97Articles
10Categories
2023-10-13Date
🚨 CISA KEV 1[−]
13 Oct KEVThreat Actors Exploit Atlassian Confluence CVE-2023-22515 for Initial Access to NetworksSUMMARY The Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), and Multi-State Information Sharing and Analysis Center (MS-ISAC) are releasing this joint Cybersecurity Advisory (CSA) in response to the active exploitation of CVE-2023-2…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 18[−]
13 Oct KEVApple Releases iOS 16 Update to Patch Exploited VulnerabilityApple has released iOS and iPadOS updates to fix a local privilege escalation kernel vulnerability (CVE-2023-42824) that has been actively exploited in attacks, potentially by commercial spyware vendors.SECURITYWEEK.COM
13 OctVulnerability Exposed in WordPress Plugin User Submitted PostsA new vulnerability in the User Submitted Posts WordPress plugin (versions 20230902 and below) has been discovered by the Patchstack team. The vulnerability has been assigned CVE-2023-45603.INFOSECURITY-MAGAZINE.COM
13 OctPro-Russia Hacker Groups Exploiting Winrar Flaw to Steal Login CredentialsA new phishing attack has been discovered, which uses malicious archive files to exploit the recently found WinRAR vulnerability CVE-2023-38831 using a Powershell script that steals credentials from Google Chrome and Microsoft Edge browsers. The archive consists of a PDF document…GBHACKERS.COM
13 OctChromium: CVE-2023-5218 Use after free in Site IsolationThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5473 Use after free in CastThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5474 Heap buffer overflow in PDFThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5475 Inappropriate implementation in DevToolsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5476 Use after free in Blink HistoryThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5477 Inappropriate implementation in InstallerThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5478 Inappropriate implementation in AutofillThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5479 Inappropriate implementation in Extensions APIThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5481 Inappropriate implementation in DownloadsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5483 Inappropriate implementation in IntentsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5484 Inappropriate implementation in NavigationThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5485 Inappropriate implementation in AutofillThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5486 Inappropriate implementation in InputThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctChromium: CVE-2023-5487 Inappropriate implementation in FullscreenThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
13 OctCVE-2023-36559 Microsoft Edge (Chromium-based) Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 28[−]
13 OctIndian state government fixes website bug that revealed Aadhaar numbers and fingerprintsA security researcher says a bug on an Indian state government website inadvertently revealed documents containing residents’ Aadhaar numbers, identity cards, and copies of their fingerprints. The bug was fixed last week after the security researcher disclosed the bug to lo…TECHCRUNCH.COM
13 OctToddyCat APT Hackers Exploiting Vulnerable Microsoft Exchange ServersToddyCat, a highly skilled advanced persistent threat (APT) actor notorious for launching targeted attacks in Europe and Asia, has recently upgraded its arsenal of tools and methods, signifying an evolution in its modus operandi. Recent findings from the cybersecurity researchers…GBHACKERS.COM
13 OctUS Securities and Exchange Commission Probes MOVEit HackProgress Software Says Investigation Is Fact-Finding Inquiry The zero-day campaign underpinning the May mass attack on Progress Software's MOVEit file transfer software is now the vulnerability fueling a flotilla of attorneys, the software vendor disclosed in a regulatory filing …DATABREACHTODAY.CO.UK
13 OctCyber Security Today, Oct. 13, 2023 -- A ransomware gang offers cash for employees to betray their firmsHackers are trying to exploit unpatched Atlassian Confluence servers and Progress Software WS_FTP file transfer software, and moreCYBERSECURITYTODAY.LIBSYN.COM
13 OctRansomware Attacks Now Target Unpatched WS_FTP ServersThe Reichsadler Cybercrime Group attempted to deploy ransomware on unpatched WS_FTP servers using a stolen LockBit 3.0 builder. The attackers used the GodPotato tool to escalate privileges on the servers.BLEEPINGCOMPUTER.COM
13 OctDozens of Squid Proxy Vulnerabilities Remain Unpatched 2 Years After DisclosureDozens of Squid caching proxy vulnerabilities remain unpatched two years after a researcher reported them to developers. The post Dozens of Squid Proxy Vulnerabilities Remain Unpatched 2 Years After Disclosure appeared first on SecurityWeek .SECURITYWEEK.COM
13 OctSEC Investigating Progress Software Over MOVEit HackProgress Software has received a subpoena from the SEC and faces multiple class action lawsuits and claims for indemnification due to the MOVEit vulnerability, resulting in significant costs.SECURITYWEEK.COM
13 OctCritical Heap Overflow Vulnerability in Curl Fixed After a Week Long WaitAfter nearly a week of intense speculation regarding the security issues in cURL, the latest version of this command-line transfer tool has been released with a fix. Vulnerable systems could allow potential attacks via a malicious HTTPS server redirect. Organizations are urged to…CYWARE.COM
13 OctHacking the High School Grading SystemInteresting New York Times article about high-school students hacking the grading system. What’s not helping? The policies many school districts are adopting that make it nearly impossible for low-performing students to fail—they have a grading floor under them, they …SCHNEIER.COM
13 OctUS Smashes Annual Data Breach Record With Three Months LeftThere were 2116 reported US data breaches and leaks in the first nine months of 2023, making it the worst year on record with a whole quarter left to go, according to the Identity Theft Resource Center (ITRC).INFOSECURITY-MAGAZINE.COM
13 OctDarkGate Targets Organizations via Compromised Skype, Teams AccountsDarkGate is a commodity loader that has been increasingly used in initial entry attacks, offering various malicious capabilities such as keylogging, browser information theft, and privilege escalation.TRENDMICRO.COM
13 Oct55 Vulnerabilities in Squid Caching Proxy and 35 0dayssubmitted by throws_lemy to cybersecurity 1 points | 0 comments https://joshua.hu/squid-security-audit-35-0days-45-exploitsJOSHUA.HU
13 OctVoid Rabisu Targets Female Political Leaders with New Slimmed-Down ROMCOM VariantVoid Rabisu employs various tactics, such as signing malware with bought certificates, using malicious advertisements, and exploiting vulnerabilities, including zero-day vulnerabilities.TRENDMICRO.COM
13 OctAn analysis of an in-the-wild iOS Safari WebContent to GPU Process exploitsubmitted by L4s to secops 1 points | 0 comments https://googleprojectzero.blogspot.com/2023/10/an-analysis-of-an-in-the-wild-ios-safari-sandbox-escape.html An analysis of an in-the-wild iOS Safari WebContent to GPU Process exploit::By Ian Beer A graph representation of the sandb…GOOGLEPROJECTZERO.BLOGSPOT.COM
13 OctCISA Now Flagging Vulnerabilities, Misconfigurations Exploited by RansomwareCISA is now flagging vulnerabilities and misconfigurations that are known to be exploited in ransomware attacks. The post CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware appeared first on SecurityWeek .SECURITYWEEK.COM
13 OctCISA shares vulnerabilities, misconfigs used by ransomware gangsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has unveiled additional details regarding misconfigurations and security vulnerabilities exploited by ransomware gangs, aiming to help critical infrastructure organizations thwart their attacks. [...]BLEEPINGCOMPUTER.COM
13 OctCISA Now Flagging Vulnerabilities, Misconfigurations Exploited by RansomwareThrough its Ransomware Vulnerability Warning Pilot (RVWP) program, the CISA has released two new resources to help identify and fix vulnerabilities exploited by ransomware groups.SECURITYWEEK.COM
13 OctContainer Security in a GitOps EnvironmentGitOps is a methodology that uses Git (or other version control systems) to store all aspects of a project’s infrastructure, such as infrastructure as code (IaC), application code, and configuration files. Organizations using Kubernetes for container orchestration often use GitOp…GBHACKERS.COM
13 OctJuniper Networks Patches Over 30 Vulnerabilities in Junos OSSix high-severity vulnerabilities, including five that can be exploited remotely, have been addressed by the patches, which could potentially lead to denial of service (DoS) attacks.SECURITYWEEK.COM
13 OctRansomware-Wielding Attackers Target Unfixed WS_FTP ServersResearcher Published Proof-of-Concept Exploit Code 1 Day After Vendor Issued Patch Ransomware-wielding attackers are targeting unpatched versions of FTP software that is widely used by large enterprises, including government and educational organizations. A researcher released pr…DATABREACHTODAY.CO.UK
13 OctShould You Use Controversial Simulated Phishing Test Emails?The Wall Street Journal recently published an article about using highly-emotionally charged, “controversial”, subjects in simulated phishing tests. Controversial topic examples include fake pay raises, reward gift cards, and free Taylor Swift tickets.  The younger half of o…KNOWBE4.COM
13 OctCisco Emergency Responder Static Credentials Vulnerabilitysubmitted by cron to cybersecurity 1 points | 0 comments https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cer-priv-esc-B9t3hqk9 A vulnerability in Cisco Emergency Responder could allow an unauthenticated, remote attacker to log in to an affec…SEC.CLOUDAPPS.CISCO.COM
13 OctUK FCA Fines Equifax 11 Million Pounds for 2017 Data BreachFine Imposed for Failing to Protect UK Customer Data and Misleading Britons A British financial regulator fined American credit reporting agency Equifax 11 billion pounds for its role in one of the world's largest data breaches. Chinese military hackers in 2017 exploited a well-k…DATABREACHTODAY.CO.UK
13 Oct53% of Organizations Experienced Cyber AttacksAs increasing percentages of businesses experience cyberattacks, new data provides details on where the most organizational risk lies.KNOWBE4.COM
13 OctChinese APT group ToddyCat launches new cyber-espionage campaignsResearchers warn of renewed attacks against high-profile organizations launched by a Chinese APT actor known in the industry as ToddyCat. The group has been refining its tactics as well as malware toolset since 2020 when it was originally discovered. In a new report this week, re…CSOONLINE.COM
13 OctWhy IronNet Ran Out of Cash, Filed For Chapter 11 BankruptcyFirm Seeks 60-Day Marketing, Sale Process to Test Value of Assets, Equity in Market A "cloud of uncertainty" strained IronNet's cash flows and negatively affected liquidity to the point where the cybersecurity vendor had to begin winding down operations. The firm once valued at $…DATABREACHTODAY.CO.UK
📋 SECURITY BULLETINS 2[−]
13 OctMicrosoft: October Windows 10 security updates fail to installMicrosoft says Windows 10 security updates released during this month's Patch Tuesday may fail to install with 0x8007000d errors, although initially displaying progress. [...]BLEEPINGCOMPUTER.COM
13 OctStaying on top of security updates – Week in security with Tony AnscombeWhy keeping software up to date is a crucial security practice that should be followed by everyone from individual users to SMBs and large enterprisesWELIVESECURITY.COM
📢 SECURITY ADVISORIES 5[−]
13 OctVoid Rabisu Targets Female Political Leaders with New Slimmed-Down ROMCOM VariantAlmost a year after Void Rabisu shifted its targeting from opportunistic ransomware attacks with an emphasis on cyberespionage, the threat actor is still developing its main malware, the ROMCOM backdoor.TRENDMICRO.COM
13 OctFBI, CISA Warn of Rising AvosLocker Ransomware Attacks Against Critical InfrastructureThe AvosLocker ransomware gang has been linked to attacks against critical infrastructure sectors in the U.S., with some of them detected as recently as May 2023. That's according to a new joint cybersecurity advisory released by the U.S. Cybersecurity and Infrastructure Security…THEHACKERNEWS.COM
13 OctUS Agencies Share Avoslocker Ransomware Technical Details, Defense TipsThe FBI and the CISA recommend implementing application control mechanisms, limiting remote desktop services, and following best practices such as updating software and using strong passwords to defend against AvosLocker ransomware attacks.BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 17[−]
13 OctGood Day Ransomware malware analysissubmitted by L4s to secops 1 points | 0 comments https://www.shadowstackre.com/analysis/goodday Good Day Ransomware malware analysis::Good Day ransomware technical malware analysisSHADOWSTACKRE.COM
13 OctEdwardian Hotels London Cyberattack Claim Surface with Samples of Bank Data, PassportThe luxury hotel group Edwardian Hotels London has reportedly been targeted by the Black Basta ransomware group. Cybersecurity researchers have shared screenshots of the claims made by the hackers.THECYBEREXPRESS.COM
13 OctBreach Roundup: Google Phases Out Passwords for PasskeysAlso: Microsoft Will Bid VBScript Goodbye; Magecart's Novel Page-Not-Found Attack This week: Google began phasing out passwords, Microsoft to bid VBScript goodbye, payment card information exposed in Air Europa hack, Magecart attack uses sneaky 404 page tactic, U.S. voter registr…DATABREACHTODAY.CO.UK
13 OctRansomware attacks doubled year on year. Are organizations equipped to handle the evolution of Ransomware in 2023?Ransomware attacks have only increased in sophistication and capabilities over the past year. From new evasion and anti-analysis techniques to stealthier variants coded in new languages, ransomware groups have adapted their tactics to bypass common defense strategies effectively.…THEHACKERNEWS.COM
13 OctHalf of Small Businesses Hit by Cyberattack Over the Past YearCybersecurity has become a top concern for small and medium enterprises (SMEs) and nearly half (48%) of SMEs have experienced at least one cyber incident in the past year, according to a survey from Sage.INFOSECURITY-MAGAZINE.COM
13 OctResearchers Unveil ToddyCat's New Set of Tools for Data ExfiltrationThe advanced persistent threat (APT) actor known as ToddyCat has been linked to a new set of malicious tools that are designed for data exfiltration, offering a deeper insight into the hacking crew's tactics and capabilities. The findings come from Kaspersky, which first shed lig…THEHACKERNEWS.COM
13 OctShadow silent on data breach as hacked data appears genuineA data breach at French cloud gaming provider Shadow may be worse than the company initially suggested, according to a sample of the stolen data seen by TechCrunch. In an email sent to affected customers this week, Paris-based Shadow said that a hacker carried out an “advanced so…TECHCRUNCH.COM
13 OctNew PEAPOD Cyberattack Campaign Targeting Women Political LeadersEuropean Union military personnel and political leaders working on gender equality initiatives have emerged as the target of a new campaign that delivers an updated version of RomCom RAT called PEAPOD. Cybersecurity firm Trend Micro attributed the attacks to a threat actor it tra…THEHACKERNEWS.COM
13 OctIndian State Government Fixes Website Bug That Revealed Aadhaar Numbers and FingerprintsThe website bug allowed unauthorized access to land deed records by guessing sequential application numbers, highlighting the lack of robust security measures on the website.TECHCRUNCH.COM
13 OctKwik Trip IT systems outage caused by mysterious ‘network incident’​Kwik Trip has been impacted by a wide range of mysterious business disruptions since this weekend that are indicative of a ransomware attack. [...]BLEEPINGCOMPUTER.COM
13 OctHow Cyberattacks Could Affect the Israel-Hamas WarSANS Institute's Rob T. Lee on Cyber Activity in Israel, Hamas and Iran It could be weeks or months before outsiders have a clear picture of the cyber dimension of the conflict between Hamas and Israel, a cyber expert said. "As some of these stories come out, as we will start to …DATABREACHTODAY.CO.UK
13 Oct23andMe hit with lawsuits after hacker leaks stolen genetics dataGenetic testing provider 23andMe faces multiple class action lawsuits in the U.S. following a large-scale data breach that is believed to have impacted millions of its customers. [...]BLEEPINGCOMPUTER.COM
13 Oct9 in 10 CISOs Report at Least One Disruptive Cyberattack in the Last YearA new report sheds light on whether CISOs have been the victim of a cyber attacks, if they're every paid a ransom, their greatest cyber concerns, and much more.KNOWBE4.COM
13 Oct60% of Organizations are Very Concerned About the Potential Impact of Ransomware AttacksAs the number of reported ransomware attacks increases, new data provides a fresh look at how ready organizations are for ransomware attacks.KNOWBE4.COM
13 OctFeds Warn Healthcare Sector of 'NoEscape' RaaS Gang ThreatsNew Ransomware Group Appears to Be an Offshoot of Defunct Avaddon Gang Federal authorities are warning healthcare organizations and the public health sector of threats involving NoEscape, a relatively new multi-extortion ransomware-as-a-service group believed to be a successor to…DATABREACHTODAY.CO.UK
13 OctThe Week in Ransomware - October 13th 2023 - Increasing AttacksRansomware gangs continue to pummel the enterprise, with attacks causing disruption in business operations and resulting in data breaches if a ransom is not paid. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 10[−]
13 OctISC Stormcast For Friday, October 13th, 2023 https://isc.sans.edu/podcastdetail/8700, (Fri, Oct 13th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
13 OctMicrosoft Offers Up to $15,000 in New AI Bug Bounty ProgramMicrosoft is offering rewards of up to $15,000 in a new bug bounty program dedicated to its new AI-powered Bing. The post Microsoft Offers Up to $15,000 in New AI Bug Bounty Program appeared first on SecurityWeek .SECURITYWEEK.COM
13 OctKnowBe4 Named a Leader in the Fall 2023 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR)We are excited to announce that KnowBe4 has been named a leader in the Fall  2023 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR) for the PhishER platform for the tenth consecutive quarter!KNOWBE4.COM
13 OctPalo Alto Networks Is the HashiCorp Technology Partner of the YearThe Palo Alto Networks commitment to securing our customers’ cloud environments is at the forefront of our mission to be the cybersecurity partner of choice. Our success on this mission sometimes means … The post Palo Alto Networks Is the HashiCorp Technology Partner of the…PALOALTONETWORKS.COM
13 OctJuniper Networks Patches Over 30 Vulnerabilities in Junos OSJuniper Networks patches over 30 vulnerabilities in Junos OS and Junos OS Evolved, including nine high-severity bugs. The post Juniper Networks Patches Over 30 Vulnerabilities in Junos OS appeared first on SecurityWeek .SECURITYWEEK.COM
13 OctIn Other News: Ex-Uber Security Chief Appeal, New Offerings From Tech Giants, Crypto BountyIn Other The post In Other News: Ex-Uber Security Chief Appeal, New Offerings From Tech Giants, Crypto Bounty appeared first on SecurityWeek .SECURITYWEEK.COM
13 OctBSides Tallinn* 2023submitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/8fe8511c-cecc-43a1-90c4-a7f8db945c5f.png Schedule from the website Playlist - 5 talksINFOSEC.PUB
13 OctPhishing-as-a-Service Strox Lets Hackers Phish any Brand by Submitting its LogoThe ever-evolving world of cybercrime has given birth to a disturbing phenomenon – Phishing-as-a-Service (PhaaS), and one name that sends shivers down the spines of cybersecurity experts is Strox. The tale of Strox begins in the first half of 2022 when Fortra, a cybersecurity org…GBHACKERS.COM
13 OctMicrosoft, SeroxenRAT, Smart Links, ToddyCAT, ShellBot, More News & Aaran Leyland - SWN #333This week Dr. Doug talks: Microsoft, SeroxenRAT, Smart Links, Vogons, ToddyCAT, ShellBot, Hidden servers, Aaran Leyland, and More on the Security Weekly News! Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-333YOUTUBE.COM
13 OctFriday Squid Blogging: On Squid IntelligenceArticle about squid intelligence. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here .SCHNEIER.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
13 OctAfter hackers distribute malware in game updates, Steam adds SMS-based security check for developersValve, the company behind the Steam video game platform, has announced a new security feature after multiple reports of game updates being poisoned with malware. But have they chosen the best way to protect developers' accounts? Read more in my article on the Hot for Security blo…BITDEFENDER.COM
13 OctDarkGate Malware Spreading via Messaging Services Posing as PDF FilesA piece of malware known as DarkGate has been observed being spread via instant messaging platforms such as Skype and Microsoft Teams. In these attacks, the messaging apps are used to deliver a Visual Basic for Applications (VBA) loader script that masquerades as a PDF document, …THEHACKERNEWS.COM
13 OctVietnam Accused of Using Predator Spyware to Target EU, US LawmakersThe Vietnamese government is suspected of being behind a targeted campaign using social media to spread links containing commercial spyware, with potential targets including members of the U.S. Congress and European officials.BANKINFOSECURITY.COM
🎙️ PODCASTS 1[−]
13 OctCyber Security Today, Week in Review for Friday, Oct. 11, 2023This episode features discussion on a possible SEC investigation of the MOVEit hacks, the theft of data from 23andMe, the Top 10 cybersecurity misconfigurations, and moreCYBERSECURITYTODAY.LIBSYN.COM
📡 INFOSEC NEWS 12[−]
13 OctLargest DDoS attacks ever reported by Google, Cloudflare and AWSThe DDoS attacks have been ongoing since August of this yearCSHUB.COM
13 OctShellBot Uses Hex IPs to Evade Detection in Attacks on Linux SSH ServersShellBot is capable of launching DDoS attacks and deploying cryptocurrency miners, highlighting the importance of strong passwords and regular password changes to resist dictionary attacks.THEHACKERNEWS.COM
13 OctBad password policies and how to avoid them | Kaspersky official blogWe spotlight some bad password policies, explain what's wrong with them, and provide some practical tips to help avoid common mistakes.KASPERSKY.COM
13 OctState’s Cyber Overhaul Bets Big on Zero Trust to Tackle Emerging ThreatsThe State Department has undergone a significant cybersecurity overhaul, prioritizing a zero-trust security architecture and implementing key performance indicators and guidance from various federal agencies.NEXTGOV.COM
13 OctHackers use Binance Smart Chain contracts to store malicious scriptsCybercriminals are employing a novel code distribution technique dubbed 'EtherHiding,' which abuses Binance's Smart Chain (BSC) contracts to hide malicious scripts in the blockchain. [...]BLEEPINGCOMPUTER.COM
13 OctConveyor Raises $12.5m to Automate Security Reviews Using LLMsConveyor, a startup using large language models (LLMs) like OpenAI's ChatGPT, has raised $12.5 million in funding led by Cervin Ventures to automate the security review response process for companies.TECHCRUNCH.COM
13 OctMicrosoft plans to kill off NTLM authentication in Windows 11Microsoft announced earlier this week that the NTLM authentication protocol will be killed off in Windows 11 in the future. [...]BLEEPINGCOMPUTER.COM
13 OctWhat's Normal: MAC Addresses, (Fri, Oct 13th)In this installment of "What&#;x26;#;39;s Normal", I want to discuss MAC addresses. MAC addresses are used to identify devices on ethernet networks. They are six bytes in length and typically expressed in hexadecimal, separated by a colon or a dash. MA…ISC.SANS.EDU
13 OctUnlocking the Platform Advantage in SecurityNot so long ago, security organizations rallied behind "best of breed" security solutions. But now, trying to reduce tech debt, rationalize tools and consolidate vendors, there is a push for the platform approach. Cisco's Amilcar Alfaro talks about how to tap into the platform ad…DATABREACHTODAY.CO.UK