🚨 CISA KEV 1[−]
7 Dec KEVCISA Adds Two Known Exploited Vulnerabilities to CatalogCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-41265 Qlik Sense HTTP Tunneling Vulnerability CVE-2023-41266 Qlik Sense Path Traversal Vulnerability These types of vulnerabilities are frequ…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 16[−]
7 DecNew Bluetooth Flaw Let Hackers Take Over Android, Linux, macOS, and iOS DevicesA critical Bluetooth security flaw could be exploited by threat actors to take control of Android, Linux, macOS and iOS devices. Tracked as CVE-2023-45866, the issue relates to a case of authentication bypass that enables attackers to connect to susceptible devices and injec…THEHACKERNEWS.COM
7 DecChromium: CVE-2023-6508 Use after free in Media StreamThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 DecChromium: CVE-2023-6509 Use after free in Side Panel SearchThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 DecChromium: CVE-2023-6510 Use after free in Media CaptureThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 DecChromium: CVE-2023-6511 Inappropriate implementation in AutofillThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 DecChromium: CVE-2023-6512 Inappropriate implementation in Web Browser UIThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2023) for more information.MSRC.MICROSOFT.COM
7 DecCVE-2023-35618 Microsoft Edge (Chromium-based) Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
7 DecCVE-2023-38174 Microsoft Edge (Chromium-based) Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
7 DecCVE-2023-36880 Microsoft Edge (Chromium-based) Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
7 DecCVE-2021-43890 Windows AppX Installer Spoofing VulnerabilityUpdated FAQ information. This is an informational change only.MSRC.MICROSOFT.COM
7 DecAtlassian Patches RCE Flaw that Affected Multiple ProductsAtlassian has been discovered with four new vulnerabilities associated with Remote Code Execution in multiple products. The CVEs for these vulnerabilities have been assigned as CVE-2023-22522, CVE-2023-22523, CVE-2023-22524, and CVE-2022-1471. Atlassian has patched these vulnerab…GBHACKERS.COM
7 DecThreat Thursday - CTI, vulnerabilities & discussionssubmitted by shellsharks to cybersecurity 5 points | 1 comments Introducing Threat Thursday ! Weekly thread for highlighting and discussing the past week’s notable threats, vulnerabilities, breaches and more! Feel free to comment on what I’ve collected or share things you have fo…INFOSEC.PUB
7 DecCueing up a calculator: an introduction to exploit development on Linuxsubmitted by L4s to secops 2 points | 0 comments https://github.blog/2023-12-06-cueing-up-a-calculator-an-introduction-to-exploit-development-on-linux/ Cueing up a calculator: an introduction to exploit development on Linux::Using CVE-2023-43641 as an example, I’ll explain how to…GITHUB.BLOG
7 Dec KEVFederal agency breached through Adobe ColdFusion vulnerabilitysubmitted by c0mmando to netsec 11 points | 0 comments https://therecord.media/adobe-coldfusion-vulnerability-two-federal-agencies Public-facing servers at a U.S. federal agency were compromised by hackers in June and July through a vulnerability in a popular product from Adobe, …THERECORD.MEDIA
7 Dec KEVResearchers discover dozens of new bugs affecting Sierra Wireless routerssubmitted by c0mmando to netsec 4 points | 0 comments https://therecord.media/researchers-discover-sierra-wireless-flaws Researchers have discovered more than 20 security flaws affecting routers manufactured by the Canadian communications equipment vendor Sierra Wireless. The com…THERECORD.MEDIA
7 DecRemote code execution vulnerabilities found in Buildroot, Foxit PDF Readersubmitted by c0mmando to netsec 14 points | 0 comments https://blog.talosintelligence.com/vulnerability-roundup-dec-6-2023/ Multiple vulnerabilities in Foxit PDF Reader Discovered by Kamlapati Choubey. Foxit PDF Reader contains multiple vulnerabilities that could lead to remote c…TALOSINTELLIGENCE.COM
⚠️ VULNERABILITY DISCLOSURE 10[−]
7 DecRussian military hackers target NATO fast reaction corpsRussian APT28 military hackers used Microsoft Outlook zero-day exploits to target multiple European NATO member countries, including a NATO Rapid Deployable Corps. [...]BLEEPINGCOMPUTER.COM
7 DecWordPress fixes POP chain exposing websites to RCE attacksWordPress has released version 6.4.2 that addresses a remote code execution (RCE) vulnerability that could be chained with another flaw to allow attackers run arbitrary PHP code on the target website. [...]BLEEPINGCOMPUTER.COM
7 DecHacking the Human Mind: Exploiting Vulnerabilities in the 'First Line of Cyber Defense'Humans are complex beings with consciousness, emotions, and the capacity to act based on thoughts. In the ever-evolving realm of cybersecurity, humans consistently remain primary targets for attackers. Over the years, these attackers have developed their expertise in exploiting v…THEHACKERNEWS.COM
7 DecCISA and International Partners Release Advisory on Russia-based Threat Actor Group, Star BlizzardToday, the Cybersecurity and Infrastructure Security Agency (CISA)—in coordination with the United Kingdom’s National Cyber Security Centre (UK-NCSC), Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), Canadian Centre for Cyber Security (CCCS), New Ze…CISA.GOV
7 DecCISA Releases Five Industrial Control Systems AdvisoriesCISA released five Industrial Control Systems (ICS) advisories on December 7, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-23-341-01 Mitsubishi Electric FA Engineering Software Products ICSA-2…CISA.GOV
7 DecBluetooth keystroke-injection Flaw: A Threat to Apple, Linux & Android DevicesAn unauthenticated Bluetooth keystroke-injection vulnerability that affects Android, macOS, and iOS devices has been discovered. This vulnerability can be exploited by tricking the Bluetooth host state machine into pairing with a fake keyboard without authentication. This vulnera…GBHACKERS.COM
7 DecSLAM Attack Gets Root Password Hash in 30 SecondsSpectre is a class of speculative execution vulnerabilities in microprocessors that can allow threat actors unauthorized access to sensitive data. Hackers exploit Spectre because it enables them to extract confidential information by manipulating the speculative execution capabil…GBHACKERS.COM
7 DecAkira Ransomware Exploiting Zero-day Flaws For Organization Network AccessThe Akira ransomware group, which first appeared in March 2023, has been identified as a serious threat to data security. It encrypts data and demands a ransom for decryption, affecting both Windows and Linux devices. The group has about 140 organizations as its target. The encry…GBHACKERS.COM
7 DecLessons from 10 years running the first cyber-exclusive investment firm – Bob Ackerman – ESW #342Lessons from 10 years running the first cyber-exclusive investment firm with Bob Ackerman, Founder & Managing Director at AllegisCyber Capital – ESW #342 Bob Ackerman argues that, from an investment perspective, cybersecurity is like life sciences - a complex, nuanced field that …YOUTUBE.COM
7 DecNorth Korean hackers stole anti-aircraft system data from South Korean firmsubmitted by c0mmando to netsec 8 points | 0 comments https://therecord.media/north-korea-hackers-stole-anti-aircraft-system-data The Seoul Metropolitan Police on Tuesday accused a North Korean hacking group of targeting South Korean companies connected to the defense industry an…THERECORD.MEDIA
📋 SECURITY BULLETINS 1[−]
7 DecMeta Launches Default End-to-End Encryption for Chats and Calls on MessengerMeta has officially begun to roll out support for end-to-end encryption (E2EE) in Messenger for personal calls and one-to-one personal messages by default in what it called the "most significant milestone yet." "This isn't a routine security update: we rebuilt the app f…THEHACKERNEWS.COM
📢 SECURITY ADVISORIES 2[−]
7 DecCISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing OperationThe US cybersecurity agency calls attention to a Russian APT targeting academia, defense, governmental organizations, NGOs and think-tanks. The post CISA Issues Warning for Russian ‘Star Blizzard’ APT Spear-Phishing Operation appeared first on SecurityWeek .SECURITYWEEK.COM
7 DecThe UK-US Blog Series on Privacy-Preserving Federated Learning: IntroductionThis post is the first in a series on privacy-preserving federated learning. The series is a collaboration between CDEI and NIST. Advances in machine learning and AI, fueled by large-scale data availability and high-performance computing, have had a significant impact across the …NIST.GOV
🔥 INCIDENT REPORTING 8[−]
7 DecSophos Endpoint: Industry-leading protection against remote ransomware attacksMost leading endpoint solutions struggle to stop malicious remote encryption, but not Sophos.SOPHOS.COM
7 Dec23andMe updates user agreement to prevent data breach lawsuitsAs Genetic testing provider 23andMe faces multiple lawsuits for an October credential stuffing attack that led to the theft of customer data, the company has modified its Terms of Use to make it harder to sue the company. [...]BLEEPINGCOMPUTER.COM
7 DecApple says it is not aware anyone using Lockdown Mode got hackedLast year, Apple launched a special new protection for at-risk users — such as journalists and activists — called Lockdown Mode, designed to limit some regular iPhone, iPad, Mac and Watch features with the goal of minimizing the possibility of a successful cyberattack. A year lat…TECHCRUNCH.COM
7 DecBlackSuit ransomware – what you need to knowA cybercriminal group calling itself BlackSuit has claimed responsibility for a series of ransomware attacks, including breaches at schools in central Georgia. And earlier in the year, a zoo in Tampa Bay was targeted by the same hacking gang. Learn more about the BlackSuit ransom…TRIPWIRE.COM
7 DecSee me talking about “Future-proofing enterprise cybersecurity for AI, vulnerabilities, and business risks”Using real-life examples of organisations who have been hacked, I'll be discussing with experts from Skybox Security the importance of adopting a resilient strategy for dealing with vulnerabilities inside your organisation.GRAHAMCLULEY.COM
7 DecIntegrated DFIR Tool Can Simplify and Accelerate Cyber ForensicsExplore real use cases demonstrating the transformative impact of Trend Vision One™ – Forensics, an integrated Digital Forensics and Incident Response (DFIR) toolTRENDMICRO.COM
7 DecJoyGames - 4,461,787 breached accountsIn December 2019, the forum for the JoyGames website suffered a data breach that exposed 4.5M unique email addresses. The impacted data also included usernames, IP addresses and salted MD5 password hashes.HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 17[−]
7 DecSpying through Push NotificationsWhen you get a push notification on your Apple or Google phone, those notifications go through Apple and Google servers. Which means that those companies can spy on them—either for their own reasons or in response to government demands. Sen. Wyden is trying to get to the bo…SCHNEIER.COM
7 DecMicrosoft Warns of COLDRIVER's Evolving Evasion and Credential-Stealing TacticsThe threat actor known as COLDRIVER has continued to engage in credential theft activities against entities that are of strategic interests to Russia while simultaneously improving its detection evasion capabilities. The Microsoft Threat Intelligence team is tracking under the cl…THEHACKERNEWS.COM
7 DecBuilding a Robust Threat Intelligence with WazuhThreat intelligence refers to gathering, processing, and analyzing cyber threats, along with proactive defensive measures aimed at strengthening security. It enables organizations to gain a comprehensive insight into historical, present, and anticipated threats, providing context…THEHACKERNEWS.COM
7 DecNew Stealthy 'Krasue' Linux Trojan Targeting Telecom Firms in ThailandA previously unknown Linux remote access trojan called Krasue has been observed targeting telecom companies in Thailand by threat actors to main covert access to victim networks at lease since 2021. Named after a nocturnal female spirit of Southeast Asian folklore, the …THEHACKERNEWS.COM
7 DecISC Stormcast For Thursday, December 7th, 2023 https://isc.sans.edu/podcastdetail/8768, (Thu, Dec 7th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
7 DecRevealing the Hidden Risks of QR Codes [Guest Diary], (Wed, Dec 6th)[This is a Guest Diary by Jeremy Wensuc, an ISC intern as part of the SANS.edu BACS program]
ISC.SANS.EDU
7 DecNew Microsoft Purview features use AI to help secure and govern all your dataLearn about the new Microsoft Purview features and capabilities announced at Microsoft Ignite 2023. The post New Microsoft Purview features use AI to help secure and govern all your data appeared first on Microsoft Security Blog .MICROSOFT.COM
7 DecStar Blizzard increases sophistication and evasion in ongoing attacksMicrosoft Threat Intelligence continues to track and disrupt malicious activity attributed to a Russian state-sponsored actor we track as Star Blizzard, who has improved their detection evasion capabilities since 2022 while remaining focused on email credential theft against targ…MICROSOFT.COM
7 DecPhishing-Resistant MFA Will Not Stop Phishing AttacksYou would be hard-pressed to find an author and organization (KnowBe4) that has pushed the use of phishing-resistant multi-factor authentication (MFA) harder. KNOWBE4.COM
7 DecReflectiz Introduces AI-powered Insights on Top of Its Smart Alerting SystemReflectiz, a cybersecurity company specializing in continuous web threat management, proudly introduces a new AI-powered capability enhancing its Smart Alerting system. The new AI-powered insights enhances the Reflectiz Smart Alerting system by integrating AI LLM technology on to…GBHACKERS.COM
7 DecHackers Deliver AsyncRAT Through Weaponized WSF Script FilesThe AsyncRAT malware, which was previously distributed through files with the .chm extension, is now being disseminated via WSF script format. The WSF file was found to be disseminated in a compressed file (.zip) format through URLs included in emails. AsyncRAT spreads …GBHACKERS.COM
7 DecUS indicts alleged Russian hackers for years-long cyber espionage campaign against Western countriesU.S. authorities have indicted two hackers linked to Russia’s Federal Security Service (FSB) for allegedly carrying out a years-long cyber espionage campaign targeting government officials. The Department of Justice alleged on Thursday that Ruslan Aleksandrovich Peretyatko, an of…TECHCRUNCH.COM
7 DecNews alert: Reflectiz adds AI-powered capabilities to its Smart Alerting web threat management systemTel Aviv, Israel, Dec. 7, 2023 — Reflectiz, a cybersecurity company specializing in continuous web threat management, proudly introduces a new AI-powered capability enhancing its Smart Alerting system. The new AI-powered insights enhances the Reflectiz Smart Alerting system…LASTWATCHDOG.COM
7 DecMaster Cloud Computing Risks with a Proactive, End-to-End ApproachMaster cloud computing risks with a proactive, end-to-end approach from Accenture and Palo Alto Networks Prisma Cloud for comprehensive cloud security. The post Master Cloud Computing Risks with a Proactive, End-to-End Approach appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
7 DecPwnagotchi display not workingsubmitted by adzsx to cybersecurity 2 points | 0 comments I brought this display . I’ve read a few reviews, most are positive, but some say it doesnt work with the pwnagotchi. Can anyone tell me how to enable this display?INFOSEC.PUB
7 DecOhio Information Security Forum Conference 2023 - 7 talkssubmitted by ashar to security_cpe 3 points | 0 comments https://infosec.pub/pictrs/image/9b63b22b-bdfc-4049-bdf3-50ea82a96eb0.png OISF Conference 2023 playlist Website.INFOSEC.PUB
7 DecWeb API testing techniques & labssubmitted by L4s to secops 2 points | 0 comments https://portswigger.net/web-security/api-testing Web API testing techniques & labs::APIs (Application Programming Interfaces) enable software systems and applications to communicate and share data. API testing is important as …PORTSWIGGER.NET
🌐 CYBER THREAT LANDSCAPE 4[−]
7 DecSoftware supply chain security a “greater concern” than generative AIAlert fatigue leaves security professionals struggling to know which vulnerabilities to fix firstCSHUB.COM
7 DecOpal Security, which helps companies manage access and identities, raises $22MVC investment trends in the cybersecurity market suggest a sector in decline — at least within the context of recent months. According to Crunchbase, cybersecurity deal count fell during Q3 to 153 deals from 181 in Q2. In a more detailed report, Crunchbase suggests that, wi…TECHCRUNCH.COM
7 Dec2023 Review: Reflecting on Cybersecurity TrendsEvery year, experts weigh in with predictions of what the big cybersecurity trends will be—but how often are they right? That’s the question Trend Micro’s Greg Young and Bill Malik asked recently on their Real Cybersecurity podcast, looking at what forecasters got wrong on a wide…TRENDMICRO.COM
7 Dec2023 Review: Reflecting on Cybersecurity TrendsEvery year, experts weigh in with predictions of what the big cybersecurity trends will be—but how often are they right? That’s the question Trend Micro’s Greg Young and Bill Malik asked recently on their Real Cybersecurity podcast, looking at what forecasters got wrong on a wide…TRENDMICRO.COM
🎙️ PODCASTS 1[−]
7 DecSmashing Security podcast #351: Nuclear cybersecurity, Marketplace scams, and face up to pornHacking fears are raised at Western Europe's most hazardous building, why porn sites might soon be scanning your face, and our guest narrowly avoids a Facebook Marketplace scammer. All this and much more is discussed in the latest edition of the award-winning "Smashing Security" …GRAHAMCLULEY.COM
📡 INFOSEC NEWS 11[−]
7 DecWindows 11 Notepad gets a built-in character counter, finallyMicrosoft keeps improving and adding more features to the Windows 11 Notepad application, the latest being a built-in character counter. [...]BLEEPINGCOMPUTER.COM
7 DecBEC attacks on law firms spike as cyber criminals bypass MFALaw firms increasingly targeted by cyber criminal groups that specialize in business email compromiseCSHUB.COM
7 DecCyber criminals attack businesses in Adobe-themed phishing surgeResearchers warn of a sharp increase in phishing emails carrying Adobe InDesign linksCSHUB.COM
7 DecGovernments May Spy on You by Requesting Push Notifications from Apple and GoogleUnspecified governments have demanded mobile push notification records from Apple and Google users to pursue people of interest, according to U.S. Senator Ron Wyden. "Push notifications are alerts sent by phone apps to users' smartphones," Wyden said. "These alerts pass thro…THEHACKERNEWS.COM
7 DecWhatsApp adds support for disappearing voice messagesWhile today’s bigger news from the world of Meta’s messaging apps was the rollout of end-to-end encryption in Messenger, the company is also bringing another useful feature to its WhatsApp users: disappearing voice messages. The new feature will allow users to send a …TECHCRUNCH.COM
7 DecMeta finally starts rolling out default end-to-end encryption for MessengerAfter years of promises and limited tests, Meta has started rolling out default end-to-end encryption protection for Messenger. In an announcement, Mark Zuckerberg said that personal chats and calls will get default end-to-end encryption. However, encryption for group chats still…TECHCRUNCH.COM
7 DecFinally! Facebook and Messenger are getting default end-to-end encryption. And not everyone is happy…Meta's Head of Messenger announced that the company has begun to roll out end-to-end encryption (E2EE) for personal chats and calls. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
7 DecJust About Every Windows And Linux Device Vulnerable To New LogoFAIL Firmware AttackPACKETSTORMSECURITY.COM
7 DecTo tap or not to tap: Are NFC payments safer?Contactless payments are quickly becoming ubiquitous – but are they more secure than traditional payment methods?WELIVESECURITY.COM