Daily Briefing for 04.15.24

Attacks, Threats, and Vulnerabilities

Sisense customers seek answers after breach announcement (The Record) “I was hoping for a more informative notification message than basically ‘reset your passwords,’” one Sisense customer said.

Roku issues warning over massive customer account breach (ITPro) Criminals exploited reused passwords for a credential stuffing attack that hit 576,000 accounts

Hacker claims Giant Tiger data breach, leaks 2.8M records online (BleepingComputer) Canadian retail chain Giant Tiger disclosed a data breach in March 2024. A threat actor has now publicly claimed responsibility for the data breach and leaked 2.8 million records on a hacker forum that they claim are of Giant Tiger customers.

A critical vulnerability in Delinea Secret Server allows auth bypass, admin access (Help Net Security) Organizations with on-prem installations of Delinea Secret Server are urged to update them immediately to plug a critical vulnerability.

Telegram fixes Windows app zero-day used to launch Python scripts (BleepingComputer) Telegram fixed a zero-day vulnerability in its Windows desktop application that could be used to bypass security warnings and automatically launch Python scripts.

Legislation, Policy, and Regulation

FISA Section 702 reauthorization passes in House on second try this week (The Record) Members voted to renew the law, which allows the government to conduct warrantless surveillance of foreigners, for two years.

Litigation, Investigation, and Law Enforcement

US sanctions Hamas ‘cyber influence’ leader (The Record) The Treasury Department says Hudhayfa Samir Abdallah al-Kahlut — also known as “Abu Ubaida" — has been involved in “procuring servers and domains in Iran to host the official al-Qassam Brigades website in cooperation with Iranian institutions.”

Zambia arrests 77 people in swoop on "scam" call centre (Hot for Security) Law enforcement officers in Zambia have arrested 77 people at a call centre company they allege had employed local school-leavers to engage in scam internet users around the world.

Ex-Amazon engineer gets 3 years for hacking crypto exchanges (BleepingComputer) Former Amazon security engineer Shakeeb Ahmed was sentenced to three years in prison for hacking two cryptocurrency exchanges in July 2022 and stealing over $12 million.

For a complete running list of events, please visit the Event Tracker.

Events

Spring 2024 CISSP Study Group presented by ISSA Central MD (Columbia, or virtual, Maryland, USA, Feb 20 - May 1, 2024) Our Study Group fosters a learning environment to better absorb and understand the material. This is much better than the alternative of cram it in and regurgitate it on a test immediately following. Our approach simply makes the information more useful and easier to interpret! You can attend each session in-person in Columbia, MD, or attend virtually on line.

SANS Pen Test Austin 2024 (Austin (and virtual), Texas, USA, Apr 22 - 27, 2024) At SANS Pen Test Austin 2024, choose from 41 interactive courses with hands-on labs. Practice your skills and compete against your peers during NetWars Tournaments, and network with your instructor and industry colleagues in real-time. Each course includes electronic and printed books, and several courses align with GIAC certifications!

Insider Threat Program Development, Management & Optimization Live Web Based Training Course (Virtual, Apr 23 - 24, 2024) This highly sought after and very comprehensive training course, will ensure that the Insider Threat Program (ITP) Manager and other key stakeholders that support the ITP (Insider Threat Analyst, FSO, CSO, CISO, Human Resources, CIO - IT, Network Security, Counterintelligence Investigators, Behavioral Science Professionals, Legal Etc.), have the Core / Advanced Knowledge, Blueprint, Resources needed for developing, managing or optimizing an ITP. Students will be provided with an ITP Management Toolkit that provides an abundance of educational resources, templates and checklists for ITP development, management and optimization. All materials will be provided to the student in electronic format (Via Download) before the training. Our student satisfaction levels are in the exceptional range. Over 900+ individuals have attended this training course and received ITP Manager Certificates.

SANS Baltimore Spring 2024 (Baltimore (and virtual), Maryland, USA, Apr 28 - May 3, 2024) At SANS Baltimore Spring 2024, choose from 41 interactive courses with hands-on labs. Practice your skills and compete against your peers during NetWars Tournaments, and network with your instructor and industry colleagues in real-time. Each course includes electronic and printed books, and several courses align with GIAC certifications!

World’s Top 50 Innovators 2024 (London, England, UK, May 8 - 10, 2024) We are thrilled to invite you to join us at one of the most prestigious events in the tech calendar, the World’s Top 50 Innovators 2024! Get ready to embark on an incredible journey of inspiration, creativity, and breakthrough technologies that will shape the future. Innovation is the driving force behind progress, and once again it’s time to celebrate the companies that are pushing the boundaries of what’s possible. Come and join us to learn what’s on the horizon, understand the bigger picture, and celebrate world-firsts and sensational achievements in the high-tech sectors. The format will be a series of Codex Talks, each of which is a concise presentation, lasting 15 minutes (or less), in which the speaker addresses a challenging question faced by their technology or industry today, and ends with a bold prediction for the future.