This Week's Cyber Byte-Sized Takeaways (published 19 July, 2024)

Hello again, cyber aficionados!?

It’s that time of the week where we dive headfirst into the cacophony of cyber-news and attempt to make it a wee bit more palatable. This week, we’ve got a smorgasbord of breaches, hacks, and cyber shenanigans that’ll make your head spin. So, grab your favourite snack and let’s chow down on these byte-sized tech takeaways together.

News:

1. Data Breach Exposes Millions of mSpy Spyware Customers ( Zack Whittaker , TechCrunch ) Looks like the spies got spied on! Millions of mSpy customers found their data exposed in a breach. It's the kind of irony that makes you want to say, “What goes around, comes around.” It’s a stark reminder that even those who pry into others’ lives need to guard their own secrets. #mSpyBreach #Irony #DataPrivacy
2. Hacktivists Release Two Gigabytes of Heritage Foundation Data ( AJ Vicens , CyberScoop ) Hacktivists dropped a data bomb on the Heritage Foundation, releasing two gigabytes of data. You’d think a conservative think tank would be better at conserving their own data! It’s a classic case of ‘information wants to be free’ – just maybe not this free. Maybe they should’ve taken their own advice on data security! #Hacktivism #DataLeak #CyberAttack
3. Nearly All AT&T Cell Customers’ Call and Text Records Exposed in a Massive Breach ( Matt Egan and Sean Lyngaas CNN ) AT&T customers, brace yourselves. Nearly all call and text records were exposed in a massive breach. It’s the telecom nightmare that keeps on dialing. Time to change those passwords and double-check those security settings. #ATTBreach #DataPrivacy #Telecom
4. Sophisticated Cybercriminals Are Targeting Apple iPhone Users ( Laura Bratton , Quartz ) Apple iPhone users, beware! Sophisticated cybercriminals are coming for your data with a vengeance. It’s time to up your security game and not just rely on that sleek design. Make sure your software is updated, and maybe reconsider that sketchy app. #iPhoneSecurity #Spyware #CyberThreat
5. Debt Collection Agency Says Data Breach Affected More Than 4 Million People ( Joe Warminsky , The Record from Recorded Future News ) Debt collectors are in debt themselves – data debt, that is. Over 4 million people were affected by a breach at a debt collection agency. Sometimes, the collectors need to pay up too. If you’ve dealt with them, keep an eye on your accounts for suspicious activity. #DataBreach #DebtCollection #PersonalData
6. ZDI Shames Microsoft for – Yet Another – Coordinated Vulnerability Disclosure Snafu? ( Jessica Lyons , The Register ) ZDI is at it again, calling out Microsoft for a coordinated vulnerability disclosure snafu. It’s like a soap opera that never ends – tune in next week for the next episode of “What Did Microsoft Miss This Time?” Microsoft, maybe it’s time to hire a few more eyes on those security checks. #Microsoft #Vulnerability #TechDrama
7. US Busts Russian AI-Driven Disinformation Operation ( David Perera , Information Security Media Group (ISMG) /Data Breach Today and Office of Public Affairs, U.S. Department of Justice ) The US has busted a Russian AI-driven disinformation operation. It’s cyber espionage meets sci-fi, and this time, the good guys won. This takedown shows that even sophisticated AI can’t outsmart dedicated cyber sleuths. and #Disinformation #AIOperation #CyberSpies
8. Rite Aid Admits 2.2 Million People’s Data Stolen by Criminals ( Connor Jones , The Register ) Rite Aid just got a big dose of its own medicine – 2.2 million people's data stolen. It’s a bitter pill to swallow for the pharmacy giant. Customers should monitor their credit reports and account statements closely. #DataBreach #CyberAttack #RiteAid
9. Brazil’s Spy Agency Accused of Illegally Targeting Bolsonaro’s Foes ( Tom Phillips , The Guardian ) Brazil’s spy agency is in hot water, accused of illegally targeting Bolsonaro’s foes. It’s a political thriller playing out in real-time, and the stakes couldn’t be higher. The scandal could have serious implications for the country’s intelligence policies. #SpyAgency #PrivacyViolation #PoliticalTargeting
10. Microsoft: Scattered Spider Widens Web With RansomHub & Qilin ( Kristina Beek , Dark Reading ) Scattered Spider is spinning a wider web, adding RansomHub & Qilin to its arsenal. Microsoft is on high alert, and so should you be. This cyber gang is proving to be as elusive and persistent as their arachnid namesake. #Ransomware #CyberThreat #Microsoft

Analysis

1. Health Brief: When Hospital Cyberattacks Compromise Care, Not Just Data ( Rachana Pradhan , Health Brief / The Washington Post ) Cyberattacks on hospitals are no longer just about data breaches; they’re impacting patient care too. It’s a stark reminder that in healthcare, cyber security is patient security. When systems go down, lives can be at risk, making this a critical issue for the industry. #HealthcareSecurity #PatientCare #CyberImpact
2. Major Health Data Breaches: How Are Trends Shifting in 2024? ( Marianne McGee ,Information Security Media Group (ISMG)/Data Breach Today) Health data breaches are evolving, and the trends are shifting in 2024. It’s a new era of cyber threats in the healthcare industry – time to stay ahead of the curve. The increase in breaches is pushing healthcare providers to rethink their security strategies. #HealthData #DataBreach #CyberTrends
3. White Paper: The Anatomy of a Deepfake: What if You Can’t Trust Your Own Eyes and Ears? ( Ofer Friedman et al, AU10TIX ) Deepfakes are getting more sophisticated, and the implications are chilling. This white paper dives into the anatomy of a deepfake and what it means for our perception of reality. As technology advances, the line between real and fake becomes dangerously blurred. #Deepfakes #DigitalDeception #CyberAwareness

That’s a wrap for this week’s cyber shenanigans! Stay secure, stay informed, and stay tuned for next week’s byte-sized bits and pieces!

[All links to the above referenced articles can be found in the comments below.]

#dataBreach #CISO #CSO #CTO #CIO #CEO #Compliance #Cyber #CyberAttack #CyberAwareness #CyberDefence #CyberNews #CyberResilience #Cybersecurity #CybersecurityCommunity #CyberCrime #CyberRisks #CyberThreats #CyberResilience #CyberAttacks #CyberAware #CyberRiskManagement #CybersecurityAwareness #CyberDefence #Data #DataCompliance #DataEthics #DataGovernance #DataSovereignty #DataPrivacy #DataProtection #DigitalLives #DigitalPrivacy #DMaaS #Empowerment #EmpowerWomenInTech #EmpowerWomenWithTech #Future #Governance #InformationSecurity #Infosec #MyDataMyChoice #OnlineSecurity #Privacy #PrivacyAwareness #PrivacyMatters #PrivacyRights #Safety #Security #Tech #Transparency #WomenInTech #WomenInCybersecurity #WomenIntoCybersecurity Women In Technology (WIT) Women in AI #WomenInData #WomenInData Cybersecurity Advisors Network (CyAN)