December 3, 2024 at 01:14PM Veeam has issued security updates for two critical vulnerabilities in its Service Provider Console (VSPC), including a high-severity remote code execution flaw (CVE-2024-42448). Users of VSPC versions 7 and 8 are urged to upgrade to the latest patch to prevent exploitation, which has already been linked to ransomware attacks. ### … Read more
December 3, 2024 at 12:42PM The Council of the European Union has adopted two new cybersecurity laws to enhance cooperation among member states against cyberattacks. These laws establish a European Cybersecurity Alert System and amend the Cybersecurity Act to improve managed security services, ensuring better detection, response, and recovery from incidents. **Meeting Takeaways: EU Cybersecurity … Read more
December 3, 2024 at 12:21PM Germany has dismantled the largest online cybercrime marketplace, “Crimenetwork,” and arrested its administrator. The platform was involved in the sale of drugs, stolen data, and illegal services, highlighting efforts to combat online criminal activity. **Meeting Takeaways:** 1. **Action Taken**: German authorities successfully shut down the largest online cybercrime marketplace, called … Read more
December 3, 2024 at 11:24AM The “Venom Spider” malware-as-a-service platform has introduced new capabilities via the RevC2 backdoor and Venom Loader, detected in recent cyberattacks. Researchers report these tools can steal sensitive data and enable remote code execution. Future enhancements to this platform are expected, along with provided defenses against the malware. ### Meeting Takeaways: … Read more
December 3, 2024 at 11:08AM The FTC has banned data brokers Mobilewalla and Gravy Analytics from collecting and selling Americans’ sensitive location data, including visits to churches and healthcare facilities. They must erase historical data, establish sensitive location programs, and are prohibited from future sales of such data, following earlier actions against similar companies. ### … Read more
December 3, 2024 at 10:58AM The U.S. Commerce Department added 140 Chinese tech companies to its export controls, impacting chipmakers and equipment suppliers, including those based in other countries. This aims to restrict China’s military and tech advancements. In response, China criticized the U.S. for economic coercion, while Japanese chipmakers saw stock gains. ### Meeting … Read more
December 3, 2024 at 10:31AM Operation Passionflower has successfully dismantled MATRIX, an encrypted messaging platform for cybercriminals, following a major investigation across Europe. Authorities seized 40 servers, encrypted phones, and cash, arresting five suspects. Police monitored 2.3 million messages over three months, aiding further investigations into criminal activities linked to the platform. ### Meeting Takeaways … Read more
December 3, 2024 at 10:06AM Ransomware attacks on healthcare systems are escalating, revealing vulnerabilities that traditional patching cannot address. Healthcare organizations must adopt advanced threat protection, network segmentation, employee training, and robust incident response plans to enhance security. A comprehensive approach to cybersecurity, beyond mere patch management, is essential to safeguard patient data and services. … Read more
December 3, 2024 at 09:58AM Dan McInerney, a psychology graduate turned lead AI threat researcher, views hackers as puzzle solvers rather than merely curious disassemblers. His journey began with jailbreaking an iPod, leading him to a fulfilling career in computer security. McInerney emphasizes the thrill of solving problems over moral superiority in hacking. ### Meeting … Read more
December 3, 2024 at 09:06AM At AWS re:Invent 2024, new cloud security products were announced including AWS’s incident response service and enhanced threat detection for Amazon GuardDuty using AI. Wiz launched Wiz Defend for real-time threat detection, while Sweet Security introduced a unified platform. Skyhawk Security announced interactive detection capabilities for suspicious activities. ### Meeting … Read more