81Articles
6Categories
2024-01-04Date
⚠️ VULNERABILITY DISCLOSURE 20[−]
4 JanNew risk management framework helps with SEC mandate complianceIn a landmark enforcement action that has become a transformational moment for CISOs and corporate cybersecurity practices, the US Securities and Exchange Commission (SEC) charged the SolarWinds Corporation and its CISO, Timothy Brown , with fraud and financial disclosure failure…CSOONLINE.COM
4 JanWireshark 4.2.1 Released: What’s New!Wireshark is a popular open-source network protocol analyzer that allows users to inspect and capture data on a network in real time. It enables detailed examination of network traffic for the following purposes:- Several key factors make Wireshark one of the leading network pack…GBHACKERS.COM
4 JanUpdate: Nearly 11 Million SSH Servers Vulnerable to New Terrapin AttacksAttackers need to be in an adversary-in-the-middle position to intercept and modify the handshake exchange, making network compromise a key factor in executing the Terrapin attack.BLEEPINGCOMPUTER.COM
4 JanNew Open-Source Tool for Investigating Google Drive File Stream’s Disk Forensic ArtifactsDriveFS Sleuth automates the investigation of Google Drive File Stream disk artifacts. The tool can parse the disk artifacts and build a filesystem tree-like structure enumerating the synchronized files along with their respective properties.HELPNETSECURITY.COM
4 JanUAC-0050 Group Using New Phishing Tactics to Distribute Remcos RATThe threat actor known as UAC-0050 is leveraging phishing attacks to distribute Remcos RAT using new strategies to evade detection from security software. "The group's weapon of choice is Remcos RAT, a notorious malware for remote surveillance and control, which has been at the f…THEHACKERNEWS.COM
4 JanActive Directory Infiltration Methods Employed by Cybercriminals – ASEC ReportActive Directory infiltration methods exploit vulnerabilities or weaknesses in Microsoft’s Active Directory to gain unauthorized access. Active Directory is a central component in many organizations, making it a valuable target for attackers seeking access to:- While succes…GBHACKERS.COM
4 JanBeware: 3 Malicious PyPI Packages Found Targeting Linux with Crypto MinersThree new malicious packages have been discovered in the Python Package Index (PyPI) open-source repository with capabilities to deploy a cryptocurrency miner on affected Linux devices. The three harmful packages, named modularseven, driftme, and catme, attracted a total of 431 d…THEHACKERNEWS.COM
4 JanNew iPhone Exploit Uses Four Zero-DaysKaspersky researchers are detailing “an attack that over four years backdoored dozens if not thousands of iPhones, many of which belonged to employees of Moscow-based security firm Kaspersky.” It’s a zero-click exploit that makes use of four iPhone zero-days. Th…SCHNEIER.COM
4 JanUpdate: Estes Refuses to Pay Off Ransomware Crew, Says Data StolenThe company chose not to pay the ransom demanded by the hackers, aligning with the FBI's recommendation, but the specific details of the attack and the stolen data remain undisclosed.THEREGISTER.COM
4 JanThreat Actor Demands $1M for Remote Command Injection Vulnerability in Cisco ASAThe sale of this vulnerability poses significant risks, including network disruption, data compromise, and financial and reputational damage for organizations reliant on Cisco ASA.THECYBEREXPRESS.COM
4 JanSonicWall buys up SSE startup to accelerate SASE offeringsSonicWall has acquired Banyan Security, a secure service edge (SSE) vendor, in a bid to round out the secure access service edge (SASE) offerings on its cloud security platform with fresh zero trust security components,. The acquisition will help small businesses looking to repla…CSOONLINE.COM
4 JanFree Decryptor Tool Released for the Black Basta RansomwareA vulnerability in the encryption algorithm used by the Black Basta ransomware has led researchers to develop a free decryptor tool. Active since April 2022, the Black Basta ransomware group employs a double extortion strategy, encrypting the vital servers and sensitive data of t…GBHACKERS.COM
4 JanStronger together: Creating a cyber-secure communityRansomware activity continues to threaten organizations and people while breach attempts are becoming more sophisticated and targeted - due largely to an increase in Ransomware-as-a-Service (RaaS) operations. The reality is that in an interconnected world, organizations can't ful…CSOONLINE.COM
4 JanThe MVPs of the APT gameIn an increasingly interconnected digital landscape, the persistent and sophisticated nature of cyber threats poses an unrelenting challenge to organizations worldwide. As technology advances, so do the tactics of those seeking to exploit its vulnerabilities. Among these threats,…CSOONLINE.COM
4 JanZeppelin ransomware source code sold for $500 on hacking forumA threat actor announced on a cybercrime forum that they sold the source code and a cracked version of the Zeppelin ransomware builder for just $500. [...]BLEEPINGCOMPUTER.COM
4 JanCISA Releases Three Industrial Control Systems AdvisoriesCISA released three Industrial Control Systems (ICS) advisories on January 4, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-004-01 Rockwell Automation FactoryTalk Activation ICSA-24-004-02 M…CISA.GOV
4 JanBreach Roundup: DOJ Fines XCast $10M for Illegal RobocallsAlso: Mandiant X Account Hijacked in Cryptocurrency Scam This week, hackers took over Mandiant's X account, authorities charged a Nigerian hacker with stealing $7.5 million from charities, the DOJ fined XCast $10 million for illegal robocalls, and attackers exploited an SMTP smug…DATABREACHTODAY.CO.UK
4 JanIvanti warns critical EPM bug lets hackers hijack enrolled devicesIvanti fixed a critical remote code execution (RCE) vulnerability in its Endpoint Management software (EPM) that can let unauthenticated attackers hijack enrolled devices or the core server. [...]BLEEPINGCOMPUTER.COM
4 JanPractice Fined $160K for 6 'Right of Access' ComplaintsSettlement Is HHS OCR's 46th Enforcement Action Based on Health Record Complaints It's a new year, but federal regulators are beating an old HIPAA drum: The Department of Health and Human Services has hit a New Jersey medical practice with a $160,000 settlement in the agency's 46…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 7[−]
4 JanThree Ways To Supercharge Your Software Supply Chain SecuritySection four of the "Executive Order on Improving the Nation’s Cybersecurity" introduced a lot of people in tech to the concept of a “Software Supply Chain” and securing it. If you make software and ever hope to sell it to one or more federal agencies, you have to pay a…THEHACKERNEWS.COM
4 JanCyber Security Today, Jan 3, 3024 - Prepare for upcoming privacy legislationThis episode reports on Canadian and American privacy bills before legislatures, ransomware news and moreCYBERSECURITYTODAY.LIBSYN.COM
4 JanCryptohack Roundup: Orbit Chain's $81M New Year's Eve HackAlso: Crypto Hack Losses in 2023 Decreased by Over 50% This week, Orbit Chain lost $81 million in a New Year's Eve hack, Indonesian police shuttered bitcoin mining operations, dYdX named its attacker, $324,000 users fell victim to 2023 crypto phishing scams, Singapore's prime min…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 22[−]
4 JanMandiant's Twitter Account Restored After Six-Hour Crypto Scam HackAmerican cybersecurity firm and Google Cloud subsidiary Mandiant had its X (formerly Twitter) account compromised for more than six hours by an unknown attacker to propagate a cryptocurrency scam. As of writing, the account has been restored on the social media platform…THEHACKERNEWS.COM
4 JanMandiant’s Account on X Hacked to Push Cryptocurrency ScamThe Twitter account of cybersecurity firm Mandiant, which is owned by Google, was hacked and used to promote a cryptocurrency scam. The attacker impersonated the Phantom crypto wallet and shared a fake website offering free tokens.BLEEPINGCOMPUTER.COM
4 JanNigerian Hacker Arrested for Stealing $7.5M From US CharitiesThe fraud scheme involved unauthorized access to email accounts, impersonating employees, and tricking one charity into transferring funds to accounts controlled by the attacker.BLEEPINGCOMPUTER.COM
4 JanUkraine Says Russia Hacked Web Cameras to Spy on Targets in KyivUkraine's security officers have discovered that Russian intelligence hacked into surveillance cameras in Kyiv to gain remote access and stream sensitive footage, potentially aiding in missile strikes against the city.THERECORD.MEDIA
4 JanRansomware Group Steals Australian Courts' Video RecordingsHackers Lock Up Recordings of Court Hearings to Extort Victoria's Court System The court system of Victoria said it had experienced a serious cybersecurity incident in late 2023 that gave hackers access to video recordings of proceedings at multiple courts, including the Supreme …DATABREACHTODAY.CO.UK
4 JanConsumers Prepared to Ditch Brands After Cybersecurity IssuesIn 2023, businesses have been hit with 800,000 cyberattacks, over 60,000 of which were DDoS attacks and 4,000 falling victim to ransomware, according to a report by Vercara.HELPNETSECURITY.COM
4 JanHacked Mandiant X Account Abused for Cryptocurrency TheftMandiant’s account on X, formerly Twitter, was hacked and used to lure users to a cryptocurrency phishing site. The post Hacked Mandiant X Account Abused for Cryptocurrency Theft appeared first on SecurityWeek .SECURITYWEEK.COM
4 JanRIPE Account Hacking Leads to Major Internet Outage at Orange SpainOrange Spain’s internet went down for several hours after its RIPE account was hacked, likely after malware stole the credentials. The post RIPE Account Hacking Leads to Major Internet Outage at Orange Spain appeared first on SecurityWeek .SECURITYWEEK.COM
4 JanFour Cyber Criminals Convicted of Spreading ChatGPT-Assisted RansomwareFour Chinese cybercriminals were taken into custody after using ChatGPT to create ransomware. The lawsuit is the first of its sort in China, where OpenAI’s popular chatbot is not legally available, and Beijing has been tightening down on foreign AI. On Thursday, the state-r…GBHACKERS.COM
4 Jan4.5 Million Individuals Affected by Data Breach at HealthECHealthEC says personal information received from business partners was compromised in a July 2023 data breach. The post 4.5 Million Individuals Affected by Data Breach at HealthEC appeared first on SecurityWeek .SECURITYWEEK.COM
4 JanEstes Express Lines Says Personal Data Stolen in Ransomware AttackEstes Express Lines is informing over 21,000 individuals that their personal information was stolen in a ransomware attack. The post Estes Express Lines Says Personal Data Stolen in Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
4 JanData Breach at Healthcare Tech Firm Hits 4.5 Million PatientsThe breach impacted 17 healthcare service providers and state-level health systems, including Corewell Health, HonorHealth, and the State of Tennessee's Division of TennCare.BLEEPINGCOMPUTER.COM
4 JanLaw firm that handles data breaches was hit by data breachAn international law firm that works with companies affected by security incidents has experienced its own cyberattack that exposed the sensitive health information of hundreds of thousands of data breach victims. San Francisco-based Orrick, Herrington & Sutcliffe said last w…TECHCRUNCH.COM
4 Jan2023 End-of-Year Wrapup - ESW VaultThis is a special episode of ESW: our year-end wrapup for 2023. Want to make sure you didn't miss any big stories in 2023? This is the episode to check out! In under an hour, we'll summarize 2023, covering things like: 1. our mindset coming into 2023 from 2022 2. how 2023 kicked …YOUTUBE.COM
4 JanLegendas.TV - 3,869,181 breached accountsIn October 2017, the now defunct Brazilian service for retrieving subtitles in Portuguese Legendas.TV suffered a data breach that exposed nearly 4M customer records . The impacted data included names, usernames, email and IP addresses and unsalted SHA-1 hashes.HAVEIBEENPWNED.COM
4 JanRussian hackers wiped thousands of systems in KyivStar attackThe Russian hackers behind a December breach of Kyivstar, Ukraine's largest telecommunications service provider, have wiped all systems on the telecom operator's core network. [...]BLEEPINGCOMPUTER.COM
4 JanRussian Sandworm Group Spied on Kyivstar Networks for MonthsNation-State Hackers Blamed for Severing Communications to 24 Million Citizens Ukraine's security intelligence chief said Russian hackers had been responsible for severing internet access and mobile communications from telecom operator Kyivstar in December, after compromising the…DATABREACHTODAY.CO.UK
4 JanHospitals Sue LockBit, Ask Cloud Firm to Return Stolen DataNY Hospital Group Claims Cybercriminals Kept Data on Boston-Based Firm's Servers An upstate New York hospital group has filed a lawsuit against cybercriminal group LockBit in a legal maneuver aimed at forcing a Boston-based cloud services firm to turn over patient data LockBit ha…DATABREACHTODAY.CO.UK
4 JanCybersecurity firm Mandiant has its Twitter account hacked to promote cryptocurrency scamGoogle-owned cybersecurity company Mandiant has found itself in the awkward position of having to wrestle back control of its Twitter account, after it was hijacked by scammers yesterday.GRAHAMCLULEY.COM
🕵️ THREAT INTELLIGENCE 12[−]
4 JanISC Stormcast For Thursday, January 4th, 2024 https://isc.sans.edu/podcastdetail/8796, (Thu, Jan 4th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
4 Jan[Live Demo] Ridiculously Easy Security Awareness Training and PhishingOld-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.KNOWBE4.COM
4 JanBeyond Protocols: How Team Camaraderie Fortifies SecurityThe most efficient and effective teams have healthy and constructive cultures that encourage team members to go above and beyond the call of duty. The post Beyond Protocols: How Team Camaraderie Fortifies Security appeared first on SecurityWeek .SECURITYWEEK.COM
4 JanHow AI Is Transforming Payment Risk and Fraud at GenpactGenpact VP of Payments Kristine Demareski on Harnessing Generative AI There are many potential uses for generative AI at financial services firms, but few are more promising than those in the areas of risk and fraud, said Kristine Demareski, vice president of payments at Genpact,…DATABREACHTODAY.CO.UK
4 JanIT and OT cybersecurity: A holistic approachIn the realm of cybersecurity, both information technology (IT) and operational technology (OT) present distinct challenges that organizations must navigate. Ensuring the security of these distinct domains is paramount to bolstering your overall cyber resilience. By following the…SECURITYINTELLIGENCE.COM
4 JanGoogle Patches Six Vulnerabilities With First Chrome Update of 2024Google has released a Chrome 120 update to resolve six vulnerabilities, including four reported by external researchers. The post Google Patches Six Vulnerabilities With First Chrome Update of 2024 appeared first on SecurityWeek .SECURITYWEEK.COM
4 JanAirbus Offering to Buy Atos Cybersecurity Unit for Up to $2 BillionFrench aerospace giant Airbus could acquire Atos’ cybersecurity unit for up to $2 billion, but discussions are at a preliminary stage. The post Airbus Offering to Buy Atos Cybersecurity Unit for Up to $2 Billion appeared first on SecurityWeek .SECURITYWEEK.COM
4 JanGoogle Chrome Use After Free Flaw Let Attacker Hijack BrowserThe latest stable channel update for Google Chrome, version 120.0.6099.199 for Mac and Linux and 120.0.6099.199/200 for Windows, is now available and will shortly be rolled out to all users. Furthermore, the Extended Stable channel has been updated to 120.0.6099.200 for Windows a…GBHACKERS.COM
4 JanWireshark updates, (Thu, Jan 4th)The Wireshark Foundation has released 3 new versions of its popular network protocol analyzer. They are versions 4.2.1 &#;x26;#;xc2;&#;x26;#;xa0;(which fixes 5 CVEs and a number of other bugs), 4.0.12 &#;x26;&#…ISC.SANS.EDU
4 JanMimecast Acquires User Education Startup Elevate SecurityElevate Security raised $18.3 million in venture capital financing and scored investments from the likes of Cisco and CrowdStrike. The post Mimecast Acquires User Education Startup Elevate Security appeared first on SecurityWeek .SECURITYWEEK.COM
4 JanFIRSTCON 23submitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/6f5af6d1-6120-4bd4-8adf-005ed695fb97.png FIRSTCON 23 Playlist FIRSTCON 23 ProgramINFOSEC.PUB
4 JanAccenture Buys 6point6 to Expand Cyber Portfolio in UKUK Tech Firm Specializes in Cloud, Data and Cybersecurity Solutions Accenture has finalized its acquisition of U.K. tech consultancy firm 6point6, which specializes in cybersecurity, cloud and digital transformation solutions. The acquisition will add 6point6's 400 staffers to Ac…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 3[−]
4 JanUAC-0050 Group Using New Phishing Tactics to Distribute Remcos RATThe malware is being distributed through LNK files that collect information about antivirus products and execute an HTML application. This leads to the download of two files from a remote server, which establish persistence and launch the Remcos RAT.THEHACKERNEWS.COM
4 JanSoftware supply chain security remains a challenge for most enterprisesLog4j, maybe more than any other recent security issue in recent years, thrust software supply chain security into the limelight, with even the White House weighing in. But even though virtually every technology executive is at least aware of the importance of creating a trustwor…TECHCRUNCH.COM
4 JanCryptocurrency wallet CEO loses $125,000 in wallet-draining scamNo one is too big, too clever, too security-savvy to avoid being duped - because it's only human to make a mistake and screw up. Read my article on the Tripwire State of Security blog.TRIPWIRE.COM
📡 INFOSEC NEWS 17[−]
4 JanAtos Confirms Talks of Cyber Sell-off to Airbus are UnderwayAirbus is expected to offer between €1.5 to 1.8 billion (~$1.64 to 1.97 billion) for Atos' Big Data & Security division, in line with its goal of growing its cybersecurity arm and enhancing its defense and security portfolio.THEREGISTER.COM
4 JanFireside Chat with Measured InsuranceComparing trends observed in 2023 and predictions for 2024SOPHOS.COM
4 Jan'everything' blocks devs from removing their own npm packagesOver the holidays, the npm package registry was flooded with more than 3,000 packages, including one called "everything," and others named a variation of the word. These 3,000+ packages make it impossible for all npm authors to unpublish their packages from the registry. [...]BLEEPINGCOMPUTER.COM
4 JanFTC Soliciting Contest Submissions to Help Tackle Voice Cloning TechnologyThe FTC is seeking multidisciplinary approaches to prevent unauthorized use of voice cloning, improve real-time detection, and provide consumers with tools to identify cloned voices in audio clips.THERECORD.MEDIA
4 JanHacker Hijacks Orange Spain RIPE Account to Cause BGP HavocThe hacker changed the AS number associated with Orange Spain's IP addresses and enabled an invalid RPKI configuration, causing the IP addresses to no longer be announced properly.BLEEPINGCOMPUTER.COM
4 JanLastPass Now Requires 12-Character Master Passwords for Better SecurityLastPass, a popular password management solution, is now requiring customers to use complex master passwords with a minimum of 12 characters to enhance account security. Previously, users had the option to use weaker passwords.BLEEPINGCOMPUTER.COM
4 JanCloud-Native Cybersecurity Startup Aqua Security Raises $60M and Remains a UnicornThe Series E funding round was led by Evolution Equity Partners, with participation from existing investors Lightspeed Venture Partners, Insight Partners, and StepStone Group.TECHCRUNCH.COM
4 JanThree Malicious PyPI Packages Found Targeting Linux Systems with Crypto MinersThe packages were named modularseven, driftme, and catme and received a total of 431 downloads before being removed. The packages contained a CoinMiner executable that was deployed on the affected devices.THEHACKERNEWS.COM
4 JanSentinelOne Acquires PingSafe to Expand Cloud Security CapabilitiesBy integrating PingSafe's capabilities into SentinelOne's Singularity Platform, companies will have access to a unified, best-of-breed security platform for their entire cloud footprint.HELPNETSECURITY.COM
4 JanFTC offers $25,000 prize for detecting AI-enabled voice cloningThe U.S. Federal Trade Commission (FTC) has started accepting submissions for its Voice Cloning Challenge, a public competition with a $25,000 top prize for ideas that protect consumers from the danger of AI-enabled voice cloning for fraudulent activity. [...]BLEEPINGCOMPUTER.COM
4 JanHackers hijack govt and business accounts on X for crypto scamsHackers are increasingly targeting verified accounts on X (formerly Twitter) belonging to government and business profiles and marked with 'gold' and 'grey' checkmarks to promote cryptocurrency scams. [...]BLEEPINGCOMPUTER.COM
4 JanLost and found: How to locate your missing devices and moreLosing your keys, your wallet – or anything else, really – can be a pain, but there is a wide world of trackers that can help you locate your missing things – with awesome accuracyWELIVESECURITY.COM