News
Hi friends,
We're a bit heavy on breaches and issues this week, I hope you can gently read through the list without having it ruin your day.
Also, if you're like me and you find yourself excited for the launch of ... a cybersecurity consumer label, congratulations, you're old and boring like me. Let's make t-shirts.
Enjoy the read folks ;-)
Cheers,
US launches cybersecurity label
I have high hopes for this one. From the article:
"Vendors will label their products with the Cyber Trust Mark logo if they meet the National Institute of Standards and Technology (NIST) cybersecurity criteria. These criteria include using unique and strong default passwords, software updates, data protection, and incident detection capabilities.
Consumers can scan the QR code included next to the Cyber Trust Mark labels for additional security information, such as instructions on changing the default password, steps for securely configuring the device, details on automatic updates (including how to access them if they are not automatic), the product's minimum support period, and a notification if the manufacturer does not offer updates for the device."
I really like this as a method to inform consumers, similar to energy usage ratings on appliances. It will be interesting to see if it changes buying behaviour, and whether or not it forces vendors to do better.
Over 4,000 backdoors hijacked by registering expired domains
Nice campaign where researchers looked for expired or unregistered domains currently in use by webshells in the wild, and registered them to block any future exploitation. Kudos.
A day in the life of a prolific voice phishing crew
A good ol' deep dive by Brian Krebs, always a good read.
Breaches and leaks
- UN aviation agency confirms recruitment database security breach: link.
- Largest US addiction treatment provider notifies patients of data breach: link.
- Massive breach at location data seller: "Millions" of users affected: link.
- Hackers claim to breach Russian state agency managing property, land records: link.
- Some Winston-Salem city services knocked offline by cyberattack: link.
- Education software firm’s hack exposes personal data for students, teachers nationwide: link.
- School districts in Maine, Tennessee respond to holiday cyberattacks: link.
- French govt contractor Atos denies Space Bears ransomware attack claims: link.
- Casio says data of 8,500 people exposed in October ransomware attack: link.
- Data of more than 8,500 customers breached on Green Bay Packers shopping website: link.
- Washington state sues T-Mobile over 2021 data breach security failures: link.
- Cryptocurrency wallet drainers stole $494 million in 2024: link.
Issues and fixes
- Bad Tenable plugin updates take down Nessus agents worldwide: link.
- Nuclei flaw lets malicious templates bypass signature verification: link.
- Vulnerable Moxa devices expose industrial networks to attacks: link.
- Malicious npm packages target Ethereum developers' private keys: link.
- CISA warns of critical Oracle, Mitel flaws exploited in attacks: link.
- SonicWall urges admins to patch exploitable SSLVPN bug immediately: link.
- Ivanti warns of new Connect Secure flaw used in zero-day attacks: link.
- Unpatched critical flaws impact Fancy Product Designer WordPress plugin: link.
- Hackers exploit KerioControl firewall flaw to steal admin CSRF tokens: link.
1Password: the password manager with (to me) the best UX
I'm not going to write a long marketing-heavy paragraph on this one. I just love using 1Password. The UX, the support, the integrations, it all works wonderfully. Highly recommended. (Sponsored)