124Articles
7Categories
2023-08-31Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
31 AugWinRAR Deets, A WIFI Worm, Inside McFlurries, & Jeff's Book Review - PSW #797In the Security News: How not to send all your browser data to Google, apparently Microsoft needs pressure to apply certain fixes, the mutli-hundred-billion-dollar-a-year industry that tries to secure everything above the firmware, security through obscrurity doesn’t work, should…YOUTUBE.COM
31 AugMultiple Splunk Enterprise Flaws Let Attackers Execute Arbitrary CodeSplunk Enterprise has multiple vulnerabilities that can lead to Cross-site Scripting (XSS), Denial of Service (DoS), Remote code execution, Privilege Escalation, and Path Traversal. The severities of these vulnerabilities range between 6.3 (Medium) to 8.8 (High). Splunk has addre…GBHACKERS.COM
31 AugNetgear Releases Patches for Two High-Severity VulnerabilitiesThe network hardware giant Netgear has discovered two vulnerabilities affecting one of its router models and its network management software. One of the flaws, tracked as CVE-2023-41183, allows hackers to exploit Netgear’s Orbi 760 routers.THERECORD.MEDIA
31 AugChromium: CVE-2023-4572 Use after free in MediaStreamThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 28[−]
31 AugSmashing Security podcast #337: The DEA’s crypto calamity, and scammers’ blue tick bonanzaSeized cryptocurrency is stolen from the DEA, blue-ticks are being exploited, a bath full of dollar bills, the comfort offered by an ostrich’s head, and how Graham is refusing to call Twitter “X”. All this and more is discussed in the latest edition of the "Smashing Security" pod…GRAHAMCLULEY.COM
31 AugUnpatched Citrix NetScaler Devices Under Attack, Connected to FIN8A threat actor linked to the FIN8 threat group is exploiting a critical vulnerability in unpatched Citrix NetScaler systems, potentially leading to ransomware attacks. In the series of attacks, the attacker carried out the exploitation by inserting two harmful code payloads in di…CYWARE.COM
31 AugEarth Estries' Espionage Campaign Targets Governments and Tech Titans Across ContinentsA hacking outfit nicknamed Earth Estries has been attributed to a new, ongoing cyber espionage campaign targeting government and technology industries based in the Philippines, Taiwan, Malaysia, South Africa, Germany, and the U.S. "The threat actors behind Earth Estries are worki…THEHACKERNEWS.COM
31 AugAxio and Cyentia Institute join forces to boost data-driven cyber risk quantification for enterprisesAxio announced a new joint initiative with Cyentia Institute, a research and data science firm with a mission to advance knowledge in the cybersecurity industry. Together, Axio and Cyentia will deliver Cyentia’s cyber incident analysis to Axio customers. Cyentia’s research in the…HELPNETSECURITY.COM
31 AugApple offers security researchers specialized iPhones to tinker withApple is inviting security researchers to apply for the Apple Security Research Device Program (SRDP) again, to discover vulnerabilities and earn bug bounties. Apple started the Apple SRDP in 2019. In the intervening years, participating researchers have identified 130 security-c…HELPNETSECURITY.COM
31 AugGangs Forcing Hundreds of Thousands of People Into Cybercrime in South-East Asia, Says UNHundreds of thousands of people have been trafficked and forced to work for online scamming operations in south-east Asia run by criminal gangs, according to a UN report.THEGUARDIAN.COM
31 AugNordic Users Targeted by National Danish Police Phishing AttackThe phishing attack involves sending an email with a cryptic message and a PDF attachment that claims to detail the recipient's involvement in illegal internet activity related to child pornography, in an attempt to coerce them into responding.HEIMDALSECURITY.COM
31 AugBGP Flaw can Be Exploited for Prolonged Internet OutagesA serious flaw affecting several major Border Gateway Protocol (BGP) implementations can be exploited to cause prolonged internet outages, but some vendors are not patching it, a researcher warned on Tuesday.SECURITYWEEK.COM
31 AugHacking Campaign Brute-Forces Cisco VPNs to Breach NetworksHackers are targeting Cisco Adaptive Security Appliance (ASA) SSL VPNs in credential stuffing and brute-force attacks that take advantage of lapses in security defenses, such as not enforcing multi-factor authentication (MFA).BLEEPINGCOMPUTER.COM
31 AugHackers can Exploit Windows Container Isolation Framework to Bypass Endpoint SecurityNew findings show that malicious actors could leverage a sneaky malware detection evasion technique and bypass endpoint security solutions by manipulating the Windows Container Isolation Framework.THEHACKERNEWS.COM
31 AugCisco VPNs with no MFA enabled hit by ransomware groupsSince March 2023 (and possibly even earlier), affiliates of the Akira and LockBit ransomware operators have been breaching organizations via Cisco ASA SSL VPN appliances. “In some cases, adversaries have conducted credential stuffing attacks that leveraged weak or default p…HELPNETSECURITY.COM
31 AugCisco BroadWorks Application Software Flaw Let Attackers conduct XSS AttackCisco released a fix for the medium impact vulnerability found on CommPilot Application Software, allowing cross-site scripting against the user interface. The Cisco BroadWorks CommPilot Application allows authenticated users to upload configuration files on the platform. The lac…GBHACKERS.COM
31 AugIBM partners with Salesforce to drive productivity and growth with generative AIIBM and Salesforce announced a collaboration to help businesses worldwide across industries accelerate their adoption of AI for CRM. Together, the two companies support clients to revolutionize customer, partner and employee experiences, while helping safeguard their data. IBM Co…HELPNETSECURITY.COM
31 AugBitbucket integrates Arnica’s application security toolsBehavior-based application security platform Arnica has announced the integration of its application security capabilities into Bitbucket, the Atlassian-owned source-code management solution used by millions of developers. The integration makes Arnica the first pipelineless secur…CSOONLINE.COM
31 AugNorth Korean Hackers Deploy New Malicious Python Packages in PyPI RepositoryThree additional malicious Python packages have been discovered in the Package Index (PyPI) repository as part of an ongoing malicious software supply chain campaign called VMConnect, with signs pointing to the involvement of North Korean state-sponsored threat actors. The findin…THEHACKERNEWS.COM
31 AugSapphireStealer Malware: A Gateway to Espionage and Ransomware OperationsAn open-source .NET-based information stealer malware dubbed SapphireStealer is being used by multiple entities to enhance its capabilities and spawn their own bespoke variants. “Information-stealing malware like SapphireStealer can be used to obtain sensitive information, includ…THEHACKERNEWS.COM
31 AugMalwarebytes lays off 100 employees ahead of business splitCybersecurity giant Malwarebytes this week laid off 100 employees as it prepares for a major restructuring that will see the business split into two, TechCrunch has learned. The layoffs come almost exactly a year after Malwarebytes eliminated 14% of its global workforce. A former…TECHCRUNCH.COM
31 AugGRU hackers attack Ukrainian military with new Android malwareHackers working for the Main Directorate of the General Staff of the Armed Forces of the Russian Federation, more commonly known as the GRU, have been targeting Android devices in Ukraine with a new malicious framework named 'Infamous Chisel. [...]BLEEPINGCOMPUTER.COM
31 AugVulnerability in WordPress Migration Plugin Exposes Websites to AttacksA vulnerability in the All-in-One WP Migration plugin’s extensions exposes WordPress websites to attacks leading to sensitive information disclosure. The post Vulnerability in WordPress Migration Plugin Exposes Websites to Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
31 AugCryptohack Roundup: Cypher Comp PlanAlso: A WinRAR Exploit, Balancer Exploits and the DEA Scammed This week, Cypher rolled out a futuristic compensation plan for victims, hackers exploited crypto users via a WinRAR bug and separately stole $900,000 from Balancer, the DEA lost $500K to a crypto scammer and the EU Da…DATABREACHTODAY.CO.UK
31 AugCISA Releases Four Industrial Control Systems AdvisoriesCISA released four Industrial Control Systems (ICS) advisories on August 31, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-243-01 ARDEREG Sistemas SCADA ICSA-23-243-02 GE Digital CIMPLICITY …CISA.GOV
31 AugCISA Warns of Hurricane-Related ScamsCISA urges users to remain on alert for malicious cyber activity following natural disasters, such as hurricanes, as attackers target disaster victims and concerned citizens by leveraging social engineering tactics, techniques, and procedures (TTPs). Social engineering TTPs inclu…CISA.GOV
31 AugBadBazaar Espionage Tool Targets Android UsersESET discovered two active campaigns distributing trojanized Signal and Telegram apps that aim to exfiltrate user data and spy on victims’ communications. They have been spreading the BadBazaar Android spyware. Mitigation includes cautious app selection, avoiding suspicious sourc…CYWARE.COM
31 AugSecuring the future: Safeguarding cyber-physical systemsHurdles on the path to security Although powerful, cyber-physical systems can be double-edged swords as they come with unique challenges. Since cybersecurity for CPS needs to cover software and data as well as physical assets, a comprehensive strategy is imperative. This includes…CSOONLINE.COM
31 AugLabor Day Alert: Mobile Phishing Attacks on the Rise for Remote EmployeesA recent survey by Lookout, Inc. warns for a specific attack vector as Labor Day approaches. The study shows that 85% of enterprise employees capable of remote work plan to do so on Friday, September 1, primarily using mobile devices.KNOWBE4.COM
31 AugHackers Launch MiTM Attack to Bypass VMware Tools SAML Token Signature VerificationVMware has been reported with a SAML token signature bypass vulnerability, which a threat actor can exploit to perform VMware Guest operations. CVE ID has been assigned for this vulnerability, and the severity was mentioned as 7.5 (High). VMware tools are a set of modules and ser…GBHACKERS.COM
31 AugSourcegraph website breached using leaked admin access tokenAI-powered coding platform Sourcegraph revealed that its website was breached this week using a site-admin access token accidentally leaked online on July 14th. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 12[−]
31 AugMultiple Flaws in ArubaOS Switches Let Attackers Execute Remote CodeMultiple vulnerabilities have been identified in ArubaOS-Switch Switches, specifically pertaining to Stored Cross-site Scripting (Stored XSS), Denial of Service (DoS), and Memory corruption. Aruba has taken measures to mitigate these vulnerabilities and has subsequently published…GBHACKERS.COM
31 AugSEC Cyber Incident Reporting Regulations Prompt 10 Questions for CISOsBoard members must have a strong grasp of the cybersecurity landscape and ask their CISOs critical questions about cyber risk and management to comply with SEC regulations.TECHTARGET.COM
31 AugCompliance and Risk Management Startup Hyperproof Raises $40MHyperproof, a software-as-a-service risk and compliance management company, today announced that it raised $40 million in a funding round led by Riverwood Capital, with participation from Toba Capital, an early-stage VC firm.TECHCRUNCH.COM
31 AugCISA and International Partners Release Malware Analysis Report on Infamous Chisel Mobile MalwareToday, the United Kingdom’s National Cyber Security Centre (NCSC-UK), the United States’ Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI), New Zealand’s National Cyber Security Centre (NCSC-NZ), Can…CISA.GOV
31 AugSimplify Your Audit Process without Compromising Identity Data Security - Erik Huckle - ESW #330Having direct visibility into your access data is crucial for two reasons: 1. Simplifying audit preparation and 2. Managing progress of your identity program to ensure peak performance. Internal auditors and compliance managers need easy access to granular data points to understa…YOUTUBE.COM
🔥 INCIDENT REPORTING 28[−]
31 AugIncident Response: Clouds, SMBs, and more! - Amanda Berlin - PSW #797Amanda joins us to discuss aspects of incident response, including how to get the right data to support findings related to an incident, SMB challenges, cloud event logging, and more! Amanda works for Blumira and is the co-author of "Defensive Security Handbook: Best Practices fo…YOUTUBE.COM
31 AugPlayCyberGames - 3,681,753 breached accountsIn August 2023, PlayCyberGames which "allows users to play any games with LAN function or games using IP address" suffered a data breach which exposed 3.7M customer records. The data included email addresses, usernames and MD5 password hashes with a constant value in th…HAVEIBEENPWNED.COM
31 AugThe power of passive OS fingerprinting for accurate IoT device identificationThe number of IoT devices in enterprise networks and across the internet is projected to reach 29 billion by the year 2030. This exponential growth has inadvertently increased the attack surface. Each interconnected device can potentially create new avenues for cyberattacks and s…HELPNETSECURITY.COM
31 AugPampling - 383,468 breached accountsIn January 2020, the online clothing retailer Pampling suffered a data breach that exposed 383k unique customer email addresses. The data was later shared on a popular hacking forum and also included usernames and unsalted MD5 password hashes. Pampling did not respond to multiple…HAVEIBEENPWNED.COM
31 AugDismantling Qakbot Botnet – FBI’s Largest Cyber Operation EverQakbot (aka QBot, Pinkslipbot) is a sophisticated banking Trojan malware that can spread through various methods. Once installed on a system, Qakbot can collect:- The FBI, along with the Justice Department, led a multinational operation to dismantle the complete infrastructure of…GBHACKERS.COM
31 AugPhished Data via CERT Poland - 67,943 breached accountsIn August 2023, CERT Poland observed a phishing campaign that collected credentials from 68k victims . The campaign collected email addresses and passwords via a phishing email masquerading as a purchase order confirmation. CERT Poland identified a further 202 other phishing camp…HAVEIBEENPWNED.COM
31 AugCrooks Using Stealers and Stolen Cookies to Hack Airbnb AccountsResearchers at SlashNext warned that cybercriminals are using a variety of methods, including stealers and stolen cookies, to gain unauthorized access to Airbnb accounts and carry out fraudulent activities.HACKREAD.COM
31 Aug500k Impacted by Data Breach at Fashion Retailer Forever 21Fashion retailer Forever 21 says that the personal information of more than 500,000 individuals was compromised in a data breach. The post 500k Impacted by Data Breach at Fashion Retailer Forever 21 appeared first on SecurityWeek .SECURITYWEEK.COM
31 AugParamount Media Hacked: Attackers Obtain Access to User Personal InformationIn a shocking turn of events, Paramount Media recently fell victim to a significant data breach, leading to the unauthorized access of user personal information.  Paramount Media Networks(founded as MTV Networks in 1984 and known under this name until 2011) is an American ma…GBHACKERS.COM
31 AugWordPress Migration Add-on Flaw Could Lead to Data BreachesAll-in-One WP Migration, a popular data migration plugin for WordPress sites with 5 million active installations, suffers from unauthenticated access token manipulation that could allow attackers to access sensitive site information.BLEEPINGCOMPUTER.COM
31 AugMontreal Electricity Organization is the Latest Victim in LockBit Ransomware SpreeOn Wednesday, the gang took credit for an attack on the Commission des services electriques de Montréal (CSEM) — a 100-year-old municipal organization that manages electrical infrastructure in the city of Montreal.THERECORD.MEDIA
31 AugLawsuit Accuses University of Minnesota of Not Doing Enough to Prevent Data BreachA lawsuit filed on behalf of a former student and former employee at the University of Minnesota accuses the university of not doing enough to protect personal information from a recent data breach. The post Lawsuit Accuses University of Minnesota of Not Doing Enough to Prevent D…SECURITYWEEK.COM
31 AugWhy Criminals Keep Reusing Leaked Ransomware BuildersRansomware attacks are increasingly using stolen or reused strains of malware, making it difficult to attribute attacks to specific groups. Attackers are creating Frankenstein ransomware by combining different pieces of malware.BANKINFOSECURITY.COM
31 AugParamount Discloses Data Breach Following Security IncidentParamount said in breach notification letters signed by Nickelodeon Animation Studio EVP Brian Keane sent to affected individuals that the attackers had access to its systems between May and June 2023.BLEEPINGCOMPUTER.COM
31 AugNumbers Don't Lie: Exposing the Harsh Truths of Cyberattacks in New ReportHow often do cyberattacks happen? How frequently do threat actors target businesses and governments around the world? The BlackBerry® Threat Research and Intelligence Team recently analyzed 90 days of real-world data to answer these questions. Full results are in the latest Black…THEHACKERNEWS.COM
31 AugForever 21 Breach Notification Leaves Unanswered Questions539,207 Employees Warned This Week About 8-Week Breach Discovered in March Cybersecurity doublespeak is never a good sign, especially when it comes in a letter this week addressed to half a million current and former employees of fast-fashion retailer Forever 21, warning them tha…DATABREACHTODAY.CO.UK
31 AugForever 21 Data Breach Leaks Personal Information of Over 539,000 IndividualsForever 21 experienced a data breach that compromised the personal information, including names and Social Security numbers, of over 539,000 individuals. The breach occurred between January 5, 2023, and March 21, 2023.JDSUPRA.COM
31 AugCustomers of Cryptocurrency FTX are Target of  Phishing EmailsCustomers of the bankrupt cryptocurrency exchange FTX are already receiving phishing emails following a breach of personal data held by several crypto companies, CoinDesk reports.KNOWBE4.COM
31 AugAnother data breach at Forever 21 leaks details of 500,000 current and former employeesFashion chain Forever 21 has suffered what it has described as a "data security incident" that saw a hacker gain access to its systems for months, and exposed the personal details of 539,207 current and former employees. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
31 AugFree Key Group ransomware decryptor helps victims recover dataResearchers took advantage of a weakness in the encryption scheme of Key Group ransomware and developed a decryption tool that lets some victims to recover their files for free. [...]BLEEPINGCOMPUTER.COM
31 AugLogicMonitor customers hit by hackers, because of default passwordsSome customers of the network security company LogicMonitor have been hacked due to the use of default passwords, TechCrunch has learned. A LogicMonitor spokesperson confirmed to TechCrunch that there’s “a security incident” affecting some of the company’s customers. “We are curr…TECHCRUNCH.COM
31 AugUnmasking Trickbot, One of the World’s Top Cybercrime GangsMaksim Sergeevich Galochkin, a member of the Russian cybercrime syndicate Trickbot, has been identified by cybercrime researchers. The identification of Galochkin comes after a comprehensive investigation into leaked data from the Trickbot group.WIRED.COM
31 AugForever 21 data breach affects half a million peopleClothing giant Forever 21 said a data breach earlier in the year affects more than half a million individuals. A data breach notice filed with Maine’s attorney general said the fashion giant was hacked over a three-month period beginning early January 2023, during which int…TECHCRUNCH.COM
31 AugLogicMonitor customers hacked in reported ransomware attacksNetwork monitoring company LogicMonitor confirmed today that certain customers of its SaaS platform have fallen victim to cyberattacks linked to ransomware. [...]BLEEPINGCOMPUTER.COM
31 AugBreach Roundup: Chinese Hackers Breach Japanese Cyber AgencyAlso: Data Scraping Warning Sent to Social Media Platforms This week, Japan's cybersecurity agency reportedly was breached, social media companies were urged to ward off data scraping, the NSA said it respects foreign intelligence targets, Polish authorities arrested two for hack…DATABREACHTODAY.CO.UK
31 AugInsulin App Maker Faces Privacy Lawsuit for Web Tracker UseProposed Class Action Filed in Breach Affecting Users of Medtronic MiniMed InPen Medical device maker Medtronic MiniMed violated patient privacy by using tracking and authentication technologies such as Google Analytics and Firebase in its InPen diabetes management app and servic…DATABREACHTODAY.CO.UK
31 AugForever 21 data breach: hackers accessed info of 500,000Forever 21 clothing and accessories retailer is sending data breach notifications to more than half a million individuals who had their personal information exposed to network intruders. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 37[−]
31 AugThe secret habits of top-performing CISOs69% of top-performing CISOs dedicate recurring time on their calendars for personal professional development, according to Gartner. This is compared with just 36% of bottom-performing CISOs who do so. “As the CISO role continues to rapidly evolve, it becomes even more critical fo…HELPNETSECURITY.COM
31 AugISC Stormcast For Thursday, August 31st, 2023 https://isc.sans.edu/podcastdetail/8640, (Thu, Aug 31st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
31 AugChatGPT on the chopping block as organizations reevaluate AI usageChatGPT has attracted hundreds of millions of users and was initially praised for its transformative potential. However, concerns for safety controls and unpredictability have landed it on IT leaders’ list of apps to ban in the workplace. In this Help Net Security video, Arvind R…HELPNETSECURITY.COM
31 Aug KEVWhat does optimal software security analysis look like?In this Help Net Security interview, Kevin Valk, co-CEO at Codean, discusses the consequences of relying solely on automated tools for software security. He explains how these tools can complement human knowledge to enhance software security analysis and emphasizes the need for t…HELPNETSECURITY.COM
31 AugMMRat Android Malware Targets Banking Users in Southeast AsiaA new Android banking trojan called MMRat has been found targeting mobile users in Southeast Asia since June, allowing threat actors to carry out bank fraud on victim's devices. The malware collects personal data, including contact lists and installed apps. To protect against thi…CYWARE.COM
31 Aug68k Phishing Victims are Now Searchable in Have I Been Pwned, Courtesy of CERT PolandPresently sponsored by: Fastmail. Check out Masked Email, built with 1Password. One click gets you a unique email address for every online signup. Try it now! Last week I was contacted by CERT Poland. They'd observed a phishing campaign that had collected 68k credentials fro…TROYHUNT.COM
31 Aug(crosspost) Episode 135 "AI and Security: The Good, the Bad, and the Magical" of Cloud Security Podcastsubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.exchange/@anton_chuvakin/110927973912779887 Episode 135 “AI and Security: The Good, the Bad, and the Magical” of Cloud Security Podcast where hosts @anton_chuvakin and @_TimPeacock interview Phil Venables th…INFOSEC.EXCHANGE
31 AugDangling DNS Used to Hijack Subdomains of Major OrganizationsDangling DNS records were abused by researchers to hijack subdomains belonging to major organizations, warning that thousands of entities are impacted. The post Dangling DNS Used to Hijack Subdomains of Major Organizations appeared first on SecurityWeek .SECURITYWEEK.COM
31 AugTrojanized Signal, Telegram apps found on Google Play, Samsung Galaxy StoreESET researchers have identified two active campaigns targeting Android users, where the threat actors behind the tools for Telegram and Signal are attributed to the China-aligned APT group GREF. Most likely active since July 2020 and since July 2022, respectively for each malici…HELPNETSECURITY.COM
31 AugOwn Your Own Government Surveillance VanA used government surveillance van is for sale in Chicago: So how was this van turned into a mobile spying center? Well, let’s start with how it has more LCD monitors than a Counterstrike LAN party. They can be used to monitor any of six different video inputs including a v…SCHNEIER.COM
31 AugContain Yourself: Staying Undetected Using the Windows Container Isolation Frameworksubmitted by L4s to secops 1 points | 0 comments https://www.deepinstinct.com/blog/contain-yourself-staying-undetected-using-the-windows-container-isolation-framework Contain Yourself: Staying Undetected Using the Windows Container Isolation Framework::This blog is based on a ses…DEEPINSTINCT.COM
31 AugAPT Attacks From 'Earth Estries' Hit Governments, Tech Firms Across the GlobeEarth Estries uses advanced techniques such as DLL sideloading and has developed three custom malware tools: Zingdoor, TrillClient, and HemiGate. It has been active since at least 2020 and has similarities with another group called FamousSparrow.DARKREADING.COM
31 AugFive Eyes Report: New Russian Malware Targeting Ukrainian Military Android DevicesFive Eyes report details 'Infamous Chisel' malware used by Russian state-sponsored hackers to target the Ukrainian military’s Android devices. The post Five Eyes Report: New Russian Malware Targeting Ukrainian Military Android Devices appeared first on SecurityWeek .SECURITYWEEK.COM
31 AugSplunk Patches High-Severity Flaws in Enterprise, IT Service IntelligenceSplunk has released patches for multiple high-severity vulnerabilities impacting Splunk Enterprise and IT Service Intelligence. The post Splunk Patches High-Severity Flaws in Enterprise, IT Service Intelligence appeared first on SecurityWeek .SECURITYWEEK.COM
31 AugAlert fatigue: A 911 cyber call center that never sleepsImagine running a 911 call center where the switchboard is constantly lit up with incoming calls. The initial question, “What’s your emergency, please?” aims to funnel the event to the right responder for triage and assessment. Over the course of your shift, req…SECURITYINTELLIGENCE.COM
31 AugApple Preparing iPhone 14 Pro Phones for 2024 Security Research Device ProgramApple is inviting security researchers to apply for the 2024 iPhone Security Research Device Program (SRDP) to receive hackable iPhones. The post Apple Preparing iPhone 14 Pro Phones for 2024 Security Research Device Program appeared first on SecurityWeek .SECURITYWEEK.COM
31 AugPagerDuty strengthens analytics capabilities and expands generative AI offeringsPagerDuty introduced AI-generated runbooks in early access, as well as new analytics capabilities for the PagerDuty Operations Cloud. Using PagerDuty Runbook Automation from the Operations Cloud, customers replace manual procedures with automated self-service workflows, potential…HELPNETSECURITY.COM
31 AugEnergy Department Offering $9M in Cybersecurity Competition for Small Electric UtilitiesSmall electric utilities in the US offered $9 million as part of a competition whose goal is to help them boost their cybersecurity posture. The post Energy Department Offering $9M in Cybersecurity Competition for Small Electric Utilities appeared first on SecurityWeek .SECURITYWEEK.COM
31 AugUnpinnable Actions: How Malicious Code Can Sneak into Your GitHub Actions Workflowssubmitted by L4s to secops 1 points | 0 comments https://www.paloaltonetworks.com/blog/prisma-cloud/unpinnable-actions-github-security/ Unpinnable Actions: How Malicious Code Can Sneak into Your GitHub Actions Workflows::Action pinning doesn’t always offer security. Understand ri…PALOALTONETWORKS.COM
31 Aug[Live Demo] Ridiculously Easy Security Awareness Training and PhishingOld-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.KNOWBE4.COM
31 AugVMConnect Supply Chain Attack Continues, Evidence Points to North KoreaThe recently discovered malicious Python packages, such as tablediter, request-plus, and requestspro, are believed to be a continuation of the VMConnect campaign attributed to North Korean threat actors.REVERSINGLABS.COM
31 AugMalwarebytes Does Layoffs, to Split Consumer, Corporate ArmsEndpoint Security Firm Lays Off At Least 100 Employees, CIO, CPO, CTO All Departing Malwarebytes laid off at least 100 workers this week and plans to split its consumer and corporate-facing business units into separate companies. The antivirus firm cut between 100 and 110 staff a…DATABREACHTODAY.CO.UK
31 AugFive Eyes Fingers Moscow in Ukrainian Android HackingWestern Intelligence Alliance Publishes Details of 'Infamous Chisel' Campaign Western intelligence agencies lent authority Thursday to a Ukrainian exposé unmasking a campaign by Russian military state hackers targeting battlefield Android devices. Agencies from the Five Eyes inte…DATABREACHTODAY.CO.UK
31 AugEarth Estries Group Targets Government and IT OrganizationsA new cyberespionage campaign called Earth Estries has been discovered, targeting governments and organizations in the technology sector. Active since at least 2020, the campaign shows similarities with another APT group called FamousSparrow. It is essential for organizations to …CYWARE.COM
31 AugNews alert: Hornetsecurity launches new podcast series all about grasping, overcoming cybersecurity risksHannover, Germany, Aug. 31, 2023 – Hornetsecurity has recently launched The Security Swarm podcast series to shed light on the latest cybersecurity issues. The weekly show, hosted by Hornetsecurity’s Andy Syrewicze , brings together experts from across the cybersecurity sec…LASTWATCHDOG.COM
31 AugNorth Korean hackers behind malicious VMConnect PyPI campaignNorth Korean state-sponsored hackers are behind the VMConnect campaign that uploaded to the PyPI (Python Package Index) repository malicious packages, one of them mimicking the VMware vSphere connector module vConnector. [...]BLEEPINGCOMPUTER.COM
31 AugNews alert: Voxel AI increases funding to $30M, aims to transform industrial workplace safetySan Francisco, Calif., Aug. 30, 2023 — Every year over 340m workers suffer a workplace injury: slips and falls, strains and sprains, vehicle collisions and crashes. Voxel, an AI startup using computer vision to transform safety and operations in the … (more…)LASTWATCHDOG.COM
31 AugProof of Concept: Securing Digital Government ServicesThe Panelists Also Discuss Improving the User Experience and Verifying Identities In the latest "Proof of Concept," two CyberEd board members, Connecticut state CISO Jeff Brown and Maricopa County CISO Lester Godsey, join ISMG editors to discuss securing digital government servic…DATABREACHTODAY.CO.UK
31 AugMalwarebytes' Layoffs Seek to Split Consumer, Corporate ArmsEndpoint Security Firm Lays Off at Least 100 Employees; CIO, CPO, CTO All Departing Malwarebytes laid off at least 100 workers this week and plans to split its consumer and corporate-facing business units into separate companies. The antivirus firm cut also recently axed its chie…DATABREACHTODAY.CO.UK
31 AugMalwarebytes Cuts Staff, Will Split Consumer, Corporate ArmsEndpoint Security Firm Lays Off at Least 100 Employees; CIO, CPO, CTO All Departing Malwarebytes laid off at least 100 workers this week and plans to split its consumer and corporate-facing business units into separate companies. The antivirus firm cut also recently axed its chie…DATABREACHTODAY.CO.UK
31 AugUK Lawmakers Call For Swift Adoption of AI PolicyUK Risks Falling Behind EU and US in AI Governance, Parliamentary Committee Warns British lawmakers are calling on the government to speed up efforts to articulate a comprehensive artificial intelligence policy in the face of challenges ranging from bias to existential risk. Dela…DATABREACHTODAY.CO.UK
31 AugChinese APT Uses Fake Messenger Apps to Spy on Android UsersTrojanized Apps Impersonate Signal and Telegram Hackers aligned with Chinese interests are targeting Android users with fake chat apps Trojanized with espionage capabilities in separate and ongoing campaigns, one active since July 2020 and the other for more than 12 months. Eset …DATABREACHTODAY.CO.UK
31 AugSentinelOne CEO on Wiz M&A: 'Pure Speculation on Their Part'Tomer Weingarten Nixes Wiz Reselling Agreement After Not Seeing 'Any Contribution' SentinelOne CEO Tomer Weingarten hit back at endpoint security rivals CrowdStrike and Microsoft as well as rumored M&A suitor Wiz for publicly fanning acquisition flames. The endpoint security …DATABREACHTODAY.CO.UK
31 AugLazarus hackers deploy fake VMware PyPI packages in VMConnect attacksNorth Korean state-sponsored hackers have uploaded malicious packages to the PyPI (Python Package Index) repository, camouflaging one of them as a VMware vSphere connector module named vConnector. [...]BLEEPINGCOMPUTER.COM
31 AugNavigating privacy in a data-driven world with Microsoft PrivaAs the world becomes more data-driven and the privacy landscape continues to evolve, the need to take a proactive privacy approach increases. Here's how Microsoft Priva can help. The post Navigating privacy in a data-driven world with Microsoft Priva appeared first on Microsoft S…MICROSOFT.COM
31 AugFake Signal and Telegram apps – Week in security with Tony AnscombeESET research uncovers active campaigns targeting Android users and spreading espionage code through the Google Play store, Samsung Galaxy Store and dedicated websitesWELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
📡 INFOSEC NEWS 11[−]
31 AugSailPoint to Buy Privileged Access Vendor Osirium for $8.3MSailPoint has agreed to purchase U.K.-based privileged access management vendor Osirium for $8.3 million to better protect privileged and non-privileged identities on a single platform.BANKINFOSECURITY.COM
31 AugHow to safeguard your kids and their gadgets in the new school year | Kaspersky official blogHow to keep kids and gadgets cybersafe at school.KASPERSKY.COM
31 AugHigh-Severity Memory Corruption Vulnerabilities Patched in Firefox, ChromeMozilla released Firefox 117 with patches for 13 vulnerabilities, including seven rated ‘high severity’, four of which are described as memory corruption bugs affecting the browser’s components.SECURITYWEEK.COM
31 AugThe Secret Habits of Top-Performing CISOs69% of top-performing CISOs dedicate recurring time on their calendars for personal professional development, according to Gartner. This is compared with just 36% of bottom-performing CISOs who do so.HELPNETSECURITY.COM
31 AugThe low, low cost of (committing) cybercrime, (Thu, Aug 31st)Those of us who teach security awareness courses are often asked “Why would someone target ME?” or “Why would someone target OUR organization?”. Though these sentiments aren't nearly as co…ISC.SANS.EDU
31 AugThe Power of Passive OS Fingerprinting for Accurate IoT Device IdentificationTo effectively safeguard against the risks of IoT sprawl, continuous monitoring, and absolute control are crucial. However, that requires accurate identification of all IoT devices and operating systems (OSes) within the enterprise network.HELPNETSECURITY.COM
31 AugNational Safety Council Data Leak Impacts Credentials of NASA, Tesla, DoJ, Verizon, and 2000 Other FirmsThe National Safety Council has leaked nearly 10,000 emails and passwords of their members, exposing 2000 companies, including governmental organizations and big corporations.SECURITYAFFAIRS.COM
31 AugClassiscam fraud-as-a-service expands, now targets banks and 251 brandsThe "Classiscam" scam-as-a-service operation has broadened its reach worldwide, targeting many more brands, countries, and industries, causing more significant financial damage than before. [...]BLEEPINGCOMPUTER.COM
31 AugIT & OT security: How to Bridge the GapConnecting IT and OT environments can give industrial organizations powerful efficiencies, but it also introduces cybersecurity challenges. A new Trend Micro/SANS Institute report gets at the heart of those IT and OT security issues—and how to address them.TRENDMICRO.COM
31 AugWhat you need to know about iCloud Private RelayIf you want to try to enter the world of VPNs with a small dip, then iCloud Private Relay is your friend — but is it a true VPN service? The devil is in the details.WELIVESECURITY.COM