June 21, 2024 at 09:21AM
SecurityWeek’s cybersecurity news roundup offers a concise collection of notable stories, including cybercriminals demanding ransom from Snowflake customers, widespread API security issues, NSO Group targeting military and government officials, Google switching to Bugcrowd for bug bounty payments, and vulnerabilities affecting Microsoft and other platforms. CISA has also released new guidance, and consulting companies have been penalized for cybersecurity failures. Additionally, an analysis of phishing-as-a-service platform ONNX Store and ongoing LogoFAIL vulnerabilities in consumer and enterprise devices are highlighted. Finally, Google’s Project Zero has introduced a new framework for vulnerability research, and a data leakage vulnerability has been discovered in Microsoft Power BI.
Based on the meeting notes, here are the key takeaways:
1. Cybercriminals are demanding ransom payments from hacked Snowflake customers, with the amounts ranging from $300,000 to $5 million.
2. A survey by Salt Security revealed that a majority of organizations have experienced security problems in production APIs.
3. The NSO Group admitted that its spyware products may target military and government officials, which has implications for privacy and security concerns.
4. Google will now use Bugcrowd for bug bounty payments for its bug hunting community.
5. There is a vulnerability allowing email spoofing of Microsoft employee addresses, posing a risk for potential phishing attacks.
6. The EU has postponed a vote on a law that would require encrypted messaging services to scan media files and links for potential child abuse materials.
7. CISA has released guidance to help small and medium-sized businesses adopt Single Sign-On (SSO) for improved security.
8. Two consulting companies, Guidehouse and Nan McKay, have paid a total of more than $11 million for failing to meet cybersecurity requirements when fulfilling government contracts.
9. EclecticIQ has conducted an analysis of a phishing-as-a-service platform called ONNX Store used by cybercriminals in campaigns targeting financial institutions.
10. Firmware security company Binarly disclosed the details of an attack method dubbed LogoFAIL, which can compromise consumer and enterprise devices.
11. Google’s Project Zero has unveiled Project Naptime, a framework for LLM-assisted vulnerability research, which can achieve significantly better performance in vulnerability discovery.
12. Nokod has found a data leakage vulnerability in the Microsoft Power BI service, potentially affecting tens of thousands of organizations.
Let me know if there is anything else you would like to highlight or if there are specific actions needed based on these takeaways.