Go to listing page

Daily Cybersecurity Roundup, October 25, 2024

Threat actors are refining their methods, transforming even the most familiar apps and games into dangerous tools of deception. The latest version of Qilin ransomware now boasts stronger encryption, advanced evasion techniques, and the power to block data recovery efforts. Meanwhile, WrnRAT is hiding in plain sight, masquerading as popular gambling games, giving attackers full control over infected systems to steal data and disrupt processes. In other news, the White House released a memo to advance safe AI development for national security interests. Read on for more.

01

Halcyon researchers discovered a new version of the Qilin ransomware, named Qilin.B, with enhanced encryption, improved evasion tactics, and the ability to disrupt data recovery methods.

02

The WrnRAT malware is being distributed disguised as gambling games like Badugi, Go-Stop, and Texas Hold'em. The malware controls infected systems to steal information, capture user screens, and terminate processes.

03

Aqua Security discovered a critical vulnerability in the AWS Cloud Development Kit that could result in a full account takeover. The exploit involves creating a bucket with a predictable name, known as ‘S3 bucket namesquatting’ or ‘bucket sniping’.

04

The White House released a National Security Memorandum (NSM) focused on advancing safe, secure, and trustworthy AI development for US national security interests. It includes steps to track and counter adversary development and the use of AI.

05

Siemens issued a security advisory for its InterMesh wireless alarm reporting system, highlighting multiple vulnerabilities, including CVE-2024-47901, CVE-2024-47902, CVE-2024-47903, and CVE-2024-47904.

06

The U.K government introduced a new Data Use and Access Bill, aiming to reform the country's data privacy regime and potentially boost the economy by £10 billion over the next decade.

07

NVIDIA released a security bulletin concerning vulnerabilities in its GPU Display Driver for Windows and Linux that attackers could exploit for code execution, privilege escalation, and DoS attacks.

08

The CISA added a high-severity deserialization vulnerability in Microsoft SharePoint, tracked as CVE-2024-38094, to its Known Exploited Vulnerabilities (KEV) Catalog.

09

Rome-based cybersecurity awareness training platform Cyber Guru raised $25 million in Series B funding led by Riverside Acceleration Capital, with participation from Educapital, Adara Ventures, and P101 Ventures.

10

Managed cybersecurity service provider RKON Technologies announced its acquisition of Bridge Security Advisors, a solution provider focused on cloud security, governance risk and compliance (GRC), and identity and access management.

Get the Daily Cybersecurity Roundup delivered to your email!