14Articles
5Categories
2023-12-16Date
⚠️ VULNERABILITY DISCLOSURE 5[−]
16 DecNew NKAbuse Malware Exploits NKN Blockchain Tech for DDoS AttacksResearchers have discovered a new multi-platform threat called NKAbuse that uses a decentralized network connectivity protocol called NKN to communicate. NKAbuse leverages blockchain technology to conduct DDoS attacks and function as an implant.THEHACKERNEWS.COM
16 DecDelta Dental of California Data Breach Exposed Info of Seven Million PeopleDelta Dental of California and its affiliates have suffered a data breach, affecting almost seven million patients. The breach occurred through a vulnerability in the MOVEit Transfer software, allowing unauthorized access by threat actors.BLEEPINGCOMPUTER.COM
16 DecAn Example of RocketMQ Exploit Scanner, (Sat, Dec 16th)A few months ago, RocketMQ[1], a real-time message queue platform, suffered of a nasty vulnerability referred as %%cve:2023-33246%%. I found another malicious script in the wild a few weeks ago that exploits this vulnerability. It has still today a v…ISC.SANS.EDU
16 DecGoogle moves to end geofence warrants, a surveillance problem it largely createdGoogle will soon allow users to store their location data on their devices rather than on Google’s servers, effectively ending a long-running surveillance practice that allowed police and law enforcement to tap Google’s vast banks of location data to identify potentia…TECHCRUNCH.COM
16 Dec KEVQNAP VioStor NVR vulnerability actively exploited by malware botnetA Mirai-based botnet named 'InfectedSlurs' is exploiting a remote code execution (RCE) vulnerability in QNAP VioStor NVR (Network Video Recorder) devices to hijack and make them part of its DDoS (distributed denial of service) swarm. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 1[−]
16 DecChina's MIIT Introduces Color-Coded Action Plan for Data Security IncidentsChina's Ministry of Industry and Information Technology (MIIT) on Friday unveiled draft proposals detailing its plans to tackle data security events in the country using a color-coded system. The effort is designed to "improve the comprehensive response capacity for dat…THEHACKERNEWS.COM
🔥 INCIDENT REPORTING 4[−]
16 DecOntario Public Library Shuts Down Most Services Due to CyberattackThe attack on the library, along with recent ransomware incidents at other major libraries, underscores the need for improved cybersecurity measures and data protection in the library sector.THERECORD.MEDIA
16 DecCentral Bank of Lesotho Facing Outages After CyberattackThe ongoing downtime of the National Payments System has made it impossible for local banks in Lesotho to honor inter-bank transactions, requiring alternative measures to facilitate payments.THERECORD.MEDIA
16 DecWhy federal efforts to protect schools from cybersecurity threats fall shortsubmitted by jyunwai to cybersecurity 2 points | 0 comments https://www.databreaches.net/why-federal-efforts-to-protect-schools-from-cybersecurity-threats-fall-short/DATABREACHES.NET
16 DecMongoDB says customer data was exposed in a cyberattackMongoDB is warning that its corporate systems were breached and that customer data was exposed in a cyberattack that was detected by the company earlier this week. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 2[−]
16 DecPikaBot Distributed via Malicious Search AdsThreat actors are bypassing Google's security measures and using fingerprinting techniques to ensure successful execution of malicious downloads, pointing to a potential "malvertising as a service" model.MALWAREBYTES.COM
16 DecWeekly Update 378Presently sponsored by: Identity theft isn’t cheap. Secure your family with Aura the #1 rated proactive protection that helps keep you safe online. Get started. I'd say the balloon fetish segment was the highlight of this week's video. No, seriously, it's a moment …TROYHUNT.COM
📡 INFOSEC NEWS 2[−]
16 DecMicrosoft Warns of Storm-0539: The Rising Threat Behind Holiday Gift Card FraudsMicrosoft is warning of an uptick in malicious activity from an emerging threat cluster it's tracking as Storm-0539 for orchestrating gift card fraud and theft via highly sophisticated email and SMS phishing attacks against retail entities during the holiday shopping se…THEHACKERNEWS.COM
16 DecMicrosoft unveils new, more secure Windows Protected Print ModeMicrosoft announced a new Windows Protected Print Mode (WPP), introducing significant security enhancements to the Windows print system. [...]BLEEPINGCOMPUTER.COM