IT Security News Daily Summary 2025-01-07

160 posts were published in the last hour

• 22:15 : EFF Statement on Meta’s Announcement of Revisions to Its Content Moderation Processes
• 20:21 : Deepmind-Stellenausschreibung verrät, woran Googles KI-Experten derzeit arbeiten
• 20:21 : "Labyrinth aus Spiegeln": Instagram zeigt Nutzern KI-generierte Bilder von sich selbst
• 20:21 : Lemon8: Das steckt hinter dem Tiktok-Ableger, der in den USA durch die Decke geht
• 20:20 : Malicious Android App On Amazon Appstore Distributed Spyware
• 20:20 : New DoubleClickjacking Attack Bypasses Existing Security Measures
• 20:20 : FireScam Android Malware Lures Victims By Posing As Telegram Premium App
• 20:20 : Fake Hardhat npm Packages Target Ethereum Developers
• 20:20 : Enhancing Cloud Cybersecurity for Critical Infrastructure Protection
• 20:5 : IT Security News Hourly Summary 2025-01-07 21h : 4 posts
• 19:32 : Mazda Connect Systems Vulnerable to Cyber Attacks
• 19:32 : Telegram reports spike in sharing user data with law enforcement
• 19:32 : Comic Agilé – Mikkel Noe-Nygaard, Luxshan Ratnaravi – #319 – Specialities
• 19:15 : License Plate Readers Are Leaking Real-Time Video Feeds and Vehicle Data
• 18:32 : Buying a smart home device? Look for this new cybersecurity seal – here’s why
• 18:13 : AI-supported spear phishing fools more than 50% of targets
• 18:13 : Turbulence at UN aviation agency as probe into potential data theft begins
• 18:13 : Trolley Problem, Safety Versus Security of Generative AI
• 17:32 : New WordPress Plugin That Weaponizes Legit Sites To Steal Customer Payment Data
• 17:32 : US government set to launch its Cyber Trust Mark cybersecurity labeling program for internet-connected devices in 2025
• 17:32 : Getting the Board on Board with Cybersecurity
• 17:32 : New Research Highlights Vulnerabilities in MLOps Platforms
• 17:18 : Key Cyber Initiatives from CISA: KEV Catalog, CPGs, and PRNI
• 17:18 : CISA in Focus Blog Series
• 17:18 : Threat actors breached the Argentina’s airport security police (PSA) payroll
• 17:18 : Last Call: The Combined Federal Campaign Pledge Period Closes on January 15!
• 17:18 : Former NSA Director Rob Joyce Joins DataTribe as Venture Partner
• 17:18 : DEF CON 32 – So You Wanna Know How To Make Badges
• 17:18 : Exabeam Extends Scope and Reach of SIEM Platform
• 17:5 : IT Security News Hourly Summary 2025-01-07 18h : 12 posts
• 16:32 : Chinese Tech Companies Tencent, CATL and Others Protest US Listings as Army-Linked Companies
• 16:32 : Agents, Robotics, and Auth – Oh My! | Impart Security
• 16:32 : Moxa Urges Immediate Updates for Security Vulnerabilities
• 16:12 : CISA Releases New Sector Specific Goals for IT and Product Design
• 16:11 : Security firm issues strong warning to Windows 10 users
• 16:11 : Trend Micro Contributes and Maps Container Security to MITRE ATT&CK: A Game-Changer for Cyber Defense
• 16:11 : McAfee launches scam detector to stop scams before they strike
• 16:11 : Enterprise cybersecurity hygiene checklist for 2025
• 16:11 : Nedap Librix Ecoreader
• 16:11 : ABB ASPECT-Enterprise, NEXUS, and MATRIX Series Products
• 16:11 : CISA Releases Two Industrial Control Systems Advisories
• 16:11 : Security Risk Advisors joins the Microsoft Intelligent Security Association
• 15:33 : Übernahme: NXP kauft TTTech Auto aus Österreich
• 15:32 : Hackers Weaponize Security Testing By Weaponizing npm, PyPI, & Ruby Exploit Packages
• 15:32 : New FireScam Android Malware Abusing Firebase Services To Evade Detection
• 15:32 : Researchers Uncover Major Security Flaw in Illumina iSeq 100 DNA Sequencers
• 15:5 : EAGERBEE Malware Updated It’s Arsenal With Payloads & Command Shells
• 15:5 : Hackers Mimic Social Security Administration To Deliver ConnectWise RAT
• 15:5 : 1-15 October 2024 Cyber Attacks Timeline
• 15:5 : DEF CON’s hacker-in-chief faces fortune in medical bills after paralyzing neck injury
• 15:5 : T-Mobile Thwarts Cyberattack Amid Growing Telecom Threats
• 15:5 : Millions of Email Servers Found Vulnerable in Encryption Analysis
• 15:5 : Security Experts Warn of Brushing Scam Involving Unsolicited Packages
• 15:5 : UN aviation agency investigating possible data breach
• 14:33 : Warum OpenAIs neues KI-Modell o3 so teuer ist – und was es dafür liefern soll
• 14:33 : "Die Leute nutzen es mehr als erwartet": OpenAI verliert laut Sam Altman Geld mit ChatGPT Pro
• 14:33 : Nur noch Community Notes: Meta will keine Faktenchecker mehr beschäftigen
• 14:33 : Phishing-Trends – Wie 2025 Daten gefischt werden
• 14:32 : NETGEAR Armor, powered by Bitdefender, protects home networks against cyber threats
• 14:5 : IT Security News Hourly Summary 2025-01-07 15h : 9 posts
• 14:2 : CyTwist Launches Advanced Security Solution to identify AI-Driven Cyber Threats in minutes
• 14:2 : On SBOMs, BitBucket, and OWASP Dependency Track
• 14:2 : UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data
• 13:33 : Brand Impersonation Scam Hijacks Travel Agency Accounts
• 13:33 : 5 browser extension rules to live by to keep your system safe in 2025
• 13:32 : IVPN Review: Pricing, Features, Pros, and Cons
• 13:32 : Dell, HPE, MediaTek Patch Vulnerabilities in Their Products
• 13:32 : Eliminate the Data Privacy Guesswork with a virtual Data Protection Officer (vDPO)
• 13:5 : HCL BigFix Server Automation: Angreifer können Traffic umleiten
• 13:4 : Moxa router flaws pose serious risks to industrial environmets
• 13:4 : Washington Attorney General Sues T-Mobile Over 2021 Data Breach
• 13:4 : Why Traditional Fraud Scores Are No Longer Enough for Modern Threats
• 13:4 : How to use your Robots.txt to (even partially) block Bots from crawling your site
• 13:4 : Farewell to the Fallen: The Cybersecurity Stars We Lost Last Year
• 12:33 : UN-Luftfahrtorganisation untersucht IT-Sicherheitsvorfall
• 12:33 : Moxa: Teils kritische Router-Lücken gefährden Industrienetzwerke
• 12:33 : [NEU] [mittel] Redis: Mehrere Schwachstellen
• 12:33 : [UPDATE] [mittel] Python: Schwachstelle ermöglicht Denial of Service
• 12:33 : [UPDATE] [mittel] libsndfile: Mehrere Schwachstellen ermöglichen Denial of Service
• 12:33 : [UPDATE] [mittel] OpenSSL: Schwachstelle ermöglicht Denial of Service und Remote-Code-Ausführung
• 12:32 : CISA says Treasury was the only US agency breached via BeyondTrust
• 12:7 : [UPDATE] [mittel] Angular: Schwachstelle ermöglicht Cross-Site Scripting
• 12:7 : [UPDATE] [hoch] IBM Spectrum Protect: Mehrere Schwachstellen
• 12:7 : Data Governance Challenges in the Age of Generative AI
• 12:7 : US Treasury Department Sanctions Chinese Company Over Cyberattacks
• 12:7 : Phishing Click Rates Triple in 2024
• 11:33 : Zero-Day-Sicherheitslücke in Sonicwall SSL-VPN wird angegriffen
• 11:33 : (g+) Yubikey und Co.: Einfache und sichere Anmeldung mit Security-Keys
• 11:32 : Cybercrime in 2025: What to look out for
• 11:32 : New Orleans Attacker Wore Meta Smart Glasses
• 11:32 : Meta Appoints Trump Friend To Board
• 11:32 : Pentagon Adds Tencent, CATL To Military Blacklist
• 11:32 : CISA: No Federal Agency Beyond Treasury Impacted by BeyondTrust Incident
• 11:5 : Google Android: Mehrere Schwachstellen
• 11:5 : Samsung Android: Mehrere Schwachstellen
• 11:5 : Trotz starker Kritik: Umstrittene UN-Cybercrime-Konvention verabschiedet
• 11:5 : [NEU] [mittel] OpenVPN Connect: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen
• 11:5 : [NEU] [hoch] Google Android: Mehrere Schwachstellen
• 11:5 : [NEU] [hoch] Samsung Android: Mehrere Schwachstellen
• 11:5 : IT Security News Hourly Summary 2025-01-07 12h : 7 posts
• 11:4 : University’s Critical Infrastructure Ransomware Attack Tracker Reaches 2,000 Incidents
• 10:33 : Patchday: Wichtige Sicherheitsupdates schützen Android-Geräte
• 10:33 : “Firescam”: Infostealer tarnt sich als Telegram-Premium-App
• 10:33 : Windows 10 Support endet: Microsoft erklärt 2025 zum “Jahr der PC-Erneuerung”
• 10:32 : US Telecom Breaches Widen as 9 Firms Hit by Chinese Salt Typhoon Hackers
• 10:32 : McAfee Scam Detector spots scams across text, email, and video
• 10:32 : UK Government to Ban Creation of Explicit Deepfakes
• 10:4 : Patchday: Schadcode-Lücken bedrohen Android 12, 13, 14 und 15
• 10:3 : Silicon UK In Focus Podcast: Humanware in 2025
• 10:3 : 5 browser extension rules to keep your system safe in 2025
• 10:3 : AI moves to your PC with its own special hardware
• 10:3 : China Protests US Sanctions for Its Alleged Role in Hacking, Complains of Foreign Hacker Attacks
• 10:3 : CISA: No Wider Federal Impact from Treasury Cyber Attack, Investigation Ongoing
• 10:3 : New EAGERBEE Variant Targets ISPs and Governments with Advanced Backdoor Capabilities
• 10:3 : CISA Claims Treasury Breach Did Not Impact Other Agencies
• 9:33 : KI in der Videotechnologie: Von Chancen und Grenzen
• 9:33 : [UPDATE] [hoch] SaltStack Salt: Mehrere Schwachstellen
• 9:33 : [UPDATE] [mittel] Linux Kernel – BlueZ: Mehrere Schwachstellen
• 9:32 : TikTok Preparing Mexico E-Commerce Launch As US Ban Looms
• 9:32 : Italy Negotiating 1.5bn Euro Government Comms Deal With Starlink
• 9:32 : Apple To Update AI After False Headlines Reported
• 9:32 : The Overlooked Risks of Open-Source Software in Industrial Security
• 9:32 : The 7 Stages NERC CIP Audit Preparation
• 9:6 : U.S. Sanctions Chinese Cybersecurity Firm Over Cyberattacks
• 9:6 : US adds Tencent to the list of companies supporting Chinese military
• 9:6 : Moxa Alerts Users to High-Severity Vulnerabilities in Cellular and Secure Routers
• 8:33 : Wie klimaschädlich ist KI? Dieses Tool zeigt dir, wie viel CO2 deine Prompts verursachen
• 8:33 : Ki in der Videotechnologie: Von Chancen und Grenzen
• 8:33 : Black Swan 2025: Welche Gefahr von KI ausgeht
• 8:32 : China Aims To Deliver Open Source Chip This Year
• 8:32 : Brokers Key to Strengthening American Businesses’ Cyber Defenses
• 8:32 : Wallet drainer impact, U.S. telecom breach list grows, Moxa router vulnerabilities
• 8:5 : IT Security News Hourly Summary 2025-01-07 09h : 7 posts
• 8:3 : Dell Update-Paket-Framework bedroht Systemsicherheit
• 8:3 : KI als Black Swan: Experten beschreiben Gefahren für 2025
• 8:2 : Dark Web Dangers Aren’t as Hidden as You Think
• 8:2 : Beware the Rise of the Autonomous Cyber Attacker
• 7:32 : Android Security Updates: Patch for Critical RCE Vulnerabilities
• 7:32 : US adds web and gaming giant Tencent to list of Chinese military companies
• 7:32 : Two Clicks to Chaos: How Double-clickjacking Hands Over Control of Apps without Users Knowing
• 7:5 : Eagerbee backdoor targets govt entities and ISPs in the Middle East
• 7:4 : Windows LDAP Denial of Service Vulnerability (CVE-2024-49113) Alert
• 6:32 : What to Do if a Healthcare Database Breach Occurs: A Step-by-Step Guide
• 6:32 : India’s Draft Digital Personal Data Protection Rules
• 6:32 : INDIA Enacts New Digital Data Protection Rules
• 6:5 : ICAO Investigates Data Breach as Hacker Claims to Sell Sensitive Data gained from Cyber Attack
• 6:5 : eBay CISO on managing long-term cybersecurity planning and ROI
• 6:5 : Making the most of cryptography, now and in the future
• 5:32 : Hackers Compromised Argentina’s Airport Security Payroll System
• 5:32 : Greece’s 2024 Cyber Threat Landscape: A Year of Increased and Varied Attacks
• 5:5 : IT Security News Hourly Summary 2025-01-07 06h : 6 posts
• 5:3 : Moxa Devices Vulnerable to Cyberattacks, Threatening Industrial Networks
• 5:3 : When is a RAT, not a RAT?
• 5:2 : Open source worldwide: Critical maintenance gaps exposed
• 5:2 : Cyberbro: Open-source tool extracts IoCs and checks their reputation
• 4:32 : PacketCrypt Classic Cryptocurrency Miner on PHP Servers, (Tue, Jan 7th)
• 4:32 : How AI and deepfakes are redefining social engineering threats
• 2:5 : IT Security News Hourly Summary 2025-01-07 03h : 1 posts
• 1:32 : ISC Stormcast For Tuesday, January 7th, 2025 https://isc.sans.edu/podcastdetail/9268, (Tue, Jan 7th)
• 23:5 : IT Security News Hourly Summary 2025-01-07 00h : 3 posts