🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
11 NovNew APT Group DarkCasino and the Global Surge in WinRAR 0-Day ExploitsDarkCasino exploited a WinRAR 0-day vulnerability (CVE-2023-38831) to launch phishing attacks against forum users, posing a significant threat due to the large installed base and difficulty in identifying and defending against these attacks.SECURITYBOULEVARD.COM
11 Nov'Effluence' Backdoor Persists Despite Patching Atlassian Confluence ServersAttackers exploited the CVE-2023-22515 vulnerability to gain initial access and embed a web shell, allowing them to execute malicious actions without needing a valid user account.THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 3[−]
11 NovBurp Suite 2023.10.3.4 Released – What’s New!Burp Suite 2023.10.3.4 is the name of the newest version of Burp Suite, which was just published by the PortSwigger developers. The Burp Suite is a cybersecurity tool that is used for evaluating the security of online applications. It performs the role of an intercepting proxy an…GBHACKERS.COM
11 NovCyberattack Continues to Affect Operations at Tri-City Medical Center in San DiegoThe hospital has taken its information systems offline and is working with cybersecurity specialists and law enforcement to restore functionality, but it is unclear if a ransom has been demanded or if patient data has been compromised.SANDIEGOUNIONTRIBUNE.COM
11 NovSpammers Abuse Google Forms Quizzes to Perform ScamsCisco's Talos Intelligence blog reveals a sophisticated spam exploit using Google Forms' quiz results feature, collecting email addresses subtly via a quiz template. The spammer leverages Google's infrastructure to send phishing emails, bypassing spam blockers until Google addres…CYWARE.COM
🔥 INCIDENT REPORTING 10[−]
11 NovDragos Security allegedly breached by Russian APT BlackCatsubmitted by SpacePirate to cybersecurity 1 points | 0 comments https://twitter.com/alvierid/status/1723145930252108064?s=46&t=Wx-OPAcOzAiA3A85FLO2mwTWITTER.COM
11 NovSame threats, different ransomwareA threat cluster's switch from Vice Society to RhysidaSOPHOS.COM
11 NovWashington State Department of Transportation Working To Recover From CyberattackThe cause of the cyberattack is under investigation, and while some parts of the website are back up, certain features such as the travel map and online freight permits remain out of service.THERECORD.MEDIA
11 NovUpdate: McLaren Health Care Revealed That a Data Breach Impacted 2.2 Million PeopleThe ALPHV/BlackCat ransomware group claimed responsibility for the breach and accused McLaren of attempting to cover it up, stating that they still have access to the organization's network.SECURITYAFFAIRS.COM
11 NovStealthy Kamran Spyware Targeting Urdu-speaking Users in Gilgit-BaltistanThe spyware, disguised as an Android app, has been available on the website since January 2023 and has compromised at least 20 mobile devices, harvesting sensitive information and uploading it to a command-and-control server.THEHACKERNEWS.COM
11 NovHackers Breach Healthcare Organizations via ScreenConnect Remote AccessThe attackers are targeting healthcare organizations in the U.S. using local ScreenConnect instances used by Transaction Data Systems (TDS), a pharmacy supply chain and management systems solution provider.BLEEPINGCOMPUTER.COM
11 NovMicrosoft Authenticator New Feature Blocks Malicious Notification by DefaultIn an age where online threats loom large, safeguarding our personal and professional accounts has never been more critical. With hackers tirelessly attempting to breach security barriers, the need for robust identity verification methods has become paramount. In resp…GBHACKERS.COM
11 NovChinese APT Infrastructure Mimics Cloud Backup ServicesCambodian government entities were discovered to be targeted and compromised by Chinese APT actors. The threat actors are using the infrastructure to masquerade as a cloud backup service. The infrastructure also exhibits several malicious nature and persistent connections. China …GBHACKERS.COM
11 NovMajor Australian Ports Affected By Cyber Incident'Nationally Significant Cyber Incident' Impacts Imports and Exports A cybersecurity incident at an operator of major Australian maritime ports caused what a government official on Saturday called a "nationally significant" outage frustrating the movement of goods in and out of th…DATABREACHTODAY.CO.UK
11 NovWeekly Update 373Presently sponsored by: Webinar: 'How to Defend Against the Evilginx2.' Kuba Gretzky (Evilginx2) & Marcin Szary (Secfense) show a tool that counters MFA bypass. Most of this week's video went on the scraped (and faked) LinkedIn data, but it's the ransomware discussion t…TROYHUNT.COM
🕵️ THREAT INTELLIGENCE 5[−]
11 NovComig Soon: MDN Observatory 2.0submitted by starman to security 0 points | 0 comments https://developer.mozilla.org/en-US/blog/mdn-observatory/ cross-posted from: programming.dev/post/5721685DEVELOPER.MOZILLA.ORG
11 NovIBM Unveils Cloud-Native QRadar SIEM to Maximize Power of SOC ProfessionalsIBM has recently announced the launch of its Cloud-Native SIEM solution, which is designed to enhance the scale, speed, and flexibility of security teams. With this new offering, organizations can benefit from improved threat detection and response capabilities, empowering them t…GBHACKERS.COM
11 NovSerbian National Pleads Guilty For Operating a Darknet WebsiteAfter being apprehended by the US government, a Serbian citizen confessed to placing multiple orders on the Monopoly drugs market, which operates on the darknet. The individual in question has admitted to engaging in the illicit purchase of drugs through this platform. As per the…GBHACKERS.COM
11 NovMicrosoft Warns of Fake Skills Assessment Portals Targeting IT Job SeekersA sub-cluster within the infamous Lazarus Group has established new infrastructure that impersonates skills assessment portals as part of its social engineering campaigns. Microsoft attributed the activity to a threat actor it calls Sapphire Sleet, describing it as a "shift in th…THEHACKERNEWS.COM
11 NovBlueNoroff strikes again with new macOS malwaresubmitted by L4s to secops 1 points | 0 comments https://www.jamf.com/blog/bluenoroff-strikes-again-with-new-macos-malware/ BlueNoroff strikes again with new macOS malware::Newly discovered later-stage malware from BlueNoroff APT group targets macOS with characteristics similar t…JAMF.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
11 NovAfter ChatGPT, Anonymous Sudan Took Down Cloudflare WebsiteThe attack caused intermittent connectivity issues for a few minutes but did not impact any services or products provided by Cloudflare. The group claims to have used the Skynet and Godzilla botnets for the recent attacks.SECURITYAFFAIRS.COM
📡 INFOSEC NEWS 3[−]
11 NovIt’s Still Easy for Anyone to Become You at ExperianIn the summer of 2022, KrebsOnSecurity documented the plight of several readers who had their accounts at big-three consumer credit reporting bureau Experian hijacked after identity thieves simply re-registered the accounts using a different email address. Sixteen months later, E…KREBSONSECURITY.COM
11 NovPolice takes down BulletProftLink large-scale phishing providerThe notorious BulletProftLink phishing-as-a-service (PhaaS) platform that provided more than 300 phishing templates has been seized, the Royal Malaysian Police announced. [...]BLEEPINGCOMPUTER.COM
11 NovMicrosoft fixes Outlook Desktop bug causing slow saving issuesMicrosoft has resolved a known issue causing significant delays for Microsoft 365 customers when saving attachments in Outlook Desktop. [...]BLEEPINGCOMPUTER.COM