MATLOCK.CA
95Articles
10Categories
2024-01-11Date
🚨
CISA Urges Patching of Exploited SharePoint Server VulnerabilityCISA has added a critical Microsoft SharePoint Server flaw (CVE-2023-29357) to its Known Exploited Vulnerabilities catalog. The post CISA Urges Patching of Exploited SharePoint Server Vulnerability appeared first on SecurityWeek .
KEVSECURITYWEEK.COM — 11 Jan 2024
πŸ›
Cisco Fixes High-Risk Vulnerability Impacting Unity Connection Software
THEHACKERNEWS.COM — 11 Jan 2024
πŸ›
Actively Exploited Zero-Days in Ivanti VPN are Letting Hackers Backdoor Networks
KEVARSTECHNICA.COM — 11 Jan 2024
πŸ›
Chinese hackers exploit Ivanti VPN zero days for RCE attacks
KEVCSOONLINE.COM — 11 Jan 2024
πŸ›
New PoC Exploit for Apache OfBiz Vulnerability Poses Risk to ERP Systems
THEHACKERNEWS.COM — 11 Jan 2024
πŸ›
State-backed hackers are exploiting new Ivanti VPN zero-days β€” but no patches yet
TECHCRUNCH.COM — 11 Jan 2024
πŸ›
Juniper Networks Releases Security Bulletin for Junos OS and Junos OS Evolved
CISA.GOV — Thu, 11 Jan 24 1
πŸ›
Cisco Releases Security Advisory for Cisco Unity Connection
CISA.GOV — Thu, 11 Jan 24 1
πŸ›
Attackers deploy rootkits on misconfigured Apache Hadoop and Flink servers
CSOONLINE.COM — 11 Jan 2024
πŸ›
Microsoft shares script to update Windows 10 WinRE with BitLocker fixes
BLEEPINGCOMPUTER.COM — 11 Jan 2024
πŸ›
Chromium: CVE-2024-0333 Insufficient data validation in Extensions
MSRC.MICROSOFT.COM — 11 Jan 2024
πŸ›
CVE-2024-20675 Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
MSRC.MICROSOFT.COM — 11 Jan 2024
πŸ›
CVE-2023-48631 Adobe Systems Incorporated: CVE-2023-Improper Input Validation Denial of Service Vulnerability
MSRC.MICROSOFT.COM — 11 Jan 2024
πŸ›
CVE-2024-20709 Adobe Systems Incorporated: CVE-2024-20709 Javascript Implementation PDF Vulnerability
MSRC.MICROSOFT.COM — 11 Jan 2024
πŸ›
CVE-2024-21337 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
MSRC.MICROSOFT.COM — 11 Jan 2024
πŸ›
MiraclePtr: protecting users from use-after-free vulnerabilities on more platforms
SECURITY.GOOGLEBLOG.COM — 2024-01-11
⚠️
Chinese Hackers Exploit Zero-Day Flaws in Ivanti Connect Secure and Policy Secure
THEHACKERNEWS.COM — 11 Jan 2024
⚠️
Mandiant's X Account Was Hacked Using Brute-Force Attack
THEHACKERNEWS.COM — 11 Jan 2024
⚠️
Cisco Says Critical Unity Connection Bug Lets Attackers Get Root
BLEEPINGCOMPUTER.COM — 11 Jan 2024
⚠️
Security firm Mandiant says it didn’t have 2FA enabled on its hacked Twitter account
GRAHAMCLULEY.COM — 11 Jan 2024
⚠️
Thousands of WordPress Sites with Popup Builder Plugin Compromised by Balada Injector
SUCURI.NET — 11 Jan 2024
⚠️
Pharmacies Giving Patient Records to Police without Warrants
SCHNEIER.COM — 2024-01-11
⚠️
Cisco Patches Critical Vulnerability in Unity Connection Product
SECURITYWEEK.COM — 11 Jan 2024
⚠️
Mandiant Details How Its X Account Was Hacked
SECURITYWEEK.COM — 11 Jan 2024
⚠️
Mirai-Based NoaBot Launches a DDoS Attack on Linux Devices
GBHACKERS.COM — 11 Jan 2024
⚠️
Microsoft Fixes 48 Bugs In January Patch Tuesday, None Of Them Zero Days
PACKETSTORMSECURITY.COM — 11 Jan 2024
⚠️
Actively Exploited 0-Days In Ivanti VPN Are Letting Hackers Backdoor Networks
KEVPACKETSTORMSECURITY.COM — 11 Jan 2024
⚠️
A Vulnerability in Cisco Unity Connection Could Allow for Arbitrary Code Execution
CISECURITY.ORG — 11 Jan 2024
⚠️
Ivanti Connect Secure and Ivanti Policy Secure gateways zero-day vulnerabilities
CYBER.GC.CA — 2024-01-11
⚠️
CISA Releases Nine Industrial Control Systems Advisories
CISA.GOV — Thu, 11 Jan 24 1
⚠️
We're Old Now - PSW #812
YOUTUBE.COM — 2024-01-11
⚠️
Journey into the Immersive Frontier: Preliminary NIST Research on Cybersecurity and Privacy Standards for Immersive Technologies
NIST.GOV — 11 Jan 2024
⚠️
Bitwarden adds passkey support to log into web password vaults
BLEEPINGCOMPUTER.COM — 11 Jan 2024
⚠️
Suspected Chinese Hackers Exploit 2 Ivanti Zero-Days
DATABREACHTODAY.CO.UK — 2024-01-11
⚠️
Predicting GenAI Threats & Concerns + Pros & Cons of Building a Security Business Around Open Source
YOUTUBE.COM — 2024-01-11
⚠️
Breach Roundup: FTC Bans Data Broker From Sharing Locations
DATABREACHTODAY.CO.UK — 2024-01-11
⚠️
Framework discloses data breach after accountant gets phished
BLEEPINGCOMPUTER.COM — 11 Jan 2024
⚠️
The Pros and Cons of Building a Security Business Around Open Source - Ev Kontsevoy - ESW #345
YOUTUBE.COM — 2024-01-11
⚠️
Turkish Hackers Exploit MS SQL Servers to Deliver Ransomware
DATABREACHTODAY.CO.UK — 2024-01-11
⚠️
A peek behind the curtain: How are sock puppet accounts used in OSINT?
WELIVESECURITY.COM — 11 Jan 2024
πŸ“‹
Intel, AMD, Zoom, Splunk Release Patch Tuesday Security Advisories
SECURITYWEEK.COM — 11 Jan 2024
πŸ“’
UK: NCSC Publishes Practical Security Guidance for SMBs
INFOSECURITY-MAGAZINE.COM — 11 Jan 2024
πŸ“’
Finland warns of Akira ransomware wiping NAS and tape backup devices
BLEEPINGCOMPUTER.COM — 11 Jan 2024
πŸ“’
Finland Warns of Akira Ransomware Wiping NAS and Tape Backup Devices
BLEEPINGCOMPUTER.COM — 11 Jan 2024
πŸ“’
Apple security advisory (AV24-022)
CYBER.GC.CA — 2024-01-11
πŸ“’
[Control systems] Horner Automation security advisory (AV24-023)
CYBER.GC.CA — 2024-01-11
πŸ“’
[Control systems] Rapid Software security advisory (AV24-024)
CYBER.GC.CA — 2024-01-11
πŸ”₯
Twitter says, It’s not our fault the SEC’s account got hacked
GRAHAMCLULEY.COM — 11 Jan 2024
πŸ”₯
There is a Ransomware Armageddon Coming for Us All
THEHACKERNEWS.COM — 11 Jan 2024
πŸ”₯
HMG Healthcare Discloses Data Breach Affecting 40 Affiliated Nursing Facilities
SECURITYAFFAIRS.COM — 11 Jan 2024
πŸ”₯
Mandiant Details How Its X Account Was Hacked
PACKETSTORMSECURITY.COM — 11 Jan 2024
πŸ”₯
Threat Actors Increasingly Abusing GitHub for Malicious Purposes
THEHACKERNEWS.COM — 11 Jan 2024
πŸ”₯
Halara probes breach after hacker leaks data for 950,000 people
BLEEPINGCOMPUTER.COM — 11 Jan 2024
πŸ•΅οΈ
ISC Stormcast For Thursday, January 11th, 2024 https://isc.sans.edu/podcastdetail/8806, (Thu, Jan 11th)
ISC.SANS.EDU — 11 Jan 2024
πŸ•΅οΈ
The Evolution of Purple Teaming - Jared Atkinson - PSW #812
YOUTUBE.COM — 2024-01-11
πŸ•΅οΈ
Beware of Phishing Scams Disguised as Annual HR Tasks
COFENSE.COM — 11 Jan 2024
πŸ•΅οΈ
New NoaBot Botnet Spreads an Illicit Cryptominer on Linux Systems
THERECORD.MEDIA — 11 Jan 2024
πŸ•΅οΈ
Atomic Stealer Gets an Upgrade - Targeting Mac Users with Encrypted Payload
THEHACKERNEWS.COM — 11 Jan 2024
πŸ•΅οΈ
KnowBe4 Named a Leader in the Winter 2024 G2 Grid Report for Security Orchestration, Automation, and Response (SOAR)
KNOWBE4.COM — 11 Jan 2024
πŸ•΅οΈ
AI-Powered Misinformation is the World’s Biggest Short-Term Threat, Davos Report Says
SECURITYWEEK.COM — 11 Jan 2024
πŸ•΅οΈ
Coming Soon to a Network Near You: More Shadow IoT
SECURITYWEEK.COM — 11 Jan 2024
πŸ•΅οΈ
China-Linked Volt Typhoon Hackers Possibly Targeting Australian, UK Governments
SECURITYWEEK.COM — 11 Jan 2024
πŸ•΅οΈ
Vulnerabilities on Bosch Rexroth Nutrunners May Be Abused to Stop Production Lines, Tamper with Safety-Critical Tightenings
NOZOMINETWORKS.COM — 11 Jan 2024
πŸ•΅οΈ
Atomic Stealer Delivered Through Malicious Ads Via Google Search
GBHACKERS.COM — 11 Jan 2024
πŸ•΅οΈ
Cryptohack Roundup: It's Raining Phishing Scams on X
DATABREACHTODAY.CO.UK — 2024-01-11
πŸ•΅οΈ
Microsoft Lets Cloud Users Keep Personal Data Within Europe to Ease Privacy Fears
SECURITYWEEK.COM — 11 Jan 2024
πŸ•΅οΈ
Beware of "Get to Know Me" Surveys
KNOWBE4.COM — 11 Jan 2024
πŸ•΅οΈ
Microsoft Takes the Lead in Q4 2023 for Alarming Phishing Attempts
KNOWBE4.COM — 11 Jan 2024
πŸ•΅οΈ
FTC Issues Warning About the Dangers of QR Code-Based Scams
KNOWBE4.COM — 11 Jan 2024
πŸ•΅οΈ
Attackers' GitHub Abuse Poses Growing Risk, Researchers Warn
DATABREACHTODAY.CO.UK — 2024-01-11
πŸ•΅οΈ
Researchers Flag FBot Hacking Tool Hijacking Cloud, Payment Services
SECURITYWEEK.COM — 11 Jan 2024
πŸ•΅οΈ
[New Phishing Template]Β Formula 1 Exclusive: Gene Haas on Guenther Steiner's Departure
KNOWBE4.COM — 11 Jan 2024
πŸ•΅οΈ
Predicting GenAI Threats and Concerns in 2024 - Greg Notch - ESW #345
YOUTUBE.COM — 2024-01-11
🌐
Atomic Stealer Rings in the New Year With Updated Version
MALWAREBYTES.COM — 11 Jan 2024
🌐
Black Basta-Affiliate Spreads Pikabot
CYWARE.COM — 11 Jan 2024
🌐
Trend Micro Defends FIFA World Cup from Cyber Threats
TRENDMICRO.COM — 11 Jan 2024
πŸŽ™οΈ
Smashing Security podcast #354: Chuck Norris and the fake CEO, artificial KYC, and an Airbnb scam
GRAHAMCLULEY.COM — 11 Jan 2024
πŸŽ™οΈ
New YouTube Video Series: Hacker Tools Origin Stories, (Thu, Jan 11th)
ISC.SANS.EDU — 11 Jan 2024
πŸŽ™οΈ
Transatlantic Cable podcast episode 329 looks news around Stuxnet, how journalists and creative artists are suing OpenAI and much more! | Kaspersky official blog
KASPERSKY.COM — 11 Jan 2024
πŸ“‘
Why you should start the year with a digital cleanup | Kaspersky official blog
KASPERSKY.COM — 11 Jan 2024
πŸ“‘
Top LLM Vulnerabilities and How to Mitigate the Associated Risk
HELPNETSECURITY.COM — 11 Jan 2024
πŸ“‘
ExtraHop Raises $100M in Growth Capital
FINSMES.COM — 11 Jan 2024
πŸ“‘
French Hacker From β€˜ShinyHunters’ Group Sentenced to Three Years in US Prison
THERECORD.MEDIA — 11 Jan 2024
πŸ“‘
Fidelity National Now Says 1.3M Customers Had Their Data Stolen
PACKETSTORMSECURITY.COM — 11 Jan 2024
πŸ“‘
New Python-based FBot Hacking Toolkit Aims at Cloud and SaaS Platforms
THEHACKERNEWS.COM — 11 Jan 2024
πŸ“‘
Chertoff Group Affiliate Completes Trustwave Acquisition
DARKREADING.COM — 11 Jan 2024
πŸ“‘
New Python-based FBot Hacking Toolkit Aims at Cloud and SaaS Platforms
THEHACKERNEWS.COM — 11 Jan 2024
πŸ“‘
A geofence warrant typo cast a location dragnet spanning two miles over San Francisco
TECHCRUNCH.COM — 11 Jan 2024
πŸ“‘
Top Takeaways From the Hijacking of Mandiant's X Account
DATABREACHTODAY.CO.UK — 2024-01-11
πŸ“‘
Build Cyber Resilience with Distributed Energy Systems
TRENDMICRO.COM — 11 Jan 2024
πŸ“‘
New Balada Injector campaign infects 6,700 WordPress sites
BLEEPINGCOMPUTER.COM — 11 Jan 2024
πŸ“‘
Microsoft testing Windows 11 USB 80Gbps support, Copilot on login
BLEEPINGCOMPUTER.COM — 11 Jan 2024
πŸ“‘
Over 150k WordPress sites at takeover risk via vulnerable plugin
BLEEPINGCOMPUTER.COM — 11 Jan 2024
πŸ“‘
How the Merck Case Shapes the Future of Cyber Insurance
DATABREACHTODAY.CO.UK — 2024-01-11
πŸ“‘
Major T-Mobile outage takes down account access, mobile app
BLEEPINGCOMPUTER.COM — 11 Jan 2024