October 20th, 2024

• Fortinet Firewalls Under Attack – Again
• Hackers Target Google Meet Users with “ClickFix” Malware
• DoJ Guidance – What to do NOW for Risk Assessments
• Jetpack Patch Exposes Data on 27 Million WordPress Sites
• EU Still Wants Massive Invasion of Privacy Surveillance Regime
• Brazil Arrests Hacker Tied to FBI and National Public Data Breaches
• Feds Begin to Use AI to Catch Fraud – Recovered $1 Billion in First Year
• Healthcare Revenue Management Firm’s Breach Affects 400,000
• Cisco Shops Be Warned
• Customer Data of 1 Million Customers of Ticket Broker Central Tickets is for Sale
• Radiant Capital Crypto Lending Project Exploited Again, for at Least $50 Mil
• Three Medical Practices Breached; Lost Data on 740,000

Security News for the Week Ending October 18th, 2024

Now North Korea is using fake IT workers to extort employers, surprise (NOT) Open AI confirms
attackers use ChatGPT to write malware, Microsoft lost customer security logs, September
Veeam patch now being exploited and new attacks on Intel and AMD trusted execution
environments.

Read details here.

Do you have data in the cloud? What is your level of confidence that you have your data
locked down? Tenable Security says that 74% of their customers were wrong. And their
customers are the ones that are already more security aware than the average business
person. If you are concerned about this, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

October 13th, 2024

• China’s ‘Salt Typhoon’ Attacks US Internet Providers
• Hackers Use Bugs in Adobe Commerce and Magento to Steal Payment Information
• Windows 11 24H2 Now Available
• Microsoft Previews Dynamic Privilege Escalation Feature
• Fortinet RCE Being Exploited
• Marriott to Pay $52 Million for Data Breach from 2018
• National Public Data, Data Broker Who Lost Data on 2.9 Billion, Files for Bankruptcy
• FBI Creates Crypto Sting by Creating its Own Token
• Just Because You Are Famous Does Not Mean You Know What You Are Doing
• Happy Birthday Mr. President (Putin) – Hacked Your State Run Media
• American Water, Largest Water/Wastewater Utility, Hacked
• What if the 3rd Party You Picked Was Breached and Didn’t Have the $ to Make You Whole
• Golf Tech Firm Loses Data on 32 Million

Security News for the Week Ending October 11th, 2024

Microsoft confirms MMC bug being exploited – no patch, AT&T faces porch pirates, likely with
inside information, hacker claims Star Health management involved in insurance data breach,
cyber insurer says number of claims down, size of claims up and as companies use AI to filter
job applicants, applicants use AI to apply to thousands of jobs.

Read details here.

If you use one of the major Internet providers like AT&T, Verizon or Lumen (AKA
Centurylink/Qwest/US West), they have all been compromised, apparently. That means it
is up to you to protect the data that you transmit and receive and you should not assume
that they can or are protecting it. If that makes you nervous or if you are unsure if you
are doing enough to protect your data, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

October 6th, 2024

• Nationwide Verizon Outage Has Unexpected Side Effects
• Zimbra Mail Servers Under Siege
• T-Mobile To Pay $31 Mil Due to Many Security SNAFUs
• Florida Federal Court Says False Claims Act Qui Tam Provision Violates Constitution
• ONLY Level 1 Trauma Center in West Texas Hit by Cyberattack; Diverts Ambulances
• Vendor Blame Game Goes on after Breach at Rackspace

Security News for the Week Ending October 4th, 2024

China starts flying homegrown airplanes proving IP theft works, OMG, Playstation is down,
another fatality from Hurricane Helene – electric cars catch fire, burn houses down, NASA
astronauts can vote from space and former Mesa County (Colorado) election official Tina Peters
sentenced to 9 years for election fraud.

Read details here.

The recent Verizon meltdown had an interesting side effect. As more people adopt MFA,
the most common but least secure flavor is using text messages. But, with Verizon out
of commission (and AT&T and T-Mobile have had similar issues), people could not login
even though the underlying service was working. This is where business continuity
planning comes into play; there are several easy and inexpensive solutions to this. If
you would prefer to avoid this trap and need help, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663