Secret CISO 4/9: Global Data Breaches Surge, SaaS Security Checklist, Cybersecurity Compliance in India, New Ransomware Gang Targets Russian Businesses

Secret CISO 4/9: Global Data Breaches Surge, SaaS Security Checklist, Cybersecurity Compliance in India, New Ransomware Gang Targets Russian Businesses

Good day, Secret CISO readers! Today's newsletter is packed with insights and updates from the world of cybersecurity. We start with a comprehensive guide on SaaS security checklists, ensuring your applications and data are safe from breaches. We then take a global perspective, exploring cybersecurity compliance in India and how to protect against data breaches. We also delve into the legal implications of AI, with insights from the Director of Legal Innovation at Ward and Smith. In the wake of recent breaches, we share expert advice on what guests and hotels should know to protect themselves. In partnership news, CrowdStrike and Google Cloud are expanding their strategic alliance to provide faster breach protection. However, not all news is good news, as we report on recent data breaches affecting Wells Fargo, Home Depot, and boAt. On the research front, we highlight new discoveries in ransomware attacks, vulnerabilities in LG Smart TVs, and the increasing need for digital trust as the quantum threat looms. Finally, we round up the latest vulnerabilities, including those affecting D-Link NAS devices, Telegram, and more. Stay safe and informed, [Your Name]

Data Breaches

  1. Wells Fargo Data Breach: Wells Fargo, a major American bank, was hit by a cyberattack, compromising customer personal information. The extent of the breach and its impact on customers is still under investigation. Source: Cybernews
  2. Home Depot Third-Party Data Breach: Home Depot's data was compromised due to a misconfiguration in a third-party SaaS. The breach led to the compromise of customer data, highlighting the risks associated with third-party vendors. Source: Spiceworks
  3. boAt Data Breach: Indian consumer electronics brand boAt allegedly lost data of 7.5 million customers in a data breach. The company has responded to media reports and an investigation is currently underway. Source: Jagran English
  4. Russian Flight Booking Platform Data Breach: Sirena-Travel JSC, a Russian airline ticket reservation system, is at the center of a criminal prosecution following a data breach. Top executives are facing charges in relation to the breach. Source: Cyber Security News
  5. Salvadoran Data Breach: A massive data breach in El Salvador leaked personal information of over 5 million Salvadorans, putting the majority of adults at risk of identity theft. The breach underscores the need for robust data protection measures. Source: The Crypto Times

Security Research

  1. "D-Link NAS Vulnerabilities": Over 92,000 older D-Link NAS devices are at risk of getting hacked due to unpatched vulnerabilities. The exploit was discovered by security researcher netsecfish and made public, leading to increased scanning and attempts to download malware on vulnerable devices. Source: PC World, Computing UK, Infosecurity Magazine, The Hacker News.
  2. "Telegram Vulnerability": A high-risk vulnerability in the popular messaging app Telegram exposes users to potential attacks. The vulnerability was discovered by security firm CertiK, echoing a similar media vulnerability found by a researcher from Shielder in 2021. Source: Cointelegraph.
  3. "Muliaka Ransomware Attacks": A new ransomware gang named 'Muliaka' has been discovered attacking Russian businesses. The group's activities were uncovered by security researchers, adding to the growing list of cyber threats targeting businesses globally. Source: The Record Media.
  4. "Keitaro TDS Security Issues": Microsoft researchers have discovered a malvertising campaign that abuses Google Ads, causing security headaches. The campaign is linked to the Keitaro TDS, a traffic distribution system often used by cybercriminals. Source: TechTarget.
  5. "LG Smart TV Vulnerabilities": Multiple security vulnerabilities have been found in LG webOS running on its smart televisions. These vulnerabilities could be exploited to bypass authorization, potentially giving attackers root access to the devices. Source: The Hacker News.

Top CVEs

  1. CVE-2023-7164: The BackWPup WordPress plugin before 4.0.4 does not prevent visitors from leaking key information about ongoing backups, allowing unauthenticated attackers to download backups of a site's data. This could lead to unauthorized access and potential data breaches. Source: CVE-2023-7164
  2. CVE-2024-27983: Node.js HTTP/2 server can be made unavailable by sending a small amount of HTTP/2 frames packets with a few HTTP/2 frames inside. This vulnerability could lead to a denial of service attack, disrupting the server's functionality. Source: CVE-2024-27983
  3. CVE-2024-0083: NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause a cross-site scripting error by running malicious scripts in users' browsers. This could lead to code execution, denial of service, and information disclosure. Source: CVE-2024-0083
  4. CVE-2024-0082: NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause improper privilege management by sending open file requests to the application. This could lead to local escalation of privileges, information disclosure, and data manipulation. Source: CVE-2024-0082
  5. CVE-2024-28224: Ollama before 0.1.29 has a DNS rebinding vulnerability that can inadvertently allow remote access to the full API, thereby letting an unauthorized user chat with a large language model, delete a model, or cause a denial of service. This could lead to unauthorized access and potential service disruption. Source: CVE-2024-28224

Final Words

And that's a wrap for today's edition of Secret CISO. We've covered everything from SaaS security checklists to the latest data breaches and cybersecurity compliance around the globe. Remember, staying informed is the first step in protecting your data and systems. If you found today's newsletter helpful, don't keep it to yourself. Share it with your colleagues, friends, and anyone else who could benefit from a daily dose of cybersecurity news and insights. Stay safe, stay informed, and see you in the next edition of Secret CISO.

Read more

Secret CISO 4/3: Canvas LMC and Highline Public Schools Data Breaches, Zoll and Lockton Companies Class Action, Hamilton County Government's Response, GitHub's Security Expansion, Kaspersky Patches Chrome Flaw

Secret CISO 4/3: Canvas LMC and Highline Public Schools Data Breaches, Zoll and Lockton Companies Class Action, Hamilton County Government's Response, GitHub's Security Expansion, Kaspersky Patches Chrome Flaw

Welcome to today's edition of Secret CISO, where we delve into the latest happenings in the world of cybersecurity. Today, we're unpacking a series of data breaches that have sent shockwaves across various sectors. First up, we're looking at a data breach involving a

By Secret CISO
Secret CISO 4/2: Lucid PhaaS Targets 88 Countries, Data Breaches at AOD Federal Credit Union and Lee University, Oracle Denies Massive Breach, Twitter Faces Historic Data Leak, Researchers Warn of North Korea's Cyber Tactics

Secret CISO 4/2: Lucid PhaaS Targets 88 Countries, Data Breaches at AOD Federal Credit Union and Lee University, Oracle Denies Massive Breach, Twitter Faces Historic Data Leak, Researchers Warn of North Korea's Cyber Tactics

Hello there, In today's issue of Secret CISO, we're diving into the world of data breaches and cyber security incidents that have been making headlines. First off, we're looking at the Lucid PhaaS that has hit 169 targets in 88 countries using iMessage and

By Secret CISO
Secret CISO 4/1: Oracle's Patient Data Breach, APIsec's Security Lapse, Cherokee School District and PowerSchool Data Breaches, Hi-School Pharmacy's Settlement, Security Research on WordPress and Oracle Cloud

Secret CISO 4/1: Oracle's Patient Data Breach, APIsec's Security Lapse, Cherokee School District and PowerSchool Data Breaches, Hi-School Pharmacy's Settlement, Security Research on WordPress and Oracle Cloud

Welcome to today's issue of Secret CISO, your daily dose of the most impactful cybersecurity news. Today, we're diving into a series of data breaches and security lapses that have left companies and institutions scrambling to secure their systems. First on our list is API testing

By Secret CISO
Secret CISO 3/31: Signal Chat Leak Exposes US Military Info, Nine Entertainment and Sam's Club Face Data Breaches, 23andMe Bankruptcy Leaves Genetic Data in Limbo, Oracle Health Warns of Info Leak

Secret CISO 3/31: Signal Chat Leak Exposes US Military Info, Nine Entertainment and Sam's Club Face Data Breaches, 23andMe Bankruptcy Leaves Genetic Data in Limbo, Oracle Health Warns of Info Leak

Welcome to today's issue of Secret CISO, your daily dose of the most impactful cybersecurity news. Today, we're diving into the recent Signal chat leak that exposed sensitive US military information. A RUSI expert weighs in on the implications of this breach and raises questions about

By Secret CISO