matlock.ca // THREAT INTELLIGENCE

127Articles

10Categories

2023-09-21Date

🚨

Key findings from the CISA 2022 Top Routinely Exploited Vulnerabilities reportOne of the best ways to mitigate risk and insulate your organization from malicious actors is to understand where they're focusing their time and attention as well as leveraging recommended practices to avoid becoming a victim. The recently published CISA 2022 Top Routinely Explo…

KEVCSOONLINE.COM — 21 Sep 2023

🚨

CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-41179 Trend Micro Apex One and Worry-Free Business Security Remote Code Execution Vulnerability These types of vulnerabilities are frequent att…

KEVCISA.GOV — Thu, 21 Sep 23 1

🐛

Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT

UNIT42.PALOALTONETWORKS.COM — 21 Sep 2023

🐛

Trend Micro Zero-day Vulnerability Let Attackers Run Arbitrary Code

GBHACKERS.COM — 21 Sep 2023

🐛

Gitlab fixes bug that exploited internal policies to trigger hostile pipelines

CSOONLINE.COM — 21 Sep 2023

🐛

ISC Releases Security Advisories for BIND 9

CISA.GOV — Thu, 21 Sep 23 1

🐛

Apple Patches Three New 0-Day Vulnerabilities Affecting iOS/iPadOS/watchOS/macOS, (Thu, Sep 21st)

ISC.SANS.EDU — 21 Sep 2023

⚠️

MGM Resorts Computers Back Up After 10 Days as Analysts Eye Effects of Casino Cyberattacks

SECURITYWEEK.COM — 21 Sep 2023

⚠️

Beware: Fake Exploit for WinRAR Vulnerability on GitHub Infects Users with VenomRAT

THEHACKERNEWS.COM — 21 Sep 2023

⚠️

AMBERSQUID Cryptojacking Operation: Unusual AWS Services Under Attack

CYWARE.COM — 21 Sep 2023

⚠️

Ukrainian Hacker Suspected to be Behind "Free Download Manager" Malware Attack

THEHACKERNEWS.COM — 21 Sep 2023

⚠️

LLM Guard: Open-Source Toolkit for Securing Large Language Models

HELPNETSECURITY.COM — 21 Sep 2023

⚠️

The Rise of the Malicious App

THEHACKERNEWS.COM — 21 Sep 2023

⚠️

New Revelations from the Snowden Documents

SCHNEIER.COM — 2023-09-21

⚠️

Cybercriminals Exploit the Moroccan Tragedy in New Scam Campaign

TRENDMICRO.COM — 21 Sep 2023

⚠️

Ncurses & Bad Things, LVFS is NOT a Backdoor, Physical Proximity, & Oh, Fortinet! - PSW #799

YOUTUBE.COM — 2023-09-21

⚠️

Drupal Releases Security Advisory to Address Vulnerability in Drupal Core

CISA.GOV — Thu, 21 Sep 23 1

⚠️

Ukrainian Hacker Suspected to be Behind "Free Download Manager" Malware Attack

THEHACKERNEWS.COM — 21 Sep 2023

⚠️

MOVEit Transfer SQL Injection Let the Attacker Gain Unauthorized Access to the Database

GBHACKERS.COM — 21 Sep 2023

⚠️

Proactive OT security requires visibility + prevention

CSOONLINE.COM — 21 Sep 2023

⚠️

CISA Releases Six Industrial Control Systems Advisories

CISA.GOV — Thu, 21 Sep 23 1

⚠️

China accuses US of cyberattacks, spying on Huawei

THEREGISTER.COM — 21 Sep 2023

⚠️

Balancing Budget and System Security: Approaches to Risk Tolerance

HELPNETSECURITY.COM — 21 Sep 2023

⚠️

Atlassian Releases September Security Bulletin

CISA.GOV — Thu, 21 Sep 23 1

⚠️

Navigating the Digital Frontier in Cybersecurity Awareness Month 2023

SECURITYWEEK.COM — 21 Sep 2023

⚠️

Scaling Rust Adoption Through Training

SECURITY.GOOGLEBLOG.COM — 2023-09-21

⚠️

China’s offensive cyber operations support “soft power” agenda in Africa

CSOONLINE.COM — 21 Sep 2023

⚠️

Apple emergency updates fix 3 new zero-days exploited in attacks

BLEEPINGCOMPUTER.COM — 21 Sep 2023

⚠️

Unmasking ransomware threat clusters: Why it matters to defenders

CSOONLINE.COM — 21 Sep 2023

⚠️

Detection Engineering and SOC Scalability Challenges (Part 2)

MEDIUM.COM — 21 Sep 2023

⚠️

2024 Security Planning with Forrester - Merritt Maxim - ESW #332

YOUTUBE.COM — 2023-09-21

⚠️

A Vulnerability in Drupal Could Allow for Privilege Escalation

CISECURITY.ORG — 21 Sep 2023

⚠️

Meredith Whittaker reaffirms that Signal would leave UK if forced by privacy bill

TECHCRUNCH.COM — 21 Sep 2023

⚠️

News alert: MxD roundtable with White House officials highlights cybersecurity workforce needs

LASTWATCHDOG.COM — 21 Sep 2023

📋

Atlassian Security Updates Patch High-Severity Vulnerabilities

SECURITYWEEK.COM — 21 Sep 2023

📢

White House Grapples With Harmonizing Thicket of Cybersecurity Rules

CYBERSCOOP.COM — 21 Sep 2023

📢

CIO Accuses Penn State of Faking Cybersecurity Compliance

THEREGISTER.COM — 21 Sep 2023

📢

China Accuses U.S. of Decade-Long Cyber Espionage Campaign Against Huawei Servers

THEHACKERNEWS.COM — 21 Sep 2023

📢

Critical Infrastructure Organizations Warned of Snatch Ransomware Attacks

SECURITYWEEK.COM — 21 Sep 2023

📢

OnDemand: New EMEA FinServ Compliance: Digital Operational Resilience Act (DORA)

DATABREACHTODAY.CO.UK — 2023-09-21

📢

China Accuses U.S. of Decade-Long Cyber Espionage Campaign Against Huawei Servers

THEHACKERNEWS.COM — 21 Sep 2023

📢

Snatch ransomware – what you need to know

TRIPWIRE.COM — 21 Sep 2023

📢

Singapore Police Warn of New Scam Campaign Spreading Android Malware

CHANNELNEWSASIA.COM — 21 Sep 2023

📢

CISA Publishes New Cybersecurity Career Awareness Challenges

CISA.GOV — Thu, 21 Sep 23 1

📢

[Control systems] Delta Electronics security advisory (AV23-573)

CYBER.GC.CA — 2023-09-21

📢

[Control systems] Siemens security advisory (AV23-572)

CYBER.GC.CA — 2023-09-21

📢

[Control systems] Siemens security advisory (AV23-571)

CYBER.GC.CA — 2023-09-21

📢

[Control systems] Rockwell Automation security advisory (AV23-570)

CYBER.GC.CA — 2023-09-21

📢

Cryptohack Roundup: Private Key Compromise Led to CoinEx Hit

DATABREACHTODAY.CO.UK — 2023-09-21

📢

Feds Warn About Snatch Ransomware

DATABREACHTODAY.CO.UK — 2023-09-21

🔥

Network Device Supply Chain Security - Nate Warfield - BTS #13

YOUTUBE.COM — 2023-09-21

🔥

T-Mobile App Glitch Exposes Other User’s Sensitive Data

GBHACKERS.COM — 21 Sep 2023

🔥

Update: Transunion Denies it Was Hacked, Links Leaked Data to Third Party

BLEEPINGCOMPUTER.COM — 21 Sep 2023

🔥

Cyber Group 'Gold Melody' Selling Compromised Access to Ransomware Attackers

THEHACKERNEWS.COM — 21 Sep 2023

🔥

Critical Infrastructure Organizations Warned of Snatch Ransomware Attacks

SECURITYWEEK.COM — 21 Sep 2023

🔥

Most organizations want security vendor consolidation

SECURITYINTELLIGENCE.COM — 21 Sep 2023

🔥

International Criminal Court Reveals Security Breach

INFOSECURITY-MAGAZINE.COM — 21 Sep 2023

🔥

'Gold Melody' Group Sells Access to Compromised Networks to Ransomware Attackers

SECUREWORKS.COM — 21 Sep 2023

🔥

DHS Council Seeks to Simplify Cyber Incident Reporting Rules

CYBERSCOOP.COM — 21 Sep 2023

🔥

GUEST ESSAY: Caring criminals — why some ransomware gangs now avoid targeting hospitals

LASTWATCHDOG.COM — 21 Sep 2023

🔥

Pizza Hut Australia warns 193,000 customers of a data breach

BLEEPINGCOMPUTER.COM — 21 Sep 2023

🔥

Vanishing Act: The Secret Weapon Cybercriminals Use in Your Inbox

KNOWBE4.COM — 21 Sep 2023

🔥

Donald Trump Jr’s hacked Twitter account announces his father has died

GRAHAMCLULEY.COM — 21 Sep 2023

🔥

International Criminal Court hacked amid Russia probe

THEREGISTER.COM — 21 Sep 2023

🔥

MGM Resorts Operations Resume 10 Days After Cyberattack

PACKETSTORMSECURITY.COM — 21 Sep 2023

🔥

Feds Issue Snatch Ransomware Warning

PACKETSTORMSECURITY.COM — 21 Sep 2023

🔥

TransUnion Denies Breach After Hacker Publishes Allegedly Stolen Data

SECURITYWEEK.COM — 21 Sep 2023

🔥

ApexSMS - 23,246,481 breached accounts

HAVEIBEENPWNED.COM — 21 Sep 2023

🔥

New SEC Rules Add Challenges in Uncertain Cyber Insurance Market

KNOWBE4.COM — 21 Sep 2023

🔥

Breach Roundup: Effects of ISP Ransomware Attack in Colombia

DATABREACHTODAY.CO.UK — 2023-09-21

🔥

Chinese Spies Infected Dozens of Networks With Thumb Drive Malware

KNOWBE4.COM — 21 Sep 2023

🔥

Making tabletop exercises better! - Ryan Fried - ESW #332

YOUTUBE.COM — 2023-09-21

🔥

Ohio Community College Data Theft Breach Affects Nearly 300K

DATABREACHTODAY.CO.UK — 2023-09-21

🔥

Cyberattack on Kansas town affects email, phone, payment systems

THERECORD.MEDIA — 21 Sep 2023

🕵️

AI Attacks and LLM Security Matters - Nathan Hamiel - PSW #799

YOUTUBE.COM — 2023-09-21

🕵️

ISC Stormcast For Thursday, September 21st, 2023 https://isc.sans.edu/podcastdetail/8668, (Thu, Sep 21st)

ISC.SANS.EDU — 21 Sep 2023

🕵️

Omron Patches PLC, Engineering Software Flaws Discovered During ICS Malware Analysis

SECURITYWEEK.COM — 21 Sep 2023

🕵️

System Admin Pleads Guilty for Selling Pirated Business Phone Software Licenses

GBHACKERS.COM — 21 Sep 2023

🕵️

Car Cybersecurity Study Shows Drop in Critical Vulnerabilities Over Past Decade

SECURITYWEEK.COM — 21 Sep 2023

🕵️

UK’s New Online Safety Law Adds to Crackdown on Big Tech Companies

SECURITYWEEK.COM — 21 Sep 2023

🕵️

Is QakBot Malware Officially Dead?

GBHACKERS.COM — 21 Sep 2023

🕵️

Security Fest 2022 - Gothenburg, Sweden - 12 hours of video

YOUTUBE.COM — 21 Sep 2023

🕵️

SecurityFest 2023 - Gothenburg, Sweden - 2 days, 15 hours of talks

YOUTUBE.COM — 21 Sep 2023

🕵️

LUCR-3 Attacking Fortune 2000 Companies Using Victims’ Own Tools & Apps

GBHACKERS.COM — 21 Sep 2023

🕵️

Cisco to Bring XDR, SIEM Together With $28B Splunk Purchase

DATABREACHTODAY.CO.UK — 2023-09-21

🕵️

Encrypted email provider Proton has built its own CAPTCHA service

TECHCRUNCH.COM — 21 Sep 2023

🕵️

Every Network Is Now an OT Network. Can Your Security Keep Up?

SECURITYWEEK.COM — 21 Sep 2023

🕵️

Legit Security Raises $40 Million in Series B Financing

SECURITYWEEK.COM — 21 Sep 2023

🕵️

Cisco to Acquire Splunk for $28 Billion

SECURITYWEEK.COM — 21 Sep 2023

🕵️

New ways to inject system CA certificates in Android 14

HTTPTOOLKIT.COM — 21 Sep 2023

🕵️

‘Sandman’ hackers backdoor telcos with new LuaDream malware

BLEEPINGCOMPUTER.COM — 21 Sep 2023

🕵️

New ‘Sandman’ APT Group Hitting Telcos With Rare LuaJIT Malware

SECURITYWEEK.COM — 21 Sep 2023

🕵️

Dutch Police Warns Users of Credentials Leak Site

DATABREACHTODAY.CO.UK — 2023-09-21

🕵️

Massive valuations and acquisitions - Cato, Cisco, Splunk & SentinelOne! - ESW #332

YOUTUBE.COM — 2023-09-21

🕵️

Why Palo Alto Networks Was Named Google Cloud Partner of the Year

PALOALTONETWORKS.COM — 21 Sep 2023

🕵️

New Microsoft security tools to protect families and businesses

MICROSOFT.COM — 21 Sep 2023

🌐

Researchers Witness 600X Increase in P2Pinfect Botnet Traffic

CADOSECURITY.COM — 21 Sep 2023

🌐

Omron Patches PLC, Engineering Software Flaws Discovered During ICS Malware Analysis

SECURITYWEEK.COM — 21 Sep 2023

🌐

Researchers Raise Red Flag on P2PInfect Malware with 600x Activity Surge

THEHACKERNEWS.COM — 21 Sep 2023

🌐

GitHub launches passkey support into general availability

TECHCRUNCH.COM — 21 Sep 2023

🎙️

Smashing Security podcast #340: Heated seats, car privacy, and Graham’s porn video

GRAHAMCLULEY.COM — 21 Sep 2023

🎙️

Reversing Windows Container, episode I: Silo

QUARKSLAB.COM — 2023-09-21

📡

Another $40m Dispersed to Western Union Fraud Victims

INFOSECURITY-MAGAZINE.COM — 21 Sep 2023

📡

Australia to Build ‘Six Cyber Shields’ to Defend Nation

THEREGISTER.COM — 21 Sep 2023

📡

T-Mobile App Glitch Let Users See Other People’s Account Info

BLEEPINGCOMPUTER.COM — 21 Sep 2023

📡

Microsoft SAS misconfiguration causes 38TB data leak

CSHUB.COM — 21 Sep 2023

📡

UK Passes the Online Safety Bill — And No, It Doesn’t Ban End-to-End Encryption

THERECORD.MEDIA — 21 Sep 2023

📡

What is the Fediverse, and how does it work? | Kaspersky official blog

KASPERSKY.COM — 21 Sep 2023

📡

Solarium Commission Wants Action on Stalled Cybersecurity Recommendations

CYBERSCOOP.COM — 21 Sep 2023

📡

Cisco to acquire Splunk in $28B mega deal

TECHCRUNCH.COM — 21 Sep 2023

📡

Companies Still Don’t Know How to Handle Generative AI Risks

HELPNETSECURITY.COM — 21 Sep 2023

📡

Cyber Experts Urge House Committee to Avoid Federal Shutdown

BANKINFOSECURITY.COM — 21 Sep 2023

📡

Never Use Your Master Password as a Password on Other Accounts

HELPNETSECURITY.COM — 21 Sep 2023

📡

Poland Investigates OpenAI Over Privacy Concerns

PACKETSTORMSECURITY.COM — 21 Sep 2023

📡

Cisco Beefs Up Cybersecurity Play With $28 Billion Splunk Deal

PACKETSTORMSECURITY.COM — 21 Sep 2023

📡

India's Biggest Tech Centers Named As Cyber Crime Hotspots

PACKETSTORMSECURITY.COM — 21 Sep 2023

📡

Canada Blames Border Airport Check-in and Electronic Gate Outages on DDoS Attack

THERECORD.MEDIA — 21 Sep 2023

📡

Cisco Acquiring Cybersecurity Company Splunk in Cash Deal Worth $28 Billion

CNBC.COM — 21 Sep 2023

📡

Microsoft Copilot rolls out with Windows 11 22H2 update next week

BLEEPINGCOMPUTER.COM — 21 Sep 2023

📡

Decoding Turla: Trend Micro's MITRE Performance

TRENDMICRO.COM — 21 Sep 2023

📡

GitHub passkeys generally available for passwordless sign-ins

BLEEPINGCOMPUTER.COM — 21 Sep 2023

📡

Kindo aims to take the security stress out of AI workflows

TECHCRUNCH.COM — 21 Sep 2023

📡

Journey to the Cloud: Navigating the Transformation - Part 3

DATABREACHTODAY.CO.UK — 2023-09-21

📡

Canada Confirms DDoS Attack Disrupted Airport Arrival Kiosks

DATABREACHTODAY.CO.UK — 2023-09-21

📡

Forecasts of SIEM Death Premature - Just Ask Cisco, Splunk

DATABREACHTODAY.CO.UK — 2023-09-21

📡

OilRig’s Outer Space and Juicy Mix: Same ol’ rig, new drill pipes

WELIVESECURITY.COM — 21 Sep 2023

📡

Zero Trust Adoption: Tips to Win Over Leadership

TRENDMICRO.COM — 21 Sep 2023