🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
6 DecHackers Exploited ColdFusion Vulnerability to Breach Federal Agency ServersThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned of active exploitation of a high-severity Adobe ColdFusion vulnerability by unidentified threat actors to gain initial access to government servers. "The vulnerability in ColdFusion (CVE-2023-26360)…THEHACKERNEWS.COM
6 DecAtlassian Releases Critical Software Fixes to Prevent Remote Code ExecutionAtlassian has released software fixes to address four critical flaws in its software that, if successfully exploited, could result in remote code execution. The list of vulnerabilities is below - CVE-2022-1471 (CVSS score: 9.8) - Deserialization vulnerability in&nb…THEHACKERNEWS.COM
6 DecQualcomm Releases Details on Chip Vulnerabilities Exploited in Targeted AttacksChipmaker Qualcomm has released more information about three high-severity security flaws that it said came under "limited, targeted exploitation" back in October 2023. The vulnerabilities are as follows - CVE-2023-33063 (CVSS score: 7.8) - Memory corruption in DSP…THEHACKERNEWS.COM
6 DecAttackers breach US government agencies through ColdFusion flawIn a new advisory that shows why it’s critical to keep Adobe ColdFusion deployments up to date, the US Cybersecurity and Infrastructure Security Agency (CISA) warns that two federal agencies were breached by attackers in June through an unpatched vulnerability in the application …CSOONLINE.COM
6 Dec20 years of Patch Tuesday: it’s time to look outside the Windows when fixing vulnerabilitiesFor two decades we have been patching our Windows machines every second Tuesday of the month, devoting time and resources to testing and reviewing updates that are not generally rolled out until they have been validated and it is confirmed that they will do no damage. This may be…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 18[−]
6 DecCisco unveils AI-powered assistants to level up security defensesCisco is making a bid to drive artificial intelligence (AI) deeper into its cloud security platform, launching a new feature, AI Assistant for Security, a cross-domain AI-driven assistant designed to help organizations of all sizes level up their defenses against the rising tide …CSOONLINE.COM
6 DecICANN Launches RDRS to Assist Law Enforcement Agencies to Discover Private InfoICANN is a non-profit organization that is responsible for coordinating the global internet’s- This organization manages the distribution and maintenance of domain names and ensures the stable and secure operation of the Internet. ICANN introduced RDRS (Registration Data Re…GBHACKERS.COM
6 DecCyber Security Today, Dec. 6, 2023 - Warnings about Russian-based cyber attacks, and moreThis episode reports on abuse of Go language repositories, unpatched Outlook servers targeted by Russian group, and moreCYBERSECURITYTODAY.LIBSYN.COM
6 DecRussian FSB Cyber Actor Star Blizzard Continues Worldwide Spear-phishing CampaignsThe Russia-based actor is targeting organizations and individuals in the UK and other geographical areas of interest. OVERVIEW The Russia-based actor Star Blizzard (formerly known as SEABORGIUM, also known as Callisto Group/TA446/COLDRIVER/TAG-53/BlueCharlie) continues to success…CISA.GOV
6 DecFancy Bear group exploits Outlook and WinRAR flaws in mass credential collection...Threat actor leveraging patched vulnerabilities to send high-volume campaigns to targets in Europe and North AmericaCSHUB.COM
6 DecICANN Launches Service to Help With WHOIS LookupsMore than five years after domain name registrars started redacting personal data from all public domain registration records, the non-profit organization overseeing the domain industry has introduced a centralized online service designed to make it easier for researchers, law en…KREBSONSECURITY.COM
6 DecSierra:21 - Flaws in Sierra Wireless Routers Expose Critical Sectors to Cyber AttacksA collection of 21 security flaws have been discovered in Sierra Wireless AirLink cellular routers and open-source software components like TinyXML and OpenNDS. Collectively tracked as Sierra:21, the issues expose over 86,000 devices across critical sectors li…THEHACKERNEWS.COM
6 DecScaling Security Operations with AutomationIn an increasingly complex and fast-paced digital landscape, organizations strive to protect themselves from various security threats. However, limited resources often hinder security teams when combatting these threats, making it difficult to keep up with the growing number of s…THEHACKERNEWS.COM
6 DecCISA Releases Joint Guide for Software Manufacturers: The Case for Memory Safe RoadmapsToday, as part of the Secure by Design campaign, CISA published The Case for Memory Safe Roadmaps: Why Both C-Suite Executives and Technical Experts Need to Take Memory Safe Coding Seriously in collaboration with the following partners: United States National Security Agency Unit…CISA.GOV
6 DecNew York Unit of Worlds Largest Bank Becomes Ransomware VictimThe ransomware attack on ICBC Financial Services caused disruption of trading of U.S. Treasuries and marked a new level of breach that could have massive repercussions.KNOWBE4.COM
6 DecThe Alarming Threat of Ransomware: Insights from the Secureworks State of the Threat Report 2023In the ever-evolving landscape of cybersecurity, the battle against ransomware has taken a concerning turn. According to the latest findings from Secureworks annual State of the Threat Report , the deployment of ransomware is now occurring within just one day of initial access in…KNOWBE4.COM
6 DecYour mobile password manager might be exposing your credentialsA number of popular mobile password managers are inadvertently spilling user credentials due to a vulnerability in the autofill functionality of Android apps. The vulnerability, dubbed “AutoSpill,” can expose users’ saved credentials from mobile password managers by circumv…TECHCRUNCH.COM
6 DecCISA says US government agency was hacked thanks to ‘end of life’ softwareU.S. cybersecurity agency CISA has warned that unknown hackers broke into the servers of a federal government agency by taking advantage of a previously known vulnerability in software that no longer receives updates — meaning the agency couldn’t have patched it even if it wanted…TECHCRUNCH.COM
6 DecBSIMM 14 finds rapid growth in automated security technologyCorporations are rapidly adopting automated security technology, which is further enabling the “shift everywhere” security philosophy, according to the latest Building Security in Maturity Model (BSIMM) report released Tuesday by Synopsys. BSIMM, now in its fourteenth year, is ma…CSOONLINE.COM
6 DecAlmost 50% of organizations plan to reduce cybersecurity headcounts: SurveyEven as the number of security incidents continues to grow in all sectors, 47% of the respondents plan to reduce their security headcounts, a new report by Observe has revealed. Remarkably, 62% of these organizations also reported a higher number of security incidents per month. …CSOONLINE.COM
6 DecWhat should be in a company-wide policy on low-code/no-code developmentIn the hands of professional coders, low-code development platforms can speed up development cycles. Meantime, business users can leverage no-code tools to empower themselves as citizen developers who can quickly create applications to automate tasks, connect existing application…CSOONLINE.COM
6 DecHoliday Extravaganza - Supply Chain, Hardware Hacking, Vulnerabilities, News – PSW #809Holiday Extravaganza - Supply Chain, Hardware Hacking, Vulnerabilities, News – PSW #809 Join us for a special extended holiday edition of Paul's Security Weekly! Hosts from all the Security Weekly shows join us from around the country to kick off the end of the year in style. We …YOUTUBE.COM
📋 SECURITY BULLETINS 1[−]
6 DecMicrosoft Will Eventually Start Charging You For Windows 10 Security UpdatesPACKETSTORMSECURITY.COM
📢 SECURITY ADVISORIES 3[−]
6 DecCISA, NSA, FBI and International Cybersecurity Authorities Publish Guide on The Case for Memory Safe RoadmapsCISA.GOV
6 DecReadout from CISA’s 2023 Fourth Quarter Cybersecurity Advisory Committee MeetingYesterday, the Cybersecurity and Infrastructure Security Agency (CISA) held its fourth and final 2023 quarterly Cybersecurity Advisory Committee (CSAC) meeting.CISA.GOV
🔥 INCIDENT REPORTING 3[−]
6 DecCyber security risks lurk in popular messaging appsSecurity incidents are being triggered by employees using messaging apps in business environmentsCSHUB.COM
6 DecUS federal agencies fail to meet cyber security incident response requirementsJust three US federal agencies have reached the required cyber security incident response standardsCSHUB.COM
6 DecNew Report: Unveiling the Threat of Malicious Browser ExtensionsCompromising the browser is a high-return target for adversaries. Browser extensions, which are small software modules that are added to the browser and can enhance browsing experiences, have become a popular browser attack vector. This is because they are widely adopted among us…THEHACKERNEWS.COM
🕵️ THREAT INTELLIGENCE 8[−]
6 DecISC Stormcast For Wednesday, December 6th, 2023 https://isc.sans.edu/podcastdetail/8766, (Wed, Dec 6th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
6 DecSecurity Analysis of a Thirteenth-Century Venetian Election ProtocolInteresting analysis : This paper discusses the protocol used for electing the Doge of Venice between 1268 and the end of the Republic in 1797. We will show that it has some useful properties that in addition to being interesting in themselves, also suggest that its fundamental d…SCHNEIER.COM
6 DecAlert: Threat Actors Can Leverage AWS STS to Infiltrate Cloud AccountsThreat actors can take advantage of Amazon Web Services Security Token Service (AWS STS) as a way to infiltrate cloud accounts and conduct follow-on attacks. The service enables threat actors to impersonate user identities and roles in cloud environments, Red Canary researchers T…THEHACKERNEWS.COM
6 DecWhose packet is it anyway: a new RFC for attribution of internet probes, (Wed, Dec 6th)While going through newly published RFCs last week, I noticed one which may turn out to be quite useful for security practitioners, even though it is just an “informational†document. It is the RFC 9511 – Attribution of …ISC.SANS.EDU
6 DecMicrosoft Security Copilot drives new product integrations at Microsoft Ignite to empower security and IT teamsMicrosoft Security Copilot offers several use cases and embedded experiences—and early access participants are already sharing their perspectives on the solution. Find out for yourself by joining the program. The post Microsoft Security Copilot drives new product integrations at …MICROSOFT.COM
6 DecDon't Be Fooled By This Sneaky Disney+ Phishing ScamA phishing campaign is impersonating Disney+ with phony invoices, according to researchers at Abnormal Security. The phishing emails targeted individuals at 22 organizations.KNOWBE4.COM
6 Dec$10 million up for grabs in fight against North Korean hackers$10 million reward is focused on hackers working on behalf of the North Korean government, who are using cryptocurrency mixers to launder the funds they are stealing from financial institutions and businesses. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
6 DecWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 5 points | 8 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
🌐 CYBER THREAT LANDSCAPE 2[−]
6 Dec21 Vulns In Sierra Wireless Routers Could Expose Critical InfrastructurePACKETSTORMSECURITY.COM
6 DecLetters with Remcos RAT hosted in Discord | Kaspersky official blogAttackers send companies Remcos RAT under the guise of emails from a new client —hiding malware in Discord attachments.KASPERSKY.COM
📡 INFOSEC NEWS 9[−]
6 DecUS senator warns governments are spying on Apple and Google users via push notificationsU.S. Senator Ron Wyden (D-OR) has warned in a letter to the Justice Department that unidentified governments are spying on Apple and Google phone users through their push notifications. The letter says his office received a tip last year that government agencies in foreign countr…TECHCRUNCH.COM
6 DecMillions of patient scans and health records spilling online thanks to decades-old protocol bugThousands of exposed servers are spilling the medical records and personal health information of millions of patients due to security weaknesses in a decades-old industry standard designed for storing and sharing medical images, researchers have warned. This standard, known as Di…TECHCRUNCH.COM
6 DecForward Momentum: Key Learnings From Trend Micro’s Security Predictions for 2024In this blog entry, we discuss predictions from Trend Micro’s team of security experts about the drivers of change that will figure prominently in 2024.TRENDMICRO.COM
6 DecModern Attack Surface Management for CISOsToday’s attack surface requires modern processes and security solutions. Explore the tenants of modern attack surface management (ASM) and what CISOs need to look for in an ASM solution.TRENDMICRO.COM
6 DecNavigating privacy: Should we put the brakes on car tracking?Your car probably knows a lot more about you than it lets on – but is the trade-off of privacy for convenience truly justifiable?WELIVESECURITY.COM