CISO Talk by James Azar
CyberHub Podcast
🚨 Patch Tuesday Highlights and Actions, Post Quantum Standards Released by NIST, DDoS Surge
0:00
Current time: 0:00 / Total time: -19:18
-19:18

🚨 Patch Tuesday Highlights and Actions, Post Quantum Standards Released by NIST, DDoS Surge

Today’s top cybersecurity news and the latest threats from Practicing CISO James Azar, tune in to hear how practitioner’s breakdown the latest to bolster their cybersecurity programs

In the latest CyberHub podcast episode, host James Azar walks listeners through the significant security updates released on Patch Tuesday, detailing critical vulnerabilities, and providing insight into the ongoing challenges faced by security teams.

The episode also touches on major developments in quantum cryptography standards, the rise in DDoS attacks, and a legal battle involving Delta Airlines and cybersecurity firms.

👀 SHOW Supporters:

Today’s Episode is supported by our friends at Nudge Security free 14-day trial to all CyberHub Podcast community members at https://www.nudgesecurity.com/cyberhub

Patch Tuesday Overview

Microsoft Vulnerabilities

Microsoft addressed 90 vulnerabilities, including six actively exploited zero-days. Notable vulnerabilities include CVE-2024-38178 (Memory Corruption in Windows Scripting Engine) and CVE-2024-38189 (Remote Code Execution in Microsoft Project).

Action Items:

  • Prioritize patching, especially for vulnerabilities with high CVSS scores and those already exploited in the wild.

  • Implement team coordination for patch management, ensuring all critical systems are updated promptly.

Intel and AMD Updates

Intel released 43 new advisories covering 70 security holes, while AMD addressed 46 vulnerabilities. Both companies highlighted the importance of addressing high-severity flaws, particularly those that could lead to privilege escalation or denial of service.

Action Items:

  • Ensure firmware updates are applied to Intel and AMD products.

  • Review security advisories for any processors or firmware in use within your organization.

SAP Vulnerabilities

SAP released 17 fixes, including a critical authentication bypass (CVE-2024-41730) that could allow full system compromise.

Action Items:

  • Update SAP systems immediately, focusing on critical vulnerabilities to prevent potential exploitation.

Industrial Control Systems (ICS) Updates

Siemens, Schneider Electric, Rockwell Automation, and Aveva released patches for numerous vulnerabilities. Siemens, in particular, addressed a critical flaw (CVE-2023-44487) related to a rapid reset DDoS attack.

Action Items:

  • Apply patches to ICS environments, prioritizing those that impact critical infrastructure.

  • Collaborate with OT teams to minimize downtime during patching.

Fortinet and Zoom Vulnerabilities

Fortinet addressed issues in FortiOS and other products, while Zoom patched 15 vulnerabilities, including two high-severity flaws in workplace applications.

Action Items:

  • Ensure that Zoom and Fortinet products are updated, focusing on high-severity vulnerabilities that could impact business operations.

Ivanti Critical Flaw

Ivanti urged customers to patch a critical authentication bypass in their Virtual Traffic Manager appliance (CVE-2024-75903).

Action Items:

  • Apply the patch immediately and consider limiting admin access to internet-exposed VTM devices.

    CISO Talk by James Azar is a reader-supported publication. To receive new posts and support my work, consider becoming a free or paid subscriber.

NIST Post-Quantum Cryptography Standards

NIST formally published three post-quantum cryptography standards, marking a significant step towards securing data against future quantum computing threats. The three standards are ML-KEM (formerly better known as Kyber), ML-DSA (formerly better known as Dilithium), and SLH-DSA (better known as Sphincs+). A fourth, FN-DSA (known as Falcon) has been chosen for future standardization.

GCore Report on DDoS Attacks

GCore reported a 46% increase in DDoS attacks in the first half of 2024, with the gaming and gambling industries being the most targeted.

Action Items:

  • Strengthen DDoS defenses, particularly in industries like gaming, financial services, and e-commerce.

  • Review and update incident response plans to address the growing threat of DDoS attacks.

SolarWinds Legal Battle

SolarWinds and federal regulators are considering a settlement in a case related to misleading investors about the company's cybersecurity practices.

Delta Airlines and CrowdStrike Dispute

Delta Airlines reported a $380 million revenue loss due to an outage caused by a CrowdStrike update, leading to the cancellation of 7,000 flights. Delta is pursuing legal claims against CrowdStrike and Microsoft.

Final Thoughts:

The episode concludes with a reminder of the importance of prioritizing patches and collaborating across teams to ensure vulnerabilities are addressed effectively.

The growing complexity of the threat landscape, combined with the ever-increasing volume of updates, underscores the need for a proactive and coordinated approach to cybersecurity.

Stay tuned for more updates on quantum cryptography and other emerging threats in upcoming episodes.

Share

✅ Story Links: 

https://www.securityweek.com/microsoft-warns-of-six-windows-zero-days-being-actively-exploited/

https://www.securityweek.com/ics-patch-tuesday-advisories-released-by-siemens-schneider-rockwell-aveva/

https://www.securityweek.com/chipmaker-patch-tuesday-intel-amd-address-over-110-vulnerabilities/

https://www.securityweek.com/fortinet-zoom-patch-multiple-vulnerabilities/

https://www.bleepingcomputer.com/news/security/critical-sap-flaw-allows-remote-attackers-to-bypass-authentication/

https://www.bleepingcomputer.com/news/security/ivanti-warns-of-critical-vtm-auth-bypass-with-public-exploit/

https://www.securityweek.com/post-quantum-cryptography-standards-officially-announced-by-nist-a-history-and-explanation/

https://thehackernews.com/2024/08/ddos-attacks-surge-46-in-first-half-of.html

https://www.cybersecuritydive.com/news/delta-crowdstrike-microsoft-lawsuit/723837/

https://www.bankinfosecurity.com/blogs/sec-solarwinds-eye-settlement-talks-in-cyber-fraud-case-p-3689

🔔 Subscribe now for the latest insights from industry leaders, in-depth analyses, and real-world strategies to secure your digital world. https://www.youtube.com/@TheCyberHubPodcast/?sub_confirmation=1  

✅ Important Links to Follow: 

👉Substack:

👉Listen here: https://linktr.ee/cyberhubpodcast   

Stay Connected With Us.

👉Facebook: https://www.facebook.com/CyberHubpodcast/ 

👉LinkedIn: https://www.linkedin.com/company/cyberhubpodcast/ 

👉Twitter (X): https://twitter.com/cyberhubpodcast 

👉Instagram: https://www.instagram.com/cyberhubpodcast 

✅ For Business Inquiries:  info@cyberhubpodcast.com

=============================

About The CyberHub Podcast.

The Hub of the Infosec Community. 

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure. 

Tune in to our podcast Monday through Thursday at 9AM EST for the latest news.

Discussion about this podcast

CISO Talk by James Azar
CyberHub Podcast
Today’s top cybersecurity news and the latest from Practicing CISO James Azar, tune in to hear how practitioners read, view and work after hearing the latest headlines and how these stories help keep practitioners sharp and ready.