News Roundup — August 21st 2024 edition.

This week in cybersecurity, Google’s Threat Analysis Group revealed that Iranian APT Charming Kitten is targeting the 2024 U.S. elections and Israeli military. Meanwhile, NIST released three post-quantum cryptography standards, urging organizations to begin their transition to PQC. The CISA and FBI reassured American voters about the cybersecurity of the upcoming electoral process.

The Commerce Department is investigating a Chinese Wi-Fi router company, and the FBI is looking into a ransomware incident in Flint. Notably, a 7-year-old pre-installed app flaw on Google Pixel devices was discovered, and Iran reportedly faced a major cyberattack on its banking systems. CISA also issued a warning about a Jenkins RCE bug exploited in ransomware attacks.

Toyota confirmed a data breach after stolen data appeared on hacking forums, while ransomware raked in a record-breaking $450 million in the first half of 2024. The FAA proposed new cybersecurity rules for airplanes, and Microsoft announced it will require MFA for Azure services.

Google: Iran's Charming Kitten Targets US Elections, Israeli Military

Researchers hack electronic shifters with a few hundred dollars of hardware

Musk's new Grok upgrade allows X users to create largely uncensored AI images

NIST Releases 3 Post-Quantum Standards, Urges Orgs to Start PQC Journey

Are 2024 US Political Campaigns Prepared for Coming Cyber Threats?

Popular AI "nudify" sites sued amid shocking rise in victims globally

CISA, FBI Assure American Voters of Cyber-Safe Electoral Process

House lawmakers push Commerce Department to probe Chinese Wi-Fi router company

Ransomware attack on Flint affecting city services as FBI investigates incident

7-Year-Old Pre-Installed Google Pixel App Flaw Puts Millions at Risk

Iran Reportedly Grapples With Major Cyberattack on Banking Systems

How the ransomware attack at Change Healthcare went down: A timeline | TechCrunch

The Pentagon has a drug discovery supercomputer

CISA warns of Jenkins RCE bug exploited in ransomware attacks

FlightAware configuration error leaked user data for years

Toyota confirms third-party data breach impacting customers

Ransomware rakes in record-breaking $450 million in first half of 2024

AWS environments compromised through exposed .env files

US warns of Iranian hackers escalating influence operations

Microsoft Will Require MFA for Azure Services,

Windows 0-day was exploited by North Korea to install advanced rootkit

CEO of failing hospital chain got $250M amid patient deaths, layoffs, bankruptcy

Microchip Technology discloses cyberattack impacting operations

"Something has gone seriously wrong," dual-boot systems warn after Microsoft update

FAA to issue cyber rule for newly built airplanes and equipment