#DataProtection

Synology, QNAP, TrueNAS Address Vulnerabilities Exploited at Pwn2Own Ireland

by

October 30, 2024 at 04:37AM Synology, QNAP, and TrueNAS are addressing vulnerabilities that were exploited at Pwn2Own Ireland 2024 by implementing patches and mitigation strategies. **Meeting Takeaways:** 1. **Recent Vulnerabilities**: Synology, QNAP, and TrueNAS have acknowledged vulnerabilities that were exploited during the Pwn2Own Ireland 2024 event. 2. **Action Taken**: Each company has begun implementing patches … Read more

Massive PSAUX ransomware attack targets 22,000 CyberPanel instances

by

October 29, 2024 at 03:17PM Over 22,000 CyberPanel instances faced a critical vulnerability exploited in a PSAUX ransomware attack, taking most offline. Security flaws in versions 2.3.6 and possibly 2.3.7 were identified, including defective authentication and command injection. Users are urged to upgrade immediately to mitigate risks and access potential decryption aid. ### Meeting Takeaways: … Read more

QNAP fixes NAS backup software zero-day exploited at Pwn2Own

by

October 29, 2024 at 01:37PM QNAP addressed a critical zero-day vulnerability (CVE-2024-50388) in HBS 3 Hybrid Backup Sync, exploited at Pwn2Own Ireland 2024. The patch is available in version 25.1.1.673 and later. This follows a history of security challenges for QNAP devices, often targeted by ransomware gangs due to sensitive file storage. ### Meeting Takeaways: … Read more

The story behind the Health Infrastructure Security and Accountability Act

by

October 29, 2024 at 12:11PM In February 2024, Change Healthcare suffered a ransomware attack, impacting 110 million individuals and exposing sensitive data. The incident prompted U.S. Senate legislation, the Health Infrastructure Security and Accountability Act (HISAA), aiming to enforce stricter cybersecurity standards in healthcare. HISAA includes compliance audits and funding for enhanced security. ### Meeting … Read more

FBI, Partners Disrupt RedLine, Meta Stealer Operations

by

October 29, 2024 at 10:36AM The FBI and international agencies disrupted cybercriminal activities tied to the RedLine and Meta stealers, seizing servers and source code under Operation Magnus. Developer Maxim Rudometov faces multiple charges. The malware, responsible for massive credential theft, is sold via forums and Telegram, enabling ongoing cybercrime. Investigations continue. ### Meeting Takeaways: … Read more

RedLine and Meta Infostealers Disrupted by Law Enforcement

by

October 29, 2024 at 09:57AM Authorities have disrupted RedLine and Meta infostealers by executing server shutdowns, seizing domains, and making arrests. This operation highlights ongoing efforts to combat cybercrime. The announcement was made public in a SecurityWeek post. ### Meeting Notes Takeaways: 1. **Operation Overview**: Authorities have successfully executed a takedown operation targeting the RedLine … Read more

Researchers Uncover Vulnerabilities in Open-Source AI and ML Models

by

October 29, 2024 at 09:36AM Over three dozen security vulnerabilities in open-source AI/ML models have been disclosed, with significant risks including remote code execution and data theft. Key flaws include IDOR vulnerabilities in Lunary and a critical path traversal issue in ChuanhuChatGPT. Users are urged to update their systems for protection against potential attacks. ### … Read more

Russian charged by U.S. for creating RedLine infostealer malware

by

October 29, 2024 at 09:07AM The U.S. charged Russian national Maxim Rudometov, a key figure in the RedLine malware operation, which stole credentials and financial data. Part of an international crackdown, authorities disrupted the malware platform and arrested two in Belgium. Rudometov faces multiple charges with potential maximum sentences totaling 35 years in prison. ### … Read more

Canada Says Chinese Reconnaissance Scans Targeting Government Organizations

by

October 29, 2024 at 06:01AM Canada reports that several government and critical infrastructure entities have been subjected to Chinese reconnaissance scans, indicating heightened cyber threats. ### Meeting Takeaways: 1. **Threat Acknowledgment**: Canada has reported that several government and critical infrastructure organizations are under threat from Chinese reconnaissance scans. 2. **Nature of Threat**: The reconnaissance scans … Read more

New tool bypasses Google Chrome’s new cookie encryption system

by

October 28, 2024 at 05:08PM A cybersecurity researcher, Alexander Hagenah, has released a tool that bypasses Google’s App-Bound encryption, enabling the extraction of saved credentials from Chrome. While it reflects a method similar to existing infostealer malware, its public availability increases risks for users storing sensitive data in the browser. Google is aware of the … Read more