106Articles
8Categories
2023-10-17Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 10[−]
17 OctActive exploitation of Cisco IOS XE Software Web Management User Interface vulnerabilitysubmitted by c0mmando to netsec 1 points | 0 comments https://blog.talosintelligence.com/active-exploitation-of-cisco-ios-xe-software/ Overview Cisco has identified active exploitation of a previously unknown vulnerability in the Web User Interface (Web UI) feature of Cisco IOS X…TALOSINTELLIGENCE.COM
17 OctCisco: Hackers targeting zero-day found in internet-exposed routerssubmitted by c0mmando to netsec 2 points | 0 comments https://therecord.media/cisco-hackers-targeting-zero-day Cisco warned on Monday that hackers are targeting a line of its software through a previously unknown vulnerability. In addition to releasing an advisory about the issue…THERECORD.MEDIA
17 OctWarning: Unpatched Cisco Zero-Day Vulnerability Actively Targeted in the WildCisco has warned of a critical, unpatched security flaw impacting IOS XE software that’s under active exploitation in the wild. Rooted in the web UI feature, the zero-day vulnerability is assigned as CVE-2023-20198 and has been assigned the maximum severity rating of 10.0 on the …THEHACKERNEWS.COM
17 OctCISA, FBI, and MS-ISAC Warn of Threat Actors Exploiting Atlassian Confluence Flaw for Initial Access to NetworksThe recently disclosed flaw (CVE-2023-22515) in Atlassian Confluence Data Center and Server allows malicious actors to create unauthorized administrator accounts, leading to widespread exploitation and the need for immediate application of upgrades.CISA.GOV
17 OctHackers Exploit Critical Flaw in WordPress Royal Elementor PluginThe vendor has released a patch (version 1.3.79) to fix the flaw (CVE-2023-5360), and users are recommended to upgrade as soon as possible, but a website cleanup may be necessary to remove any infections or malicious files.BLEEPINGCOMPUTER.COM
17 Oct KEVExperts Warn of Severe Flaws Affecting Milesight Routers and Titan SFTP ServersA severity flaw impacting industrial cellular routers from Milesight may have been actively exploited in real-world attacks, new findings from VulnCheck reveal. Tracked as CVE-2023-43261 (CVSS score: 7.5), the vulnerability has been described as a case of information disclosure t…THEHACKERNEWS.COM
17 OctUS Gov Expects Widespread Exploitation of Atlassian Confluence VulnerabilityCISA, FBI, and MS-ISAC warn of potential widespread exploitation of CVE-2023-22515, a critical vulnerability in Atlassian Confluence. The post US Gov Expects Widespread Exploitation of Atlassian Confluence Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctCisco Devices Hacked via IOS XE Zero-Day VulnerabilityCisco is warning customers that a new IOS XE zero-day vulnerability tracked as CVE-2023-20198 is being exploited to hack devices. The post Cisco Devices Hacked via IOS XE Zero-Day Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctCritical Vulnerabilities Uncovered in Open Source CasaOS Cloud SoftwareTwo critical security flaws discovered in the open-source CasaOS personal cloud software could be successfully exploited by attackers to achieve arbitrary code execution and take over susceptible systems. The vulnerabilities, tracked as CVE-2023-37265 and CVE-2023-37266, both car…THEHACKERNEWS.COM
17 OctCritical Cisco IOS XE vulnerability gives attackers control of devicesCisco's Talos security team has warned that IOS XE software running on many of its late-model devices has a critical zero-day vulnerability that has already led to exploits in the wild, with attackers apparently able to take full control of affected networking products, including…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 24[−]
17 OctUnpatched Cisco Zero-Day Vulnerability Actively Targeted in the WildThe vulnerability affects enterprise networking gear with the Web UI feature enabled and exposed to the internet or untrusted networks, and it is recommended to disable the HTTP server feature as a mitigation.THEHACKERNEWS.COM
17 OctSignal Debunks Zero-Day Vulnerability Reports, Finds No EvidenceThe company conducted a thorough investigation and found no indication that the vulnerability is real. Signal also reached out to the US government, which provided no information to support the claim.THEHACKERNEWS.COM
17 OctStopping the two-factor threat: configuring Microsoft Entra ID to prevent authentication breachesMultifactor authentication (MFA) can be a mighty bulwark against unauthorized access, but there's at least one method bad actors have employed to do a two-step around the defense: sneaking illegitimate two-factor devices into a Microsoft network. Here's an example of how such a c…CSOONLINE.COM
17 OctUK Appoints Neal-Hopes as Commander of National Cyber ForceAir Vice-Marshal Tim Neal-Hopes has been appointed as the new commander of the United Kingdom's National Cyber Force (NCF). He joins the NCF from Strategic Command, where he served as the director for cyber, intelligence, and information integration.THERECORD.MEDIA
17 OctWordPress Websites Hacked via Royal Elementor Plugin Zero-DayA critical vulnerability in the Royal Elementor WordPress plugin has been exploited as a zero-day since August 30. The post WordPress Websites Hacked via Royal Elementor Plugin Zero-Day appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctSecurity Vulnerability of Switzerland’s E-Voting SystemOnline voting is insecure, period. This doesn’t stop organizations and governments from using it. (And for low-stakes elections, it’s probably fine.) Switzerland—not low stakes—uses online voting for national elections. Ed Appel explains why it’s a b…SCHNEIER.COM
17 OctWebinar: Locking Down Financial and Accounting Data — Best Data Security StrategiesFinancial data is much more than just a collection of numbers; it is a crucial component of any business and a prime target for cybercriminals. It's important to understand that financial records can be a veritable treasure trove for digital pirates. A security breach not only pu…THEHACKERNEWS.COM
17 OctLumma Stealer: A New Threat on DiscordSecurity researchers discovered threat actors using the Discord platform to distribute Lumma Stealer, an information-stealing malware. The malware is designed to steal user credentials, cryptocurrency wallets, and browser data. Users need to exercise caution while clicking links …CYWARE.COM
17 OctAmazon quietly rolls out support for passkeys, with a catchAmazon has quietly rolled out support for passkeys as it becomes the latest tech giant to join the passwordless future. But you still might have to hold onto your Amazon password for a little while longer. The option to set up a passkey is now available on the e-commerce giant’s …TECHCRUNCH.COM
17 OctCybercriminals register .AI domains of trusted brands for malicious activityAlmost half of Forbes Global 2000 companies do not have control over their branded artificial intelligence (.AI) domain names, which are registered by third parties. That's according to the 2023 Domain Security Report from CSC , which revealed that cybercriminals are exploiting A…CSOONLINE.COM
17 OctHow the Hamas-Israeli conflict puts CISOs on the spotConflicts have had a digital component since before the beginning of the century be they by the combatants or their sympathizers. The recent heinous attack on Israel by the Hamas terrorist group was no exception. These actions highlight the need for CISOs, especially those with e…CSOONLINE.COM
17 OctThousands of Cisco IOS XE devices hacked in widespread attacksAttackers have exploited a recently disclosed critical zero-day bug to compromise and infect thousands of Cisco IOS XE devices with malicious implants. [...]BLEEPINGCOMPUTER.COM
17 OctMultiple Vulnerabilities in South River Technologies' Titan MFT and Titan SFTP Servers FixedThese include authenticated remote code execution via "zip slip" and WebDAV path traversal, session fixation on the remote administration server, information disclosure via path traversal on FTP, and information disclosure in the admin interface.RAPID7.COM
17 OctBeyond Quantum: MemComputing ASICs Could Shatter 2048-bit RSA EncryptionThe feared ‘cryptopocalypse’ (the death of current encryption) might be sooner than expected – caused by in-memory computing ASICs rather than quantum computers. The post Beyond Quantum: MemComputing ASICs Could Shatter 2048-bit RSA Encryption appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctCISA Releases Two Industrial Control Systems AdvisoriesCISA released two Industrial Control Systems (ICS) advisories on October 17, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-290-01 Schneider Electric EcoStruxure Power Monitoring Expert and P…CISA.GOV
17 OctTV Advertising Sales Giant Affected by Ransomware AttackThe Black Basta ransomware gang claimed responsibility for the attack, but the extent of the data stolen is unknown. The company confirmed the incident and stated that they are working with law enforcement to address the issue.THERECORD.MEDIA
17 OctOT Security - Huxley Barbee - ASW #259It's no surprise that OT security has fared poorly over the last 30+ years. To many appsec folks, these systems have uncommon programming languages, unfamiliar hardware, and brittle networking stacks. They also tend to have different threat scenarios. Many of these systems are de…YOUTUBE.COM
17 OctProve Identity Snags $40M Funding for ID Verification TechStartup with roots in the ecommerce mobile payments space raises $40 million for digital identity verification and authentication technology. The post Prove Identity Snags $40M Funding for ID Verification Tech appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctCritical Vulnerabilities Uncovered in Open Source CasaOS Cloud SoftwareTwo critical security flaws in CasaOS personal cloud software allowed attackers to bypass authentication and gain full access to the system, posing a significant cyber threat.THEHACKERNEWS.COM
17 Oct KEVUnpatched Zero-Day Being Exploited in the Wild, Cisco WarnsNo Patch Available; Thousands Infected by IOS Software XE Web User Interface Flaw Cisco issued an urgent warning Monday about a critical vulnerability in one of its modular operating system's web interfaces that is designed for routers, switches and other appliances. Hackers expl…DATABREACHTODAY.CO.UK
17 OctOver 10,000 Cisco devices hacked in IOS XE zero-day attacksAttackers have exploited a recently disclosed critical zero-day bug to compromise and infect more than 10,000 Cisco IOS XE devices with malicious implants. [...]BLEEPINGCOMPUTER.COM
17 OctHasMySecretLeaked finds exposed secrets in the GitHub repositoryExposing hard-coded credentials and sensitive secrets through public code repositories has been a major security risk for organizations for years, with over 10 million new instances of credential leaks detected on GitHub alone in 2022. A new free service called HasMySecretLeaked …CSOONLINE.COM
17 OctOracle Quarterly Critical Patches Issued October 17, 2023Multiple vulnerabilities have been discovered in Oracle products, which could allow for remote code execution.CISECURITY.ORG
📋 SECURITY BULLETINS 1[−]
17 OctOctober Windows Server updates cause Hyper-V VM boot issuesAccording to customer reports, this month's Patch Tuesday updates are breaking virtual machines on Hyper-V hosts, causing them to no longer boot and display "failed to start" errors. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 5[−]
17 OctCyber experts applaud the new White House cybersecurity planFirst, there was a strategy. Now, there’s a plan. The Biden Administration recently released its plan for implementing the highly anticipated national cybersecurity strategy published in March. The new National Cybersecurity Strategy Implementation Plan (NCSIP) lays out spe…SECURITYINTELLIGENCE.COM
17 OctCritical Vulnerabilities Expose ​​Weintek HMIs to AttacksThe US cybersecurity agency, CISA, has warned organizations about critical vulnerabilities found in a human-machine interface (HMI) product made by the Taiwan-based Weintek. The impacted product is used globally, including in critical manufacturing.SECURITYWEEK.COM
17 OctOver 40,000 admin portal accounts use 'admin' as a passwordSecurity researchers found that IT administrators are using tens of thousands of weak passwords to protect access to portals, leaving the door open to cyberattacks on enterprise networks. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 20[−]
17 OctPhoenix - 74,776 breached accountsIn mid-2021, the "vintage messaging reborn" service Phoenix suffered a data breach that exposed 75k unique email addresses. The breach also exposed IP addresses, usernames and passwords.HAVEIBEENPWNED.COM
17 OctCERT-UA Reports: 11 Ukrainian Telecom Providers Hit by CyberattacksThe Computer Emergency Response Team of Ukraine (CERT-UA) has revealed that threat actors "interfered" with at least 11 telecommunication service providers in the country between May and September 2023. The agency is tracking the activity under the name UAC-0165, stating the intr…THEHACKERNEWS.COM
17 OctUS Treasury Inks Cybersecurity Agreement With United Arab EmiratesThe agreement between the US and the UAE comes ahead of the International Counter Ransomware Initiative summit, where governments are expected to pledge not to pay ransoms to cybercriminals.THERECORD.MEDIA
17 OctKansas Supreme Court Probes Potential Ransomware AttackThe Kansas Supreme Court and other district courts in the state are experiencing a disruption in their IT systems due to a security incident, leading to the suspension of electronic filing of documents.BANKINFOSECURITY.COM
17 Oct11 Ukrainian Telecommunications Providers Hit by Cyberattacks Using POEMGATE and POSEIDON MalwareThe hackers used reconnaissance techniques to identify vulnerabilities in the telecom providers' networks and gained unauthorized access using compromised servers in the Ukrainian internet segment.THEHACKERNEWS.COM
17 OctXorDDoS Infects Linux Devices and uses them to Carry out DDoS AttacksA new campaign has been discovered that uses XorDDoS Trojan, which affects Linux systems and devices, turning them into zombies that can be controlled by threat actors remotely. Moreover, these compromised systems can later be used for DDoS(Distributed Denial-of-Service) attacks.…GBHACKERS.COM
17 OctUpdate: Victim Count Doubles in Heart Institute Data Theft HackThe exact reason for the significant increase in affected individuals since July is unclear, but ongoing investigation and the discovery of additional compromised locations may be contributing factors.BANKINFOSECURITY.COM
17 OctStronger Ransomware Protection Finally Pays OffA recent survey by Hornetsecurity reveals that 60% of companies are highly concerned about ransomware attacks, highlighting the urgency for robust protection measures and the active involvement of leadership in preventing such incidents.HELPNETSECURITY.COM
17 OctFighting off cyberattacks? Make sure user credentials aren’t compromisedLogin credential theft presents one of the biggest and most enduring cybersecurity problems. This article by Specops SOftware looks at the motivations driving credential theft and the tactics bad actors are likely to use. [...]BLEEPINGCOMPUTER.COM
17 OctFake Browser Updates Used to Deploy MalwareNotifications on Compromised Websites Impersonate Chrome, Firefox and Edge Browsers Cybercriminals are disguising malware as phony browser updates on compromised websites. Fraudulent updates for Chrome, Firefox and Edge browsers are luring unsuspecting users into downloading malw…DATABREACHTODAY.CO.UK
17 OctKnight Ransomware Group Claims Cyberattack on BMW Munique MotorsThe Knight group threatened to release stolen files and provided countdown links. However, the parent company, BMW, has not confirmed the attack. The website for BMW Munique Motors is still operational.THECYBEREXPRESS.COM
17 OctUkrainian Telcos Targeted by Suspected Sandworm HackersAttackers' MO: Data Exfiltration, Followed by Network and Hardware Disruption Amplifying kinetic attacks, Russian hackers in recent months have hit at least 11 telecommunications firms in Ukraine with a barrage of "destructive" malware designed to exfiltrate data, steal social me…DATABREACHTODAY.CO.UK
17 OctResearchers Warn of Increased Malware Delivery via Fake Browser UpdatesThe threat group behind the SocGholish campaigns is likely responsible for the ClearFake malware delivery campaign, which uses compromised WordPress sites to push malicious fake browser updates.HELPNETSECURITY.COM
17 OctCyber Insurers Notes Ransomware Claims Rose Significantly in the First Half of 2023Cyber insurers are claiming that cybercriminals made ransomware attacks popular again in 2023 after a slight break in 2022.KNOWBE4.COM
17 OctD-Link confirms data breach after employee phishing attackTaiwanese networking equipment manufacturer D-Link confirmed a data breach linked to information stolen from its network and put up for sale on BreachForums earlier this month. [...]BLEEPINGCOMPUTER.COM
17 OctFive Eyes Urges Tech Startups to Protect Against IP TheftMI5 Warns of 'Share Rise' in Cyberespionage Nation-state hacks against Western start-ups are surging in a bid by competitor nations to glean intellectual property, warns the Five Eyes intelligence alliance. The stolen data was likely used to fast-track technological and military …DATABREACHTODAY.CO.UK
17 OctIBM Says 631K Affected in Johnson & Johnson Database BreachIBM Blames 'Technical Method' for Allowing Unauthorized Access to Patient Info IBM says the personal information of 631,000 people was compromised by a "technical method" that allowed unauthorized access to a third-party database used by a Johnson & Johnson patient medication sup…DATABREACHTODAY.CO.UK
17 OctKwikTrip all but says IT outage was caused by a cyberattackKwik Trip has released another statement on an ongoing outage, all but confirming it suffered a cyberattack that has led to IT system disruptions. [...]BLEEPINGCOMPUTER.COM
17 OctAndroidLista - 6,640,643 breached accountsIn July 2021, the Android applications and games review site AndroidLista suffered a data breach. The incident exposed 6.6M user records containing email addresses, names, usernames and passwords stored as salted SHA-1 hashes, all of which were subsequently posted to a popular ha…HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 27[−]
17 OctISC Stormcast For Tuesday, October 17th, 2023 https://isc.sans.edu/podcastdetail/8704, (Tue, Oct 17th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
17 OctDo ARM CPUs have an equivelant to the Intel Management Engine, or the like?submitted by Kalcifer to cybersecurity 1 points | 0 comments I’m not sure if this is the right community for this sort of post. I couldn’t think of any other community to post it in. If there does exist a more appropriate place to post it, then please let me know.SH.ITJUST.WORKS
17 OctBLOODALCHEMY provides backdoor to ASEAN secretssubmitted by c0mmando to netsec 1 points | 0 comments https://www.theregister.com/2023/10/16/bloodalchemy_backdoor/ Security researchers have uncovered a backdoor used in attacks against governments and organizations in the Association of Southeast Asian Nations (ASEAN). Dubbed “…THEREGISTER.COM
17 OctSHARED INTEL Q&A: Everything the Cisco-Splunk merger tells us about the rise of SIEMsCisco’s recent move to acquire SIEM stalwart Splunk for a cool $28 billion aligns with the rising urgency among companies in all sectors to better protect data — even as cyber threats intensify and disruptive advancements in AI add a … (more…)LASTWATCHDOG.COM
17 OctVoid Rabisu Targets Women Political Leaders with New RomCom 4.0 VariantVoid Rabisu has been found deploying the new RomCom 4.0 backdoor against participants of the Women Political Leaders (WPL) Summit in Brussels. According to researchers, the latest variant has undergone some significant changes in its architecture, making it lighter and stealthier…CYWARE.COM
17 OctThreat Actors Abuse Discord to Blend Within Organizations’ Network TrafficDiscord has become a household name in online gaming and digital communication. Gamers, friends, and families flock to this platform to chat, share, and collaborate. Discord is one of the most widely used communication tools worldwide, with millions of users. Yet, this widespread…GBHACKERS.COM
17 OctNSA Publishes ICS/OT Intrusion Detection Signatures and AnalyticsNSA has released Elitewolf, a repository of intrusion detection signatures and analytics for OT environments. The post NSA Publishes ICS/OT Intrusion Detection Signatures and Analytics appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctPhishing Tests Start The Virtuous Cycle Of A Strong Security CulturePhishing tests are the catalyst to achieve a sustainable security culture within your organization. They are actually the start of a virtuous cycle that helps you move up to the highest maturity level. KNOWBE4.COM
17 OctGrowing Concern Over Role of Hacktivism in Israel-Hamas ConflictResearchers from Radware found that Israel endured 143 DDoS attacks between October 2 and October 10, making it the most targeted nation-state during that period. These attacks were all claimed by hacktivists on the messaging service Telegram.INFOSECURITY-MAGAZINE.COM
17 OctResearchers Uncovered the Hack of a Private Power Station in IsraelIn the continuing Israel-Palestine conflict, there has been a noticeable rise in hacktivist groups who are planning an unending attack against a variety of targets on both sides of the conflict. On October 8, the Cyber Av3ngers group revealed a significant hack on the Israeli Dor…GBHACKERS.COM
17 OctBLE Spam allows now to send unwanted notifications to iOS, Android and Windows at once using Flipper Zero or Androidsubmitted by L4s to secops 1 points | 0 comments https://www.mobile-hacker.com/2023/10/17/spam-ios-android-and-windows-with-bluetooth-pairing-messages-using-flipper-zero-or-android-smartphone/ BLE Spam allows now to send unwanted notifications to iOS, Android and Windows at once …MOBILE-HACKER.COM
17 OctTraining Tuesday - Discussions for certs, training and learning-at-homesubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss industry certifications, trainings and other courses/learning. Ask questions, share your experiences and help others!INFOSEC.PUB
17 OctThreat Hunting to Find the Good StuffPeter Havens from Cortex product marketing sits down with Leeroy Perera, staff security engineer to discuss the practice of threat hunting and how we apply it in our SOC. The post Threat Hunting to Find the Good Stuff appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
17 OctDiscord Still a Hotbed of Malware Activity — Now APTs Join the FunA new report by Trellix reveals that Discord, a popular communication platform, is being increasingly used by hackers, including advanced persistent threat (APT) groups, to target critical infrastructure.BLEEPINGCOMPUTER.COM
17 OctAnonybit Raises $3 Million for Biometric Authentication PlatformAnonybit has raised $3 million in seed funding extension for its biometric authentication and data protection solutions. The post Anonybit Raises $3 Million for Biometric Authentication Platform appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctCritical Vulnerabilities Expose ​​Weintek HMIs to AttacksWeintek has patched critical and high-severity vulnerabilities found in its cMT series HMIs by industrial cybersecurity firm TXOne. The post Critical Vulnerabilities Expose ​​Weintek HMIs to Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
17 OctB-Sides Orlando 2023 - The Rise Of The Robots - 16 hours livestreamssubmitted by ashar to security_cpe 2 points | 0 comments https://infosec.pub/pictrs/image/a18c74f7-920d-4402-93ff-bb66305cb335.png Schedule from the website BSides Orlando 2023 - Track 1 BSides Orlando 2023 - Track 2 About BSides Orlando is a community organized event, driven by …INFOSEC.PUB
17 OctEffective Communication is Critical for CISO Success - Wes Knight - CSP #144Technical people, CISOs included, may have challenges communicating well with executive management due to a different career path evolution . To maximize our success, we must all improve our communication skills with technical and non-technical people. Join us as we discuss some …YOUTUBE.COM
17 OctHow Bank Impersonation Scams Erode Customer TrustCybercrime Expert Al Pascual on the Types of Scams Banks Often Overlook Each year, financial scams cost banks up to $400 million in losses. Despite heavy investments in anti-fraud technology, banks are struggling to protect customers. Bank impersonation scams continue to be the m…DATABREACHTODAY.CO.UK
17 OctWidespread Cisco IOS XE Implants in the Wildsubmitted by L4s to secops 1 points | 0 comments https://vulncheck.com/blog/cisco-implants Widespread Cisco IOS XE Implants in the Wild::VulnCheck scanned the internet for implanted Cisco IOS XE systems and found thousands of results.VULNCHECK.COM
17 OctDiscord: A Playground for Nation-State Hackers Targeting Critical InfrastructureIn what's the latest evolution of threat actors abusing legitimate infrastructure for nefarious ends, new findings show that nation-state hacking groups have entered the fray in leveraging the social platform for targeting critical infrastructure. Discord, in recent years, has be…THEHACKERNEWS.COM
17 OctHTTP/2 Rapid Reset, Curl's SOCKS5 Bug, Standardizing CycloneDX, AI Bug Bounty - ASW #259How HTTP/2's rapid reset is abused for DDoS, a look at the fix for Curl's recent high severity bug, OWASP moves to make CycloneDX a standard, Microsoft deprecates NTLM, VBScript, and old TLS -- while also introducing an AI bug bounty program. Visit https://www.securityweekly.com/…YOUTUBE.COM
17 OctCisco, Juniper, AVOSLocker, NoEscape,Valve, FreedomGPT, More News, and Aaran Leyland - SWN #334Cisco, Juniper, AVOSLocker, NoEscape, Valve, FreedomGPT, More News and Aaran Leyland. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-334YOUTUBE.COM
17 OctSummit Sabotage: Malicious Phishing Campaign Hits Female Political Leaders Using Social EngineeringA threat actor dubbed “Void Rabisu” used social engineering to target attendees of the Women Political Leaders (WPL) Summit that was held in Brussels from June 7 to 8, 2023, Trend Micro has found.KNOWBE4.COM
17 OctWatermarking Generative AI: Hype or Cure-All?Experts Say Technique is A Good Start, but Cannot Guarantee Safety Watermarking is a core part of a White House trustworthiness initiative to bind companies into observing steps to guarantee the safety of AI products. The problem, say AI experts, is that watermarking is as likely…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 4[−]
17 OctSpyNote Android malware spreads via fake volcano eruption alertsAndroid malware 'SpyNote' was seen in an Italy-focused campaign that uses a phony 'IT-alert' public alert service website to infect visitors. [...]BLEEPINGCOMPUTER.COM
17 OctAmazon adds passkey support as new passwordless login optionAmazon has quietly added passkey support as a new passwordless login option for customers, offering better protection from information-stealing malware and phishing attacks. [...]BLEEPINGCOMPUTER.COM
17 OctTop 4 Emerging Trends in Software EngineeringExplore key takeaways about emerging software engineering trends from Gartner's annual Application Innovation and Business Solutions Summit.TRENDMICRO.COM
📡 INFOSEC NEWS 15[−]
17 OctExploring the Realm of Malicious Generative AI: A New Digital Security ChallengeRecently, the cybersecurity landscape has been confronted with a daunting new reality – the rise of malicious Generative AI, like FraudGPT and WormGPT. These rogue creations, lurking in the dark corners of the internet, pose a distinctive threat to the world of digital security. …THEHACKERNEWS.COM
17 OctSophos Firewall v20: Azure AD EnhancementsStart taking advantage of all the great new features in SFOS v20 today.SOPHOS.COM
17 OctProve Identity nabs $40M at a “unicorn status” valuation to expand in mobile-based authentication techProve Identity, the smartphone-based identity verification startup that originally made its name years ago as Payfone before rebranding in 2020, has raised $40 million. According to the company, the funding is coming in at a “unicorn status” valuation which would pip …TECHCRUNCH.COM
17 OctQuantum Risk is Real Now: How to Navigate the Evolving Data Harvesting ThreatData transmission faces a looming threat from Harvest Now, Decrypt Later (HNDL) attacks, where encrypted data is collected and stored with the intention of decrypting it in the future using advancements in computing or quantum technologies.HELPNETSECURITY.COM
17 OctMicrosoft fixes known issue causing Outlook freezes, slow startsMicrosoft has fixed a known issue affecting Outlook for Microsoft 365 users since June and causing slow starts and freezes as if Offline Outlook Data Files (OST) were syncing right after launch. [...]BLEEPINGCOMPUTER.COM
17 OctWith $33M Series C, Fingerprint looks to expand device intelligence platformFingerprint, a device intelligence API, helps developers build security solutions using information from hardware accessing a website. The primary goal is to help prevent fraud. Today, the Chicago-based company announced a $33 million Series C investment ​​led by Nexus Venture Pa…TECHCRUNCH.COM
17 OctFull list of containerization defenses | Kaspersky official blogHow to protect container infrastructure at all stages of development and use — from images and registry to orchestration environment.KASPERSKY.COM
17 OctOperators Behind Worldwide Linux XorDDoS Campaign Evolve Their Attack InfrastructureThe attackers behind the XorDDoS campaign have migrated their offensive infrastructure to legitimate public hosting services, making it harder to block their command and control (C2) traffic.UNIT42.PALOALTONETWORKS.COM
17 OctChanges to SMS Delivery and How it Effects MFA and Phishing, (Tue, Oct 17th)Spam and phishing SMS messages (sometimes called "smishing") have been problematic in recent years. These messages often bypass security controls and are more challenging to identify as malicious by users. Moreover, they can be just simply annoying. ISC.SANS.EDU
17 OctTech CEO Sentenced to 5 Years in IP Address SchemeAmir Golestan, the 40-year-old CEO of the Charleston, S.C. based technology company Micfo LLC, has been sentenced to five years in prison for wire fraud. Golestan's sentencing comes nearly two years after he pleaded guilty to using an elaborate network of phony companies to secur…KREBSONSECURITY.COM
17 OctMalicious Notepad++ Google ads evade detection for monthsA new Google Search malvertizing campaign targets users looking to download the popular Notepad++ text editor, employing advanced techniques to evade detection and analysis. [...]BLEEPINGCOMPUTER.COM
17 OctOperation King TUT: The universe of threats in LATAMESET researchers reveal a growing sophistication in threats affecting the LATAM region by employing evasion techniques and high-value targetingWELIVESECURITY.COM