🚨 Cyber News: AT&T Breach News, AI Written Malware, LG TV’s Hacked, ALPHV Launders Ransom Pay, Threat Intel Sharing Alliance

CyberHub Podcast

1×

0:00

Current time: 0:00 / Total time: -13:51

-13:51

🚨 Cyber News: AT&T Breach News, AI Written Malware, LG TV’s Hacked, ALPHV Launders Ransom Pay, Threat Intel Sharing Alliance

Today’s top cybersecurity news and the latest threats from Practicing CISO James Azar, tune in to hear how practitioners breakdown the latest to bolster their cybersecurity programs

James Azar

Apr 11, 2024

Transcript

AT&T Data Breach Update: 51 Million Affected

AT&T revises data breach numbers from 73 million to 51 million individuals, with compromised data including full names, email addresses, social security numbers, and more. Customers offered one-year free credit monitoring and identity theft protection services.

Action Point: Affected individuals should take advantage of the offered credit monitoring and identity theft protection services.

AI-Crafted PowerShell Script Used in German Email Campaign

Threat actor deploys PowerShell script likely generated with AI assistance, targeting German organizations with the erotomonasis information stealer. Malicious code executed in memory, bypassing disk access.

Action Point: Organizations should enhance email security measures and educate employees on identifying phishing attempts.

Palo Alto Networks Patch Firewall Vulnerabilities

PANOS operating system receives patches for high-severity vulnerabilities, including denial-of-service flaws that could reboot firewalls and disrupt traffic processing.

Action Point: Ensure prompt installation of patches to mitigate potential exploitation of firewall vulnerabilities.

Azure Kubernetes Service Vulnerability

Unauthenticated threat actors could exploit CVE-2024-2900 to steal credentials and control confidential containers beyond the network stack in Azure Kubernetes Service.

Action Point: Azure Kubernetes Service users should apply patches immediately to prevent unauthorized access.

LG TV Vulnerabilities Expose Thousands to Attacks

Multiple vulnerabilities in LG webOS could allow attackers to add users, elevate access, drop malware, and monitor traffic on LG TVs. Around 87,500 devices worldwide are vulnerable.

Action Point: LG TV owners should update their devices to the latest software version to mitigate security risks.

CISA Releases Malware Analysis System for Public Use

CISA launches Malware Next Gen, allowing organizations to submit suspicious artifacts for automatic analysis, enhancing threat detection capabilities.

Action Point: Security teams can leverage CISA's Malware Next Gen to bolster malware detection and response efforts.

Cybercriminals Launder $22 Million Ransom

Cybercriminals implicated in Change Healthcare ransomware attack accelerate laundering efforts, moving funds through Bitcoin wallets to evade detection.

Action Point: Heightened vigilance and cooperation between law enforcement agencies needed to track and disrupt cybercriminal activities.

US, Japan, and Philippines Form Cybersecurity Defense Alliance

Strategic cyber threat sharing arrangement established between the US, Japan, and the Philippines to counter rising cyber threats from China, North Korea, and Russia.

Action Point: Strengthened collaboration and information sharing among allied nations to bolster cybersecurity defenses against common adversaries.

Conclusion:

The CyberHub Podcast delivers critical updates on cybersecurity threats, vulnerabilities, and collaborative defense efforts. Stay informed, stay cyber safe, and join the conversation on social media. Tune in for future episodes to stay ahead of evolving cyber threats.

Discussion about this podcast

CyberHub Podcast

Today’s top cybersecurity news and the latest from Practicing CISO James Azar, tune in to hear how practitioners read, view and work after hearing the latest headlines and how these stories help keep practitioners sharp and ready.

Listen on