bleepingcomputer.com/news/security/infostealer-malware-bypasses-chromes-new-cookie-theft-defenses

?? A new report offers Clues to Spotting and Stopping Fake IT Workers. Mandiant shines the spotlight on the growing infiltration of US and Western companies by North Korean fake IT workers. https://www.securityweek.com/mandiant-offers-clues-to-spotting-and-stopping-north-korean-fake-it-workers

?? ESET Patches Privilege Escalation Vulnerabilities in Windows, macOS Products. ESET has released patches for two local privilege escalation vulnerabilities in security products for Windows and macOS. https://www.securityweek.com/eset-patches-privilege-escalation-vulnerabilities-in-windows-macos-products

?? Kaspersky deletes itself, installs UltraAV antivirus without warning. Cybersecurity company Kaspersky deleted its anti-malware software from customers' computers across the United States and automatically replaced it with UltraAV's antivirus solution. https://www.bleepingcomputer.com/news/security/kaspersky-deletes-itself-installs-ultraav-antivirus-without-warning

?? Users of macOS 15 ‘Sequoia’ are reporting network connection errors when using certain endpoint detection and response (EDR) or virtual private network (VPN) solutions, and web browsers. Issues are resolved when these tools are deactivated. https://www.bleepingcomputer.com/news/apple/macos-sequoia-change-breaks-networking-for-vpn-antivirus-software

From Our Blog

? Celebrating 5 Years as Cybersecurity Awareness Month Champions

As a NCSAM Champion, we join an elite group of organizations dedicated to fostering a culture of cybersecurity. This recognition, awarded by the National Cyber Security Alliance (NCSA) and the Cybersecurity and Infrastructure Security Agency (CISA), acknowledges our ongoing efforts to educate and protect our clients from ever-evolving cyber threats....Read more at https://riskigy.com/blog/f/celebrating-5-years-as-cybersecurity-awareness-month-champions

? FINRA Warns Third-Party Risks on the Rise

As the financial industry continues to embrace external services to optimize operations, the risks associated with third-party providers have become increasingly significant. FINRA's Cybersecurity Advisory sheds light on the escalating cybersecurity risks that come with the growing reliance on third-party vendors…Read more at https://riskigy.com/f/finra-warns-third-party-risks-on-the-rise

? 'Take A Beat' with the FBI's new Campaign Targeting Scammers

'Take A Beat' with the FBI's new Campaign Targeting Scammers. In response to the growing threat, the FBI has launched a nationwide campaign called “Take A Beat” to raise awareness and enhance defenses against fraudulent activities...Learn more now at https://riskigy.com/f/take-a-beat-with-the-fbis-new-campaign-targeting-scammers

? Preparing for National Cybersecurity Awareness Month October 2024

October is a time for Football, Halloween and Cybersecurity Awareness. Since 2004, the President of the United States and Congress have declared October Cybersecurity Awareness Month, dedicated to raising awareness about the importance of cybersecurity in both the public and private sectors.…Read more https://riskigy.com/blog/f/preparing-for-national-cybersecurity-awareness-month-october-2024

? Mitigating Data Breach Costs in 2024

Recently, IBM released its 19th annual Cost of a Data Breach Report, highlighting the increasing costs and disruptions caused by data breaches, with the global average cost reaching $4.88 million in 2024. Among the report's key findings are the impact of staff shortages and data visibility gaps on breach costs…Read more at https://riskigy.com/blog/f/mitigating-data-breach-costs-in-2024

Recent Data Breach News

?? Kansas water plant cyberattack forces switch to manual operations. Arkansas City, a small city in Cowley County, Kansas, was forced to switch its water treatment facility to manual operations over the weekend to contain a cyberattack. https://www.bleepingcomputer.com/news/security/kansas-water-plant-cyberattack-forces-switch-to-manual-operations

?? US government agency confirms it was hit by Cl0p ransomware attack as a result of the MOVEit vulnerability. The Centers for Medicare & Medicaid Services (CMS), a US federal agency within the U.S. Department of Health and Human Services (HHS). https://www.techradar.com/pro/security/us-government-agency-confirms-it-was-hit-by-major-ransomware-attack

?? Massive data leak could mean one-third of Americans has data leaked online. A data leak originating from background check firm MC2 Data, which apparently left a 2.2TB database online without a password, freely accessible to anyone on the internet. https://www.techradar.com/pro/massive-data-leak-could-mean-one-third-of-americans-has-data-leaked-online

?? A "cybersecurity issue" has shut down MoneyGram's systems and payment services and the fintech leader has yet to update customers as to when it expects to have its global money transfer services back up and running. https://www.theregister.com/2024/09/23/moneygram_cybersecurity_issue

?? Dell investigates data breach claims after hacker leaks employee info. Dell has confirmed that they are investigating recent claims that it suffered a data breach after a threat actor leaked the data for over 10,000 employees. https://www.bleepingcomputer.com/news/security/dell-investigates-data-breach-claims-after-hacker-leaks-employee-info

?? Disney ditching Slack after massive July data breach. The Walt Disney Company is reportedly ditching Slack after a July data breach exposed over 1TB of confidential messages and files posted to the company's internal communication channels. https://www.bleepingcomputer.com/news/security/disney-ditching-slack-after-massive-july-data-breach

?? Professional social networking site LinkedIn addresses user data collection for AI Training. The company announced an update to its privacy policy, acknowledging it is using customer data to train its AI models. https://www.darkreading.com/cyber-risk/linkedin-user-data-collection-ai-training

Prepare now for National Cybersecurity Awareness Month 2024

October marks the annual Cybersecurity Awareness Month, a collaborative effort ?between government and industry to increase the understanding of cyber ?threats and promote the importance of cybersecurity practices. Launched ?in 2004, this initiative encourages everyone to ensure their digital ?lives are secure.

During Cybersecurity Awareness Month, businesses can take several proactive ?steps to improve their cybersecurity posture and engage their employees. ?Here are some recommended actions:

1. Conduct Cybersecurity Training and Awareness Programs

• Workshops and Seminars: Organize workshops and seminars to educate employees about common cyber threats and best practices.
• Phishing Simulations: Run phishing simulations to train employees to recognize and avoid phishing attempts.

2. Review and Update Cybersecurity Policies

• Policy Review: Reevaluate current cybersecurity policies and ?procedures. Ensure they are up to date with the latest standards and ?best practices.
• Policy Communication: Communicate any changes or updates to all employees clearly and effectively.

3. Engage in Community Initiatives

• Participate in Events: Join local or online events focused on cybersecurity awareness.
• Collaborate: Partner with cybersecurity organizations or other ?businesses to promote a collective effort in enhancing cybersecurity.

By implementing these activities ?and emphasizing the importance of cybersecurity, businesses can ?significantly reduce their risk of cyber attacks and create a safer ?digital environment.

Cybersecurity Is Complex! We Are Here To Help

Cyberthreats are everywhere, you don’t have to face them alone. Get Cybersecurity & Tech help from Riskigy!

? Looking for an expert to assist your firm or clients??

? Need a pro to explain Tech or Cyber to your management??

? Vetting a new investment or acquisition??

? Want to build a cyber aware staff??

? Need immediate assistance with an incident??

? Considering adding a vCISO or vCTO to your team?

? Seeking help with SOC2, FINRA/SEC, or Cyber Insurance readiness?

Contact us to discuss how we can assist!