This Week - 24 million hotel records left exposed online

Welcome to Infosec K2K’s Weekly News Update! As technology continues to advance, so do the risks associated with it. At Infosec K2K, we’re committed to protecting the keys to your kingdom and keeping you informed. Every week, we gather the latest news and insights on cyber threats, data breaches, and other essential topics in the world of cyber security.

In The News This Week

Google vulnerability leaves abandoned accounts at risk

A flaw in 谷歌 ’s OAuth system allows attackers to exploit abandoned domains from now-defunct startups, meaning that they could potentially access sensitive data linked to platforms like Slack and Zoom . The vulnerability, which was discovered by Truffle Security Co. ., enables attackers to re-create email accounts tied to expired domains and impersonate former employees. Although Google acknowledges the risk, the issue currently remains unresolved. Researchers estimate there could be millions of exposed accounts due to the widespread use of Google Workspace in startups.

Find out more on BleepingComputer : https://www.bleepingcomputer.com/news/security/google-oauth-flaw-lets-attackers-gain-access-to-abandoned-accounts/?

EU plans to boost healthcare cyber security

The EU Commission has announced a new plan to strengthen healthcare cyber security, which includes launching a pan-European Cybersecurity Support Centre by 2026. The plan focuses on prevention, detection, response, and deterrence to combat the rising number of cyber threats in healthcare, which saw 309 significant incidents in 2023. Public consultation on the plan begins soon, and further recommendations are expected later in the year.

Find out more on Infosecurity Magazine : https://www.infosecurity-magazine.com/news/eu-centre-defend-hospitals/?

UK government is considering banning ransomware payments

The UK government has proposed banning public sector organisations from making ransomware payments, in order to protect critical services like hospitals and schools. The ban, which was? included in a Home Office consultation, aims to deter ransomware attacks by disrupting criminal financial models. Proposals include the mandatory reporting of incidents and guidance to prevent payments to criminals. However, experts warn there could be unintended consequences, such as increased risks to private businesses and longer disruptions.?

Find out more on Infosecurity Magazine : https://www.infosecurity-magazine.com/news/uk-ban-ransomware-payments/?

Businesses are facing increased risks because of poor vulnerability management

Many companies are struggling to deal with critical vulnerabilities in a timely manner, with research from Swimlane showing that 68% or organisations take over 24 hours to address them. A lack of context or accurate information is the primary reason for failures in prioritising vulnerabilities. Manual processes can consume significant resources, with teams spending hours consolidating data. Many businesses are also concerned about regulatory compliance and potential fines. Experts have highlighted the need for real-time responses to new vulnerabilities.

Find out more on ITPro : https://www.itpro.com/security/vulnerability-management-complexity-is-leaving-enterprises-at-serious-risk?

The Stats This Week

UN agency confirms 11,929 people affected by breach

The International Civil Aviation Organization (ICAO), an agency of the United Nations , has confirmed a data breach impacting 11,929 individuals. The breach exposed recruitment-related data from 42,000 records, including personal details like names, email addresses, and employment history. It didn’t affect financial data or security systems. The hacker group known as Natohub has claimed responsibility for the attack, and ICAO has taken action to improve its cybersecurity and contact the affected individuals.?

Find out more on Tech Monitor : https://www.techmonitor.ai/technology/cybersecurity/un-aviation-agency-12000-affected-by-data-breach?

Hotel chain left over 24 million records exposed online

A security breach has exposed over 24 million records of hotel guests' sensitive data, including names, emails, phone numbers, booking details, and loyalty points. The unprotected database was discovered by Cybernews and has been linked to Honotel , a European hotel management firm. Although the exact company responsible for this breach remains unconfirmed, the dataset's ties to Honotel raise concerns as it runs hospitality brands and 135 hotels across Europe.?

Find out more on Cybernews : https://cybernews.com/security/honotel-data-leak-exposes-millions-of-guests/?

AI-assisted ransomware group claimed 85 victims last month

The FunkSec ransomware group, which claimed 85 victims in December, has quickly emerged as a threat thanks to its use of AI-assisted malware. Researchers suggest the group consists of inexperienced hackers, possibly from Algeria, who use AI to develop malware. FunkSec has primarily targeted organisations in India and the US, and has made low ransom demands. Despite claims linking it to hacktivist groups, evidence indicates the group’s inexperience. AI tools are making it easier than ever for unskilled criminals to pose a serious threat.

Find out more on DIGIT.FYI:

https://www.digit.fyi/ai-assisted-ransomware-group-claims-85-victims-in-december/?

Thoughts from Infosec K2K

Organisations are struggling with slow vulnerability remediation, with research by the cyber security company Swimlane showing that 68% of surveyed businesses take more than 24 hours to address critical flaws. Fragmented data and poor collaboration between different teams are the major contributors to delays in addressing vulnerabilities. This approach heightens the risk of data breaches, compliance failures, and penalties. Experts have highlighted the need for the prioritisation of vulnerabilities instead of just patching them. Many firms are facing rising operational costs, with manual processes consuming valuable time and resources, leaving them at a disadvantage when it comes to their vulnerability management.

At Infosec K2K, we understand the complexities of vulnerability management. Many businesses don’t know how to prioritise vulnerabilities effectively, leading to delays in dealing with them. Without clear context or accurate information, over a third of organisations struggle with addressing threats. Operational challenges are draining resources, with 55% of security teams forced to spend over five hours a week consolidating? vulnerability data, slowing them down and delaying any further action.

With over half of security teams lacking confidence in their vulnerability management programs' ability to meet regulatory requirements, there’s a clear need for real-time, centralised systems. We encourage organisations to rely on both automation and human expertise, which could help security? teams to prioritise vulnerabilities effectively and act more decisively. By responding in real time to critical vulnerabilities, you’re not just improving your defences - you’re freeing up time to deal with the next challenge that comes your way.?

Read more on Swimlane: https://swimlane.com/news/vulnerability-management-research/?

—

Got questions about this week’s news? We’re here to help! Learn how best to bolster your cyber security defences by getting in touch with our expert team at Infosec K2K.?

Stay updated on all things #CyberSecurityNews when you subscribe to our weekly newsletter by clicking 'Subscribe' at the top of this page!