Ticketmaster Confirms Cloud Breach, Amid Murky Details

Ticketmaster parent Live Nation has filed a voluntary SEC data breach notification, while one of its cloud providers, Snowflake, also confirmed targeted cyberactivity against some of its customers. [TechWeb]( Follow Dark Reading: [RSS]( June 04, 2024 LATEST SECURITY NEWS & COMMENTARY [Ticketmaster Confirms Cloud Breach, Amid Murky Details]( Ticketmaster parent Live Nation has filed a voluntary SEC data breach notification, while one of its cloud providers, Snowflake, also confirmed targeted cyberactivity against some of its customers. [Russia Aims Cyber Operations at Summer Olympics]( As always, Russian APTs are hoping to foment unrest by stoking existing societal divides and fears, this time around the Olympics and EU politics; and, concerns remain around physical disruption. [Atlassian Confluence High-Severity Bug Allows Code Execution]( Because of the role the Confluence Server plays in managing documentation and knowledge data bases, the researchers recommend users upgrade to patch CVE-2024-21683 as soon as possible. [Europol's Hunt Begins for Emotet Malware Mastermind]( International law enforcement Operation Endgame shifts its crackdown to focus on individual adversaries. [CISA's Secure by Design Initiative at 1: A Report Card]( There is more that needs to be done, but, so far, the initiative is a success. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [CISO Corner: Federal Cyber Deadlines Loom; Private Chatbot Danger]( Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: fighting cybersecurity burnout; BlackSuit ransomware; the SEC breach rules and risk management. [Data Privacy in the Age of GenAI]( Consumer data is still a prime target for threat actors, and organizational consumption of data must be aligned to protect it. The new rights act seeks to do some of this, but it still needs tweaking. [LilacSquid APT Employs Open Source Tools, QuasarRAT]( The previously unknown threat actor uses tools similar to those used by North Korean APT groups, according to Cisco Talos. [FlyingYeti APT Serves Up Cookbox Malware Using WinRAR]( The Russia-aligned FlyingYeti's phishing campaign exploited Ukrainian citizens' financial stress to spread Cookbox malware. [An Argument for Coordinated Disclosure of New Exploits]( By adopting a stance of coordinated disclosure for exploits, security researchers can give organizations time to patch vulnerabilities before they are exploited in the wild. [MORE]( PRODUCTS & RELEASES [Portkey Announces Integration of Zero-Knowledge Proofs for Enhanced Identity Management and Security]( [Ockam and Redpanda Partner to Launch Zero-Trust Streaming Data Platform]( [Digital Twin Technology Can Improve Water Utility Management, Says Info-Tech Research Group]( [NRECA Signs MOU With Electricity Information Sharing and Analysis Center]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [OpenAI Disrupts 5 AI-Powered, State-Backed Influence Ops]( Most of the operations were feckless efforts with little impact, but they illustrate how AI is changing the game for inauthentic content on both the adversary and defense sides. LATEST FROM THE EDGE [Name That Edge Toon: Zonked Out]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. LATEST FROM DR TECHNOLOGY [Ways iOS Sideloading Can Be More Secure]( Sideloading apps is now possible on iOS devices, forcing Apple to add some security features in an attempt to mitigate the dangers of loading unknown apps. LATEST FROM DR GLOBAL [As Allies, Kenya & US Aim to Bolster Digital Security in Africa]( Amid surging attacks, Kenya aims to expand its technology sector and improve cybersecurity to protect the country's fast-growing digital economy. WEBINARS - [Empowering Developers, Automating Security: The Future of AppSec]( - [Assessing Software Supply Chain Risk]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Google Threat Intelligence]( - [5 Essential Insights into Generative AI for Security Leaders]( - [Shining a light in the dark: observability and security, a SANS profile]( - [EMA: AI at your fingertips: How Elastic AI Assistant simplifies cybersecurity]( - [Cisco Panoptica for Simplified Cloud-Native Application Security]( - [A Short Primer on Container Scanning]( - [ESG E-Book: Taking a Holistic Approach to Securing Cloud-Native Application Development]( [View More White Papers >>]( FEATURED REPORTS - [Elastic named a Leader in The Forrester Wave™: Security Analytics Platforms, Q4 2022]( - [EMA: AI at your fingertips: How Elastic AI Assistant simplifies cybersecurity]( - [How Enterprises Assess Their Cyber-Risk]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=123854&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_06.04.24&sp_cid=53809&utm_content=DR_NL_Dark%20Reading%20Daily_06.04.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#90 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)