Welcome to today's issue of Secret CISO, your daily dose of the most impactful cybersecurity news. Today, we're diving into a series of alarming data breaches that have left millions exposed and vulnerable. Sefton Council has apologized for a data breach that has potentially exposed hundreds of taxi and private hire drivers to identity theft and harassment.

Meanwhile, payment gateway provider Slim CD has disclosed a data breach that compromised credit card and personal data belonging to almost 1.7 million users. In the car rental industry, Avis Car Rental is notifying roughly 300,000 individuals that their personal information was stolen in a recent data breach. The Turkish government is seeking Google's help after a massive personal data breach that affected 108 million citizens, including deceased individuals.

In the healthcare sector, CMS is notifying nearly a million Medicare beneficiaries of a data breach in which a hacker copied patients' files. We'll also explore the challenges of securing open-source software, the role of HITRUST in strengthening data security in healthcare benefits administration, and the potential security threat posed by generative AI. Stay tuned for more updates on these stories and other cybersecurity news. Stay safe, stay informed with Secret CISO.

Data Breaches

1. Sefton Council Data Breach: Hundreds of taxi and private hire drivers are at risk of identity theft and harassment following a data breach at Sefton Council. The breach exposed the personal details of these drivers online. Source: PHTM News
2. Slim CD Data Breach: Payment gateway provider Slim CD has disclosed a data breach that compromised the credit card and personal data of nearly 1.7 million users. Legal action is being considered by those affected. Source: Bleeping Computer and ClassAction.org
3. Avis Car Rental Data Breach: Avis Car Rental is notifying approximately 300,000 individuals that their personal information was stolen in a data breach that occurred in August 2024. The breach has led to an investigation into the company's data security practices. Source: SecurityWeek and TechRadar
4. CMS Medicare Data Breach: CMS is notifying nearly a million Medicare beneficiaries of a data breach in which a hacker copied patients' files. The breach has potentially impacted personally identifiable information of Medicare beneficiaries. Source: Becker's Hospital Review and Healthcare Innovation
5. Turkish Government Data Breach: The personal data of 108 million Turkish citizens, including deceased individuals, has been stolen, forcing the government to seek Google's help. This massive breach has raised concerns about the country's data security measures. Source: Turkish Minute

Security Research

1. Telegram's Security Sham: Researchers have raised concerns about the security claims of Telegram, citing its track record and transparency practices. They argue that the messaging app's claims of security are not trustworthy. Source: Just Security
2. Bug lets anyone bypass WhatsApp's 'View Once' privacy feature: Security researcher Tal Be'ery discovered a bug that allows anyone to bypass WhatsApp's 'View Once' privacy feature. The bug was discovered after several months of research into WhatsApp's privacy issues. Source: TechCrunch
3. Email security change about to cause chaos in your office: A security researcher from Rapid7 warns that an upcoming change in email security could cause chaos in offices. The researcher maintains a test lab of IoT devices and has been studying the potential impact of the change. Source: Information Age | ACS
4. New And Dangerous Android Attack Warning Issued: Security researchers have uncovered a new and dangerous Android hacking technique. The researchers from McAfee have found a specific item that is being targeted by the hackers. Source: Forbes
5. Google Security Expert: Gamers Becoming Cybercriminals: A Google security expert warns that teenagers are being lured into cybercrime, which is becoming a growing problem. The expert suggests that the gaming community is becoming a breeding ground for future cybercriminals. Source: Channel Futures

Top CVEs

1. CVE-2024-8576 (TOTOLINK AC1200 T8 and AC1200 T10 4.1.5cu.861_B20230220/4.1.8cu.5207): A critical vulnerability was found in the function setIpPortFilterRules of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument desc leads to buffer overflow. The attack can be launched remotely and the exploit is publicly available. Source: CVE-2024-8576
2. CVE-2024-8583 (SourceCodester Online Bank Management System): This vulnerability, classified as problematic, affects an unknown part of the file /mfeedback.php of the component Feedback Handler. The manipulation leads to cross site scripting and the attack can be initiated remotely. The exploit is publicly available. Source: CVE-2024-8583
3. CVE-2024-8584 (Orca HCM from LEARNING DIGITAL): This vulnerability allows an unauthenticated remote attacker to exploit a specific functionality to create an account with administrator privilege and subsequently use it to log in. Source: CVE-2024-8584
4. CVE-2024-8582 (SourceCodester Food Ordering Management System 1.0): This problematic vulnerability affects some unknown functionality of the file /index.php. The manipulation of the argument description leads to cross site scripting. The attack can be launched remotely and the exploit is publicly available. Source: CVE-2024-8582
5. CVE-2024-8580 (TOTOLINK AC1200 T8 4.1.5cu.861_B20230220): A critical vulnerability was found in the file /etc/shadow.sample. The manipulation leads to use of hard-coded password. The attack can be initiated remotely and the exploit is publicly available. Source: CVE-2024-8580

Sponsored by Wallarm API Security Solution

Final Words

And that's a wrap for today's edition of Secret CISO. From the shocking data breach at Sefton Council to the alarming cyber-attack on Avis Car Rental, it's clear that the need for robust cybersecurity measures has never been more critical. As we navigate through the digital landscape, let's remember that knowledge is power. By staying informed about the latest threats and vulnerabilities, we can better protect ourselves and our organizations from potential cyber-attacks.

If you found today's newsletter helpful, please consider sharing it with your colleagues and friends. Together, we can create a safer digital world. Stay safe, stay informed, and see you in the next edition of Secret CISO.