Good morning, Secret CISO readers! Today's newsletter is packed with crucial updates from the cybersecurity world. We start with a data breach at the Wisconsin Department of Health Services that has put Medicaid members' information at risk. In a similar vein, Ticketmaster is facing allegations of negligence in a massive data breach affecting millions of customers. In the realm of cryptocurrency, CoinStats has reported a security breach affecting many user wallets, urging users to move funds immediately. Meanwhile, Google Chrome Web Store is under scrutiny for its ongoing security issues, and Jollibee Group is investigating a data breach of its own. In the legal sector, we discuss how law firms can enhance cybersecurity and manage data breaches.

We also cover the National Identity Management Commission's dismissal of allegations of a data breach in Nigeria. On the tech front, Splunk is advancing SOC technology, and Nottinghamshire Police are issuing online protection advice following a series of high-profile data breaches. Finally, we delve into the world of car security, with insights into the types of cars most frequently stolen by "boy racers". Stay tuned for more updates and remember, knowledge is power when it comes to cybersecurity. Stay safe out there!

Data Breaches

1. Wisconsin Medicaid Data Breach: A cyber-security breach has occurred at an organization that partners with the Wisconsin Department of Health Services, putting Medicaid members' information at risk. The specific data compromised and the number of individuals affected have not been disclosed. Source: WTMJ News
2. CoinStats Security Breach: CoinStats, a cryptocurrency portfolio management platform, has reported a security breach affecting many user wallets. The company has urged users to move their funds immediately. The exact number of affected wallets and the extent of the breach are currently unknown. Source: Crypto News
3. LAUSD Data Breach: The Los Angeles Unified School District (LAUSD) has suffered a data breach due to a Snowflake vulnerability, exposing student, teacher, and staff data. The specific data leaked and the number of individuals affected are currently unknown. Source: LAUSD
4. Jollibee Group Data Breach: The Jollibee Group has begun an investigation into a potential data breach. The extent of the breach and the specific data compromised have not been disclosed. Source: DataBreaches.Net
5. CGM Data Breach: Over 279,063 individuals have been impacted by a data breach targeting CGM, a Georgia-based company that provides services to wireless and other industries. The specific data compromised in the breach has not been disclosed. Source: CGM

Security Research

1. Week in review: CDK Global cyberattack, critical vCenter Server RCE fixed: Ghidra, an open-source software reverse engineering (SRE) framework developed by the National Security Agency (NSA), has been highlighted in the wake of a cyberattack on CDK Global and a critical vCenter Server RCE fix. Source: HelpNetSecurity
2. Breaking Down the Strategic Guidance and National Priorities for U.S Critical Infrastructure: A security expert discusses the importance of integrating DHS guidelines into sector-specific safety and security strategies to enhance the resilience of U.S. critical infrastructure. Source: Industrial Cyber
3. Research Reveals Alarming Security Threats Posed by Chrome Web Store Extensions: A new study has exposed significant security risks associated with Chrome Web Store extensions, highlighting the need for improved vetting processes. Source: Smartphone Magazine
4. Spiderman Hacker Exploits Vision Pro Bug To Unleash 100s Of VR Spiders: A security researcher has disclosed the world's first spatial computing hack, which could potentially fill Apple Vision Pro virtual spaces with unwanted VR spiders. Source: Forbes
5. Researcher Discovers Terrifying Apple Vision Pro Hack That Can Fill Your Entire Home: Cybersecurity researcher and bug bounty hunter Ryan Pickren has discovered a security violation that could potentially fill an entire home with VR spiders through Apple Vision Pro. Source: Yahoo News

Top CVEs

1. CVE-2024-38319: IBM Security SOAR 51.0.2.0 has a vulnerability that could allow an authenticated user to execute malicious code loaded from a specially crafted script. IBM X-Force ID has not been disclosed. Source: CVE-2024-38319
2. CVE-2024-5443: A vulnerability in the parisneo/lollms software, specifically within the ExtensionBuilder().build_extension() function, allows attackers to navigate beyond the intended directory structure due to a path traversal issue. The vulnerability affects versions up to 5.9.0 and has been addressed in later versions. Source: CVE-2024-5443
3. CVE-2024-6268: A critical vulnerability has been found in lahirudanushka School Management System 1.0.0/1.0.1. The issue affects an unknown functionality of the file login.php of the Login Page component. The manipulation of the argument email leads to SQL injection. The exploit has been disclosed to the public. Source: CVE-2024-6268
4. CVE-2024-6253: A critical vulnerability was found in itsourcecode Online Food Ordering System 1.0. The issue affects an unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to SQL injection. The exploit has been disclosed to the public. Source: CVE-2024-6253
5. CVE-2024-6251: A problematic vulnerability was found in playSMS 1.4.3. An unknown function of the file /index.php?app=main&inc=feature_phonebook&op=phonebook_list of the New Phonebook Handler component is affected. The manipulation of the argument name/email leads to basic cross-site scripting. The exploit has been disclosed to the public. Source: CVE-2024-6251

Final Words

And that's a wrap for today's edition of Secret CISO. From data breaches affecting millions to the latest advancements in SOC technology, we've covered a lot of ground. Remember, in the world of cybersecurity, knowledge is power. So, stay informed and stay secure. If you found today's newsletter helpful, why not share it with your friends and colleagues? They might appreciate the heads-up on the latest security news.

And don't forget to join us tomorrow for another round-up of the most important cybersecurity updates. Stay safe out there!