24Articles
7Categories
2023-07-29Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
29 JulIvanti Warns of Another Endpoint Manager Mobile Vulnerability Under Active AttackIvanti has disclosed yet another security flaw impacting Endpoint Manager Mobile (EPMM), formerly known as MobileIron Core, that it said has been weaponized as part of an exploit chain by malicious actors in the wild. The new vulnerability, tracked as CVE-2023-35081 (CVSS score: …THEHACKERNEWS.COM
29 JulIvanti Warns of Another Endpoint Manager Mobile Vulnerability Under Active AttackThe new vulnerability, tracked as CVE-2023-35081 (CVSS score: 7.8), impacts supported versions 11.10, 11.9, and 11.8, as well as those that are currently end-of-life (EoL).THEHACKERNEWS.COM
29 JulExploitation of Recent Citrix ShareFile RCE Vulnerability BeginsThe vulnerability, tracked as CVE-2023-24489 (CVSS score of 9.1), was the result of errors leading to unauthenticated file upload, which could then be exploited to obtain RCE, says security firm Assetnote, which identified and reported the bug.SECURITYWEEK.COM
⚠️ VULNERABILITY DISCLOSURE 6[−]
29 JulWeintek Weincloud Vulnerabilities Allowed Manipulation, Damaging of ICS DevicesSeveral vulnerabilities discovered by a researcher from industrial cybersecurity firm TXOne Networks in a Weintek product could have been exploited to manipulate and damage industrial control systems (ICS).SECURITYWEEK.COM
29 JulHackers Deploy "SUBMARINE" Backdoor in Barracuda Email Security Gateway AttacksThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday disclosed details of a "novel persistent backdoor" called SUBMARINE deployed by threat actors in connection with the hack on Barracuda Email Security Gateway (ESG) appliances. "SUBMARINE comprises multiple…THEHACKERNEWS.COM
29 JulRFP Template for Browser SecurityIncreasing cyber threats and attacks have made protecting organizational data a paramount concern for businesses of all sizes. A group of experts have recognized the pressing need for comprehensive browser security solutions and collaborated to develop "The Definitive Browser Sec…THEHACKERNEWS.COM
29 JulBrowser developers push back on Google's “web DRM” WEI APIGoogle's plans to introduce the Web Environment Integrity (WEI) API on Chrome has been met with fierce backlash from internet software developers, drawing criticism for limiting user freedom and undermining the core principles of the open web. [...]BLEEPINGCOMPUTER.COM
29 JulIvanti Says Second Zero Day Used in Norway Govt BreachExploitation No Longer Requires Admin Authentication When Chained with Earlier Flaw Threat actors who recently attacked a dozen Norwegian ministries by exploiting a zero-day vulnerability in Ivanti's endpoint management software appeared to have another zero day flaw that tied to…DATABREACHTODAY.CO.UK
29 Jul41 Zero-days Exploited In-the-Wild in 2022 – Google ReportIn 2022, the detection of zero-day exploits in the wild decreased by 40% compared to the previous year. 41 in-the-wild 0-days were detected, the second-highest count since 2014, but lower than the 69 found in 2021. While a 40% drop appears as a security win but, the reality is mo…GBHACKERS.COM
📢 SECURITY ADVISORIES 2[−]
29 JulChina’s Wuhan Earthquake Center Suffers CyberattackThe Global Times newspaper, owned by the Chinese Communist Party, reported on July 26 that the Wuhan Municipal Emergency Management Bureau revealed that the Monitoring Center had been subjected to a cyberattack by an “overseas organization.”INFOSECURITY-MAGAZINE.COM
29 JulUK NCSC Publishes New Guidance on Shadow ITGiven the potentially serious repercussions of shadow IT, technical teams should focus on finding where it exists in the organization and addressing the underlying causes of it, the NCSC argued.INFOSECURITY-MAGAZINE.COM
🔥 INCIDENT REPORTING 2[−]
29 JulLinux version of Abyss Locker ransomware targets VMware ESXi serversThe Abyss Locker operation is the latest to develop a Linux encryptor to target VMware's ESXi virtual machines platform in attacks on the enterprise. [...]BLEEPINGCOMPUTER.COM
29 JulN Korean Hackers Phishing With US Army Job LuresResearchers Say APT37 Group Likely Behind Campaign Targeting South Koreans Government-backed North Korean hackers are posting convincing U.S. military job recruitment documents to lure Korean-speaking victims into downloading malware staged from legitimate but compromised South K…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 4[−]
29 JulCoinsPaid Blames North Korea-Linked APT Lazarus for Theft of $37M Worth of Cryptocurrency“On July 22nd, CoinsPaid experienced a hacker attack, resulting in the theft of USD 37.3M,” reads the announcement published by the company. “We believe Lazarus expected the attack on CoinsPaid to be much more successful.”SECURITYAFFAIRS.COM
29 JulResearchers uncover surprising method to hack the guardrails of LLMsResearchers from Carnegie Mellon University and the Center for A.I. Safety have discovered a new prompt injection method to override the guardrails of large language models (LLMs). These guardrails are safety measures designed to prevent AI from generating harmful content.KNOWBE4.COM
29 JulDo Attackers Pay More Attention to IPv6?, (Sat, Jul 29th)IPv6 has always been a hot topic&#;x26;#;x21; Available for years, many ISP&#;x26;#;39;s deployed IPv6 up to their residential customers. In Belgium, we were for a long time, the top-one country with IPv6 deployment because …ISC.SANS.EDU
29 JulA surprisingly simple way to foil car thievessubmitted by agilob to security 13 points | 8 comments https://news.umich.edu/a-surprisingly-simple-way-to-foil-car-thieves/UMICH.EDU
🌐 CYBER THREAT LANDSCAPE 2[−]
29 JulUpdate: More Malicious NPM Packages Found in Wake of Jumpcloud Supply Chain HackAn investigation by ReversingLabs researchers has uncovered evidence of more malicious npm packages, with links to the same infrastructure that also appear to target cryptocurrency providers.REVERSINGLABS.COM
29 JulNew Android Malware CherryBlos Utilizing OCR to Steal Sensitive DataA new Android malware strain called CherryBlos has been observed making use of optical character recognition (OCR) techniques to gather sensitive data stored in pictures. CherryBlos, per Trend Micro, is distributed via bogus posts on social media platforms and comes with capabili…THEHACKERNEWS.COM
📡 INFOSEC NEWS 5[−]
29 JulCoro Buys Privatise to Infuse SASE With Network ConnectivityThe New York-based company said its acquisition of Jerusalem-based Privatise will provide Coro clients with a secure way to connect, manage and filter out malicious content, according to co-founder Dror Liwer.BANKINFOSECURITY.COM
29 JulApple Sets New Rules for Developers to Prevent Fingerprinting and Data MisuseApple has announced plans to require developers to submit reasons to use certain APIs in their apps starting later this year with the release of iOS 17, iPadOS 17, macOS Sonoma, tvOS 17, and watchOS 10 to prevent their abuse for data collection. "This will help ensure that apps o…THEHACKERNEWS.COM
29 JulSophos Central Turns Ten!The world’s most trusted cybersecurity platform now secures more than 25 million devicesSOPHOS.COM
29 JulApple rejects new name 'X' for Twitter iOS app because... rulesMr. Musk may have successfully pushed Twitter's new name and logo, 'X', and even made the vanity domain x.com redirect to the social media website, but that's not to say, the Mathematical double-struck letter will fit the bill everywhere. Apple's App Store can't accept Twitter iO…BLEEPINGCOMPUTER.COM