Brett Solomon on Digital Rights
Schneier on Security
JULY 19, 2024
Brett Solomon is retiring from AccessNow after fifteen years as its Executive Director. He’s written a blog post about what he’s learned and what comes next.
Fri.Jul 19, 2024
311 
Huge Microsoft Outage Linked to CrowdStrike Takes Down Computers Around the World
WIRED Threat Level
JULY 19, 2024
A software update from cybersecurity company CrowdStrike appears to have inadvertently disrupted IT systems globally.
Join 28,000+
Insiders
Sign Up for our Newsletter
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Faulty CrowdStrike Update Crashes Windows Systems, Impacting Businesses Worldwide
The Hacker News
JULY 19, 2024
Businesses across the world have been hit by widespread disruptions to their Windows workstations stemming from a faulty update pushed out by cybersecurity company CrowdStrike. "CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts," the company's CEO George Kurtz said in a statement. "Mac and Linux hosts are not impacted.
Russian nationals plead guilty to participating in the LockBit ransomware group
Security Affairs
JULY 19, 2024
Two Russian nationals pleaded guilty to participating in the LockBit ransomware group and carrying out attacks against victims worldwide. Two foreign nationals, Ruslan Magomedovich Astamirov and Mikhail Vasiliev, pleaded guilty in Newark federal court for their roles in the LockBit ransomware operation. The LockBit ransomware operation has been active since January 2020, the group hit over 2,500 victims across 120 countries, including 1,800 in the U.S.
How to Avoid Pitfalls In Automation: Keep Humans In the Loop
Speaker: Erroll Amacker
Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.
CrowdStrike update crashes Windows systems, causes outages worldwide
Bleeping Computer
JULY 19, 2024
A faulty component in the latest CrowdStrike Falcon update is crashing Windows systems, impacting various organizations and services across the world, including airports, TV stations, and hospitals. [.
APT41 Infiltrates Networks in Italy, Spain, Taiwan, Turkey, and the U.K.
The Hacker News
JULY 19, 2024
Several organizations operating within global shipping and logistics, media and entertainment, technology, and automotive sectors in Italy, Spain, Taiwan, Thailand, Turkey, and the U.K. have become the target of a "sustained campaign" by the prolific China-based APT41 hacking group.
Sign up to get articles personalized to your interests!
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
|
More Trending
17-Year-Old Linked to Scattered Spider Cybercrime Syndicate Arrested in U.K.
The Hacker News
JULY 19, 2024
Law enforcement officials in the U.K. have arrested a 17-year-old boy from Walsall who is suspected to be a member of the notorious Scattered Spider cybercrime syndicate. The arrest was made "in connection with a global cyber online crime group which has been targeting large organizations with ransomware and gaining access to computer networks," West Midlands police said.
MediSecure data breach impacted 12.9 million individuals
Security Affairs
JULY 19, 2024
Personal and health information of 12.9 million individuals was exposed in a ransomware attack on Australian digital prescription services provider MediSecure. MediSecure is a company that provides digital health solutions, particularly focusing on secure electronic prescription delivery services in Australia. In May, the company was forced to shut down its website and phone lines following a cyber attack, but it did not mention a ransomware attack.
Global Outage Outrage: CrowdStrike Security Tool Blamed
Security Boulevard
JULY 19, 2024
BSODs beyond belief: A buggy update to CrowdStrike Falcon made Windows PCs and servers crash—worldwide. The post Global Outage Outrage: CrowdStrike Security Tool Blamed appeared first on Security Boulevard.
CrowdStrike update epic fail crashed Windows systems worldwide
Security Affairs
JULY 19, 2024
Windows machines worldwide displayed BSoD screen following a faulty update pushed out by cybersecurity firm CrowdStrike. A faulty update released by CrowdStrike Falcon is causing Windows systems to display a BSoD screen. The incident is causing widespread global disruptions, impacting critical infrastructure such as airports, hospitals, and TV stations.
Why Giant Content Libraries Do Nothing for Your Employees’ Cyber Resilience
Advertisement
Many cybersecurity awareness platforms offer massive content libraries, yet they fail to enhance employees’ cyber resilience. Without structured, engaging, and personalized training, employees struggle to retain and apply key cybersecurity principles. Phished.io explains why organizations should focus on interactive, scenario-based learning rather than overwhelming employees with excessive content.
SolarWinds Patches 11 Critical Flaws in Access Rights Manager Software
The Hacker News
JULY 19, 2024
SolarWinds has addressed a set of critical security flaws impacting its Access Rights Manager (ARM) software that could be exploited to access sensitive information or execute arbitrary code. Of the 11 vulnerabilities, seven are rated Critical in severity and carry a CVSS score of 9.6 out of 10.0.
Cisco fixed a critical flaw in Security Email Gateway that could allow attackers to add root users
Security Affairs
JULY 19, 2024
Cisco has addressed a critical vulnerability that could allow attackers to add new root users to Security Email Gateway (SEG) appliances. Cisco fixed a critical vulnerability, tracked as CVE-2024-20401 (CVSS score 9.8), that could allow unauthenticated, remote attackers to add new users with root privileges and permanently crash Security Email Gateway (SEG) appliances.
Pro-Houthi Group Targets Yemen Aid Organizations with Android Spyware
The Hacker News
JULY 19, 2024
A suspected pro-Houthi threat group targeted at least three humanitarian organizations in Yemen with Android spyware designed to harvest sensitive information. These attacks, attributed to an activity cluster codenamed OilAlpha, entail a new set of malicious mobile apps that come with their own supporting infrastructure, Recorded Future's Insikt Group said.
Number of data breach victims goes up 1,000%
Malwarebytes
JULY 19, 2024
Nope, that headline’s not a typo. Over one thousand percent. The Identity Theft Resource Center (ITRC) tracked 1,041,312,601 data breach victims in Q2 2024, an increase of 1,170% over Q2 2023 (81,958,874 victims). The ITRC is a national non-profit organization set up with the goal of minimizing the risk and mitigating the impact of identity compromise.
Zero Trust Mandate: The Realities, Requirements and Roadmap
Advertisement
The DHS compliance audit clock is ticking on Zero Trust. Government agencies can no longer ignore or delay their Zero Trust initiatives. During this virtual panel discussion—featuring Kelly Fuller Gordon, Founder and CEO of RisX, Chris Wild, Zero Trust subject matter expert at Zermount, Inc., and Principal of Cybersecurity Practice at Eliassen Group, Trey Gannon—you’ll gain a detailed understanding of the Federal Zero Trust mandate, its requirements, milestones, and deadlines.
Two Russian Nationals Plead Guilty in LockBit Ransomware Attacks
The Hacker News
JULY 19, 2024
Two Russian nationals have pleaded guilty in a U.S. court for their participation as affiliates in the LockBit ransomware scheme and helping facilitate ransomware attacks across the world. The defendants include Ruslan Magomedovich Astamirov, 21, of Chechen Republic, and Mikhail Vasiliev, 34, a dual Canadian and Russian national of Bradford, Ontario.
Security of Custom GitHub Actions
Security Boulevard
JULY 19, 2024
Get details on Legit's research on the security of custom GitHub Actions. The post Security of Custom GitHub Actions appeared first on Security Boulevard.
Don't Fall for CrowdStrike Outage Scams
WIRED Threat Level
JULY 19, 2024
Swindlers are spinning up bogus websites in an attempt to dupe people with “CrowdStrike support” scams following the security firm's catastrophic software update.
Judge Dismisses Most SEC Charges Against SolarWinds
Security Boulevard
JULY 19, 2024
A federal district court judge blew a hole in the SEC's case against SolarWinds, saying that while the company and its CISO could be tried for statements made before the high-profile Sunburst attack, those that came after were based on "speculation and hindsight." The post Judge Dismisses Most SEC Charges Against SolarWinds appeared first on Security Boulevard.
Next-Level Fraud Prevention: Strategies for Today’s Threat Landscape
Speaker: Sierre Lindgren
Fraud is a battle that every organization must face – it’s no longer a question of “if” but “when.” Every organization is a potential target for fraud, and the finance department is often the bullseye. From cleverly disguised emails to fraudulent payment requests, the tactics of cybercriminals are advancing rapidly. Drawing insights from real-world cases and industry expertise, we’ll explore the vulnerabilities in your processes and how to fortify them effectively.
Safeguard Personal and Corporate Identities with Identity Intelligence
The Hacker News
JULY 19, 2024
Learn about critical threats that can impact your organization and the bad actors behind them from Cybersixgill’s threat experts. Each story shines a light on underground activities, the threat actors involved, and why you should care, along with what you can do to mitigate risk. In the current cyber threat landscape, the protection of personal and corporate identities has become vital.
What Caused the CrowdStrike Microsoft Outage?
Identity IQ
JULY 19, 2024
What Caused the CrowdStrike Microsoft Outage? IdentityIQ The CrowdStrike Microsoft outage is the largest IT outage in history with businesses affected worldwide. Triggered by a software update issue at CrowdStrike and compounded by disruptions in Microsoft’s Azure cloud platform, the outage led to significant operational disruptions across airlines, financial institutions, and media companies.
Summary of "AI Leaders Spill Their Secrets" Webinar
The Hacker News
JULY 19, 2024
Event Overview The "AI Leaders Spill Their Secrets" webinar, hosted by Sigma Computing, featured prominent AI experts sharing their experiences and strategies for success in the AI industry. The panel included Michael Ward from Sardine, Damon Bryan from Hyperfinity, and Stephen Hillian from Astronomer, moderated by Zalak Trivedi, Sigma Computing's Product Manager.
Future-Proofing Cities: LYT’s Story
Security Boulevard
JULY 19, 2024
As cities expand with smart technologies to enhance infrastructure, robust cybersecurity is crucial. Discover how continuous assessments with NodeZero keep urban operations safe and efficient. The post Future-Proofing Cities: LYT’s Story appeared first on Horizon3.ai. The post Future-Proofing Cities: LYT’s Story appeared first on Security Boulevard.
Prevent Data Breaches With Zero-Trust Enterprise Password Management
Advertisement
Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.
Best DNS Software in 2024
Heimadal Security
JULY 19, 2024
Choosing the right DNS software can make a significant difference in your network’s speed, security, and reliability. With a variety of options available, finding the best DNS software for your needs in 2024 can be challenging. This guide will help you explore the top choices, highlighting their key features, so you can make an informed […] The post Best DNS Software in 2024 appeared first on Heimdal Security Blog.
Russians plead guilty to involvement in LockBit ransomware attacks
Bleeping Computer
JULY 19, 2024
Two Russian nations have pleaded guilty to involvement in many LockBit ransomware attacks, which targeted victims worldwide and across the United States. [.
CrowdStrike Falcon Sensor Crash Triggers Global IT Outage, Emergency Patch Released
Penetration Testing
JULY 19, 2024
A critical crash error in CrowdStrike’s Falcon Sensor platform has caused widespread IT disruptions across the globe, affecting critical services like 911 call centers, airlines, banks, and major media outlets. Over the past 24... The post CrowdStrike Falcon Sensor Crash Triggers Global IT Outage, Emergency Patch Released appeared first on Cybersecurity News.
In its second year ReliaQuest internship program continues to educate youth on cybersecurity.
Digital Shadows
JULY 19, 2024
ReliaQuest identified a 20% rise in ransomware-affected organizations in Q2 2024. Despite disruptions, new groups are increasing activity.
Optimizing The Modern Developer Experience with Coder
Advertisement
Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.
CrowdStrike update epic fail crashed Windows systems worldwide
Security Affairs
JULY 19, 2024
Windows machines worldwide displayed BSoD screen following a faulty update pushed out by cybersecurity firm CrowdStrike. A faulty update released by CrowdStrike Falcon is causing Windows systems to display a BSoD screen. The incident is causing widespread global disruptions, impacting critical infrastructure such as airports, hospitals, and TV stations.
This iPhone thermal camera accessory is one of my favorite tools
Zero Day
JULY 19, 2024
The industrial-grade Topdon TC002 gives your iPhone a cool superpower and you can get it for much less than a dedicated thermal imaging camera.
MediSecure data breach impacted 12.9 million individuals
Security Affairs
JULY 19, 2024
Personal and health information of 12.9 million individuals was exposed in a ransomware attack on Australian digital prescription services provider MediSecure. MediSecure is a company that provides digital health solutions, particularly focusing on secure electronic prescription delivery services in Australia. In May, the company was forced to shut down its website and phone lines following a cyber attack, but it did not mention a ransomware attack.
This ultra-thin power bank is a must-have travel gadget
Zero Day
JULY 19, 2024
The Auskang 5,000mAh power bank is only about as thick as a few credit cards, but it has enough power to reliably charge your smartphone or other USB-C device.
The Tumultuous IT Landscape Is Making Hiring More Difficult
Advertisement
After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!
Let's personalize your content