Hello there, Secret CISO readers. Today's newsletter is a wake-up call for all of us. AT&T, one of the world's largest telecommunications companies, has confirmed a massive data breach affecting 73 million current and former customers. The leaked information includes sensitive data such as social security numbers and passcodes, found on the dark web. The breach has raised serious questions about the security measures in place and the potential impact on affected customers. AT&T has begun notifying customers and resetting millions of passcodes, but the damage may already be done. In other news, security researchers have discovered vulnerabilities in electronic tachographs that could be exploited by hackers. Meanwhile, Elon Musk has sparked a debate about the potential risks of AI, suggesting there's a 20% chance it could destroy humanity. We'll also delve into the world of cybersecurity research, looking at the latest AI vulnerability researcher integrated with the Binary Ninja decompiler. Plus, we'll explore the challenges faced by postdocs in academia, particularly in terms of job security. Stay tuned for more details on these stories and other important cybersecurity updates. Stay safe, stay informed.

Security Research

1. AT&T confirms data leak affecting 73 million customers: AT&T confirmed a data leak impacting 73 million customers. The leaked data includes encrypted passcodes, which a security researcher claimed could be accessed without cracking the encryption. Source: Techspot
2. Vultur banking malware poses as McAfee security app: Security researchers discovered a new version of the Vultur banking trojan for Android, which disguises itself as a McAfee security app. This highlights the increasing sophistication of mobile malware. Source: CISO Series
3. STEMming the Crisis: Immigration and the U.S. National Security Talent Base: The U.S. government is funding research by promising minds from around the world, educated at America's top universities. This strategy aims to bolster the U.S. national security talent base. Source: War on the Rocks
4. Vulnerability in tachograph could be infected by worm: Researchers found vulnerabilities in electronic tachographs (ELDs) that could potentially be exploited by hackers. This underscores the need for robust cybersecurity measures in all digital devices. Source: B2B Cyber Security
5. 'Dark web leak' hits AT&T users as millions of Social Security numbers released: A security researcher analyzed leaked data from AT&T and found that the encrypted passcodes are easy to crack. This incident highlights the ongoing threat of data breaches and the importance of strong encryption. Source: The Mirror

Top CVEs

1. CVE-2024-22353: IBM WebSphere Application Server Liberty versions 17.0.0.3 through 24.0.0.3 are vulnerable to a denial of service attack. A remote attacker could exploit this vulnerability by sending a specially crafted request, causing the server to consume excessive memory resources. Source: CVE-2024-22353
2. CVE-2024-25027: IBM Security Verify Access 10.0.6 could disclose sensitive snapshot information due to missing encryption. This vulnerability could potentially allow an attacker to gain access to sensitive information. Source: CVE-2024-25027
3. CVE-2023-50959: IBM Cloud Pak for Business Automation versions 18.0.0 through 23.0.2 may allow end users to query more documents than expected from a connected Enterprise Content Management system when configured to use a system account. This could potentially lead to unauthorized access to sensitive information. Source: CVE-2023-50959
4. CVE-2024-2278: Themify WordPress plugin before 1.4.4 does not sanitize and escape some of its Filters settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed. Source: CVE-2024-2278
5. CVE-2024-31092: Improper Neutralization of Input During Web Page Generation vulnerability in Philip M. Hofer (Frumph) Comic Easel allows Reflected XSS. This vulnerability could potentially allow an attacker to inject arbitrary web script or HTML. Source: CVE-2024-31092

Final Words

And that's a wrap for today's edition of Secret CISO. We hope you found our coverage of the AT&T data breach and other security news enlightening and useful. Remember, knowledge is power, especially when it comes to cybersecurity. If you've been affected by the AT&T breach, take immediate steps to secure your information. And as always, stay vigilant. Cyber threats are ever-evolving, but with the right information, you can stay one step ahead. If you found this newsletter helpful, why not share it with your colleagues and friends? Let's spread the word and foster a culture of cybersecurity awareness. After all, in this interconnected digital world, we're all in this together. Stay safe, stay informed, and see you in the next edition of Secret CISO.