123Articles
8Categories
2023-09-07Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 11[−]
7 SepPHPFusion Critical Flaw Allows Attackers to Read Critical System DataOn Tuesday, Synopsys addressed High and medium vulnerabilities CVE-2023-2453, and CVE-2023-4480 discovered in PHPFusion by the researchers. PHPFusion is an open-source content management system (CMS) designed for managing personal or commercial websites and is offered under the G…GBHACKERS.COM
7 SepAlert: Apache SuperSet Vulnerabilities Expose Servers to Remote Code Execution AttacksPatches have been released to address two new security vulnerabilities in Apache SuperSet that could be exploited by an attacker to gain remote code execution on affected systems. The update (version 2.1.1) plugs CVE-2023-39265 and CVE-2023-37941, which make it possible to conduc…THEHACKERNEWS.COM
7 SepCisco Patches Critical Vulnerability in BroadWorks PlatformCisco has released patches for CVE-2023-20238, a critical authentication bypass vulnerability in the BroadWorks Application Delivery Platform. The post Cisco Patches Critical Vulnerability in BroadWorks Platform appeared first on SecurityWeek .SECURITYWEEK.COM
7 SepCISA, FBI, and CNMF Release Advisory on Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475Today, CISA, Federal Bureau of Investigation (FBI), and U.S. Cyber Command’s Cyber National Mission Force (CNMF) published a joint Cybersecurity Advisory (CSA), Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475 . This CSA provides information on an inc…CISA.GOV
7 SepChromium: CVE-2023-4761 Out of bounds memory access in FedCMThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 SepChromium: CVE-2023-4762 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 SepChromium: CVE-2023-4763 Use after free in NetworksThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 SepChromium: CVE-2023-4764 Incorrect security UI in BFCacheThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 Sep KEVApple Releases iOS/iPadOS 16.6.1, macOS 13.5.2, watchOS 9.6.2 fixing two zeroday vulnerabilities, (Thu, Sep 7th) macOS Ventura 13.5.2 iOS 16.6.1 and iPadOS 16.6.1 watchOS 9.6.2 CVE-2023-41064 &#…ISC.SANS.EDU
7 Sep KEVCISA warns of critical Apache RocketMQ bug exploited in attacksThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added to its catalog of known exploited vulnerabilities (KEV) a critical-severity issue tracked as CVE-2023-33246 that affects Apache's RocketMQ distributed messaging and streaming platform. [...]BLEEPINGCOMPUTER.COM
7 SepMAR-10454006.r5.v1 SUBMARINE, SKIPJACK, SEASPRAY, WHIRLPOOL, and SALTWATER BackdoorsNotification This report is provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained herein. The DHS does not endorse any commercial product or service referenced in…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 30[−]
7 SepBaseline standards for BYOD access requirements49% of enterprises across Europe currently have no formal Bring-Your-Own-Device (BYOD) policy in place, meaning they have no visibility into or control over if and how employees are connecting personal devices to corporate resources, according to a Jamf survey. With the summer ho…HELPNETSECURITY.COM
7 SepLibreOffice: Stability, security, and continued developmentLibreOffice, the most widely used open-source office productivity suite, has plenty to recommend it: it’s feature-rich, user-friendly, well-documented, reliable, has an active community of developers working on improving it, and it’s free. The suite includes Writer (w…HELPNETSECURITY.COM
7 SepMITRE and CISA Release Open Source Tool for OT Attack EmulationThe new Caldera for OT extension is the result of a collaboration between the Homeland Security Systems Engineering and Development Institute (HSSEDI) and CISA, to help improve the resilience of critical infrastructure.SECURITYWEEK.COM
7 SepEmerging cyber threats in 2023 from AI to quantum to data poisoningCompanies using Microsoft Teams got news earlier in the summer of 2023 that a Russian hacker group was using the platform to launch phishing attacks, putting a new spin on a long-known attack strategy. According to Microsoft Threat Intelligence , the hackers, identified as Midnig…CSOONLINE.COM
7 SepWhy Data Privacy is Being Overhauled in 2023 - Dan Frechtling - ESW VaultCheck out this interview from the ESW Vault, hand picked by main host Adrian Sanabria! This segment was originally published on November 18, 2022. This segment will focus on (1) Why Did Sephora Get Fined $1.2M and Why Are They on Probation? (2) Why Data Privacy is Being Overhaule…YOUTUBE.COM
7 SepFeds Publicly Name 130 Healthcare Firms Using Web TrackersWhile the FTC and HHC OCR also publicly disclosed on July 20 that they had sent letters to 130 entities, the regulators at the time did not disclose the identities of the organizations,BANKINFOSECURITY.COM
7 SepThe Hacker Tool to Get Personal Data from Credit BureausThe new site 404 Media has a good article on how hackers are cheaply getting personal information from credit bureaus: This is the result of a secret weapon criminals are selling access to online that appears to tap into an especially powerful set of data: the target’s cred…SCHNEIER.COM
7 SepCisco Finds 8 Vulnerabilities in OAS Industrial IoT Data PlatformVulnerabilities identified in the OAS Platform could be exploited to bypass authentication, leak sensitive information, and overwrite files. The post Cisco Finds 8 Vulnerabilities in OAS Industrial IoT Data Platform appeared first on SecurityWeek .SECURITYWEEK.COM
7 SepIBM Discloses Data Breach Impacting Janssen Healthcare PlatformIBM has disclosed a data breach involving a Janssen healthcare platform that last year helped more than 1 million patients. The post IBM Discloses Data Breach Impacting Janssen Healthcare Platform appeared first on SecurityWeek .SECURITYWEEK.COM
7 SepPerception Point tackles QR code phishing attacksThreat prevention provider Perception Point has announced the release of new features in its email security offering to combat the rise of QR code phishing, commonly referred to as "quishing." The company said its new detection engine provides a proactive approach to stopping mal…CSOONLINE.COM
7 SepHackers Exploit Multiple Bugs in Hotel Booking PlatformFinancially Motivated Hackers Deploy Custom Malware Financially motivated hackers developed custom malware to exploit a likely zero-day flaw in popular vacation resort management software, say security researchers. Hackers target the hospitality industry with regularity, given th…DATABREACHTODAY.CO.UK
7 SepIAM, cloud security to drive new cybersecurity spendingMost organizations are increasing their cybersecurity budgets with CISOs planning to widen spending on identity and access management (IAM) and cloud security services. That's according to Team8's 2023 CISO Village Survey , which quizzed 130 global CISOs on a variety of security …CSOONLINE.COM
7 SepThousands of Popular Websites Found Leaking Secrets, Source CodeAn analysis of the exposed credentials by Truffle Security has revealed that AWS and GitHub keys were the most prevalent type of leaked secrets, accounting for 45% of all credentials.SECURITYWEEK.COM
7 SepCISA Releases Four Industrial Control Systems AdvisoriesCISA released four Industrial Control Systems (ICS) advisories on September 7, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-250-01 Dover Fueling Solutions MAGLINK LX Console ICSA-23-250-02 …CISA.GOV
7 SepNew Hive0117 phishing campaign imitates conscription summons to deliver DarkWatchman malwareIBM X-Force uncovered a new phishing campaign likely conducted by Hive0117 delivering the fileless malware DarkWatchman, directed at individuals associated with major energy, finance, transport, and software security industries based in Russia, Kazakhstan, Latvia, and Estonia. Da…SECURITYINTELLIGENCE.COM
7 SepCisco Releases Security Advisories for Multiple ProductsCisco has released security advisories to address vulnerabilities affecting multiple Cisco products. A cyber threat actor can exploit some of these vulnerabilities to take control of an affected system or cause a denial-of service condition. CISA encourages users and administrato…CISA.GOV
7 SepGoogle: State hackers attack security researchers with new zero-dayGoogle's Threat Analysis Group (TAG) says North Korean state hackers are again targeting security researchers in attacks using at least one zero-day in an undisclosed popular software. [...]BLEEPINGCOMPUTER.COM
7 SepApple discloses 2 new zero-days exploited to attack iPhones, MacsApple released emergency security updates to fix two new zero-day vulnerabilities exploited in attacks targeting iPhone and Mac users, for a total of 13 exploited zero-days patched since the start of the year. [...]BLEEPINGCOMPUTER.COM
7 SepInterview with Dr. Gene Spafford - Eugene Spafford - PSW VaultCheck out this interview from the PSW Vault, hand picked by main host Paul Asadoorian! This segment was originally published on February 4, 2013. Dr. Spafford is one of the senior, most recognized leaders in the field of computing. He has an on-going record of accomplishment as a…YOUTUBE.COM
7 SepCisco BroadWorks impacted by critical authentication bypass flawA critical vulnerability impacting the Cisco BroadWorks Application Delivery Platform and Cisco BroadWorks Xtended Services Platform could allow remote attackers to forge credentials and bypass authentication. [...]BLEEPINGCOMPUTER.COM
7 SepApple zero-click iMessage exploit used to infect iPhones with spywareCitizen Lab says two zero-days fixed by Apple today in emergency security updates were actively abused as part of a zero-click exploit chain to deploy NSO Group's Pegasus commercial spyware onto fully patched iPhones. [...]BLEEPINGCOMPUTER.COM
7 Sep KEVApple Patches Actively Exploited iOS, macOS Zero-DaysApple pushes out an urgent point-update to its flagship iOS and macOS platforms to fix a pair of security defects being exploited in the wild. The post Apple Patches Actively Exploited iOS, macOS Zero-Days appeared first on SecurityWeek .SECURITYWEEK.COM
7 SepRigged Software and Zero-Days: North Korean APT Caught Hacking Security ResearchersGoogle again catches a North Korean APT actor targeting security researchers with zero-days and rigged software tools. The post Rigged Software and Zero-Days: North Korean APT Caught Hacking Security Researchers appeared first on SecurityWeek .SECURITYWEEK.COM
7 SepApple fixes zero-day bugs used to plant Pegasus spywareApple released security updates on Thursday that patch two zero-day exploits — meaning hacking techniques that were unknown at the time Apple found out about them — used against a member of a civil society organization in Washington D.C., according to the researchers who found th…TECHCRUNCH.COM
7 SepIranian hackers breach US aviation org via Zoho, Fortinet bugsState-backed hacking groups have breached a U.S. aeronautical organization using exploits targeting critical Zoho and Fortinet vulnerabilities, a joint advisory published by CISA, the FBI, and the United States Cyber Command (USCYBERCOM) revealed on Thursday. [...]BLEEPINGCOMPUTER.COM
7 SepDetection Engineering is Painful — and It Shouldn’t Be (Part 1)Detection Engineering is Painful — and It Shouldn’t Be (Part 1) This blog series was written jointly with Amine Besson, Principal Cyber Engineer, Behemoth CyberDefence and one more anonymous collaborator. This post is our first installment in the “Threats into Detections — The DN…MEDIUM.COM
7 SepIranian hackers breach US aviation org via ManageEngine, Fortinet bugsState-backed hacking groups have breached a U.S. aeronautical organization using exploits targeting critical Zoho ManageEngine and Fortinet vulnerabilities, a joint advisory published by CISA, the FBI, and the United States Cyber Command (USCYBERCOM) revealed on Thursday. [...]BLEEPINGCOMPUTER.COM
7 SepUPDATED – Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code ExecutionMultiple vulnerabilities have been discovered in Apple Products, the most severe of which could allow for arbitrary code execution. iOS is a mobile operating system for mobile devices, including the iPhone, iPad, and iPod touch. iPadOS is the successor to iOS 12 and is a mobile o…CISECURITY.ORG
📋 SECURITY BULLETINS 1[−]
7 SepMirai Botnet Variant 'Pandora' Hijacks Android TVs for CyberattacksA Mirai botnet variant called Pandora has been observed infiltrating inexpensive Android-based TV sets and TV boxes and using them as part of a botnet to perform distributed denial-of-service (DDoS) attacks. Doctor Web said the compromises are likely to occur either during malici…THEHACKERNEWS.COM
📢 SECURITY ADVISORIES 14[−]
7 SepShifting left and right, innovating product securityIn this Help Net Security interview, Slava Bronfman, CEO at Cybellum, discusses approaches for achieving product security throughout a device’s entire lifecycle, fostering collaboration across business units and product lines, ensuring transparency and security in the suppl…HELPNETSECURITY.COM
7 SepHawai’i State Department of Health Resolves Website DefacementThe incident affected healthybydefault.hawaii.gov — a website created by the Hawai?i State Department of Health (DOH) in compliance with a 2020 state law that mandates healthy beverages be the default option in children’s meals.THERECORD.MEDIA
7 SepPeiter 'Mudge' Zatko Lands Role as CISA Senior Technical AdviserThe U.S. government’s cybersecurity agency CISA on Monday confirmed the addition of Peiter ‘Mudge’ Zatko to its roster of prominent voices preaching the gospel of security-by-design and secure-by-default development principles.DARKREADING.COM
7 SepCISA Seeks Vendor Commitments to Boost Cybersecurity in K-12 SchoolsCISA Director Jen Easterly said in a statement that the goal of the pledge is to address K-12 cybersecurity issues and help ensure schools and administrators “have access to technology and software that is safe and secure right out of the box.”NEXTGOV.COM
7 SepUK National Cyber Security Centre Gets a New CTOThe UK’s National Cyber Security Centre (NCSC) has announced its new chief technology officer (CTO) will be Ollie Whitehouse. Whitehouse joins the NCSC from UK-headquartered information assurance firm NCC Group, where he worked for many years.INFOSECURITY-MAGAZINE.COM
7 SepSocial Engineering Seeks Okta CredentialsIdentity and authentication management provider Okta has warned of social engineering attacks that are targeting IT workers in an attempt to gain administrative privileges within organizations’ networks.KNOWBE4.COM
7 SepCISA Releases Guidance on Adopting DDoS MitigationsCISA has released new guidance to help federal agencies decide upon and prioritize DDoS mitigations based on mission and reputational impact. The post CISA Releases Guidance on Adopting DDoS Mitigations appeared first on SecurityWeek .SECURITYWEEK.COM
7 SepTattletale Ransomware Gangs Threaten to Reveal GDPR BreachesRepeat Shakedown Tactic: Victims Told to Pay Up or Else They'll Pay Massive Fines Ransomware groups do whatever they can to pressure a victim into paying. Enter the likes of Ransomed, following in the footsteps of Alphv/BlackСat, NoEscape and Good Day-powered Cloak, all of which …DATABREACHTODAY.CO.UK
7 SepCalifornia Executive Order Hopes to Ensure 'Trustworthy AI'Governor Sets 2-Year Deadline for Policies on AI Use, Risks at Public Agencies California Gov. Gavin Newsom on Wednesday signed an executive order to study the development, use and risks of artificial intelligence, and develop a process to deploy "trustworthy AI" in the state gov…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 17[−]
7 SepOutlook Breach: Microsoft Reveals How a Crash Dump Led to a Major Security BreachMicrosoft on Wednesday revealed that a China-based threat actor known as Storm-0558 acquired the inactive consumer signing key to forging tokens to access Outlook by compromising an engineer’s corporate account. This enabled the adversary to access a debugging environment that co…THEHACKERNEWS.COM
7 SepMinneapolis School District Says Data Breach Affected More Than 100,000 PeopleIn its notification letter, the school district said it would have informed victims earlier, but it needed time for a “comprehensive review” to determine “whether sensitive information was present” in the leak.THERECORD.MEDIA
7 SepUkraine's CERT Thwarts APT28's Cyberattack on Critical Energy InfrastructureThe Computer Emergency Response Team of Ukraine (CERT-UA) on Tuesday said it thwarted a cyber attack against an unnamed critical energy infrastructure facility in the country.THEHACKERNEWS.COM
7 SepCoffee Meets Bagel Says Recent Outage Caused by Destructive CyberattackAt this time, Coffee Meets Bagel has not confirmed if the attack was ransomware that encrypted data, effectively making it unusable, or if the threat actors purposely deleted data to bring down the service.BLEEPINGCOMPUTER.COM
7 SepAvoidable Digital Certificate Issues Fuel Data BreachesAmong organizations that have suffered data breaches 58% were caused by issues related to digital certificates, according to a report by AppViewX and Forrester Consulting.HELPNETSECURITY.COM
7 SepAustralian Official Slams Firms for Data Breach Reporting DelaysIn the first half of 2023, OAIC received reports of breaches within 30 days after they occurred from 74% of organizations, and just 5% of organizations took longer than four months to report breaches.BANKINFOSECURITY.COM
7 SepUS and UK sanction 11 TrickBot and Conti cybercrime gang membersThe USA and the United Kingdom have sanctioned eleven Russian nationals associated with the TrickBot and Conti ransomware cybercrime operations. [...]BLEEPINGCOMPUTER.COM
7 SepJohnson & Johnson discloses IBM data breach impacting patientsJohnson & Johnson Health Care Systems ("Janssen") has informed its CarePath customers that their sensitive information has been compromised in a third-party data breach involving IBM. [...]BLEEPINGCOMPUTER.COM
7 SepJust Kids Dental Says Nearly 130,000 People Affected by CyberattackAcadia Health LLC, which does business as Just Kids Dental, in a breach report submitted on September 1 to Maine's attorney general office said the practice's computer systems and network were attacked by a malicious actor on August 2.HEALTHCAREINFOSECURITY.COM
7 SepTraderie, a marketplace for in-game items, alerts users to data breachIn-game trading marketplace Traderie has alerted users to a data breach impacting their personal information, TechCrunch has learned. Tradierie, owned by U.S.-based company Akrew, is a website that allows users to trade and sell in-game items from titles including Roblox, Rocket …TECHCRUNCH.COM
7 SepUpdate: University of Michigan Requires Password Resets After CyberattackOn Tuesday, the university urged staff and students to reset their account passwords after a recent cyberattack. Emails sent by the university's CISO and CIO to community members seen by BleepingComputer ask for password changes by September 12.BLEEPINGCOMPUTER.COM
7 SepDunghill Leak Ransomware Gang Claims Credit for Sabre Data BreachTravel booking giant Sabre said it was investigating claims of a cyberattack after a tranche of files purportedly stolen from the company appeared on an extortion group’s leak site.TECHCRUNCH.COM
7 SepMicrosoft: North Korean hackers target Russian govt, defense orgsMicrosoft says North Korean hacking groups have breached multiple Russian government and defense targets since the start of the year. [...]BLEEPINGCOMPUTER.COM
7 SepUS, UK Sanction 11 Russian Cybercriminals Tied to TrickBotUS Prosecutors Unseal Charges Against TrickBot and Conti Ransomware Operators The United States and Great Britain imposed sanctions against nearly a dozen Russian members of the malware gang behind the TrickBot ransomware dropper while U.S. federal prosecutors unsealed criminal i…DATABREACHTODAY.CO.UK
7 SepBreach Roundup: Swedish Insurer Fined $3M for GDPR BreachAlso, Google Fitbit Faces Privacy Complaints From Schrems This week, the Swedish DPA fined an insurer $3 million for violating GDPR, a DDoS attack disrupted a German financial agency website, Google Fitbit faced privacy complaints from Schrems, Ragnar Locker published hacked hosp…DATABREACHTODAY.CO.UK
7 SepExperts Probe AI Risks Around Malicious Use, China InfluenceSenate Hearing Examines Misuse of Advanced AI Systems, Risks With Chinese Nationals The rise of artificial intelligence makes it easier for adversaries to harm the U.S. and introduces new risks around malicious insiders with loyalties to China, experts say during a Senate hearing…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 24[−]
7 SepISC Stormcast For Thursday, September 7th, 2023 https://isc.sans.edu/podcastdetail/8648, (Thu, Sep 7th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
7 SepCybersecurity pros battle discontent amid skills shortageThe cybersecurity skills crisis continues in a multi-year freefall that has impacted 71% of organizations and left two-thirds of cybersecurity professionals stating that the job has become more difficult over the past two years—while 60% of organizations continue to deflect respo…HELPNETSECURITY.COM
7 SepHow cybercriminals use look-alike domains to impersonate brandsCybercriminals create hundreds of thousands of counterfeit domains that mimic well-known brands for financial gain. These fake domains serve multiple malicious purposes, such as sending phishing emails, hosting fraudulent websites, rerouting web traffic, and distributing malware.…HELPNETSECURITY.COM
7 Sep3 ways to strike the right balance with generative AITo find the sweet spot where innovation doesn’t mean sacrificing your security posture, organizations should consider the following three best practices when leveraging AI. Implement role-based access control In the context of generative AI, having properly defined user roles to …HELPNETSECURITY.COM
7 SepAn introduction to ISO 27001 with Edgar Reinke - 42 minutessubmitted by ashar to security_cpe 1 points | 0 comments https://www.damovo.com/en/cybersecurity-web-session-series?wvideo=5iwm2c5y45 An introduction to ISO 27001 with Edgar Reinke In today’s increasingly digital world, the need for information security has never been greater. An…DAMOVO.COM
7 SepISO 27001:2022 changes in new version & its linkage to ISO 27022 – Webinar by SGS MidEastsubmitted by ashar to security_cpe 2 points | 0 comments https://youtu.be/y-IUbCsjbMU?si=lhTtRZ_04bCUqf9Q ISO 27001:2022 has key changes to the 2013 edition. Watch our webinar to learn more about the changes, details of ISO 27001 controls and the transition process, as well as ou…YOUTU.BE
7 SepWhat’s in a NoName? Researchers See a Lone-Wolf DDoS GroupThe Russian hacker group called NoName057(16) is carrying out regular distributed denial-of-service (DDoS) attacks on European financial institutions, government websites, and transportation services.THERECORD.MEDIA
7 SepHackers Use Weaponized LNK Files to Deploy RedEyes MalwareAhnLab Security Emergency Response Center (ASEC) has issued a warning about a significant security threat involving the distribution of malicious LNK files. This threat, known as RedEyes (ScarCruft), has transitioned from CHM format to LNK format, posing new challenges for cybers…GBHACKERS.COM
7 SepChinese Hack of Microsoft Consumer Key Stemmed From its Engineer’s Corporate AccountStorm-0558, a threat actor based in China, has recently gained access to a Microsoft account consumer key. This has allowed them to infiltrate and compromise 25 organizations, including those within government agencies. Since May 15, 2023, they have been using fake tokens to acce…GBHACKERS.COM
7 SepTenable to Acquire Cloud Security Firm Ermetic for $240 MillionTenable is set to acquire cloud security firm Ermetic for $240 million as it looks to expand the capabilities of its exposure management platform. The post Tenable to Acquire Cloud Security Firm Ermetic for $240 Million appeared first on SecurityWeek .SECURITYWEEK.COM
7 SepWhy consumer drones represent a special cybersecurity riskCybersecurity staff at an East Coast financial services company last summer detected unusual activity on its internal Atlassian Confluence page originating inside the company’s network. The MAC address used locally belonged to an employee known to be currently using the sam…SECURITYINTELLIGENCE.COM
7 SepChinese Hacker Steals Microsoft Signing Key, Spies on US Governmentsubmitted by throws_lemy to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/chinese-hacker-steals-microsoft/INFOSECURITY-MAGAZINE.COM
7 SepTenable to Buy Startup Ermetic for $265M to Safeguard Clouds2nd-Largest Pure-Play Cyber M&A Transaction of 2023 Unites Identity, Cloud Security Tenable will purchase a cloud security startup founded by the longtime leader of Secdo to help security teams make efficient and accurate remediation decisions. The proposed buy of Ermetic wil…DATABREACHTODAY.CO.UK
7 SepSee Tickets Alerts 300,000 Customers After Another Web Skimmer AttackSee Tickets is informing 300,000 individuals that their payment card information was stolen in a new web skimmer attack. The post See Tickets Alerts 300,000 Customers After Another Web Skimmer Attack appeared first on SecurityWeek .SECURITYWEEK.COM
7 Sep‘Atomic macOS Stealer’ Malware Delivered via Malvertising CampaignA malware named Atomic macOS Stealer (AMOS) has been delivered to users via a malvertising campaign. The post ‘Atomic macOS Stealer’ Malware Delivered via Malvertising Campaign appeared first on SecurityWeek .SECURITYWEEK.COM
7 SepThe Team8 Foundry Method for Selecting Investable StartupsTeam8, a VC organization with added sauce, queried more than 130 CISOs from its own ‘CISO Village’ to discover the concerns of existing cybersecurity practitioners, and the technologies they are seeking for the future. The post The Team8 Foundry Method for Selecting Investable St…SECURITYWEEK.COM
7 SepCryptohack Roundup: Tornado Cash, Privacy PoolsAlso: Web3's August Losses, Stake, Binance This week's roundup includes an update on the Tornado Cash case, a proposal for a law-abiding crypto mixer, August hack numbers, Stake's resumption of operations, Binance's delisting of privacy coins in Belgium and a court order against …DATABREACHTODAY.CO.UK
7 SepWealthy Russian With Kremlin Ties Gets 9 Years in Prison for Hacking and Insider Trading SchemeVladislav Klyushin was sentenced to nine years in prison for his role in a nearly $100M stock market cheating scheme that relied on information stolen by hacking. The post Wealthy Russian With Kremlin Ties Gets 9 Years in Prison for Hacking and Insider Trading Scheme appeared fir…SECURITYWEEK.COM
7 SepBoot Unguarded: x86 Trust Anchor Downfalls to The Leaked OEM Internal Tools and Signing Keyssubmitted by L4s to secops 1 points | 0 comments https://hardenedlinux.org/blog/2023-09-07-boot-unguarded-x86-trust-anchor-downfalls-to-the-leaked-oem-internal-tools-and-signing-keys/ Boot Unguarded: x86 Trust Anchor Downfalls to The Leaked OEM Internal Tools and Signing Keys::un…HARDENEDLINUX.ORG
7 SepTrail of Errors Led to Chinese Hack of Microsoft Cloud EmailCrash Dump Snapshot Included Active Signing Key Chinese hackers were able to access the email accounts of senior U.S. officials after Microsoft included an active digital signing key in a snapshot of data taken to analyze a crash of its consumer signing system in April 2021. Incl…DATABREACHTODAY.CO.UK
7 SepCloud storage security: What’s new in the threat matrixWe’re announcing the release of a second version of our threat matrix for storage services, a structured tool that assists in identifying and analyzing potential security threats on data stored in cloud storage services. The post Cloud storage security: What’s new in the th…MICROSOFT.COM
7 SepNextWave Cloud Service Provider Path — Breakaway 1=5Our Cloud Service Provider business has grown exponentially as customers increasingly use cloud marketplaces to buy, manage and deploy critical solutions. The post NextWave Cloud Service Provider Path — Breakaway 1=5 appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
🌐 CYBER THREAT LANDSCAPE 6[−]
7 SepThe State of the Virtual CISO Report: MSP/MSSP Security Strategies for 2024By the end of 2024, the number of MSPs and MSSPs offering vCISO services is expected to grow by almost 5 fold, as can be seen in figure 1. This incredible surge reflects the growing business demand for specialized cybersecurity expertise and the lucrative opportunities for MSPs a…THEHACKERNEWS.COM
7 SepThousands of dollars stolen from Texas ATMs using Raspberry PiA Texas court has heard how last month a gang of men used a Raspberry Pi device to steal thousands of dollars from ATMs. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
7 SepMac Users Beware: Malvertising Campaign Spreads Atomic Stealer macOS MalwareA new malvertising campaign has been observed distributing an updated version of a macOS stealer malware called Atomic Stealer (or AMOS), indicating that it’s being actively maintained by its author. An off-the-shelf Golang malware available for $1,000 per month, Atomic Stealer f…THEHACKERNEWS.COM
7 SepMac Users Targeted in New Malvertising Campaign Delivering Atomic StealerAttackers are using phishing sites and search engine ads to trick victims into downloading the malware, highlighting the importance of verifying the authenticity of downloaded programs.MALWAREBYTES.COM
7 Sep&#xa&#x3b;Fleezeware/Scareware Advertised via Facebook Tags&#x3b; Available in Apple App Store, (Thu, Sep 7th)Scareware, software advertised via fake malware messages, or Fleezeware, software providing questionable subscription services, keeps ending up in Apple&#;x26;#;39;s app store, bypassing various controls Apple uses to restrict software available to its…ISC.SANS.EDU
7 SepWhy Connected Devices Are Such a Risk to Outpatient CareThe number of connected devices used in healthcare is growing as manufacturers constantly introduce new types of IoT equipment. The ever-evolving threat landscape is making it harder for many entities, particularly outpatient care providers, to keep up, said Justin Foster, CTO of…DATABREACHTODAY.CO.UK
📡 INFOSEC NEWS 20[−]
7 SepHow Zero Trust and XDR Work TogetherAs the Zero Trust approach gains momentum, more organizations are looking to apply it to their security strategy. Learn how XDR and Zero Trust work together to enhance your security posture.TRENDMICRO.COM
7 SepExperts Uncover Underground Phishing “Empire” W3LL Targeting 56,000 Microsoft 365 AccountsSecurity researchers have uncovered a new covert phishing operation selling sophisticated tools used to target an estimated 56,000 Microsoft 365 accounts in just a 10-month period.INFOSECURITY-MAGAZINE.COM
7 SepRussia Undertakes Disinformation Campaign Across AfricaRussia has launched sympathetic media outlets, courted anti-French public support, and created fake civil society organizations in turbulent African states, according to an investigation by Microsoft.DARKREADING.COM
7 SepUK Boards Are Growing Less Concerned About Cyber-RiskFar fewer board members of UK companies are worried about cyber risk than their global peers, according to the second annual Cybersecurity: The 2023 Board Perspective Report from Proofpoint.INFOSECURITY-MAGAZINE.COM
7 SepSystem time jumps in Windows: possible cause | Kaspersky official blogWhy Windows’ system time might suddenly jump, what Secure Time Seeding has to do with it, and how to fix it.KASPERSKY.COM
7 SepRogers silent as Canadian customers report internet outagesRogers customers, primarily those located in Downtown Toronto and parts of Ontario, are reporting outages this week affecting their internet service. Some report being without internet for days, while others are experiencing intermittent disruptions and slowdowns when using their…BLEEPINGCOMPUTER.COM
7 SepBattery Ventures Buys GrammaTech's Application Security UnitGrammaTech has separated its security software products and cyber research services divisions, and venture capital firm Battery Ventures has acquired the former and renamed it CodeSecure.BANKINFOSECURITY.COM
7 SepActiveFence snaps up Spectrum Labs, last valued at $137M, to help fight the harmful content creepMisinformation, harassment, grooming and other illegal activity continue to be major issues in the worlds of content moderation and online safety, balancing big problems and illicit activity against equally important, and sometimes conflicting, needs for privacy, data protection …TECHCRUNCH.COM
7 SepThe Initial Access Broker Economy: A Deep Dive into Dark Web Hacking ForumsInitial access brokers (IAB) are cybercriminals that focus on gaining access to corporate environments, which they then auction off to other hackers. Learn more from Flare about the IAB economy and how it affects your business. [...]BLEEPINGCOMPUTER.COM
7 SepTenable to Acquire Cloud Security Firm Ermetic for $240 MillionExposure management solutions provider Tenable announced on Thursday that it has entered into a definitive agreement to acquire Israeli cloud security startup Ermetic for roughly $240 million in cash and $25 million in restricted stock and RSUs.SECURITYWEEK.COM
7 SepUS, UK authorities sanction more alleged Trickbot gang membersU.S and U.K. authorities have sanctioned more alleged members of the notorious Russia-based Trickbot cybercrime gang. The U.S. Treasury and U.K.’s Foreign Office announced on Thursday fresh sanctions against 11 individuals “involved in management and procurement for the Trickbot …TECHCRUNCH.COM
7 SepDebugging Windows Isolated User Mode (IUM) ProcessesIn this blog post we discuss how to debug Windows' Isolated User Mode (IUM) processes, also known as Trustlets , using the virtual TPM of Microsoft Hyper-V as our target.QUARKSLAB.COM
7 SepWindows cryptomining attacks target graphic designer's high-powered GPUsCybercriminals are leveraging a legitimate Windows tool called 'Advanced Installer' to infect the computers of graphic designers with cryptocurrency miners. [...]BLEEPINGCOMPUTER.COM
7 SepThe perils of the platforms of paranoiaNextdoor has become ground zero for the spread of many rumors, hoaxes and unfounded allegations.TECHCRUNCH.COM
7 SepGoogle Looker Studio abused in cryptocurrency phishing attacksCybercriminals are abusing Google Looker Studio to create counterfeit cryptocurrency phishing websites that phish digital asset holders, leading to account takeovers and financial losses. [...]BLEEPINGCOMPUTER.COM
7 SepGoogle is enabling Chrome real-time phishing protection for everyoneGoogle announced today that it is deprecating the Google Chrome Safe Browsing feature and moving everyone to its Enhanced Safe Browsing feature in the coming weeks, bringing real-time phishing protection to all users while browsing the web. [...]BLEEPINGCOMPUTER.COM
7 SepBuilding a Use Policy For Generative AIThe rapid adoption of Generative AI holds great promise for innovations that create new opportunities but it also brings risks.SOPHOS.COM
7 SepMicrosoft Paint in Windows 11 gets a background removal toolMicrosoft is rolling out a new version of the Paint application on Windows 11 Insider builds that can remove the background from any picture with the click of a button. [...]BLEEPINGCOMPUTER.COM