45Articles
7Categories
2023-12-29Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
29 DecCritical Apache OFBiz Vulnerability in Attacker CrosshairsShadowserver sees possible in-the-wild exploitation of a critical Apache OFBiz vulnerability tracked as CVE-2023-49070. The post Critical Apache OFBiz Vulnerability in Attacker Crosshairs appeared first on SecurityWeek .SECURITYWEEK.COM
⚠️ VULNERABILITY DISCLOSURE 8[−]
29 DecFriday Squid Blogging: SqidsThey’re short unique strings : Sqids (pronounced “squids”) is an open-source library that lets you generate YouTube-looking IDs from numbers. These IDs are short, can be generated from a custom alphabet and are guaranteed to be collision-free. I haven’t du…SCHNEIER.COM
29 DecVulnerabilities in Google Kubernetes Engine Could Allow Cluster TakeoverTwo flaws in Google Kubernetes Engine could be exploited to escalate privileges and take over the Kubernetes cluster. The post Vulnerabilities in Google Kubernetes Engine Could Allow Cluster Takeover appeared first on SecurityWeek .SECURITYWEEK.COM
29 DecAlbanian Parliament and One Albania Telecom Hit by Cyber AttacksThe Assembly of the Republic of Albania and telecom company One Albania have been targeted by cyber attacks, the country’s National Authority for Electronic Certification and Cyber Security (AKCESK) revealed this week. “These infrastructures, under the legislation in force, are n…THEHACKERNEWS.COM
29 DecMicrosoft Disables Abused Application Installation ProtocolAttackers Have Been Exploiting App Installer to Evade Malware Defenses in Windows Microsoft has deactivated a tool designed to simplify the installation of Windows applications after hacking groups began exploiting the functionality to distribute malware loaders, leading to infec…DATABREACHTODAY.CO.UK
29 DecAI in 2024: The Top 10 Cutting Edge Social Engineering ThreatsThe year 2024 is shaping up to be a pivotal moment in the evolution of artificial intelligence (AI), particularly in the realm of social engineering. As AI capabilities grow exponentially, so too do the opportunities for bad actors to harness these advancements for more sophistic…KNOWBE4.COM
29 DecInfo-Stealing Malware Now Includes Google Session HijackingGoogle OAuth2 Vulnerability Being Actively Abused by Attackers, Researchers Warn A previously undiscovered critical exploit can allow threat actors to gain persistent, unauthorized access to Google services and connected accounts even after users have changed their passwords, cyb…DATABREACHTODAY.CO.UK
29 DecHospitals ask courts to force cloud storage firm to return stolen dataTwo not-for-profit hospitals in New York are seeking a court order to retrieve data stolen in an August ransomware attack that's now stored on the servers of a Boston cloud storage company. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 2[−]
29 DecWith Car Privacy Concerns Rising, Automakers May Be on Road to RegulationRegulators, particularly the California Privacy Protection Agency and the Federal Trade Commission, are starting to investigate and potentially take action against connected vehicle manufacturers for privacy violations.THERECORD.MEDIA
29 DecRussian Military Intelligence Blamed for Blitzkrieg HacksUkrainian Cyber Defenders Trace Government Agency Hits to Phishing Campaign Ukrainian cyber defenders report that fast-acting Russian military intelligence hackers have been targeting government agencies as well as organizations in Poland using backdoor malware tied to phishing l…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 16[−]
29 DecMicrosoft Disables MSIX App Installer Protocol Widely Used in Malware AttacksMicrosoft on Thursday said it’s once again disabling the ms-appinstaller protocol handler by default following its abuse by multiple threat actors to distribute malware. “The observed threat actor activity abuses the current implementation of the ms-appinstaller protoco…THEHACKERNEWS.COM
29 DecUpdate: Kroll Reveals FTX Customer Info Exposed in August Data BreachThe August data breach at Kroll exposed personal information of FTX bankruptcy claimants, including coin holdings and balances, making them potential targets for threat actors in the cryptocurrency market.BLEEPINGCOMPUTER.COM
29 DecDo the Casino Ransomware Attacks Make the Case to Pay?Experts caution that the decision to pay or not pay depends on various factors, including the type of data compromised, the availability of backups, the financial impact on the organization, and the sector in which the company operates.THEREGISTER.COM
29 DecMicrosoft Disables MSIX App Installer Protocol Widely Used in Malware AttacksMultiple financially motivated hacking groups have been observed using the App Installer service as an entry point for ransomware attacks, leveraging signed malicious MSIX app packages distributed via Microsoft Teams and malicious search engine ads.THEHACKERNEWS.COM
29 DecKimsuky Hackers Deploying AppleSeed, Meterpreter, and TinyNuke in Latest AttacksNation-state actors affiliated to North Korea have been observed using spear-phishing attacks to deliver an assortment of backdoors and tools such as AppleSeed, Meterpreter, and TinyNuke to seize control of compromised machines. South Korea-based cybersecurity company AhnLab attr…THEHACKERNEWS.COM
29 DecUpdate: Operational Halt at First American Financial Corporation, Subsidiary After CyberattackThe company is working to restore its operations and has notified regulatory authorities. Despite the disruption, the company is still able to close loans and accept payments.THECYBEREXPRESS.COM
29 DecOperations, Trading of Eagers Automotive Disrupted by CyberattackEagers Automotive, a vehicle dealer in Australia and New Zealand, has halted trading after being targeted in a cyberattack. The post Operations, Trading of Eagers Automotive Disrupted by Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
29 DecCyberattack Wave Targets Albanian Parliament, TelecomMobile Network Provider and National Flag Carrier Also Targeted Albania's Parliament and a telecom service provider faced cyberattacks on Christmas day, according to the Albanian National Authority for Electronic Certification and Cyber Security. Iranian hackers called Homeland J…DATABREACHTODAY.CO.UK
29 DecEagers Automotive Halts Stock Trading in Response to CyberattackThe extent of the cyber incident is still being determined, but external experts have been engaged to investigate, raising concerns about a potential data breach and exposure of sensitive financial information.BLEEPINGCOMPUTER.COM
29 DecEurope’s Largest Parking App Provider Informs Customers of Data BreachEasyPark says hackers stole European customer information, including partial IBAN or payment card numbers. The post Europe’s Largest Parking App Provider Informs Customers of Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
29 DecIranian Hackers Claim They Disrupted Albanian InstitutionsWave of Attacks Hits Parliament, Telecommunications Provider, National Flag Carrier Albania's Parliament and a telecommunications service provider faced online attacks on Christmas day, according to the Albanian National Authority for Electronic Certification and Cyber Security. …DATABREACHTODAY.CO.UK
29 DecGame Mod on Steam Breached to Push Password-Stealing MalwareThe Downfall fan expansion for the game Slay the Spire was breached on Christmas Day, distributing the Epsilon information stealer malware through the Steam update system.BLEEPINGCOMPUTER.COM
29 DecHere we go again: 2023’s badly handled data breachesLast year, we compiled a list of 2022’s most poorly handled data breaches looking back at the bad behavior of corporate giants when faced with hacks and breaches. That included everything from downplaying the real-world impact of spills of personal information and failing to answ…TECHCRUNCH.COM
29 DecComputer Systems at Massachusetts-Based Anna Jaques Hospital Compromised After CyberattackAnna Jaques Hospital's health record system was shut down due to a cyberattack, causing delays in receiving services and diverting ambulance arrivals. The hospital is working with cybersecurity professionals to investigate the attack.NEWBURYPORTNEWS.COM
29 DecHow One University Is Beefing Up Cyber Defenses, ProgramsEducational institutions are prime targets for ransomware and other cyberattacks due to their open nature and troves of sensitive data, requiring continuous investment in cyber defenses and strong security practices, said Steve Zuromski, CIO at Bridgewater State University in Mas…DATABREACHTODAY.CO.UK
29 DecThe Week in Ransomware - December 29th 2023 - LockBit targets hospitalsIt's been a quiet week, with even threat actors appearing to take some time off for the holidays. We did not see much research released on ransomware this week, with most of the news focusing on new attacks and LockBit affiliates increasingly targeting hospitals. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 11[−]
29 DecNew Medusa Stealer Attacking Users to Steal Login CredentialsWhile the world celebrated Christmas, the cybercrime underworld feasted on a different kind of treat: the release of Meduza 2.2, a significantly upgraded password stealer poised to wreak havoc on unsuspecting victims.  Cybersecurity researchers at Resecurity uncovered the de…GBHACKERS.COM
29 DecCERT-UA Uncovers New Malware Wave Distributing OCEANMAP, MASEPIE, STEELHOOKThe Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign orchestrated by the Russia-linked APT28 group to deploy previously undocumented malware such as OCEANMAP, MASEPIE, and STEELHOOK to harvest sensitive information. T…THEHACKERNEWS.COM
29 DecAI Is Scarily Good at Guessing the Location of Random PhotosWow : To test PIGEON’s performance, I gave it five personal photos from a trip I took across America years ago, none of which have been published online. Some photos were snapped in cities, but a few were taken in places nowhere near roads or other easily recognizable landm…SCHNEIER.COM
29 DecRussian Military Hackers Target Ukraine With New MASEPIE MalwareThe CERT-UA has issued a warning about a new phishing campaign orchestrated by Russian hackers known as APT28. The campaign targeted Ukraine between December 15 and 25, 2023, using phishing emails that tricked recipients into clicking on a link.BLEEPINGCOMPUTER.COM
29 DecPentagon Wants Feedback on Revised Cybersecurity Maturity Model Certification ProgramDoD is requesting public opinion on proposed changes to the Cybersecurity Maturity Model Certification program rules. The post Pentagon Wants Feedback on Revised Cybersecurity Maturity Model Certification Program appeared first on SecurityWeek .SECURITYWEEK.COM
29 DecYour KnowBe4 Fresh Content Updates from December 2023Check out the 36 new pieces of training content added in December, alongside the always fresh content update highlights, events and new features.KNOWBE4.COM
29 DecIn Other News: Ubisoft Hack, NASA Security Guidance, TikTok Requests iPhone PasscodeNoteworthy stories that might have slipped under the radar: Ubisoft investigating alleged hack, NASA releases security guidance, TikTok scares iPhone users. The post In Other News: Ubisoft Hack, NASA Security Guidance, TikTok Requests iPhone Passcode appeared first on SecurityWee…SECURITYWEEK.COM
29 DecOpenAI and Microsoft Face New York Times Copyright LawsuitMedia Giant Alleges 'Billions of Dollars in Statutory and Actual Damages' The New York Times is suing OpenAI and its chief backer Microsoft for copyright infringement, alleging that OpenAI used without permission "millions" of its copyrighted articles to train the large language …DATABREACHTODAY.CO.UK
29 DecDoug and Russ together again, one night only. - SWN VaultDoug and Russ return to the stage to talk about Living with AI in the coming years and some of the impacts. Russ is always interested in modern problems and AI is probably going to be one. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://s…YOUTUBE.COM
29 Dec44CON (@44CON@infosec.exchange)submitted by ashar to security_cpe 1 points | 0 comments https://infosec.exchange/@44CON/111664070676110400 This afternoon’s 44CON 2023 talk video is “ghidriff - Ghidra Binary Diffing Engine” with John McIntosh:INFOSEC.EXCHANGE
29 DecSeeking new mod(s) for this communitysubmitted by kersploosh to cybersecurity 2 points | 0 comments This community appears to have been abandoned by the current moderator. Neither account shows any activity for the past 6 months, nor has the user responded to DMs I sent via Lemmy and Matrix several weeks ago. Would …SH.ITJUST.WORKS
🌐 CYBER THREAT LANDSCAPE 1[−]
29 DecMalware abuses Google OAuth endpoint to ‘revive’ cookies, hijack accountsMultiple information-stealing malware families are abusing an undocumented Google OAuth endpoint named "MultiLogin" to restore expired authentication cookies and log into users' accounts, even if an account's password was reset. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 6[−]
29 DecCyber Security Today, Dec. 29, 2023 - Get cracking on your cybersecurity strategic planDon't have a cybersecurity strategic plan? Here's how to start building oneCYBERSECURITYTODAY.LIBSYN.COM
29 DecGoogle to Settle Class Action Lawsuit Alleging Incognito Mode Does Not Protect User PrivacyGoogle has reached a preliminary settlement in a class-action lawsuit accusing the company of deceiving users about their privacy while using the Incognito mode. The settlement comes after a nearly four-year legal battle.THERECORD.MEDIA
29 DecHappy 14th Birthday, KrebsOnSecurity!KrebsOnSecurity celebrates its 14th year of existence today! I promised myself this post wouldn't devolve into yet another Cybersecurity Year in Review. Nor do I wish to hold forth about whatever cyber horrors may await us in 2024. But I do want to thank you all for your continue…KREBSONSECURITY.COM