matlock.ca // THREAT INTELLIGENCE

132Articles

8Categories

2023-07-19Date

🚨

CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-3519 Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability These types of vulnerabilities are frequent attack vectors for mal…

KEVCISA.GOV — Wed, 19 Jul 23 1

🐛

Security Alert: Alert Regarding Vulnerability (CVE-2023-3519) in Citrix ADC and Citrix Gateway

MALWARE.NEWS — 19 Jul 2023

🐛

Zero-Day Attacks Exploited Critical Vulnerability in Citrix ADC and Gateway

THEHACKERNEWS.COM — 19 Jul 2023

🐛

Exploitation of New Citrix Zero-Day Likely to Increase, Organizations Warned

SECURITYWEEK.COM — 19 Jul 2023

🐛

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability

MALWARE.NEWS — 19 Jul 2023

🐛

Safe programming languages: A solid first step

MALWARE.NEWS — 19 Jul 2023

🐛

Citrix ADC Vulnerability CVE-2023-3519, 3466 and 3467 - Patch Now!, (Wed, Jul 19th)

MALWARE.NEWS — 19 Jul 2023

🐛

Memory corruption vulnerability in Microsoft Edge; MilesightVPN and router could be taken over

MALWARE.NEWS — 19 Jul 2023

🐛

Security Agencies Urge Users to Patch Citrix Zero-Day Flaw

DATABREACHTODAY.CO.UK — 2023-07-19

🐛

Adobe fixes patch bypass for exploited ColdFusion CVE-2023-29298 flaw

BLEEPINGCOMPUTER.COM — 19 Jul 2023

🐛

Zero-Day Attacks Exploited Critical Vulnerability in Citrix ADC and Gateway

KEVTHEHACKERNEWS.COM — 19 Jul 2023

🐛

Citrix ADC Vulnerability CVE-2023-3519, 3466 and 3467 - Patch Now!, (Wed, Jul 19th)

ISC.SANS.EDU — 19 Jul 2023

⚠️

Vulnerability Monitoring: Reducing Third-Party Risk

MALWARE.NEWS — 19 Jul 2023

⚠️

Defunct Avaddon Rebranded as NoEscape Ransomware

CYWARE.COM — 19 Jul 2023

⚠️

Medical Device Maker Flags Eight Flaws in Drug Infusion Products

GOVINFOSECURITY.COM — 19 Jul 2023

⚠️

Google Fixes ‘Bad.Build’ Vulnerability Affecting Cloud Build Service

THERECORD.MEDIA — 19 Jul 2023

⚠️

FortiGuard Labs Warns of .ZIP Domains Fueling Phishing Attacks

HACKREAD.COM — 19 Jul 2023

⚠️

Mario Movie Malware Might Maliciously Mess With Your Machine

AVAST.COM — 19 Jul 2023

⚠️

U.S. Blacklists Two Spyware Firms Run by an Israeli Former General

NYTIMES.COM — 19 Jul 2023

⚠️

Two Jira Plugin Vulnerabilities in Attacker Crosshairs

SECURITYWEEK.COM — 19 Jul 2023

⚠️

Biden Admin. Adds ‘Mercenary Spyware’ Firms to Ban List

MALWARE.NEWS — 19 Jul 2023

⚠️

Imagine360, others impacted by separate third-party data breaches

MALWARE.NEWS — 19 Jul 2023

⚠️

US adds spyware developers Intellexa, Cytrox to blacklist

MALWARE.NEWS — 19 Jul 2023

⚠️

HHS urged to bolster protection of health records

MALWARE.NEWS — 19 Jul 2023

⚠️

Supply chain attacks possible with Google Cloud Build vulnerability

MALWARE.NEWS — 19 Jul 2023

⚠️

Legislators say HHS is failing to adequately protect health records from law enforcement

THERECORD.MEDIA — 19 Jul 2023

⚠️

Adobe emergency patch fixes new ColdFusion zero-day used in attacks

BLEEPINGCOMPUTER.COM — 19 Jul 2023

⚠️

Attacker ID’ed After Infecting Own Computer With Malware

MALWARE.NEWS — 19 Jul 2023

⚠️

Multiple Vulnerabilities in Adobe ColdFusion Could Allow for Arbitrary Code Execution

CISECURITY.ORG — 19 Jul 2023

⚠️

Oracle Quarterly Critical Patches Issued July 18, 2023

CISECURITY.ORG — 19 Jul 2023

⚠️

Multiple Vulnerabilities in Citrix Products Could Allow for Remote Code Execution

CISECURITY.ORG — 19 Jul 2023

⚠️

Chinese APT41 Hackers Target Mobile Devices with New WyrmSpy and DragonEgg Spyware

THEHACKERNEWS.COM — 19 Jul 2023

⚠️

Bad.Build Flaw in Google Cloud Build Raises Concerns of Privilege Escalation

THEHACKERNEWS.COM — 19 Jul 2023

⚠️

U.S. Government Blacklists Cytrox and Intellexa Spyware Vendors for Cyber Espionage

THEHACKERNEWS.COM — 19 Jul 2023

⚠️

Threat Level - GUARDED

CISECURITY.ORG — 19 Jul 2023

⚠️

Bad.Build: A Critical Privilege Escalation Design Flaw in Google Cloud Build Enables a Supply Chain Attack

ORCA.SECURITY — 19 Jul 2023

📢

Red Hat security advisory (AV23-424)

CYBER.GC.CA — 2023-07-19

📢

[Control systems] Weintek security advisory (AV23-423)

CYBER.GC.CA — 2023-07-19

📢

[Control systems] Weintek security advisory (AV23-423)

MALWARE.NEWS — 19 Jul 2023

📢

Why are there so many malware-as-a-service offerings?

MALWARE.NEWS — 19 Jul 2023

📢

Red Hat security advisory (AV23-424)

MALWARE.NEWS — 19 Jul 2023

📢

CISA and Microsoft Partnership Expands Access to Logging Capabilities Broadly

CISA.GOV — Wed, 19 Jul 23 1

📢

Google Chrome security advisory (AV23-425)

CYBER.GC.CA — 2023-07-19

📢

Oracle security advisory – July 2023 quarterly rollup (AV23-426)

CYBER.GC.CA — 2023-07-19

📢

Oracle security advisory – July 2023 quarterly rollup (AV23-426)

MALWARE.NEWS — 19 Jul 2023

📢

Google Chrome security advisory (AV23-425)

MALWARE.NEWS — 19 Jul 2023

📢

Foxit security advisory (AV23-427)

CYBER.GC.CA — 2023-07-19

📢

Foxit security advisory (AV23-427)

MALWARE.NEWS — 19 Jul 2023

📢

Biden Administration Blacklists 2 Commercial Spyware Firms

DATABREACHTODAY.CO.UK — 2023-07-19

📢

Adobe security advisory (AV23-428)

CYBER.GC.CA — 2023-07-19

📢

White House seeks public insight to harmonize ‘inconsistent’ cyber regulations

MALWARE.NEWS — 19 Jul 2023

📢

Atlassian security advisory (AV23-429)

CYBER.GC.CA — 2023-07-19

📢

Adobe security advisory (AV23-428)

MALWARE.NEWS — 19 Jul 2023

📢

Atlassian security advisory (AV23-429)

MALWARE.NEWS — 19 Jul 2023

📢

An important step towards secure and interoperable messaging

MALWARE.NEWS — 19 Jul 2023

📢

Microsoft Expands Logging Access After Chinese Hack Blowback

DATABREACHTODAY.CO.UK — 2023-07-19

📢

White House Unveils Cyber Trust Label for Smart Devices

DATABREACHTODAY.CO.UK — 2023-07-19

📢

CISA and NSA Issue New Guidance to Strengthen 5G Network Slicing Against Threats

THEHACKERNEWS.COM — 19 Jul 2023

📢

An important step towards secure and interoperable messaging

SECURITY.GOOGLEBLOG.COM — 2023-07-19

🔥

Cyber Security Today, July 19, 2023 - The Sturmous ransomware group is back, a ransomware gang adds a new backdoor, and more

CYBERSECURITYTODAY.LIBSYN.COM — 19 Jul 2023

🔥

HCA Healthcare data breach impacts 11 million patients

CSHUB.COM — 19 Jul 2023

🔥

Not all cybersecurity analytics are created equal: What CISOs should look for

MALWARE.NEWS — 19 Jul 2023

🔥

Cybersecurity Firm Sophos Impersonated by New SophosEncrypt Ransomware

BLEEPINGCOMPUTER.COM — 19 Jul 2023

🔥

Trends in Ransomware-as-a-Service and Cryptocurrency to Monitor

HELPNETSECURITY.COM — 19 Jul 2023

🔥

FIN8 retools backdoor malware to avoid detection

MALWARE.NEWS — 19 Jul 2023

🔥

Norwegian Mining and Recycling Company TOMRA Experiences Disruptive Cyberattack

THEREGISTER.COM — 19 Jul 2023

🔥

FCC launches 'U.S. Cyber Trust Mark' labeling for IoT devices

MALWARE.NEWS — 19 Jul 2023

🔥

Microsoft expands access to cloud logging data for free after Exchange hacks

BLEEPINGCOMPUTER.COM — 19 Jul 2023

🔥

New Attack Campaign Enters the 'FakeUpdates' Arena to Deliver NetSupport RAT

MALWAREBYTES.COM — 19 Jul 2023

🔥

Recycling Giant Tomra Takes Systems Offline Following Cyberattack

SECURITYWEEK.COM — 19 Jul 2023

🔥

Novel SophosEncrypt RaaS operation emerges

MALWARE.NEWS — 19 Jul 2023

🔥

Cyberattack disrupts TOMRA

MALWARE.NEWS — 19 Jul 2023

🔥

Most financial and insurance firms report security issues in production APIs

MALWARE.NEWS — 19 Jul 2023

🔥

Reporting Cyber Incidents Within 72 Hours: Challenges Ahead

DATABREACHTODAY.CO.UK — 2023-07-19

🔥

Estée Lauder beauty giant breached in two separate ransomware attacks

BLEEPINGCOMPUTER.COM — 19 Jul 2023

🔥

Estée Lauder beauty giant breached by two ransomware gangs

BLEEPINGCOMPUTER.COM — 19 Jul 2023

🔥

Sogu, SnowyDrive Malware Spreads, USB-Based Cyberattacks Surge

DARKREADING.COM — 19 Jul 2023

🕵️

Security Alert: Oracle Releases Critical Patch Update, July 2023

MALWARE.NEWS — 19 Jul 2023

🕵️

Extending Burp Suite for fun and profit – The Montoya way – Part 3

MALWARE.NEWS — 19 Jul 2023

🕵️

Variants of BPFDoor Deployed in Linux Kernel

CYWARE.COM — 19 Jul 2023

🕵️

Oracle Releases 508 New Security Patches With July 2023 CPU

SECURITYWEEK.COM — 19 Jul 2023

🕵️

Chrome 115 Patches 20 Vulnerabilities

SECURITYWEEK.COM — 19 Jul 2023

🕵️

Diligent and Bitsight Partner to Increase Board Confidence in Cyber Risk Oversight

MALWARE.NEWS — 19 Jul 2023

🕵️

Security Awareness Training Isn’t Working – How Can We Improve It?

SECURITYWEEK.COM — 19 Jul 2023

🕵️

Russia Expected to Increase Critical Infrastructure Attacks

MALWARE.NEWS — 19 Jul 2023

🕵️

Chinese APT41 Hackers Target Mobile Devices with New WyrmSpy and DragonEgg Spyware

THEHACKERNEWS.COM — 19 Jul 2023

🕵️

Virtual Event Today: 2023 Cloud & Data Security Summit

SECURITYWEEK.COM — 19 Jul 2023

🕵️

Recently Patched GE Cimplicity Vulnerabilities Reminiscent of Russian ICS Attacks

SECURITYWEEK.COM — 19 Jul 2023

🕵️

ChatGPT Provides Limited Help Identifying Malware

MALWARE.NEWS — 19 Jul 2023

🕵️

ISC Stormcast For Wednesday, July 19th, 2023 https://isc.sans.edu/podcastdetail/8578, (Wed, Jul 19th)

MALWARE.NEWS — 19 Jul 2023

🕵️

HAM Radio + Enigma Machine Challenge, (Wed, Jul 19th)

MALWARE.NEWS — 19 Jul 2023

🕵️

Microsoft backtracks: Premium security logging is now free

MALWARE.NEWS — 19 Jul 2023

🕵️

DDoS attack prevalence, sophistication spikes

MALWARE.NEWS — 19 Jul 2023

🕵️

VirusTotal leak impacts US, other countries' government agencies

MALWARE.NEWS — 19 Jul 2023

🕵️

Why a cyber resilience approach to digital risk is needed now more than ever

MALWARE.NEWS — 19 Jul 2023

🕵️

WormGPT: What you need to know about the cybercriminal's answer to ChatGPT

MALWARE.NEWS — 19 Jul 2023

🕵️

What is the new Enhanced Safe Browing for Gmail (and should you enable it)?

MALWARE.NEWS — 19 Jul 2023

🕵️

Sophos Team Go Wild for Volunteering

MALWARE.NEWS — 19 Jul 2023

🕵️

Microsoft Bows to Pressure to Free Up Cloud Security Logs

SECURITYWEEK.COM — 19 Jul 2023

🕵️

Practice Your Security Prompting Skills

SCHNEIER.COM — 2023-07-19

🕵️

Google is cutting off internet access for some employees. Here's why

MALWARE.NEWS — 19 Jul 2023

🕵️

An ‘Alarming Escalation’ of Sophistication in DDoS Attacks, Cloudflare Says

MALWARE.NEWS — 19 Jul 2023

🕵️

OpenAI credentials stolen by the thousands for sale on the dark web

BLEEPINGCOMPUTER.COM — 19 Jul 2023

🕵️

US power grid faces escalating cyber threats, infrastructure experts warn

MALWARE.NEWS — 19 Jul 2023

🕵️

Ukrainian Police Shutter Propaganda-Spreading Bot Farm

DATABREACHTODAY.CO.UK — 2023-07-19

🕵️

Russian Hackers Probe Ukrainian Defense Sector With Backdoor

DATABREACHTODAY.CO.UK — 2023-07-19

🕵️

Creativity Test of GPT’s Story Telling Ability Based on an Image Alone

MALWARE.NEWS — 19 Jul 2023

🕵️

ISC Stormcast For Wednesday, July 19th, 2023 https://isc.sans.edu/podcastdetail/8578, (Wed, Jul 19th)

ISC.SANS.EDU — 19 Jul 2023

🕵️

Expanding cloud logging to give customers deeper security visibility

MICROSOFT.COM — 19 Jul 2023

🌐

WormGPT: Emerging AI Tool Raises Concerns over Advanced Cyber Threats

CYWARE.COM — 19 Jul 2023

🌐

US govt bans European spyware vendors Intellexa and Cytrox

BLEEPINGCOMPUTER.COM — 19 Jul 2023

🌐

DangerousPassword Attacks Targeting Developers’ Windows, macOS, and Linux Environments

BLOGS.JPCERT.OR.JP — 19 Jul 2023

🌐

Microsoft: Hackers turn Exchange servers into malware control centers

BLEEPINGCOMPUTER.COM — 19 Jul 2023

📡

EMEA Webinar | Security Awareness Matters: How to Build Awareness that Transforms Culture and Reduces Risk

DATABREACHTODAY.CO.UK — 2023-07-19

📡

Called a Bogus Airline Customer Support Number? Google is Hustling to Fix That

THERECORD.MEDIA — 19 Jul 2023

📡

FBI: Tech support scams now use shipping companies to collect cash

BLEEPINGCOMPUTER.COM — 19 Jul 2023

📡

Germany’s new cyber chief to ‘intensify and focus’ work shaping European rules

THERECORD.MEDIA — 19 Jul 2023

📡

Bureau raises $16.5 million to help users prevent fraud

HELPNETSECURITY.COM — 19 Jul 2023

📡

Ukraine takes down massive bot farm, seizes 150,000 SIM cards

BLEEPINGCOMPUTER.COM — 19 Jul 2023

📡

FIA World Endurance Championship Driver Passports Left Unsecured

SECURITYAFFAIRS.COM — 19 Jul 2023

📡

Facebook behavioral ads banned by Norwegian privacy watchdog

BLEEPINGCOMPUTER.COM — 19 Jul 2023

📡

Ukraine Police Bust Another Bot Farm Accused of Pro-Russia Propaganda, Internet Fraud

THERECORD.MEDIA — 19 Jul 2023

📡

When Tech Vendors Make Key Logging Info Available for Free, Everyone Wins

CISA.GOV — Wed, 19 Jul 23 1

📡

Sophos Team Go Wild for Volunteering

SOPHOS.COM — 19 Jul 2023

📡

Tech Support Scams Now Use Shipping Companies to Collect Cash

BLEEPINGCOMPUTER.COM — 19 Jul 2023

📡

Meta confirms WhatsApp is down worldwide

BLEEPINGCOMPUTER.COM — 19 Jul 2023

📡

Hands on with GPT-4-powered Bing AI Chat's virtual search

BLEEPINGCOMPUTER.COM — 19 Jul 2023

📡

How to Manage Your Attack Surface?

THEHACKERNEWS.COM — 19 Jul 2023

📡

Exploring the Dark Side: OSINT Tools and Techniques for Unmasking Dark Web Operations

THEHACKERNEWS.COM — 19 Jul 2023

📡

HAM Radio + Enigma Machine Challenge, (Wed, Jul 19th)

ISC.SANS.EDU — 19 Jul 2023

📡

AWS Reliability Pillar: Consistent Cloud Architecture

TRENDMICRO.COM — 19 Jul 2023

📡

Child identity theft: how do I keep my kids’ personal data safe?

WELIVESECURITY.COM — 19 Jul 2023