45Articles
7Categories
2023-11-24Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
24 NovComprehensive guide on writing your first metasploit remote code execution modulesubmitted by L4s to secops 1 points | 0 comments https://baldur.dk/blog/writing-metasploit-exploit.html Comprehensive guide on writing your first metasploit remote code execution module::Comprehensive guide on how to convert your RCE vulnerability into a fully functional metasplo…BALDUR.DK
⚠️ VULNERABILITY DISCLOSURE 4[−]
24 NovIOTW: Data breach exposes sensitive information of Canadian Government employeesThe Canadian government has disclosed a data breach after contractor hacks exposed information dating back to 1999CSHUB.COM
24 NovCritical bug in ownCloud file sharing app exposes admin passwordsOpen source file sharing software ownCloud is warning of three critical-severity security vulnerabilities, including one that can expose administrator passwords and mail server credentials. [...]BLEEPINGCOMPUTER.COM
24 NovHackers exploit MagicLine4NX zero-day in supply-chain attackA joint advisory by the National Cyber Security Centre (NCSC) and Korea's National Intelligence Service (NIS) discloses a supply-chain attack executed by North Korean hackers involving the MagicLineThe National Cyber Security Centre (NCSC) and Korea's National Intelligence Servic…BLEEPINGCOMPUTER.COM
24 NovUK and South Korea: Hackers use zero-day in supply-chain attackA joint advisory by the National Cyber Security Centre (NCSC) and Korea's National Intelligence Service (NIS) discloses a supply-chain attack executed by North Korean hackers involving the MagicLineThe National Cyber Security Centre (NCSC) and Korea's National Intelligence Servic…BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 2[−]
24 NovBahrain Government Websites Briefly Inaccessible After Cyberattack Over Israel-Hamas WarThe Al-Toufan hacker group targeted the Foreign Ministry and the Information Affairs Ministry's websites and also released scans of passports allegedly obtained from the hack.APNEWS.COM
24 NovNorth Korean Supply Chain Attacks Prompt Joint Warning From South Korea and the UKThe United Kingdom and South Korea have issued a joint advisory warning about software supply chain attacks carried out by North Korean state-linked hackers, highlighting the increasing volume and sophistication of such attacks.THERECORD.MEDIA
🔥 INCIDENT REPORTING 14[−]
24 NovLondon & Zurich Ransomware Attack Causes Customer ChaosThe company has not provided information on whether any data was compromised or how the attackers breached its systems. London & Zurich has stated that it is working to restore its services by the end of the week.THEREGISTER.COM
24 NovCyber Security Today, Nov. 24, 2023 - A warning to tighten security on Kubernetes containers, and moreThis episode reports on the increasing number of vulnerable Kubernetes containers online, the latest acknowledged data breaches, a browser scam aimed at Macs, and moreCYBERSECURITYTODAY.LIBSYN.COM
24 NovHamas-Linked Cyberattacks Using Rust-Powered SysJoker Backdoor Against IsraelCybersecurity researchers have shed light on a Rust version of a cross-platform backdoor called SysJoker, which is assessed to have been used by a Hamas-affiliated threat actor to target Israel amid the ongoing war in the region. “Among the most prominent changes is the shift to …THEHACKERNEWS.COM
24 NovIn Other News: National Laboratory Breach, Airplane GPS Attacks, Russia Accuses Allies of HackingNoteworthy stories that might have slipped under the radar: Idaho National Laboratory breach, GPS attacks target airplanes, Russian accuses China and North Korea of hacking. The post In Other News: National Laboratory Breach, Airplane GPS Attacks, Russia Accuses Allies of Hacking…SECURITYWEEK.COM
24 NovThe CRAZY world of ransomware - keynote by cybersecurity expert Graham Cluley - 20 minutessubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/027f1b6b-3851-4ec8-acec-0c59ca5831d0.png The CRAZY world of ransomware - keynote by cybersecurity expert Graham Cluley Ransomware. It’s probably the most damaging type of malicious software …INFOSEC.PUB
24 NovNorth Korean Software Supply Chain Attack Hits North America, AsiaNorth Korean hackers breached a Taiwanese company and used its systems to deliver malware to the US, Canada, Japan and Taiwan in a supply chain attack. The post North Korean Software Supply Chain Attack Hits North America, Asia appeared first on SecurityWeek .SECURITYWEEK.COM
24 NovRust-Powered SysJoker Backdoor Used in Hamas-Linked Cyberattacks Against IsraelThe use of OneDrive instead of Google Drive for storing command-and-control server URLs allows attackers to easily change the C2 address and stay ahead of reputation-based services.THEHACKERNEWS.COM
24 NovIndian Hotels Probes Alleged Customer Data Breach1.5 Million Customers' Details Stolen From Taj Hotel Chain, Attacker Claims Hospitality giant Indian Hotels is probing the alleged theft of data from its systems after a criminal recently claimed they stole data pertaining to 1.5 million customers of the Taj hotel chain in 2020, …DATABREACHTODAY.CO.UK
24 NovBlackCat Ransomware Claims Attack on Fidelity National FinancialThe incident involved an intruder accessing Fidelity National Financial's systems and acquiring certain credentials, leading to the shutdown of various systems and impacting the company's operations.THEREGISTER.COM
24 NovCyberattack at Legal Sector Service Provider CTS Disrupts UK Property DealsCTS, a legal sector specialist infrastructure service provider, confirmed in a statement that it has experienced a service outage caused by a cyber-incident. The outage is believed to have affected up to 200 law firms that use CTS’ services.INFOSECURITY-MAGAZINE.COM
24 NovTaj Hotel Data Breach Potentially Impacts 1.5 Million CustomersThe breach occurred in November and a threat actor named "Dnacookies" is demanding $5,000 for the full dataset, which includes customers' addresses, mobile numbers, and membership IDs.LIVEMINT.COM
24 NovCyberattack on IT provider CTS impacts dozens of UK law firmsA cyberattack on CTS, a leading managed service provider (MSP) for law firms and other organizations in the UK legal sector, is behind a major outage impacting numerous law firms and home buyers in the country since Wednesday. [...]BLEEPINGCOMPUTER.COM
24 NovCyber Security Today, Week in Review for Friday, Nov. 24, 2023This episode features discussion on Australia's decision to not make ransomware payments illegal, huge hacks of third-party service suppliers in Canada and the U.S. and whether email and smartphone service providers are doing enough to protect customersCYBERSECURITYTODAY.LIBSYN.COM
24 NovKitchenPal - 98,726 breached accountsIn November 2023, the kitchen management application KitchenPal suffered a data breach that exposed 146k lines of data . When contacted about the incident, KitchenPal advised the corpus of data came from a staging environment, although acknowledged it contained a small number of …HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 13[−]
24 NovZTNA vs VPN: What is the Difference? Will ZTNA Replace VPN?In the late 1990s, VPN technology revolutionized remote work. However, the traditional VPN model has become outdated and unworkable as the world becomes increasingly mobile and cloud-based. The need for a new cybersecurity system has been growing for years. Businesses now require…GBHACKERS.COM
24 Nov‘Pig butchering’: Authorities Seized $9M in Crypto During Dollar ConversionAuthorities seized about $9 million in crypto, which was earned by taking advantage of over 70 victims nationwide through alleged “pig butchering” schemes. A pig-butchering scam is an investment fraud that tricks people into investing their money in see…GBHACKERS.COM
24 NovTell Me Your Secrets Without Telling Me Your SecretsThe title of this article probably sounds like the caption to a meme. Instead, this is an actual problem GitGuardian's engineers had to solve in implementing the mechanisms for their new HasMySecretLeaked service. They wanted to help developers find out if their secrets (password…THEHACKERNEWS.COM
24 NovLitterDrifter USB WormA new worm that spreads via USB sticks is infecting computers in Ukraine and beyond. The group­—known by many names, including Gamaredon, Primitive Bear, ACTINIUM, Armageddon, and Shuckworm—has been active since at least 2014 and has been attributed to Russia’s Federa…SCHNEIER.COM
24 NovBsides Edmonton 2023 - 25 videossubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/77b9d921-3fe0-4277-9502-6db71813bd74.png Bsides Edmonton 2023 - 25 videos Schedule from the websiteINFOSEC.PUB
24 NovHackers of CypherCon 6.0 - 90 videossubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/72758fe0-b4d9-4b2b-a437-967f0bec3012.png Hackers of CypherCon 6.0 - playlist, 90 videos Schedule from the website CypherCon is Wisconsin’s largest annual hacker conference based in Milwaukee…INFOSEC.PUB
24 NovCornCon 9: The Rise of AI - 35 videossubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/b495a845-b5d3-47fd-bd40-6466248b3657.png Playlist CornCon 9: The Rise of AI Schedule from the website - pdf #CPE #infosec #securityconferenceINFOSEC.PUB
24 NovCybercriminals Using Telekopye Telegram Bot to Craft Phishing Scams on a Grand ScaleMore details have emerged about a malicious Telegram bot called Telekopye that's used by threat actors to pull off large-scale phishing scams. "Telekopye can craft phishing websites, emails, SMS messages, and more," ESET security researcher Radek Jizba said in a new analysis. The…THEHACKERNEWS.COM
24 NovSpying & Cyber Warfare - SDL - SWN VaultFrom Russia With Love, come Doug and Russ, doing a segment on spying! Not the 007 spying, but spying when it comes to cyber warfare. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/vault-swn-6YOUTUBE.COM
24 NovEuropean Commission Failing to Tackle Spyware, Lawmakers SayParliamentarians Pass Resolution Calling For Immediate Executive Branch Action European lawmakers slammed the EU executive branch's inaction after a parliamentary committee called for tougher rules designed to prevent spyware abuse across the trading bloc. More than half of Europ…DATABREACHTODAY.CO.UK
24 NovISMG Editors: Will Federal Budget Cuts Bite US Security?Also: Advice for the Next White House Cyber Director; CISOs' Liability Concerns In the latest weekly update, the former federal CISO, Grant Schneider, joins three editors at ISMG to discuss important cybersecurity issues, including advice for the next White House cyber director, …DATABREACHTODAY.CO.UK
24 NovChocolate Swiss Army KnifeIt’s realistic looking . If I drop it in a bin with my keys and wallet, will the TSA confiscate it?SCHNEIER.COM
24 NovFriday Squid Blogging: Squid NebulaPretty photograph . The Squid Nebula is shown in blue, indicating doubly ionized oxygen—­which is when you ionize your oxygen once and then ionize it again just to make sure. (In all seriousness, it likely indicates a low-mass star nearing the end of its life). As usual, yo…SCHNEIER.COM
🌐 CYBER THREAT LANDSCAPE 5[−]
24 NovKubernetes Secrets of Fortune 500 Companies Exposed in Public RepositoriesCybersecurity researchers are warning of publicly exposed Kubernetes configuration secrets that could put organizations at risk of supply chain attacks. “These encoded Kubernetes configuration secrets were uploaded to public repositories,” Aqua security researchers Yakir Kadkoda …THEHACKERNEWS.COM
24 NovMalicious Chrome Extension Called ParaSiteSnatcher Targets Users in BrazilThe malware utilizes a VBScript downloader to install itself on infected systems and employs obfuscation techniques to conceal its activities and make analysis more challenging.TRENDMICRO.COM
24 NovNew WailingCrab Malware Loader Spreading via Shipping-Themed EmailsWailingCrab incorporates stealth features and utilizes MQTT, a rare messaging protocol, to evade detection and download payloads directly from the C2 server, bypassing Discord.THEHACKERNEWS.COM
24 NovKubernetes Secrets of Fortune 500 Companies Exposed in Public RepositoriesPublicly exposed Kubernetes configuration secrets pose a significant risk of supply chain attacks, with credentials for accessing container image registries being stored in public repositories.THEHACKERNEWS.COM
24 NovAustralia’s Cybersecurity Strategy Focuses on Protecting Small Businesses and Critical InfrastructureThe strategy includes financial investments to support small and medium businesses, strengthen critical infrastructure, and enhance cyber capabilities, but critics argue that the allocated funds are insufficient.CSOONLINE.COM
📡 INFOSEC NEWS 6[−]
24 NovHappy Birthday DShield, (Fri, Nov 24th)This is just an annual reminder that DShield, the engine behind the SANS Internet Storm Center,&#;x26;#;xc2;&#;x26;#;xa0;was originally coded over the Thanksgiving weekend in 2000 and made life shortly after. Below is an ear…ISC.SANS.EDU
24 NovWhy Nothing Chats is unsafe | Kaspersky official blogThe Nothing Chats app promised to give Android users access to iMessage, but turned out to be so insecure that it was removed from Google Play within 24 hours.KASPERSKY.COM
24 NovPhishing Emails Soar 237% Ahead of Black FridayBetween November 1 and November 14 this year, security vendor Egress detected a 237% increase in phishing emails relating specifically to Black Friday and Cyber Monday, versus the period September 1-October 31.INFOSECURITY-MAGAZINE.COM
24 NovTelekopye Toolkit Used as Telegram Bot to Scam Online Marketplace UsersThe Telekopye Toolkit, implemented as a Telegram bot, is a tool used by scammers to deceive users in online marketplaces by creating phishing websites and fabricating fake screenshots, emails, and SMS messages.HACKREAD.COM
24 NovHackers Demand $60M From TransUnion and Experian in South Africa, Claiming Data TheftThe hacker group, known as N4ughtySecTU, demanded a ransom of $30 million from both the credit reporting agencies and claims to have direct access to their data and infrastructure.BUSINESSLIVE.CO.ZA
24 NovTelekopye's tricks of the trade – Week in security with Tony AnscombeESET's research team reveals details about the onboarding process of the Telekopye scam operation and the various methods that the fraudsters use to defraud people onlineWELIVESECURITY.COM