🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
27 AugLazarus Exploits ManageEngine to Deploy QuiteRATThe Lazarus group was associated with a new campaign against healthcare entities in Europe and the U.S. In this campaign, the attackers exploited a ManageEngine ServiceDesk vulnerability (CVE-2022-47966) to distribute the QuiteRAT malware. The malware has many capabilities simila…CYWARE.COM
⚠️ VULNERABILITY DISCLOSURE 5[−]
27 AugWeek in review: Security Onion 2.4 released, WinRAR vulnerable to RCEHere’s an overview of some of last week’s most interesting news, articles, interviews and videos: Network detection and response in the modern era In this Help Net Security interview, David Gugelmann, CEO at Exeon, sheds light on the current cyber threats and their challenges for…HELPNETSECURITY.COM
27 AugWeekly Update 362Presently sponsored by: Unpatched devices keeping you up at night? Kolide can get your entire fleet updated in days. It's Device Trust for Okta. Watch the demo! Somehow in this week's video, I forgot to talk about the single blog post I wrote this week! So here's the el…TROYHUNT.COM
27 AugFree AppSec Program: Bring AppSec to your software in just 1 hour per sprintsubmitted by bOt to cybersecurity 1 points | 0 comments This is an automated archive. The original was posted on /r/cybersecurity by /u/ladynerd_nz on 2023-08-27 21:42:36+00:00. Hey everyone - I’m running a free appsec program - One Hour App Sec , for all teams worldwide and woul…ZEROBYTES.MONSTER
27 AugHow effective/important do you think Cyber Deception is today? - Let's find out through CTF!submitted by bOt to cybersecurity 1 points | 0 comments This is an automated archive. The original was posted on /r/cybersecurity by /u/octacoy on 2023-08-27 20:29:16+00:00. “ Cyber Deception solutions can detect threat actors early and provide a new layer of defense ”, or so the…ZEROBYTES.MONSTER
27 AugConcern regarding socsubmitted by bOt to cybersecurity 1 points | 0 comments This is an automated archive. The original was posted on /r/cybersecurity by /u/Durex_Buster on 2023-08-27 17:59:29+00:00. I’m employed at a MSP SOC that solely relies on an ELK-based SIEM tool and logs with no access to any…ZEROBYTES.MONSTER
🔥 INCIDENT REPORTING 1[−]
27 AugRhysida claims ransomware attack on Prospect Medical, threatens to sell dataThe Rhysida ransomware gang has claimed responsibility for the massive cyberattack on Prospect Medical Holdings, claiming to have stolen 500,000 social security numbers, corporate documents, and patient records. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 7[−]
27 AugSmokeLoader Trojan Deploys Location-Tracking Malware'Whiffy Recon' Uses WiFi Access Points, Google API for Geolocation A backdoor Trojan known as SmokeLoader is deploying a customized WiFi scanning executable to triangulate the location of infected Windows devices. The malware, dubbed "Whiffy Recon," uses nearby WiFi access points…DATABREACHTODAY.CO.UK
27 AugJames Whittaker: The 7 Stages of Creativity: Developing Your Creative Self - Microsoft TechDays 2017 - 1 hour 52 minutessubmitted by ashar to security_cpe 1 points | 0 comments https://youtu.be/K3yggvH8d8w?si=MXVPoxgp9CM2IP08 Video of the talk This talk is James Whittaker ’s Life advice. It might be a little dated, given recent advances in LLMs, but then it might just be what you need to hear. Cre…YOUTU.BE
27 AugStarting a CyberSecurity podcastsubmitted by bOt to cybersecurity 1 points | 0 comments This is an automated archive. The original was posted on /r/cybersecurity by /u/EffortOk98 on 2023-08-27 16:57:47+00:00. I have always wanted to share my knowledge and experience on my path of being a soc analyst. And some c…ZEROBYTES.MONSTER
27 AugThoughts on my enumeration script?submitted by bOt to cybersecurity 1 points | 0 comments https://www.github.com/grahmik/enumBASE This is an automated archive. The original was posted on /r/cybersecurity by /u/TheClassics on 2023-08-27 15:16:25+00:00. Hey all! Long time lurker, first time poster. I’m in my late 3…GITHUB.COM
27 AugOffice 365 Enterpris Mobility and Security E5submitted by bOt to cybersecurity 1 points | 0 comments This is an automated archive. The original was posted on /r/cybersecurity by /u/Puddile on 2023-08-27 14:58:03+00:00. Hi everyone, Thank you for clicking and reading if you. Was curious if anyone could share their experience…ZEROBYTES.MONSTER
27 AugDeepfakes Are Being Used to Circumvent Facial Recognition Systems.submitted by 111 to cybersecurity 32 points | 2 comments https://www.hackread.com/deepfakes-circumvent-facial-recognition-systems/HACKREAD.COM
27 AugNtRemoteLoad - FUD Remote Shellcode Injectorsubmitted by bOt to netsec 1 points | 0 comments https://github.com/florylsk/NtRemoteLoad This is an automated archive. The original was posted on /r/netsec by /u/florilsk on 2023-08-27 17:18:58+00:00.GITHUB.COM
📡 INFOSEC NEWS 1[−]
27 AugMicrosoft wants you to learn more about new features in Windows 11Microsoft is experimenting with different approaches to introduce new users to Windows 11's features as soon as they complete the initial setup, also known as the "Out of Box Experience" (OOBE). [...]BLEEPINGCOMPUTER.COM