59Articles
9Categories
2023-12-22Date
🚨 CISA KEV 1[−]
22 Dec KEVCISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the WildCISA released ICS advisories for FXC router and QNAP NRV flaws and added them to its known exploited vulnerabilities catalog. The post CISA Warns of FXC Router, QNAP NVR Vulnerabilities Exploited in the Wild appeared first on SecurityWeek .SECURITYWEEK.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
22 DecHackers Exploiting Old Microsoft Office RCE Flaw to Deploy Agent Tesla MalwareIt has been reported that malicious individuals are utilizing a malware called Agent Tesla to target Microsoft Office users using versions affected by CVE-2017-11882 XLAM. This malware is taking advantage of a remote code execution vulnerability in Equation Editor, which is prese…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 13[−]
22 DecUpdate: Notorious Ransomware Group Tussles With Law Enforcement, Regenerates After TakedownThe ransomware group AlphV has re-emerged just hours after law enforcement agencies took down its infrastructure. The group claimed to have "unseized" its data leak site and updated information about new victims.CYBERSECURITYDIVE.COM
22 DecUAC-0099 Using WinRAR Exploit to Target Ukrainian Firms with LONEPAGE MalwareThe threat actor known as UAC-0099 has been linked to continued attacks aimed at Ukraine, some of which leverage a high-severity flaw in the WinRAR software to deliver a malware strain called LONEPAGE. "The threat actor targets Ukrainian employees working for companies …THEHACKERNEWS.COM
22 DecKansas City-Area Hospital Transfers Patients, Reschedules Appointments After CyberattackA hospital near Kansas City, Missouri, is facing disruptions in patient care due to a cyberattack on its IT systems. Some patients had to be transferred to other hospitals, and the hospital is actively investigating the source of the disruption.THERECORD.MEDIA
22 DecCisco to Acquire Cloud-Native Networking and Security Startup IsovalentIsovalent has developed eBPF, an open-source technology that provides insight into the operating system layer, and Cilium, which offers visibility into cloud-native applications.TECHCRUNCH.COM
22 DecMageCart WordPress Plugin Injects Malicious User & Credit Card SkimmerA recent analysis discovered a malicious plugin injected into a WordPress/WooCommerce website that creates a fake administrator user and injects credit card skimming JavaScript into the checkout page.SUCURI.NET
22 DecCISA Seeks Comment on Secure by Design Principles to Boost Global Software SecurityThe Biden administration is pushing for secure-by-design principles to be embraced by the tech industry, aiming to make security a core feature of software development to prevent attacks exploiting vulnerabilities.CYBERSECURITYDIVE.COM
22 DecAnalysis: The Various Ways Malicious JavaScript can Steal Your SecretsResearchers from Unit 42 have discovered that threat actors are using malicious JavaScript to steal sensitive information by exploiting popular survey sites, low-quality hosting, and web chat APIs.UNIT42.PALOALTONETWORKS.COM
22 DecData Exfiltration Using Indirect Prompt InjectionInteresting attack on a LLM: In Writer, users can enter a ChatGPT-like session to edit or create their documents. In this chat session, the LLM can retrieve information from sources on the web to assist users in creation of their documents. We show that attackers can prepare webs…SCHNEIER.COM
22 DecFake VPN Chrome extensions force-installed 1.5 million timesThree malicious Chrome extensions posing as VPN (Virtual Private Networks) infected were downloaded 1.5 million times, acting as browser hijackers, cashback hack tools, and data stealers. [...]BLEEPINGCOMPUTER.COM
22 DecSC Mag: "Attacks on critical infrastructure are harbingers of war: Are we prepared?"I just found a great post by Morgan Wright, chief security advisor of SentinelOne. Here is a quick summary and a link to the full article is at the bottom. The recent attacks on water authorities like Aliquippa and St. Johns River have cast a spotlight on the vulnerability of cri…KNOWBE4.COM
22 Dec2023 Funding and Acquisition Summary with Return on Security - Mike Privette - ESW #344We're excited to give an end-of-year readout on the performance of the cybersecurity industry with Mike Privette, founder of Return on Security and author of the weekly Security, Funded newsletter. This year, this podcast has leaned heavily on the Security, Funded newsletter to p…YOUTUBE.COM
22 DecCreating a certification path for SASE products and services - Pascal Menezes - ESW #344Understanding how CyberRatings, NaaS, and SASE combine to make network security easier to buy and deploy. MEF is an industry association, providing standards, certifications, and facilitating community discussions. MEF has teamed up with CyberRatings.org to establish a certificat…YOUTUBE.COM
22 DecRogue WordPress Plugin Exposes E-Commerce Sites to Credit Card TheftThreat hunters have discovered a rogue WordPress plugin that's capable of creating bogus administrator users and injecting malicious JavaScript code to steal credit card information. The skimming activity is part of a Magecart campaign targeting e-commerce websites, acc…THEHACKERNEWS.COM
📢 SECURITY ADVISORIES 2[−]
22 DecNIST Report Identifies Significant Privacy Gaps in Genomic Data HandlingBreaches of genomic data not only pose risks to individuals but also have implications for their families, while sharing such data is crucial for research and development in the biotechnology field.THERECORD.MEDIA
🔥 INCIDENT REPORTING 15[−]
22 DecShall We Play a Game?, (Fri, Dec 22nd)Our youngest readers won't probably not get the point with this quote, it's from the 1983 movie “WarGames”[1]. I used this subject because I found yesterday a small game in Python that offers not only some fun but also mali…ISC.SANS.EDU
22 DecSt Vincent’s Health Australia Says Data Stolen in CyberattackSt Vincent's, Australia's largest not-for-profit health and aged care provider, has confirmed that it has experienced a cyberattack and that hackers have stolen some of its data.THEGUARDIAN.COM
22 DecMalicious GPT Can Phish Credentials, Exfiltrate Them to External Server: ResearcherA researcher has shown how malicious actors can create custom GPTs that can phish for credentials and exfiltrate them to external servers. The post Malicious GPT Can Phish Credentials, Exfiltrate Them to External Server: Researcher appeared first on SecurityWeek .SECURITYWEEK.COM
22 DecFirst American Takes IT Systems Offline After CyberattackFirst American Financial Corporation, the second-largest title insurance company in the US, has experienced a cyberattack and has taken some systems offline to contain the impact.BLEEPINGCOMPUTER.COM
22 DecInmate, Staff Information Stolen in Rhode Island Prison Data BreachThe Donald W. Wyatt Detention Facility says the data of 2,000 inmates, staff, and vendors was stolen in a cyberattack. The post Inmate, Staff Information Stolen in Rhode Island Prison Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
22 DecIran’s Peach Sandstorm Group Deploys FalseFont Backdoor Against Defense SectorFalseFont is a custom backdoor with various capabilities that allow operators to remotely access compromised systems, execute files, and transmit information to Command and Control servers.HACKREAD.COM
22 DecOperation RusticWeb: Rust-Based Malware Targets Indian Government EntitiesIndian government entities and the defense sector have been targeted by a phishing campaign that's engineered to drop Rust-based malware for intelligence gathering. The activity, first detected in October 2023, has been codenamed Operation RusticWeb by enterprise securi…THEHACKERNEWS.COM
22 DecUK Teen Gets Indefinite Hospital Order For ‘Grand Theft Auto’ HackArion Kurtaj was found responsible by a British court of carrying out one of the biggest breaches in the history of the video game industry The post UK Teen Gets Indefinite Hospital Order For ‘Grand Theft Auto’ Hack appeared first on SecurityWeek .SECURITYWEEK.COM
22 DecEuropol warns 443 online shops infected with credit card stealersEuropol has notified over 400 websites that their online shops have been hacked with malicious scripts that steal debit and credit cards from customers making purchases. [...]BLEEPINGCOMPUTER.COM
22 DecScamming Booking.com clients through hotel accounts | Kaspersky official blogHow scammers use compromised hotel accounts on Booking.com to steal banking data from the hotels’ clients.KASPERSKY.COM
22 DecRansomware prevention, ransomware stats, SSH vulns, and $1 Chevy Tahoes! - ESW #344This week, in the security market, we talk about next NEXT gen anti-virus, how Okta can (apparently) do no wrong, and a VC firm imploding. Then we discuss how smartphones and speakers are allegedly being used to spy on us, and the future of privacy and consumer tech products. The…YOUTUBE.COM
22 DecNissan Australia cyberattack claimed by Akira ransomware gangToday, the Akira ransomware gang claimed that it breached the network of Nissan Australia, the Australian division of Japanese car maker Nissan. [...]BLEEPINGCOMPUTER.COM
22 DecIranian Hackers Peach Sandstorm Are Delivering New BackdoorFalseFont Backdoor Enables Attackers to Remotely Connect to a Compromised System Microsoft said Iranian state hackers are using a newly developed backdoor to target organizations in the American defense industrial base. The Iranian state threat actor that Microsoft tracks as Peac…DATABREACHTODAY.CO.UK
22 DecUbisoft says it is investigating reports of a new security breachUbisoft is investigating whether it suffered a breach after images of the company's internal software and developer tools were leaked online. [...]BLEEPINGCOMPUTER.COM
22 DecDeepfakes, China, Strangest Scams, NordVPN, Russia, Aaran Leyland & More - SWN #351Join us for our last live episode of the year as we navigate the 2023 cybersecurity landscape, covering global initiatives, deepfake concerns in the UK, NordVPN's cyber insurance expansion, China's major cyber attack on US infrastructure, successful ransomware takedowns, and the …YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 13[−]
22 DecISC Stormcast For Friday, December 22nd, 2023 https://isc.sans.edu/podcastdetail/8790, (Fri, Dec 22nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
22 DecMicrosoft Warns of New 'FalseFont' Backdoor Targeting the Defense SectorOrganizations in the Defense Industrial Base (DIB) sector are in the crosshairs of an Iranian threat actor as part of a campaign designed to deliver a never-before-seen backdoor called FalseFont. The findings come from Microsoft, which is tracking the activity under its weather-t…THEHACKERNEWS.COM
22 DecJaskaGO Malware Attacking Windows and macOS Operating SystemsDue to the widespread use and popularity of Windows and macOS, threat actors often target these platforms.  Windows is a common target because it dominates the global operating system market, while macOS is targeted because of its majority among:- Recently, cybersecurity res…GBHACKERS.COM
22 DecMinimum of two values with minimum knowledgesubmitted by payasson to cybersecurity 1 points | 0 comments Hey! I program a lot but I’m not very good with cybersecurity and stuff, although I have a basic usage of GPG and asymetrical encryption. My problem is: Let’s imagine that Alice (A) and Bob (B) each have a file with a n…SH.ITJUST.WORKS
22 DecIranian Hackers Targeting US Defense Industrial Base Entities With New BackdoorMicrosoft has observed Iranian state-sponsored hackers targeting employees at US DIB entities with the FalseFont backdoor. The post Iranian Hackers Targeting US Defense Industrial Base Entities With New Backdoor appeared first on SecurityWeek .SECURITYWEEK.COM
22 DecIn Other News: Crypto Exchange Hack Guilty Plea, Rating AI Vulnerabilities, Intellexa SpywareNoteworthy stories that might have slipped under the radar: Cryptocurrency exchange hacker pleads guilty, rating LLM vulnerabilities, Intellexa spyware analysis. The post In Other News: Crypto Exchange Hack Guilty Plea, Rating AI Vulnerabilities, Intellexa Spyware appeared first …SECURITYWEEK.COM
22 DecDeepFakes | China | Strangest Scams | NORDVPN | RUSSIA | TOP 10 Security Stories | & More! – SWN351DEEPFAKES, CHINA, STRANGEST SCAMS, NORDVPN, RUSSIA, TOP 10 SECURITY STORIES, AARAN LEYLAND, AND MORE – SWN #351. →Full Show Notes: https://securityweekly.com/swn351 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: https://www.securityweekly…YOUTUBE.COM
22 DecDeepFakes | China | Strangest Scams | NORDVPN | RUSSIA | TOP 10 Security Stories | & More! – SWN351DEEPFAKES, CHINA, STRANGEST SCAMS, NORDVPN, RUSSIA, TOP 10 SECURITY STORIES, AARAN LEYLAND, AND MORE – SWN #351. →Full Show Notes: https://securityweekly.com/swn351 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our website: https://www.securityweekly…YOUTUBE.COM
22 DecChameleon Android Malware Can Bypass Biometric SecurityA variant of the Chameleon Android banking trojan features new bypass capabilities and has expanded its targeting area. The post Chameleon Android Malware Can Bypass Biometric Security appeared first on SecurityWeek .SECURITYWEEK.COM
22 DecFriday Squid Blogging: Squid Parts into FertilizerIt’s squid parts from college dissections , so it’s not a volume operation. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here .SCHNEIER.COM
22 DecBen Rothke’s Review of A Hacker’s MindBen Rothke chose A Hacker’s Mind as “the best information security book of 2023.”SCHNEIER.COM
22 DecChips to Compute With Encrypted Data Are Comingsubmitted by ylai to cybersecurity 28 points | 2 comments https://spectrum.ieee.org/homomorphic-encryptionSPECTRUM.IEEE.ORG
🌐 CYBER THREAT LANDSCAPE 5[−]
22 DecThese aren’t the Android phones you should be looking forUsers should exercise caution when using third-party app stores or purchasing cheap devices from unknown brands, as they may be at a higher risk of malware and other security threats.WELIVESECURITY.COM
22 DecBattleRoyal Threat Cluster Spread DarkGate RAT via Email and Fake Browser UpdatesThe BattleRoyal cluster, using DarkGate and NetSupport malware, demonstrates the use of multiple attack chains and social engineering techniques to deliver payloads via email and fake update lures.PROOFPOINT.COM
22 DecDecoy Microsoft Word Documents Used to Deliver Nim-Based MalwareA new phishing campaign is leveraging decoy Microsoft Word documents as bait to deliver a backdoor written in the Nim programming language. "Malware written in uncommon programming languages puts the security community at a disadvantage as researchers and reverse engineers' …THEHACKERNEWS.COM
22 DecAndroid Banking Trojan Chameleon can Now Bypass Any Biometric AuthenticationThe Chameleon banking trojan has evolved with new advanced features, including the ability to bypass biometric prompts and display HTML pages for enabling Accessibility Services on Android 13, making it a potent threat to mobile banking security.THREATFABRIC.COM
22 DecKey findings from ESET Threat Report H2 2023 – Week in security with Tony AnscombeHow cybercriminals take advantage of the popularity of ChatGPT and other tools of its ilk to direct people to sketchy sites, plus other interesting findings from ESET's latest Threat ReportWELIVESECURITY.COM
🎙️ PODCASTS 1[−]
22 DecCyber Security Today, Year in Review for 2023This episode features a discussion about the biggest cybersecurity stories of 2023, and predictions for 2024CYBERSECURITYTODAY.LIBSYN.COM
📡 INFOSEC NEWS 8[−]
22 DecYahoo Survivor Football Bug Let Players Pick Winners After NFL Games Were OverA bug on Yahoo's sports betting platform allowed users to cheat by placing bets after the games had already been decided, potentially impacting the outcome of survivor pools with real money involved.THERECORD.MEDIA
22 DecFTC Proposes Tougher Children’s Data Privacy Rules for First Time in a DecadeThe proposed changes to the Children's Online Privacy Protection Rule (COPPA) would hold service providers responsible for ensuring the safety of digital experiences for children, rather than relying solely on parents.THERECORD.MEDIA
22 DecNew Rules in UK Could Reimburse Fraud Victims up to £415,000 ($525,000)The UK's Payment Systems Regulator (PSR) announced that victims could be repaid up to £415,000 ($525,000) unless the bank can prove "gross negligence" on the part of the individual.THERECORD.MEDIA
22 DecThese are the cybersecurity stories we were jealous of in 2023Back in 2018, my former colleague at VICE Motherboard Joseph Cox and I started publishing a list of the best cybersecurity stories that were published elsewhere. It wasn’t just a way to tip our hats at our friendly competitors; by pointing to other publications’ stories, we were …TECHCRUNCH.COM
22 DecBidenCash Dark Web Marketplace Leaks 1.6 Million Credit Card DetailsUnlike a previous leak, this one does not include names or emails of cardholders. While the absence of names reduces the risk of identity theft, the leaked financial details still pose a significant risk for unauthorized transactions.HACKREAD.COM