Welcome to my weekly cybersecurity roundup! Here, I share updates on the projects I’m currently working on, along with the most insightful cybersecurity videos I watched, articles I found valuable, and podcasts I tuned into this week.

Featured Analysis

Featured article analysis: CVE, global source of cybersecurity info, was hours from being cut by DHS

This near-miss scenario involving the potential defunding of the CVE program by the DHS serves as a stark reminder of the precarious nature of critical cybersecurity infrastructure. The article highlights the indispensable role the CVE repository plays as the bedrock of vulnerability management. The cascading effects described by Brian Martin – the fragmentation of vulnerability data, the rise of incomplete databases, and the increased exposure of organizations – underscore the global reliance on this standardized system for identifying, tracking, and addressing security flaws. The fact that even this foundational element was at risk of disruption due to governmental budgetary shifts and political headwinds should galvanize the community to recognize the need for more resilient and independent stewardship of such vital resources.

The swift action by CVE board members to establish the CVE Foundation as a nonprofit represents a proactive and commendable step towards ensuring the long-term stability of the program. This move acknowledges the inherent vulnerabilities of relying solely on government funding and demonstrates a commitment to the cybersecurity ecosystem’s well-being. The involvement of major tech players and international organizations as CNAs further emphasizes the collaborative and global nature of vulnerability disclosure and management that the CVE program facilitates.

Projects

• TryHackMe – Networking Secure Protocols – In Progress

Videos

Articles

• Don’t delete that mystery empty folder. Windows put it there as a security fix – Copilot vibe coding for OS development? Why not
• Hertz confirms customer info, drivers’ licenses stolen in data breach – Car rental giant Hertz Corporation warns it suffered a data breach after customer data for its Hertz, Thrifty, and Dollar brands was stolen in the Cleo zero-day data theft attacks.
• China admitted its role in Volt Typhoon cyberattacks on U.S. infrastructure – China admitted in a secret meeting with U.S. officials that it conducted Volt Typhoon cyberattacks on U.S. infrastructure, WSJ reports.
• 1.6 Million People Impacted by Data Breach at Laboratory Services Cooperative – Laboratory Services Cooperative says the personal and medical information of 1.6 million was stolen in an October 2024 data breach.
• National Social Security Fund of Morocco Suffers Data Breach – Threat actor ‘Jabaroot’ claims breach of National Social Security Fund of Morocco, aiming to steal large volumes of sensitive citizen data.
• AI hallucinations lead to a new cyber threat: Slopsquatting – Attackers can weaponize and distribute a large number of packages recommended by AI models that don’t really exist.
• Notorious image board 4chan hacked and internal data leaked – Notorious internet forum 4chan was hacked on Tuesday.
• CVE, global source of cybersecurity info, was hours from being cut by DHS – The Common Vulnerability and Exposures, or CVE, repository holds the answers to some of information security’s most vital questions. Namely, which security issue are we talking about, exactly, and how does it work?
• Cisco Webex bug lets hackers gain code execution via meeting links – Cisco has released security updates for a high-severity Webex vulnerability that allows unauthenticated attackers to gain client-side remote code execution using malicious meeting invite links.
• The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools – With unapproved AI tools entrenched in daily workflows, experts say it’s time to shift from monitoring to managing Shadow AI use across the enterprise.
• Chinese Smishing Kit Powers Widespread Toll Fraud Campaign Targeting U.S. Users in 8 States – Cybersecurity researchers are warning of a “widespread and ongoing” SMS phishing campaign that’s been targeting toll road users in the United States for financial theft since mid-October 2024.

Podcasts