Security News Update for December 22, 2024

This week’s news includes:

• Hackers Leak Cisco Source Code After Breach
• Hackers Use Google Calendar Invites and Cancels to Phish and Compromise Users
• Hackers Using Google Tools to Create More Legitimate Looking Attacks
• Sophos Patches Firewall to Fix Three Bugs That Allow Hackers to Become Admins
• CMMC Q&A
• CMMC Title 32 is LIVE
• CISA Says Windows Kernel Bug Now Being Exploited
• Blackberry Sells Cylance for $160 Mil at a Loss of $1 Bil+
• Apache Struts 2 Bug Being Actively Exploited
• BeyondTrust Remote Support Cloud Software Breached
• EU Fines Meta $263 Million for Alleged GDPR Violations
• The Journey to Zero Trust
• CISA Releases Guidance on Protecting “Senior Feds” From the Chinese (Salt Typhoon)
• Change Healthcare Breach Timeline
• SC Credit Union Breach Affects 240,000
• Texas Tech Breach Impacts 1.4 Million Patients
• After-Hours Doctor on Call Leaked Data on Almost a Million Patients
• Ascension Hospital Chain Ups Breach Victim Count From 500 to 5.6 Million
• Next administration wants to go offensive on China
• CMMC program now in force for DoD
• Federal money for states to improve cybersecurity may end in 2025
• Microsoft pushing passkey and you can’t opt out of notifications
• Security News for the week ending December 20th, 2024: mazon delays Office 365 rollout due to security concerns, buying or renting, residential or business, consider Internet, cellular access, feds ban ALL drones in New Jersey, are you watching the traffic attacking your web and crypto theft business doubles – for North Korean hackers

• Audio

• Video