February 25th, 2024

• AI Girlfriend App Sent Out 24,354 Ad Trackers Within the First Minute of Use
• Nevada AG Sues Meta Over Offering End to End Encryption to Kids
• OpenAI Releases Sora to Create Amazing Videos
• Joomla Content Management System Bug Exposes Millions of Websites to Hackers
• ConnectWise MSP Maintenance Tool Releases EXTREMELY CRITICAL Patch
• AI and Plagiarism – Who Would Have Figured?
• Score Another One for the Good Guys
• DoT and White House Tackle Chinese Threats to US Port Security
• CISA, FBI and EPA Release Guidance for Securing Water Systems
• BlackCat/Alphv Takes Credit for LoanDepot and Prudential Attacks
• Pennsylvania County Pays $350,000 Cyber Attack Ransom
• Vendor To Eye Care Providers Breached – Impacts 2+ Million Customers
• Hackers Steal Nearly $10 Million From Video Game Founder’s Personal Account

Security News for the Week Ending February 23rd, 2024

This week’s news bites: NSA cyber director Rob Joyce to retire after 34 years, Influencer Crypto
Rover accused of pump and dump for crypto, European Parliament subcommittee phones may
be hacked, many happy returns – some are returning Apple’s $3500 goggles and AT&T cell
outage disrupts service for million.

Read details here.

If you use a third party IT managed service provider (MSP), they may be the single largest
cyber risk your company faces due to their cyber practices. Are the cybersecurity
practices of your MSP up to the task? Are you sure? If you are not sure, please contact
us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

February 18th, 2024

• US Internet Exposed Every Customer Email Message Going Back More Than a Decade
• DoD Wants You to be Secure, But They are Not so Secure Themselves
• ExpressVPN Issue Emergency Patch
• Hackers Used Windows Defender Zero-Day to Drop DarkMe Malware
• Anyone Still Running On Premise Exchange – Patch Now
• Microsoft Issues Patch for Critical Outlook Protected View Remote Code Execution Bug
• New WiFi Authentication Bypass Exposes Home and Enterprise WiFi
• Colorado Public Defender’s Systems Offline After Cyberattack
• New Jersey Law Enforcement Officers Sue 118 Data Brokers
• House Repubs Punt on FISA Section 702 Renewal … Again

Security News for the Week Ending February 16th, 2024

This week’s news bites: FCC bans robocalls using AI-generated voices, Apple Vision Pro was
porn free – for three weeks, Russian interference ‘poses a clear threat’ to EU elections and
Apple defends “parts pairing” as Oregon considers right to repair.

Read details here.

Volt Typhoon is Chinese malware that is going after critical infrastructure. If you are part
of critical infrastructure are you prepared? If you are not sure, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

February 11th, 2024

• Bug in Every Linux Boot Loader SIgned in the Past Decade
• Twin FortiSIEM Bugs – Rate 10 out of 10
• Google Saves Your Gemini (Bard) conversations for Years by Default
• Mozilla Monitor Plus
• Fortinet SSL VPN Bug Likely Exploited
• AnyDesk Remote Access Software Systems Compromised

Security News for the Week Ending February 11th, 2024

This week’s news bites: DEF CON is canceled, no really, ransomware payments more than
doubled in 2023 to more than $1 billion, feds look at making software developers liable for bugs,
hackers are coming for your travel account and is 1111 a bad password?

Read details here.

Are you protected from the reputational damage of deep fakes? Are you protected from
the financial damage? Are you sure? Are your employees ready for the attacks that are
already happening? What about if it happens to a supplier? Do you have a plan? Do
you even fully understand the problem? If not, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

February 4th, 2024

• The New War – Ukraine Claims to Have Destroyed 280 Russian Servers and 2 Petabytes of Data
• FBI Warns of Tech Support and Other Scams Using in Person Couriers to Collect Money and Precious Metals
• Midnight Blizzard is Not a New Dairy Queen Treat
• Fulton County, Georgia Suffers Power Outage and Cyber Attack
• Hyperverse Founder Sam Lee Charged with Defrauding Crypto Customers of $1 Billion+
• Meta Adds Protections for Children in Face of Being Sued by 42 AGs
• NY AG Goes After Citi for Failing Basic Protections of Consumers’ Accounts
• Insurance Broker Hacked – Compromises 1.5 Million Employees Data
• Blackbaud Settles with FTC Over Breach Affecting Millions
• Another Chicago Hospital Announces a Cyberattack

Security News for the Week Ending February 2nd, 2024

This week’s news bites: Myanmar cyber crime bosses handed over to China, score one for the
good guys as German police seize $2.1 billion in crypto, Apple patches VR googles even before
they are released, score another one for the good guys – FBI recovers nearly $3 mil and
everyone wants free money – especially hackers, but also taxpayers.

Read details here.

The breach reported above of insurance broker Keenan is important in several ways.
First, the hackers were able to steal information on over a million and half people in just a
few hours if you believe what they are saying. It also points out the challenges of supply
chain breaches and finally, it is a reminder that you WILL be sued when a supplier gets
hacked. Are you doing everything you need to be doing to protect your company? Do
you have a plan? Do you even fully understand the problem? If not, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663