🚨 CISA KEV 2[−]
6 Sep KEVCISA Adds One Known Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-33246 Apache RocketMQ Command Execution Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and…CISA.GOV
6 Sep KEVMultiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475SUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Cyber National Mission Force (CNMF) identified the presence of indicators of compromise (IOCs) at an Aeronautical Sector organization as early as January 2023. Analysts…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 8[−]
6 Sep9 Alarming Vulnerabilities Uncovered in SEL's Power Management ProductsNine security flaws have been disclosed in electric power management products made by Schweitzer Engineering Laboratories (SEL). “The most severe of those nine vulnerabilities would allow a threat actor to facilitate remote code execution (RCE) on an engineering workstation,” Noz…THEHACKERNEWS.COM
6 SepASUS Routers are Affected by Three Critical Remote Code Execution FlawsASUS routers RT-AX55, RT-AX56U_V2, and RT-AC86U are affected by three critical remote code execution vulnerabilities (CVE-2023-39238, CVE-2023-39239, and CVE-2023-39240) that can potentially allow threat actors to take over the devices.SECURITYAFFAIRS.COM
6 SepNew Agent Tesla Variant Being Spread by Specially Crafted Excel DocumentA new variant of the Agent Tesla malware is spreading through a phishing campaign, exploiting the CVE-2017-11882/CVE-2018-0802 vulnerability to gain access to victims' devices and steal sensitive information.FORTINET.COM
6 SepResearchers Discover Critical Vulnerability in PHPFusion CMSThe authenticated local file inclusion flaw, identified as CVE-2023-2453, allows for remote code execution if an attacker can upload a maliciously crafted ".php" file to a known path on a target system.DARKREADING.COM
6 SepOld vulnerabilities are still a big problemA recently flagged phishing campaign aimed at delivering the Agent Tesla RAT to unsuspecting users takes advantage of old vulnerabilities in Microsoft Office that allow remote code execution. “Despite fixes for CVE-2017-11882/CVE-2018-0802 being released by Microsoft in Nov…HELPNETSECURITY.COM
6 Sep KEVZero-Day Alert: Latest Android Patch Update Includes Fix for Newly Actively Exploited FlawGoogle has rolled out monthly security patches for Android to address a number of flaws, including a zero-day bug that it said may have been exploited in the wild. Tracked as CVE-2023-35674, the high-severity vulnerability is described as a case of privilege escalation impacting …THEHACKERNEWS.COM
6 Sep KEVCISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant WebshellsThe Cybersecurity and Infrastructure Security Agency (CISA) has released an update to a previously published Cybersecurity Advisory (CSA), Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells . The CSA—originally released to warn network defenders of critical infras…CISA.GOV
6 SepMAR-10430311-1.v1 Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475Notification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained herein. The DHS does not endorse any commercial product or service referenced in…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 32[−]
6 SepEvil MinIO Exploits: A New Attack Vector to Breach Corporate NetworksAn unidentified threat actor weaponized critical security holes in the MinIO high-performance object storage system, gaining unauthorized code execution on targeted servers. Upon launching the application, attackers exploit the flaws to add a backdoor that allows them to con…CYWARE.COM
6 SepRansomware Attacks Soar by 87% in U.K, Reveals JUMPSECA report from JUMPSEC noted an 87% increase in attacker-reported ransomware in the U.K and a 37% globally in H1 2023. The mass exploitation of vulnerabilities is the primary contributor to this growth. One key reason for the surge in attack figures is due to the growing num…CYWARE.COM
6 SepExperts Fear Crooks are Cracking Keys Stolen in LastPass BreachIn November 2022, the password manager service LastPass disclosed a breach in which hackers stole password vaults containing both encrypted and plaintext data for more than 25 million users. Since then, a steady trickle of six-figure cryptocurrency heists targeting security-consc…KREBSONSECURITY.COM
6 SepNascent Malware Attacking npm, PyPI, and RubyGems DevelopersPhylum analyzes source code and metadata for all registry-pushed packages. This year, in millions of packages they are aiming to examine nearly a billion files, as this will enable them to get unique insights into package behaviors across ecosystems. That’s why it has been …GBHACKERS.COM
6 SepMITRE Caldera for OT now available as extension to open-source platformMITRE Caldera for OT is now publicly available as an extension to the open-source Caldera platform, allowing security teams to run automated adversary emulation exercises that are specifically focused on threats to operational technology (OT). The first Caldera for OT extensions …HELPNETSECURITY.COM
6 SepCyber talent gap solutions you need to know90% of consumers across the US and UK are concerned about cybersecurity’s future if students aren’t exposed to the field at an earlier age, according to ThreatX. 88% are worried that today’s talent shortage will negatively impact protection of their personal information. In this …HELPNETSECURITY.COM
6 SepCompliance budgets under strain as inflation and workload growCompliance leaders are facing pressure to make the most of existing resources despite economic challenges and increased workload volume and complexity, according to Gartner. To face these challenges, leaders must address three crucial compliance function trends this year: tighter…HELPNETSECURITY.COM
6 SepInterview with Dr. Gene Spafford - Eugene Spafford - PSW VaultCheck out this interview from the PSW Vault, hand picked by main host Paul Asadoorian! This segment was originally published on February 4, 2013. Dr. Spafford is one of the senior, most recognized leaders in the field of computing. He has an on-going record of accomplishment as a…YOUTUBE.COM
6 SepCaldera: A New Security Tool to Emulate Attacks in Critical InfrastructureMITRE has CISA (America’s cyber defense agency) unveiled a collection of plugins designed to extend the capabilities of Caldera into the Operational Technology (OT) environment. MITRE Caldera is a cyber security platform designed to easily automate adversary emulation, assi…GBHACKERS.COM
6 SepMend.io SAML Vulnerability ExposedThe vulnerability centers on Mend.io’s implementation of the Security Assertion Markup Language (SAML) login option, a standard method for enabling Single Sign-On (SSO) authentication across various online services.INFOSECURITY-MAGAZINE.COM
6 SepProofpoint unveils new features to break cyberattack chainCybersecurity and compliance company Proofpoint has announced several new features and capabilities in its security solutions to help thwart threats across the most critical stages of the cyberattack kill chain. The new capabilities, announced at Proofpoint Protect 2023, span the…CSOONLINE.COM
6 SepAtlasVPN to Patch IP Leak Vulnerability After Public DisclosureAtlasVPN developers are working on a patch for an IP leak vulnerability after a researcher publicly disclosed the flaw due to being ignored. The post AtlasVPN to Patch IP Leak Vulnerability After Public Disclosure appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepAtlas VPN Zero-Day Vulnerability Leaks Users’ Real IP AddressIn a proof of concept exploit shared on Reddit, a researcher describes how the Linux client of Atlas VPN, specifically the latest version, 1.0.3, has an API endpoint that listens on localhost (127.0.0.1) over port 8076.BLEEPINGCOMPUTER.COM
6 SepCXOs and directors are growing wary of generative AI: ReportGenerative AI has emerged as the chief concern for companies across geographies as three-fifths of global board members believe it poses huge security risks, according to a report by Proofpoint. The report built from survey responses of 659 board members at organizations with 5,0…CSOONLINE.COM
6 SepGhostSec Leaks Source Code of Alleged Iranian Surveillance ToolThe first messages were posted on August 27, with GhostSec saying it had discovered facial recognition "and various other privacy invading features and tools" within the FANAP group's software.DARKREADING.COM
6 SepXSS vulnerability in Proton Mail allowed to leak unencrypted emailssubmitted by L4s to secops 1 points | 0 comments https://www.sonarsource.com/blog/code-vulnerabilities-leak-emails-in-proton-mail/ XSS vulnerability in Proton Mail allowed to leak unencrypted emails::The Sonar Research team discovered critical code vulnerabilities in Proton Mail,…SONARSOURCE.COM
6 SepAndroid Zero-Day Patched With September 2023 Security UpdatesAndroid’s September 2023 security update resolves a high-severity elevation of privilege vulnerability exploited in malicious attacks. The post Android Zero-Day Patched With September 2023 Security Updates appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepSee Tickets says hackers accessed customers’ payment data — againGlobal ticketing giant See Tickets has disclosed a data breach affecting customers’ credit card information for the second time in the past 12 months. See Tickets, owned by Vivendi Ticketing, confirmed the latest breach in a filing with Maine’s attorney general this week. The tic…TECHCRUNCH.COM
6 SepMeet the AI, fintech, SaaS and security industry chairs at TC Disrupt 2023We’re less than two weeks away from TechCrunch Disrupt 2023, and we still have more amazing people and sessions to share with you. Today, we’re introducing you to our industry chairs. These folks act as expert resources for TechCrunch, and they assist with our outreach across the…TECHCRUNCH.COM
6 SepCISA Says to Exercise Caution For Disaster-Related Malicious ScamsThe US Cybersecurity and Infrastructure Security Agency (CISA) has warned that scammers are exploiting the recent hurricanes that have hit the US. Criminals frequently impersonate charities and related organizations following natural disasters.KNOWBE4.COM
6 SepView to a Phish: W3LL Specializes in Microsoft 365 HackingPhishing Platform Automates Big Business Email Compromise Attacks, Researchers Find A sophisticated phishing toolkit called W3LL Panel has been used to exploit at least 8,000 endpoints since the middle of last year to perpetrate costly business email compromise schemes, Group-IB …DATABREACHTODAY.CO.UK
6 SepCISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS AttackCISA has released actionable guidance for Federal Civilian Executive Branch (FCEB) agencies to help them evaluate and mitigate the risk of volumetric distributed denial-of-service (DDoS) attacks against their websites and related web services. The Capacity Enhancement Guide: Volu…CISA.GOV
6 SepCyberSaint launches Remediation Suite to optimize resource allocation and decision-makingCyberSaint has launched the Remediation Suite within the CyberStrong platform. With the Remediation Suite, CISOs and cyber risk professionals gain access to a toolkit to efficiently prioritize, quantify, track and communicate remediation efforts across controls and risks, leading…HELPNETSECURITY.COM
6 SepDozens of Unpatched Flaws Expose Security Cameras Made by Defunct Company ZavioDozens of vulnerabilities have been found in widely used security cameras made by defunct Chinese company Zavio. The post Dozens of Unpatched Flaws Expose Security Cameras Made by Defunct Company Zavio appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepSeptember Android updates fix zero-day exploited in attacksThe September 2023 Android security updates tackle 33 vulnerabilities, including a zero-day bug currently targeted in the wild. [...]BLEEPINGCOMPUTER.COM
6 SepHow SMEs can use Wazuh to improve cybersecurityCybersecurity has become a crucial concern for all businesses in today's digital era. Learn from Wazuh on how small and medium-sized enterprises can use its open-source solution to improve their cybersecurity. [...]BLEEPINGCOMPUTER.COM
6 SepCrash Dump Error: How a Chinese Espionage Group Exploited Microsoft’s MistakesMicrosoft reveals how a crash dump from 2021 inadvertently exposed a key that Chinese cyberspies later leveraged to hack US government emails. The post Crash Dump Error: How a Chinese Espionage Group Exploited Microsoft’s Mistakes appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepA Vulnerability in Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Could Allow for Arbitrary Code ExecutionA vulnerability has been discovered in Cisco BroadWorks Application Delivery Platform and Xtended Services Platform which could allow for arbitrary code execution. Cisco BroadWorks Application Delivery Platform and Xtended Services Platform is an enterprise-grade calling and coll…CISECURITY.ORG
6 SepCheck Point Buys Startup Atmosec to Secure SaaS ApplicationsIntegration on Tap With Perimeter 81, Harmony Connect to Deliver Single-Vendor SASE Check Point Software will buy a SaaS security startup founded by former Armis leaders to anticipate and block threats from malicious applications. The deal will give clients a better understanding…DATABREACHTODAY.CO.UK
6 SepGenerative AI Warnings Contain Their Own DangersAI Could Undermine Trust in Democracy, Starting With This Very Statement Artificial intelligence holds the potential to undermine trust in democracy - but overwrought warnings themselves can erode trust in the system critics seek to preserve, warns a cybersecurity firm. AI is "a …DATABREACHTODAY.CO.UK
6 Sep“Threat-informed Defense Is Hard …” Cross-post for Safekeeping“Threat-informed Defense Is Hard …” Cross-post for Safekeeping Medium frowns at re-/cross-posting, so this should work: Threat-informed Defense Is Hard, So We Are Still Not Doing It! Enjoy! “Threat-informed Defense Is Hard …” Cross-post for Safekeeping was originally published in…MEDIUM.COM
📢 SECURITY ADVISORIES 3[−]
6 SepEU Artificial Intelligence Act Not a Panacea for AI RiskDutch Citizens 'Should Not Expect Miracles' From AI Act, Says Dutch Privacy Agency The Dutch privacy regulator says imminent artificial intelligence regulation in the European Union may fail to prevent the rollout of dangerous algorithms. Europe is close to finalizing the AI Act,…DATABREACHTODAY.CO.UK
6 SepFasoo collaborates with Egnyte to simplify data governanceFasoo and Egnyte announced a partnership that will allow organizations to encrypt any Egnyte-managed file and inject Egnyte permissions directly into the protected file, ensuring that governance is maintained wherever the file goes. Colter Carambio, EVP and CRO at Fasoo, said, …HELPNETSECURITY.COM
🔥 INCIDENT REPORTING 17[−]
6 SepOfficial Slams Aussie Firms for Data Breach Reporting DelaysInformation Commissioner Urges Organizations to Accelerate Breach Notifications Australia's information commissioner has urged organifzations to quicken the process of notifying those affected by data breaches instead of spending months analyzing each incident. Angelene Falk said…DATABREACHTODAY.CO.UK
6 SepNascent Malware Campaign Targets npm, PyPI, and RubyGems DevelopersA malware campaign targeting software developers in multiple ecosystems (PyPI, npm, and RubyGems) has been discovered, with packages collecting and exfiltrating data from macOS machines.PHYLUM.IO
6 SepFreecycle data breach impacts 7 million membersA malicious actor put the data of 7 million Freecycle members for sale on the dark webCSHUB.COM
6 SepW3LL Store: How a Secret Phishing Syndicate Targets 8,000+ Microsoft 365 AccountsA previously undocumented "phishing empire" has been linked to cyber attacks aimed at compromising Microsoft 365 business email accounts over the past six years. "The threat actor created a hidden underground market, named W3LL Store, that served a closed community of at least 50…THEHACKERNEWS.COM
6 SepUkraine's CERT Thwarts APT28's Cyberattack on Critical Energy InfrastructureThe Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday said it thwarted a cyber attack against an unnamed critical energy infrastructure facility in the country. The intrusion, per the agency, started with a phishing email containing a link to a malicious ZIP archiv…THEHACKERNEWS.COM
6 SepHoliday Season Cyber Alert: Reflectiz Declares War on MagecartReflectiz, a cybersecurity company specializing in continuous web threat management, offers an exclusive, fully remote solution to battle Magecart web-skimming attacks, a popular cyberattack involving injecting malicious code into the checkout pages. As the Holiday Season approac…GBHACKERS.COM
6 SepAvoidable digital certificate issues fuel data breachesAmong organizations that have suffered data breaches 58% were caused by issues related to digital certificates, according to a report by AppViewX and Forrester Consulting. As a result of service outages, 57% said their organizations have incurred costs upwards of $100,000 per out…HELPNETSECURITY.COM
6 SepW3LL phishing kit hijacks thousands of Microsoft 365 accounts, bypasses MFAA threat actor known as W3LL developed a phishing kit that can bypass multi-factor authentication along with other tools that compromised more than 8,000 Microsoft 365 corporate accounts. [...]BLEEPINGCOMPUTER.COM
6 SepTXOne Networks Edge V2 isolates security breachesTXOne Networks announced the second generation of its Edge engine for eliminating the spread of operational technology (OT) network infections and safeguarding reliable operations. Edge V2 delivers automatic rule generation, enabling effortless network segmentation in complex, la…HELPNETSECURITY.COM
6 SepCybercriminals target MS SQL servers to deliver ransomwareA cyberattack campaign is targeting exposed Microsoft SQL (MS SQL) databases, aiming to deliver ransomware and Cobalt Strike payloads. The attack campaign The attackers target exposed MS SQL servers by brute-forcing access credentials. After having successfully authenticated, the…HELPNETSECURITY.COM
6 SepThreat Actors Target NPM, PyPI, and RubyGems DevelopersA new cyber campaign has emerged, with threat actors uploading malicious packages to PyPI, NPM, and RubyGems repositories, posing a significant threat to macOS user data. The malicious packages would collect system information and exfiltrate it to attacker-controlled servers. Sec…CYWARE.COM
6 SepRussian APT28 Hacking Group Attacking Critical Power InfrastructureThe АРТ28 hacking group, suspected to have ties to Russian special services, has made an audacious attempt to breach the critical power infrastructure of Ukraine. This latest cyberattack has raised alarms within the cybersecurity community and heightened concerns over the securit…GBHACKERS.COM
6 SepRansomware gang claims credit for Sabre data breachTravel booking giant Sabre said it was investigating claims of a cyberattack after a tranche of files purportedly stolen from the company appeared on an extortion group’s leak site. “Sabre is aware of the claims of a data exfiltration made by the threat group and we are cur…TECHCRUNCH.COM
6 SepHackers stole Microsoft signing key from Windows crash dumpMicrosoft says Storm-0558 Chinese hackers stole a signing key used to breach government email accounts from a Windows crash dump after compromising a Microsoft engineer's corporate account. [...]BLEEPINGCOMPUTER.COM
6 SepJust Kids Dental Says Nearly 130K People Affected by AttackPediatric Practice Says Attackers Promised to Delete Data Compromised in Incident An Alabama pediatric dental practice is notifying nearly 130,000 patients that their sensitive information was compromised in a recent cyberattack. The entity appears to have potentially paid a rans…DATABREACHTODAY.CO.UK
6 SepUniversity of Michigan requires password resets after cyberattackThe University of Michigan (UMICH) warned staff and students on Tuesday that they're required to reset their account passwords after a recent cyberattack. [...]BLEEPINGCOMPUTER.COM
6 SepRansomware Infection Vectors | News - PSW7986:00pm ET - Ryan Chapman 7:00pm ET - Security News This week, we start things off with an interview with Ryan Chapman, Author & Certified Instructor at SANS, about Ransomware Infection Vectors . Then we follow up with our security news for the week! →Full Show Notes: https://secu…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 43[−]
6 SepZscaler Data Security Platform Takes on Symantec, CASB ToolsCEO Jay Chaudhry: In-Line Inspection, App-to-App Protection Aid Data Defense Growth Zscaler's ability to inspect traffic in-line and secure application-to-application communications has driven massive growth in its data protection business, CEO Jay Chaudhry said. Customers have e…DATABREACHTODAY.CO.UK
6 SepAPT28 Spear-Phishes Ukrainian Critical Energy FacilityEnergy Facility Impeded Attack by Blocking the Launch of the Windows Script Host Ukrainian cyber defenders say Russian military hackers targeted a critical energy infrastructure facility with phishing emails containing a malicious script leading to cyberespionage. An energy facil…DATABREACHTODAY.CO.UK
6 SepUnited Airlines Says the Outage That Held Up Departing Flights Was Not a Cybersecurity IssueUnited Airlines flights were halted nationwide on Sept. 5, because of an “equipment outage,” according to the FAA. The post United Airlines Says the Outage That Held Up Departing Flights Was Not a Cybersecurity Issue appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepISC Stormcast For Wednesday, September 6th, 2023 https://isc.sans.edu/podcastdetail/8646, (Wed, Sep 6th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
6 SepHackers Using BlueShell Malware to Attack Windows, Linux, and Mac SystemsThe usage of Blueshell malware spikes up by various threat actors to target Windows, Linux, and other operating systems across Korea and Thailand. Blueshell backdoor malware has been active since 2020 and written in GO language, believed to be created by a Chinese user, which is …GBHACKERS.COM
6 SepDiving Deeper Into Windows Event logs for Security Operation Center (SOC) – GuideCyber Security operations center is protecting organizations and the sensitive business data of customers. It ensures active monitoring of valuable assets of the business with visibility, alerting and investigating threats, and a holistic approach to managing risk. Analytics serv…GBHACKERS.COM
6 SepGUEST ESSAY: Securing your cryptocurrency — best practices for Bitcoin wallet securityOver time, Bitcoin has become the most widely used cryptocurrency in the world. Strong security measures become increasingly important as more people use this digital currency. Related: Currency exchange security issues For managing and keeping your Bitcoin assets, you must ̷…LASTWATCHDOG.COM
6 SepCloudera partners with AWS to help organizations accelerate their modernization to the cloudCloudera announced that it has signed a Strategic Collaboration Agreement (SCA) with AWS. This agreement strengthens Cloudera’s relationship with AWS and demonstrates their commitment to accelerate and scale cloud native data management and data analytics on AWS. Through th…HELPNETSECURITY.COM
6 SepEmerging threat: AI-powered social engineeringSocial engineering is a sophisticated form of manipulation but, thanks to AI advancements, malicious groups have gained access to highly sophisticated tools, suggesting that we might be facing more elaborate social engineering attacks in the future. It is becoming increasingly ev…HELPNETSECURITY.COM
6 SepFrom unsuspecting click to data compromisePhishing is a pervasive and ever-evolving cyber threat that has become a primary concern for individuals, organizations, and cybersecurity experts worldwide. This deceptive practice involves cybercriminals using various tactics to trick individuals into divulging sensitive inform…HELPNETSECURITY.COM
6 SepCIS Benchmarks Communities: Where configurations meet consensusHave you ever wondered how technology hardening guidelines are developed? Some are determined by a particular vendor or driven by a bottom-line perspective. That’s not the case with the CIS Benchmarks. They’re the only consensus-developed security configuration recommendations bo…HELPNETSECURITY.COM
6 Sep[Request]Computer security related audiobookssubmitted by PersonalDevKit to cybersecurity 5 points | 0 comments Bit of a different one. I have some credits for audible and I am looking for your favourite books on the subject. Fiction or non fiction it doesn’t really matter. Normally I’d google it and slap “reddit” on the en…INFOSEC.PUB
6 SepGetting off the hook: 10 steps to take after clicking on a phishing linksubmitted by throws_lemy to cybersecurity 6 points | 0 comments https://www.welivesecurity.com/en/scams/getting-off-hook-10-steps-take-clicking-phishing-link/WELIVESECURITY.COM
6 Sep[Request] Computer Security related audiobookssubmitted by PersonalDevKit to cybersecurity 6 points | 1 comments Bit of a different one. I have some credits for audible and I am looking for your favourite books on the subject. Fiction or non fiction it doesn’t really matter. Normally I’d google it and slap “reddit” on the en…SH.ITJUST.WORKS
6 SepCryptocurrency Startup Loses Encryption Key for Electronic WalletThe cryptocurrency fintech startup Prime Trust lost the encryption key to its hardware wallet—and the recovery key—and therefore $38.9 million. It is now in bankruptcy. I can’t understand why anyone thinks these technologies are a good idea.SCHNEIER.COM
6 SepHacker Conversations: Alex IonescuSecurityWeek talks to Alex Ionescu, a world-renowned cybersecurity expert who has combined a career as a business executive with that of a security researcher. The post Hacker Conversations: Alex Ionescu appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepChrome 116 Update Patches High-Severity VulnerabilitiesGoogle has released another weekly Chrome update, to address four high-severity vulnerabilities reported by external researchers. The post Chrome 116 Update Patches High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
6 SepNTT launches Samurai XDR SaaS to strengthen detection and response capabilities across the networkNTT Security Holdings launched Samurai XDR SaaS, making their threat detection and response system accessible to organizations of all sizes for just $40 per endpoint per year. The cloud-hosted solution requires no infrastructure deployment, providing SMBs an affordable way to lev…HELPNETSECURITY.COM
6 SepWeekly Update 363Presently sponsored by: Fastmail. Check out Masked Email, built with 1Password. One click gets you a unique email address for every online signup. Try it now! I'm super late pushing out this week's video, I mean to the point where I now have a couple of days before doin…TROYHUNT.COM
6 SepHow Secure Is Your Authentication Method?I frequently write about authentication, including PKI, multi-factor authentication (MFA), password managers, FIDO, Open Authentication, and biometrics. I have written dozens of articles on LinkedIn and have presented during many KnowBe4 webinars about different authentication su…KNOWBE4.COM
6 SepMachine learning operations can revolutionize cybersecurityMachine learning operations (MLOps) refers to the practices and tools employed to streamline the deployment, management and monitoring of machine learning models in production environments. While MLOps is commonly associated with data science and machine learning workflows, its i…SECURITYINTELLIGENCE.COM
6 SepCyberheistNews Vol 13 #36 [Must Know] Top 10 Trends in Business Email Compromise for 2023KNOWBE4.COM
6 Sep25 Major Car Brands Get Failing Marks From Mozilla for Security and PrivacyMozilla has analyzed the privacy and security of 25 major car brands and found that they collect a lot of data and can share it or sell it to third parties. The post 25 Major Car Brands Get Failing Marks From Mozilla for Security and Privacy appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepNetskope acquires Kadiska for enhanced network and app performance monitoringNetskope has acquired Kadiska. The news follows the announcement last week of enhancements to Netskope’s Digital Experience Management (DEM) capabilities with the introduction of Netskope Proactive DEM (P-DEM), and cements Netskope’s advances in the ability to monitor and proacti…HELPNETSECURITY.COM
6 SepAlert: Phishing Campaigns Deliver New SideTwist Backdoor and Agent Tesla VariantThe Iranian threat actor tracked as APT34 has been linked to a new phishing attack that leads to the deployment of a variant of a backdoor called SideTwist. “APT34 has a high level of attack technology, can design different intrusion methods for different types of targets, and ha…THEHACKERNEWS.COM
6 SepD2iQ DKP 2.6 improves Kubernetes management capabilitiesD2iQ announced the newest updates to its multi-cluster Kubernetes management platform, D2iQ Kubernetes Platform (DKP). DKP 2.6 features the new DKP AI Navigator, an AI assistant that enables enterprise organizations to overcome the skills gap, one of the biggest challenges they f…HELPNETSECURITY.COM
6 SepHackers Steal Over $5,700 from ATMs Using Raspberry PiThe Raspberry Pi is a budget-friendly Linux computer system board that features GPIO pins for physical computing and IoT exploration. However, besides this, threat actors also abuse this board for several illicit purposes as well. Recent arrests in Lubbock involve three men accus…GBHACKERS.COM
6 SepHackers Use Flipper Zero Device to Attack Nearby iPhones with Notification Pop-upsFlipper Zero Devices have been discovered with the capability to perform Denial of Service attacks on iPhones. Threat actors can probably spam the iPhones with so many pop-ups prompting about nearby AirTag, Apple TV, AirPods, and other Apple devices. Moreover, Flipper Zero Device…GBHACKERS.COM
6 SepThousands of Popular Websites Leaking SecretsTruffle Security has discovered thousands of popular websites leaking their secrets, including .git directories and AWS and GitHub keys. The post Thousands of Popular Websites Leaking Secrets appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepPassword-Stealing Chrome Extension Demonstrates New VulnerabilitiesAcademic researchers design a Chrome extension to steal passwords from input fields and publish it to the Chrome webstore. The post Password-Stealing Chrome Extension Demonstrates New Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepInsight Managed Cloud Services streamline cloud managementInsight Enterprises has expanded its services portfolio with a new global managed cloud offering to simplify how enterprises scale their cloud use. Insight Managed Cloud Services enable a fully managed experience that lifts the burden of cloud management from IT teams to deliver …HELPNETSECURITY.COM
6 SepInvestors Betting Big on Upwind for CNAPP TechUpwind raises a total of $80 million in just 10 months as investors pour cash into startups in the cloud and data security categories. The post Investors Betting Big on Upwind for CNAPP Tech appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepWebinar Tomorrow: Unpacking the Secure Supply Chain Consumption Framework (S2C2F)Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain. The post Webinar Tomorrow: Unpacking the Secure Supply Chain Consumption Framework (S2C2F) appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepResults of Major Technical Investigations for Storm-0558 Key AcquisitionOn July 11, 2023, Microsoft published a blog post which details how the China-Based threat actor, Storm-0558, used an acquired Microsoft account (MSA) consumer key to forge tokens to access OWA and Outlook.com. Upon identifying that the threat actor had acquired the consumer key,…MSRC.MICROSOFT.COM
6 SepNetskope Buys Digital Experience Management Startup KadiskaDeal Will Extend DEM Skills to Non-Traditional Environments, Non-Security Personnel Netskope purchased a French digital experience management startup to monitor and proactively remediate performance issues across both SD-WAN and SSE. The deal will bring network and application pe…DATABREACHTODAY.CO.UK
6 SepCash-Strapped IronNet Faces Bankruptcy OptionsIt appears to be the end of the road for IronNet, the once-promising network security play founded by former NSA director General Keith Alexander. The post Cash-Strapped IronNet Faces Bankruptcy Options appeared first on SecurityWeek .SECURITYWEEK.COM
6 SepUK Government Seeks to Dispel Encryption ConcernsOnline Safety Bill Close to Passage With 'Accredited Technology' Clause Intact The U.K. government may have sidestepped a fight with American tech companies by appearing to soften a legislative mandate for chat apps to actively scan for terrorist and child sexual abuse content. T…DATABREACHTODAY.CO.UK
6 SepIdentity is the Perimeter | Leadership & Communications - BSW #319This week, we start things off with an interview with Jeff Reich, Executive Director at Identity Defined Security Alliance (IDSA), about Identity is the Perimeter. Then we follow up with our Leadership and Communications Articles for the week. Visit https://www.securityweekly.com…YOUTUBE.COM
6 SepFrom Cybersecurity Webmaster to CISOA resilient SOC ensures your ability to withstand an attack without catastrophic consequences, and also ingrains the idea of anti-fragility. The post From Cybersecurity Webmaster to CISO appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
6 SepMopria | Cisco | Seimens | Word | DarkGate | AP Stylebook | Jason Wood & more – SWN324This week, Doug Talks: Mopria, Cisco, Seimens , Word, DarkGate, AP Stylebook , Jason Wood, and more on the Security Weekly News. →Full Show Notes: https://securityweekly.com/swn324 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: https://ww…YOUTUBE.COM
6 SepMDR and Self Sabotage | Detection Difficulty | Enterprise News - ESW331This week, we kick things off with and interview with Jason Lassourreille, Senior Engineer at Sophos, about MDR and Self Sabotage. Then we discuss Detection Difficulty - Why are we still missing attackers? with Chris Sanders, Founder at Applied Network Defense & Rural Technology …YOUTUBE.COM
6 SepCyberdog | Pegasus | Webex | Peach Sandstorm | SAP | Caesar | Penn | Aaran Leyland & more – SWN325This week, Doug Talks: Cyberdog, Pegasus, Webex, Peach Sandstorm, SAP, Caesar, Penn , Aaran Leyland, and more on the Security Weekly News. →Full Show Notes: https://securityweekly.com/swn325 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: …YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
6 SepNew BLISTER Malware Update Fuelling Stealthy Network Infiltration"New BLISTER update includes keying feature that allows for precise targeting of victim networks and lowers exposure within VM/sandbox environments," Elastic Security Labs researchers said in a technical report published late last month.THEHACKERNEWS.COM
6 SepNew Chae$ 4 Strain Targets Financial and Logistics CustomersA reworked variant of the Chaes malware, Chae$ 4, is causing havoc in the banking and logistics sectors with significant overhauls. It has been completely rewritten in Python to bypass traditional security defenses and improve communication protocols. It's essential to regu…CYWARE.COM
6 SepMirai variant infects low-cost Android TV boxes for DDoS attacksA new Mirai malware botnet variant has been spotted infecting inexpensive Android TV set-top boxes used by millions for media streaming. [...]BLEEPINGCOMPUTER.COM
🎙️ PODCASTS 2[−]
6 SepCyber Security Today, Sept. 6, 2023 - Advice on cyber insuranceThis episode reports on what your organization might need to get and keep cyber insurance -- or whether you should self-insure by setting up a rigorous cybersecurity programCYBERSECURITYTODAY.LIBSYN.COM
6 SepSmashing Security podcast #338: Catfishing services, bad sports, and another cockupAI news is bad news, an online service to catch your cheating partner, and an IoT-enabled dick cage fails to keep a grip on its own security. All this and much much more is discussed in the latest edition of the "Smashing Security" podcast by cybersecurity veterans Graham Cluley …GRAHAMCLULEY.COM
📡 INFOSEC NEWS 20[−]
6 SepNine Vulnerabilities Patched in SEL Power System Management ProductsNine vulnerabilities, including potentially serious flaws, were patched recently in a couple of electric power management products made by Schweitzer Engineering Laboratories (SEL).SECURITYWEEK.COM
6 SepYes, There's an npm Package Called @(-.-)/env and Some Others Like itThese packages have unconventional names and some of them do not follow naming guidelines. While not all of them pose a security risk, they could potentially cause confusion or break software development tooling.BLEEPINGCOMPUTER.COM
6 SepThree CISOs Share How to Run an Effective SOCThe role of the CISO keeps taking center stage as a business enabler: CISOs need to navigate the complex landscape of digital threats while fostering innovation and ensuring business continuity. Three CISOs; Troy Wilkinson, CISO at IPG; Rob Geurtsen, former Deputy CISO at Nike; a…THEHACKERNEWS.COM
6 SepIntroducing Sophos ZTNA on Sophos FirewallEarly access for Sophos ZTNA Gateway on Sophos Firewall is now underway.SOPHOS.COM
6 SepBogus URL Shorteners Go Mobile-Only in AdSense Fraud CampaignThe attackers have implemented multiple layers of defense to protect their Google AdSense accounts, including JavaScript execution, mobile user agent checks, user interaction requirements, and server-side user agent checks.SUCURI.NET
6 SepAPI security startup Pynt raises $6M“We chose ‘Pynt’ because it’s short, memorable, and reflects our love for developers and a good beer,” Pynt co-founder and CEO Tzvika Shneider told me when I asked him about how the company got its name. “As we say: ‘A Pynt a day keeps yo…TECHCRUNCH.COM
6 SepSecurity Relevant DNS Records, (Wed, Sep 6th)DNS has a big security impact. DNS is in part responsible for your traffic reaching the correct host on the internet. But there is more to DNS then name resolution. I am going to mention a few security relevant record types here, in no particular order:
ISC.SANS.EDU
6 SepToyota says filled disk storage halted Japan-based factoriesToyota says a recent disruption of operations in Japan-based production plants was caused by its database servers running out of storage space. [...]BLEEPINGCOMPUTER.COM
6 SepCrypto Gambling Platform Stake.com Back Online After $40 Million HeistCuraçao-headquartered Stake.com offers casino and sports betting for players using cryptocurrency. However, the firm flagged on Monday that it had spotted unauthorized transactions being made from its ETH and BSC hot wallets.INFOSECURITY-MAGAZINE.COM
6 SepPizza Hut Australia leaks one million customers’ details, claims ShinyHunters hacking groupThe ShinyHunters hacking group has claimed that in the last couple of months it has stolen more than 30 million customer order records from Pizza Hut Australia, alongside information on more than one million customers. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
6 SepHow to customize privacy and security in Mastodon | Kaspersky official blogWe explain how to use the social network Mastodon and increase your profile privacy and security.KASPERSKY.COM
6 SepWhat Businesses Need To Know To Comply With SEC's New Cyber Disclosure RulesPACKETSTORMSECURITY.COM
6 SepMSI BIOS updates fix Windows unsupported processor BSOD bugMSI has released BIOS updates to fix a known issue that triggers blue screens of death on Windows computers after installing August 2023 preview updates. [...]BLEEPINGCOMPUTER.COM
6 SepFlipper Zero can be used to launch iOS Bluetooth spam attacksThe Flipper Zero portable wireless pen-testing and hacking tool can be used to aggressively spam Bluetooth connection messages at Apple iOS devices, such as iPhones and iPads. [...]BLEEPINGCOMPUTER.COM
6 SepRockstar Games reportedly sold games with Razor 1911 cracks on SteamIn an ironic twist, Rockstar Games reportedly uses pirated software cracks to remove its DRM from some games they sell on Steam. [...]BLEEPINGCOMPUTER.COM
6 SepIntroducing the Sophos AP6 Series of Cloud-Managed Wireless Access PointsEmpowering hybrid and remote working with Wi-Fi 6 access points that can be managed from anywhereSOPHOS.COM
6 SepStaying ahead of threats: 5 cybercrime trends to watchNew reports from Europol and the UK’s National Crime Agency (NCA) shed a light on how the battle against cybercrime is being foughtWELIVESECURITY.COM