MATLOCK.CA
122Articles
8Categories
2023-07-20Date
🚨
Threat Actors Exploiting Citrix CVE-2023-3519 to Implant WebshellsSUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) is releasing this Cybersecurity Advisory to warn network defenders about exploitation of CVE-2023-3519, an unauthenticated remote code execution (RCE) vulnerability affecting NetScaler (formerly Citrix) Applicati…
KEVCISA.GOV — 20 Jul 2023
🚨
Threat Actors Exploiting Citrix CVE-2023-3519 to Implant WebshellsSUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) is releasing this Cybersecurity Advisory to warn network defenders about exploitation of CVE-2023-3519, an unauthenticated remote code execution (RCE) vulnerability affecting NetScaler (formerly Citrix) Applicati…
KEVMALWARE.NEWS — 20 Jul 2023
🚨
CISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-29298 Adobe ColdFusion Improper Access Control Vulnerability CVE-2023-38205 Adobe ColdFusion Improper Access Control Vulnerability These type…
KEVCISA.GOV — Thu, 20 Jul 23 1
🐛
New research reveals rapid remediation of MOVEit Transfer vulnerabilities
MALWARE.NEWS — 20 Jul 2023
🐛
CVE-2023-36934: Progress Software MOVEit Transfer SQL Injection Remote Code Execution Vulnerability
MALWARE.NEWS — 20 Jul 2023
🐛
Zyxel Vulnerability Exploited by DDoS Botnets on Linux Systems
INFOSECURITY-MAGAZINE.COM — 20 Jul 2023
🐛
BMC&C: Lights Out Forever
KEVMALWARE.NEWS — 20 Jul 2023
🐛
Multiple DDoS Botnets Exploiting Recent Zyxel Vulnerability
SECURITYWEEK.COM — 20 Jul 2023
🐛
The federal government’s cybersecurity policies are falling into place just in time to be stalled again
KEVMALWARE.NEWS — 20 Jul 2023
🐛
Active exploitation of Citrix Netscaler ADC, Gateway bug underway
MALWARE.NEWS — 20 Jul 2023
🐛
Similarities between newly patched GE Cimplicity flaws, Sandworm attacks observed
MALWARE.NEWS — 20 Jul 2023
🐛
Adobe Rolls Out New Patches for Actively Exploited ColdFusion Vulnerability
KEVTHEHACKERNEWS.COM — 20 Jul 2023
🐛
CISA Releases Cybersecurity Advisory on Threat Actors Exploiting Citrix CVE-2023-3519
KEVCISA.GOV — Thu, 20 Jul 23 1
⚠️
Two Jira Plugin Vulnerabilities in Attacker Crosshairs
SECURITYWEEK.COM — 20 Jul 2023
⚠️
Adobe Releases New Patches for Exploited ColdFusion Vulnerabilities
SECURITYWEEK.COM — 20 Jul 2023
⚠️
Oracle Releases 508 New Security Patches With July 2023 CPU
SECURITYWEEK.COM — 20 Jul 2023
⚠️
New P2PInfect Worm Targeting Redis Servers on Linux and Windows Systems
THEHACKERNEWS.COM — 20 Jul 2023
⚠️
EP14: The Permissions Management Nightmare in SharePoint Online
MALWARE.NEWS — 20 Jul 2023
⚠️
Protecting energy infrastructure from cyberattacks
MALWARE.NEWS — 20 Jul 2023
⚠️
Weekly Intelligence Snapshot – Week 29, 2023
MALWARE.NEWS — 20 Jul 2023
⚠️
The Week in Security: Google Cloud Build permissions can be poisoned, WormGPT weaponizes AI
MALWARE.NEWS — 20 Jul 2023
⚠️
New P2P Worm Puts Windows and Linux Redis Servers in its Sights
MALWARE.NEWS — 20 Jul 2023
⚠️
1,000 CISOs strong: How cross-company collaboration strengthens enterprise cybersecurity
MALWARE.NEWS — 20 Jul 2023
⚠️
A look at Chrome’s security review culture
MALWARE.NEWS — 20 Jul 2023
⚠️
P2PInfect: New Peer-to-Peer Worm Targeting Redis Servers
SECURITYWEEK.COM — 20 Jul 2023
⚠️
New free cloud security tools offered by CISA
MALWARE.NEWS — 20 Jul 2023
⚠️
Supply chain security for Go, Part 3: Shifting left
MALWARE.NEWS — 20 Jul 2023
⚠️
Adobe Fixes ColdFusion Zero-Day - Again
KEVDATABREACHTODAY.CO.UK — 2023-07-20
⚠️
Mallox Ransomware Exploits Weak MS-SQL Servers to Breach Networks
THEHACKERNEWS.COM — 20 Jul 2023
⚠️
Critical Flaws in AMI MegaRAC BMC Software Expose Servers to Remote Attacks
THEHACKERNEWS.COM — 20 Jul 2023
⚠️
Apache OpenMeetings Web Conferencing Tool Exposed to Critical Vulnerabilities
THEHACKERNEWS.COM — 20 Jul 2023
⚠️
New P2PInfect Worm Targeting Redis Servers on Linux and Windows Systems
THEHACKERNEWS.COM — 20 Jul 2023
⚠️
CISA Releases One Industrial Control Systems Advisory
CISA.GOV — Thu, 20 Jul 23 1
⚠️
Supply chain security for Go, Part 3: Shifting left
SECURITY.GOOGLEBLOG.COM — 2023-07-20
⚠️
A look at Chrome’s security review culture
SECURITY.GOOGLEBLOG.COM — 2023-07-20
⚠️
The number of contributors to an open source project seems to inversely relate to the number of CVEs published (normalized over the age of the project and the Lines Of Code)
FEDDIT.DE — 20 Jul 2023
⚠️
Apple employee reportedly didn’t tell Google about zero-day exploit found in Chrome
9TO5MAC.COM — 20 Jul 2023
📢
Commentary on the Implementation Plan for the 2023 US National Cybersecurity Strategy
SCHNEIER.COM — 2023-07-20
📢
Industry Experts Urge CISA to Update Secure by Design Guidance
INFOSECURITY-MAGAZINE.COM — 20 Jul 2023
📢
CISA and NSA Issue New Guidance to Strengthen 5G Network Slicing Against Threats
THEHACKERNEWS.COM — 20 Jul 2023
📢
Justice to merge 2 offices in step with cyber implementation plan
MALWARE.NEWS — 20 Jul 2023
🔥
FIN8 APT Delivers BlackCat Ransomware Using Sardonic Backdoor Variant
CYWARE.COM — 20 Jul 2023
🔥
Healthcare Organizations in the Crosshairs of Cyberattackers
HELPNETSECURITY.COM — 20 Jul 2023
🔥
JumpCloud breach traced back to North Korean state hackers
BLEEPINGCOMPUTER.COM — 20 Jul 2023
🔥
Estée Lauder Takes Down Some Systems Following Cyberattack
CYBERSECURITYDIVE.COM — 20 Jul 2023
🔥
Russian Medical Lab Suspends Some Services After Ransomware Attack
THERECORD.MEDIA — 20 Jul 2023
🔥
The State of Ransomware in Education 2023
SOPHOS.COM — 20 Jul 2023
🔥
The State of Ransomware in Education 2023
MALWARE.NEWS — 20 Jul 2023
🔥
OnDemand | Where Did the Hackers Go? They Ran(somware): Insights into Ransomware Recovery
DATABREACHTODAY.CO.UK — 2023-07-20
🔥
Turla's New DeliveryCheck Backdoor Breaches Ukrainian Defense Sector
THEHACKERNEWS.COM — 20 Jul 2023
🔥
Tampa General Hospital Says Hackers Exfiltrated the Data of 1.2 Million Patients
HIPAAJOURNAL.COM — 20 Jul 2023
🔥
Combat IT Team Burnout by Embracing Automation
DATABREACHTODAY.CO.UK — 2023-07-20
🔥
JumpCloud Cyberattack Linked to North Korean Hackers
SECURITYWEEK.COM — 20 Jul 2023
🔥
Cosmetics Giant Estée Lauder Targeted by Two Ransomware Groups
SECURITYWEEK.COM — 20 Jul 2023
🔥
New Ransomware With RAT Capabilities Impersonating Sophos
SECURITYWEEK.COM — 20 Jul 2023
🔥
Cl0p, ALPHV/BlackCat claim separate attacks against Estee Lauder
MALWARE.NEWS — 20 Jul 2023
🔥
Ransomware attack impacts Russian medical laboratory
MALWARE.NEWS — 20 Jul 2023
🔥
JumpCloud Blames North Korean Hackers on Breach
DATABREACHTODAY.CO.UK — 2023-07-20
🔥
Breach Roundup: US Ambassador to China's Email Hacked Too
DATABREACHTODAY.CO.UK — 2023-07-20
🔥
Turla's New DeliveryCheck Backdoor Breaches Ukrainian Defense Sector
THEHACKERNEWS.COM — 20 Jul 2023
🔥
Microsoft Expands Cloud Logging to Counter Rising Nation-State Cyber Threats
THEHACKERNEWS.COM — 20 Jul 2023
🔥
Security Patch Management Strengthens Ransomware Defense
TRENDMICRO.COM — 20 Jul 2023
🕵️
Famed Hacker Kevin Mitnick Dead at 59
KEVSECURITYWEEK.COM — 20 Jul 2023
🕵️
ISC Stormcast For Thursday, July 20th, 2023 https://isc.sans.edu/podcastdetail/8580, (Thu, Jul 20th)
MALWARE.NEWS — 20 Jul 2023
🕵️
Threat Actors Enhance Phishing Tactics with Zip Domains
CYWARE.COM — 20 Jul 2023
🕵️
Understanding Artificial Intelligence
MALWARE.NEWS — 20 Jul 2023
🕵️
Deobfuscation of Malware Delivered Through a .bat File, (Thu, Jul 20th)
MALWARE.NEWS — 20 Jul 2023
🕵️
Alleged drug baron coordinating drug production in Europe is arrested in Colombia
MALWARE.NEWS — 20 Jul 2023
🕵️
Singapore releases draft guidelines on personal data use in AI training
MALWARE.NEWS — 20 Jul 2023
🕵️
[SANS ISC] Deobfuscation of Malware Delivered Through a .bat File
MALWARE.NEWS — 20 Jul 2023
🕵️
Job Scams Using Bioscience Lures Target Universities
PROOFPOINT.COM — 20 Jul 2023
🕵️
Recently Patched GE Cimplicity Vulnerabilities Reminiscent of Russian ICS Attacks
SECURITYWEEK.COM — 20 Jul 2023
🕵️
Protected: Neo_Net | The Kingpin of Spanish eCrime
MALWARE.NEWS — 20 Jul 2023
🕵️
Bad ad fad leads to IcedID, Gozi infections
MALWARE.NEWS — 20 Jul 2023
🕵️
Nation States Using Cybercrime Groups as Proxies, Warns NCA Chief
INFOSECURITY-MAGAZINE.COM — 20 Jul 2023
🕵️
APT41 hackers target Android users with WyrmSpy, DragonEgg spyware
BLEEPINGCOMPUTER.COM — 20 Jul 2023
🕵️
Lessons Learned From Brazil's PIX for US FedNow Program
DATABREACHTODAY.CO.UK — 2023-07-20
🕵️
Anonymous Sudan DDoS strikes dominate attacks by KillNet collective
MALWARE.NEWS — 20 Jul 2023
🕵️
My go-to cleaning app for Mac just got a major security upgrade
MALWARE.NEWS — 20 Jul 2023
🕵️
Threat Actors are Targeting Your Web Applications – Here’s How To Protect Them
BLEEPINGCOMPUTER.COM — 20 Jul 2023
🕵️
Shenetworks’ Guide to Landing Your First Tech Job
MALWARE.NEWS — 20 Jul 2023
🕵️
North Korean-linked Lazarus Group tied to supply chain attack on JumpCloud
MALWARE.NEWS — 20 Jul 2023
🕵️
Remembering World-Famous Computer Hacker Kevin Mitnick
KEVDATABREACHTODAY.CO.UK — 2023-07-20
🕵️
New AMI BMC Flaws Allowing Takeover and Physical Damage Could Impact Millions of Devices
SECURITYWEEK.COM — 20 Jul 2023
🕵️
Human Cyber-Risk Can Be Demonstrably Mitigated by Behavior Changing Training: Analysis
SECURITYWEEK.COM — 20 Jul 2023
🕵️
10 Steps to Help Secure Your APIs
SECURITYWEEK.COM — 20 Jul 2023
🕵️
Remembrances pour on to social media on the passing of famed hacker Kevin Mitnick
KEVMALWARE.NEWS — 20 Jul 2023
🕵️
Kevin Mitnick Died
KEVSCHNEIER.COM — 2023-07-20
🕵️
Stolen OpenAI credentials prevalent on the dark web
MALWARE.NEWS — 20 Jul 2023
🕵️
Bioscience, health job lures leveraged in new scam campaign
MALWARE.NEWS — 20 Jul 2023
🕵️
Malware risk inaccurately classified by AI, LLMs
MALWARE.NEWS — 20 Jul 2023
🕵️
New Turla attacks target Exchange servers with DeliveryCheck malware
MALWARE.NEWS — 20 Jul 2023
🕵️
Novel Android spyware strain versions leveraged by APT41
MALWARE.NEWS — 20 Jul 2023
🕵️
Cyber Resilience Act: The Future of Software in the European Union
MALWARE.NEWS — 20 Jul 2023
🕵️
UN security council delegates urge AI controls to defuse potential global threat
MALWARE.NEWS — 20 Jul 2023
🕵️
Black SEO Offerings Gaining Momentum in Underground Forums
DATABREACHTODAY.CO.UK — 2023-07-20
🕵️
Feds Warn Hospitals, Telehealth Firms About Web Tracker Use
DATABREACHTODAY.CO.UK — 2023-07-20
🕵️
Graylog Buys API Security Firm Resurface for Added Telemetry
DATABREACHTODAY.CO.UK — 2023-07-20
🕵️
IBM’s Watson rebooted as a secure AI alternative
MALWARE.NEWS — 20 Jul 2023
🕵️
GitHub warns of Lazarus hackers targeting devs with malicious projects
BLEEPINGCOMPUTER.COM — 20 Jul 2023
🕵️
Chinese Threat Group APT41 Linked To Android Malware Attacks
DATABREACHTODAY.CO.UK — 2023-07-20
🕵️
Federal Reserve's FedNow Goes Live With Fast Payments
DATABREACHTODAY.CO.UK — 2023-07-20
🕵️
North Korean State-Sponsored Hackers Suspected in JumpCloud Supply Chain Attack
THEHACKERNEWS.COM — 20 Jul 2023
🕵️
Deobfuscation of Malware Delivered Through a .bat File, (Thu, Jul 20th)
ISC.SANS.EDU — 20 Jul 2023
🕵️
ISC Stormcast For Thursday, July 20th, 2023 https://isc.sans.edu/podcastdetail/8580, (Thu, Jul 20th)
ISC.SANS.EDU — 20 Jul 2023
🕵️
LLM in the Cloud — Advantages and Risks
PALOALTONETWORKS.COM — 20 Jul 2023
🕵️
Kevin Mitnick Obituary - Las Vegas, NV
KEVDIGNITYMEMORIAL.COM — 20 Jul 2023
🌐
Bad ad fad leads to IcedID, Gozi infections
SOPHOS.COM — 20 Jul 2023
🌐
New P2PInfect worm malware targets Linux and Windows Redis servers
BLEEPINGCOMPUTER.COM — 20 Jul 2023
🌐
KillNet DDoS Attacks Further Moscow's Psychological Agenda
DATABREACHTODAY.CO.UK — 2023-07-20
🌐
Critical AMI MegaRAC bugs can let hackers brick vulnerable servers
BLEEPINGCOMPUTER.COM — 20 Jul 2023
🌐
Part I: Implementing Effective Cyber Security Metrics That Reduce Risk Realistically
QUALYS.COM — 20 Jul 2023
📡
OpenAI Credentials Stolen by the Thousands for Sale on the Dark Web
BLEEPINGCOMPUTER.COM — 20 Jul 2023
📡
Microsoft Set to Expand Access to Detailed Logs in the Wake of Chinese Hacking Operation
CYBERSCOOP.COM — 20 Jul 2023
📡
Business Continuity and Disaster Recovery: Essential Offerings for Small Medium Businesses
DATABREACHTODAY.CO.UK — 2023-07-20
📡
Google Chrome gets Windows 11's new design - how to enable it
BLEEPINGCOMPUTER.COM — 20 Jul 2023
📡
Phishing via Google Ads
AVANAN.COM — 20 Jul 2023
📡
Renewable technologies add risk to the US electric grid, experts warn
CYBERSCOOP.COM — 20 Jul 2023
📡
Update: Old Roblox Data Leak Resurfaces, 4000 Users' Personal Information Exposed
INFOSECURITY-MAGAZINE.COM — 20 Jul 2023
📡
A Few More Reasons Why RDP is Insecure (Surprise!)
THEHACKERNEWS.COM — 20 Jul 2023
📡
Updated Researcher Portal Submission Form: Discover the New Fields in the Submission Form
MSRC.MICROSOFT.COM — 20 Jul 2023
📡
8 common work-from-home scams to avoid
WELIVESECURITY.COM — 20 Jul 2023