AT&T Data Breach Update: 51 Million Affected
AT&T revises data breach numbers from 73 million to 51 million individuals, with compromised data including full names, email addresses, social security numbers, and more. Customers offered one-year free credit monitoring and identity theft protection services.
Action Point: Affected individuals should take advantage of the offered credit monitoring and identity theft protection services.
AI-Crafted PowerShell Script Used in German Email Campaign
Threat actor deploys PowerShell script likely generated with AI assistance, targeting German organizations with the erotomonasis information stealer. Malicious code executed in memory, bypassing disk access.
Action Point: Organizations should enhance email security measures and educate employees on identifying phishing attempts.
Palo Alto Networks Patch Firewall Vulnerabilities
PANOS operating system receives patches for high-severity vulnerabilities, including denial-of-service flaws that could reboot firewalls and disrupt traffic processing.
Action Point: Ensure prompt installation of patches to mitigate potential exploitation of firewall vulnerabilities.
Azure Kubernetes Service Vulnerability
Unauthenticated threat actors could exploit CVE-2024-2900 to steal credentials and control confidential containers beyond the network stack in Azure Kubernetes Service.
Action Point: Azure Kubernetes Service users should apply patches immediately to prevent unauthorized access.
LG TV Vulnerabilities Expose Thousands to Attacks
Multiple vulnerabilities in LG webOS could allow attackers to add users, elevate access, drop malware, and monitor traffic on LG TVs. Around 87,500 devices worldwide are vulnerable.
Action Point: LG TV owners should update their devices to the latest software version to mitigate security risks.
CISA Releases Malware Analysis System for Public Use
CISA launches Malware Next Gen, allowing organizations to submit suspicious artifacts for automatic analysis, enhancing threat detection capabilities.
Action Point: Security teams can leverage CISA's Malware Next Gen to bolster malware detection and response efforts.
Cybercriminals Launder $22 Million Ransom
Cybercriminals implicated in Change Healthcare ransomware attack accelerate laundering efforts, moving funds through Bitcoin wallets to evade detection.
Action Point: Heightened vigilance and cooperation between law enforcement agencies needed to track and disrupt cybercriminal activities.
US, Japan, and Philippines Form Cybersecurity Defense Alliance
Strategic cyber threat sharing arrangement established between the US, Japan, and the Philippines to counter rising cyber threats from China, North Korea, and Russia.
Action Point: Strengthened collaboration and information sharing among allied nations to bolster cybersecurity defenses against common adversaries.
Conclusion:
The CyberHub Podcast delivers critical updates on cybersecurity threats, vulnerabilities, and collaborative defense efforts. Stay informed, stay cyber safe, and join the conversation on social media. Tune in for future episodes to stay ahead of evolving cyber threats.
Story Links:
https://www.securityweek.com/att-data-breach-update-51-million-customers-impacted/
https://therecord.media/lg-patches-vulnerabilities-tv
https://www.securityweek.com/cisa-releases-malware-next-gen-analysis-system-for-public-use/
https://cyberscoop.com/alphv-steps-up-laundering-of-change-healthcare-ransom-payments/
Apply now to be a featured partner on the show: https://www.cyberhubpodcast.com/contact
******
Listen here: https://linktr.ee/cyberhubpodcast
SubStack:
******
Website: https://www.cyberhubpodcast.com
Youtube: https://www.youtube.com/c/TheCyberHubPodcast
Rumble: https://rumble.com/c/c-1353861
Facebook: https://www.facebook.com/CyberHubpodcast/
Linkedin: https://www.linkedin.com/company/cyberhubpodcast/
Twitter: https://twitter.com/cyberhubpodcast
Instagram: https://www.instagram.com/cyberhubpodcast
The Hub of the Infosec Community.
Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.
🚨 Cyber News: AT&T Breach News, AI Written Malware, LG TV’s Hacked, ALPHV Launders Ransom Pay, Threat Intel Sharing Alliance