News Roundup — June 19th 2024 edition.

Published in

BCK Security Weekly Newsletter

4 min readJun 19, 2024

This week in cybersecurity, Apple launched a new AI offering with strong privacy promises. Globe Life is investigating a web portal breach, and lawmakers questioned Microsoft over China ties and repeated breaches. Ascension was hacked after an employee downloaded malware. A critical RCE bug in Ivanti Endpoint Manager raised concerns with a new proof-of-concept exploit.

Panera Bread warned of an employee data breach following a ransomware attack. Microsoft faced criticism for a delayed response to a DNSSEC zero-day flaw. The alleged leader of the Scattered Spider hacking group was arrested. A new Linux malware controlled via Discord emojis was discovered, and ASUS warned of a critical bypass flaw in seven router models.

London hospitals canceled over 800 operations due to a ransomware attack. The Signal Foundation warned against EU encryption regulations. Singapore extradited cybercrime scammers, and hackers breached Amtrak Guest Rewards accounts. AMD is investigating a data breach. Critical VMware bugs exposed VMs to RCE and data theft. CISA released new network security guidance, and a bug allowed spoofing of Microsoft employee emails.

Apple's AI Offering Makes Big Privacy Promises

Apple's guarantee of privacy on every AI transaction could influence trustworthy AI deployments.

www.darkreading.com

Insurance giant Globe Life investigating web portal breach

American financial services holding company Globe Life says attackers may have accessed consumer and policyholder data…

www.bleepingcomputer.com

"Simulation of keyboard activity" leads to firing of Wells Fargo employees

With worker surveillance on the rise, vendors sell devices to fake keyboard and mouse movement.

arstechnica.com

Lawmakers question Microsoft president over China ties, repeated breaches

Brad Smith defended the company at a time of growing concerns about whether the tech giant is sufficiently prioritizing…

cyberscoop.com

Ascension hacked after employee downloaded malicious file

Ascension, one of the largest U.S. healthcare systems, revealed that a May 2024 ransomware attack was caused by an…

www.bleepingcomputer.com

PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager

A new month, a new high-risk Ivanti bug for attackers to exploit - this time, an SQL injection issue in its centralized…

www.darkreading.com

Panera warns of employee data breach after March ransomware attack

U.S. food chain giant Panera Bread is notifying employees of a data breach after unknown threat actors stole their…

www.bleepingcomputer.com

Microsoft Late to the Game on Dangerous DNSSEC Zero-Day Flaw

Why the company took so long to address the issue is not known given that most other stakeholders had a fix out for the…

www.darkreading.com

Alleged Boss of 'Scattered Spider' Hacking Group Arrested

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider…

krebsonsecurity.com

New Linux malware is controlled through emojis sent from Discord

A newly discovered Linux malware dubbed 'DISGOMOJI' uses the novel approach of utilizing emojis to execute commands on…

www.bleepingcomputer.com

ASUS warns of critical remote authentication bypass on 7 routers

ASUS has released a new firmware update that addresses a vulnerability impacting seven router models that allow remote…

www.bleepingcomputer.com

Huge telehealth fraud indictment may wreak havoc for Adderall users, CDC warns

The consequences are dangerous, possibly even deadly, for patients across the US.

arstechnica.com

London hospitals cancel over 800 operations after ransomware attack

NHS England revealed today that multiple London hospitals impacted by last week's Synnovis ransomware attack were…

www.bleepingcomputer.com

Signal Foundation Warns Against EU's Plan to Scan Private Messages for CSAM

Discover how the EU's proposal to scan private messages for CSAM risks encryption and sparks a debate on privacy versus…

thehackernews.com

Singapore Extradites Suspected Cybercrime Scammers from Malaysia

Cops decimate cybercrime infrastructure used to steal data from nearly 2,000 people in Singapore last year.

www.darkreading.com

Hackers Derail Amtrak Guest Rewards Accounts in Breach

The US passenger rail giant said attackers used previously compromised credentials to crack accounts and access a…

www.darkreading.com

AMD investigates breach after data for sale on hacking forum

AMD is investigating whether it suffered a cyberattack after a threat actor put allegedly stolen data up for sale on a…

www.bleepingcomputer.com

Critical VMware Bugs Open Swaths of VMs to RCE, Data Theft

A trio of bugs could allow hackers to escalate privileges and remotely execute code on virtual machines deployed across…

www.darkreading.com

CISA and Partners Release Guidance for Modern Approaches to Network Access Security | CISA

New Zealand's Government Communications Security Bureau (GCSB); New Zealand's Computer Emergency Response Team…

www.cisa.gov

Scattered Spider Pivots to SaaS Application Attacks

Microsoft last year described the threat actor - known as UNC3944, Scattered Spider, Scatter Swine, Octo Tempest, and…

www.darkreading.com

Security bug allows anyone to spoof Microsoft employee emails | TechCrunch

A researcher has found a way to impersonate Microsoft corporate email accounts, which could make phishing attacks…

techcrunch.com

News Roundup — June 19th 2024 edition.

Apple's AI Offering Makes Big Privacy Promises

Apple's guarantee of privacy on every AI transaction could influence trustworthy AI deployments.

Insurance giant Globe Life investigating web portal breach

American financial services holding company Globe Life says attackers may have accessed consumer and policyholder data…

"Simulation of keyboard activity" leads to firing of Wells Fargo employees

With worker surveillance on the rise, vendors sell devices to fake keyboard and mouse movement.

Lawmakers question Microsoft president over China ties, repeated breaches

Brad Smith defended the company at a time of growing concerns about whether the tech giant is sufficiently prioritizing…

Ascension hacked after employee downloaded malicious file

Ascension, one of the largest U.S. healthcare systems, revealed that a May 2024 ransomware attack was caused by an…

PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager

A new month, a new high-risk Ivanti bug for attackers to exploit - this time, an SQL injection issue in its centralized…

Panera warns of employee data breach after March ransomware attack

U.S. food chain giant Panera Bread is notifying employees of a data breach after unknown threat actors stole their…

Microsoft Late to the Game on Dangerous DNSSEC Zero-Day Flaw

Why the company took so long to address the issue is not known given that most other stakeholders had a fix out for the…

Alleged Boss of 'Scattered Spider' Hacking Group Arrested

A 22-year-old man from the United Kingdom arrested this week in Spain is allegedly the ringleader of Scattered Spider…

New Linux malware is controlled through emojis sent from Discord

A newly discovered Linux malware dubbed 'DISGOMOJI' uses the novel approach of utilizing emojis to execute commands on…

ASUS warns of critical remote authentication bypass on 7 routers

ASUS has released a new firmware update that addresses a vulnerability impacting seven router models that allow remote…

Huge telehealth fraud indictment may wreak havoc for Adderall users, CDC warns

The consequences are dangerous, possibly even deadly, for patients across the US.

London hospitals cancel over 800 operations after ransomware attack

NHS England revealed today that multiple London hospitals impacted by last week's Synnovis ransomware attack were…

Signal Foundation Warns Against EU's Plan to Scan Private Messages for CSAM

Discover how the EU's proposal to scan private messages for CSAM risks encryption and sparks a debate on privacy versus…

Singapore Extradites Suspected Cybercrime Scammers from Malaysia

Cops decimate cybercrime infrastructure used to steal data from nearly 2,000 people in Singapore last year.

Hackers Derail Amtrak Guest Rewards Accounts in Breach

The US passenger rail giant said attackers used previously compromised credentials to crack accounts and access a…

AMD investigates breach after data for sale on hacking forum

AMD is investigating whether it suffered a cyberattack after a threat actor put allegedly stolen data up for sale on a…

Critical VMware Bugs Open Swaths of VMs to RCE, Data Theft

A trio of bugs could allow hackers to escalate privileges and remotely execute code on virtual machines deployed across…

CISA and Partners Release Guidance for Modern Approaches to Network Access Security | CISA

New Zealand's Government Communications Security Bureau (GCSB); New Zealand's Computer Emergency Response Team…

Scattered Spider Pivots to SaaS Application Attacks

Microsoft last year described the threat actor - known as UNC3944, Scattered Spider, Scatter Swine, Octo Tempest, and…

Security bug allows anyone to spoof Microsoft employee emails | TechCrunch

A researcher has found a way to impersonate Microsoft corporate email accounts, which could make phishing attacks…

Written by BCK Security Inc