The Cyberwire Daily Briefing

"Law enforcement disrupts criminal cryptocurrency laundering networks."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 29 September 2024, 1427 UTC.

Content and Source:   https://thecyberwire.com/newsletters/daily-briefing/13/186

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

V13 | Issue 186 | 9.27.24

Daily Briefing for 09.27.24

Summary
By the CyberWire staff

At a glance.

  • Law enforcement disrupts criminal cryptocurrency laundering networks.
  • Newly disclosed Linux RCE flaws are serious, but overhyped.
  • EU fines Meta $102 million over password security lapse.

Law enforcement disrupts criminal cryptocurrency laundering networks.

The US Justice Department, assisted by police in the Netherlands, Latvia, Germany, and the UK, yesterday seized three web domains associated with cryptocurrency exchanges allegedly used by Russian cybercriminals for money laundering, the Record reports. The US Treasury Department has sanctioned the cryptocurrency exchange Cryptex and Russian national Sergey Sergeevich Ivanov, who is allegedly involved with the virtual currency exchange PM2BTC and the payment processor UAPS. Law enforcement seized websites and infrastructure used by PM2BTC, UAPS, and Cryptex, and the US State Department is offering up to $10 million for information leading to Ivanov's arrest.

Special Offer: Claim your complimentary security questionnaire today.

Time spent on customer security questionnaires is time you could invest in improving your security posture. At BARR Advisory, we take the burden off your shoulders by managing your vendor due diligence processes and much more, so you can focus on what matters—growing your business. From internal audits to penetration testing, BARR’s comprehensive consulting services cover all your cybersecurity and compliance needs. Take advantage of our limited-time offer: Claim your free security questionnaire now.

Newly disclosed Linux RCE flaws are serious, but overhyped.

A security researcher has disclosed a set of vulnerabilities affecting Linux systems that could lead to remote code execution. SecurityWeek notes that the flaws are less impactful than many people in the cybersecurity industry had anticipated. The flaws affect the Unix printing system CUPS and require user interaction during a print job for exploitation. Users who employ Unix-based systems for printing should apply mitigations until patches are available.

The group of vulnerabilities was originally assigned a critical CVSS score of 9.9, but has since been revised to a "high" severity rating. The researcher who discovered the flaws stated, "I think that the initial 9.9 was mostly due to the fact that the RCE is trivial to exploit and the package presence so widespread. Impact wise I wouldn’t classify it as a 9.9."

Are You Confident in the Security of Your Remote and Hybrid Employees?

A remote or hybrid workforce expands your company's surface area of attack beyond corporate firewall boundaries. Employees’ personal computers introduce shadow IT, and home networks with default settings are easy targets, compounded by public Wi-Fi vulnerabilities. You need to develop a strategy to stay secure while remote employees work across untrusted networks. To learn how you can secure your company's workforce, get a free copy of the latest ThreatLocker® whitepaper on how to secure remote workforces.

EU fines Meta $102 million over password security lapse.

The Irish Data Protection Commission (DPC) has fined Meta €91 million ($102 million) under GDPR for storing hundreds of millions of Facebook passwords in plaintext, TechCrunch reports. DPC deputy commissioner Graham Doyle said in a statement, "It is widely accepted that user passwords should not be stored in plaintext, considering the risks of abuse that arise from persons accessing such data. It must be borne in mind, that the passwords the subject of consideration in this case, are particularly sensitive, as they would enable access to users’ social media accounts."

A Meta spokesperson told TechCrunch, "As part of a security review in 2019, we found that a subset of FB users’ passwords were temporarily logged in a readable format within our internal data systems. We took immediate action to fix this error, and there is no evidence that these passwords were abused or accessed improperly. We proactively flagged this issue to our lead regulator, the Irish Data Protection Commission, and have engaged constructively with them throughout this inquiry."

[On Demand Podcast] Cloud Security in the Age of Generative AI

Listen to the recent discussion between N2K CyberWire’s Dave Bittner and Sysdig’s Loris Degioanni on how generative AI (GenAI) and Large Language Models (LLMs) are changing the cloud security landscape. We explored how to secure your AI deployments to safeguard sensitive information and went into the state-of-the-art for employing AI to boost the effectiveness of your cloud security teams in the face of evolving threats. Watch or listen to the discussion now.

Notes.

Today's issue includes events affecting the European Union, Germany, Ireland, Latvia, the Netherlands, Russia, the United Kingdom, and the United States.

Sponsored Events
2024 DataTribe Challenge (Virtual (for submissions), Sep 9 - 27, 2024) The DataTribe Challenge is a unique startup competition for pre-seed and seed stage cybersecurity and data science startups. It’s a platform for startups to connect with DataTribe, to tighten their pitch, to gain industry exposure, and to make connections with prospective investors and customers.
Upcoming Cybersecurity Summits (Multiple locations, Sep 17 - 27, 2024) Join us In-Person and network over breakfast, lunch & a cocktail reception on 9/17 in Atlanta, 9/19 in Wall Street, 9/26 in Columbus and 9/27 in Philadelphia. Learn about the latest threats and solutions from The IRS, U.S. DHS/CISA, Visit Philadelphia & more. Earn CPE/CEU credits with your attendance. Get 50% off admission w/ code CSS24-CYBERWIRE at CyberSecuritySummit.com (Only $125 with code)
HITRUST Collaborate 2024 (Omni Star at The Dallas Cowboys World Headquarters, Oct 1 - 3, 2024) Cybersecurity risk management leaders will cover critical topics, like challenges posed by AI, business resilience in the face of ransomware, the future cybersecurity workforce, and access to cybersecurity insurance. Thought leaders will offer actionable insights to help you fortify your security posture.
On-demand webinar - Watch now: Generative AI for Security (Virtual, On-demand, Oct 2 - Sep 30, 2024) How can generative artificial intelligence (AI) enhance your security operations? Watch this webinar from AWS and SANS to get a comprehensive roadmap for securely adopting generative AI using Amazon Bedrock. Experts will address key challenges and ethical considerations, then guide you through a hands-on Explore-Develop-Deploy framework while looking at real-world use cases and implementation. Watch now.
ISC2 Security Congress 2024 (Virtual / Las Vegas, NV, US, Oct 14 - 16, 2024) Join us at ISC2 Security Congress, October 14-16 in Las Vegas or online. Connect with global cyber experts, hear from four keynote speakers, and participate in one of eight pre-conference workshops. Discover cutting-edge insights and advance your skills in cybersecurity. Don’t miss out!
Step into the heart of excitement at the Finance & Accounting Technology Expo! (New York, NY, Oct 29 - 30, 2024) FATE is the leading expo in the finance industry, bringing together experts, innovators, and professionals like yourself to connect, explore and expand! There will be over 70 technologies, more than 60 learning sessions, incredible networking with over 1000 finance and accounting professionals -- and great keynote speakers. Our keynote speakers range from Shark Tank Judge Daymond John to CFO Glenn Hopper and even a TechStack of Sports panel, bringing you CFOs of some of the most recognized brands in sports sharing how technology powers their decisions and their growth! This premier event will leave you with the latest insights, strategies, and tools necessary to excel in the dynamic landscape of finance, accounting, and technology. And the best part is that – it's FREE! Use Code: wko735 and reduce your ticket price to $0. Register here today!
Selected Reading

Attacks, Threats, and Vulnerabilities

Hackers attack Delaware libraries, seek ransom. Here's what we know (Delaware Online) The Delaware Division of Libraries is trying to figure out how to quickly turn the page from an ongoing cyberattack that struck libraries across the state, beginning Friday, Sept. 20.

Progress urges admins to patch critical WhatsUp Gold bugs ASAP (BleepingComputer) Progress Software warned customers to patch multiple critical and high-severity vulnerabilities in its WhatsUp Gold network monitoring tool as soon as possible.

Marketplace

Tails OS joins forces with Tor Project in merger (Ars Technica) The organizations have worked closely together over the years.

Exclusive: Security compliance unicorn Drata lays off 9% of its workforce (TechCrunch) Drata, a security compliance automation platform that helps companies adhere to frameworks such as SOC 2 and GDPR, has laid off 9% of its

Legislation, Policy, and Regulation

Senate bill pushes cyber mandates for medical industry in wake of Change Healthcare debacle (The Record) Hospitals and other healthcare businesses would be required to adopt minimum cybersecurity standards and face annual audits under new legislation introduced by two prominent senators.

Litigation, Investigation, and Law Enforcement

Criminal charges coming in alleged Iranian hack of Trump campaign emails: Sources (ABC News) Law enforcement officials plan to announce criminal charges Friday in connection with the alleged Iranian hack of emails from Donald Trump's campaign, source say.

Meta fined $101 million for storing hundreds of millions of passwords in plaintext (The Record) European regulators fined Meta for an engineering mistake that the social media giant first reported in 2019.

Industry Events

For a complete running list of events, please visit the Event Tracker.

Newly Noted Events

CYBERWARCON (Arlington + Virtual, Virginia, USA, Nov 22, 2024) CYBERWARCON is a one-day conference in Arlington, VA focused on the specter of destruction, disruption, and malicious influence on our society through cyber capabilities. CYBERWARCON is not a hacker conference, or an ICS conference, or an international policy conference. The central purpose of this conference is to identify and explore threats. Participants and attendees come from a spectrum of backgrounds including the military and government, academia, the media, and the private sector.

Events

2024 DataTribe Challenge Submission Deadline (Fulton and Virtual, Maryland, USA, Sep 27, 2024) As founders ourselves, we have never liked the feeling of being the entertainment that comes with participating in most pitch competitions. So, in creating the DataTribe Challenge, we have centered it on the North Star of creating a platform that is a valuable use of time for the founders participating. Submit your startup to potentially be selected to be part of a startup competition like no other. The DataTribe Challenge is a unique program to accelerate your cybersecurity startup. Workshop your messaging and meet potential investors and customers. We will pick five finalists to join the program, receive coaching from our team of startup veterans, present at the live event, and benefit from free promotion and press coverage. Finalists share $25,000 in prizes and all will receive the title of DataTribe Challenge Finalist.

Uniting Women in Cyber 2024 (Arlington, Virginia, USA, Oct 1, 2024) The premier networking event to advance diversity in cybersecurity! Join renowned cyber leaders and experts from all walks of life. Uniting Women in Cyber (UWIC) event convenes a powerful and diverse network of cyber leaders and experts to discuss emerging global trends, technological advancements, and workforce development. UWIC is the premier event for professionals, aspiring practitioners and all who are interested in cybersecurity, to meet and network with national leaders in the field. Come and be a part of a vibrant, diverse community to learn, share ideas, and expand your professional network!

HITRUST® Collaborate 2024 (Frisco, Texas, USA, Oct 1 - 3, 2024) HITRUST Collaborate is the most comprehensive information protection and risk management conference for privacy, security, and compliance. The 2.5-day conference includes keynotes, panel discussions, and educational sessions for industry professionals.

Insider Risk Management Program Evaluation & Optimization Training Course (Laurel, Maryland, USA, Oct 2 - 3, 2024) This highly sought after and very comprehensive training course, will ensure that the Insider RIsk Program Manager / Insider Threat Program (ITP) Manager and other key stakeholders that support the program, have the Core / Advanced Knowledge, Blueprint, Resources needed for developing, managing or optimizing a program. Students will be provided with an ITP Management Toolkit that provides an abundance of educational resources, templates and checklists for ITP development, management and optimization. Our student satisfaction levels are in the exceptional range. The Insider Threat Defense Group is so confident about our training courses that they come with a money back training guarantee.

SecureWorld Dallas (Plano, Texas, USA, Oct 3, 2024) Join your regional cybersecurity community for high-quality, affordable training and collaboration. Earn 6-12 CPE credits through 15+ educational sessions learning from local and nationally recognized industry leaders. Attend featured keynotes, panel discussions, breakout sessions, and solution vendor displays—all while networking with peers in InfoSec.

Sponsor & Support
Grow your brand, generate leads, and fill your funnel.
With the industry’s largest B2B podcast network, popular newsletters, and influential readers and listeners all over the world, companies trust the CyberWire to get the message out. Learn more.

Comments

Popular posts from this blog

BleepingComputer.com

The Cyberwire Daily Briefing

SecurityWeek Briefing