Secret CISO 11/3: Israeli intelligence leak probe, SETU cybersecurity breach, Chinese Quad7 botnet attacks, Okta reveals Canadian data risks
Good morning, Secret CISO readers! Today's newsletter is packed with critical updates from the world of cybersecurity.
We start with a major security breach in Israel, where authorities are investigating a suspected intelligence leak by a Netanyahu aide. Meanwhile, the SETU cybersecurity breach is being swiftly addressed, with no evidence of compromised data so far. In other news, Chinese threat actors are using the Quad7 botnet to carry out password-spray attacks, and a surprising 32% of Canadian small businesses have experienced a security breach due to the ambiguous use of emojis at work. AI is making headlines too, with voice-enabled ChatGPT-4o automation tools being used for autonomous voice-based scams.
On the flip side, the US Energy Sector is facing a high risk of cyber attacks, with 45% of security breaches in the past year due to third-party vulnerabilities. In the US, millions are affected by the largest data breach, and there's a final call for Americans to secure their portion of a $29.55 million payout after a data leak. We also delve into the rising security debt threatening the stability of the finance sector, and the alarming rise in crypto security incidents leading to significant losses.
Stay tuned for more updates, including an investigation into the Star Health data breach, new Microsoft Windows attacks, and the impact of AI-driven 0-Day detection. Stay safe and informed, Secret CISO readers!
Data Breaches
- Israeli authorities probe suspected Gaza intelligence leak by Netanyahu aide: A number of suspects have been arrested in Israel in connection with a suspected security breach involving a leak of intelligence related to Gaza. The investigation is ongoing. Source: Reuters
- SETU cybersecurity breach must be fixed before it spreads, expert says: A cybersecurity breach at SETU has raised concerns among experts, who are urging for immediate action to prevent the spread of the breach. There is currently no evidence to suggest any data or information has been compromised. Source: Newstalk
- Chinese threat actors use Quad7 botnet in password-spray attacks: Microsoft has warned that Chinese threat actors are using the Quad7 botnet to carry out password-spray attacks and steal credentials. The company is urging users to take necessary precautions. Source: Security Affairs
- Millions Affected by Largest US Data Breach: A massive data breach in the US has reportedly affected millions of people. The incident highlights the increasing frequency and scale of data breaches in the digital age. Source: La Grada
- Crypto security incidents in October lead to $129M in losses: CertiK: Security incidents including exit scams, flash loan attacks, and exploits led to crypto losses totaling $129.6 million in October, according to data compiled by CertiK. The figures underscore the growing security challenges in the crypto space. Source: Cointelegraph
Security Research
- War on Gaza having 'irreparable' impact on Israel, expert says: Security expert Ofer Shelah warns that the ongoing war in Gaza is causing significant damage to Israel's military, economy, and overall well-being, with unemployment rates rising. Source: The New Arab
- Independent satellites for overseas missions needed: Institute for National Defense and Security Research associate researcher Tzeng Yi-suo emphasizes the need for independent satellites for overseas missions, highlighting the strategic importance of space technology in national security. Source: Taipei Times
- New discoveries in space-bred rice mark progress in space food security research: Researchers at the Chinese Academy of Sciences have made significant strides in space food security research, with new discoveries in space-bred rice. Source: Bastille Post
- George Mason's Moinul Hossain Joins ARL-Sponsored Research on 5G Security for Military Use: The collaboration between George Mason, UMD, and ARL underscores the critical role of academic research in strengthening national security, with a focus on 5G security for military use. Source: India Education Diary
- Is AI-Driven 0-Day Detection Here?: AI-assisted security research has been quietly advancing since early 2023, with researchers at DARPA and ARPA-H's Artificial Intelligence Exploration (AIE) program leading the way in AI-driven 0-day detection. Source: Slashdot
Top CVEs
- CVE-2024-10701: A significant vulnerability has been discovered in PHPGurukul Car Rental Portal 1.0. This issue, rated as problematic, affects an unknown process in the /search.php file. The manipulation of the 'searchdata' argument can lead to cross-site scripting, and the attack can be initiated remotely. The exploit has been publicly disclosed. Source: Vulners.
- CVE-2024-10702: A critical vulnerability has been identified in code-projects Simple Car Rental System 1.0. An unknown function of the /signup.php file is affected. The manipulation of the 'fname' argument can lead to SQL injection. The attack can be launched remotely, and the exploit has been publicly disclosed. Source: Vulners.
Sponsored by Wallarm API Security Solution
Final Words
As we wrap up today's edition of Secret CISO, we're reminded of the ever-evolving landscape of cybersecurity. From the suspected intelligence leak in Gaza, to the swift action of IT teams in the face of a breach, and the alarming rise of AI-enabled scams, it's clear that vigilance and proactive measures are our best defense. The world of cybersecurity is a complex web of threats and solutions, and it's our mission to untangle it for you, providing the most relevant and timely information.
We hope you find our daily insights valuable in navigating your own cybersecurity challenges. Remember, cybersecurity is not just an IT issue, but a shared responsibility. So, don't keep this knowledge to yourself.
Share Secret CISO with your friends and colleagues, and let's build a safer digital world together.
Stay safe, stay informed, and we'll see you in the next edition of Secret CISO.