🚨 CISA KEV 2[−]
16 Jan KEVCISA and FBI Release Known IOCs Associated with Androxgh0st MalwareToday, CISA and the Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory (CSA), Known Indicators of Compromise Associated with Androxgh0st Malware , to disseminate known indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) associ…CISA.GOV
16 Jan KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2018-15133 Laravel Deserialization of Untrusted Data Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber ac…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
16 Jan KEVPatched Windows SmartScreen bug actively exploited in Phemedrone infectionsA Microsoft Defender SmartScreen vulnerability patched in November has found fresh active exploitation in a Phemedrone information-stealing malware campaign, according to cybersecurity research and development company Trend Micro. The critical vulnerability, which is tracked as C…CSOONLINE.COM
16 JanScans for Ivanti Connect "Secure" VPN Vulnerability (CVE-2023-46805, CVE-2024-21887), (Tue, Jan 16th)Last week, Volexity published a blog describing two vulnerabilities in Ivanti&#;x26;#;39;s Connect "Secure" VPN [1]. These vulnerabilities have been exploited in limited, targeted attacks. At this point, Ivanti released a configuration workar…ISC.SANS.EDU
16 JanHackers begin mass exploiting Ivanti VPN zero-day flawsMalicious hackers have begun mass-exploiting two critical zero-day vulnerabilities in Ivanti’s widely-used corporate VPN appliance. That’s according to cybersecurity company Volexity, which first reported last week that China state-backed hackers are exploiting the two unpatched …TECHCRUNCH.COM
16 JanGoogle Warns of Chrome Browser Zero-Day Being ExploitedThe exploited zero-day, tagged as CVE-2024-0519, is described as an out-of-bounds memory access issue in the V8 JavaScript engine. The post Google Warns of Chrome Browser Zero-Day Being Exploited appeared first on SecurityWeek .SECURITYWEEK.COM
16 JanVMware patches critical access control vulnerability in Aria AutomationVMware has released updates for Aria Automation, its multi-cloud infrastructure automation platform for public, private and hybrid clouds, to fix a critical vulnerability that could allow authenticated attackers to access remote organizations and workflows. VMware Cloud Foundatio…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 27[−]
16 JanHackers Weaponize Windows Flaw to Deploy Crypto-Siphoning Phemedrone StealerThreat actors have been observed leveraging a now-patched security flaw in Microsoft Windows to deploy an open-source information stealer called Phemedrone Stealer. “Phemedrone targets web browsers and data from cryptocurrency wallets and messaging apps such as Telegram, Ste…THEHACKERNEWS.COM
16 JanIvanti Connect Secure VPN Exploitation Goes Globalsubmitted by omgjurg to netsec 1 points | 0 comments https://www.volexity.com/blog/2024/01/15/ivanti-connect-secure-vpn-exploitation-goes-global/VOLEXITY.COM
16 JanResearchers Uncover Major Surge in Global Botnet ActivityThe surge in activity was attributed to the use of cheap or free cloud and hosting servers by attackers to create botnet launch pads. These new botnets focused on scanning global internet ports and showed signs of potential email server exploits.INFOSECURITY-MAGAZINE.COM
16 JanThe OWASP AI Exchange: an open-source cybersecurity guide to AI componentsAs cyber practitioners scramble to upskill themselves on the topic of artificial intelligence (AI) security and their organizations quickly adopt AI tools, platforms, applications, and services, various resources are emerging in the industry to help practitioners process the ever…CSOONLINE.COM
16 JanOver 178K SonicWall Firewalls Vulnerable to DoS, Potential RCE AttacksAttackers can exploit these vulnerabilities to force affected firewalls into maintenance mode, impacting their standard functionality and VPN access to corporate networks.BLEEPINGCOMPUTER.COM
16 JanGovernment, Military Targeted as Widespread Exploitation of Ivanti Zero-Days BeginsThe recently disclosed Ivanti VPN zero-days have been exploited to hack at least 1,700 devices, including government, telecoms, defense, and tech. The post Government, Military Targeted as Widespread Exploitation of Ivanti Zero-Days Begins appeared first on SecurityWeek .SECURITYWEEK.COM
16 JanShmooCon to take its final bow in 2025This year’s annual ShmooCon in Washington, DC, got off the ground with some surprising news: Next year will be the last for this popular and beloved hacker conference. Or, as the event’s organizers, husband and wife Bruce and Heidi Potter, heads of conference owner Shmoo Grou…CSOONLINE.COM
16 JanPixieFail: Nine vulnerabilities in Tianocore's EDK II IPv6 network stack.This blog post provides details about nine vulnerabilities affecting the IPv6 network protocol stack of EDK II, TianoCore's open source reference implementation of UEFI.QUARKSLAB.COM
16 JanDOD Unveils First-Ever National Defense Industrial StrategyThe National Defense Industrial Strategy focuses on resilient supply chains, workforce readiness, flexible acquisitions, and economic deterrence to improve defense industrial ecosystem.BANKINFOSECURITY.COM
16 JanRemotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE ImplementationQuarkslab finds serious, remotely exploitable vulnerabilities in EDK II, the de-facto open source reference implementation of the UEFI spec. The post Remotely Exploitable ‘PixieFail’ Flaws Found in Tianocore EDK II PXE Implementation appeared first on SecurityWeek .SECURITYWEEK.COM
16 JanRemote Code Execution Vulnerability Found in Opera File Sharing FeatureA vulnerability in Opera browser’s file sharing feature My Flow could be exploited for remote code execution. The post Remote Code Execution Vulnerability Found in Opera File Sharing Feature appeared first on SecurityWeek .SECURITYWEEK.COM
16 Jan180k Internet-Exposed SonicWall Firewalls Vulnerable to DoS Attacks, Possibly RCETwo DoS vulnerabilities patched in 2022 and 2023 haunt nearly 180,000 internet-exposed SonicWall firewalls. The post 180k Internet-Exposed SonicWall Firewalls Vulnerable to DoS Attacks, Possibly RCE appeared first on SecurityWeek .SECURITYWEEK.COM
16 JanVMware Urges Customers to Patch Critical Aria Automation VulnerabilityAria Automation is affected by a critical vulnerability that could be exploited to gain access to remote organizations and workflows. The post VMware Urges Customers to Patch Critical Aria Automation Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
16 JanUpdate: Cloud Vendor Returns Stolen Hospital DataA cloud services firm returned patient data stolen in a ransomware attack by the LockBit gang to a New York hospital alliance. The hospitals had sued LockBit as a legal maneuver to force the storage firm to return the data.BANKINFOSECURITY.COM
16 JanThree Ways to Combat Rising OAuth SAAS AttacksOAuth attacks are on the rise, and organizations must implement strong access controls, fortify identity security for user accounts, and monitor third-party app activity to prevent unauthorized access to SaaS resources.HELPNETSECURITY.COM
16 JanAlert: Over 178,000 SonicWall Firewalls Potentially Vulnerable to Exploits - Act NowOver 178,000 SonicWall firewalls exposed over the internet are exploitable to at least one of the two security flaws that could be potentially exploited to cause a denial-of-service (DoS) condition and remote code execution (RCE). “The two issues are fundamentally the same but ex…THEHACKERNEWS.COM
16 JanAtlassian warns of critical RCE flaw in older Confluence versionsAtlassian Confluence Data Center and Confluence Server are vulnerable to a critical remote code execution (RCE) vulnerability that impacts versions released before December 5, 2023, including out-of-support releases. [...]BLEEPINGCOMPUTER.COM
16 JanThe Dual Role AI Plays in Cybersecurity: How to Stay AheadAI presents significant advantages for organizations, but it's also being exploited to amplify and intensify cyberattacks. Learn more from Outpost24 about how hackers are harnessing the power of AI. [...]BLEEPINGCOMPUTER.COM
16 JanVulnerabilities Expose PAX Payment Terminals to HackingVulnerabilities in Android-based PoS terminals from PAX can be exploited to downgrade bootloaders, execute arbitrary code. The post Vulnerabilities Expose PAX Payment Terminals to Hacking appeared first on SecurityWeek .SECURITYWEEK.COM
16 JanCISA Releases Two Industrial Control Systems AdvisoriesCISA released two Industrial Control Systems (ICS) advisories on January 16, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-016-01 SEW-EURODRIVE MOVITOOLS MotionStudio ICSA-24-016-02 Integrat…CISA.GOV
16 JanPixieFail flaws impact PXE network boot in enterprise systemsA set of nine vulnerabilities, collectively called 'PixieFail,' impact the IPv6 network protocol stack of Tianocore's EDK II, the open-source reference implementation of the UEFI specification widely used in enterprise computers and servers. [...]BLEEPINGCOMPUTER.COM
16 Jan KEVGoogle fixes first actively exploited Chrome zero-day of 2024Google has released security updates to fix the first Chrome zero-day vulnerability exploited in the wild since the start of the year. [...]BLEEPINGCOMPUTER.COM
16 Jan KEVCitrix warns of new Netscaler zero-days exploited in attacksCitrix urged customers on Tuesday to immediately patch Netscaler ADC and Gateway appliances exposed online against two actively exploited zero-day vulnerabilities. [...]BLEEPINGCOMPUTER.COM
16 JanGitHub rotates keys to mitigate impact of credential-exposing flawGitHub rotated keys potentially exposed by a vulnerability patched in December that could let attackers access credentials within production containers via environment variables. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 11[−]
16 JanCase Study: The Cookie Privacy Monster in Big Global RetailExplore how an advanced exposure management solution saved a major retail industry client from ending up on the naughty step due to a misconfiguration in its cookie management policy. This wasn’t anything malicious, but with modern web environments being so complex, mistakes can …THEHACKERNEWS.COM
16 JanYou want the CISO Title & Pay? Responsibility Comes Also! - Malcolm Harkins - CSP #157Integrity & Materiality. Get them wrong, you jeopardize your organization, its shareholders, possibly customers, as well as yourself. Join us as we discuss CISO role and accountability, Geopolitics, SEC Regulation and materiality, AI Impact, and seismic changes occurring in the p…YOUTUBE.COM
16 JanFBI: Androxgh0st malware botnet steals AWS, Microsoft credentialsCISA and the FBI warned today that threat actors using Androxgh0st malware are building a botnet focused on cloud credential theft and using the stolen information to deliver additional malicious payloads. [...]BLEEPINGCOMPUTER.COM
16 JanWhite House Says Agencies On Track to Meet January AI GoalsOfficial Says Administration Taking ‘Aggressive Set of Actions’ to Meet Deadlines Federal agencies are making significant headway in achieving a series of critical cybersecurity milestones included in a sweeping executive order on artificial intelligence the president signed in O…DATABREACHTODAY.CO.UK
16 JanSBOMs & Supply Chains- BTS #22In this edition of Below The Surface, we discuss SBOMs & Supply Chains, with Allan Friedman, Senior Advisor and Strategist at CISA. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! →Full Show Notes: https://securityweekl…YOUTUBE.COM
🔥 INCIDENT REPORTING 11[−]
16 JanTura Scandinavia AB Encounters Another Cyberattack Following Intrusion in DecemberTura Scandinavia AB has allegedly been targeted by the LockBit ransomware group, with claims of unauthorized access to the company's network and the sale of login credentials on the dark web.THECYBEREXPRESS.COM
16 JanMastermind Hacker Behind $2 Million Crypto Scam ArrestedThe 29-year-old man was arrested in Mykolaiv, Ukraine, for using hacked accounts to create 1 million virtual servers to illegally mine cryptocurrency. It is estimated that the suspect has mined cryptocurrency worth over USD 2 million (or EUR 1.8 million). The person responsible f…GBHACKERS.COM
16 JanUpdate: Mississippi Health System Ransomware Attack Affects 253,000The cybercriminal gang Rhysida claimed responsibility for the attack, which affected patient services and IT systems. The attack also impacted a California-based hospital chain.BANKINFOSECURITY.COM
16 JanHackers Abuse GitHub to Host Malicious InfrastructureGitHub has become a major platform that cybercriminals use for various attack methods such as payload delivery, dead drop resolution (DDR), C2 (Command and Control) and exfiltration. T This is because GitHub is considered legitimate traffic, which threat actors can leverage to bl…GBHACKERS.COM
16 JanLockBit Ransomware Adds Two New Victims to Dark Web PortalThe LockBit ransomware group has targeted two new victims, Maisons de l’Avenir in France and Shinwa Co in Japan, with a deadline set for February 4, 2024, raising concerns due to the disparate geographical locations of the targeted companies.THECYBEREXPRESS.COM
16 JanThreat Actor Puts GEICO Database for Sale on the Dark WebThe threat actor 'wangfei19860902055' advertised the sale of a database related to Government Employees Insurance Company (GEICO) on the dark web, containing 552,900 records with personal information. GEICO has not officially confirmed the breach.THECYBEREXPRESS.COM
16 JanCareer fair helps tackle UK cyber security recruitment shortfallCompanies across the UK are facing significant challenges recruiting staff with the right cyber security skills. According to the “Cyber Security Skills in the UK Labour Market” report, there were 160,035 job postings for cyber security professionals in 2022, with a 30% increase …CSOONLINE.COM
16 JanAnonymous Sudan Claims London Internet Exchange Attack Over Yemen StrikesThe Russia-affiliated hacktivist group, Anonymous Sudan, claimed responsibility for a cyberattack on the London Internet Exchange (LINX) as a response to Britain's support for Israel and airstrikes on Yemen.HACKREAD.COM
16 JanAtari 400, Gitlab, Sonicwall, Juniper, Stats, Ivanti, Sharepoint, Jason Wood and More – SWN #354Atari 400, Gitlab, Sonicwall, Juniper, Ransomware stats, Ivanti, Sharepoint, Jason Wood, and more are on this edition of the Security Weekly News. →Watch Live Here: https://securityweekly.com/live →Subscribe to our podcasts: https://securityweekly.com/subscribe →Join our communit…YOUTUBE.COM
16 JanMajorca city Calvià extorted for $11M in ransomware attackThe Calvià City Council in Majorca announced it was targeted by a ransomware attack on Saturday, which impacted municipal services. [...]BLEEPINGCOMPUTER.COM
16 JanAtari 400, Gitlab, Sonicwall, Juniper, Stats, Ivanti, Sharepoint, Jason Wood and More - SWN #354Atari 400, Gitlab, Sonicwall, Juniper, Ransomware stats, Ivanti, Sharepoint, Jason Wood, and more are on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-354YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 26[−]
16 JanISC Stormcast For Tuesday, January 16th, 2024 https://isc.sans.edu/podcastdetail/8810, (Tue, Jan 16th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
16 JanThe Story of the Mirai BotnetOver at Wired, Andy Greenberg has an excellent story about the creators of the 2016 Mirai botnet.SCHNEIER.COM
16 JanHacker Conversations: HD Moore and the Line Between Black and WhiteSecurityWeek talked to HD Moore, best known as the founder and original developer of Metasploit. The post Hacker Conversations: HD Moore and the Line Between Black and White appeared first on SecurityWeek .SECURITYWEEK.COM
16 JanBSidesDFW 2023submitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/fffd5537-0e55-4d8c-bc77-05140417f277.png BSidesDFW 2023 Schedule BSidesDFW 2023 PlaylistINFOSEC.PUB
16 JanWebinar | Reactive to Proactive: Elevating OT Cybersecurity with Threat IntelligenceDATABREACHTODAY.CO.UK
16 JanCyberheistNews Vol 14 #03 Red Flags for Phishing: Verizon Outlines Latest Scams to Watch Out ForKNOWBE4.COM
16 JanThe CISO’s guide to accelerating quantum-safe readinessQuantum computing presents both opportunities and challenges for the modern enterprise. While quantum computers are expected to help solve some of the world’s most complex problems, they also pose a risk to traditional cryptographic systems, particularly public-key encrypti…SECURITYINTELLIGENCE.COM
16 JanHo, Ho, Hoooold on a Minute: A New Year Resolution That IoT Isn’t a Gift That Keeps on TakingSome IoT products may make your life easier, but they also may be somewhat of a Trojan Horse. The post Ho, Ho, Hoooold on a Minute: A New Year Resolution That IoT Isn’t a Gift That Keeps on Taking appeared first on SecurityWeek .SECURITYWEEK.COM
16 JanPartnering with Government to Strengthen Cyber Resilience in PolandThe PWCyber program helps expand Poland's national cybersecurity capabilities, enhance cyber defenses, and increase public awareness of growing threats. The post Partnering with Government to Strengthen Cyber Resilience in Poland appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
16 JanAtari 400 | Gitlab | Sonicwall | Juniper | Stats | Ivanti | Sharepoint | Jason Wood & More! – SWN354This week Doug talks: Atari 400, Gitlab, Sonicwall, Juniper, Stats, Ivanti, Sharepoint , Jason Wood, and more are on this edition of the Security Weekly News. →Full Show Notes: https://securityweekly.com/swn354 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 …YOUTUBE.COM
16 JanCrypto-Seeking Drainer Scam-as-a-Service Operations Thrive$295 Million in Digital Assets Lost Last Year to Wallet Drainers, Researchers Warn Cryptocurrency phishing scams designed to send crypto owners to fake versions of legitimate sites, recently disseminated via hijacked high-profile social media accounts, highlight the ongoing use o…DATABREACHTODAY.CO.UK
16 JanBeyond Hacktivism: Akamai CTO on Shifting Threat LandscapeRobert Blumofe on DDoS Attacks, API Security, Zero Trust and FIDO2-MFA Robert Blumofe, executive vice president and CTO at Akamai, expects social engineering, phishing, extortion and AI-driven attacks to dominate the threat landscape. He advised enterprises to use FIDO2-based MFA…DATABREACHTODAY.CO.UK
16 JanCommunicating Technical Topics Without Being Boring - Eve Maler - ASW #269It's time to start thinking about CFPs and presentations for 2024! Eve shares advice on delivering technical topics so that an audience can understand the points you want to make. Then we show how developing these presentation skills for conferences helps with presentations withi…YOUTUBE.COM
16 JanMalicious APKs Drain Bank AccountsA phishing campaign is targeting Chinese users in an attempt to distribute malicious apps, according to researchers at Palo Alto Networks’s Unit 42.KNOWBE4.COM
16 JanCryptocurrency Drainer Distributed Through PhishingMandiant has published a report on “CLINKSINK,” a cryptocurrency Drainer-as-a-Service (DaaS) that’s targeting users of the Solana currency.KNOWBE4.COM
16 JanLinkedIn is Being Used for *Dating* – It’s a Recipe for DisasterA new article explains how business professionals are beginning to be not-so-professional and seeking to make personal connections. It’s only a matter of time before cybercriminals jump in.KNOWBE4.COM
16 JanMoney Launderers, Fraudsters Flocking to Tether: UN ReportCryptocurrency Has 'Supercharged' Organized Crime in Southeast AsiaDATABREACHTODAY.CO.UK
16 JanNC Health System Agrees to Pay $6.6M in Web Tracking CaseNovant Health Is Among Latest Organizations Opting to Settle Patient Privacy Claims A North Carolina healthcare system has agreed to pay $6.6 million to settle a consolidated class action lawsuit involving its use of tracking tools in its websites and patient portals. The suit al…DATABREACHTODAY.CO.UK
16 JanPixieFail: Nine vulnerabilities in Tianocore's EDK II IPv6 network stacksubmitted by L4s to secops 1 points | 0 comments https://blog.quarkslab.com/pixiefail-nine-vulnerabilities-in-tianocores-edk-ii-ipv6-network-stack.html PixieFail: Nine vulnerabilities in Tianocore’s EDK II IPv6 network stack::undefinedQUARKSLAB.COM
16 JanMimecast Appoints Marc van Zadelhoff as New CEOLeadership Transition Comes After 21 Years Under Peter Bauer as CEO Mimecast, the cloud security firm specializing in email and cyber resilience, appointed a new CEO after co-founder Peter Bauer served in the chief executive role since its inception in 2003. The leadership transi…DATABREACHTODAY.CO.UK
16 JanUK Privacy Watchdog Probes GenAI Privacy ConcernsICO Call for Evidence to Focus on Legal Basis for Scrapped Training Data The British data regulator is set to analyze the privacy implications of processing scrapped data used for training generative artificial intelligence algorithms. The Information Commissioners' Office is sol…DATABREACHTODAY.CO.UK
16 JanUnified security operations with Microsoft Sentinel and Microsoft Defender XDRA unified security operations center (SOC) platform that combines all the benefits of multiple security tools offers several advantages. Read on for three of them. The post Unified security operations with Microsoft Sentinel and Microsoft Defender XDR appeared first on Microsoft …MICROSOFT.COM
16 JanK-12 Cybersecurity | News - PSW8136:00pm ET - Brian Stephens 7:00pm ET - Security News This week, we start things off by discussing K-12 Cybersecurity with Brian Stephens, Director, Stakeholder Engagement at Funds For Learning. Then we discuss the security news for the week. →Full Show Notes: https://securityweek…YOUTUBE.COM
16 JanCreating Trust in Biometric Authentication for Identity Verification | News - ESW346This week, we kick things off with an interview with Sabrina Gross, Regional Director of Strategic Partners at Veridas, about Creating Trust in Biometric Authentication for Identity Verification. Then, we finish off with the weekly enterprise news. →Full Show Notes: https://www.s…YOUTUBE.COM
16 JanGoogle | Pax | LeftOverLocals | Mint | Sandstorm | DJI | Colossus | Aaran Leyland & More! – SWN355This week, Doug Talks: Google, Pax, LeftOverlocals, Mint Sandstorm, DJI, Colossus , Aaran Leyland, and More News on the Security Weekly News. →Full Show Notes: https://securityweekly.com/swn355 →Join the Security Weekly Discord Server: https://discord.gg/pqSwWm4 →Visit our websit…YOUTUBE.COM
16 JanSay Easy, Do Hard, Hiring a CISO, Part 2 - BSW #335This week, we air part 2 of our Say Easy, Do Hard segment from last week, about Hiring a CISO. Visit https://www.securityweekly.com/bsw for all the latest episodes! Show Notes: https://securityweekly.com/bsw335YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 5[−]
16 JanInferno Malware Masqueraded as Coinbase, Drained $87 Million from 137,000 VictimsThe operators behind the now-defunct Inferno Drainer created more than 16,000 unique malicious domains over a span of one year between 2022 and 2023. The scheme “leveraged high-quality phishing pages to lure unsuspecting users into connecting their cryptocurrency …THEHACKERNEWS.COM
16 JanTsurugi Linux Tailors User Experience for Digital Forensics and OSINT InvestigationsTsurugi Linux offers a user-friendly interface with a logical sequence of forensic analysis tools, including support for live forensics, post-mortem analysis, digital evidence acquisition, malware analysis, OSINT, and computer vision activities.HELPNETSECURITY.COM
16 JanRemcos RAT Spreading Through Adult Games in New Attack WaveThe remote access trojan (RAT) known as Remcos RAT has been found being propagated via webhards by disguising it as adult-themed games in South Korea. WebHard, short for web hard drive, is a popular online file storage system used to upload, download, and share files in the …THEHACKERNEWS.COM
16 JanInferno Malware Masqueraded as Coinbase, Drained $87 Million from 137,000 VictimsThe scheme involved phishing pages to trick users into connecting their wallets with the attackers' infrastructure, resulting in over $87 million in illicit profits from more than 137,000 victims.THEHACKERNEWS.COM
16 JanUS Court Docs Expose Fake Antivirus Renewal Phishing TacticsThe U.S. Secret Service executed a seizure warrant to recover $34,000 stolen through a fake Norton antivirus renewal email scam. The scam tricked victims into granting remote access to their computers, and then transferring money from their accounts.BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 9[−]
16 JanGrowing Pains at the Bureau of Cyberspace and Digital Policy, Report FindsThe Bureau of Cyberspace and Digital Policy at the State Department is facing challenges in clarifying roles and responsibilities, particularly in the absence of a global agreement on cyber diplomacy.CYBERSCOOP.COM
16 JanCan TVs, smartphones, and smart assistants eavesdrop on your conversations? | Kaspersky official blogCan advertisers show personalized ads based on eavesdropped conversations, and, if so — what to do about it?KASPERSKY.COM
16 JanWhite House Looks to Eliminate College Degree Requirements for Cyber Jobs With Federal ContractorsThe new National Cyber Director Harry Coker said that the White House intends “to reduce unnecessary barriers” federal contractors face in filling cybersecurity jobs, like requirements for four-year college degrees.NEXTGOV.COM
16 JanFlipping the BEC Funnel: Phishing in the Age of GenAIThe evolution of phishing techniques, including the use of advanced AI-driven tools, has led to a surge in highly personalized and convincing phishing attacks, posing a significant challenge to traditional email security solutions.HELPNETSECURITY.COM
16 JanSnyk acquires Helios to bolster its AppSec platformSnyk, the well-funded developer-focused security company, today announced that it has acquired Helios, a Tel Aviv-based startup that helps developers troubleshoot and understand their microservices in production. Snyk will use Helios to bolster its recently launched AppRisk servi…TECHCRUNCH.COM
16 JanMacOS info-stealers quickly evolve to evade XProtect detectionMultiple information stealers for the macOS platform have demonstrated the capability to evade detection even when security companies follow and report about new variants frequently. [...]BLEEPINGCOMPUTER.COM
16 JanThe 7 deadly cloud security sins and how SMBs can do things betterBy eliminating these mistakes and blind spots, your organization can take massive strides towards optimizing its use of cloud without exposing itself to cyber-riskWELIVESECURITY.COM