Welcome to today's issue of Secret CISO, your daily dose of the latest in cybersecurity news. Today, we're diving into the recent data leak from popular flight tracking website, FlightAware, that has exposed a significant amount of personal data. But that's not all, a massive data breach has also been reported, potentially leaking the personal data of every American, including Social Security numbers. In response to these breaches, we'll be discussing how to check if your data has been compromised and steps you can take to protect yourself.

We'll also be looking at the latest security vulnerabilities that scammers are exploiting, such as those found in WhatsApp, and how you can stay safe. In legal news, South Suburban College and Acadian Ambulance Service are facing class action lawsuits over data breaches that exposed sensitive personal information. We'll be examining the details of these cases and their potential implications.

On the research front, we'll be highlighting the work of security researchers who are tirelessly working to uncover and address security vulnerabilities. We'll also be discussing the latest technology developed by Battelle to eliminate 'forever chemicals'. Lastly, we'll be discussing the potential financial impact of data breaches on consumers, with a focus on the recent Cash App data breach settlement. Stay tuned for all this and more in today's issue of Secret CISO. Stay safe, stay informed.

Data Breaches

1. FlightAware Data Leak: FlightAware, a popular flight tracking website, has reported a significant data leak, potentially exposing all personal details they have stored. Source: ReadWrite
2. Social Security Number Leak: A hacking group claims to have stolen personal records of 2.9 billion people, including names, addresses, dates of birth, and Social Security numbers. Source: LA Times
3. WhatsApp Security Vulnerabilities: WhatsApp has been identified as having security vulnerabilities that scammers can exploit to gain unauthorized access to victims' devices. Source: Kevin MD
4. National Public Data Breach: A massive data theft of 2.9 billion records of people has been reported, prompting individuals to take steps to secure their Social Security numbers. Source: CNET
5. Acadian Ambulance Service Data Breach: A class action lawsuit has been filed against Acadian Ambulance Service following a significant data breach that exposed millions' personal information. Source: Louisiana Record

Security Research

1. US lawmakers urge probe of wifi router maker TP-Link: US lawmakers are calling for an investigation into TP-Link, the top seller of wifi routers internationally by unit volume, according to research firm IDC. The lawmakers are concerned about potential security vulnerabilities in the company's products. Source: iTnews
2. Experts: Attempts to interfere in the US presidential elections are increasing: Cybersecurity expert Sean Minor from the company "Recorded Future" has noted a rise in attempts to interfere in the US presidential elections. However, there is currently no concrete data to measure the effectiveness of these efforts. Source: Kosova & Bota
3. Data Breaches, Vulnerability, Cyber Attack & More - Cyber Security News Letter: Security researchers have discovered a vulnerability in GitHub's Actions feature, named “ArtiPACKED.” This exploit leverages a race condition, potentially leading to data breaches and cyber attacks. Source: Cyber Security News Letter
4. Microsoft's Copilot AI can be manipulated to leak sensitive data: Security researcher Michael Bargury has demonstrated that Microsoft's Copilot AI could be exploited to disclose an organization's confidential information. The company is yet to respond to these findings. Source: NewsBytes
5. Researchers test the security of smartphone manufacturers' Android kernels: Researchers from Graz University of Technology presented an analysis of 994 smartphones from various manufacturers at the Usenix Security Conference in Philadelphia, USA. The study aimed to test the security of the Android kernels used by these manufacturers. Source: heise online

Top CVEs

1. CVE-2024-7898 - Tosei Online Store Management System Vulnerability: A critical vulnerability was found in Tosei Online Store Management System versions 4.02/4.03/4.04. The flaw lies in the backend component and can be exploited using default credentials. The attack can be initiated remotely. The vendor has not yet responded to this disclosure. Source: CVE-2024-7898
2. CVE-2024-7899 - InnoCMS 0.3.1 Vulnerability: A critical vulnerability has been discovered in InnoCMS 0.3.1. The issue affects the backend component and can lead to code injection. The attack can be launched remotely. The vendor has not yet responded to this disclosure. Source: CVE-2024-7899
3. CVE-2024-7902 - pkp ojs Vulnerability: A vulnerability was found in pkp ojs up to version 3.4.0-6. The flaw lies in the /login/signOut file and can lead to an open redirect. The attack can be initiated remotely. The vendor has not yet responded to this disclosure. Source: CVE-2024-7902
4. CVE-2024-43313 - FormFacade XSS Vulnerability: An XSS vulnerability was found in FormFacade. The flaw allows for reflected XSS attacks. Source: CVE-2024-43313
5. CVE-2024-43320 - Livemesh Addons for WPBakery Page Builder XSS Vulnerability: An XSS vulnerability was found in Livemesh Addons for WPBakery Page Builder. The flaw allows for stored XSS attacks. Source: CVE-2024-43320

API Security

1. Microsoft Edge (Chromium-based) Elevation of Privilege: A flaw in Microsoft Edge could potentially allow an attacker to escalate their privileges, leading to unauthorized access to system resources. Microsoft is actively working on a solution to this issue. Source: Microsoft Security
2. Ingress-nginx Security Issue: A security issue has been identified in Ingress-nginx, a popular open-source Ingress controller for Kubernetes. The details of the vulnerability are not disclosed yet, but users are advised to update to the latest version. Source: Ingress-nginx GitHub
3. IBM Security Directory Integrator Authentication Issue: IBM Security Directory Integrator and Security Verify Directory Integrator have been found to lack authentication for certain functionalities. This could potentially lead to unauthorized access or consumption of significant resources. IBM has released a fix for this issue. Source: IBM Security
4. IBM QRadar Suite Software Information Disclosure: A vulnerability in IBM's QRadar Suite Software could potentially lead to information disclosure. IBM is currently working on a fix for this issue. Source: IBM Security
5. JetTabs for Elementor Local File Inclusion: A local file inclusion vulnerability has been discovered in JetTabs for Elementor, a popular WordPress plugin. This could potentially allow an attacker to include files from the server and execute code remotely. The developers have released a fix for this issue. Source: JetTabs for Elementor

Sponsored by Wallarm API Security Solution

Final Words

As we wrap up today's edition of Secret CISO, we're reminded that the world of cybersecurity is a dynamic and ever-evolving landscape. From the FlightAware data leak to the potential exposure of Social Security numbers, it's clear that the need for robust security measures is more critical than ever. We hope that our daily updates help you stay informed and prepared. Remember, knowledge is power, and in the realm of cybersecurity, it's your best defense.

If you found today's newsletter helpful, please consider sharing it with your colleagues and friends.

Let's work together to create a safer digital world. Until next time, stay safe and secure.