🚨 CISA KEV 1[−]
19 Oct KEVCISA Adds Two Known Exploited Vulnerability to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-4966 Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability CVE-2021-1435 Cisco IOS XE Web UI Command Injection Vulnerabili…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
19 OctGoogle TAG Detects State-Backed Threat Actors Exploiting WinRAR FlawA number of state-back threat actors from Russia and China have been observed exploiting a recent security flaw in the WinRAR archiver tool for Windows as part of their operations. The vulnerability in question is CVE-2023-38831 (CVSS score: 7.8), which allows attackers to execut…THEHACKERNEWS.COM
19 OctMicrosoft Warns of North Korean Attacks Exploiting JetBrains TeamCity FlawNorth Korean threat actors are actively exploiting a critical security flaw in JetBrains TeamCity to opportunistically breach vulnerable servers, according to Microsoft. The attacks, which entail the exploitation of CVE-2023-42793 (CVSS score: 9.8), have been attributed to Diamon…THEHACKERNEWS.COM
19 OctNumber of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000The number of Cisco devices hacked via the CVE-2023-20198 zero-day has reached 40,000, including many in the US. The post Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,000 appeared first on SecurityWeek .SECURITYWEEK.COM
19 OctOver 40,000 Cisco IOS XE devices infected with backdoor using zero-dayMore than 40,000 Cisco devices running the IOS XE operating system have been compromised after hackers exploited a recently disclosed maximum severity vulnerability tracked as CVE-2023-20198. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 32[−]
19 OctMeet the Cyber Mercenary who can Overthrow a Government - Chris Rock - PSW #803Chris Rock is a Cyber Mercenary who has worked in the Middle East, US and Asia for the last 30 years working for both government and private organizations. ˇHe is the Chief Information Security Officer and co-founder of SIEMonster. Chris has presented three times at the largest h…YOUTUBE.COM
19 OctGovernment-Backed Actors Exploiting WinRAR VulnerabilityThe recent campaigns targeting various sectors, including the energy and government sectors, highlight the effectiveness of known vulnerabilities even with available patches, emphasizing the importance of proactive software security measures.BLOG.GOOGLE
19 OctNorth Korean Hackers Exploiting Critical Flaw in DevOps ToolThe vulnerability allows attackers to execute arbitrary code on the server, potentially leading to the theft of source code and private keys. TeamCity is used by many high-profile organizations, making it an attractive target for hackers.BANKINFOSECURITY.COM
19 OctNIST provides solid guidance on software supply chain security in DevSecOpsSoftware supply chain (SSC) attacks continue to be one of the most discussed topics in the cybersecurity industry as of late -- and for good reason, with some sources showing these attacks rising more than 742% over the past three years. With such continued growth, organizations …CSOONLINE.COM
19 OctHow the US DOD Cyber Strategy changes national cyber defenseA decade ago, then-Secretary of Defense Leon Panetta uttered a phrase that would go on to live in infamy: "cyber Pearl Harbor." Panetta was using his platform as the country's leading national security official to warn of dire future digital assaults on the United States. Energy …CSOONLINE.COM
19 OctIran Traps Middle East Nation in 8-Month Espionage CampaignAPT34 Used Microsoft Exchange Server to Send Email Commands to Backdoor Malware Iranian state-sponsored hackers conducted an eight-month espionage campaign against a Middle Eastern government, compromising dozens of computers. The Crambus group exploited publicly available tools …DATABREACHTODAY.CO.UK
19 OctEastern European Energy and Defense Firms Targeted With MATA BackdoorThe attackers employed sophisticated techniques, including exploiting a vulnerability in Internet Explorer and using specialized malware modules for data exfiltration, highlighting the increasing complexity of targeted attacks.THERECORD.MEDIA
19 OctOperations of Healthcare Solutions Giant Henry Schein Disrupted by CyberattackHealthcare solutions giant Henry Schein has disclosed a cybersecurity incident that disrupted operations and possibly led to a data breach. The post Operations of Healthcare Solutions Giant Henry Schein Disrupted by Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
19 OctNorth Korean Hackers Exploiting Recent TeamCity VulnerabilityMultiple North Korean hacking groups have exploited a recent TeamCity vulnerability and Microsoft warns of potential supply chain attacks. The post North Korean Hackers Exploiting Recent TeamCity Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
19 OctRansomware actor exploits unsupported ColdFusion servers—but comes away empty-handedMultiple LockBit knock-off attacks in September targeting obsolete software foiled, exposing tactics and tools.SOPHOS.COM
19 OctCasio discloses data breach impacting customers in 149 countriesJapanese electronics manufacturer Casio disclosed a data breach impacting customers from 149 countries after hackers gained to the servers of its ClassPad education platform. [...]BLEEPINGCOMPUTER.COM
19 OctVulnerability Scanning: How Often Should I Scan?The time between a vulnerability being discovered and hackers exploiting it is narrower than ever – just 12 days. So it makes sense that organizations are starting to recognize the importance of not leaving long gaps between their scans, and the term "continuous vulnerability sca…THEHACKERNEWS.COM
19 OctFried Squid, Flipper Zero BLM Spam, Apple Devices, Signal Vulns? & Android TV Devices - PSW #803In the Security News: Fried squid is tasty, but the squid proxy is vulnerable, Flipper zero and other tools can now BLE Spam more than just Apple devices, Cisco IOS vulnerability in the web interface, again, is Signal vulnerable?, WinRAR being exploit, still, Math.Random is not r…YOUTUBE.COM
19 OctCISA, NSA, FBI, and MS-ISAC Release Update to #StopRansomware GuideToday, the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released an updated version of the joint #StopRansomware Guide …CISA.GOV
19 OctPalo Alto Networks updates Prisma Cloud with integrated cloud securityPalo Alto Networks has added new "code to cloud" intelligence capabilities to the latest version of its cloud-native application protection platform ( CNAPP ), Prisma Cloud, to offer a single source of truth around application risk for developers, operations, and security teams. …CSOONLINE.COM
19 OctCISA, NSA, FBI, and MS-ISAC Release Phishing Prevention GuidanceOctober 18, 2023, the Cybersecurity Infrastructure and Security Agency (CISA), the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released a joint guide, Phishing Guidance: St…KNOWBE4.COM
19 OctRagnarLocker ransomware dark web site seized in international stingAn international group of law enforcement agencies have seized the dark web portal used by the notorious RagnarLocker ransomware group, TechCrunch has learned. A message on the RagnarLocker website now states that, “this service has been seized by a part of a coordinated internat…TECHCRUNCH.COM
19 OctRagnar Locker ransomware’s dark web extortion sites seized by policeThe Ragnar Locker ransomware operation's Tor negotiation and data leak sites were seized Thursday morning as part of an international law enforcement operation. [...]BLEEPINGCOMPUTER.COM
19 OctCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) advisory on October 19, 2023. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-143-02 Hitachi Energy’s RTU500 Series Product (UPDATE B) CISA encourage…CISA.GOV
19 OctTelegram is still leaking user IP addresses to contactsThe popular messaging app Telegram can leak your IP address if you simply add a hacker to your contacts and accept a phone call from them. Denis Simonov, a security researcher, who is also known as n0a, recently highlighted the issue and wrote a simple tool to exploit it. TechCru…TECHCRUNCH.COM
19 Oct KEVHackers exploit zero-day to compromise tens of thousands of Cisco devicesHackers have exploited an unpatched zero-day vulnerability in Cisco’s networking software to compromise tens of thousands of devices, researchers have warned. Cisco on Monday issued an advisory warning that a critical-rated vulnerability in IOS XE, the software that powers the co…TECHCRUNCH.COM
19 OctIs the Ragnar Locker Ransomware Group Headed for Oblivion?International Law Enforcement Operation Seizes Infrastructure, Disrupts Operation The data leak and negotiation sites for the Ragnar Locker ransomware group went offline Thursday after an international law enforcement operation, backed by the FBI and police in Europe, seized its …DATABREACHTODAY.CO.UK
19 OctCybercrime, Crowdsourcing, Enterprise News – Shane Sims, Philippe Humeau – ESW #336Join us live at 3pm ET for an interview with Shane Sims, CEO of Kivu Consulting and Philippe Humeau, CEO and Co-Founder at CrowdSec. We'll be talking about the current state of #cybercrime, #crowdsourcing and open source cybersecurity market advantages. Watch LIVE at 3pm ET at se…YOUTUBE.COM
19 OctA warning to software founders developing apps with lean teams and open source codeAs users of open source, we have a responsibility to ensure it is properly vetted, managed, and maintained within the software it composes. © 2023 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
19 OctEngaging insiders to combat insider threatsEvery IT and security leader loses sleep over insider threats . They're notoriously difficult to detect, costly to mitigate and can lead to widespread loss and reputational damage. Despite efforts to mitigate insider threats, current global risks and economic pressure are fueling…CSOONLINE.COM
19 Oct6 essential steps for identity security in multi-cloud environmentsIn 2019, I founded and served as the CEO of a cloud security company (C3M), a journey that eventually led to our acquisition by CyberArk in 2022. Back then, the cloud security scene was budding, filled with migration buzz and a shifting urgency around securing the cloud. Acronyms…CSOONLINE.COM
19 OctThe State of Cybercrime and Breach Response - Shane Sims - ESW #336Today we interview Shane Sims, CEO of Kivu Consulting. We'll be talking about the current state of cybercrime and insights from incidents his consulting firm has recently worked. We'll discuss some of the latest stats and trends related to ransomware, as well as thoughts on futur…YOUTUBE.COM
19 OctCryptojacking campaign Qubitstrike targets exposed Jupyter Notebook instancesResearchers have discovered a new attack campaign that compromises Jupyter Notebook instances and deploys cryptojacking malware. The operation uses Discord for command and control and steals AWS and Google Cloud credentials from compromised servers. “Qubitstrike is a relatively s…CSOONLINE.COM
19 OctLeveraging Open Source and Network Effects to Fight Cybercrime at Scale - Philippe Humeau - ESW #336One of the biggest challenges in security today is organizations' reluctance to share attack information. Perhaps legal teams are worried about liability, or maybe execs are just embarrassed about security failures. Whatever the reason, this trend makes it difficult for organizat…YOUTUBE.COM
19 OctOracle Releases October 2023 Critical Patch Update AdvisoryOracle has released its Critical Patch Update Advisory for October 2023 to address 387 vulnerabilities across multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to rev…CISA.GOV
19 OctHackers Leaks Millions of 23andMe User Details on Dark WebA threat actor allegedly published 4.1 million genetic data profiles stolen from the DNA testing company 23andMe in dark web forums. The British Royal Family, wealthy families that support Zionism, and the wealthiest individuals in the United States and Western Europe are among t…GBHACKERS.COM
19 OctThe MGM Resorts attack: initial analysisThe recent cyberattack on MGM Resorts International has raised serious concerns about the security of sensitive data and the vulnerabilities organizations face in today's digital landscape. In this blog post, we will dive into the details of the attack based on the information cu…CSOONLINE.COM
📋 SECURITY BULLETINS 1[−]
19 OctLloyd’s of London finds hypothetical cyberattack could cost world economy $3.5 trillionsubmitted by c0mmando to netsec 1 points | 2 comments https://therecord.media/lloyds-finds-cyberattack-would-cost-trillions Insurance giant Lloyd’s of London has warned that the global economy could lose $3.5 trillion as a result of a major cyberattack targeting payment systems. …THERECORD.MEDIA
📢 SECURITY ADVISORIES 6[−]
19 Octhack.lu 2023submitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/34f6d8b1-5f85-4c5d-bac6-644b00661844.png hack.lu 2023 talks description from the website The videosINFOSEC.PUB
19 OctUS Government Releases Anti-Phishing GuidanceCISA, NSA, FBI, and MS-ISAC have released guidance and prevention recommendations on common phishing techniques. The post US Government Releases Anti-Phishing Guidance appeared first on SecurityWeek .SECURITYWEEK.COM
19 OctCryptohack Roundup: Crypto's Role in Terrorist FinancingAlso: Sam Bankman-Fried's Adderall Dosage; Stars Arena; a New California Law This week, Chainalysis busted crypto terrorist financing myths, the Sam Bankman-Fried trial continued, Stars Arena got back 90% of its stolen funds, an EU authority warned about DeFi risks, the U.S. FDIC…DATABREACHTODAY.CO.UK
19 OctAdmin of E-Root Marketplace was Arrested for RDP & SSH PasswordsSandu Diaconu (31, Moldova) has been sentenced to extradition and removal from the United Kingdom for his role in administering the E-Root Marketplace. This online platform was operational for several years and facilitated the sale of access to compromised computers globally. Dia…GBHACKERS.COM
🔥 INCIDENT REPORTING 16[−]
19 OctHackers Using Secure USB Drives to Attack Government EntitiesAn ongoing attack on government agencies in the APAC region has been claimed to have compromised a secure USB device with hardware encryption. The nation’s government agencies utilize these safe USB devices to transfer and save data between computer systems. The attacks had…GBHACKERS.COM
19 OctUkrainian Hacktivists Claim Trigona Ransomware TakedownPro-Ukrainian hackers known as the Ukrainian Cyber Alliance claim to have wiped out the servers of the Trigona ransomware gang, a group linked to the Russian cybercriminal underground.BANKINFOSECURITY.COM
19 OctHenry Schein Provides Information on Cybersecurity IncidentHenry Schein, Inc. experienced a cybersecurity incident that temporarily disrupted some of its business operations but did not impact its clients' practice management software.FINANCE.YAHOO.COM
19 OctFormer Uber CISO Appealing His ConvictionJoe Sullivan, Uber’s CEO during their 2016 data breach, is appealing his conviction. Prosecutors charged Sullivan, whom Uber hired as CISO after the 2014 breach, of withholding information about the 2016 incident from the FTC even as its investigators were scrutinizing the …SCHNEIER.COM
19 OctReport: Global Economy Could Lose $3.5 Trillion in Systemic CyberattackA hypothetical cyberattack on a major financial services payment system could result in global economic losses of up to $3.5 trillion over a five-year period. The United States, China, and Japan are the countries most at risk.INFOSECURITY-MAGAZINE.COM
19 OctLost and Stolen Devices: A Gateway to Data Breaches and LeaksTo mitigate the risk, organizations should implement strategies such as employee training, geolocation and geofencing, endpoint data encryption, and secure storage solutions.SECURITYWEEK.COM
19 OctEndpoint security in the cloud: What you need to knowCloud security is a buzzword in the world of technology these days — but not without good reason. Endpoint security is now one of the major concerns for businesses across the world. With ever-increasing incidents of data thefts and security breaches, it has become essential…SECURITYINTELLIGENCE.COM
19 OctCalifornian IT Company DNA Micro Leaks Private Mobile Phone Data of Over 820,000 CustomersThe leaked data poses serious risks, as threat actors could potentially disrupt services, launch phishing campaigns, and engage in "doxxing" and "swatting" activities, putting customers at risk.SECURITYAFFAIRS.COM
19 OctIranian hackers lurked in Middle Eastern govt network for 8 monthsThe Iranian hacking group tracked as MuddyWater (aka APT34 or OilRig) breached at least twelve computers belonging to a Middle Eastern government network and maintained access for eight months between February and September 2023. [...]BLEEPINGCOMPUTER.COM
19 OctBlackCat Group Adopts a New Tactic to Circumvent Security SolutionsThe BlackCat ransomware group has introduced a new evasion tool called Munchkin, distributed as an ISO file, allowing them to run ransomware on remote machines. The controller malware is written in Rust and resembles the BlackCat malware family. Organizations are recom…CYWARE.COM
19 OctMicrosoft extends Purview Audit log retention after July breachMicrosoft is extending Purview Audit log retention as promised after the Chinese Storm-0558 hacking group breached dozens of Exchange and Microsoft 365 corporate and government accounts in July. [...]BLEEPINGCOMPUTER.COM
19 OctBlackCat ransomware uses new ‘Munchkin’ Linux VM in stealthy attacksThe BlackCat/ALPHV ransomware operation has begun to use a new tool named 'Munchkin' that utilizes virtual machines to deploy encryptors on network devices stealthily. [...]BLEEPINGCOMPUTER.COM
19 OctPlastic Surgeons Warned About New Face of Cyber ExtortionFBI Says Patients, Doctors at Risk of Ransom Demands After Theft of Records, Photos The FBI is warning plastic surgery practices and their patients of cybercriminals targeting their sensitive health information and medical photos for extortion schemes. The alert followed recent h…DATABREACHTODAY.CO.UK
19 OctE-Root admin faces 20 years for selling stolen RDP, SSH accountsSandu Diaconu, the operator of the E-Root marketplace, has been extradited to the U.S. to face a maximum imprisonment penalty of 20 years for selling access to compromised computers. [...]BLEEPINGCOMPUTER.COM
19 OctBreach Roundup: Citrix Patch Not SufficientAlso: Navy IT Manager Sentenced to 5 Years in Prison for Accessing Database This week, Citrix's update was insufficient, a Navy IT manager was sentenced to prison for accessing a database, a Moldovan man pleaded not guilty to running a credentials marketplace, new details emerged…DATABREACHTODAY.CO.UK
19 OctGOP Rep: Government, Private Sector Must Plan for Big AttackFederal Agencies, Businesses Must Go Beyond Info Sharing, Prepare for Cyberattack U.S. government agencies and the private sector embraced information sharing but lack a coordinated response plan in the event of a massive cyberattack, a House Republican said. Public-private partn…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 17[−]
19 OctISC Stormcast For Thursday, October 19th, 2023 https://isc.sans.edu/podcastdetail/8708, (Thu, Oct 19th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
19 OctBSidesCLT 2023 - Bsides Charlotte - 11 talkssubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/719e9270-0b1a-4cbe-9d3d-77e1ea678506.png Schedule on the website Bsides Charlotte - 11 talks on YouTubeINFOSEC.PUB
19 OctIran-Linked OilRig Targets Middle East Governments in 8-Month Cyber CampaignThe Iran-linked OilRig threat actor targeted an unnamed Middle East government between February and September 2023 as part of an eight-month-long campaign. The attack led to the theft of files and passwords and, in one instance, resulted in the deployment of a PowerShell backdoor…THEHACKERNEWS.COM
19 OctNew Campaign by Iranian APT Group Targets Middle Eastern GovernmentThe attackers made use of legitimate tools like Plink to configure port-forwarding rules, enabling remote access via the Remote Desktop Protocol (RDP), and modified Windows firewall rules to facilitate their activities.SYMANTEC-ENTERPRISE-BLOGS.SECURITY.COM
19 OctCipherStash Raises $3 Million for Encryption-in-Use TechnologyAustralian startup ChipherStash raises $3 million in seed funding for technology that keeps data encrypted in use. The post CipherStash Raises $3 Million for Encryption-in-Use Technology appeared first on SecurityWeek .SECURITYWEEK.COM
19 OctGoogle Play Protect Gets Real-Time Code ScanningGoogle improves Android devices’ proactive protections against malware with real-time scanning at code level. The post Google Play Protect Gets Real-Time Code Scanning appeared first on SecurityWeek .SECURITYWEEK.COM
19 OctUS Charge Man with Running Stolen Credentials Marketplacesubmitted by throws_lemy to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/us-charge-man-stolen-credentials/INFOSECURITY-MAGAZINE.COM
19 Oct3 Ways the Threat Landscape Is ChangingFrom remote work to generative AI, today’s threat landscape is evolving faster than ever before. Learn more about the latest trends and how organizations should prepare. The post 3 Ways the Threat Landscape Is Changing appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
19 OctSophisticated MATA Framework Strikes Eastern European Oil and Gas CompaniesAn updated version of a sophisticated backdoor framework called MATA has been used in attacks aimed at over a dozen Eastern European companies in the oil and gas sector and defense industry as part of a cyber espionage operation that took place between August 2022 and May 2023. "…THEHACKERNEWS.COM
19 OctPhishing-as-a-Service: As Simple As Uploading A LogoResearchers at Fortra are tracking “Strox,” one of the most popular phishing operations of the past two years. Users of Strox phishing kits can easily create phishing campaigns by simply submitting a logo for the brand they want to impersonate.KNOWBE4.COM
19 OctNews alert: NetWitness launches 12.3 update to deliver visibility across the entire enterpriseBedford, Mass., Oct. 17, 2023 — NetWitness , a globally trusted provider of cybersecurity software and services, has today announced the 12.3 release of its award-winning NetWitness Intelligent Threat Detection and Response Platform. The latest update offers enterprises more visi…LASTWATCHDOG.COM
19 OctFBI: Thousands of Remote IT Workers Sent Wages to North Korea to Help Fund Weapons ProgramThousands of IT workers contracting with U.S. firms have secretly sent millions of dollars to North Korea to fund its missile program. The post FBI: Thousands of Remote IT Workers Sent Wages to North Korea to Help Fund Weapons Program appeared first on SecurityWeek .SECURITYWEEK.COM
19 OctHarmonic Lands $7M Funding to Secure Generative AI DeploymentsBritish startup is working on software to mitigate against the ‘wild west’ of unregulated AI apps harvesting company data at scale. The post Harmonic Lands $7M Funding to Secure Generative AI Deployments appeared first on SecurityWeek .SECURITYWEEK.COM
19 OctMata Malware Targeted East European Energy, Defense SectorsKaspersky Observed New Generations of the Malware With Advanced Capabilities Hackers used an updated malware framework dubbed Mata by Kaspersky to target more than a dozen oil, gas and defense sector companies in Eastern Europe, including air-gapped systems. Kaspersky previously …DATABREACHTODAY.CO.UK
19 OctNorth Korea Taps IT Contract Workers to Fund Weapons ProgramThousands of IT Workers Defrauded US Firms to Earn Hundreds of Millions of Dollars Thousands of North Korean IT workers hid their identities to earn hundreds of millions of dollars in IT contract work from overseas companies to help finance the country's weapons development progr…DATABREACHTODAY.CO.UK
19 OctFinnish Hacker Charged with Multiple Counts of ExtortionAleksanteri Kivimäki Charged for the 2020 Leak of Mental Health Clinic Database The hacker who allegedly leaked mental health records online after breaking into a Helsinki-based psychotherapy chain's patient database has been charged with multiple counts of extortion and data lea…DATABREACHTODAY.CO.UK
19 OctMicrosoft Security Copilot Early Access Program: Harnessing generative AI to empower security teamsLearn more about Microsoft Security Copilot—including its integration with Microsoft 365 Defender—as well as our latest innovations and announcements, and how your organization can get early access. The post Microsoft Security Copilot Early Access Program: Harnessing generative A…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
19 OctGoogle Play Protect Introduces Real-Time Code-Level Scanning for Android MalwareGoogle has announced an update to its Play Protect with support for real-time scanning at the code level to tackle novel malicious apps prior to downloading and installing them on Android devices. "Google Play Protect will now recommend a real-time app scan when installing apps t…THEHACKERNEWS.COM
19 OctEx-Navy IT manager jailed for selling people’s data on the dark webA former US Navy IT manager has been sentenced to five years and five months in prison after illegally hacking a database containing personally identifiable information (PII) and selling it on the dark web. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
19 OctFake KeePass site uses Google Ads and Punycode to push malwareA Google Ads campaign was found pushing a fake KeePass download site that used Punycode to appear as the official domain of the KeePass password manager to distribute malware. [...]BLEEPINGCOMPUTER.COM
19 OctStrengthening the weakest link: top 3 security awareness topics for your employeesKnowledge is a powerful weapon that can empower your employees to become the first line of defense against threatsWELIVESECURITY.COM
📡 INFOSEC NEWS 16[−]
19 OctFinland Charges Psychotherapy Hacker With ExtortionA hacker in Finland has been charged with over 21,000 counts of extortion for stealing psychotherapy patient records and attempting to extort money from a therapy center.SECURITYWEEK.COM
19 OctGoogle Play Protect Bolsters Security Against Malicious AppsGoogle has announced a significant update to its Google Play Protect feature in response to the increasing threats targeting mobile devices. It includes real-time code-level scanning during the installation process to counter evasion techniques.INFOSECURITY-MAGAZINE.COM
19 OctDarwinium Raises $18 Million for Edge-Based Fraud Prevention TechSan Francisco-based startup Darwinium has raised $18 million in a Series A funding round led by U.S. Venture Partners. The company, which focuses on fraud prevention, has developed a digital security platform that runs on the perimeter edge.SECURITYWEEK.COM
19 OctMoldovan Accused of Running Cybercrime Marketplace to Face Charges in USThe marketplace, which used an online payment system called Perfect Money, offered illicit cryptocurrency exchange services and listed credentials belonging to 350,000 devices for sale globally.THERECORD.MEDIA
19 OctHacker Leaks Millions of New 23andMe Genetic Data ProfilesA hacker has leaked 4.1 million stolen genetic data profiles from 23andMe, a DNA testing company, on a hacking forum. This follows a recent leak of 1 million profiles of Ashkenazi Jews.BLEEPINGCOMPUTER.COM
19 OctWhatsApp gets support for multiple accounts on the same phoneMeta announced today that it introduced support for multiple WhatsApp accounts on the same device, allowing users to switch between them without needing to log out. [...]BLEEPINGCOMPUTER.COM
19 OctUK Warns Nuclear Power Plant Operator of Cybersecurity FailingsEDF, the company operating nuclear power plants in the UK, is facing increased regulatory attention after an inspection of its cybersecurity practices. The company failed to provide a comprehensive cybersecurity improvement plan.THERECORD.MEDIA
19 OctFormer Navy IT Manager Sentenced to Prison for Hacking, Selling PIIThe IT manager and his wife stole the personally identifiable information of over 9,000 individuals and sold it for $160,000 in Bitcoin, which was later used for criminal activities.SECURITYWEEK.COM
19 OctMillions of new 23andMe genetic data profiles leak on cybercrime forumGolem, the hacker who leaked the data of one million Ashkenazi Jews from the 23andMe ancestry service earlier this month has now released 4.1 million more genetic data profiles. The hacker claims they've included details of "the wealthiest people living in the US and Western Euro…BITDEFENDER.COM
19 OctIndia targets Microsoft, Amazon tech support scammers in nationwide crackdownIndia's Central Bureau of Investigation (CBI) raided 76 locations in a nationwide crackdown on cybercrime operations behind tech support scams and cryptocurrency fraud. [...]BLEEPINGCOMPUTER.COM
19 OctSide Eye attack: Eavesdropping through video stabilization | Kaspersky official blogWe explain in simple terms the essence of the theoretical Side Eye attack, with which you can restore sound from video recordings.KASPERSKY.COM
19 OctPioneering Automated Moving Target Defense (AMTD)Unique endpoint technologies keep attackers guessing.SOPHOS.COM