Welcome to today's issue of Secret CISO. We're diving into a series of data breaches that have left thousands of individuals and businesses vulnerable.

From the RIBridges data breach that has left many questioning the safety of their personal information, to the Brisbane council parking app breach that has left users fearing for their data, it's clear that cyber threats are becoming increasingly sophisticated and widespread. We're also looking at the surge in cyberattacks faced by bank customers, and the response from banks assuring customers of their data safety.

In the insurance sector, we examine the case of Noblr, a USAA Insurance subsidiary, which has agreed to pay $500,000 following a data breach linked to unemployment fraud. In the financial sector, a shocking 46% of institutions reported a data breach in the past 24 months, highlighting the urgent need for strengthened defenses. Meanwhile, X Corp. is facing a data breach lawsuit that a California federal judge has refused to dismiss. We also delve into the largest data breach of health information to date, affecting an estimated third of the U.S. population, and the Play ransomware group's threat to leak data following a breach at Krispy Kreme.

Finally, we explore the latest security research, including a new Gmail security warning for 2.5 billion users, and the discovery of a security flaw in India's Rapido that exposed user and driver data. Stay tuned for these stories and more in today's Secret CISO. Stay safe, stay informed.

Data Breaches

1. RIBridges Data Breach: Cybercriminals threatened to release personal data, including names, addresses, birth dates, and Social Security numbers. The breach has raised concerns about credit freezes and benefits. Source: Providence Journal
2. CellOPark Data Breach: Thousands of people who signed up for a Brisbane City Council parking app fear their personal data has been breached. Source: The Courier Mail
3. Noblr Data Breach: Noblr, a USAA Insurance subsidiary, will pay $500,000 following a data breach tied to unemployment fraud. The breach was part of an industry-wide scam to steal personal information. Source: Insurance Journal
4. Krispy Kreme Data Breach: The Play ransomware group has claimed responsibility for a data breach at Krispy Kreme and is threatening to leak the data within two days. Source: Hackread
5. Regional Care Data Breach: Lynch Carpenter, LLP is investigating claims against Regional Care related to a data breach. The information potentially impacted includes names, dates of birth, Social Security numbers, medical information, and health insurance information. Source: GlobeNewswire

Security Research

1. New Gmail Security Warning For 2.5 Billion—Second Attack Wave Incoming: Security researchers at Zimperium zLabs have reported a second wave of attacks targeting Gmail users. The attack is expected to impact a significant number of the platform's 2.5 billion users. Source: Forbes
2. India's Rapido Exposed User and Driver Data Through Leaky Website Feedback Form: A security flaw in Rapido's website feedback form was discovered by security researcher Renganathan P. The flaw exposed user and driver data, highlighting the need for improved data security measures. Source: TechCrunch
3. Rockwell PowerMonitor Vulnerabilities Allow Remote Hacking of Industrial Systems: Security researcher Vera Mens from Team82 discovered vulnerabilities in Rockwell PowerMonitor that could allow remote hacking of industrial systems. The vulnerabilities have since been responsibly disclosed. Source: SecurityWeek
4. Mindgard: Leading the Global Revolution in AI Security: Founded by Professor Peter Garraghan, Mindgard is addressing the unique vulnerabilities associated with AI systems. The company is leading the global revolution in AI security. Source: CEO Today
5. Windows 11 Privilege Escalation Vulnerability Lets Attackers Execute Code to Gain Access: Security researcher Alex Birnberg showcased an exploit in Windows 11 that allows attackers to execute code and gain access. The vulnerability highlights the need for improved security measures in operating systems. Source: GBHackers

Top CVEs

1. Cross-Privilege Spectre v2 Vulnerability (CVE-2024-2201): This vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel. It's a significant threat to data security and system integrity. Source: CVE-2024-2201
2. Insufficient Input Verification Vulnerability in Huawei Product (CVE-2022-32144): This vulnerability may lead to service abnormality if successfully exploited. It highlights the importance of robust input validation in maintaining system stability. Source: CVE-2022-32144
3. Path Traversal Attacks Vulnerability (CVE-2024-38819): Applications serving static resources through the functional web frameworks WebMvc.fn or WebFlux.fn are vulnerable to path traversal attacks. This vulnerability underscores the need for secure coding practices. Source: CVE-2024-38819
4. Improper Input Verification Vulnerability in Huawei Printer Product (CVE-2022-32204): This vulnerability may cause service abnormality if successfully exploited. It underscores the importance of proper input validation in maintaining system stability. Source: CVE-2022-32204
5. Command Injection Vulnerability in Huawei Terminal Printer Product (CVE-2022-32203): Successful exploitation could result in the highest privileges of the printer. This vulnerability highlights the potential severity of command injection attacks. Source: CVE-2022-32203

Sponsored by Wallarm API Security Solution

Final Words

And that's a wrap for today's edition of Secret CISO. We hope you found these updates insightful and useful in your ongoing efforts to safeguard your digital assets. Remember, in the world of cybersecurity, knowledge is power. Stay informed, stay vigilant, and most importantly, stay secure. If you found this newsletter helpful, why not share it with your colleagues and friends?

Let's spread the word and help each other stay one step ahead of the cybercriminals. Until next time, keep your data safe and your systems secure.

Your daily dose of cybersecurity news, delivered with love by your dedicated creative technical security copywriter.