matlock.ca // THREAT INTELLIGENCE — 2023-07-31

65Articles

9Categories

2023-07-31Date

🚨

CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-35801 Ivanti Endpoint Manager Mobile (EPMM) Path Traversal Vulnerability These types of vulnerabilities are frequent attack vectors for malicio…

KEVCISA.GOV — Mon, 31 Jul 23 1

🐛

Multiple Flaws Found in Ninja Forms Plugin Leave 800,000 Sites Vulnerable

THEHACKERNEWS.COM — 31 Jul 2023

🐛

Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks

SECURITYWEEK.COM — 31 Jul 2023

🐛

Study Reveals Silent Python Package Security Fixes

THEREGISTER.COM — 31 Jul 2023

⚠️

Dark Power Ransomware Abusing Vulnerable Dynamic-Link Libraries in Resolved API Flow

HEIMDALSECURITY.COM — 31 Jul 2023

⚠️

AVRecon Botnet Leveraging Compromised Routers to Fuel Illegal Proxy Service

THEHACKERNEWS.COM — 31 Jul 2023

⚠️

CISA Analyzes Malware Used in Barracuda ESG Attacks

SECURITYWEEK.COM — 31 Jul 2023

⚠️

New Study Reveals Forged Certificate Attack Risks

INFOSECURITY-MAGAZINE.COM — 31 Jul 2023

⚠️

A Year in Review of Zero-Days Exploited In-the-Wild in 2022

SECURITY.GOOGLEBLOG.COM — 31 Jul 2023

⚠️

Senate opens path for a cyber-focused military branch

THERECORD.MEDIA — 31 Jul 2023

⚠️

Pentagon Looks Into ‘Critical Compromise’ of Air Force and FBI Contacts

GBHACKERS.COM — 31 Jul 2023

⚠️

VMware ESXi Servers Face New Threat from Abyss Locker

CYWARE.COM — 31 Jul 2023

⚠️

New P2PInfect Worm Targets Redis Servers with Undocumented Breach Methods

THEHACKERNEWS.COM — 31 Jul 2023

⚠️

White House Unveils National Cyber Workforce Strategy

DATABREACHTODAY.CO.UK — 2023-07-31

⚠️

Ivanti Says Second Zero-Day Used in Norway Government Breach

DATABREACHTODAY.CO.UK — 2023-07-31

⚠️

Hackers exploit BleedingPipe RCE to target Minecraft servers, players

BLEEPINGCOMPUTER.COM — 31 Jul 2023

⚠️

P2PInfect server botnet spreads using Redis replication feature

BLEEPINGCOMPUTER.COM — 31 Jul 2023

⚠️

CISA Welcomes Aeva Black: Joining Our Team to Strengthen Open Source Software Security

CISA.GOV — Mon, 31 Jul 23 1

⚠️

White House Unveils National Cyber Workforce Strategy

BANKINFOSECURITY.COM — 31 Jul 2023

⚠️

Hackers Exploit Bleedingpipe RCE Flaw to Target Minecraft Servers, Players

BLEEPINGCOMPUTER.COM — 31 Jul 2023

⚠️

What Causes a Rise or Fall in Fresh Zero-Day Exploits?

KEVDATABREACHTODAY.CO.UK — 2023-07-31

⚠️

US Gov Rolls Out National Cyber Workforce, Education Strategy

SECURITYWEEK.COM — 31 Jul 2023

⚠️

CISA Releases One Industrial Control Systems Advisory

CISA.GOV — Mon, 31 Jul 23 1

📢

Cyber Security Today, July 31, 2023 - Warning to Linux administrators, and more

CYBERSECURITYTODAY.LIBSYN.COM — 31 Jul 2023

📢

CISA Discovers Spear Phishing and Valid Account Compromise Are the Most Common Attack Vectors

KNOWBE4.COM — 31 Jul 2023

📢

U.S. Senator Blasts Microsoft for Chinese Hack Seeks Federal Action

GBHACKERS.COM — 31 Jul 2023

📢

Ubuntu security advisory (AV23-450)

CYBER.GC.CA — 2023-07-31

📢

IBM security advisory (AV23-449)

CYBER.GC.CA — 2023-07-31

📢

[Control systems] ABB security advisory (AV23-451)

CYBER.GC.CA — 2023-07-31

🔥

Canada: University of Guelph Students Notified of Benefits Data Breach Four Months Later

KITCHENER.CTVNEWS.CA — 31 Jul 2023

🔥

'Call of Duty: Modern Warfare 2' Game Servers Taken Offline Due to Malware Concerns

HACKREAD.COM — 31 Jul 2023

🔥

Understanding the New SEC Cybersecurity Rules: A Guide for Executives

SOPHOS.COM — 31 Jul 2023

🔥

Linux Version of Abyss Locker Ransomware Targets VMware ESXi Servers

BLEEPINGCOMPUTER.COM — 31 Jul 2023

🔥

Israel’s Largest Oil Refinery Website Offline After DDoS Attack

BLEEPINGCOMPUTER.COM — 31 Jul 2023

🔥

North Korean Hackers Phishing With US Army Job Lures

DATABREACHTODAY.CO.UK — 2023-07-31

🔥

New Jersey Supreme Court to Hear Merck Insurance Dispute Over NotPetya Attack

CYBERSECURITYDIVE.COM — 31 Jul 2023

🔥

Ztna can be More Than a VPN Replacement for Application Access

HELPNETSECURITY.COM — 31 Jul 2023

🔥

Blocking Access to ChatGPT is a Short Term Solution to Mitigate Risk

HELPNETSECURITY.COM — 31 Jul 2023

🔥

Known MOVEit Attack Victim Count Reaches 545 Organizations

DATABREACHTODAY.CO.UK — 2023-07-31

🔥

Study Downplays Cyber Insurance As Incentive to Pay Ransom

DATABREACHTODAY.CO.UK — 2023-07-31

🔥

SEC demands four-day disclosure limit for cybersecurity breaches

NAKEDSECURITY.SOPHOS.COM — 31 Jul 2023

🕵️

ISC Stormcast For Monday, July 31st, 2023 https://isc.sans.edu/podcastdetail/8594, (Mon, Jul 31st)

ISC.SANS.EDU — 31 Jul 2023

🕵️

Fruity Trojan Uses Deceptive Software Installers to Spread Remcos RAT

THEHACKERNEWS.COM — 31 Jul 2023

🕵️

Automatically Finding Prompt Injection Attacks

SCHNEIER.COM — 2023-07-31

🕵️

Heads Up: Google Inactive Account Deletion Notifications

KNOWBE4.COM — 31 Jul 2023

🕵️

Patchwork Hackers Target Chinese Research Organizations Using EyeShell Backdoor

THEHACKERNEWS.COM — 31 Jul 2023

🕵️

Fruity Trojan Relies on Deceptive Software Installers to Spread Remcos RAT

THEHACKERNEWS.COM — 31 Jul 2023

🕵️

Patchwork Hackers Target Chinese Research Organizations Using EyeShell Backdoor

THEHACKERNEWS.COM — 31 Jul 2023

🕵️

New Android Malware Uses Optical Character Recognition to Steal Login Credentials

GBHACKERS.COM — 31 Jul 2023

🕵️

Amazon Sends Email to Customers on Common Scam Tactics

KNOWBE4.COM — 31 Jul 2023

🕵️

Apple Lists APIs That Developers Can Only Use for Good Reason

SECURITYWEEK.COM — 31 Jul 2023

🕵️

Reddit Taps Fredrick ‘Flee’ Lee for CISO Job

SECURITYWEEK.COM — 31 Jul 2023

🕵️

European Governments Targeted in Russian Espionage Campaign

DATABREACHTODAY.CO.UK — 2023-07-31

🕵️

Ukraine Cracks Down on Illicit Financing Network

DATABREACHTODAY.CO.UK — 2023-07-31

🕵️

New Malware WikiLoader Targeting Italian Organizations

DATABREACHTODAY.CO.UK — 2023-07-31

🌐

Hackers Deploy "SUBMARINE" Backdoor in Barracuda Email Security Gateway Attacks

THEHACKERNEWS.COM — 31 Jul 2023

🌐

Hackers spread malware via Call of Duty

CSHUB.COM — 31 Jul 2023

🌐

Hackers steal Signal, WhatsApp user data with fake Android chat app

BLEEPINGCOMPUTER.COM — 31 Jul 2023

🎙️

AMTD: The Final Layer of Defense

DATABREACHTODAY.CO.UK — 2023-07-31

📡

Microsoft fixes WSUS servers not pushing Windows 11 22H2 updates

BLEEPINGCOMPUTER.COM — 31 Jul 2023

📡

Webinar: Riding the vCISO Wave: How to Provide vCISO Services

THEHACKERNEWS.COM — 31 Jul 2023

📡

Apple Sets New Rules for Developers to Prevent Fingerprinting and Data Misuse

THEHACKERNEWS.COM — 31 Jul 2023

📡

School Accreditation Organization Exposed Sensitive Information on Students, Parents, and Teachers Online

WEBSITEPLANET.COM — 31 Jul 2023

📡

Canon warns of Wi-Fi security risks when discarding inkjet printers

BLEEPINGCOMPUTER.COM — 31 Jul 2023

📡

Google warns again it will start deleting inactive accounts in December

BLEEPINGCOMPUTER.COM — 31 Jul 2023