Simply Cyber Newsletter #89

Start your work week off at full speed with expert analysis and actionable intel from top cybersecurity news stories. Share with your end users, peers, and executives. Support weekly security awareness with Simply Cyber Newsletter!

FOR END USERS

Proofpoint exploit allows for millions of fake emails. “EchoSpoofing" exploited fixed weak permissions in Proofpoint's email protection, sending millions of spoofed emails impersonating major brands to Fortune 100 companies. Guardio Labs discovered the phishing campaign, prompting Proofpoint to enhance security measures and notify affected customers.

What you need to know: Remind your end users of the crucial role they play in protecting the organization. The "EchoSpoofing" campaign showed that phishing emails can bypass security measures and appear authentic. Emphasize that their vigilance has the greatest impact in being your organization's last line of defense. Remind them to verify sender details, be cautious with unexpected requests, and report suspicious emails to IT. Their awareness and actions are essential in safeguarding sensitive information from these threats.

FOR PEERS

PyPi package targets MacOS. Researchers found a malicious PyPI package "lr-utils-lib" targeting macOS to steal Google Cloud credentials, downloaded 59 times before removal. It checks for macOS and specific UUIDs, then sends captured data to a remote server. Attack tactics include social engineering.

What you need to know: This incident exemplifies the opportunistic strategies of threat actors and highlights the need for vigilance when downloading random code from the internet. It also underscores the potential impact on enterprises, as initial compromises on individual developer machines can have significant repercussions. Speak to your peers and anyone who runs code in your organization, and remind them of the importance of always verifying the source and integrity of packages before incorporating them into their projects. Take action now to review your current practices and ensure your team is informed and vigilant.

FOR EXECUTIVES

Average data breach cost nears $5 million. IBM’s 2024 Cost of a Data Breach Report reveals the global average breach cost rose 10% to $4.88 million. AI and automation saved companies $2.2 million per breach. U.S. breach costs slightly declined to $9.36 million. Healthcare breach costs dropped to $9.77 million, leading all industries.

What you need to know: Sharing IBM's latest findings with senior leaders and executives underscores the critical need for strategic cybersecurity investments. The 2024 Cost of a Data Breach Report reveals a 10% increase in the global average breach cost, now at $4.88 million. Their data indicates that organizations leveraging AI and automation in their security protocols saved an average of $2.2 million per breach. Look towards AI-driven security tools and automation technologies to mitigate these rising costs effectively. Present these insights and a business plan to your executives, highlighting the potential cost savings and strategic benefits, and advocate for prioritizing these critical investments to strengthen your security posture and safeguard your business.

Don't forget to look at the rest of the report for key insights into breach containment strategies and industry-specific impacts.

H4xx0r Summer Camp is Here!

This week, I'm heading to Black Hat and DEF CON 32. I'll have some guest hosts joining me for The Daily Cyber Threat Brief and will be dropping some incredible content I've been working on throughout the week.

On Friday, join me for the Simply Cyber DEF CON Meetup at The Golden Tiki from 3 to 5 pm. Register below:

Attend and get some sweet SC stickers - while they last!

Stay current on trending topics, tips, and resources in cybersecurity, connect with me on socials for new content, every day.

As always, please send me feedback. Which tip above is your favorite? What do you want more or less of? Other suggestions? Please let me know. Just send a DM on X with #actionableintel so I can find it.

Thank you so much and see you next Monday!

Have a great week everybody!

Gerry

MORE FROM SIMPLY CYBER

Catch the most popular weekday cyber threat news analysis live stream around. Meet the most supportive community ever.

Join us on the Daily Cyber Threat Brief, available on YouTube, LinkedIn, Twitch, and your favorite podcast platform:

SIMPLY CYBER ACADEMY

Empower your career by learning real in-demand skills from cyber experts and the theory behind those skills with Simply Cyber Academy.

Visit academy.simplycyber.io to learn more. The popular GRC Analyst Master Class and Cyber 101 courses are below.