April 26

News/Trends

• Severe Flaws Disclosed in Brocade SANnav SAN Management Software

• New ‘Brokewell’ Android Malware Spread Through Fake Browser Updates

• “All for One and One for All”: The EU Cyber Solidarity Act Strengthens Digital Defenses

• DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions

• Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny

• End-to-End Encryption Sparks Concerns Among EU Law Enforcement

• Russia’s APT28 Exploited Windows Print Spooler Flaw to Deploy ‘GooseEgg’ Malware

• NSA Debuts Top 10 Cloud Security Mitigation Strategies

• EFPIA Issues Statement on Application of the AI Act in the Medicinal Product Lifecycle

• Government Council Formed For K-12 Cybersecurity

Law/Policy

• Swedish Signals Intelligence Agency to Take Over National Cybersecurity Center

• Pentagon Launches DIB Vulnerability Disclosure Program

• FTC Commercial Surveillance Rules Could Arrive Within Months, Sources Say

• HHS Beefs Up Privacy Protection for Reproductive Health Info

• NATO to Launch New Cyber Center to Contest Cyberspace ‘At All Times’

Technical

• Feature graph construction with static features for malware detection

• FairCMS: Cloud Media Sharing with Fair Copyright Protection

• Adaptive Hybrid Masking Strategy for Privacy-Preserving Face Recognition Against Model Inversion Attack

• LSP Framework: A Compensatory Model for Defeating Trigger Reverse Engineering via Label Smoothing Poisoning

Report, blogs, podcasts

• Security Leaders Braced for Daily AI-Driven Attacks by Year-End

• “Junk gun” ransomware: the cheap new threat to small businesses

• Assessing the Y, and How, of the XZ Utils incident

• The Rise of Large-Language-Model Optimization

• Smashing Security podcast #369: Keeping the lights on after a ransomware attack

• Uncertainty is the Most Common Driver of Noncompliance

• Here’s why securing smart cities’ critical infrastructure has become a top priority

• Using Legitimate GitHub URLs for Malware

• Report: 51% of Enterprises Experienced a Breach Despite Large Security Stacks

• Russian FSB Counterintelligence Chief Gets 9 Years in Cybercrime Bribery Scheme

April 19

News/Trends

• OfflRouter Malware Evades Detection in Ukraine for Almost a Decade

• Alarming Decline in Cybersecurity Job Postings in the US

• DuneQuixote campaign targets Middle Eastern entities with “CR4T” malware

• North Korean Group Kimsuky Exploits DMARC and Web Beacons

• US Cyber Command Expanded ‘Hunt Forward’ Operations in 2023

• US Government and OpenSSF Partner on New SBOM Management Tool

• TA558 Hackers Weaponize Images for Wide-Scale Malware Attacks

• Insider Threats Surge 14% Annually as Cost-of-Living Crisis Bites

• Muddled Libra Shifts Focus to SaaS and Cloud for Extortion and Data Theft Attacks

• Cloned Voice Tech Is Coming for Bank Accounts

Law/Policy

• NIS2 implementation enters the final stretch – six months to deadline

• New Bill Would Create a Governing Body for Water System Cyber Standards

• Rounding up Five Recent CJEU Cases on GDPR Compensation

• Certain Provisions in the American Privacy Rights Act of 2024 Could Potentially Affect AI

• NIST Seeks Input on Cyber Risk Management Draft

Technical

• Reconfigurable Edge Hardware for Intelligent IDS: Systematic Approach

• Adversarial Robustness Limits via Scaling-Law and Human-Alignment Studies

• Intelligence Education made in Europe

• Ciphertext-Only Attack on a Secure $k$-NN Computation on Cloud

• An Empirical Study of Open Edge Computing Platforms: Ecosystem, Usage, and Security Risks

Report, blogs, podcasts

• Trust in Cyber Takes a Knock as CNI Budgets Flatline

• Who Stole 3.6M Tax Records from South Carolina?

• Other Attempts to Take Over Open Source Projects

• Change Healthcare data for sale on dark web as fallout from ransomware attack spirals out of control

• Using AI-Generated Legislative Amendments as a Delaying Technique

• Smashing Security podcast #368: Gary Barlow, and a scam turns deadly

• Top Officials Again Push Back on Ransom Payment Ban

• Using the LockBit builder to generate targeted ransomware

• Do cloud-based genAI services have an enterprise future?

• Crickets from Chirp Systems in Smart Lock Key Leak

April 12

News/Trends

• After cloud providers, UK antitrust regulator takes aim at AI

• CISO Role Shows Significant Gains Amid Corporate Recognition of Cyber Risk

• US Data Breach Reports Surge 90% Annually in Q1

• Rhadamanthys Malware Deployed By TA547 Against German Targets

• How Intel’s ‘AI everywhere’ strategy could challenge Nvidia’s dominance

• Why Identity Management is Key in a Cyber Resilience Strategy

• Raspberry Robin Returns: New Malware Campaign Spreading Through WSF Files

• XZ backdoor story – Initial analysis

• Hackers can Use AI Hallucinations to Spread Malware

• Deepfake Expert Henry Ajder to Keynote Infosecurity Europe 2024 on AI Challenges

Law/Policy

• California Privacy Protection Agency Issues Enforcement Advisory on Data Minimization

• EDPB 2023 Coordinated Enforcement Framework on DPOs: What Are the Key Takeaways for Organizations?

• US Federal Data Privacy Law Introduced by Legislators

• US Chamber of Commerce, Industry Groups Call for 30-Day Delay in CIRCIA Rules

• U.S. Tech Legislative, Regulatory & Litigation Update – First Quarter 2024

Technical

• Software-based Security Framework for Edge and Mobile IoT

• Leakage-Abuse Attacks Against Structured Encryption for SQL

• AI-Enabled System for Efficient and Effective Cyber Incident Detection and Response in Cloud Environments

• A divide-and-conquer approach to privacy-preserving high-dimensional big data release

• Optimization of Lightweight Malware Detection Models For AIoT Devices

Report, blogs, podcasts

• Why CISA is Warning CISOs About a Breach at Sisense

• How Exposure Management Elevates Cyber Resilience

• DragonForce ransomware – what you need to know

• Twitter’s Clumsy Pivot to X.com Is a Gift to Phishers

• Life in Cybersecurity: From Nursing to Threat Analyst

• Smashing Security podcast #367: WhatsApp at Westminster, unhealthy AI, and Drew Barrymore

• Cybercriminal Adoption of Browser Fingerprinting

• April’s Patch Tuesday Brings Record Number of Fixes

• US Cyber Safety Review Board on the 2023 Microsoft Exchange Hack

• AI/ML Digital Everest: Dodging System Failure Summit Fever

March 29

News/Trends

• Dormakaba Locks Used in Millions of Hotel Rooms Could Be Cracked in Seconds

• New Linux Bug Could Lead to User Password Leaks and Clipboard Hijacking

• NIST Unveils New Consortium to Operate its National Vulnerability Database

• DinodasRAT Linux implant targeting entities worldwide

• Finland Blames Chinese Hacking Group APT31 for Parliament Cyber Attack

• Microsoft Edge Bug Could Have Allowed Attackers to Silently Install Malicious Extensions

• Zero-Day Vulnerabilities Surged by Over 50% Annually, Says Google

• CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability

• Feds Wave Sticks & Carrots at Health Sector to Bolster Cyber

• Browser Security in 2024: Technologies and Trends

• Iran-Linked MuddyWater Deploys Atera for Surveillance in Phishing Attacks

Law/Policy

• CISA Issues Notice for Long-Awaited Critical Infrastructure Reporting Requirements

• HHS OCR Updates Tracking Technologies Guidance

• Japan Runs Inaugural Cyber Defense Drills With Pacific Island Nations

• UK Law Enforcers Arrest 400 in Major Fraud Crackdown

• Biden Nominates First Assistant Defense Secretary for Cyber Policy

• China Eases Restrictions on Cross-Border Data Flows

Technical

• The current state of security — Insights from the German software industry

• Holographic Global Convolutional Networks for Long-Range Prediction Tasks in Malware Detection

• Cloudy with a Chance of Cyberattacks: Dangling Resources Abuse on Cloud Platforms

• Lower data attacks on Advanced Encryption Standard

• REVERSIM: A Game-Based Environment to Study Human Aspects in Hardware Reverse Engineering

Report, blogs, podcasts

• AI and Trust

• Episode 257: Securing Software on Wheels with

• The Cyber Sleuth’s Handbook: Digital Forensics and Incident Response (DFIR) Essentials

• Smashing Security podcast #365: Hacking hotels, Google’s AI goof, and cyberflashing

• Reinforcement Learning is the Path Forward for AI Integration Into Cybersecurity

• AI Platforms Name Cybersecurity Threats and Advice for 2024

• Recent ‘MFA Bombing’ Attacks Targeting Apple Users

• Report: Only 5% of Boards Have Cybersecurity Expertise

• Ransomware hits The Big Issue. Qilin group leaks confidential data

• Ransomware: lessons all companies can learn from the British Library attack

March 22

News/Trends

• U.S. Justice Department Sues Apple Over Monopoly and Messaging Security

• China-Linked Group Breaches Networks via Connectwise, F5 Software Flaws

• Security Leaders Acknowledge API Security Gaps Despite Looming Threat

• Russia Hackers Using TinyTurla-NG to Breach European NGO’s Systems

• AI Transparency: Why Explainable AI Is Essential for Modern Cybersecurity

• GitHub Launches AI-Powered Autofix Tool to Assist Devs in Patching Security Flaws

• AndroxGh0st Malware Targets Laravel Apps to Steal Cloud Credentials

• New ‘Loop DoS’ Attack Impacts Hundreds of Thousands of Systems

• New BunnyLoader Malware Variant Surfaces with Modular Attack Features

• From Deepfakes to Malware: AI’s Expanding Role in Cyber Attacks

• New Phishing Attack Uses Clever Microsoft Office Trick to Deploy NetSupport RAT

• A patched Windows attack surface is still exploitable

Law/Policy

• US Treasury Targets Russian Entities in Cyber Influence Campaign

• US Legislation Targets Data Sharing With Foreign Adversaries

• NCSC Publishes Security Guidance For Cloud-Hosted SCADA

• What’s Material to the SEC, Three Months Into Cyber Disclosure Rules?

• CISA Launches 911 Cybersecurity Hub Empowering Emergency Responders

• Stronger FCC Data Breach Reporting Rules for Telecom Go Live

Technical

• ASOP: A Sovereign and Secure Device Onboarding Protocol for Cloud-based IoT Services

• Counter-Samples: A Stateless Strategy to Neutralize Black Box Adversarial Attacks

• Shifting the Lens: Detecting Malware in npm Ecosystem with Large Language Models

• Semantic Data Representation for Explainable Windows Malware Detection Models

Report, blogs, podcasts

• RaaS Groups Increasing Efforts to Recruit Affiliates

• Fake Data Breaches: Countering the Damage

• Red Teaming in the AI Era

• Public AI as an Alternative to Corporate AI

• Report: Growing AceCryptor Attacks in Europe

• Threat landscape for industrial automation systems. H2 2023

• Smashing Security podcast #364: Bing pop-up wars, and the British Library ransomware scandal

• How Companies Describe Cyber Incidents in SEC Filings

• The Not-so-True People-Search Network from China

• Fraudsters are posing as the FTC to scam consumers

• The Aviation and Aerospace Sectors Face Skyrocketing Cyber Threats

• AI and the Evolution of Social Media

March 15

News/Trends

• GhostRace – New Data Leak Vulnerability Affects Modern CPUs

• Malicious Python Packages Target Crypto Wallet Recovery Passwords

• Cloud Account Attacks Surged 16-Fold in 2023

• RedCurl Cybercrime Group Abuses Windows PCA Tool for Corporate Espionage

• Ande Loader Malware Targets Manufacturing Sector in North America

• Google Paid $10m in Bug Bounties to Security Researchers in 2023

• Embracing the Cloud: Revolutionizing Privileged Access Management with One Identity PAM Essentials

• New Research Exposes Security Risks in ChatGPT Plugins

• Lawmakers Slam UK Government’s “Ostrich Strategy” for Cybersecurity

• DarkGate Malware Exploited Recently Patched Microsoft Flaw in Zero-Day Attack

Law/Policy

• EU Parliament Adopts AI Act

• New DOD Cyber Policy Office Opening Soon, Sources Say

• FCC Adopts Voluntary ‘Cyber Trust Mark’ Labeling Rule for IoT Devices

• ODNI Releases New Open-Source Intelligence Strategy With Limited Details

• Bills Targeting Data Brokers and TikTok Approved in House Committee

• US Federal Budget Proposes $27.5B for Cybersecurity

Technical

• Privacy Preserving Anomaly Detection on Homomorphic Encrypted Data from IoT Sensors

• Skeptic: Automatic, Justified and Privacy-Preserving Password Composition Policy Selection

• Reflection of Federal Data Protection Standards on Cloud Governance

• REPQC: Reverse Engineering and Backdooring Hardware Accelerators for Post-quantum Cryptography

Report, blogs, podcasts

• New Report Suggests Surge in SaaS Assets, Employee Data Sharing

• Scareware scam: Restoro and Reimage fined $26 million by FTC

• How Advances in AI are Impacting Business Cybersecurity

• Improving C++

• Smashing Security podcast #363: Stuck streaming sticks, TikTok conspiracies, and spying cars

• BSAM: Open-Source Methodology for Bluetooth Security Assessment

• US Intelligence Predicts Upcoming Cyber Threats for 2024

• Patch Tuesday, March 2024 Edition

• Using LLMs to Unredact Text

• Incognito Darknet Market Mass-Extorts Buyers, Sellers

March 8

News/Trends

• Dropbox Used to Steal Credentials and Bypass MFA in Novel Phishing Campaign

• Meta Details WhatsApp and Messenger Interoperability to Comply with EU’s DMA Regulations

• Watch Out for Spoofed Zoom, Skype, Google Meet Sites Delivering Malware

• What Are the Top 7 DDoS Mitigation Tactics for Energy Grids?

• CISA Warns of Actively Exploited JetBrains TeamCity Vulnerability

• RATs Spread Via Fake Skype, Zoom, Google Meet Sites

• Ransomware Spikes Against Critical Infrastructure, Says FBI

• Cyber Pros Turn to Cybercrime as Salaries Stagnate

• Human vs. Non-Human Identity in SaaS

• Hackers Exploit ConnectWise ScreenConnect Flaws to Deploy TODDLERSHARK Malware

• VMware Issues Security Patches for ESXi, Workstation, and Fusion Flaws

• Self-Propagating Worm Created to Target Generative AI Systems

Law/Policy

• European Court Clarifies Concept of Personal Data

• Governments Eye Disclosure Requirements for AI Development Labs

• EU Agrees ‘Cyber Solidarity Act’ to Bolster Incident Response and Recovery

• Senator Cassidy Issues White Paper with Proposals to Update Health Data Privacy Framework

• US Coast Guard Expands Cyber Command to Combat New Threats

Technical

• Privacy in Cloud Computing through Immersion-based Coding

• Catch’em all: Classification of Rare, Prominent, and Novel Malware Families

• Do You Trust Your Model? Emerging Malware Threats in the Deep Learning Ecosystem

• Precise Extraction of Deep Learning Models via Side-Channel Attacks on Edge/Endpoint Devices

• Gradient Shaping: Enhancing Backdoor Attack Against Reverse Engineering

Report, blogs, podcasts

• A Taxonomy of Prompt Injection Attacks

• Spam and phishing in 2023

• Report: 78% of MSPs Identify Cybersecurity as Prime IT Challenge

• $12.5 billion lost to cybercrime, amid tidal wave of crypto investment fraud

• Whoops! ACEMAGIC ships mini PCs with free bonus pre-installed malware

• AI Tools Put Companies at Risk of Data Exfiltration

• Surveillance through Push Notifications

• Smashing Security podcast #362: Ransomware fraud, pharmacy chaos, and suicide

• Network tunneling with… QEMU?

• BlackCat Ransomware Group Implodes After Apparent $22M Payment by Change Healthcare

March 1

News/Trends

• 4 Instructive Postmortems on Data Downtime and Loss

• New Phishing Kit Leverages SMS, Voice Calls to Target Cryptocurrency Users

• New BIFROSE Linux Malware Variant Using Deceptive VMware Domain for Evasion

• How to Prioritize Cybersecurity Spending: A Risk-Based Strategy for the Highest ROI

• The mobile malware threat landscape in 2023

• What We Learned from the 2024 State of Cybersecurity Survey

• New Hugging Face Vulnerability Exposes AI Models to Supply Chain Attacks

• Five Eyes Agencies Expose APT29’s Evolving Cloud Attack Tactics

• FBI Issues Alert on Russian Threats Targeting Ubiquiti Routers

• Banking Trojans Target Latin America and Europe Through Google Cloud Run

• UK Unveils Draft Cybersecurity Governance Code to Boost Business Resilience

• Most Commercial Code Contains High-Risk Open Source Bugs

Law/Policy

• How the FBI and CISA Look to Mature the Government’s Top Ransomware Task Force

• EU AI Act: Key Takeaways from the Compromise Text

• FTC’s Khan Warns Tech Industry That Agency Will Strictly Enforce AI Data Privacy

• Biden Executive Order Seeks to Cut China off From Americans’ Sensitive Data

• UK: Privacy Watchdog Cracks Down on Biometric Employee Tracking

Technical

• A New Era in LLM Security: Exploring Security Concerns in Real-World LLM-based Systems

• Living-off-The-Land Reverse-Shell Detection by Informed Data Augmentation

• Attention-GAN for Anomaly Detection: A Cutting-Edge Approach to Cybersecurity Threat Management

• Model Predictive Control with adaptive resilience for Denial-of-Service Attacks mitigation on a Regulated Dam

• Physics-aware targeted attacks against maritime industrial control systems

• The Good and The Bad: Exploring Privacy Issues in Retrieval-Augmented Generation (RAG)

Report, blogs, podcasts

• The Just Security Podcast: A Conversation with Avril Haines the Director of National Intelligence of the United States

• NIST Cybersecurity Framework 2.0

• Healthcare sector warned of ALPHV BlackCat ransomware after surge in targeted attacks

• An educational robot security research

• Using AI to Reduce False Positives in Secrets Scanners

• A Cyber Insurance Backstop

• Calendar Meeting Links Used to Spread Mac Malware

• Framing is Everything

• Smashing Security podcast #361: Wireless charging woe, AI romance apps, and ransomware revisited

• The LockBit ransomware gang rears its ugly head again, after law enforcement takedown

• Apple Announces Post-Quantum Encryption Algorithms for iMessage

February 23

News/Trends 9 

• Microsoft Releases PyRIT – A Red Teaming Tool for Generative AI

• Cybersecurity Trends in 2024: 5 Key Areas to Follow

• Businesses Increase Cybersecurity as Budgets Surge in 2024

• If you pay ransom, you may not get your data back and worse, you probably WILL get hit again – Cybereason Survey

• FTC Slams Avast with $16.5 Million Fine for Selling Users’ Browsing Data

• Dormant PyPI Package Compromised to Spread Nova Sentinel Malware

• IBM: Identity Compromises Surge as Top Initial Access Method for Cybercriminals

• New Wi-Fi Vulnerabilities Expose Android and Linux Devices to Hackers

• LockBit Infrastructure Disrupted by Global Law Enforcers

• Russian Government Software Backdoored to Deploy Konni RAT Malware

Law/Policy

• ICO Bans Serco Leisure’s Use of Facial Recognition for Employee Attendance

• EU Data Act Regulates Business-to-Business Contracts Relating to Access and Use of Data

• Biden Executive Order to Bolster US Maritime Cybersecurity

• Japan Sees Increased Cyberthreats to Critical Infrastructure, Particularly From China

• EU Court of Human Rights Rejects Encryption Backdoors

• SaaS Compliance through the NIST Cybersecurity Framework

Technical

• Enabling Zero Trust Security in IoMT Edge Network

• Exploring Emerging Trends in 5G Malicious Traffic Analysis and Incremental Learning Intrusion Detection Strategies

• Leveraging AI Planning For Detecting Cloud Security Vulnerabilities

• Privacy-Preserving Instructions for Aligning Large Language Models

• Unlink to Unlearn: Simplifying Edge Unlearning in GNNs

Report, blogs, podcasts

• AIs Hacking Websites

• Prescription orders delayed as US pharmacies grapple with “nation-state” cyber attack

• New Leak Shows Business Side of China’s APT Menace

• Microsoft Is Spying on Users of Its AI Tools

• Analyzing Threat Reports with Fabric

• Smashing Security podcast #360: LockBit locked out, and funeral Facebook scams

• Feds Seize LockBit Ransomware Websites, Offer Decryption Tools, Troll Affiliates

• Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity

• Insights from the NSA 2023 Cybersecurity Report

February 16

News/Trends

• Hackers Exploit EU Agenda in Spear Phishing Campaigns

• PDF Malware on the Rise, Used to Spread WikiLoader, Ursnif and DarkGate

• China Calls Out U.S. For Hacking. The Proof? TBD!

• US military notifies 20,000 of data breach after cloud email leak

• Chinese Hackers Using Deepfakes in Advanced Mobile Banking Malware Attacks

• Romantic AI Chatbots Fail the Security and Privacy Test

• Bumblebee Malware Returns with New Tricks, Targeting U.S. Businesses

• Microsoft, OpenAI Confirm Nation-States are Weaponizing Generative AI in Cyber-Attacks

• DarkMe Malware Targets Traders Using Microsoft SmartScreen Zero-Day Vulnerability

• US Dismantles Warzone RAT Malware Operation

Law/Policy

• Rules on Targeted Advertising: What do the Digital Markets Act and Digital Services Act Say?

• FTC Wants to Crack Down on AI Impersonation of Individuals

• CISA Reveals JCDC’s 2024 Cybersecurity Priorities

• European Commission Announces New Package of AI Measures

• FTC Says It Will Go After Companies That ‘Quietly’ Change Privacy Policies to Mine User Data for AI

• AI-Generated Voices in Robocalls Now Illegal

Technical

• Data Reconstruction Attacks and Defenses: A Systematic Evaluation

• MAGNETO: Edge AI for Human Activity Recognition — Privacy and Personalization

• Combatting deepfakes: Policies to address national security threats and rights violations

• Software vulnerable functions discovery based on code composite feature

• A Note on Adversarial Online Complexity in Security Proofs of Duplex-Based Authenticated Encryption Modes

Report, blogs, podcasts

• Google Calls for Framework Giving AI Access to Incident Data

• We Can’t Risk Losing Staff to Alert Fatigue

• U.S. Internet Leaked Years of Internal, Customer Emails

• On the Insecurity of Software Bloat

• Rhysida ransomware cracked! Free decryption tool released

• Fat Patch Tuesday, February 2024 Edition

• Smashing Security podcast #359: Declaring war on ransomware gangs, mobile muddles, and AI religion

• Leveraging AI LLMs to Counter Social Engineering: A Psychological Hack-Back Strategy

• Improving the Cryptanalysis of Lattice-Based Public-Key Algorithms

• 5 Key Findings from the Business Email Compromise (BEC) Trends Report