TikTok ban update, Sandworm hits Ukraine, North Korean streaming animators

Step-by-Step Tutorial: Cyber Security Headlines Summary

1. TikTok Ban Update

   • The US House passed a bill to ban TikTok as part of a larger foreign aid package.
   • The bill passed with a vote of 360 to 58.
   • The Senate is expected to vote on it soon.
   • Senate Commerce Committee chair Maria Cantwell supports the legislation.
   • The new bill allows ByteDance up to a year to divest from TikTok before a formal ban.

2. Sandworm Cyber Attacks in Ukraine

   • The Ukrainian computer Emergency Response Team (CERT UA) reported cyber attacks by the Russian-affiliated threat group Sandworm Gru Military Intelligence unit.
   • Sandworm disrupted IT systems at energy, water, and heating suppliers across 10 regions in Ukraine.
   • The attacks involved supply chain attacks, technical support, and novel malware.

3. North Korean Streaming Animators

   • A report revealed that a misconfigured North Korean server contained animation files related to a Cartoon Network show.
   • The server showed no direct violation of sanctions by any production studio.
   • The animation efforts were traced back to North Korean IT workers.

4. European Police Warning on Encryption

   • European police officials cautioned the tech industry about the implications of end-to-end encryption on messaging platforms.
   • The police believe encryption could hinder law enforcement efforts against illegal activities like drug smuggling and human trafficking.

5. National Center for Missing and Exploited Children

   • The nonprofit organization runs a cyber tip line for reporting child sexual abuse material.
   • Only 5 to 8% of the reports lead to arrests due to resource constraints.
   • The report suggests investing in improving the current system rather than introducing legislative remedies.

6. Crush FTP Vulnerability

   • Security researcher Simon Geralo reported a vulnerability in Crush FTP Service versions under 11.1.
   • The flaw allows virtual file system escape and access to full system files.
   • CrowdStrike observed active exploitation of this vulnerability in targeted attacks.

7. Windows Rootkit-like Flaws

   • Security researchers found flaws in the Dos to NT path conversion process on Windows that could allow hiding files and processes.
   • These flaws could enable malware to disguise as a verified executable and cause denial of service attacks on Process Explorer.

8. Medical Diagnostic Services Disruption

   • Sin laab Italia, a medical diagnostic services provider, suffered a security breach leading to the suspension of medical services across 380 labs in Italy.
   • Patient data loss was not confirmed, and the impact was limited to sin laab Italia's operations.

9. Stay Informed

   • Follow CISO Series for daily cyber security headlines and in-depth stories behind the news.

By following these steps, you can stay informed about the latest cyber security threats and developments in the industry.