Welcome to today's issue of Secret CISO, your daily dose of cybersecurity insights. We bring you the latest on the data breach that has rocked the Pandemonium Rocks music festival, affecting hundreds of ticket holders and causing a stir in the music industry. In other news, we look at the groundbreaking cybersecurity network taking root in Lowell, which is still recovering from a significant network breach five months ago. We also cover the latest developments in healthcare IoT security, with a new study proposing smart solutions using deep learning. In the corporate world, Pep Boys suspends Facebook ads after a data security breach, and Equifax's fund to compensate victims of a data breach is set to run out. We also report on the threats made by Anonymous hackers to expose IDF's 'Top Secret Projects', and the fallout from a cyberattack on a French hospital that forced procedures to be rescheduled. Finally, we bring you the latest research and developments in cybersecurity, including a critical zero-day vulnerability in the CrushFTP enterprise being exploited in the wild, and the latest strategies for enhancing cybersecurity in outer space. Stay tuned for these stories and more in today's issue of Secret CISO. Stay safe, stay secure.

Data Breaches

1. Data Breach at Pandemonium Rocks Music Festival: A significant data breach has impacted hundreds of ticket holders at the troubled national music festival, Pandemonium Rocks. The breach occurred following the controversial withdrawal of several artists. Source: News.com.au
2. Anonymous Hackers Threaten IDF: The hacker group Anonymous has threatened to expose top secret projects of the Israel Defense Forces (IDF). The breached data allegedly includes the identity of IDF personnel. Source: Forbes
3. Pep Boys Suspends Facebook Ads After Data Breach: U.S. auto parts retailer Pep Boys has suspended all advertising on Facebook following a data security breach, raising concerns about data privacy. Source: Yahoo Movies UK
4. Equifax Data Breach Compensation Fund Running Out: Consumers rushing to collect compensation from Equifax after a major data breach could be disappointed as US regulators have warned that the fund is set to run out. Source: Yahoo Lifestyle Canada
5. Convergent Outsourcing Data Breach Settlement: Convergent Outsourcing, a debt-collection agency, has settled a lawsuit following a data breach earlier this month. Americans affected by the breach are set to receive a one-time payment of up to $11,500 from the $2.45 million settlement. Source: The Sun

Security Research

1. Workshop on Open Access to Nuclear Research Infrastructure - EU Science Hub: The Joint Research Centre (JRC) and DG RTD initiated a pilot project in 2020 to provide open access to JRC research infrastructure for nuclear safety and security research. This initiative aims to enhance collaboration and innovation in nuclear safety and security. Source: EU Science Hub
2. MITRE Hacked – Attackers Compromised R&D Networks Using Ivanti Zero-days: MITRE, a major player in cybersecurity research, was recently compromised. Attackers infiltrated their R&D networks using Ivanti zero-days, highlighting the increasing sophistication of cyber threats and the need for constant vigilance and up-to-date security measures. Source: Cyber Security News
3. Cyber Security Today, Week in Review for week ending Friday April 19, 2024: Researchers at Cisco Systems' Talos threat intelligence service have reported a significant increase in brute force attacks since March 2024. The targets are diverse, demonstrating the broad threat landscape and the need for robust, adaptable security measures. Source: IT World Canada
4. Enhancing Cybersecurity in Outer Space - Observer Research Foundation: The Observer Research Foundation has published a study on the importance of enhancing cybersecurity in outer space. As space becomes increasingly utilized, understanding and addressing the vulnerabilities and gaps in securing outer space is critical. Source: Observer Research Foundation

Top CVEs

CVE-2024-4018
A critical vulnerability was identified in the ZTE ZXHN H108N R1A router. The flaw resides in the /goform/AdvSetNAT function of the device, which can be exploited to cause a buffer overflow. The attack can be initiated remotely and the exploit has been publicly disclosed. The vendor was contacted about this disclosure but did not respond. The vulnerability has been assigned the identifier VDB-261665. Source: https://vulners.com/cve/CVE-2024-4018?utm_source=rss&utm_medium=rss&utm_campaign=rss

CVE-2024-4017
A critical vulnerability has been discovered in the ZTE ZXHN H108N R1A router. The issue lies in the /goform/AdvSetDMZ function of the device, which can be exploited to cause a buffer overflow. The attack can be launched remotely and the exploit has been publicly disclosed. The vendor was contacted about this disclosure but did not respond. The vulnerability has been assigned the identifier VDB-261664. Source: https://vulners.com/cve/CVE-2024-4017?utm_source=rss&utm_medium=rss&utm_campaign=rss

Final Words

And that's a wrap for today's edition of Secret CISO. From the funding of border security to the troubling data breaches rocking music festivals, we've covered a broad spectrum of security issues. We've also delved into the groundbreaking cybersecurity networks taking root and the smart solutions being devised for healthcare IoT security. Remember, in this digital age, security is not a one-time thing but a continuous process.

It's about staying vigilant, staying informed, and taking proactive measures to protect our data and systems. If you found today's newsletter informative, do share it with your friends and colleagues. Let's spread the knowledge and make our digital world a safer place. Until next time, stay safe and secure!