🚨 CISA KEV 3[−]
11 DecCISA Adds Qlik Bugs to Exploited Vulnerabilities CatalogBoth bugs were found this summer in Qlik Sense — a data analytics tool used widely among government organizations and large businesses. The vulnerabilities provide hackers with an entry point into systems and allow them to elevate their privileges.THERECORD.MEDIA
11 Dec KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-6448 Unitronics Vision PLC and HMI Insecure Default Password These types of vulnerabilities are frequent attack vectors for malicious cyber act…CISA.GOV
11 Dec KEV#StopRansomware: Play RansomwareSUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically …CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
11 DecApache Fixed Critical RCE Flaw CVE-2023-50164 in Struts 2The Apache Software Foundation has released security updates to address a critical file upload vulnerability in the Struts 2 framework, which could allow for remote code execution.SECURITYAFFAIRS.COM
11 DecLazarus hackers drop new RAT malware using 2-year-old Log4j bugThe notorious North Korean hacking group known as Lazarus continues to exploit CVE-2021-44228, aka "Log4Shell," this time to deploy three previously unseen malware families written in DLang. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 29[−]
11 DecNew PoolParty Process Injection Techniques Outsmart Top EDR SolutionsA new collection of eight process injection techniques, collectively dubbed PoolParty, could be exploited to achieve code execution in Windows systems while evading endpoint detection and response (EDR) systems. SafeBreach researcher Alon Leviev said the methods ar…THEHACKERNEWS.COM
11 DecResearchers Uncovered an Active Directory DNS spoofing exploitIn the intricate web of our interconnected world, the Domain Name System (DNS) stands as a linchpin, directing users to their online destinations. Yet, even this vital system is not impervious to the dark art of malicious manipulation. In a recent revelation by Akamai secur…GBHACKERS.COM
11 DecMobile Password Managers Might Be Exposing Credentials Due to New ‘Autospill’ VulnerabilityThe vulnerability occurs when password managers get disoriented and mistakenly autofill credentials into the native fields of the underlying app instead of the intended login page.TECHCRUNCH.COM
11 DecAccenture takes an industrialized approach to safeguarding its cloud controlsWhen Accenture's cloud journey began in 2015, the company knew some significant changes were coming — and for the better. In the first year, the company expanded its cloud footprint from 9% to 90% for all its business applications after it realized cloud could reduce the time and…CSOONLINE.COM
11 DecALPHV Ransomware Site Outage Rumored to be Caused by Law EnforcementLaw enforcement is suspected to be behind the recent outage of ALPHV ransomware gang's websites. The negotiation and data leak sites, as well as the Tor negotiation URLs, have been down for over 30 hours.BLEEPINGCOMPUTER.COM
11 DecOver 50% of the Insider Attacks Uses Privilege Escalation VulnerabilityIn the labyrinth of cybersecurity, the specter of insider threats emerges as a formidable adversary, wielding both malicious intent and unintentional foibles. This expose delves into the intricacies of how insiders exploit vulnerabilities, introducing an air of risk through…GBHACKERS.COM
11 DecLog4j Vulnerability Still Haunts the Security CommunityAccording to a report from Veracode, two years after the disclosure of a critical vulnerability in Apache Log4j, nearly 2 in 5 applications are still using vulnerable versions, highlighting the persistence of security risks in software development.CYBERSECURITYDIVE.COM
11 DecLaw Enforcement Reportedly Behind Takedown of BlackCat/Alphv Ransomware WebsiteThe leak website of the notorious BlackCat/Alphv ransomware group has been offline for days and law enforcement is reportedly behind the takedown. The post Law Enforcement Reportedly Behind Takedown of BlackCat/Alphv Ransomware Website appeared first on SecurityWeek .SECURITYWEEK.COM
11 Dec KEVWater system attacks spark calls for cybersecurity regulationThe US critical infrastructure industry and federal authorities have been coping with a series of threat actor attacks on organizations, particularly water utilities, by a shadowy Iranian threat actor exploiting security holes in internet-connected equipment deployed in industria…CSOONLINE.COM
11 DecResearcher Discovered a New Lock Screen Bypass Bug for Android 14 and 13The vulnerability allows threat actors physical access to a device, exposing sensitive data in users' Google accounts. Google has been aware of this issue for at least six months but has not yet addressed it, according to researcher Jose Rodriguez.SECURITYAFFAIRS.COM
11 DecApache Patches Critical RCE Vulnerability in Struts 2Apache has addressed a critical-severity Struts 2 file upload vulnerability that could lead to remote code execution. The post Apache Patches Critical RCE Vulnerability in Struts 2 appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecLazarus Group Using Log4j Exploits to Deploy Remote Access TrojansThe Lazarus Group, a North Korea-linked threat actor, has been conducting a global campaign called Operation Blacksmith. They are exploiting security flaws in Log4j to deploy remote access trojans (RATs) on compromised hosts.THEHACKERNEWS.COM
11 DecHow to hack Android, macOS, iOS, and Linux through a Bluetooth vulnerability | Kaspersky official blogA has researcher explained how Android, macOS, iOS, iPadOS, and Linux devices can be remotely hacked by exploiting a vulnerability in the Bluetooth protocol.KASPERSKY.COM
11 DecCISA and ENISA Signed a Working Arrangement to Enhance CooperationThe collaboration aims to strengthen cybersecurity, safeguard critical infrastructure, and reinforce the resilience of digital products in the face of increasing cyber threats.SECURITYAFFAIRS.COM
11 DecLazarus Group Using Log4j Exploits to Deploy Remote Access TrojansThe notorious North Korea-linked threat actor known as the Lazarus Group has been attributed to a new global campaign that involves the opportunistic exploitation of security flaws in Log4j to deploy previously undocumented remote access trojans (RATs) on compromised ho…THEHACKERNEWS.COM
11 DecReport: Privilege Elevation Exploits Used in Over 50% Of Insider AttacksInsider threats, including both malicious attacks and unintentional risks, are on the rise, with privilege escalation exploits being a significant component of unauthorized activity.BLEEPINGCOMPUTER.COM
11 DecGoogle Patches Chromecast Vulnerabilities Exploited at Hacking ContestGoogle has patched several high and moderate-severity Chromecast vulnerabilities demonstrated earlier this year at a hacking competition. The post Google Patches Chromecast Vulnerabilities Exploited at Hacking Contest appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecRansomware Group Offline: Have Police Seized Alphv/BlackCat?Prolific Ransomware Operation Tied to Big Hits Claims 'Everything Will Work Soon' Cybercrime underground chatter suggests ransomware group BlackCat - aka Alphv - is being disrupted by law enforcement. Experts warn that disruptions too often remain short-lived, as operators reboot…DATABREACHTODAY.CO.UK
11 DecThe The Impact of the New SEC Regulations on Cybersecurity with Nick Essner – BSW #331In Segment 1, we discuss The Impact of the New SEC Regulations on Cybersecurity. Materiality, Disclosure, and Evidence... New terms for cybersecurity professionals to understand under the new SEC Regulations for Cybersecurity. And the Solarwinds indictment is just the beginning. …YOUTUBE.COM
11 Dec KEVApple emergency updates fix recent zero-days on older iPhonesApple has issued emergency security updates to backport patches for two actively exploited zero-day flaws to older iPhones and some Apple Watch and Apple TV models. [...]BLEEPINGCOMPUTER.COM
11 DecOpen-Source Oversight: Security Gaps in IoT and OT DevicesDashevskyi and La Spina of Forescout Technologies on IoT and OT Security Practices Previous studies on IoT and OT devices have primarily focused on internal components, neglecting open-source components that are crucial for internet and network connectivity, according to Stanisla…DATABREACHTODAY.CO.UK
11 DecApple Patches Everything, (Mon, Dec 11th)Apple today released updates for iOS, macOS, tvOS and watchOS. This updates 43 vulnerabilities. Two of the vulnerabilities are already being exploited. Last week, these two vulnerabilities received patches for current versions of iOS and macOS. This new update covers older iOS an…ISC.SANS.EDU
11 Dec‘5Ghoul’ Vulnerabilities Haunt Qualcomm, MediaTek 5G ModemsResearchers call attention to 14 security defects taht can be exploited to drop and freeze 5G connections on smartphones and routers. The post ‘5Ghoul’ Vulnerabilities Haunt Qualcomm, MediaTek 5G Modems appeared first on SecurityWeek .SECURITYWEEK.COM
11 Dec23andMe changes to terms of service are ‘cynical’ and ‘self-serving,’ lawyers sayTwo days before 23andMe disclosed that hackers had accessed the personal and genetic data of almost seven million customers, the genetic testing giant updated its terms of service. The changes are an effort to make it more difficult for the victims of the breach to band together …TECHCRUNCH.COM
11 DecA Vulnerability in Apache Struts 2 Could Allow for Remote Code ExecutionA vulnerability has been discovered in Apache Struts 2, which could allow for remote code execution. Apache Struts 2 is an open-source web application framework for developing Java EE web applications. Successful exploitation could allow for remote code execution in the context o…CISECURITY.ORG
11 Dec50K WordPress sites exposed to RCE attacks by critical bug in backup pluginA critical severity vulnerability in a WordPress plugin with more than 90,000 installs can let attackers gain remote code execution to fully compromise vulnerable websites. [...]BLEEPINGCOMPUTER.COM
11 DecEurope Prepares for AI Act EnforcementBan on Prohibited AI Applications to Be Implemented First The European Union will enforce its imminent regulation on artificial intelligence in phases, and bans on the use of prohibited AI are expected to kick in within six months of the regulation's adoption, a European Commissi…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 6[−]
11 DecHow the White House sees the future of safeguarding AIOn October 30, 2023, President Biden issued an executive order (EO) to set new standards for the safety and security of Artificial Intelligence (AI). The move sets out the government’s intentions to regulate and further advance the growth of AI technology in the years ahead…SECURITYINTELLIGENCE.COM
11 DecThe Impact of the New SEC Regulations on Cybersecurity | Leadership & Communications - BSW #331This week, we are kick things with a discussion on The Impact of the New SEC Regulations on Cybersecurity. Then we discuss our Leadership and Communications articles for this week. Visit https://www.securityweekly.com/bsw for all the latest episodes! Show Notes: https://securityw…YOUTUBE.COM
🔥 INCIDENT REPORTING 18[−]
11 DecGUEST ESSAY: Adopting an ‘assume-breach mindset’ to defend company networks in 2024Professionals are constantly seeking ways to fortify their defenses against malicious threats. One approach gaining traction is the “assume-breach mindset.” This proactive approach is designed to better prepare organizations for inevitable security breaches. Related: The case for…LASTWATCHDOG.COM
11 DecAkira Ransomware Strikes Again: Compass Group Italia and Aqualectra Utility Hit by Data BreachThe Akira ransomware group has targeted two more victims, one in Italy and another in Curaçao, compromising sensitive data and posing a threat to the integrity and security of the affected companies.THECYBEREXPRESS.COM
11 DecNorth Korea's Kimsuky Targeting South Korean Research Institutes with Backdoor AttacksThe North Korean threat group uses a backdoor to steal information and execute commands on compromised systems. Kimsuky has expanded its attacks to include Europe, Russia, and the US.THEHACKERNEWS.COM
11 DecAnalyzing AsyncRAT's Code Injection into aspnet_compiler.exe Across Multiple Incident Response CasesThis blog entry delves into MxDR's unraveling of the AsyncRAT infection chain across multiple cases, shedding light on the misuse of aspnet_compiler.exe, a legitimate Microsoft process originally designed for precompiling ASP.NET web applications.TRENDMICRO.COM
11 DecData Breaches Fallout Reach New Heights as the Number of Exposed Records SoarsAccording to an Apple-commissioned study conducted by a professor at MIT, ransomware attacks have seen a steep rise, with a nearly 70% increase in such attacks in the first nine months of 2023, primarily targeting organizations with sensitive data.CYBERSECURITYDIVE.COM
11 DecCyber Security Today, Dec. 11, 2023 - Irish water treatment plant shut by cyber attack, WordPress issues a security patch, and moreThis episode reports on a US hospital chain notifying 2.5 million patients and employees about data stolen in a ransomware attack, and moreCYBERSECURITYTODAY.LIBSYN.COM
11 DecWebinar — Psychology of Social Engineering: Decoding the Mind of a Cyber AttackerIn the ever-evolving cybersecurity landscape, one method stands out for its chilling effectiveness – social engineering. But why does it work so well? The answer lies in the intricate dance between the attacker's mind and human psychology. Our upcoming webinar, "Think Like a…THEHACKERNEWS.COM
11 DecFBI Explains How Companies can Delay SEC Cyber Incident DisclosuresCompanies are advised to establish a relationship with their local FBI field office and contact them soon after a cyber incident is discovered to assist with the FBI's review and determine if a disclosure delay is necessary.THERECORD.MEDIA
11 DecTop White House Cyber Aide Says Recent Iran Hack on Water System Is Call to Tighten CybersecurityA top White House national security official said recent cyber attacks by Iranian hackers on US water authorities should be seen as a call to action by utilities and industry to tighten cybersecurity. The post Top White House Cyber Aide Says Recent Iran Hack on Water System Is Ca…SECURITYWEEK.COM
11 DecWSJ: "A Hidden Risk in the Municipal Bond Market: Hackers"December 7, 2023 - The Wall Street Journal has an interesting perspective on K-12 Public schools suffering ransomware attacks. The number doubles between 2021 and 2022 to almost 2,000 a year. Here are a few paragraphs with a link to the full article:KNOWBE4.COM
11 DecUS healthcare giant Norton says hackers stole millions of patients’ data during ransomware attackKentucky-based non-profit healthcare system Norton Healthcare has confirmed that hackers accessed the personal data of millions of patients and employees during an earlier ransomware attack. Norton operates more than 40 clinics and hospitals in and around Louisville, Kentucky, an…TECHCRUNCH.COM
11 DecKelvin Security hacking group leader arrested in SpainThe Spanish police have arrested one of the alleged leaders of the 'Kelvin Security' hacking group, which is believed to be responsible for 300 cyberattacks against organizations in 90 countries since 2020. [...]BLEEPINGCOMPUTER.COM
11 DecNorton Healthcare Ransomware Hack: 2.5 Million Personal Records StolenCompromised data includes names, dates of birth, Social Security numbers, health and insurance information, and driver’s license numbers. The post Norton Healthcare Ransomware Hack: 2.5 Million Personal Records Stolen appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecAustralia: University of Wollongong Confirms Data Breach, Notifies AuthoritiesThe University of Wollongong has experienced a data breach, with potentially both staff and students affected. The breach has been detected and contained, and investigations are underway to determine the scope of the breach.THECYBEREXPRESS.COM
11 DecCold storage giant Americold discloses data breach after April malware attackCold storage and logistics giant Americold has confirmed that over 129,000 employees and their dependents had their personal information stolen in an April attack, later claimed by Cactus ransomware. [...]BLEEPINGCOMPUTER.COM
11 DecToyota warns customers of data breach exposing personal, financial infoToyota Financial Services (TFS) is warning customers it suffered a data breach, stating that sensitive personal and financial data was exposed in the attack. [...]BLEEPINGCOMPUTER.COM
11 DecKentucky Hospital Chain Notifying 2.5 Million of Data TheftAlphv/BlackCat Claimed Responsibility for May Attack A Kentucky-based hospital chain is notifying millions of individuals that their information was potentially exfiltrated in a May attack. Russian-speaking ransomware-as-a-service group Alphv/BlackCat - which is currently reporte…DATABREACHTODAY.CO.UK
11 DecNew Microsoft Incident Response team guide shares best practices for security teams and leadersThe Microsoft Incident Response team shares a downloadable, interactive, people-centric, guide to effective incident response. The post New Microsoft Incident Response team guide shares best practices for security teams and leaders appeared first on Microsoft Security Blog .MICROSOFT.COM
🕵️ THREAT INTELLIGENCE 25[−]
11 DecISC Stormcast For Monday, December 11th, 2023 https://isc.sans.edu/podcastdetail/8772, (Mon, Dec 11th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
11 DecHow Smart Cars Are Spying You? Most important Privacy Concerns 2024Privacy concerns related to smart cars primarily revolve around the extensive data collection, sharing, and potential misuse of personal information. Automobiles that are outfitted with artificial intelligence that is driven by systems are known as smart cars. They comprise numer…GBHACKERS.COM
11 DecCrypto Exchange Founder Pleads Guilty for Dark Web TransferBitzlato Ltd., a cryptocurrency exchange, was founded and is primarily owned by an individual who facilitated transactions between buyers and sellers in dark markets. The exchange acted as a conduit for such transactions to take place, making it an important player in the undergr…GBHACKERS.COM
11 Dec2024 IT Spending Surge: Surprising Insights from Piper Sandler's CIO SurveyIndustry analysts Piper Sandler do a yearly CIO 'Industry Note' where they survey CIOs about their next year budget expectations. Dor 2024 there is a noticeable improvement regarding enterprise IT spending. The header of their survey was: "2024 CIO Survey | Investments in Securit…KNOWBE4.COM
11 DecFacebook Enables Messenger End-to-End Encryption by DefaultIt’s happened . Details here , and tech details here (for messages in transit) and here (for messages in storage) Rollout to everyone will take months, but it’s a good day for both privacy and security. Slashdot thread .SCHNEIER.COM
11 DecHackers Spy iPhone Users Using Malicious Keyboard AppsA new method of keylogging using malicious keyboard apps has been discovered to affect iPhones, evading all Apple’s security detection procedures. Additionally, threat actors could also use this method to steal passwords, authentication codes, notes, private messages, etc.,…GBHACKERS.COM
11 DecMrAnon Stealer Attacking Windows Users Via Weaponized PDF FilesPhishing emails targeting Windows users were discovered, tricking users into opening a malicious PDF file called “MrAnon Stealer” that spreads malware by using fake booking details. To obtain the final malware, the PowerShell script is executed by the PDF after it has…GBHACKERS.COM
11 DecOutside the Comfort Zone: Why a Change in Mindset is Crucial for Better Network SecurityStepping outside the confines of our comfort zone and embracing a mindset that prioritizes adaptability, shared responsibility, risk-awareness, and preparednessis indispensable in fortifying defenses in the modern distributed network. The post Outside the Comfort Zone: Why a Chan…SECURITYWEEK.COM
11 DecFlaws in Delta OT Monitoring Product Can Allow Hackers to Hide Destructive ActivitiesCritical vulnerabilities in a Delta OT monitoring product can allow hackers to hide their destructive activities from the victim. The post Flaws in Delta OT Monitoring Product Can Allow Hackers to Hide Destructive Activities appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecQ* | Unitronics | SLAM | Bluetooth | Cold Fusion | Google Drive | Aaran Leyland & More! – SWN347This week, Doug Talks: Q*, Unitronics, SLAM, Bluetooth, Cold Fusion, Google Drive, Aaran Leyland, and More on the security weekly news. →Full Show Notes: https://securityweekly.com/swn347 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: htt…YOUTUBE.COM
11 DecMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 2 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
11 DecResearchers Unmask Sandman APT's Hidden Link to China-Based KEYPLUG BackdoorTactical and targeting overlaps have been discovered between the enigmatic advanced persistent threat (APT) called Sandman and a China-based threat cluster that's known to use a backdoor known as KEYPLUG. The assessment comes jointly from SentinelOne, PwC, and the Micro…THEHACKERNEWS.COM
11 DecHackers Trick Users With Data Leak Message to Deploy MalwareResearchers discovered the spread of a malicious exe file that targets specific individuals and is disguised as information related to a personal data leak. The malware functions as a backdoor, executing obfuscated commands in XML format after receiving t…GBHACKERS.COM
11 DecNorth Korean Hackers Developing Malware in Dlang Programming LanguageNorth Korean hackers have used Dlang-based malware in attacks against manufacturing, agriculture, and physical security organizations. The post North Korean Hackers Developing Malware in Dlang Programming Language appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecRussian Hackers Indicted for Phishing Attacks Against U.S. and AlliesThe US Justice Department has indicted two individuals for launching spear phishing attacks against the US, the UK, Ukraine and various NATO member countries on behalf of the Russian government.KNOWBE4.COM
11 DecDeepfakes: The New Face of FraudSecurity analysts at identity vendor Sumsub are seeing a massive rise in the use of deepfake fraud in their Identity Fraud Report 2023 . And one country may be to blame.KNOWBE4.COM
11 DecResearchers Unmask Sandman APT's Hidden Link to China-Based KEYPLUG BackdoorThe APT group known as Sandman and a China-based threat cluster using the backdoor KEYPLUG share infrastructure control and management practices, indicating potential overlap in their operations.THEHACKERNEWS.COM
11 DecBlackBerry Cancels IPO, Separates Cybersec and IoT UnitsSubsidiary IPO Canceled in Announcement, Naming John Giamatteo as CEO BlackBerry reversed plans for an equity carve-out of its internet of things business in a Monday announcement of plans to instead make its cybersecurity and IoT units independently operated entities. The Canadi…DATABREACHTODAY.CO.UK
11 DecPayments Fraud: What to Expect in 2024Peter Tapling Discusses Scams, Synthetic IDs and FedNow As the adoption of real-time payments increases, the United States will likely see an increase in scams, which will further fuel the debate about reimbursement models for FedNow and RTP networks, said Peter Tapling, board me…DATABREACHTODAY.CO.UK
11 DecApple Ships iOS 17.2 With Urgent Security PatchesCupertino’s flagship mobile OS vulnerable to arbitrary code execution and data exposure security vulnerabilities. The post Apple Ships iOS 17.2 With Urgent Security Patches appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecSpain Arrests Alleged Kelvin Security Money Laundering HeadVenezuelan National Detained on Mediterranean Coast on Sunday Spanish national police on Sunday arrested an alleged key money laundering figure of the profit-seeking Kelvin Security hacking operation. They detained a Venezuelan national who reportedly entered the country as a tou…DATABREACHTODAY.CO.UK
11 DecUK Sanctions 9 Asians for Crypto Scams, Human TraffickingSanctioned Individuals Operated Investment Scams in Myanmar, Cambodia and Laos The U.K. government has sanctioned 14 individuals and groups that illegally employed human trafficking victims in online crypto and investment scams. Sanctioned individuals include a Chinese national p…DATABREACHTODAY.CO.UK
11 DecCybertrucks | Viagra | Struts | Atlassian | Log4Shell | Pharmacies | Jason Wood & More! – SWN348This week Doug talks: Cybertruck, Viagra, Struts, Atlassian, Log4Shell, Pharmacies, Jason Wood and more on the Security Weekly News! →Full Show Notes: https://securityweekly.com/swn348 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: https:…YOUTUBE.COM
11 DecEmbracing AI | News - PSW8106:00pm ET - Alex Sharpe 7:00pm ET - Security News This week, we start things off by discussing Embracing AI with Alex Sharpe, Managing Director at Sharpe42. Then we discuss the security news for the week. →Full Show Notes: https://securityweekly.com/psw810 →Join the Security Week…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
11 DecResearchers Unveil GuLoader Malware's Latest Anti-Analysis TechniquesThe malware is typically spread through phishing campaigns, and its creators have continuously improved its ability to bypass security features. One recent change involves an enhancement to its Vectored Exception Handling (VEH) capability.THEHACKERNEWS.COM
11 DecPlaybook: Your First 100 Days as a vCISO - 5 Steps to SuccessIn an increasingly digital world, no organization is spared from cyber threats. Yet, not every organization has the luxury of hiring a full-time, in-house CISO. This gap in cybersecurity leadership is where you, as a vCISO, come in. You are the person who will establish, develop,…THEHACKERNEWS.COM
11 DecGULOADER Adds New Anti-Analysis Tactic to ArsenalResearchers have identified new techniques employed by the GuLoader malware to enhance its evasion capabilities and make analysis more challenging. The highly evasive shellcode downloader malware was found leveraging Vectored Exception Handler (VEH) capability. Organizations can …CYWARE.COM
📡 INFOSEC NEWS 12[−]
11 DecHHS Announces Next Steps in Ongoing Work to Enhance Cybersecurity for Health Care and Public Health SectorsThe U.S. Department of Health and Human Services (HHS) has released a concept paper outlining a cybersecurity strategy for the healthcare sector, focusing on strengthening resilience against cyber-attacks.HHS.GOV
11 DecSpyLoan Scandal: 18 Malicious Loan Apps Defraud Millions of Android UsersCybersecurity researchers have discovered 18 malicious loan apps for Android on the Google Play Store that have been collectively downloaded over 12 million times. "Despite their attractive appearance, these services are in fact designed to defraud users by offering the…THEHACKERNEWS.COM
11 DecLove for Sports Could Lead to Poor Password PracticesAs per a recent study by Bitwarden, approximately one-third of Americans use sports-related terms in their passwords, with professional sports teams being twice as likely to inspire these passwords compared to college sports teams.HELPNETSECURITY.COM
11 DecAim for a Modern Data Security ApproachOrganizations must shift their data security approach to safeguard sensitive workloads from the moment they enter the data pipeline, rather than relying on securing data only in the cloud data warehouse.HELPNETSECURITY.COM
11 DecUK Sanctions Nine Linked to Cyber Trafficking in Southeast AsiaThe United Kingdom has imposed sanctions on individuals and entities involved in Southeast Asia's online scamming industry, targeting both human traffickers and companies connected to scam operations.THERECORD.MEDIA
11 DecWhat is sitemap.xml, and Why a Pentester Should Care, (Mon, Dec 11th)Everyone seems to be familiar with robots.txt - the contents of that file are normally used to tell search engines what branches of your site to NOT index, or in some misguided cases folks think that this can be used to "secure" your pages for some reason.&#;x26;…ISC.SANS.EDU
11 DecOpal Security, Which Helps Companies Manage Access and Identities, Raises $22MIdentity management solution provider Opal Security has managed to raise $22 million in a Series B round to expand its team and develop new AI-powered tools for identity and access risk remediation.TECHCRUNCH.COM
11 DecKelvin Security Hacking Group Leader Arrested in SpainKelvin Security has been active since 2013, targeting public-facing systems to obtain user credentials and steal confidential data, which they would sell or leak on hacking forums.BLEEPINGCOMPUTER.COM
11 DecCounter-Strike 2 HTML injection bug exposes players’ IP addressesValve has reportedly fixed an HTML injection flaw in Counter-Strike 2 that was heavily abused today to inject images into games and obtain other players' IP addresses. [...]BLEEPINGCOMPUTER.COM
11 DecBlack Hat Europe 2023: Should we regulate AI?ChatGPT would probably say "Definitely not!", but will we learn any lessons from the rush to regulate IoT in the past?WELIVESECURITY.COM
11 DecSilent but deadly: The rise of zero-click attacksA security compromise so stealthy that it doesn’t even require your interaction? Yes, zero-click attacks require no action from you – but this doesn’t mean you’re left vulnerable.WELIVESECURITY.COM