Weekly News Roundup April 22-26, 2024

Posted on April 26, 2024 by Kacy Zurkus

The calendar gods have really gone in for the Hallmark holidays, giving the world a little something to celebrate each day, week, and month. I dutifully celebrated today’s National No Makeup Day and look forward to a slice of cake on Monday in honor of Eeyore’s birthday—yes, the fictional curmudgeon from Winnie the Pooh.

In all seriousness, this week was also marked as a time to show appreciation for volunteers, and RSA Conference could not be more grateful to the countless members of our community who willingly share their time, expertise, guidance, support, and leadership. As the world prepares to come together in San Francisco May 6-9 to talk security, the RSA Conference 2024 teams wishes to extend its unyielding gratitude for all who contribute in large and small ways to making the world more secure.

We see evidence in our daily news headlines of why defenders must work together. Whether it’s malicious actors using deep fakes to impersonate those with whom they have a personal vendetta or criminals using cryptocurrency services to launder funds, law enforcement agencies are increasingly entangled in cybersecurity activities, which always involve questions around privacy. Earlier this week, Wired reported on concerns related to the US Foreign Intelligence Surveillance Act, noting, “the program has been extended to cover a wide range of new businesses, including US data centers.”

More than ever, we see the need for legislators, law enforcement, privacy advocates, and cybersecurity leaders to work together to ensure that efforts to thwart malicious activities don’t impair innovation.

To learn more about improving collaboration and reducing risk, visit our Library, or explore the RSAC 2024 agenda and reserve a seat for the sessions you don’t want to miss.

Now let’s look at what else made industry headlines this week.

April. 26: A malware known as Brokewell is being pushed into Android by using fake browser updates.

April. 25: The Federal Trade Commission is sending over $5.6 million to customers impacted by Ring’s privacy data breach.

April. 25: “A previously known nation-state threat actor targeted government networks using two zero-day vulnerabilities affecting Cisco products.,” Tech Target reported.

April. 24: CISA announced their service, Cyber Hygiene Vulnerability Scanning that helps organizations monitor Internet connected vulnerabilities.

April. 24: Cyberattack hit rural Texas, causing a water system to overflow.

April. 23: A campaign known as CoralRaider, targeting US, UK, and Japan uses CDN cache to store information-stealing malware.

April. 23: Microsoft's PlayReady vulnerabilities could allow users to download and stream movies illegally.

April. 22: The Register reported, “MITRE admits ‘nation state’ attackers touched its NERVE R&D operation.”

April. 22: Scammers are exploiting Telegram using a sophisticated tactic to steal Toncoins.

Contributors

Kacy Zurkus

Director of Content, RSAC

View More Blogs

Blogs posted to the RSAConference.com website are intended for educational purposes only and do not replace independent professional judgment. Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSAC™ Conference, or any other co-sponsors. RSAC™ Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.

Share With Your Community

Related Blogs