Notices by ITSEC News (itsecbot@schleuss.online)

Casio says data of 8,500 people exposed in October ransomware attack - Japanese electronics manufacturer Casio says that the October 2024 ransomware incident ex... https://www.bleepingcomputer.com/news/security/casio-says-data-of-8-500-people-exposed-in-october-ransomware-attack/ #security

Ireland fines Meta $264 million over 2018 Facebook data breach - The Irish Data Protection Commission (DPC) fined Meta €251 million ($263.6M) over General... https://www.bleepingcomputer.com/news/security/ireland-fines-meta-264-million-over-2018-facebook-data-breach/ #security #legal

Vodka maker Stoli files for bankruptcy in US after ransomware attack - Stoli Group's U.S. companies have filed for bankruptcy following an August ransomware att... https://www.bleepingcomputer.com/news/security/vodka-maker-stoli-files-for-bankruptcy-in-us-after-ransomware-attack/ #security

Unpatched Mazda Connect bugs let hackers install persistent malware - Attackers could exploit several vulnerabilities in the Mazda Connect infotainment unit, p... https://www.bleepingcomputer.com/news/security/unpatched-mazda-connect-bugs-let-hackers-install-persistent-malware/ #security

Fake AI video generators infect Windows, macOS with infostealers - Fake AI image and video generators infect Windows and macOS with the Lumma Stealer and AM... https://www.bleepingcomputer.com/news/security/fake-ai-video-generators-infect-windows-macos-with-infostealers/ #security

CISA warns of hackers abusing Cisco Smart Install feature - CISA recommends disabling the legacy Cisco Smart Install feature after seeing it abused b... https://www.bleepingcomputer.com/news/security/cisa-warns-of-hackers-abusing-cisco-smart-install-feature/ #security

Android spyware 'Mandrake' hidden in apps on Google Play since 2022 - A new version of the Android spyware 'Mandrake' has been found in five applications downl... https://www.bleepingcomputer.com/news/security/android-spyware-mandrake-hidden-in-apps-on-google-play-since-2022/ #security #google #mobile

Microsoft says bug causes Windows 10 apps to display Open With dialogs - Microsoft has confirmed that Windows 10 apps will mistakenly display an "How do you want ... https://www.bleepingcomputer.com/news/microsoft/microsoft-says-bug-causes-windows-10-apps-to-display-open-with-dialogs/ #microsoft

Mozilla Firefox can now secure access to passwords with device credentials - Mozilla Firefox finally allows you to further protect local access to stored credentials ... https://www.bleepingcomputer.com/news/security/mozilla-firefox-can-now-secure-access-to-passwords-with-device-credentials/ #security #software

Microsoft June 2024 Patch Tuesday fixes 51 flaws, 18 RCEs - Today is Microsoft's June 2024 Patch Tuesday, which includes security updates for 51 flaw... https://www.bleepingcomputer.com/news/microsoft/microsoft-june-2024-patch-tuesday-fixes-51-flaws-18-rces/ #microsoft #security

After brutal privacy critiques, Microsoft Recall will get major privacy and security changes - Stung by criticism from security researchers, Microsoft today announced major changes to ... https://www.zdnet.com/article/after-brutal-privacy-critiques-microsoft-recall-will-get-major-privacy-and-security-changes/#ftag=RSSbaffb68

Kaspersky released a free Linux virus removal tool - but is it necessary? - Concerned about viruses on your Linux computer? I tested Kaspersky's new Virus Removal To... https://www.zdnet.com/article/kaspersky-releases-a-free-linux-virus-removal-tool-but-is-it-necessary/#ftag=RSSbaffb68

Mandiant's X account hacked by crypto Drainer-as-a-Service gang - Cybersecurity firm and Google subsidiary Mandiant says its Twitter/X account was hijacked... https://www.bleepingcomputer.com/news/security/mandiants-x-account-hacked-by-crypto-drainer-as-a-service-gang/ #cryptocurrency #security

Ivanti discloses new critical auth bypass bug in MobileIron Core - IT software company Ivanti disclosed today a new critical security vulnerability in its M... https://www.bleepingcomputer.com/news/security/ivanti-discloses-new-critical-auth-bypass-bug-in-mobileiron-core/ #security

Microsoft (& Apple) Patch Tuesday, April 2023 Edition - Microsoft today released software updates to plug 100 security holes in its Window... https://krebsonsecurity.com/2023/04/microsoft-apple-patch-tuesday-april-2023-edition/ #windowscommonlogsystemfilesystem #trendmicrozerodayinitiative #macos12.6.5and11.7.6. #nokoyawaransomware #ios/ipados16.4.1 #thecomingstorm #cve-2022-37969 #cve-2023-28219 #cve-2023-28220 #cve-2023-28252 #securitytools #dbappsecurity #dustinchilds #timetopatch

Porsche halts NFT launch, phishing sites fill the void - Porsche cut its minting of a new NFT collection short after a dismal turnout and backlash... https://www.bleepingcomputer.com/news/security/porsche-halts-nft-launch-phishing-sites-fill-the-void/ #cryptocurrency #security

Pacu is an open-source AWS exploitation framework -  https://github.com/RhinoSecurityLabs/pacu https://tech-wreckblog.blogspot.com/2022/09/pacu-is-open-source-aws-exploitation.html

“Fake crypto millionaire” charged with alleged $1.7M cryptomining scam - A self-proclaimed cryptocurrency millionaire has been charged with multiple felonies for ... https://www.bitdefender.com/blog/hotforsecurity/fake-crypto-millionaire-charged-with-alleged-1-7m-cryptomining-scam/ #cryptocurrency #cryptomining #guestblog #law&order #fraud #scam

Come to the National Information Security Conference in October, and see Smashing Security LIVE! - Between 5-7 October, I will be chairing the UK's National Information Security Conference... https://grahamcluley.com/come-to-the-national-information-security-conference-in-october-and-see-smashing-security-live/ #smashingsecurity #securitythreats #event #nisc

Morgan Stanley fined millions for selling off devices full of customer PII - Critical data on old disks always seems inaccessible if you really need it. But when you ... https://nakedsecurity.sophos.com/2022/09/23/morgan-stanley-fined-millions-for-selling-off-devices-full-of-customer-pii/ #datadesctruction #gdprcompliance #morganstanley #encryption #dataloss