🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
30 OctUrgent: New Security Flaws Discovered in NGINX Ingress Controller for KubernetesThree unpatched high-severity security flaws have been disclosed in the NGINX Ingress controller for Kubernetes that could be weaponized by a threat actor to steal secret credentials from the cluster. The vulnerabilities are as follows - CVE-2022-4886 (CVSS score: 8.8) - Ingress-…THEHACKERNEWS.COM
30 OctThree New Security Flaws Discovered in NGINX Ingress Controller for KubernetesThe vulnerabilities, tracked as CVE-2022-4886, CVE-2023-5043, and CVE-2023-5044, include path sanitization bypass, annotation injection for arbitrary command execution, and code injection via the permanent-redirect annotation.THEHACKERNEWS.COM
30 OctNorth Korea’s state hacking program is varied, fluid, and nimbleState-backed North Korean hackers have stolen an estimated $2 billion or more in funds from cryptocurrency organizations and banks in 30 cyberattacks over the past five years, primarily to help fund its weapons of mass destruction and ballistic missile programs. In 2023 alone, No…CSOONLINE.COM
30 OctFlying under the Radar: The Privacy Impact of multicast DNS, (Mon, Oct 30th)The recent patch to iOS/macOS for CVE-2023-42846 made me think it is probably time to write up a reminder about the privacy impact of UPNP and multicast DNS. This is not a new issue, but it appears to have been forgotten a bit [vuln]. In particular, Apple devices are we…ISC.SANS.EDU
30 OctVMware Releases Advisory for VMware Tools VulnerabilitiesVMware released a security advisory addressing multiple vulnerabilities (CVE-2023-34057, CVE-2023-34058) in VMware Tools. A cyber actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the VMware …CISA.GOV
30 OctExploit released for critical Cisco IOS XE flaw, many hosts still hackedPublic exploit code is now available for the critical Cisco IOS XE vulnerability tracked as CVE-2023-20198 that was leveraged as a zero-day to hack tens of thousands of devices. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 23[−]
30 OctRaven: Open-source CI/CD Pipeline Vulnerability Scanner ToolCycode is excited to introduce Raven, a state-of-the-art security scanner for CI/CD pipelines. Raven stands for Risk Analysis and Vulnerability Enumeration for CI/CD Pipeline Security, and it is now available as an open-source tool on GitHub. This innovative solution …GBHACKERS.COM
30 OctNew Hunters International Ransomware Possible Rebrand of HiveThough it shares strong similarities, Hunters International denies being the same group as Hive, claiming to have purchased the source code from them, and focuses on stealing data rather than encryption.BLEEPINGCOMPUTER.COM
30 OctHow to choose the best cloud security posture management toolsAfter companies move to the cloud, many are under the impression that their cloud hosting providers are solely responsible for security, a misconception that can lead to data breaches and other security issues. While the responsibility for securing cloud infrastructure falls to c…CSOONLINE.COM
30 OctCyber Security Today, Oct. 30, 2023 - Hackers warn Las Vegas-area parents they have their children's dataThis episode reports on the results of the latest Toronto edition of Pwn2Own contest, hacks at a US hospital, an e-commerce processor and more MOVEit victimsCYBERSECURITYTODAY.LIBSYN.COM
30 OctRaven: Open-source CI/CD pipeline security scannerRaven scans GitHub workflows, breaks them into components, and utilizes a knowledge base to identify vulnerabilities, making it easier for security teams to assess and address risks.HELPNETSECURITY.COM
30 OctEleKtra-Leak Cryptojacking Attacks Exploit AWS IAM Credentials Exposed on GitHubA new ongoing campaign dubbed EleKtra-Leak has set its eyes on exposed Amazon Web Service (AWS) identity and access management (IAM) credentials within public GitHub repositories to facilitate cryptojacking activities. "As a result of this, the threat actor associated with the ca…THEHACKERNEWS.COM
30 OctReport: 587% Surge in QR Code Quishing AttacksQR codes are particularly vulnerable to exploitation due to their ability to encode complex data and redirect users to malicious sites, making them an attractive target for hackers.HACKREAD.COM
30 OctHackers Abusing OAuth Token to Take Over Millions of AccountsA new OAuth vulnerability has been discovered in three of the major extensions such as Grammarly, Vidio, and Bukalapak. These applications use the OAuth protocol for their authentication, which is vulnerable to an authentication token-stealing attack. OAuth is an authentication p…GBHACKERS.COM
30 OctCISA Launches Logging Tool for Resource-Poor OrganizationsThe tool provides step-by-step installation instructions, prebuilt elastic security detection rules, and coding to reduce cost barriers, making it accessible for organizations aiming to implement basic logging and monitoring capabilities.BANKINFOSECURITY.COM
30 OctNew Webinar: 5 Must-Know Trends Impacting AppSecModern web app development relies on cloud infrastructure and containerization. These technologies scale on demand, handling millions of daily file transfers – it's almost impossible to imagine a world without them. However, they also introduce multiple attack vectors that exploi…THEHACKERNEWS.COM
30 OctF-Secure Eyes $9.5M in Cost Savings With LayoffsF-Secure has recently implemented organizational changes in order to pursue strategic growth initiatives and meet its financial targets. These changes likely involve adjustments to the company’s structure, processes, and resources to ensure they are better aligned with thei…GBHACKERS.COM
30 OctEleKtra-Leak Cryptojacking Attacks Exploit AWS IAM Credentials Exposed on GitHubThe threat actor behind the campaign quickly scans and clones GitHub repositories to capture exposed keys, highlighting the importance of promptly removing and revoking any compromised credentials.THEHACKERNEWS.COM
30 OctHackers Earn Over $1 Million at Pwn2Own Toronto 2023Hackers have demonstrated 58 zero-days and earned more than $1 million in rewards at Pwn2Own Toronto 2023. The post Hackers Earn Over $1 Million at Pwn2Own Toronto 2023 appeared first on SecurityWeek .SECURITYWEEK.COM
30 OctMobile security solutions should balance experience and protectionIt never occurred to the CEO that the text which appeared to come from his bank would create an existential threat to his company. Only after the ransomware he inadvertently launched had ravaged the company's servers and ground business to a halt did the importance of mobile devi…CSOONLINE.COM
30 OctAttackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on SlackThe Wiki-Slack attack relies on crafting a legitimate footnote in a Wikipedia article and exploiting Slack's rendering of the shared page's preview to generate a hidden malicious link.SECURITYWEEK.COM
30 OctRansomware Groups Exploiting Unpatched NetScaler DevicesPatch or Perish: Researchers See Mass Exploits of NetScaler ADC and Gateway Devices Ransomware-wielding groups are among the attackers exploiting vulnerabilities in NetScaler devices to bypass authentication and gain initial access to victims' networks. Experts say users must not…DATABREACHTODAY.CO.UK
30 OctThe Enterprise Browser for the Modern Workforce | Leadership & Communications - BSW #326This week, we start things off with an interview with Robert Shield, Director of Engineering, Chrome Enterprise at Google Chrome Enterprise, about The Enterprise Browser for the Modern Workforce. Then we follow up with our Leadership and Communications Articles for the week. Visi…YOUTUBE.COM
30 OctThe Enterprise Browser for the Modern Workforce – BSW #326Join us live at 2pm ET as we join Matt Alderman and Jason Albuquerque to discuss the Enterprise Browser for the Modern Workforce with guest Robert Shield - Director of Engineering, #Chrome Enterprise at Google Chrome Enterprise. In Segment 2, we'll be discussing how Proactive Boa…YOUTUBE.COM
30 OctThe Enterprise Browser for the Modern Workforce - Robert Shield - BSW #326As the workforce increasingly relies on the cloud, the browser has become a critical aspect of enterprise security. Employees now use browsers to access data and applications from various devices and locations, making browsers the primary target for cyber attackers. Enterprise br…YOUTUBE.COM
30 OctRCE exploit for Wyze Cam v3 publicly released, patch nowA security researcher has published a proof-of-concept (PoC) exploit for Wyze Cam v3 devices that opens a reverse shell and allows the takeover of vulnerable devices. [...]BLEEPINGCOMPUTER.COM
30 OctSnyk Buys Reviewpad to Help Developers Contribute Code FastReviewpad Will Help Developers Secure Pull Requests, Vet Code Generated by AI Tools Snyk purchased a Portuguese startup founded by SonarSource and European Parliament veterans to help developers contribute to code bases more quickly. The Boston-based developer security vendor sai…DATABREACHTODAY.CO.UK
30 OctSEC Alleges SolarWinds, CISO Tim Brown Defrauded InvestorsSEC Seeks to Ban Brown From Serving As Officer, Director of Publicly-Traded Company Federal regulators accused SolarWinds and CISO Tim Brown of fraud and internal control failures for misleading investors about the company's cybersecurity practices and risks. The SEC said SolarWi…DATABREACHTODAY.CO.UK
📋 SECURITY BULLETINS 1[−]
30 OctQR Code-based Phishing Attains 587% Hike, Reports Check PointQR code phishing attacks, including quishing and QRLJacking, have seen a dramatic 587% increase from August to September 2023, with threat actors extracting login information from users. This social engineering tactic takes advantage of the trust in QR codes and the routine natur…CYWARE.COM
📢 SECURITY ADVISORIES 12[−]
30 OctCISA Targets Software Identification in Push to Boost Supply Chain SecurityThe request for comment aims to establish uniform parameters for tracking critical information such as known vulnerabilities and approved software, enhancing software security.CYBERSECURITYDIVE.COM
30 OctWhite House Issues Sweeping Executive Order to Secure AIBiden Administration Demands to See Red-Teaming Safety Tests of Foundational Models U.S. President Joe Biden is invoking a Cold War-era law in an executive order directing developers of advanced AI models to notify the government and share safety tests. The E.O. is "the strongest…DATABREACHTODAY.CO.UK
30 OctHacking Scandinavian Alcohol TaxThe islands of Åland are an important tax hack : Although Åland is part of the Republic of Finland, it has its own autonomous parliament. In areas where Åland has its own legislation, the group of islands essentially operates as an independent nation. This allows Scandinavians to…SCHNEIER.COM
30 OctWhite House Issuing Sweeping Executive Order to Secure AIBiden Administration Demands to See Red-Teaming Safety Tests of Foundational Models U.S. President Joe Biden is invoking a Cold War-era law in an executive order directing developers of advanced AI models to notify the government and share safety tests. The E.O. is "the strongest…DATABREACHTODAY.CO.UK
30 OctWhistleblowers: Should CISOs Consider Them a Friend or Foe?Are whistleblowers traitors to the company, a danger to corporate brand image, and a form of insider threat? Or are they an early warning safety valve that can be used to strengthen cybersecurity and compliance? The post Whistleblowers: Should CISOs Consider Them a Friend or Foe?…SECURITYWEEK.COM
30 OctBiden Wants to Move Fast on AI Safeguards and Will Sign an Executive Order to Address His ConcernsPresident Joe Biden on Monday will sign a sweeping executive order to guide the development of artificial intelligence — requiring industry to develop safety and security standards, and introducing new consumer protections. The post Biden Wants to Move Fast on AI Safeguards and W…SECURITYWEEK.COM
30 OctWhite House Issues Sweeping Executive Order to Secure AIThe order directs the National Institute of Standards and Technology to establish new standards for red-team testing and the Department of Health and Human Services to create a safety program for AI in healthcare.BANKINFOSECURITY.COM
30 OctRussia to launch its own version of VirusTotal due to US snooping fearssubmitted by c0mmando to netsec 1 points | 0 comments https://therecord.media/russia-launching-own-malware-repository-virustotal The Russian government plans to have its own analogous version of the malware scanning platform VirusTotal up and running within the next two years, du…THERECORD.MEDIA
30 OctBiden Urges Congress to Take Action Following AI OrderExperts Praise Executive Order For Focusing on Security Risks Associated With AI U.S. President Joe Biden called on Congress to pass comprehensive legislation on artificial intelligence after invoking Cold War-era executive powers over private industry in a sweeping executive ord…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 15[−]
30 OctGameSprite - 6,164,643 breached accountsIn December 2019, the now defunct gaming platform GameSprite suffered a data breach that exposed over 6M unique email addresses. The impacted data also included usernames, IP addresses and salted MD5 password hashes.HAVEIBEENPWNED.COM
30 OctHackers Using MSIX App Packages to Infect Windows PCs with GHOSTPULSE MawareA new cyber attack campaign has been observed using spurious MSIX Windows app package files for popular software such as Google Chrome, Microsoft Edge, Brave, Grammarly, and Cisco Webex to distribute a novel malware loader dubbed GHOSTPULSE. "MSIX is a Windows app package format …THEHACKERNEWS.COM
30 OctXWorm Sold Malware-as-a-service Opens Vast Hacking OpportunitiesXWorm is a RAT (Remote Access Trojan), a malware-as-a-service. It was first discovered in July 2022 and is known to have originated from the ex-USSR. The malware is capable of multiple things, such as stealing sensitive data and cryptocurrency, launching DDoS attacks, and ransomw…GBHACKERS.COM
30 OctOT Cyberattacks Proliferating Despite Growing Cybersecurity SpendThe complexity of OT environments, the convergence of IT and OT, insider attacks, and supply chain vulnerabilities contribute to the lack of success in defending against these attacks.HELPNETSECURITY.COM
30 OctRansomware Groups Continue to Increase Their Operational TempoAccording to GuidePoint Security, ransomware activity continued to surge in Q3 of 2023. There was a 15% increase in ransomware activity compared to Q2, with 10 new emerging groups tracked during this quarter.HELPNETSECURITY.COM
30 OctFTC Expands Financial Data Breach Reporting RequirementsThe new disclosure requirement aims to empower consumers by providing them with breach data and enabling them to make more informed decisions about which financial institutions to trust with their information.BANKINFOSECURITY.COM
30 OctNew malware campaign uses MSIX packages to infect Windows PCsA new cyberattack campaign has been found to be using MSIX -- a Windows application packaging format -- to infect Windows PCs and evade detection by dropping a stealthy malware loader into its victim's PC. Developers commonly use MSIX to package, distribute, and install their app…CSOONLINE.COM
30 OctMalvertising via Dynamic Search Ads Delivers Malware BonanzaThe compromised website injected malicious content, including overlays promoting software serial keys, which resulted in misleading ads being automatically generated by Google Ads.MALWAREBYTES.COM
30 OctProofpoint to Buy Tessian to Infuse Email Protection With AIAcquiring Tessian Will Help Proofpoint Thwart Misdirected Emails, Misattached Files Proofpoint has agreed to purchase a cloud email security provider founded by HSBC, RBS, Santander and UBS alumni to apply artificial intelligence to evolving threats. The proposed acquisition of B…DATABREACHTODAY.CO.UK
30 OctToronto Public Library Facing Disruptions Due to CyberattackThe organization has confirmed that it is a cybersecurity incident, and while there is no evidence of compromised personal information, it may take several days to fully restore normal operations.THERECORD.MEDIA
30 OctBoeing Investigating Ransomware Attack ClaimsThe LockBit ransomware gang claims to have stolen large amounts of data from aerospace giant Boeing. The post Boeing Investigating Ransomware Attack Claims appeared first on SecurityWeek .SECURITYWEEK.COM
30 OctToronto Public Library services down following weekend cyberattackThe Toronto Public Library (TPL) is warning that many of its online services are offline after suffering a cyberattack over the weekend, on Saturday, October 28. [...]BLEEPINGCOMPUTER.COM
30 OctFTC orders non-bank financial firms to report breaches in 30 daysThe U.S. Federal Trade Commission (FTC) has amended the Safeguards Rules, mandating that all non-banking financial institutions report data breach incidents within 30 days. [...]BLEEPINGCOMPUTER.COM
30 OctLastPass breach linked to theft of $4.4 million in cryptoHackers have stolen $4.4 million in cryptocurrency on October 25th using private keys and passphrases stored in stolen LastPass databases, according to research by crypto fraud researchers who have been researching similar incidents. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 26[−]
30 OctIT Army of Ukraine disrupted internet providers in territories occupied by Russiasubmitted by throws_lemy to cybersecurity 1 points | 0 comments https://securityaffairs.com/153192/hacktivism/it-army-of-ukraine-hit-russia-isp.htmlSECURITYAFFAIRS.COM
30 OctISC Stormcast For Monday, October 30th, 2023 https://isc.sans.edu/podcastdetail/8722, (Mon, Oct 30th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
30 OctHow to Fix the Internet talks to James Mickens. The Philosopher King - 32 minutessubmitted by ashar to security_cpe 1 points | 0 comments https://www.youtube.com/watch?v=k4-7OitNo3M How to Fix the Internet talks to James Mickens. The Philosopher King www.youtube.com/watch?v=k4-7OitNo3M Computer scientists often build algorithms with a keen focus on “solving t…YOUTUBE.COM
30 OctBruCON 0x0F - BruCON Security Conference -14 videossubmitted by ashar to security_cpe 1 points | 0 comments https://youtube.com/playlist?list=PLtb1FJdVWjUd5MhZVXQEyXkoL49L7_A72&si=HCNJ_uduaURvDoNK BruCON 0x0F Playlist Schedule on the website WHAT IS BRUCON BruCON is an annual security and hacker( ) conference providing two da…YOUTUBE.COM
30 OctHackers Email Stolen Student Data to Parents of Nevada School DistrictParents have received emails from the threat actors, with leaked PDF documents containing student data, causing concerns about potential identity theft and phishing attacks.BLEEPINGCOMPUTER.COM
30 OctMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 3 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
30 OctAttackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on SlackResearchers document the Wiki-Slack attack, a new technique that uses modified Wikipedia pages to target end users on Slack. The post Attackers Can Use Modified Wikipedia Pages to Mount Redirection Attacks on Slack appeared first on SecurityWeek .SECURITYWEEK.COM
30 OctDetecting and annoying Burp userssubmitted by L4s to secops 1 points | 0 comments https://web.archive.org/web/20230907212910/https://dustri.org/b/detecting-and-annoying-burp-users.html Detecting and annoying Burp users::Personal blog of Julien (jvoisin) VoisinWEB.ARCHIVE.ORG
30 OctHackers Deliver Remcos RAT as Weaponized PDF Payslip DocumentAhnLab Security Emergency Response Center (ASEC) has recently revealed a disturbing case of Remcos RAT, a malicious software that can remotely access and manipulate infected machines. The attackers behind this malware used a clever email scam that pretended to be a payslip …GBHACKERS.COM
30 OctFlorida SIM Swapper Sentenced to Prison for Cryptocurrency TheftA 20-year-old Floridian was sentenced to prison for his role in a hacking scheme that led to the theft of $1 million in cryptocurrency. The post Florida SIM Swapper Sentenced to Prison for Cryptocurrency Theft appeared first on SecurityWeek .SECURITYWEEK.COM
30 OctProofpoint to Acquire Tessian for AI-Powered Email Security TechProofpoint removes a formidable competitor from the crowded email security market and adds technology to address risk from misdirected emails. The post Proofpoint to Acquire Tessian for AI-Powered Email Security Tech appeared first on SecurityWeek .SECURITYWEEK.COM
30 OctApple Improves iMessage Security With Contact Key VerificationNew capability detects attacks on iMessage servers and allows users to verify a conversation partner’s identity. The post Apple Improves iMessage Security With Contact Key Verification appeared first on SecurityWeek .SECURITYWEEK.COM
30 OctVirtual credit card fraud: An old scam reinventedIn today’s rapidly evolving financial landscape, as banks continue to broaden their range of services and embrace innovative technologies, they find themselves at the forefront of a dual-edged sword. While these advancements promise greater convenience and accessibility for…SECURITYINTELLIGENCE.COM
30 OctThe Risk of RBAC Vulnerabilities – A Prevention GuideRole-Based Access Control (RBAC) is a security paradigm focused on assigning system access to users based on their organizational role. It’s a sophisticated approach of ensuring that only the right people can access the right information at the right time. RBAC is not about…GBHACKERS.COM
30 OctGoogle Chrome now auto-upgrades to secure connections for all usersGoogle has taken a significant step towards enhancing Chrome internet security by automatically upgrading insecure HTTP requests to HTTPS requests for 100% of users. [...]BLEEPINGCOMPUTER.COM
30 OctExposed: Scam Artists Mimicking PepsiCo in Phishing SchemesResearchers at INKY warn that a phishing campaign is attempting to distribute malware by impersonating PepsiCo.KNOWBE4.COM
30 OctCanada Bans WeChat and Kaspersky on Government PhonesThe Chief Information Officer of Canada determined that WeChat and Kaspersky applications present an unacceptable level of risk to privacy and security. The post Canada Bans WeChat and Kaspersky on Government Phones appeared first on SecurityWeek .SECURITYWEEK.COM
30 OctAuthor Q&A: Here’s why the good guys must continually test the limitations of ‘EDR’A new tier of overlapping, interoperable, highly automated security platforms must, over the next decade, replace the legacy, on-premise systems that enterprises spent multiple kings’ fortunes building up over the past 25 years. Related: How ‘XDR’ defeats silos Now al…LASTWATCHDOG.COM
30 OctRemcos RAT Disguises as Payslip to Infect UsersResearchers uncovered a phishing campaign distributing the Remcos remote access trojan. Cybercriminals disguised the malware as a payslip in a deceptive email. Remcos RAT can perform a range of malicious activities, including keylogging, capturing screenshots, controlling webcams…CYWARE.COM
30 OctProactive Boards Lead to Flexible CISOs as Companies Prepare for What's to Come - BSW #326In the leadership and communications section, Proactive Boards Enable More Reliable Cyber Governance, CISO Best Practices for Managing Cyber Risk, The Evolution of Work: How Can Companies Prepare for What’s to Come?, and more! Visit https://www.securityweekly.com/bsw for all the …YOUTUBE.COM
30 OctCostco Pharmacy Sends Sensitive Health Data to 3rd PartiesProposed Class Action Suits Accuse Warehouse Market of Unlawful Use of Web Trackers Costco warehouse customers often get free samples of cheese and beef jerky. But members who fill their prescriptions online at Costco pharmacies allegedly get their sensitive information unlawfull…DATABREACHTODAY.CO.UK
30 OctSEC sues SolarWinds for misleading investors before 2020 hackThe U.S. Securities and Exchange Commission (SEC) today charged SolarWinds with defrauding investors by allegedly concealing cybersecurity defense issues before a December 2020 linked to APT29, the Russian Foreign Intelligence Service (SVR) hacking division. [...]BLEEPINGCOMPUTER.COM
30 OctDr. Who | iLeakage | Canada | AI | Killnet | NuGet | Jason Wood & More! – SWN338This week, Doug Talks: Dr. Who, iLeakage, Canada, AI, Killnet, NuGet, Jason Wood, and More on the security weekly news. →Full Show Notes: https://securityweekly.com/swn338 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: https://www.securit…YOUTUBE.COM
30 OctTrustworthy AI for National Security | News - PSW8056:00pm ET - Kathleen Fisher 8:00pm ET - Security News This week, we start things off with an interview with Kathleen Fisher, DARPA’s Information Innovation Office Director at Defense Advanced Research Projects Agency (DARPA), about Trustworthy AI for National Security. Then we di…YOUTUBE.COM
30 OctQuarterly Market Review with a VC | Data Chaos MUST be Curbed, but how? | News - ESW338This week, we kick things off with an interview with Hank Thomas, CEO and Founder at Strategic Cyber Ventures, about Quarterly Market Review with a VC: Strategic Cyber Ventures. Then, we talk with Jackie McGuire, Senior Security Strategist at Cribl, about Data Chaos MUST be Curbe…YOUTUBE.COM
30 OctBots | Citrix | Mitre | Solarwinds | Naked Nudes | Scarlett | | Aaran Leyland & More! – SWN339This week, Doug Talks: Bots, Citrix, Mitre, Solarwinds, Naked Nudes, Scarlett , Aaran Leyland, and More on the security weekly news. →Full Show Notes: https://securityweekly.com/swn339 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: https:…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 6[−]
30 OctHackers Using MSIX App Packages to Infect Windows PCs with GHOSTPULSE MalwareThe GHOSTPULSE malware employs multiple evasion techniques, such as DLL side-loading and module stomping, to load and execute various malware including SectopRAT, Rhadamanthys, Vidar, Lumma, and NetSupport RAT.THEHACKERNEWS.COM
30 OctHuawei, Vivo phones tag Google app as TrojanSMS-PA malwareHuawei, Honor, and Vivo smartphones and tablets are displaying strange 'Security threat' alerts urging the deletion of the Google app, warning that it is detected as the 'TrojanSMS-PA' malware. [...]BLEEPINGCOMPUTER.COM
30 OctIoT Security Threats Highlight the Need for Zero Trust PrinciplesThe manufacturing sector is particularly vulnerable to IoT malware attacks, experiencing an average of 6,000 attacks per week according to Zscaler, which can disrupt critical OT processes and pose long-term challenges for security teams.HELPNETSECURITY.COM
30 OctHuawei, Vivo Phones Tag Google App as TrojanSMS-PA MalwareHuawei, Honor, and Vivo devices are displaying false security alerts urging the deletion of the Google app due to a supposed TrojanSMS-PA malware, but Google denies that its app triggered the alerts.BLEEPINGCOMPUTER.COM
30 OctNew BiBi-Linux wiper malware targets Israeli orgs in destructive attacksA new malware wiper known as BiBi-Linux is being used to destroy data in attacks targeting Linux systems belonging to Israeli companies. [...]BLEEPINGCOMPUTER.COM
30 OctPro-Hamas Hacktivists Targeting Israeli Entities with Wiper MalwareA pro-Hamas hacktivist group has been observed using a new Linux-based wiper malware dubbed BiBi-Linux Wiper, targeting Israeli entities amidst the ongoing Israeli-Hamas war. "This malware is an x64 ELF executable, lacking obfuscation or protective measures," Security Joes said i…THEHACKERNEWS.COM
📡 INFOSEC NEWS 11[−]
30 OctWebinar | Empowering Endpoint Security: Best Practices for Defense-in-DepthDATABREACHTODAY.CO.UK
30 OctHow to increase VPN speed — and why you need a fast VPN | Kaspersky official blogSeven benefits of high-speed VPN, and how to better configure itKASPERSKY.COM
30 OctCISOs Struggling to Understand Value of Security Controls DataMany chief information security officers (CISOs) are facing challenges when it comes to the purpose and value of security controls data in supporting critical business decisions, according to a report by Panaseer.HELPNETSECURITY.COM
30 OctServiceNow Data Exposure: A Wake-Up Call for CompaniesEarlier this week, ServiceNow announced on its support site that misconfigurations within the platform could result in “unintended access” to sensitive data. For organizations that use ServiceNow, this security exposure is a critical concern that could have resulted in major data…THEHACKERNEWS.COM
30 OctIT Army of Ukraine Claims to Disrupt Internet Providers in Russia-Occupied TerritoriesThe recent DDoS attacks by pro-Ukrainian hackers targeted Russian ISPs, including Miranda-media, Krimtelekom, and MirTelekom, affecting not only Crimea but also occupied parts of other regions.SECURITYAFFAIRS.COM
30 OctInternet access in Gaza partially restored after blackoutAfter a weekend of almost complete internet blackout, connectivity in Gaza has been partially restored. On Friday, internet monitoring firms and experts reported that access to the internet had significantly degraded in the Palestinian enclave. The local internet service NetStrea…TECHCRUNCH.COM
30 OctProtecting Business-Critical Web Applications: 4 ChallengesHow to Protect Dispersed Apps, APIs and Handle Low Visibility, Emerging Threats In recent years, the adoption of public cloud infrastructures has surged, providing organizations with unparalleled flexibility and scalability. But this shift has also introduced a new set of challen…DATABREACHTODAY.CO.UK
30 Oct20 scary cybersecurity facts and figures for a haunting HalloweenCybersecurity Awareness Month draws to a close and Halloween is just around the corner, so here is a bunch of spine-tingling figures about some very real tricks and threats lurking onlineWELIVESECURITY.COM
30 OctTrend Micro Recognized as a Customer FavoriteCustomer feedback validates Trend's leadership in in XDR, endpoint security, hybrid CloudTRENDMICRO.COM