December 9, 2024 at 05:59PM At the Fall Summit 2024 for FS-ISAC, I highlighted the importance of drawing inspiration from literature, poetry, and art for cybersecurity. Engaging with diverse sources can foster creativity and innovation, enabling security professionals to convey messages more effectively and address challenges with fresh perspectives. Embrace broader insights for growth. ### … Read more
December 9, 2024 at 05:44PM Microsoft issued guidance to mitigate NTLM relay attacks following the discovery of a zero-day bug affecting all Windows versions, enabling credential theft through malicious files. The bug’s fix is anticipated in April. Organizations are advised to enable Extended Protection for Authentication (EPA) to strengthen defenses against these vulnerabilities. ### Meeting … Read more
December 9, 2024 at 05:33PM A vulnerability in OpenWrt’s Attended Sysupgrade feature for creating custom firmware images may have enabled the distribution of malicious firmware packages, posing a security threat to users. **Meeting Notes Takeaways:** 1. **Issue Identified**: A flaw exists in OpenWrt’s Attended Sysupgrade feature. 2. **Impact**: The flaw could potentially enable the distribution … Read more
December 9, 2024 at 04:24PM Five suspects were arrested in Belgium for a large-scale phishing operation across Europe, deceiving victims into sharing bank information. They stole millions, funding a lavish lifestyle, including luxury goods and nights out. Law enforcement continues to pursue similar cybercriminals, emphasizing a crackdown on those flaunting their crimes on social media. … Read more
December 9, 2024 at 03:36PM Microsoft has partially removed the compatibility hold on the Windows 24H2 update for systems with certain Ubisoft games, following bug fixes by Ubisoft that addressed crashes, freezes, and audio issues. **Meeting Takeaways:** 1. **Microsoft Update:** A compatibility hold on the Windows 24H2 update has been partially lifted. 2. **Affected Systems:** … Read more
December 9, 2024 at 03:29PM Radiant Capital attributed a $50 million cryptocurrency heist to North Korean hackers known as Citrine Sleet, following a cyberattack on October 16. The attack involved sophisticated malware evading security measures. Radiant is working with U.S. law enforcement to recover stolen funds and emphasizes the need for improved transaction security. **Meeting … Read more
December 9, 2024 at 03:03PM Researchers from Mandiant have demonstrated a method to bypass browser isolation using QR codes, allowing attackers to transmit commands to compromised devices. This technique exploits remote rendering processes to convey data visually, though it faces limitations, including latency and QR code size constraints. Mandiant still endorses browser isolation as a … Read more
December 9, 2024 at 02:19PM A new report by Fortress Information Security reveals significant vulnerabilities in software powering U.S. utilities, with hundreds highly exploitable. 25% of components used are from Chinese developers, posing security risks. The report emphasizes the need to identify and eliminate compromised code to safeguard critical infrastructure from potential attacks. ### Meeting … Read more
December 9, 2024 at 02:08PM Chinese cyberspies, part of the Salt Typhoon campaign, reportedly recorded calls of senior US political figures, according to Anne Neuberger, deputy national security advisor. Eight US telecom providers were compromised, impacting government officials and corporate intellectual property. A Senate hearing will address the risks from such cyber intrusions. ### Meeting … Read more
December 9, 2024 at 01:39PM Microsoft has blocked the Windows 11 24H2 update on devices with outdated Google Workspace Sync due to Outlook launch issues. Users must update to version 4.3.68.0 to resolve the problem. If issues persist after the update, they should contact Google Workspace Support. Other safeguard holds exist for various incompatible applications … Read more