Good day, Secret CISO readers! Today's newsletter is packed with insights and updates from the world of cybersecurity. We start with a comprehensive guide on SaaS security checklists, ensuring your applications and data are safe from breaches. We then take a global perspective, exploring cybersecurity compliance in India and how to protect against data breaches. We also delve into the legal implications of AI, with insights from the Director of Legal Innovation at Ward and Smith. In the wake of recent breaches, we share expert advice on what guests and hotels should know to protect themselves. In partnership news, CrowdStrike and Google Cloud are expanding their strategic alliance to provide faster breach protection. However, not all news is good news, as we report on recent data breaches affecting Wells Fargo, Home Depot, and boAt. On the research front, we highlight new discoveries in ransomware attacks, vulnerabilities in LG Smart TVs, and the increasing need for digital trust as the quantum threat looms. Finally, we round up the latest vulnerabilities, including those affecting D-Link NAS devices, Telegram, and more. Stay safe and informed, [Your Name]

Data Breaches

1. Wells Fargo Data Breach: Wells Fargo, a major American bank, was hit by a cyberattack, compromising customer personal information. The extent of the breach and its impact on customers is still under investigation. Source: Cybernews
2. Home Depot Third-Party Data Breach: Home Depot's data was compromised due to a misconfiguration in a third-party SaaS. The breach led to the compromise of customer data, highlighting the risks associated with third-party vendors. Source: Spiceworks
3. boAt Data Breach: Indian consumer electronics brand boAt allegedly lost data of 7.5 million customers in a data breach. The company has responded to media reports and an investigation is currently underway. Source: Jagran English
4. Russian Flight Booking Platform Data Breach: Sirena-Travel JSC, a Russian airline ticket reservation system, is at the center of a criminal prosecution following a data breach. Top executives are facing charges in relation to the breach. Source: Cyber Security News
5. Salvadoran Data Breach: A massive data breach in El Salvador leaked personal information of over 5 million Salvadorans, putting the majority of adults at risk of identity theft. The breach underscores the need for robust data protection measures. Source: The Crypto Times

Security Research

1. "D-Link NAS Vulnerabilities": Over 92,000 older D-Link NAS devices are at risk of getting hacked due to unpatched vulnerabilities. The exploit was discovered by security researcher netsecfish and made public, leading to increased scanning and attempts to download malware on vulnerable devices. Source: PC World, Computing UK, Infosecurity Magazine, The Hacker News.
2. "Telegram Vulnerability": A high-risk vulnerability in the popular messaging app Telegram exposes users to potential attacks. The vulnerability was discovered by security firm CertiK, echoing a similar media vulnerability found by a researcher from Shielder in 2021. Source: Cointelegraph.
3. "Muliaka Ransomware Attacks": A new ransomware gang named 'Muliaka' has been discovered attacking Russian businesses. The group's activities were uncovered by security researchers, adding to the growing list of cyber threats targeting businesses globally. Source: The Record Media.
4. "Keitaro TDS Security Issues": Microsoft researchers have discovered a malvertising campaign that abuses Google Ads, causing security headaches. The campaign is linked to the Keitaro TDS, a traffic distribution system often used by cybercriminals. Source: TechTarget.
5. "LG Smart TV Vulnerabilities": Multiple security vulnerabilities have been found in LG webOS running on its smart televisions. These vulnerabilities could be exploited to bypass authorization, potentially giving attackers root access to the devices. Source: The Hacker News.

Top CVEs

1. CVE-2023-7164: The BackWPup WordPress plugin before 4.0.4 does not prevent visitors from leaking key information about ongoing backups, allowing unauthenticated attackers to download backups of a site's data. This could lead to unauthorized access and potential data breaches. Source: CVE-2023-7164
2. CVE-2024-27983: Node.js HTTP/2 server can be made unavailable by sending a small amount of HTTP/2 frames packets with a few HTTP/2 frames inside. This vulnerability could lead to a denial of service attack, disrupting the server's functionality. Source: CVE-2024-27983
3. CVE-2024-0083: NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause a cross-site scripting error by running malicious scripts in users' browsers. This could lead to code execution, denial of service, and information disclosure. Source: CVE-2024-0083
4. CVE-2024-0082: NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause improper privilege management by sending open file requests to the application. This could lead to local escalation of privileges, information disclosure, and data manipulation. Source: CVE-2024-0082
5. CVE-2024-28224: Ollama before 0.1.29 has a DNS rebinding vulnerability that can inadvertently allow remote access to the full API, thereby letting an unauthorized user chat with a large language model, delete a model, or cause a denial of service. This could lead to unauthorized access and potential service disruption. Source: CVE-2024-28224

Final Words

And that's a wrap for today's edition of Secret CISO. We've covered everything from SaaS security checklists to the latest data breaches and cybersecurity compliance around the globe. Remember, staying informed is the first step in protecting your data and systems. If you found today's newsletter helpful, don't keep it to yourself. Share it with your colleagues, friends, and anyone else who could benefit from a daily dose of cybersecurity news and insights. Stay safe, stay informed, and see you in the next edition of Secret CISO.