22Articles
7Categories
2023-10-21Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
21 OctCisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of DevicesThe vulnerability, tracked as CVE-2023-20273, allows for privilege escalation through the Web UI. It has been used alongside another vulnerability, CVE-2023-20198, in an exploit chain to deploy a malicious implant.THEHACKERNEWS.COM
21 Oct KEVCisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of DevicesCisco has warned of a new zero-day flaw in IOS XE that has been actively exploited by an unknown threat actor to deploy a malicious Lua-based implant on susceptible devices. Tracked as CVE-2023-20273 (CVSS score: 7.2), the issue relates to a privilege escalation flaw in the web U…THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 6[−]
21 OctISMG Editors: Impact of Israel-Hamas War on CybersecurityAlso: AI in Banking, Highlights from ISMG New York Summit, Update on AI Rules in US In the latest weekly update, editors at Information Security Media Group discuss the impact of the Israel-Hamas war on the threat landscape and the workforce, the role of the U.S. in shaping the f…DATABREACHTODAY.CO.UK
21 OctHackers Hit Secure File Transfer Software Again and AgainResearchers Race to Eliminate Flaws Before Attackers Can Launch Zero-Day Attacks The Clop ransomware operation's recent mass zero-day exploit of Progress Software's MOVEit secure managed file transfer software followed the criminals launching similar attacks against users of Acce…DATABREACHTODAY.CO.UK
21 OctCritical RCE Flaws Found in Solarwinds Access Audit SolutionThe vulnerabilities, which have been patched in version 2023.2.1, could be exploited by remote unauthenticated attackers to execute arbitrary code in the context of SYSTEM without authentication.BLEEPINGCOMPUTER.COM
21 OctOkta's Support System Breach Exposes Customer Data to Unidentified Threat ActorsIdentity services provider Okta on Friday disclosed a new security incident that allowed unidentified threat actors to leverage stolen credentials to access its support case management system. "The threat actor was able to view files uploaded by certain Okta customers as part of …THEHACKERNEWS.COM
21 OctThe Week in Ransomware - October 20th 2023 - Fighting BackThis was a bad week for ransomware, with the Trigona ransomware suffering a data breach and law enforcement disrupting the RagnarLocker ransomware operation. [...]BLEEPINGCOMPUTER.COM
21 OctAttackers Exploiting Cisco Zero-Day With Malicious BackdoorSecond Flaw in IOS XE Operating System Puts Thousands of Cisco Users at Risk Threat actors are exploiting another zero-day flaw in Cisco's IOS XE software to implant a malicious backdoor. The IOS XE operating system run on a wide range of Cisco networking devices, including route…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 4[−]
21 OctUK's AI Leadership Goal 'Unrealistic,' Experts WarnExperts Cite Lack of Computing Power, Privacy Regulations and Immigration The British government's ambitions to turn the United Kingdom into a global leader in artificial intelligence are "unrealistic," warn researchers from the University of Cambridge. Experts say legal hurdles …DATABREACHTODAY.CO.UK
21 OctNYC Mayor Adams Unveils AI 'Action Plan'Adams Ridicules Worries About 'Terminator' While Touting AI Robocalls in Mandarin Techno-optimistic New York City Mayor Eric Adams on Monday unveiled a plan he said can convert the notoriously bureaucratic city administration into an AI powerhouse. AI presents a "once-in-a-genera…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 5[−]
21 OctOkta Support Unit Breached Via Credential Stolen by HackersBeyondTrust Says It Took Okta Nearly 3 Weeks to Confirm Breach It First Spotted A breach of Okta's support case management system using a stolen credential allowed attackers to access sensitive files uploaded by the identity security giant's customers. San Francisco-based Okta sa…DATABREACHTODAY.CO.UK
21 OctEuropol Dismantles Ragnar Locker Ransomware Infrastructure, Nabs Key DeveloperEuropol on Friday announced the takedown of the infrastructure associated with Ragnar Locker ransomware, alongside the arrest of a "key target" in France. "In an action carried out between 16 and 20 October, searches were conducted in Czechia, Spain, and Latvia," the agency said.…THEHACKERNEWS.COM
21 OctInternational Criminal Court systems breached for cyber espionageThe International Criminal Court provided additional information about the cyberattack five weeks ago, saying that it was a targeted operation for espionage purposes. [...]BLEEPINGCOMPUTER.COM
21 OctAmerican Family Insurance confirms cyberattack is behind IT outagesInsurance giant American Family Insurance has confirmed it suffered a cyberattack and shut down portions of its IT systems after customers reported website outages all week. [...]BLEEPINGCOMPUTER.COM
21 OctTunngle - 8,192,928 breached accountsIn 2016, the now defunct global LAN gaming network Tunngle suffered a data breach that exposed 8.2M unique email addresses. The compromised data also included usernames, IP addresses and passwords stored as salted MD5 hashes.HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 3[−]
21 OctFBI: Thousands of Remote IT Workers Sent Wages to North Korea to Help Fund Weapons ProgramThe workers used false identities to secure remote IT jobs and funneled their earnings to North Korea, while also infiltrating and stealing information from the companies they worked for.SECURITYWEEK.COM
21 OctClever malvertising attack uses Punycode to look like KeePass's official websitesubmitted by throws_lemy to cybersecurity 33 points | 4 comments https://www.malwarebytes.com/blog/threat-intelligence/2023/10/clever-malvertising-attack-uses-punycode-to-look-like-legitimate-websiteMALWAREBYTES.COM
21 OctMicrosoft Account's OAuth tokens leaking via open redirect in Harvest Appsubmitted by L4s to secops 1 points | 0 comments https://eval.blog/research/microsoft-account-token-leaks-in-harvest/ Microsoft Account’s OAuth tokens leaking via open redirect in Harvest App::Reported an OAuth token leak via open redirect in Harvest.EVAL.BLOG
🌐 CYBER THREAT LANDSCAPE 1[−]
21 OctBusiness-Oriented Threat Involving ‘Several Types of Malware All at Once’ Remains ActiveThe campaign involves various types of malware, including cryptominers and keyloggers, and primarily targets enterprises that provide business-to-business (B2B) products and services.THERECORD.MEDIA
📡 INFOSEC NEWS 1[−]