70Articles
7Categories
2023-12-28Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
28 DecCritical Zero-Day in Apache OfBiz ERP System Exposes Businesses to AttackThe flaw, tracked as CVE-2023-51467, is a result of an incomplete patch for another critical vulnerability (CVE-2023-49070) and allows attackers to achieve a simple Server-Side Request Forgery (SSRF) to access unauthorized internal resources.THEHACKERNEWS.COM
28 DecBarracuda Zero-Day Used to Target Government, Tech Organizations in US, APJThe new Barracuda ESG zero-day CVE-2023-7102 has been used by Chinese hackers to target organizations in the US and APJ region. The post Barracuda Zero-Day Used to Target Government, Tech Organizations in US, APJ appeared first on SecurityWeek .SECURITYWEEK.COM
28 DecCritical Apache OfBiz Zero-Day Let Attackers Bypass AuthenticationA new vulnerability has been discovered in Apache OfBiz, an open-source Enterprise Resource Planning (ERP) system. Apache OfBiz is used as a part of the software supply chain in Atlassian’s JIRA, which is predominantly used in several organizations. This vulnerability was a…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 16[−]
28 DecAI and Lossy BottlenecksArtificial intelligence is poised to upend much of society, removing human limitations inherent in many systems. One such limitation is information and logistical bottlenecks in decision-making. Traditionally, people have been forced to reduce complex choices to a small handful o…SCHNEIER.COM
28 DecDomain Name Security ChallengesProtecting domain name systems finally has the attention of cybersecurity professionals -because every recent large data breach has involved a DNS vulnerability. But there is much work to be done. According to Ihab Shraim, chief technical officer at Corporation Services Company, …DATABREACHTODAY.CO.UK
28 DecOhio Lottery Suffers Cyberattack Claimed by DragonForce Ransomware GroupThe newly surfaced DragonForce ransomware gang has claimed responsibility for the attack, stating that they have encrypted devices and stolen data, including personal information of Ohio Lottery customers and employees.BLEEPINGCOMPUTER.COM
28 DecFour-Year Campaign Backdoored Iphones Using Undocumented Hardware FunctionThe secret hardware function targeted by the attackers allowed them to bypass advanced memory protections, enabling post-exploitation techniques and compromising system integrity.ARSTECHNICA.COM
28 DecOhio Lottery Hit by Ransomware, Hackers Claim Theft of Employee and Player DataThe DragonForce ransomware group has taken credit for the Ohio Lottery hack, claiming to have stolen millions of data records. The post Ohio Lottery Hit by Ransomware, Hackers Claim Theft of Employee and Player Data appeared first on SecurityWeek .SECURITYWEEK.COM
28 DecMysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhonesiOS zero-click attack targeting Kaspersky iPhones bypassed hardware-based security protections to take over devices. The post Mysterious Apple SoC Feature Exploited to Hack Kaspersky Employee iPhones appeared first on SecurityWeek .SECURITYWEEK.COM
28 DecMost Sophisticated iPhone Hack Ever Exploited Apple's Hidden Hardware FeatureThe Operation Triangulation spyware attacks targeting Apple iOS devices leveraged never-before-seen exploits that made it possible to even bypass pivotal hardware-based security protections erected by the company. Russian cybersecurity firm Kaspersky, which discove…THEHACKERNEWS.COM
28 DecAmnesty confirms Apple warning: Indian journalists’ iPhones infected with Pegasus spywareApple’s warnings in late October that Indian journalists and opposition figures may have been targeted by state-sponsored attacks prompted a forceful counterattack from Prime Minister Narendra Modi’s government. Officials publicly doubted Apple’s findings and an…TECHCRUNCH.COM
28 DecGoogle Cloud Resolves Privilege Escalation Flaw Impacting Kubernetes ServiceGoogle Cloud has addressed a medium-severity security flaw in its platform that could be abused by an attacker who already has access to a Kubernetes cluster to escalate their privileges. "An attacker who has compromised the Fluent Bit logging container could combine th…THEHACKERNEWS.COM
28 DecChinese Hackers Exploit New Zero-Day in Barracuda’s ESG to Deploy BackdoorBarracuda Email Security Gateway (ESG) Appliance has been discovered with an Arbitrary code Execution vulnerability exploited by a China Nexus threat actor tracked as UNC4841. Additionally, the vulnerability targeted only a limited number of ESG devices. However, Barracuda has de…GBHACKERS.COM
28 DecOperation Triangulation: 0-click Attack Chained With 4 Zero-Days to Hack iPhonesHackers exploit Zero-Days because these vulnerabilities are unknown to software developers, making them valuable for launching attacks before developing patches. Zero-day exploits provide an opportunity to:- Cybersecurity researchers at Securelist recently discovered a malicious …GBHACKERS.COM
28 Dec KEVApache OFBiz RCE flaw exploited to find vulnerable Confluence serversA critical Apache OFBiz pre-authentication remote code execution vulnerability is being actively exploited using public proof of concept (PoC) exploits. [...]BLEEPINGCOMPUTER.COM
28 DecThreat Thursday - CTI, vulnerabilities and discussionssubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread for highlighting and discussing the past week’s notable threats, vulnerabilities, breaches and more! Feel free to comment on what I’ve collected or share things you have found useful or interesting! Sop…INFOSEC.PUB
28 DecEagers Automotive halts trading in response to cyberattackEagers Automotive has announced it suffered a cyberattack and was forced to halt trading on the stock exchange as it evaluates the impact of the incident. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 7[−]
28 DecLawmakers Push NIST for Transparency in AI Research FundingNIST Fails to Provide Information on Award Process for AI Research, Lawmakers Say The National Institute of Standards and Technology is failing to provide adequate information about how it plans to award funding opportunities to research institutions and private organizations thr…DATABREACHTODAY.CO.UK
28 DecNew CMMC Rule Offers Tiered Security Levels for ContractorsDefense Department Proposes New Security Requirements for Defense Industrial Base The U.S. Department of Defense released a draft of a long-awaited proposed rule for the Cybersecurity Maturity Model Certification program that aims to simplify compliance, enhance public-private co…DATABREACHTODAY.CO.UK
28 DecCryptohack Roundup: Thunder Terminal Repels AttackAlso: Binance Ex-CEO's Wealth Up $25B; Coinbase Refutes Senate Claims; $3M Scam This week in the cryptocurrency industry, Thunder Terminal successfully prevented a hack, Changpeng Zhao ranking 34th on a list of billionaires, Coinbase refuted a senator's allegations of subverting …DATABREACHTODAY.CO.UK
28 DecKroll reveals FTX customer info exposed in August data breachRisk and financial advisory company Kroll has released additional details regarding the August data breach, which exposed the personal information of FTX bankruptcy claimants. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 22[−]
28 DecCyberattack Tempo Ratchets Up in IsraelCyber Israel Warns of a Wave of Phishing Attempts Cyberspace aggression against Israel has intensified since the onset of war in the Gaza Strip, changing from online vandalism to attacks aimed at disruption and sowing fear, says Israel's cybersecurity agency. A prominent attack v…DATABREACHTODAY.CO.UK
28 DecFighting AI-Fueled Attacks With AI-Based Cyber ToolsHealthcare CISOs must recognize the real and imminent threat of AI-fueled cyberattacks and take proactive steps, including the deployment of AI-based security tools, to protect patient data and critical healthcare services, said Troy Hawes, managing director at consulting firm Mo…DATABREACHTODAY.CO.UK
28 DecLockBit Ransomware Disrupts Emergency Care at German HospitalsThe attack occurred on December 24, 2023, and caused severe disruptions to the hospitals' IT systems. Investigations are underway to determine the extent of the damage and whether any data was stolen.BLEEPINGCOMPUTER.COM
28 DecAlbanian Parliament, Telecom Company Hit by CyberattacksThe Albanian parliament and a telecom company were targeted by cyberattacks originating from outside Albania. The attacks, which attempted to interfere with infrastructure and delete data, have not been attributed to a specific threat actor.THERECORD.MEDIA
28 DecPanasonic Discloses Data Breach After December 2022 CyberattackThe breached information includes names, contact details, dates of birth, medical and health insurance information, financial account numbers, employment status, and government identifiers.BLEEPINGCOMPUTER.COM
28 DecEssential DDoS Statistics for Understanding Attack ImpactDDoS attacks have significant consequences, including financial losses, compromised data, and erosion of customer trust. Global events like the Russia-Ukraine war and NATO bids have fueled recent DDoS attack growth.HELPNETSECURITY.COM
28 DecTroves of Iranian Hacked Insurance Customer Data on SaleThe breach was confirmed by the Iranian Leakage Tracking System, and the targeted company, Fanavaran, has since blocked access to its website in the aftermath of the incident.IRANINTL.COM
28 DecLoanCare Notifying 1.3 Million of Data Breach Following Cyberattack on Parent CompanyLoanCare is informing 1.3 million individuals that their personal information was compromised in a data breach. The post LoanCare Notifying 1.3 Million of Data Breach Following Cyberattack on Parent Company appeared first on SecurityWeek .SECURITYWEEK.COM
28 Dec10 Prominent Cybersecurity Acquisitions of 2023The cybersecurity domain is undergoing rapid changes owing to the rise in frequency and complexity of cyber threats. As the digital world expands, the risk of cyberattacks is increasing, and security experts must stay vigilant to safeguard against potential breaches. As digital r…GBHACKERS.COM
28 DecTrinidad and Tobago Social Security Agency Discloses Post-Christmas Ransomware AttackThe National Insurance Board in Trinidad and Tobago has been hit by a ransomware attack, leading to the closure of its offices and limiting its operations for an extended period.THERECORD.MEDIA
28 DecThe Emerging Landscape of AI-Driven Cybersecurity Threats: A Look AheadWhile AI can significantly bolster defense mechanisms, it also equips adversaries with powerful tools to launch sophisticated cyberattacks. The post The Emerging Landscape of AI-Driven Cybersecurity Threats: A Look Ahead appeared first on SecurityWeek .SECURITYWEEK.COM
28 DecU.K. Government 'Ill-Prepared' to Deal With High Risk of Catastrophic Ransomware AttacksA new report from the U.K. government’s Joint Committee on the National Security Strategy (JCNSS) outlines both just how likely an attack on critical national infrastructure is and where they are vulnerable.KNOWBE4.COM
28 DecImpersonation Attack Data Breaches Predicted to Increase in 2024With so much of an attack riding on a cybercriminals ability to gain access to systems, applications and data, experts predict the trend of rising impersonation is only going to get worse.KNOWBE4.COM
28 DecCyberattack Targets Albanian Parliament’s Data System, Halting Its WorkAlbania’s Parliament said it had suffered a cyberattack with hackers trying to get into its data system, resulting in a temporary halt in its services. The post Cyberattack Targets Albanian Parliament’s Data System, Halting Its Work appeared first on SecurityWeek .SECURITYWEEK.COM
28 DecEasyPark discloses data breach that may impact millions of usersParking app developer EasyPark has published a notice on its website warning of a data breach it discovered on December 10, 2023, which impacts an unknown number of its millions of users. [...]BLEEPINGCOMPUTER.COM
28 DecNew Cyberattack Wave Targets Albanian Parliament, TelecomMobile Network Provider and National Flag Carrier Also Targeted Albania's Parliament and a telecom service provider faced cyberattacks on Christmas day, according to the Albanian National Authority for Electronic Certification and Cyber Security. Iranian hackers called Homeland J…DATABREACHTODAY.CO.UK
28 DecBreach Roundup: Real Estate Firm Exposes Celebrity DataAlso: Yakult Australia Admits to Experiencing 'Cybersecurity Incident' This week, a breach at real estate firm Wealth Network exposed 1.5 billion records, Corewell Health patients were hit by a second breach, data of 1.3M LoanCare mortgage customers was exposed, and Yakult Austra…DATABREACHTODAY.CO.UK
28 DecGame mod on Steam breached to push password-stealing malwareDownfall, a fan expansion for the popular Slay the Spire indie strategy game, was breached on Christmas Day to push Epsilon information stealer malware using the Steam update system. [...]BLEEPINGCOMPUTER.COM
28 DecSteam game mod breached to push password-stealing malwareDownfall, a fan expansion for the popular Slay the Spire indie strategy game, was breached on Christmas Day to push Epsilon information stealer malware using the Steam update system. [...]BLEEPINGCOMPUTER.COM
28 DecA year in review: 10 of the biggest security incidents of 2023As we draw the curtain on another eventful year in cybersecurity, let’s review some of the high-profile cyber-incidents that occurred in 2023WELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 11[−]
28 DecOnDemand Panel | Securing Operational Excellence: Insights into Fortifying OT SecurityStrengthening OT Security with HCLTech and Microsoft In an age reliant on operational technology, ensuring robust security for diverse industries is crucial. Join us as we discuss operational challenges, highlighting specific threats faced by businesses today. Explore how the pow…DATABREACHTODAY.CO.UK
28 DecNew Rugmi Malware Loader Surges with Hundreds of Daily DetectionsA new malware loader is being used by threat actors to deliver a wide range of information stealers such as Lumma Stealer (aka LummaC2), Vidar, RecordBreaker (aka Raccoon Stealer V2), and Rescoms. Cybersecurity firm ESET is tracking the trojan under the name W…THEHACKERNEWS.COM
28 DecUnveiling the Mirai: Insights into Recent DShield Honeypot Activity [Guest Diary], (Wed, Dec 27th)[This is a Guest Diary by Elias Bou Zeid, an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
28 DecSMTP Smuggling Technique Bypasses Email Authentications Establishing LegitimacyA newly-discovered technique misusing SMTP commands allows cybercriminals to pass SPF, DKIM and DMARC checks, empowering impersonated emails to reach their intended victim.KNOWBE4.COM
28 DecRoundup: Federal action that shaped cybersecurity in 2023As 2023 draws to a close, it’s time to look back on our top five federal cyber stories of the year: a compilation of pivotal moments and key developments that have significantly shaped the landscape of cybersecurity at the federal level. These stories highlight the challeng…SECURITYINTELLIGENCE.COM
28 DecPalo Alto Networks Completes Acquisition of TalonPalo Alto Networks completed the acquisition of Talon Cyber Security, an Israeli startup selling a secure browser technology to enterprise customers. The post Palo Alto Networks Completes Acquisition of Talon appeared first on SecurityWeek .SECURITYWEEK.COM
28 DecMicrosoft addresses App Installer abuseSummary In recent months, Microsoft Threat Intelligence has observed threat actors leveraging social engineering and phishing techniques to target Windows OS users and utilizing the ms-appinstaller URI scheme. We have addressed and mitigated this malicious activity by turning off…MSRC.MICROSOFT.COM
28 DecMegatronAL on Kicking in the Door to Cybersecurity - Angela Marafino - ESW VaultI once told my college advisor that I wanted to double major in computer science and jazz performance. She laughed at me. Instead, I jumped into a career in IT and played jazz - without a degree in either. Turns out, that was fine - the industry valued experience and results over…YOUTUBE.COM
28 DecUAP Disclosure 2024 Unraveling the Mystery of Non Human Technologiessubmitted by MOMA_Trance to securitynews 1 points | 0 comments https://youtu.be/VhE05jBZBy4YOUTU.BE
28 DecGoogle to Settle $5B 'Incognito Mode' Privacy Issue LawsuitDeal Follows Court Ruling That Cleared the 4-Year-Old Class Action Claim for Trial Google reached a preliminary settlement in a class action lawsuit that alleged the tech giant had misled consumers about their privacy protections when using the private browsing Incognito mode of …DATABREACHTODAY.CO.UK
28 DecFinancially motivated threat actors misusing App InstallerSince mid-November 2023, Microsoft Threat Intelligence has observed threat actors, including financially motivated actors like Storm-0569, Storm-1113, Sangria Tempest, and Storm-1674, utilizing the ms-appinstaller URI scheme (App Installer) to distribute malware. The post Financi…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 5[−]
28 DecThree Main Tactics Attackers Use to Bypass MFASE Labs has warned that multi-factor authentication (MFA) is not foolproof and can be bypassed by attackers using old-school methods such as social engineering, malware, and phishing.HELPNETSECURITY.COM
28 DecNew Rugmi Malware Loader Surges with Hundreds of Daily DetectionsThe malware is sold as a service and can be obtained through malvertising, fake browser updates, and cracked software installations. It has also been found that the malware is being spread through Discord's content delivery network.THEHACKERNEWS.COM
28 DecRussian military hackers target Ukraine with new MASEPIE malwareUkraine's Computer Emergency Response Team (CERT) is warning of a new phishing campaign that allowed Russia-linked hackers to deploy previously unseen malware on a network in under one hour. [...]BLEEPINGCOMPUTER.COM
28 DecMicrosoft disables MSIX protocol handler abused in malware attacksMicrosoft has again disabled the MSIX ms-appinstaller protocol handler after multiple financially motivated threat groups abused it to infect Windows users with malware. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 6[−]
28 DecBlockchain dev's wallet emptied in "job interview" using npm packageA blockchain developer shares his ordeal over the holidays when he was approached on LinkedIn by a "recruiter" for a web development job. The recruiter in question asked the developer to download npm packages from a GitHub repository, and hours later the developer discovered his …BLEEPINGCOMPUTER.COM
28 DecHow to Incorporate Human-Centric SecurityCompanies need to shift their focus from solely addressing threats to proactively mitigating risks by analyzing behaviors and implementing insider risk management solutions.HELPNETSECURITY.COM
28 DecMeet the cyber-criminals of 2023Once again we look back at the past year in cybercrime and those who we lost… to the law. This year was no different to last: we saw another round of high-profile busts, arrests, sanctions, and prison time for some of the most prolific cybercriminals in recent years. This is our …TECHCRUNCH.COM
28 DecBlockchain Developer’s Wallet Emptied in “Job Interview” Using Npm PackageThe scam involved the developer downloading npm packages from a GitHub repository, which potentially allowed the attackers to gain access to his machine and drain his wallet.BLEEPINGCOMPUTER.COM
28 DecOperation Triangulation: talk on 37С3 | Kaspersky official blogIn addition to other vulnerabilities, Operation Triangulation employed an undocumented and unused in the firmware function.KASPERSKY.COM