🚨 CISA KEV 1[−]
13 Nov KEVCISA Adds Six Known Exploited Vulnerabilities to CatalogCISA has added six new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-47246 SysAid Server Path Traversal Vulnerability CVE-2023-36844 Juniper Junos OS EX Series PHP External Variable Modification Vulnerability C…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
13 NovChina, Ukraine, and Israel in the cyberwar spotlight as tensions riseAs military conflicts cause devastating real-world harm in the physical realm, the governments of Ukraine and Israel are battling escalating cyber harms from nation-state and non-state threat actors. Against this backdrop, the US government is increasingly alarmed about China and…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 13[−]
13 NovMajor Phishing-as-a-Service Syndicate 'BulletProofLink' Dismantled by Malaysian AuthoritiesMalaysian law enforcement authorities have announced the takedown of a phishing-as-a-service (PhaaS) operation called BulletProofLink. The Royal Malaysian Police said the effort, which was carried out with assistance from the Australian Federal Police (AFP) and the U.S. Federal B…THEHACKERNEWS.COM
13 NovDeception technology use to grow in 2024 and proliferate in 2025Tis the season to make predictions for 2024, so here's one of mine: Deception technology will become more pervasive in 2024 and become a security operations staple by the end of 2025. Now, there are two common counterpoints I often hear from deception technology skeptics. First, …CSOONLINE.COM
13 Nov KEV8 reasons your cybersecurity training program sucks and how to fix itCompanies are struggling to engage their employees in taking cybersecurity awareness training, having often to make it mandatory for staff to oblige. The ongoing financial constraints affecting all businesses also mean more work on smaller teams that then need to take time to go …CSOONLINE.COM
13 NovYellen Says Ransomware Attack on China’s Biggest Bank Minimally Disrupted Treasury Market TradesA ransomware attack that forced China’s biggest bank to take some systems offline only minimally disrupted the U.S. Treasury market. The post Yellen Says Ransomware Attack on China’s Biggest Bank Minimally Disrupted Treasury Market Trades appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovTop 5 Marketing Tech SaaS Security ChallengesEffective marketing operations today are driven by the use of Software-as-a-Service (SaaS) applications. Marketing apps such as Salesforce, Hubspot, Outreach, Asana, Monday, and Box empower marketing teams, agencies, freelancers, and subject matter experts to collaborate seamless…THEHACKERNEWS.COM
13 NovNew Ransomware Group Emerges with Hive's Source Code and InfrastructureThe threat actors behind a new ransomware group called Hunters International have acquired the source code and infrastructure from the now-dismantled Hive operation to kick-start its own efforts in the threat landscape. "It appears that the leadership of the Hive group made the s…THEHACKERNEWS.COM
13 NovACSC and CISA Release Business Continuity in a BoxToday, the Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) and CISA released Business Continuity in a Box . Business Continuity in a Box, developed by ACSC with contributions from CISA, assists organizations with swiftly and securely standing up cri…CISA.GOV
13 NovIntel is Being Sued Over the ‘Downfall’ CPU Vulnerability for $10K per PlaintiffA class-action lawsuit had been filed against Intel due to a critical “Downfall” vulnerability in Intel CPUs, a defect that Intel was aware of since 2018 but neglected to report. According to Intel, the only way to “fix” it is to apply a patch th…GBHACKERS.COM
13 NovOne shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerabilitysubmitted by L4s to secops 1 points | 0 comments https://kaist-hacking.github.io/pubs/2023/kim:kernel-ctf-slides.pdf One shot, Triple kill: Pwning all three Google kernelCTF instances with a single 1-day Linux vulnerability::undefinedKAIST-HACKING.GITHUB.IO
13 Nov KEVCISA warns of actively exploited Juniper pre-auth RCE exploit chainCISA warned federal agencies today to secure Juniper devices on their networks by Friday against four vulnerabilities used in remote code execution (RCE) attacks as part of a pre-auth exploit chain. [...]BLEEPINGCOMPUTER.COM
13 NovEmbed security from code to cloud with unified CNAPPsA decade ago, most companies relied on individual point solutions to secure specific aspects of their cloud environment. They might have one solution for vulnerability management, another for monitoring employee device usage, yet another for verifying login information, and so on…CSOONLINE.COM
13 NovDenmark Hit With Largest Cyberattack on RecordReport Reveals How Hackers Targeted Danish Energy Infrastructure in Sweeping Attack Critical infrastructure operators across Denmark experienced the most extensive cybersecurity incident in Danish history earlier this year when hackers exploited zero-day vulnerabilities in firewa…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 4[−]
13 NovEmpowering cybersecurity leadership: Strategies for effective Board engagementWith the increased regulation surrounding cyberattacks, more and more executives are seeing these attacks for what they are – serious threats to business operations, profitability and business survivability. But what about the Board of Directors? Are they getting all the in…SECURITYINTELLIGENCE.COM
13 NovCISA Releases Update to Royal Ransomware AdvisoryToday, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released an update to joint Cybersecurity Advisory (CSA) #StopRansomware: Royal Ransomware . The updated advisory provides network defenders with additional informatio…CISA.GOV
13 NovFBI: Royal ransomware asked 350 victims to pay $275 millionThe FBI and CISA revealed in a joint advisory that the Royal ransomware gang has breached the networks of at least 350 organizations worldwide since September 2022. [...]BLEEPINGCOMPUTER.COM
13 NovCohesity taps Amazon for generative AI, cloud-based securityBringing its security and data analysis capabilities to a new potential audience, data security and multicloud data management provider Cohesity is now taking signups for access to its Turing generative AI features via Amazon's Bedrock front-end for cloud-based AI. Cohesity Turin…CSOONLINE.COM
🔥 INCIDENT REPORTING 24[−]
13 NovMajor Australian ports shut down following cyber incidentDP World Australia restricted access to its Australian port operations in Brisbane, Melbourne and Sydney on Saturday after a cyber incident was detected. DP World is Australia's second largest port operator and manages almost 40% of the goods going in and out of the country. The …CSOONLINE.COM
13 NovNew BiBi-Windows Wiper Targets Windows Systems in Pro-Hamas AttacksCybersecurity researchers have warned about a Windows version of a wiper malware that was previously observed targeting Linux systems in cyber attacks aimed at Israel. Dubbed BiBi-Windows Wiper by BlackBerry, the wiper is the Windows counterpart of BiBi-Linux Wiper, which has bee…THEHACKERNEWS.COM
13 NovPersonal Information Impacted in Breach of Computer Network, Butler County SaysThe county is conducting a review to determine the extent of the breach, identify those affected, and will provide written notice and credit monitoring services to impacted individuals.YAHOO.COM
13 NovCyber Security Today, Nov. 13, 2023 - Booking.com attack may be widespread, ransomware operator calls it quits, and moreThis episode reports on a cyber attack on the operator of ports in Australia, the hack of a reporter's Experian account, the latest data breaches, and moreCYBERSECURITYTODAY.LIBSYN.COM
13 NovPersonal Information Impacted in Breach of Computer Network, Butler County SaysThe county is conducting a review to determine the extent of the breach, identify those affected, and will provide written notice and credit monitoring services to impacted individuals.YAHOO.COM
13 NovMr. Cooper Says Customer Data Compromised in CyberattackUS mortgage giant Mr. Cooper announced that customer data was compromised in an October 31 cyberattack. The post Mr. Cooper Says Customer Data Compromised in Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovOperations at Major Australian Ports Significantly Disrupted by CyberattackA cyberattack on Australian shipping giant DP World, which may have been a ransomware attack, has resulted in serious disruptions at major ports. The post Operations at Major Australian Ports Significantly Disrupted by Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovRansomware Group Leaks Files Allegedly Stolen From BoeingThe LockBit ransomware group has leaked gigabytes of files allegedly stolen from the systems of aerospace giant Boeing. The post Ransomware Group Leaks Files Allegedly Stolen From Boeing appeared first on SecurityWeek .SECURITYWEEK.COM
13 Nov2.2 Million Impacted by Data Breach at McLaren Health CareMcLaren Health Care is informing roughly 2.2 million individuals of a data breach impacting their personal information. The post 2.2 Million Impacted by Data Breach at McLaren Health Care appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovUpdate: Lockbit Ransomware Leaks Gigabytes of Boeing DataThe leaked data includes backups of various systems, with the most recent files having an October 22 timestamp, raising concerns about potential vulnerabilities in Boeing's IT infrastructure.BLEEPINGCOMPUTER.COM
13 NovChess.com Faces Second Data Leak; 476,000 Scraped User Records LeakedThe leaked data includes personal details such as full names, email addresses, usernames, and profile links, posing a significant threat to Chess.com users for potential identity theft and phishing attacks.HACKREAD.COM
13 NovRansomware Group RansomedVC Closes ShopThe ransomware and data extortion group RansomedVC announced plans to shut down the project and sell parts of its infrastructure. The post Ransomware Group RansomedVC Closes Shop appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovLorenz Ransomware Gang Hit Texas-Based Cogdell Memorial HospitalThe Lorenz extortion group has targeted and leaked data from the Texas-based Cogdell Memorial Hospital, adding to the rising number of ransomware attacks on healthcare organizations in the US.SECURITYAFFAIRS.COM
13 NovDragos Says No Evidence of Breach After Ransomware Gang Claims Hack via Third PartyDragos finds no evidence of a data breach after the BlackCat ransomware group claimed to have hacked the security firm via a third party. The post Dragos Says No Evidence of Breach After Ransomware Gang Claims Hack via Third Party appeared first on SecurityWeek .SECURITYWEEK.COM
13 NovHealthcare giant McLaren reveals data on 2.2 million patients stolen during ransomware attackMichigan-based McLaren Health Care has confirmed that the sensitive personal and health information of 2.2 million patients was compromised during a cyberattack earlier this year. A ransomware gang later took credit for the cyberattack. In a new data breach notice filed with Main…TECHCRUNCH.COM
13 NovAustralian Ports Recover From Cyber IncidentCitrix Bleed May Have Struck Again Operations resumed Monday at four major Australian ports incapacitated by a cybersecurity incident. Dubai-based DP World took systems offline Friday, provoking what government officials called a significant outage frustrating the movement of goo…DATABREACHTODAY.CO.UK
13 NovDP World cyberattack blocks thousands of containers in portsA cyberattack on international logistics firm DP World Australia has severely disrupted the regular freight movement in multiple large Australian ports. [...]BLEEPINGCOMPUTER.COM
13 NovJoe Sullivan on What CISOs Need to Know About the Uber TrialIn this episode of CyberEd.io's podcast series "Cybersecurity Insights," former Uber CSO Joe Sullivan discusses the Uber trial and offers guidance to future CISOs. Was the Uber case a data breach or not. Sullivan explained why that making that distinction can be complicated.DATABREACHTODAY.CO.UK
13 NovInside Denmark's Hell Week As Critical Infrastructure Orgs Faced CyberattacksPACKETSTORMSECURITY.COM
13 NovLockBit Takes Credit For Ransomware Attack On US Subsidiary Of Chinese BankPACKETSTORMSECURITY.COM
13 NovInfo Stealers Thrive in Hot Market for Stolen DataBrowser Data, Crypto Wallets and Chat Apps Are Also Top Targets, Researchers Report Info-stealer malware built for stealing lucrative, sensitive data - including cryptocurrency wallet and remote access credentials - continues to remain popular for criminally inclined individuals.…DATABREACHTODAY.CO.UK
13 NovMcLaren Health Care Hack Affected Millions; Lawsuits Pile UpMichigan Healthcare Provider Faces 7 Federal Lawsuits in Alphv/BlackCat Data Theft McLaren Health Care is notifying nearly 2.2 million people of a data breach weeks after ransomware group Alphv/BlackCat claimed to have stolen 6 terabytes of patient records in a recent attack. In …DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 21[−]
13 NovISC Stormcast For Monday, November 13th, 2023 https://isc.sans.edu/podcastdetail/8742, (Mon, Nov 13th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
13 Nov10 Best Unified Endpoint Management Tools – 2024Managing a diverse range of devices, including desktops, mobile devices, and Internet of Things (IoT) devices, is an essential aspect of modern businesses. To efficiently handle these devices, a set of best Unified Endpoint Management Tools (UEM) technologies provide an indispens…GBHACKERS.COM
13 NovImperial Kitten Attacking Tech Firms with SQLi & Scanning ToolsResearchers detected IMPERIAL KITTEN, an adversary with ties to Iran, conducting strategic web compromise (SWC) operations with a focus on transportation, logistics, and technology firms. The adversary, who has been operating since at least 2017, has been reported to have ties to…GBHACKERS.COM
13 NovChinese Hackers Launch Covert Espionage Attacks on 24 Cambodian OrganizationsCybersecurity researchers have discovered what they say is malicious cyber activity orchestrated by two prominent Chinese nation-state hacking groups targeting 24 Cambodian government organizations. "This activity is believed to be part of a long-term espionage campaign," Palo Al…THEHACKERNEWS.COM
13 NovMY TAKE: New tech standards, like ‘Matter’ and ‘BIMI,’ point the way to secure interoperabilityThe IQ of our smart homes is about to level-up. Hundreds of different types of smart devices designed to automate tasks and route control to our smart phones and wearable devices have arrived on store shelves, just in time for … (more…)LASTWATCHDOG.COM
13 NovAuthorities Took Down Massive Phishing-as-a-service Provider BulletProftLinkA notorious phishing service that supplied cybercriminals with phishing kits, scam pages, and stolen credentials has been disrupted by a joint operation involving Malaysian, Australian, and U.S. authorities. BulletProftLink, also known as a phishing-as-a-service (PhaaS) pla…GBHACKERS.COM
13 NovSignature Techniques of Asian APT Groups RevealedThe industries most frequently targeted by Asian APT groups include government, industrial, healthcare, IT, agriculture, and energy sectors, emphasizing the importance of tailored security measures for these industries.INFOSECURITY-MAGAZINE.COM
13 NovModern Security Podcast: John Steven and Security as Engineering Accelerant -95 minutessubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/57132864-9281-4102-9fd9-79c02514473c.png In this episode of the Modern Security Podcast , we interviewed John Steven about scaling security teams and implementing secure by default culture. …INFOSEC.PUB
13 NovNorth Korea-Linked APT Sapphire Sleet Targets IT Job SeekersThey have created fake skills assessment portals to trick recruiters into registering for an account. Previously, they used platforms like LinkedIn and employed lures related to skills assessment.SECURITYAFFAIRS.COM
13 NovXSIAM 2.0: Continuing to Drive SOC TransformationCortex XSIAM 2.0 is the latest innovation for delivering a converged platform, AI-driven outcomes and an automation-first approach for the modern SOC. The post XSIAM 2.0: Continuing to Drive SOC Transformation appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
13 NovCriminal IP & Cisco SecureX/XDR: Enhanced Cyber Threat AnalysisThe Criminal IP threat intelligence search engine by AI SPERA has recently integrated with Cisco SecureX/XDR, empowering organizations to stay ahead of malicious actors. Learn more about this integration from Criminal IP in this article. [...]BLEEPINGCOMPUTER.COM
13 NovSay Easy, Do Hard - Cyber Risk Management, Part 2 - BSW #328Inspired by my co-host, Jason Albuquerque, we get our hands dirty and discuss the challenges of cyber risk management. Why is cyber risk management so elusive and what can we do to solve it? In part 2, we get our hands dirty by walking through ways to quantify cyber risks in busi…YOUTUBE.COM
13 NovSay Easy, Do Hard - Cyber Risk Management - BSW #328This week, we are joined by Padraic O'Reilly, Chief Product Officer & Co-Founder at CyberSaint and Robert Fitzgerald, Field CISO at Blue Mantis, in a 2 segment discussion on Cyber Risk Managment in our 4th Say Easy, Do Hard episode. Visit https://www.securityweekly.com/bsw for al…YOUTUBE.COM
13 NovSay Easy, Do Hard – Cyber Risk Management - Padraic O'Reilly and Robert Fitzgerald – BSW #328Inspired by my co-host, Jason Albuquerque, we get our hands dirty and discuss the challenges of cyber risk management. Why is cyber risk management so elusive and what can we do to solve it?In part 1, we discuss the challenges of #cyberrisk management and quantification. Do risk …YOUTUBE.COM
13 NovSay Easy, Do Hard - Cyber Risk Management, Part 1 - BSW #328Inspired by my co-host, Jason Albuquerque, we get our hands dirty and discuss the challenges of cyber risk management. Why is cyber risk management so elusive and what can we do to solve it? In part 1, we discuss the challenges of cyber risk management and quantification. Do risk…YOUTUBE.COM
13 NovMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
13 NovCybertruck | Solarwinds | Bitcoin | Docker | Ducktail | Experian | Jason Wood & More! – SWN342This week, Doug Talks: Cybertruck, Solarwinds, Bitcoin, Docker, Ducktail, Experian , Jason Wood, and More on the security weekly news. →Full Show Notes: https://securityweekly.com/swn342 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: http…YOUTUBE.COM
13 NovCapture The Flag: 5 websites to sharpen your hacking skillsThrough engaging hacking challenges and competitions, CTFs offer an excellent opportunity to test and enhance your security and problem-solving skillsWELIVESECURITY.COM
13 Nov2FA _ Your Secret Weapon for Digital DefenseAs we rely on the Internet for communication, business transactions, and various aspects of our daily lives, the need for robust digital security measures becomes increasingly evident. Two-factor authentication (2FA) is one such measure that has emerged as a secret weapon f…GBHACKERS.COM
13 NovDefending Against Supply Chain Attacks - BTS #18In this edition of Below The Surface, we discuss Defending Against Supply Chain Attacks, with Bri Rolston, Cyber Security Researcher at INL. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! →Full Show Notes: https://secu…YOUTUBE.COM
13 Nov3 Layers of App Security to Keep Hackers Out, Let Customers In | News - PSW8076:00pm ET - Aviad Mizrachi 8:00pm ET - Security News This week, we start things off with an interview with Aviad Mizrachi, CTO and Co-founder at Frontegg, about T3 Layers of App Security to Keep Hackers Out, Let Customers In. Then we discuss our security news for the week. →Full …YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
13 NovCherryBlos Malware Steals Cryptocurrency via Your PhotosCherryBlos is a family of Android malware that can steal cryptocurrency by extracting sensitive information from photos on a user's phone. This includes details related to cryptocurrency wallets, such as recovery phrases.TRIPWIRE.COM
13 NovTen Ways AI Will Change DemocracyArtificial intelligence will change so many aspects of society, largely in ways that we cannot conceive of yet. Democracy, and the systems of governance that surround it, will be no exception. In this short essay, I want to move beyond the “AI-generated disinformation”…SCHNEIER.COM
13 NovIsrael warns of BiBi wiper attacks targeting Linux and WindowsSecurity researchers found a Windows equivalent for the recently discovered BiBi-Linux, a data-wiping malware used in attacks to destroy data on systems at Israeli companies. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 8[−]
13 NovMajor Phishing-as-a-Service Syndicate 'BulletProofLink' Dismantled by Malaysian AuthoritiesBulletProofLink offered ready-to-use phishing templates to conduct credential harvesting campaigns, targeting well-known services and engaging in double theft to maximize profits.THEHACKERNEWS.COM
13 NovKaspersky multi-layered protection for your online finances | Kaspersky official blogWhat Kaspersky technologies and products are designed for multi-layered protection of your online finances, and what threats they can protect against.KASPERSKY.COM
13 NovIn a first, cryptographic keys protecting SSH connections stolen in new attackAn error as small as a single flipped memory bit is all it takes to expose a private key.ARSTECHNICA.COM
13 NovMore Than $100 Million Stolen From Poloniex Crypto PlatformThe platform confirmed the theft and plans to reimburse affected users. Poloniex offered a 5% bounty to the hacker for the return of the funds and urged a response within 7 days.THERECORD.MEDIA
13 NovEthereum feature abused to steal $60 million from 99K victimsMalicious actors have been abusing Ethereum's 'Create2' function to bypass wallet security alerts and poison cryptocurrency addresses, which led to stealing $60,000,000 worth of cryptocurrency from 99,000 people in six months. [...]BLEEPINGCOMPUTER.COM
13 NovIn A First, Cryptographic Keys Protecting SSH Connections Stolen In New AttackPACKETSTORMSECURITY.COM
13 NovDDoS Attack On ChatGPT Sparks Concerns Over Coding, Productivity DisruptionsPACKETSTORMSECURITY.COM