Good day, Secret CISO subscribers! Today's issue is packed with crucial updates on the latest data breaches and security risks. We start with the unfortunate news of a data breach at Randolph-Brooks Federal Credit Union, affecting 4,600 customers and potentially exposing personal banking information. In response to a similar incident, Loandepot is planning to spend $9.3 million on security upgrades, in addition to a $25 million fund for data breach victims.

The American Addiction Centers also suffered a data breach, exposing personal information, and Marriott has been ordered to implement better security measures after a breach affected 344 million customers. In the realm of IoT and ransomware, health systems are feeling unprepared, with 51% lacking the necessary technologies for breach prevention. Deloitte and ABC Legal Services have also recently disclosed data breaches, compromising sensitive personal information. On the legislative front, new regulations are shaping the compliance landscape, requiring better security features in devices procured by the government. We also delve into the top data breaches of 2024, the impact of the Capita Data Breach of 2023, and the rise of novel malware variants. In the research section, we explore the intersection of AI and OSINT, the role of social science in water security, and the shift in the spyware industry.

Finally, we look at the top data center security stories of 2024, the case for automated network security policy management, and the future of cybersecurity in the year ahead. Stay tuned for more updates and stay safe!

Data Breaches

1. RBFCU Data Breach: Randolph-Brooks Federal Credit Union reported a data breach that potentially exposed personal banking information of its customers. The breach has affected around 4,600 customers, raising concerns about the security measures in place. Source: San Antonio Express-News
2. Loandepot's Data Breach Settlement: Loandepot is planning to settle data breach claims by spending $9.3 million on security upgrades and setting up a $25 million fund for victims of the breach. The details of the breach and the number of victims have not been disclosed. Source: National Mortgage News
3. Deloitte Data Breach: Deloitte recently disclosed a data breach that compromised sensitive personal information. The extent of the breach and the number of affected individuals have not been revealed. Source: Markets Insider
4. ABC Legal Services Data Breach: ABC Legal Services, Inc. confirmed a data breach that compromised sensitive information. The company has not disclosed the number of affected individuals or the extent of the breach. Source: Markets Insider
5. Change Healthcare Data Breach: Nebraska's Attorney General is suing Change Healthcare over a data breach. The stolen data included Social Security numbers, driver's license numbers, health insurance information, medical records, billing details, and more. Source: Insurance Journal

Security Research

1. Novel BellaCiao malware variant launched by Charming Kitten: A new variant of the BellaCiao malware has been launched by the Iranian cyber espionage group, Charming Kitten. The malware is designed to steal sensitive information from infected systems. Source: SC Media
2. IoT and ransomware are big security risks, and health systems feel unprepared: A new report highlights the growing threat of IoT and ransomware attacks on health systems. The report suggests that cybercriminals are finding it easier to locate exposed IoT devices and launch attacks. Source: Healthcare IT News
3. Fresh Study Reveals the Cloud Security Market Set to Reach US$ 84.77 Billion by 2028: A new study by Stratview Research predicts that the global Cloud Security Market will grow at an annual rate of 13.7%, reaching US$ 84.77 billion by 2028. Source: WhatTech
4. Cyberattack defers Japan Airlines flights: A cyberattack has caused delays to Japan Airlines flights. The vulnerability was reported by Horizon3.ai security researcher Zach Hanley. Source: SC Media
5. Phishing Scam Targets Web3 Users Through Google Ads: A phishing scam targeting Web3 users through Google Ads has been discovered. Security researchers traced the issue to malicious advertisements. Source: Binance

Top CVEs

1. CVE-2024-12928: A critical vulnerability was found in code-projects Simple Admin Panel 1.0, affecting an unknown part. The manipulation of the argument c_name leads to SQL injection. The attack can be initiated remotely. Source: CVE-2024-12928
2. CVE-2024-12935: A critical vulnerability was found in code-projects Simple Admin Panel 1.0. This vulnerability affects unknown code of the file editItemForm.php. The manipulation of the argument record leads to SQL injection. The attack can be initiated remotely. Source: CVE-2024-12935
3. CVE-2024-12938: A critical vulnerability was found in code-projects Simple Admin Panel 1.0. This vulnerability affects an unknown functionality of the file updateOrderStatus.php. The manipulation of the argument record leads to SQL injection. The attack can be launched remotely. Source: CVE-2024-12938
4. CVE-2024-12937: A critical vulnerability was found in code-projects Simple Admin Panel 1.0. This vulnerability affects an unknown function of the file addVariationController.php. The manipulation of the argument qty leads to SQL injection. The attack can be launched remotely. Source: CVE-2024-12937
5. CVE-2024-12936: A critical vulnerability was found in code-projects Simple Admin Panel 1.0. This issue affects some unknown processing of the file catDeleteController.php. The manipulation of the argument record leads to SQL injection. The attack may be initiated remotely. Source: CVE-2024-12936

Sponsored by Wallarm API Security Solution

Final Words

And that's a wrap for today's edition of Secret CISO. As we've seen, data breaches continue to be a pervasive issue, affecting a wide range of sectors from banking to healthcare. It's a stark reminder of the importance of robust cybersecurity measures and the need for constant vigilance. Remember, cybersecurity isn't just an IT issue, it's a business issue. It's about protecting your customers, your reputation, and ultimately, your bottom line. So, let's continue to stay informed, stay vigilant, and most importantly, share our knowledge with others.

If you found today's newsletter helpful, please consider sharing it with your colleagues and friends. Together, we can make the digital world a safer place. Stay safe and see you in the next edition of Secret CISO!