🚨 CISA KEV 2[−]
10 Oct KEVCISA Adds Five Known Vulnerabilities to CatalogCISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation: CVE-2023-21608 Adobe Acrobat and Reader Use-After-Free Vulnerability CVE-2023-20109 Cisco IOS and IOS XE Group Encrypted Transport VPN Out-of-Bounds …CISA.GOV
10 Oct KEV#StopRansomware: AvosLocker Ransomware (Update)SUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically …CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 119[−]
10 OctCredential Harvesting Campaign Targets Unpatched NetScaler InstancesThe vulnerability, known as CVE-2023-3519, was disclosed in July but had been exploited since June. By mid-August, threat actors had backdoored around 2,000 NetScaler instances.SECURITYWEEK.COM
10 Octlibcue Library Flaw Opens GNOME Linux Systems Vulnerable to RCE AttacksThe vulnerability, tracked as CVE-2023-43641, allows for remote code execution (RCE) on affected hosts. The issue is related to memory corruption in libcue and affects versions 2.2.1 and earlier.THEHACKERNEWS.COM
10 Octlibcue Library Flaw Opens GNOME Linux Systems Vulnerable to RCE AttacksA new security flaw has been disclosed in the libcue library impacting GNOME Linux systems that could be exploited to achieve remote code execution (RCE) on affected hosts. Tracked as CVE-2023-43641 (CVSS score: 8.8), the issue is described as a case of memory corruption in libcu…THEHACKERNEWS.COM
10 OctCitrix Devices Under Attack: NetScaler Flaw Exploited to Capture User CredentialsA recently disclosed critical flaw in Citrix NetScaler ADC and Gateway devices is being exploited by threat actors to conduct a credential harvesting campaign. IBM X-Force, which uncovered the activity last month, said adversaries exploited "CVE-2023-3519 to attack unpatched NetS…THEHACKERNEWS.COM
10 OctD-Link Wi-Fi Range Extender Vulnerability Let Attackers Inject Remote CodeA command injection vulnerability has been discovered in the D-Link DAP-X1860 range extender, allowing threat actors to execute remote code on affected devices. The CVE ID for this vulnerability has been given as CVE-2023-45208, and the severity is being analyzed. This vulnerabil…GBHACKERS.COM
10 OctHTTP/2 Rapid Reset Zero-Day Vulnerability Exploited to Launch Record DDoS AttacksAmazon Web Services (AWS), Cloudflare, and Google on Tuesday said they took steps to mitigate record-breaking distributed denial-of-service (DDoS) attacks that relied on a novel technique called HTTP/2 Rapid Reset. The layer 7 attacks were detected in late August 2023, the compan…THEHACKERNEWS.COM
10 OctMicrosoft Response to Distributed Denial of Service (DDoS) Attacks against HTTP/2Summary Summary Beginning in September 2023, Microsoft was notified by industry partners about a newly identified Distributed Denial-of-Service (DDoS) attack technique being used in the wild targeting HTTP/2 protocol. This vulnerability (CVE-2023-44487) impacts any internet expos…MSRC.MICROSOFT.COM
10 OctPreviously Unseen Grayling APT Targets Multiple Organizations in TaiwanGrayling employs a combination of custom malware and publicly available tools like Havoc, Cobalt Strike, and NetSpy to carry out its attacks, using DLL sideloading techniques and exploiting vulnerabilities like CVE-2019-0803.SYMANTEC-ENTERPRISE-BLOGS.SECURITY.COM
10 OctCVE-2023-35349 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36902 Windows Runtime Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-38171 Microsoft QUIC Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36737 Azure Network Watcher VM Agent Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41763 Skype for Business Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41765 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41766 Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41767 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41768 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41769 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41770 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41771 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41772 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41773 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-41774 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36732 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36731 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36730 Microsoft ODBC Driver for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36729 Named Pipe File System Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36728 Microsoft SQL Server Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36726 Windows Internet Key Exchange (IKE) Extension Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36725 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36724 Windows Power Management Service Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36723 Windows Container Manager Service Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36722 Active Directory Domain Services Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36721 Windows Error Reporting Service Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36720 Windows Mixed Reality Developer Tools Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36718 Microsoft Virtual Trusted Platform Module Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36717 Windows Virtual Trusted Platform Module Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36713 Windows Common Log File System Driver Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36712 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36711 Windows Runtime C++ Template Library Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36710 Windows Media Foundation Core Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36709 Microsoft AllJoyn API Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36707 Windows Deployment Services Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36706 Windows Deployment Services Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36704 Windows Setup Files Cleanup Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36703 DHCP Server Service Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36702 Microsoft DirectMusic Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36701 Microsoft Resilient File System (ReFS) Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36698 Windows Kernel Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36697 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36606 Microsoft Message Queuing Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36605 Windows Named Pipe Filesystem Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36603 Windows TCP/IP Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36602 Windows TCP/IP Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36598 Microsoft WDAC ODBC Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36596 Remote Procedure Call Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36594 Windows Graphics Component Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36593 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36592 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36591 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36590 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36589 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36585 Active Template Library Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36584 Windows Mark of the Web Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36583 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36582 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36581 Microsoft Message Queuing Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36579 Microsoft Message Queuing Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36578 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36577 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36576 Windows Kernel Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36575 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36574 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36573 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36572 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36571 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36570 Microsoft Message Queuing Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36569 Microsoft Office Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36568 Microsoft Office Click-To-Run Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36567 Windows Deployment Services Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36564 Windows Search Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36563 Microsoft WordPad Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36561 Azure DevOps Server Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36557 PrintHTML API Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36438 Windows TCP/IP Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36435 Microsoft QUIC Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36434 Windows IIS Server Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36433 Microsoft Dynamics 365 (On-Premises) Information Disclosure VulnerabilityInformation published. This CVE was addressed by updates that were released in September 2023, but the CVE was inadvertently omitted from the September 2023 Security Updates. Microsoft strongly recommends that customers running affected versions of Microsoft Dynamics 365 (on-prem…MSRC.MICROSOFT.COM
10 OctCVE-2023-36431 Microsoft Message Queuing Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36429 Microsoft Dynamics 365 (On-Premises) Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36420 Microsoft ODBC Driver for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36419 Azure HDInsight Apache Oozie Workflow Scheduler Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36417 Microsoft SQL ODBC Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-44487 MITRE: CVE-2023-44487 HTTP/2 Rapid Reset AttackInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-29348 Windows Remote Desktop Gateway (RD Gateway) Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-38166 Layer 2 Tunneling Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-38159 Windows Graphics Component Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36790 Windows RDP Encoder Mirror Driver Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36789 Skype for Business Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36786 Skype for Business Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36785 Microsoft ODBC Driver for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36780 Skype for Business Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36778 Microsoft Exchange Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36776 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36743 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36566 Microsoft Common Data Model SDK Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36565 Microsoft Office Graphics Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36436 Windows MSHTML Platform Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36418 Azure RTOS GUIX Studio Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36416 Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2023, but the CVE was inadvertently omitted from the July 2023 Security Updates. Microsoft strongly recommends that customers running affected versions of Microsoft Dynamics 365 (on-premises) inst…MSRC.MICROSOFT.COM
10 OctCVE-2023-36415 Azure Identity SDK Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCVE-2023-36414 Azure Identity SDK Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 OctCritically Close to Zero(Day): Exploiting Microsoft Kernel Streaming ServiceLast month Microsoft patched a vulnerability in the Microsoft Kernel Streaming Server, a Windows kernel component used in the virtualization and sharing of camera devices. The vulnerability, CVE-2023-36802, allows a local attacker to escalate privileges to SYSTEM. This blog post …SECURITYINTELLIGENCE.COM
10 OctCVE-2023-44487 - HTTP/2 Rapid Reset Attack Impacting F5 NGINX Productssubmitted by L4s to secops 1 points | 0 comments https://www.f5.com/company/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products?amp;utm_source=twitter&sf269548640=1 CVE-2023-44487 - HTTP/2 Rapid Reset Attack Impacting F5 NGINX Products::Update your NGINX configuration …F5.COM
10 Oct KEVHTTP/2 Rapid Reset Vulnerability, CVE-2023-44487Researchers and vendors have disclosed a denial-of-service (DoS) vulnerability in HTTP/2 protocol . The vulnerability ( CVE-2023-44487 ), known as Rapid Reset, has been exploited in the wild in August 2023 through October 2023. CISA recommends organizations that provide HTTP/2 se…CISA.GOV
10 OctBuilt-in weakness in HTTP/2 protocol exploited for massive DDoS attacksOver the past two months attackers have been abusing a feature of the HTTP/2 web communication protocol that makes web application servers, load balancers, and web proxies vulnerable to distributed denial-of-service (DDoS) attacks of unprecedented scale. Google, AWS, Cloudflare, …CSOONLINE.COM
10 OctCitrix Releases Security Updates for Multiple ProductsCitrix has released security updates to address vulnerabilities affecting multiple products. A malicious cyber actor can exploit one of these vulnerabilities take control of an affected system. CISA encourages users and administrators to review the following Citrix security bulle…CISA.GOV
10 OctCVE-2022-41127 Microsoft Dynamics NAV and Microsoft Dynamics 365 Business Central (On Premises) Remote Code Execution VulnerabilityCorrected security updates table. This is an informational change only.MSRC.MICROSOFT.COM
10 OctMicrosoft Response to Distributed Denial of Service (DDoS) Attacks against HTTP/2Summary Beginning in September 2023, Microsoft was notified by industry partners about a newly identified Distributed Denial-of-Service (DDoS) attack technique being used in the wild targeting HTTP/2 protocol. This vulnerability (CVE-2023-44487) impacts any internet exposed HTTP/…MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 40[−]
10 OctCredentials Hard-Coded in Cisco Emergency Location TrackerEmergency Responder Among Several Recent Cisco Product Vulnerability Advisories Cisco has released urgent fixes to a critical vulnerability affecting an emergency communication system used to track callers' location in real time. A developer inadvertently hard-coded credentials i…DATABREACHTODAY.CO.UK
10 OctGoogle Bug Bounty Program Expands to Chrome V8, Google CloudGoogle's research team has launched v8CTF, a capture-the-flag (CTF) challenge focused on its Chrome browser’s V8 JavaScript engine. The competition opened on October 6, 2023, and is accessible to any exploit writers.INFOSECURITY-MAGAZINE.COM
10 OctUpdate: 23andMe Scraping Incident Leaked Data on 1.3 Million Users of Ashkenazi and Chinese Descent23andMe initially denied the legitimacy of the data but later acknowledged that unauthorized access to individual accounts may have occurred, highlighting the vulnerability of customer data even without deep network breaches.THERECORD.MEDIA
10 OctMacOS “DirtyNIB” Vulnerability: Let Attackers Execute Malicious CodeA new zero-day vulnerability has been discovered in Apple’s macOS systems, which allows threat actors to execute code on behalf of a legitimate Apple application. This particular vulnerability was first discovered in macOS Monterey. However, the researcher was able to replicate t…GBHACKERS.COM
10 Oct5 practical recommendations implementing zero trustDespite organizations upping their spend on cybersecurity technology, infrastructure, and services each year, threat actors are still finding ways to slip through the cracks. There are two main reasons for this: One, human error: Unfortunately, many users still don't take securit…CSOONLINE.COM
10 OctThe undeniable benefits of making cyber resiliency the new standardAs a vice president at Symantec from 2000 to 2009, Rob Clyde witnessed repeated attacks on the cybersecurity company's system that processed client requests for software updates. Constantly bombarded with illegitimate queries, the system could nevertheless handle the fraudulent v…CSOONLINE.COM
10 OctNew Magecart Campaign Alters 404 Error Pages to Steal Shoppers' Credit CardsA sophisticated Magecart campaign has been observed manipulating websites' default 404 error page to conceal malicious code in what's been described as the latest evolution of the attacks. The activity, per Akamai, targets Magento and WooCommerce websites, with some of the victim…THEHACKERNEWS.COM
10 OctUpdate: Caesars Entertainment Says Social-Engineering Attack Behind August BreachCaesars Entertainment has confirmed that a social engineering attack on an outsourced IT support vendor led to a data breach, impacting tens of thousands of its customer rewards program members.CYBERSECURITYDIVE.COM
10 OctMirai-based DDoS Attackers Aggressively Adopted New Router ExploitsIn September 2023, FortiGuard Labs’ vigilant team uncovered a significant development in the IZ1H9 Mirai-based DDoS campaign. This campaign, known for its aggressive tactics, had strengthened its arsenal with a formidable array of thirteen exploits, potentially endangering …GBHACKERS.COM
10 OctCobalt Strike 4.9 Released: What’s New!The latest version of Cobalt Strike 4.9 is now available. This release includes improvements to Cobalt Strike’s post-exploitation capabilities, including the ability to export Beacon without a reflective loader, which adds official support for prepend-style URLs, support fo…GBHACKERS.COM
10 OctSource Code of the 2020 Variant of HelloKitty Ransomware Leaked on Cybercrime ForumThe source code for the first version of the HelloKitty ransomware has been leaked on a Russian-speaking cybercrime forum. The threat actor, known as 'kapuchin0', claims to be developing a more powerful encryptor.SECURITYAFFAIRS.COM
10 Oct74% of CEOs Concerned About Their Organization's Ability to Protect Against Cyber Attacks, Despite Seeing Cybersecurity as CriticalAccording to the recent The Cyber-Resilient CEO report released by IT services and consulting agency Accenture , a staggering 74% of CEOs have expressed concerns about their organizations' ability to protect their businesses from cyber attacks. This is despite the fact that 96% o…KNOWBE4.COM
10 OctEconomic challenges tighten CISO compensation: IANS studyThe ongoing economic challenges are severely impacting CISOs, many of whom are struggling to get any salary hikes at all while new job postings for the role are on a decline, according to an IANS study. The IANS study, evaluating data between April 2023 to August 2023, surveyed a…CSOONLINE.COM
10 OctGutsy debuts with data-driven security governance toolGutsy, a startup focusing on security governance tools, is making its debut with its flagship, namesake application, designed to apply process mining to provide data-driven visibility into an organization's teams, tools, and processes and how they work together. Gutsy’s flagship …CSOONLINE.COM
10 OctVeza releases new IGA solution to enhance identity securityIdentity security company Veza has announced the launch of a new identity governance and administration (IGA) solution, Next-Gen IGA. The solution comprises the Veza Access Control Platform and new products for provisioning and deprovisioning, access reviews, access visibility, a…CSOONLINE.COM
10 OctR2R Stomping – New Method to Run the Hidden Code in BinariesYour perceived reality can differ from the .NET code you observe in debuggers like dnSpy, raising questions about its behavior beyond debugging. Enhance .NET app startup and latency by using ReadyToRun (R2R) format for AOT compilation, creating larger binaries with both IL code a…GBHACKERS.COM
10 Oct‘HTTP/2 Rapid Reset’ Zero-Day Exploited to Launch Largest DDoS Attacks in HistoryA zero-day vulnerability named HTTP/2 Rapid Reset has been exploited to launch some of the largest DDoS attacks in history. The post ‘HTTP/2 Rapid Reset’ Zero-Day Exploited to Launch Largest DDoS Attacks in History appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctOne-Click GNOME Exploit Could Pose Serious Threat to Linux SystemsA one-click exploit targeting the Libcue component of the GNOME desktop environment could pose a serious threat to Linux systems. The post One-Click GNOME Exploit Could Pose Serious Threat to Linux Systems appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctRapid Reset Zero Day Exploited To Launch Largest DDoS Attacks In HistoryPACKETSTORMSECURITY.COM
10 Oct KEVNew 'HTTP/2 Rapid Reset' zero-day attack breaks DDoS recordsA new DDoS (distributed denial of service) technique named 'HTTP/2 Rapid Reset' has been actively exploited as a zero-day since August, breaking all previous records in magnitude. [...]BLEEPINGCOMPUTER.COM
10 OctHacktivists send fake nuclear attack warning via Israeli Red Alert appHackers have exploited a flaw in a widely-used app that warns of missile attacks against Israel to send a fake alert that a nuclear strike is imminent. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
10 OctMirai Variant IZ1H9 Adds 13 Exploits to ArsenalA Mirai botnet variant tracked as IZ1H9 has updated its arsenal with 13 exploits targeting various routers, IP cameras, and other IoT devices. The post Mirai Variant IZ1H9 Adds 13 Exploits to Arsenal appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) advisory on August 29, 2023. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-19-029-02 Mitsubishi Electric MELSEC-Q Series PLCs CISA (Update A) CISA enc…CISA.GOV
10 OctCISA, FBI, NSA, and Treasury Release Guidance on OSS in IT/ICS EnvironmentsToday, CISA, the Federal Bureau of Investigation, the National Security Agency, and the U.S. Department of the Treasury released guidance on improving the security of open source software (OSS) in operational technology (OT) and industrial control systems (ICS). In alignment with…CISA.GOV
10 OctShufflecake – Hidden Linux Filesystems to Store Sensitive DataProtecting personal data is a growing concern, with local storage as the last line of defense. Even here, precautions are needed against adversaries like thieves, and at this point, disk encryption offers solutions for this threat. But disk encryption alone can’t protect ag…GBHACKERS.COM
10 OctShifting Focus to Make DevSecOps Successful - Janet Worthington - ASW #258What if all these recommendations to shift left were more about shifting focus? It's all too easy to become preoccupied with vulns, whether figuring out how to find them earlier in the SDLC or spending time fixing them within specific number of days. Successful DevSecOps approach…YOUTUBE.COM
10 OctPatch Tuesday: Code Execution Flaws in Adobe Commerce, PhotoshopAdobe Commerce customers exposed to code execution, privilege escalation, arbitrary file system read, and security feature bypass attacks. The post Patch Tuesday: Code Execution Flaws in Adobe Commerce, Photoshop appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctCISA, Government, and Industry Partners Publish Fact Sheet for Organizations Using Open Source SoftwareCISA.GOV
10 OctIZ1H9 Campaign Enhances Its Arsenal with Scores of ExploitsThe campaign leverages multiple vulnerabilities, including command injection, remote code execution, and arbitrary command execution, to gain control of targeted devices and incorporate them into the botnet.FORTINET.COM
10 OctVanta bakes generative AI into core security and compliance productCompliance and security vendor Vanta is the latest to roll generative AI features into a core product line, bringing large language model -powered risk management assistance and high-level guidance to the company's digital trust platform. Vanta’s lineup of generative AI features,…CSOONLINE.COM
10 Oct KEVMicrosoft October 2023 Patch Tuesday fixes 3 zero-days, 104 flawsToday is Microsoft's October 2023 Patch Tuesday, with security updates for 104 flaws, including three actively exploited zero-day vulnerabilities. [...]BLEEPINGCOMPUTER.COM
10 Oct KEVMicrosoft Fixes Exploited Zero-Days in WordPad, Skype for BusinessMicrosoft patches more than 100 vulnerabilities across the Windows ecosystem and warned that three are already being exploited in the wild. The post Microsoft Fixes Exploited Zero-Days in WordPad, Skype for Business appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctOctober 2023 Microsoft Patch Tuesday Summary, (Tue, Oct 10th)For October, Microsoft released patches for 105 different vulnerabilities. This count includes one Chromium vulnerability that was patched earlier this month.
ISC.SANS.EDU
10 OctMicrosoft Exchange gets ‘better’ patch to mitigate critical bugThe Exchange Team asked admins to deploy a new and "better" patch for a critical Microsoft Exchange Server vulnerability initially addressed in August. [...]BLEEPINGCOMPUTER.COM
10 OctArctic Wolf acquires cybersecurity automation platform RevelstokeArctic Wolf, a cybersecurity company that’s raised hundreds of millions of dollars in debt and equity, today announced that it plans to acquire Revelstoke, a company developing a security orchestration, automation and response (SOAR) platform, for an undisclosed amount. In …TECHCRUNCH.COM
10 OctMirai DDoS malware variant expands targets with 13 router exploitsA Mirai-based DDoS (distributed denial of service) malware botnet tracked as IZ1H9 has added thirteen new payloads to target Linux-based routers and routers from D-Link, Zyxel, TP-Link, TOTOLINK, and others. [...]BLEEPINGCOMPUTER.COM
10 OctMicrosoft Releases October 2023 Security UpdatesMicrosoft has released updates to address multiple vulnerabilities in Microsoft software. A cyber threat actor can exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review Microsoft’s October 2023 Security Upd…CISA.GOV
10 OctCritical Patches Issued for Microsoft Products, October 10, 2023Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
10 OctPatch Tuesday, October 2023 EditionMicrosoft today issued security updates for more than 100 newly-discovered vulnerabilities in its Windows operating system and related software, including four flaws that are already being exploited. In addition, Apple recently released emergency updates to quash a pair of zero-d…KREBSONSECURITY.COM
10 OctMicrosoft Blames Nation-State Threat Actor for Confluence Zero-Day AttacksMicrosoft says an APT group tracked as Storm-0062 has been hacking Confluence installations since mid-September, three weeks before Atlassian’s disclosure. The post Microsoft Blames Nation-State Threat Actor for Confluence Zero-Day Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
📋 SECURITY BULLETINS 1[−]
10 OctWindows 11 KB5031354 cumulative update released with new featuresMicrosoft has released the Windows 11 22H2 KB5031354 cumulative update to fix security vulnerabilities. This is the first Patch Tuesday update with access to Windows 11 Moment 4 features provide you turn on the "Get latest updates" toggle [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 11[−]
10 OctCybersecurity Awareness Month 2023 Blog Series | Using Strong Passwords and a Password ManagerToday’s blog is the second one in our 2023 Cybersecurity Awareness Month series and examines different factors associated with using strong passwords and a password manager. We interviewed NIST’s Yee-Yin Choong and Meghan Anderson to get their unique thoughts and insights. This w…NIST.GOV
10 OctUkraine Publishes Road Map for AI RegulationKyiv Sees Regulation As A Pathway to Closer European Integration The Ukrainian government says it will regulate AI, a step it portrays as a way to draw closer to the European Union, where rules for AI systems are close to approval. New rules will enable access to global markets a…DATABREACHTODAY.CO.UK
10 OctScaling BeyondCorp with AI-Assisted Access Control PoliciesAyush Khandelwal, Software Engineer, Michael Torres, Security Engineer, Hemil Patel, Technical Product Expert, Sameer Ladiwala, Software Engineer In July 2023, four Googlers from the Enterprise Security and Access Security organizations developed a tool that aimed at revolu…SECURITY.GOOGLEBLOG.COM
🔥 INCIDENT REPORTING 10[−]
10 OctWhat to do if you’ve clicked on a phishing link or talked to scammers | Kaspersky official blogHow to check if you've been hacked after a phishing or fraud attemptKASPERSKY.COM
10 OctNew Magecart Campaign Alters 404 Error Pages to Steal Shoppers' Credit CardsThe campaign employs a multi-stage attack chain to capture sensitive information entered on checkout pages and exfiltrate it to a remote server, making it difficult to detect.THEHACKERNEWS.COM
10 OctCable Giant Volex Targeted in CyberattackUK-based cable manufacturing giant Volex has been targeted in a cyberattack that involved unauthorized access to IT systems and data. The post Cable Giant Volex Targeted in Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctPayment Gateway Provider Safexpay Technology Allegedly Hacked in a Nearly $2 Billion ScamAs per the investigations, the ongoing fraud came to light after a complaint that some individuals had allegedly hacked into the six-year-old firm's payment gateway, and the funds were then transferred to at least 260 different bank accounts.CISO.ECONOMICTIMES.INDIATIMES.COM
10 Oct23andMe resets user passwords after genetic data posted onlineDays after user personal surfaced online, the genetic testing company 23andMe said it’s requiring all users to reset their passwords “out of caution.” On Friday, 23andMe confirmed that hackers had obtained some users’ data, but stopped short of calling the incident a data b…TECHCRUNCH.COM
10 OctAir Europa Customers Urged to Cancel Cards Following Hack on Payment SystemAir Europa suffered a cyberattack on its online payment system. While there is no evidence of fraudulent use, customers are warned to replace their bank cards as a precautionary measure.THERECORD.MEDIA
10 OctAir Europa data breach: Customers warned to cancel credit cardsSpanish airline Air Europa, the country's third-largest airline and a member of the SkyTeam alliance, warned customers on Monday to cancel their credit cards after attackers accessed their card information in a recent data breach. [...]BLEEPINGCOMPUTER.COM
10 OctMcLaren Health Care Facing 3 Lawsuits in Ransomware HackLitigation Filed Days After Alphv/BlackCat Claimed to Have Stolen Data of 2.5 Million Patients A recent attack by a Russian ransomware-as-a-service group that stole the personal information of 2.5 million patients of McLaren Health Care has triggered at least three proposed feder…DATABREACHTODAY.CO.UK
10 OctHackers advertised 23andMe stolen data two months agoGenetic testing company 23andMe has been investigating a security incident after hackers advertised a trove of alleged stolen user data on a hacking forum last week. But the alleged stolen data may have been circulating for much longer than first known. TechCrunch has also found …TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 28[−]
10 OctNorth Korea-Linked Lazarus APT Laundered Over $900 Million Through Cross-Chain CrimeThe use of cross-chain bridges and asset-hopping typologies have contributed to a significant increase in funds sent via such services, making it a recognized money laundering typology.SECURITYAFFAIRS.COM
10 OctISC Stormcast For Tuesday, October 10th, 2023 https://isc.sans.edu/podcastdetail/8694, (Tue, Oct 10th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
10 OctGUEST ESSAY: How tech tricks used by Amazon, Netflix aid Ukraine in repelling Russia’s invasionAs tragic as it is, we are in a space where video has become a crucial asset in wartime. Related: Apple tool used as warfare weapon Ukraine’s defense against Russian invaders has changed the role of video. Accessing video-based intelligence … (more…)LASTWATCHDOG.COM
10 OctC-suite weighs in on generative AI and securityGenerative AI (GenAI) is poised to deliver significant benefits to enterprises and their ability to readily respond to and effectively defend against cyber threats. But AI that is not itself secured may introduce a whole new set of threats to businesses. Today IBM’s Institu…SECURITYINTELLIGENCE.COM
10 OctBSides CT 2023 - BSIDES CONNECTICUT - 8 videossubmitted by ashar to security_cpe 2 points | 0 comments https://infosec.pub/pictrs/image/ccd3c49d-b01e-48d0-afc6-ad35d07e9470.png BSides CT 2023 PLAYLIST - 8 videos Schedule from websiteINFOSEC.PUB
10 OctMicrosoft is finally deprecating vbscriptsubmitted by L4s to secops 12 points | 2 comments https://learn.microsoft.com/en-us/windows/whats-new/deprecated-features Microsoft is finally deprecating vbscript::Review the list of features that Microsoft is no longer actively developing in Windows 10 and Windows 11.LEARN.MICROSOFT.COM
10 OctResearchers Uncover Grayling APT's Ongoing Attack Campaign Across IndustriesA previously undocumented threat actor of unknown provenance has been linked to a number of attacks targeting organizations in the manufacturing, IT, and biomedical sectors in Taiwan. The Symantec Threat Hunter Team, part of Broadcom, attributed the attacks to an advanced persist…THEHACKERNEWS.COM
10 OctModel Extraction Attack on Neural NetworksAdi Shamir et al. have a new model extraction attack on neural networks: Polynomial Time Cryptanalytic Extraction of Neural Network Models Abstract: Billions of dollars and countless GPU hours are currently spent on training Deep Neural Networks (DNNs) for a variety of tasks. Thu…SCHNEIER.COM
10 OctMagecart Web Skimmer Hides in 404 Error PagesA newly identified Magecart web skimming campaign is tampering with ‘404’ error pages to hide malicious code. The post Magecart Web Skimmer Hides in 404 Error Pages appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctResearcher Conversations: Natalie Silvanovich From Google’s Project ZeroSecurityWeek continues its Hacker Conversations series in a discussion with Natalie Silvanovich, a member of of Google's Project Zero. The post Researcher Conversations: Natalie Silvanovich From Google’s Project Zero appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctTraining Tuesday - Discussions for certs, training and learning-at-homesubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss industry certifications, trainings and other courses/learning. Ask questions, share your experiences and help others!INFOSEC.PUB
10 OctUnknown Cyberespionage Group Targeted TaiwanThreat Actor Likely Operates From A Region With A Strategic Interest In Taiwan A previously undetected cyberespionage group spied against Taiwanese government agencies and the island-country's manufacturing sector, say cybersecurity researchers. The Symantec Threat Hunter Team sa…DATABREACHTODAY.CO.UK
10 OctCyberheistNews Vol 13 #41 [Risky New Data] More Than Half of Phishing Scams Now Use ObfuscationKNOWBE4.COM
10 OctSecurityWeek to Host 2023 ICS Cybersecurity Conference October 23-26 in AtlantaSecurityWeek will host its 2023 Industrial Control Systems (ICS) Cybersecurity Conference from October 23 – 26, 2023 at the InterContinental Atlanta Buckhead. The post SecurityWeek to Host 2023 ICS Cybersecurity Conference October 23-26 in Atlanta appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctTwistlock Founders Score Whopping $51M Seed Funding for GutsySerial entrepreneurs bank an unusually large seed round to apply process mining techniques to solve security governance problems. The post Twistlock Founders Score Whopping $51M Seed Funding for Gutsy appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctNew ‘Grayling’ APT Targeting Organizations in Taiwan, USA previously unknown APT group is targeting organizations in biomedical, IT, and manufacturing sectors in Taiwan. The post New ‘Grayling’ APT Targeting Organizations in Taiwan, US appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctTerminology Matters: Changing 'Cybersecurity' to Data Care - Ron Gula, Cyndi Gula - CSP #143Segment description coming soon!Cybersecurity touches all our lives, however there is a belief that only experts in all of the technical disciplines need to apply. The term ‘cybersecurity’ does not invoke a personal sense of responsibility to care for the protection of data. Join…YOUTUBE.COM
10 OctSAP Releases 7 New Notes on October 2023 Patch DaySAP has released seven new notes as part of its October 2023 Security Patch Day, all rated ‘medium severity’. The post SAP Releases 7 New Notes on October 2023 Patch Day appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctResearchers: North Korean Hackers Gain Speed, FlexibilityRegime Keeps Refining Cyber Operations Focused on Espionage and Financial Crime North Korea's state-sponsored hackers continue to refine their "cyber intrusions to conduct both espionage and financial crime to project power and to finance both their cyber and kinetic capabilities…DATABREACHTODAY.CO.UK
10 OctCurl's Impending Patch, Glibc's Looney Tunables, ShellTorch, Another Top 10 List - ASW #258Anticipating Curl's upcoming patch for a high severity flaw, the Looney Tunables flaw in Glibc, ShellTorch flaw hits PyTorch and lots of AI, lessons from some X.Org security patches, eBPF security, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Sh…YOUTUBE.COM
10 Oct23andMe, Facebook, GitHub's Secret Scanning, MGM Resorts, Grindr, & Jason Wood - SWN #332This week Aaran Leyland rants: about Google, 23andMe, Facebook, GitHub's Secret Scanning, MGM Resorts, Grindr, More News, and is joined by the notorious Jason Wood on the Security Weekly News! Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https…YOUTUBE.COM
10 OctLua-Resty-JWT Authentication Bypasssubmitted by Branquinho to cybersecurity 1 points | 0 comments https://insinuator.net/2023/10/lua-resty-jwt-authentication-bypass/INSINUATOR.NET
10 OctBeyond the Front Lines: How the Israel-Hamas War Impacts the Cybersecurity IndustryThe war with Hamas will inevitably absorb manpower and focus from the cybersecurity sector. The post Beyond the Front Lines: How the Israel-Hamas War Impacts the Cybersecurity Industry appeared first on SecurityWeek .SECURITYWEEK.COM
10 OctWar in Israel: Cyber, Kinetic Implications for the WorldZscaler CISO Sam Curry on Impact on People, Geo-Political Tensions, Cyber Community Just days after the unprecedented attack by Hamas on Israel, Zscaler CISO Sam Curry discusses the intertwined nature of cyber warfare and physical conflicts and how the conflict can quickly escala…DATABREACHTODAY.CO.UK
10 OctSmishing Triad Threat Actor Sets Its Sights on the UAEResecurity warns that the Smishing Triad threat actor has “vastly expanded its attack footprint” in the United Arab Emirates (UAE).KNOWBE4.COM
10 OctRed Pandas Unleashed: How Webhooks, Bad USB, and WiFi Collide in Cyberspacesubmitted by dap to cybersecurity 2 points | 0 comments https://blog.aermored.com/posts/bad-usb/webhooks/AERMORED.COM
10 OctTikTok Chief Summoned by EU Lawmakers For Privacy ProbeParliamentary Committee Heads Says In-Person Appearance Would be "Beneficial" The head TikTok has been summoned by European lawmakers from different parliamentary committees for an inquiry into its privacy practices. In a letter sent to the TikTok CEO Shou Zi Chew on Thursday, th…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 4[−]
10 OctNew Report: Child Sexual Abuse Content and Online Risks to Children on the RiseCertain online risks to children are on the rise, according to a recent report from Thorn, a technology nonprofit whose mission is to build technology to defend children from sexual abuse. Research shared in the Emerging Online Trends in Child Sexual Abuse 2023 report, indicates …THEHACKERNEWS.COM
10 OctGoogle makes passkeys the default sign-in method for all usersGoogle has announced that passkeys, touted by the tech giant as the “beginning of the end” for passwords, are becoming the default sign-in method for all users. Passkeys are a phishing-resistant alternative to passwords that allow users to sign into accounts using the same biomet…TECHCRUNCH.COM
10 OctMicrosoft to kill off VBScript in Windows to block malware deliveryMicrosoft is planning to phase out VBScript in future Windows releases after 30 years of use, making it an on-demand feature until it is removed. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 13[−]
10 OctPoor Cybersecurity Habits are Common Among Younger EmployeesMillennial and Gen Z workers exhibit more unsafe cybersecurity habits compared to older age groups, such as using the same passwords on multiple devices and sharing work devices with family and friends.HELPNETSECURITY.COM
10 OctLive Webinar | Backup Data Security Strategy: Reduce Downtime & Ensure Business ContinuityDATABREACHTODAY.CO.UK
10 OctLive Webinar | The Rise of the Cloud Conscious Adversary: Defense Recommendation PlaybookDATABREACHTODAY.CO.UK
10 OctGoogle Adopts Passkeys as Default Sign-in Method for All UsersGoogle on Tuesday announced the ability for all users to set up passkeys by default, five months after it rolled out support for the FIDO Alliance-backed passwordless standard for Google Accounts on all platforms. "This means the next time you sign in to your account, you'll star…THEHACKERNEWS.COM
10 OctGutsy launches with huge $51M seed to bring process mining to securityTwistlock was founded in 2015 with the idea of securing the nascent cloud native computing environment, a notion you could argue was well ahead of its time. When the company was acquired by Palo Alto Networks in 2019 for $410 million, it turned out that wasn’t the end of the stor…TECHCRUNCH.COM
10 OctGoogle makes passkeys the default sign-in for personal accountsGoogle announced today that passkeys are now the default sign-in option across all personal Google Accounts across its services and platforms. [...]BLEEPINGCOMPUTER.COM
10 OctEx-Soldier Tried To Pass Secrets To China After Seeking A Subreddit About Spy StuffPACKETSTORMSECURITY.COM
10 OctA Primer on Cyber Risk Acceptance and What it Means to Your BusinessA fundamental idea to understand about risk is that it is inevitable. Learn more from Outpost24 on cyber risk acceptance and the role of continuous penetration testing in making informed risk acceptance decisions. [...]BLEEPINGCOMPUTER.COM
10 OctGutsy Launches With Huge $51M Seed to Bring Process Mining to SecurityGutsy, a cybersecurity startup founded by the team behind Twistlock, has emerged from stealth with a $51 million seed round led by YL Ventures and Mayfield. The company applies process mining, a data science technique, to cybersecurity.TECHCRUNCH.COM
10 OctNew critical Citrix NetScaler flaw exposes 'sensitive' dataCitrix NetScaler ADC and NetScaler Gateway are impacted by a critical severity flaw that allows the disclosure of sensitive information from vulnerable appliances. [...]BLEEPINGCOMPUTER.COM
10 OctWindows 10 KB5031356 update released with 25 improvementsMicrosoft has released the KB5031356 cumulative update for Windows 10 21H2 and Windows 10 22H2, with twenty-five fixes for various issues. [...]BLEEPINGCOMPUTER.COM
10 OctMicrosoft warns of incorrect BitLocker encryption errorsMicrosoft warned customers this week of incorrect BitLocker drive encryption errors being shown in some managed Windows environments. [...]BLEEPINGCOMPUTER.COM
10 OctVirus Bulletin PUA – a love letterLate nights at VB2023 featured intriguing interactions between security experts and the somewhat enigmatic world of grayware purveyorsWELIVESECURITY.COM