97Articles
10Categories
2023-10-16Date
🚨 CISA KEV 1[−]
16 Oct KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-21608 Cisco IOS XE Web UI Privilege Escalation Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber act…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
16 OctMilesight Industrial Router Vulnerability Possibly Exploited in AttacksA vulnerability affecting Milesight industrial routers, tracked as CVE-2023-4326, may have been exploited in attacks. The post Milesight Industrial Router Vulnerability Possibly Exploited in Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
16 OctCISA, FBI, and MS-ISAC Release Joint Advisory on Atlassian Confluence Vulnerability CVE-2023-22515Today, CISA, the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint Cybersecurity Advisory (CSA) in response to the active exploitation of CVE-2023-22515. This critical vulnerability affects certain versio…CISA.GOV
16 OctCisco Releases Security Advisory for IOS XE Software Web UICisco released a security advisory to address a vulnerability (CVE-2023-20198) affecting IOS XE Software Web UI . A cyber threat actor can exploit this vulnerability to take control of an affected device. CISA encourages users and administrators to review the Cisco security advis…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 22[−]
16 OctBinance's Smart Chain Exploited in New 'EtherHiding' Malware CampaignThreat actors have been observed serving malicious code by utilizing Binance's Smart Chain (BSC) contracts in what has been described as the "next level of bulletproof hosting." The campaign, detected two months ago, has been codenamed EtherHiding by Guardio Labs. The novel twist…THEHACKERNEWS.COM
16 OctSignal says there is no evidence rumored zero-day bug is realSignal messenger has investigated rumors spreading online over the weekend of a zero-day security vulnerability related to the 'Generate Link Previews' feature, stating that there is no evidence this vulnerability is real. [...]BLEEPINGCOMPUTER.COM
16 OctHackers Using Remote Admin Tools To Compromise Organizations With RansomwareCybercriminals behind the AvosLocker ransomware attack employed a tactic of infecting organizations through Open-Source Remote Administration Tools. This method allowed the malware to spread rapidly, potentially compromising sensitive data and systems across the affected networks…GBHACKERS.COM
16 OctSingapore and US pledge to combat online scams in cross-border cooperationThe collaboration aims to enhance regulatory enforcement activities, exchange information, and implement anti-scam measures in both countries to mitigate the risks faced by citizens and businesses.ZDNET.COM
16 OctBeware the cost traps that can strain precious cybersecurity budgetsRecent data paints a conflicting picture in relation to cybersecurity budgets. Some research indicates that budgets are increasing healthily with CISOs eyeing up their next spending sprees. Other studies suggest security budgets are tightening or even being slashed despite previo…CSOONLINE.COM
16 OctSignal Debunks Zero-Day Vulnerability Reports, Finds No EvidenceEncrypted messaging app Signal has pushed back against "viral reports" of an alleged zero-day flaw in its software, stating it found no evidence to support the claim. "After responsible investigation *we have no evidence that suggests this vulnerability is real* nor has any addit…THEHACKERNEWS.COM
16 OctPro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New CampaignPro-Russian hacking groups have exploited a recently disclosed security vulnerability in the WinRAR archiving utility as part of a phishing campaign designed to harvest credentials from compromised systems. "The attack involves the use of malicious archive files that exploit the …THEHACKERNEWS.COM
16 OctSignal debunks online rumours of zero-day security vulnerabilityOver the weekend rumours circulated on social networks of an unpatched security hole in the Signal messaging app that could allow a remote hacker to seize control of your smartphone. But were they true? Read more in my article on the Hot for Security blog.BITDEFENDER.COM
16 OctSignal Pours Cold Water on Zero-Day Exploit RumorsPrivacy-focused messaging firm Signal is pouring cold water on widespread rumors of a zero-day exploit in its popular encrypted chat app. The post Signal Pours Cold Water on Zero-Day Exploit Rumors appeared first on SecurityWeek .SECURITYWEEK.COM
16 Oct KEVCISA, FBI urge admins to patch Atlassian Confluence immediatelyCISA, FBI, and MS-ISAC warned network admins today to immediately patch their Atlassian Confluence servers against a maximum severity flaw actively exploited in attacks. [...]BLEEPINGCOMPUTER.COM
16 OctPro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New CampaignThe attackers exploit a recent flaw in WinRAR to execute malicious code and gain remote access to compromised systems. They also use a PowerShell script to steal data, including login credentials, from Google Chrome and Microsoft Edge browsers.THEHACKERNEWS.COM
16 Oct KEVCisco warns of new IOS XE zero-day actively exploited in attacksCisco warned admins today of a new and maximum severity zero-day vulnerability in its IOS XE Software that can let attackers gain full administrator privileges and take complete control of affected routers. [...]BLEEPINGCOMPUTER.COM
16 OctMilesight Industrial Router Vulnerability Possibly Exploited in AttacksThe vulnerability exposes system log files containing passwords, which can be used by attackers to gain unauthorized access. Security firm VulnCheck discovered evidence of small-scale exploitation of the vulnerability.SECURITYWEEK.COM
16 OctDozens of Squid Proxy Vulnerabilities Remain Unpatched Two Years After DisclosureDozens of vulnerabilities in the Squid caching and forwarding web proxy, a widely used open-source proxy, remain unpatched two years after being discovered by researcher Joshua Rogers.SECURITYWEEK.COM
16 Oct KEVHackers exploit critical flaw in WordPress Royal Elementor pluginA critical severity vulnerability impacting Royal Elementor Addons and Templates up to version 1.3.78 is reported to be actively exploited by two WordPress security teams. [...]BLEEPINGCOMPUTER.COM
16 OctCompanies should be hiring CISOs for their leadership talent - Jason Loomis - BSW #324Do we sound like a broken record? Leadership, communication, and risk management skills are key traits of the Chief Information Security Officer. But don't just take our word for it, Jason Loomis, CISO at Freshworks, joins Business Security Weekly to discuss why companies should …YOUTUBE.COM
16 OctEU Will Stand Up Office to Enforce AI Act, Says EU LawmakerDragos Tudorache Says the Agency Will Be a "Powerful Enforcer" of AI Act The EU will set up a dedicated office to oversee the implementation of the AI Act, especially by big-tech companies such as OpenAI. Dragoş Tudorache, a Romanian politician and the co-rapporteur of the AI Act…DATABREACHTODAY.CO.UK
16 OctA Vulnerability in Cisco IOS XE Software Web UI Could Allow for Privilege EscalationA vulnerability in Cisco IOS XE Software Web UI that could allow for privilege escalation. Successful exploitation could allow an unauthenticated remote attacker to create an account on an affected system with privilege level 15 access, allowing them to use that account to gain c…CISECURITY.ORG
16 OctCISA, NSA, FBI, and International Partners Release Updated Secure by Design GuidanceToday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI) released an update to Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Security-by- Design and -Default with…CISA.GOV
16 OctMeet the Cyber Mercenary who can Overthrow a Government | News - PSW8036:00pm ET - Chris Rock 8:00pm ET - Security News This week, we start things off with an interview with Chris Rock, from SIEMonster, about being the Cyber Mercenary who can Overthrow a Government . Then we discuss our security news for the week. →Full Show Notes: https://securityw…YOUTUBE.COM
16 OctState of Cybercrime | Crowdsourcing & Open Source as Cybersecurity Market Advantages | News - ESW336This week, we kick things off with an interview with Shane Sims, CEO at Kivu, about The State of Cybercrime and Breach Response. Then, we talk with Philippe Humeau, CEO and co-founder at CrowdSec, about Crowdsourcing and Open Source as Cybersecurity Market Advantages. Finally, we…YOUTUBE.COM
📋 SECURITY BULLETINS 1[−]
16 OctMicrosoft fixes Windows 10 security update installation issueMicrosoft has resolved a known issue that caused Windows 10 security updates released during this month's Patch Tuesday to fail with 0x8007000d errors. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 7[−]
16 OctUS EPA Nixes Cybersecurity Assessments of Water SystemsAgency Acts in Response to Lawsuit by Missouri, Arkansas and Iowa Attorneys General The Biden administration is backing down from efforts to make cybersecurity a component of safety assessments of water systems, months after federal judges ordered the EPA to halt those efforts. T…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 21[−]
16 OctCybersecurity Should be a Business Priority for CEOsA recent report by Accenture reveals that although 96% of CEOs consider cybersecurity to be critical for organizational growth and stability, 74% are concerned about their ability to minimize damage from cyberattacks.HELPNETSECURITY.COM
16 OctGUEST ESSAY: A primer on best practices for automating supply chain cybersecuritySupply chain security grows more crucial daily as cybercriminals attempt to disrupt distribution and transportation. In response, industry professionals must automate their cybersecurity tools to stay ahead. Why so? The 2020 SolarWinds cybersecurity incident — which industry expe…LASTWATCHDOG.COM
16 OctAI Algorithm Detects MitM Attacks on Unmanned Military VehiclesResearchers have developed an algorithm using machine learning techniques to detect and prevent man-in-the-middle attacks on unmanned military robots, which are highly susceptible to cyberattacks.BLEEPINGCOMPUTER.COM
16 OctUK Fines Equifax $13.6 Million for 2017 Data BreachEquifax Ltd's outsourcing of data processing to its US parent company led to delays in addressing the breach, as the UK arm was only informed minutes before the incident was publicly announced, hindering its ability to respond effectively.THERECORD.MEDIA
16 OctColonial Pipeline Attributes Ransomware Claims to ‘Unrelated’ Third-Party Data BreachThe Ransomed.vc gang attempted to extort Colonial Pipeline last week but was unsuccessful. As per researchers, the stolen documents shared by the gang appear to be unrelated to Colonial Pipeline.THERECORD.MEDIA
16 OctEquifax fined $13.4 million following data breachSince the 2017 cyber attack, Equifax has invested $1.5 billion in a security and technology transformationCSHUB.COM
16 OctHHS Warns Healthcare Sector of 'NoEscape' RaaS Gang ThreatsThe NoEscape ransomware group employs aggressive multi-extortion tactics, combining data exfiltration, encryption, and distributed denial of service attacks to pressure organizations into paying large ransom demands.BANKINFOSECURITY.COM
16 OctKansas Supreme Court Probes Potential Ransomware AttackElectronic Filing and Payments Offline as Courts Revert to Paper Records and Faxes The Kansas Supreme Court said it's probing a "security incident" that has disrupted access to IT systems also used by the state's Court of Appeals and every District Court but one, leaving them una…DATABREACHTODAY.CO.UK
16 OctBlackCat Allegedly Stole 5TB Data From Major ATM Solutions ProviderThe ALPHV ransomware group has claimed to have attacked QSI Inc., a major ITM and ATM solutions provider that works with NCR Corporation. The cyberattack could potentially expose sensitive data from various sectors.THECYBEREXPRESS.COM
16 OctThe Fast Evolution of SaaS Security from 2020 to 2024 (Told Through Video)SaaS Security’s roots are in configuration management. An astounding 35% of all security breaches begin with security settings that were misconfigured. In the past 3 years, the initial access vectors to SaaS data have widened beyond misconfiguration management. “SaaS Security on …THEHACKERNEWS.COM
16 OctEquifax Fined $13.5 Million Over 2017 Data BreachUK’s financial watchdog FCA imposes a £11 million (approximately $13.5 million) fine to Equifax over the 2017 data breach. The post Equifax Fined $13.5 Million Over 2017 Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
16 OctALPHV Gang Stole 5TB of Data From Illinois' Morrison Community HospitalThe group claims to have stolen 5TB of patients’ and employee’s information, backups, PII documents, and more. The gang also published a sample as proof of the stolen data.SECURITYAFFAIRS.COM
16 OctHealthcare breach costs soar requiring new thinking for safeguarding dataIn the digital age, data is often referred to as the new oil. Its value lies in the insights it can yield, particularly when it comes to healthcare, where data can help detect diseases, predict patient outcomes and help health professionals personalize treatments. But with the in…SECURITYINTELLIGENCE.COM
16 OctDecathlon Data Leak Exposes Personal Information of 8,000 Employees on Dark WebThe leaked data also included information from Bluenove, a technology and consulting firm, suggesting a broader cyberattack targeting multiple organizations. Neither Decathlon nor Bluenove have issued an official statement regarding the data leak.THECYBEREXPRESS.COM
16 OctIsraelis told to secure their home security cameras against hackersThe Government of Israel has told the owners of private home security cameras to urgently secure them against being hacked, in the wake of a dramatic heightening of the conflict between Israel and Hamas.GRAHAMCLULEY.COM
16 OctUpdate: LockBit Ransomware Gang Demanded an $80 Million Ransom From CDWThe ransomware group demanded an $80 million ransom, but CDW only offered $1 million. CDW states that the affected servers are isolated and not customer-facing, and its systems remain fully operational.SECURITYAFFAIRS.COM
16 OctAcademics Devise Cyber Intrusion Detection System for Unmanned RobotsAustralian AI researchers teach an unmanned military robot’s operating system to identify MitM cyberattacks. The post Academics Devise Cyber Intrusion Detection System for Unmanned Robots appeared first on SecurityWeek .SECURITYWEEK.COM
16 OctRussian Sandworm hackers breached 11 Ukrainian telcos since MayThe state-sponsored Russian hacking group tracked as 'Sandworm' has compromised eleven telecommunication service providers in Ukraine between May and September 2023. [...]BLEEPINGCOMPUTER.COM
16 OctKansas courts IT systems offline after ‘security incident’Information systems of state courts across Kansas are still offline after they've been disrupted in what the Kansas judicial branch described last Thursday as a "security incident." [...]BLEEPINGCOMPUTER.COM
16 OctDiscord still a hotbed of malware activity — Now APTs join the funDiscord continues to be a breeding ground for malicious activity by hackers and now APT groups, with it commonly used to distribute malware, exfiltrate data, and targeted by threat actors to steal authentication tokens. [...]BLEEPINGCOMPUTER.COM
16 OctVictim Count Doubles in Heart Institute Data Theft HackTennessee Practice So Far Faces 5 Proposed Class Action Lawsuits The number of people affected by a Tennessee cardiac care clinic hack has more than doubled to 411,000 since the healthcare group first reported the incident to regulators in July. Cybercriminal group Karakurt claim…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 24[−]
16 OctISC Stormcast For Monday, October 16th, 2023 https://isc.sans.edu/podcastdetail/8702, (Mon, Oct 16th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
16 OctSSH Hardening with ssh-auditsubmitted by zquestz to cybersecurity 1 points | 0 comments https://thoughts.greyh.at/posts/ssh-audit/THOUGHTS.GREYH.AT
16 OctGitHub - sterrasec/dummy: Generator of static files for testing file upload. It can generate the png file of any number of bytes!submitted by L4s to secops 1 points | 0 comments https://github.com/sterrasec/dummy/ GitHub - sterrasec/dummy: Generator of static files for testing file upload. It can generate the png file of any number of bytes!::Generator of static files for testing file upload. It can genera…GITHUB.COM
16 OctBSidesAugusta 2023 - 28 talkssubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/144726c1-66fb-4073-9060-6c79ef7a3fba.png Schedule from the website The Youtube Playlist BSidesAugusta is part of the Security B-sides (BSides) phenomenon, a worldwide community-driven framew…INFOSEC.PUB
16 OctBeware: Lumma Stealer Distributed via Discord CDNThis blog discusses how threat actors abuse Discord’s content delivery network (CDN) to host and spread Lumma Stealer, and talks about added capabilities to the information stealing malware.TRENDMICRO.COM
16 OctMicrosoft to Kill NTLM and Expand Kerberos AuthenticationIn an ever-changing digital landscape, robust security measures are paramount. As Windows adapts to meet the evolving demands of our world, user authentication, a cornerstone of Windows security, undergoes significant transformation. Microsoft is actively working to enhance user …GBHACKERS.COM
16 OctSpyware Caught Masquerading as Israeli Rocket Alert ApplicationsA threat actor targets Israelis with spyware masquerading as an Android application for receiving rocket alerts. The post Spyware Caught Masquerading as Israeli Rocket Alert Applications appeared first on SecurityWeek .SECURITYWEEK.COM
16 OctEPA Withdraws Water Sector Cybersecurity Rules Due to LawsuitsEnvironmental Protection Agency (EPA) withdraws recent water sector cybersecurity rules due to lawsuits by states and water associations. The post EPA Withdraws Water Sector Cybersecurity Rules Due to Lawsuits appeared first on SecurityWeek .SECURITYWEEK.COM
16 OctCoin Flips Are BiasedExperimental result : Many people have flipped coins but few have stopped to ponder the statistical and physical intricacies of the process. In a preregistered study we collected 350,757 coin flips to test the counterintuitive prediction from a physics model of human coin tossing…SCHNEIER.COM
16 OctMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
16 OctMicrosoft Improving Windows Authentication, Disabling NTLMMicrosoft is adding new features to the Kerberos protocol, to eliminate the use of NTLM for Windows authentication. The post Microsoft Improving Windows Authentication, Disabling NTLM appeared first on SecurityWeek .SECURITYWEEK.COM
16 OctSpyNote Android Trojan Steals Call Logs, Records Audio and Phone CallsSpyNote hides its presence on the Android home screen and Recents screen, making it difficult to detect, and grants itself additional permissions to record audio, phone calls, log keystrokes, and capture screenshots.THEHACKERNEWS.COM
16 OctSubscribe to CyberheistNews, Now Available on LinkedIn!We're so excited to announce that CyberheistNews is now available on LinkedIn!KNOWBE4.COM
16 Octcrosspost: Watch EFF's Talks from DEF CON 31 - Infosec.Pubsubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/post/3110142INFOSEC.PUB
16 Oct“EtherHiding” — Hiding Web2 Malicious Code in Web3 Smart Contractssubmitted by L4s to secops 1 points | 0 comments https://labs.guard.io/etherhiding-hiding-web2-malicious-code-in-web3-smart-contracts-65ea78efad16 “EtherHiding” — Hiding Web2 Malicious Code in Web3 Smart Contracts::undefinedLABS.GUARD.IO
16 OctAgentTesla Stealer Delivered Via Weaponized PDF and CHM FilesAgentTesla, a notorious information stealer, is observed spreading via CHM and PDF Files, which covertly harvest critical information from the victim’s computer. The stealer has features including keylogging, clipboard data capture, file system access, and data transfer to …GBHACKERS.COM
16 OctExponential Deepfake Porn is Out of Control And a Huge Security RiskThis year, the world of deepfake pornography is growing at an alarming rate, thanks to advances in AI and ML. Deepfakes make it look like victims are part of explicit content without their knowledge or permission. Search engines like Google and Microsoft's Bing are unintentionall…KNOWBE4.COM
16 OctDisclosing the BLOODALCHEMY backdoorsubmitted by Voyager to cybersecurity 1 points | 0 comments https://www.elastic.co/security-labs/disclosing-the-bloodalchemy-backdoor BLOODALCHEMY is a new, actively developed, backdoor that leverages a benign binary as an injection vehicle, and is a part of the REF5961 intrusion…ELASTIC.CO
16 OctCompanies should hire CISOs for their leadership talent | Leadership & Communications - BSW #324This week, we start things off with an interview with Jason Loomis, CISO at Freshworks, about how Companies should be hiring CISOs for their leadership talent. Then we follow up with our Leadership and Communications Articles for the week. Visit https://www.securityweekly.com/bsw…YOUTUBE.COM
16 OctWomen Political Leaders Targeted With RomCom RAT VariantResearchers Attribute Campaign to Threat Actor Tracked as Void Rabisu A financially motivated hacking group turned cyberespionage operation targeted attendees of high-profile European conferences, including the Women Political Leaders Summit in Brussels. Threat actor Void Rabisu …DATABREACHTODAY.CO.UK
16 OctIs Your Board Cyber-Ready as CISO Salaries Slow, Thus Making Difficult Decisions - BSW #324In the leadership and communications section, Is Your Board Cyber-Ready?, Chief security officers' salary growth slowing, The Secret to Making Difficult Decisions, and more! Visit https://www.securityweekly.com/bsw for all the latest episodes! Show Notes: https://securityweekly.c…YOUTUBE.COM
16 OctHacking ServiceNow Instances While Unauthenticated For Fun and Profitsubmitted by L4s to secops 1 points | 0 comments https://enumerated.ie/servicenow-data-exposure Hacking ServiceNow Instances While Unauthenticated For Fun and Profit::undefinedENUMERATED.IE
16 OctCisco | Juniper | AVOSLocker | NoEscape | Valve | FreedomGPT | Aaran Leyland & more – SWN334This week, Doug Talks: Cisco, Juniper, AVOSLocker, NoEscape,Valve, FreedomGPT, Aaran Leyland, and more on the Security Weekly News. →Full Show Notes: https://securityweekly.com/swn334 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: https:/…YOUTUBE.COM
16 OctNews alert: Infobip identifies five typical security challenges impacting mobile usersVodnjan, Croatia, October 16, 2023 – Global cloud communications platform Infobip has identified five common frauds impacting mobile users in the messaging ecosystem. Infobip explains the security challenges enterprises and mobile network operators (MNOs) face in the application-…LASTWATCHDOG.COM
🌐 CYBER THREAT LANDSCAPE 8[−]
16 OctAs Biohacking Evolves, How Vulnerable are we to Cyber Threats?The security of implantable technologies lies in the devices themselves, not the human body, and it is crucial to prioritize the security of these technologies before implanting them.HELPNETSECURITY.COM
16 OctLumma Stealer Found Being Distributed via Discord CDNLumma Stealer robs user credentials and is being sold as a service on underground forums. The malware is distributed through direct messages on Discord, where victims are tricked into downloading and executing a malicious file.TRENDMICRO.COM
16 OctAfter Hackers Distribute Malware In-Game Updates, Steam Adds SMS-based Security Check for DevelopersThe feature involves SMS-based two-factor authentication for game developers on Steam, where they receive a confirmation code via text message to log into their accounts.BITDEFENDER.COM
16 OctSpyNote: Beware of This Android Trojan that Records Audio and Phone CallsThe Android banking trojan known as SpyNote has been dissected to reveal its diverse information-gathering features. Typically spread via SMS phishing campaigns, attack chains involving the spyware trick potential victims into installing the app by clicking on the embedded link, …THEHACKERNEWS.COM
16 OctInternship Offers for the 2023-2024 SeasonThe internship season is back at Quarkslab! Our internship topics cover a wide range of our expertise and aim at tackling new challenges, namely:QUARKSLAB.COM
16 OctFake 'RedAlert' rocket alert app for Israel installs Android spywareIsraeli Android users are targeted by a malicious version of the 'RedAlert - Rocket Alerts' app that, while it offers the promised functionality, acts as spyware in the background. [...]BLEEPINGCOMPUTER.COM
16 OctFake ‘RedAlert’ Rocket Alert App for Israel Installs Android SpywareUsers should carefully review app permissions and ensure they are using the latest version of the app to minimize the risk of being targeted by spyware or fake notifications.BLEEPINGCOMPUTER.COM
🎙️ PODCASTS 1[−]
16 OctCyber Security Today, Oct. 16, 2023 - Why a hacker created a fake conference website after the event, and moreThis episode reports on Equifax UK fined US$13 million, Microsoft paying for finding AI vulnerabilities and moreCYBERSECURITYTODAY.LIBSYN.COM
📡 INFOSEC NEWS 9[−]
16 OctAre typos still relevant as an indicator of phishing?, (Mon, Oct 16th)I was recently asked by a customer whether it still makes sense to cover “typos” as a potential indicator that an e-mail message may be malicious in the context of security awareness courses. ISC.SANS.EDU
16 OctMicrosoft to Phase Out NTLM in Favor of Kerberos for Stronger AuthenticationNTLM, which has been used as a fallback mechanism, relies on a three-way handshake and password hashing, while Kerberos uses a two-part process and encryption. NTLM has security weaknesses and is vulnerable to relay attacks.THEHACKERNEWS.COM
16 OctFifth of UK Cybersecurity Pros Work Excessive HoursThe UK’s cybersecurity professionals believe they have excellent career prospects and are employed in a “booming” sector, but many are working unsafe hours, according to a new report from the Chartered Institute of Information Security (CIISec).INFOSECURITY-MAGAZINE.COM
16 OctEPA Withdraws Water Sector Cybersecurity Rules Due to LawsuitsThe US EPA has withdrawn cybersecurity rules for public water systems due to lawsuits filed by states and non-profit water associations, citing concerns about financial burden and cybersecurity vulnerabilities.SECURITYWEEK.COM
16 OctCongratulations to the Top MSRC 2023 Q3 Security Researchers!Congratulations to all the researchers recognized in this quarter’s Microsoft Researcher Recognition Program leaderboard! Thank you to everyone for your hard work and continued partnership to secure customers. The top three researchers of the 2023 Q3 Security Researcher Leaderboa…MSRC.MICROSOFT.COM
16 OctFraudsters target Booking.com customers claiming hotel stay could be cancelledOne of the world's largest online travel agencies, Booking.com, is being used by fraudsters to trick hotel guests into handing over their payment card details. How do I know? The fraudsters tried the trick with me.GRAHAMCLULEY.COM