This Week’s Top 5 Cybersecurity News Stories September 2024 | 01

Cybersecurity threats are evolving constantly as threat actors look to gain access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small, as we look at threats from espionage to security flaws in every day devices:

1. The Facts About Continuous Penetration Testing and Why It’s Important

Continuous Attack Surface Penetration Testing (CASPT) revolutionizes cybersecurity by providing ongoing, automated testing of an organization’s digital assets. Unlike traditional penetration testing, CASPT integrates directly into the software development lifecycle, ensuring real-time identification and mitigation of vulnerabilities. This proactive approach is essential for organizations with evolving attack surfaces, helping them stay ahead of potential threats and maintain robust security postures. Read on to discover how CASPT can transform your security strategy. For more about this story click here

 

2. Pavel Durov Criticizes Outdated Laws After Arrest Over Telegram Criminal Activity

Telegram CEO Pavel Durov has spoken out following his arrest in France, criticizing the charges as misguided. He argues that charging a CEO for third-party crimes on a platform is outdated and underscores the challenges of balancing privacy and security. Durov also announced new efforts to improve platform safety, signaling a major policy shift in response to the ongoing controversy. Read on to learn more. For more about this story click here

 

3. Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack

A new malware campaign is spoofing Palo Alto Networks’ GlobalProtect VPN software to deliver WikiLoader via a search engine optimization (SEO) strategy. This marks a shift from traditional phishing methods, using cloned websites and malicious installers to deceive users. The malware targets users searching for GlobalProtect, redirecting them to fake download pages that trigger infection. Read on to explore the tactics behind this campaign. For more about this story click here

 

4.  New Rust-Based Ransomware Cicada3301 Targets Windows and Linux Systems

Cybersecurity researchers have uncovered a new ransomware variant, Cicada3301, targeting small to medium-sized businesses. Sharing similarities with the defunct BlackCat operation, Cicada3301 exploits vulnerabilities to gain access and encrypt data across Windows and Linux/ESXi hosts. Notable for its sophisticated techniques, including embedding compromised credentials and evading detection, this ransomware is raising concerns in the cybersecurity community. Read on to learn more about this emerging threat. For more about this story click here

 

5. Ex-Engineer Charged in Missouri for Failed $750,000 Bitcoin Extortion Attempt

A 57-year-old Missouri man, Daniel Rhyne, has been arrested for a failed data extortion attempt against his former employer. Accused of unauthorized access to the company’s network, Rhyne allegedly demanded $750,000 in Bitcoin, threatening to disable servers and delete backups. Charged with extortion, computer damage, and wire fraud, Rhyne faces up to 35 years in prison. Read on for more details. For more about this story click here

 

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information please contact us now!