108Articles
9Categories
2024-01-17Date
🚨 CISA KEV 1[−]
17 Jan KEVCISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-6549 Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability CVE-2023-6548 Citrix NetScaler ADC and NetScaler Gateway Code…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 14[−]
17 Jan KEVZero-Day Alert: Update Chrome Now to Fix New Actively Exploited VulnerabilityGoogle on Tuesday released updates to fix four security issues in its Chrome browser, including an actively exploited zero-day flaw. The issue, tracked as CVE-2024-0519, concerns an out-of-bounds memory access in the V8 JavaScript and WebAssembly engine, which can be weaponized b…THEHACKERNEWS.COM
17 Jan KEVCitrix, VMware, and Atlassian Hit with Critical Flaws — Patch ASAP!Citrix is warning of two zero-day security vulnerabilities in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway) that are being actively exploited in the wild. The flaws are listed below - CVE-2023-6548 (CVSS score: 5.5) - Authenticated (low privi…THEHACKERNEWS.COM
17 JanMagic Keyboard vulnerability allows takeover of iOS, Android, Linux, and MacOS devicesOver the past six weeks, Google, Microsoft, Linux (BlueZ), and Apple have rolled out fixes for a Bluetooth security flaw that, among other things, tricks the Bluetooth host machine into pairing with a fake keyboard without user confirmation, allowing threat actors to take control…CSOONLINE.COM
17 JanWindows SmartScreen Bug Abused to Deploy Phemedrone StealerDespite being patched in November 2023, the CVE-2023-36025 Windows SmartScreen bypass vulnerability is still being exploited by malware distributors. The latest threat delivered through this vulnerability is a variant of the Phemedrone Stealer. To mitigate such threats, it's cruc…CYWARE.COM
17 JanGitHub Rotates Keys After High-Severity Vulnerability Exposes CredentialsGitHub identified and addressed a high-severity vulnerability (CVE-2024-0200) that required rotation of keys, including GitHub commit signing key and customer encryption keys, as a precautionary measure.THEHACKERNEWS.COM
17 JanCitrix Warns NetScaler ADC Customers of New Zero-Day ExploitationCitrix is aware of attacks exploiting two new NetScaler ADC and Gateway zero-day vulnerabilities tracked as CVE-2023-6548 and CVE-2023-6549. The post Citrix Warns NetScaler ADC Customers of New Zero-Day Exploitation appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanVMware Fixed a Critical Flaw in Aria AutomationVMware Aria Automation platform is affected by a critical missing access control vulnerability (CVE-2023-34063) that allows authenticated attackers to gain unauthorized access to remote organizations and workflows.SECURITYAFFAIRS.COM
17 JanCitrix NetScaler devices face active zero-day exploitationsCitrix has warned its NetScaler ADC and NetScaler Gateway customers against two critical zero-day vulnerabilities that have active exploitations in the wild. Tracked as CVE-2023-6548 and CVE-2023-6549, the vulnerabilities allow miscreants to perform remote code execution (RCE) an…CSOONLINE.COM
17 Jan KEVCitrix Warns Admins to Immediately Patch NetScaler for Actively Exploited Zero-DaysThe vulnerabilities, tracked as CVE-2023-6548 and CVE-2023-6549, can lead to remote code execution or denial-of-service attacks, and specific recommendations for mitigating the risks are provided.SECURITYAFFAIRS.COM
17 JanVMware Releases Security Advisory for Aria OperationsVMware released a security advisory to address a vulnerability (CVE-2023-34063) in Aria Operations. A cyber threat actor could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review VMware Security Advisory VMSA-2024-0…CISA.GOV
17 JanChromium: CVE-2024-0517 Out of bounds write in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
17 JanChromium: CVE-2024-0518 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
17 JanChromium: CVE-2024-0519 Out of bounds memory access in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information. Google is aware of reports that an exploit for CVE-2024-051…MSRC.MICROSOFT.COM
17 JanOver 178,000 SonicWall firewalls still vulnerable to old flawsSecurity researchers found almost 150,000 SonicWall firewalls whose management interfaces are accessible from the internet and are vulnerable to an almost two-year-old critical flaw that can cause denial-of-service and potentially remote code execution. Even more firewalls are vu…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 31[−]
17 JanGitHub Rotates Keys After High-Severity Vulnerability Exposes CredentialsGitHub has revealed that it has rotated some keys in response to a security vulnerability that could be potentially exploited to gain access to credentials within a production container. The Microsoft-owned subsidiary said it was made aware of the problem on December 26, 2023, an…THEHACKERNEWS.COM
17 JanIvanti Spots ‘Sharp Increase’ in Targeting of VPN as Analysts Find 1,700 Devices ExploitedIvanti has reported a surge in hacker activity targeting two vulnerabilities in its Connect Secure VPN product. Over 1,700 devices have been exploited worldwide, prompting the release of a mitigation to address the vulnerabilities.THERECORD.MEDIA
17 JanAtlassian Fixed Critical RCE Flaw in Older Confluence VersionsThis template injection vulnerability allows remote attackers to execute arbitrary code on affected Confluence installs. Versions 8.0.x through 8.5.3 are impacted, but the latest supported versions are not affected.SECURITYAFFAIRS.COM
17 JanBadge privacy-preserving authentication tool launches with Okta integrationBadge has launched a privacy-preserving authentication system designed to enable enterprise authentication across multiple devices, after a single enrolment, and without storing personally identifiable information (PII). With stored credentials the target of nearly half (49%) of …CSOONLINE.COM
17 Jan KEVGoogle Issues Chrome Update to Fix Actively Exploited Zero-Day VulnerabilityGoogle released updates to fix a zero-day flaw in its Chrome browser related to out-of-bounds memory access in the V8 JavaScript and WebAssembly engine. The update also fixed two other vulnerabilities in V8.THEHACKERNEWS.COM
17 JanFBI warns against cloud credential-stealing Androxgh0st botnetThe Federal Bureau of Investigation and the Cybersecurity and Infrastructure Security Agency (CISA) have published an urgent advisory about the Androxgh0st botnet , which is being used to steal cloud credentials from major platforms, including AWS, SendGrid, and Microsoft Office …CSOONLINE.COM
17 Jan KEVGoogle Chrome Browser Zero-Day Vulnerability Exploited in Wild – Emergency Patch!Google Chrome has released its stable channel update version 20.0.6099.234 for Mac, 120.0.6099.224 for Linux, and 120.0.6099.224/225 for Windows. However, Google stated that this new security update will roll out in the upcoming days/weeks. The extended stable channel has also be…GBHACKERS.COM
17 JanNo digital transformation without cybersecurityIncreasing IT infrastructure complexity and talent gaps are making it more and more difficult to protect against cyberattacks – 76% of organizations see organized cybercrime increasing and 50% are investing in network security to manage risk. As organizations modernize their op…CSOONLINE.COM
17 JanFeds Warn of AndroxGh0st Botnet Targeting AWS, Azure, and Office 365 CredentialsThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) warned that threat actors deploying the AndroxGh0st malware are creating a botnet for "victim identification and exploitation in target networks." A …THEHACKERNEWS.COM
17 JanWebinar: The Art of Privilege Escalation - How Hackers Become AdminsIn the digital age, the battleground for security professionals is not only evolving, it's expanding at an alarming rate. The upcoming webinar, "The Art of Privilege Escalation - How Hackers Become Admins," offers an unmissable opportunity for IT security experts to stay ahead in…THEHACKERNEWS.COM
17 JanAdalanche: Open-Source Active Directory ACL Visualizer, ExplorerThe tool offers a visual attack graph representation of Active Directory in the browser, along with the ability to collect data from Windows machines and perform in-depth analysis.HELPNETSECURITY.COM
17 JanGitHub Rotates Credentials in Response to VulnerabilityGitHub rotates credentials and releases patches after being alerted of a vulnerability affecting GitHub.com and GitHub Enterprise Server. The post GitHub Rotates Credentials in Response to Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
17 Jan KEVApple Actively Exploited Telegram Channelsubmitted by kolyasapphire to cybersecurity 1 points | 0 comments https://t.me/AppleActivelyExploited Channel with alerts for when Apple releases patches for actively exploited vulnerabilities in iOS and macOS. Auto updates are good, but it’s best to update straight away and not …T.ME
17 JanSoftwareProjects exposes substantial customer and affiliate dataAffiliate sales platform SoftwareProjects had nearly 200GB worth customer and affiliate data exposed publicly before being discovered and reported by cybersecurity researcher Jeremiah Fowler. The exposed database contained 257,562 records with images of credit cards, identificati…CSOONLINE.COM
17 JanNaz.API - 70,840,771 breached accountsIn September 2023, over 100GB of stealer logs and credential stuffing lists titled "Naz.API" was posted to a popular hacking forum . The incident contained a combination of email address and plain text password pairs alongside the service they were entered into, and sta…HAVEIBEENPWNED.COM
17 JanA tougher balancing act in 2024, the year of the CISOAt the end of last year, I wrote that 2024 would go down as “the year of the CISO.” This affirmation wasn’t a CISO celebration. Rather, legal concerns, compliance requirements, board-level scrutiny, and continual job stress will make 2024 a challenging year for CISOs — so m…CSOONLINE.COM
17 JanWazuh: Building robust cybersecurity architecture with open source toolsOpen source solutions allow organizations to customize and adapt their cybersecurity infrastructure to their specific needs. Learn more from @wazuh on building open source cybersecurity infrastructure. [...]BLEEPINGCOMPUTER.COM
17 JanAtlassian Warns of Critical RCE Vulnerability in Outdated Confluence InstancesOut-of-date Confluence Data Center and Server instances are haunted by a critical vulnerability leading to remote code execution. The post Atlassian Warns of Critical RCE Vulnerability in Outdated Confluence Instances appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanAMD, Apple, Qualcomm GPUs leak AI data in LeftoverLocals attacksA new vulnerability dubbed 'LeftoverLocals' affecting graphics processing units from AMD, Apple, Qualcomm, and Imagination Technologies allows retrieving data from the local memory space. [...]BLEEPINGCOMPUTER.COM
17 JanCyber Startup Vicarius Raises $30 Million Series B for Vulnerability Remediation PlatformThe Israeli startup has secured a $30 million Series B funding led by Bright Pixel Capital. The company's total funding now exceeds $56 million, with participation from other investors such as JVP, AllegisCyber Capital, AlleyCorp, and Strait Capital.CALCALISTECH.COM
17 JanDetained Russian Student Allegedly Helped Ukrainian Hackers With CyberattacksA Russian tech student faces treason charges for allegedly helping Ukrainian hackers carry out cyberattacks against Russia, revealing the ongoing cyberwar between the two countries.THERECORD.MEDIA
17 JanVulnerabilities Discovered in Android-based POS Terminals From PAX TechnologyThe PoS terminals from PAX Technology, based on Android, are found to have several vulnerabilities that can be exploited to execute arbitrary code or commands, according to a report by STM Cyber.STMCYBER.COM
17 Jan KEVCISA pushes federal agencies to patch Citrix RCE within a weekToday, CISA ordered U.S. federal agencies to secure their systems against three recently patched Citrix NetScaler and Google Chrome zero-days actively exploited in attacks. [...]BLEEPINGCOMPUTER.COM
17 Jan KEVChrome Patches First Zero-Day of 2024 Exploited in the WildGoogle Fixes Out-of-Bounds Memory Access Flaw, Microsoft Edge Browser Also Affected Google released an urgent fix for the first zero-day vulnerability of the year in its Chrome web browser, warning the bug is under active exploitation. Google blamed an out-of-bounds memory access…DATABREACHTODAY.CO.UK
17 JanVulnerability Management Firm Vicarius Raises $30 MillionNew York based vulnerability management firm Vicarius has raised $30 million in a Series B funding round led by Bright Pixel. The post Vulnerability Management Firm Vicarius Raises $30 Million appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanHacking into a Toyota/Eicher Motors insurance company by exploiting their premium calculator websitesubmitted by L4s to secops 1 points | 0 comments https://eaton-works.com/2024/01/17/ttibi-email-hack/ Hacking into a Toyota/Eicher Motors insurance company by exploiting their premium calculator website::A vulnerable API on Toyota Tsusho Insurance Broker India’s premium calculato…EATON-WORKS.COM
17 Jan KEVNetScaler, Atlassian, VMWare Disclose Critical FlawsCitrix NetScaler ADC and Gateway Bugs Exploited in the Wild IT infrastructure mainstays including Netscaler, Atlassain and VMWare on Tuesday released fixes for vulnerabilities including some allowing malicious takeover of appliances. NetScaler warned customers Tuesday of two zero…DATABREACHTODAY.CO.UK
17 JanA Vulnerability in Atlassian Confluence Data Center and Server Could Allow for Remote Code ExecutionA vulnerability has been discovered in Atlassian Confluence Server and Data Center which could allow for remote code execution. Confluence is a collaboration tool that brings people, knowledge, and ideas together in a shared workspace. Successful exploitation of this vulnerabilit…CISECURITY.ORG
📋 SECURITY BULLETINS 1[−]
17 JanCyber Security Today, Jan. 17, 2024 - Security updates issued for Atlassian, Citrix, VMware and Chrome productsThis epsiode reports on the latest security updates for a range of productsCYBERSECURITYTODAY.LIBSYN.COM
📢 SECURITY ADVISORIES 7[−]
17 JanPixieFail Vulnerabilities Impact PXE Network Boot in Enterprise SystemsThe flaws affect Tianocore's EDK II UEFI implementation and other major tech companies and BIOS providers, prompting a coordinated disclosure effort by CERT/CC and CERT-FR.BLEEPINGCOMPUTER.COM
17 JanAs hacks worsen, SEC turns up the heat on CISOsOver the past year we’ve seen Uber’s former chief security officer convicted in federal court for mishandling a data breach, a federal regulator charge SolarWinds’ security chief with allegedly misleading investors prior to its own cyberattack, and new regulatio…TECHCRUNCH.COM
17 JanUS Gov Issues Warning for Androxgh0st Malware AttacksA joint advisory from CISA and the FBI warns about Androxgh0st malware attacks ensnaring devices in a botnet. The post US Gov Issues Warning for Androxgh0st Malware Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanLondon internet attack highlights confusing hacktivism movementA hacktivist group calling itself Anonymous Sudan claimed credit last week for an apparently unsuccessful attack on the London Internet Exchange, or LINX, attributing the action to Britain’s support of Israel. According to a tweet from OSINT research entity CyberKnow, LINX remain…CSOONLINE.COM
17 JanChinese Drones Pose Threat to US Infrastructure, CISA WarnsCISA, FBI Urge Critical Infrastructure Owners to Bolster UAS Security Measures The U.S. Cybersecurity and Infrastructure Security Agency is warning critical infrastructure owners and operators about the dangers associated with the increasing reliance on Chinese unmanned aircraft …DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 13[−]
17 JanNumber Usage in Passwords, (Wed, Jan 17th)Numbers are often used in passwords to add complexity. Passwords submitted to honeypots are also often found within pre-existing passwords lists, containing compromised credentials. What numbers are most commonly used? ISC.SANS.EDU
17 JanThree Ransomware Group Newcomers to Watch in 2024Three new ransomware groups, 3AM, Rhysida, and Akira, made their mark in 2023 through their distinct tactics, targeting diverse industries and employing advanced technologies.THEHACKERNEWS.COM
17 JanCrypto Heists Surge in 2023, $16.93m Already Stolen in 2024An analysis by Comparitech revealed a 42% increase in crypto theft incidents in 2023 compared to 2022, with 283 reported cases. However, the total amount stolen decreased by 51% to $1.75 billion.INFOSECURITY-MAGAZINE.COM
17 JanNew iShutdown Method Exposes Hidden Spyware Like Pegasus on Your iPhoneCybersecurity researchers have identified a "lightweight method" called iShutdown for reliably identifying signs of spyware on Apple iOS devices, including notorious threats like NSO Group's Pegasus, QuaDream's Reign, and Intellexa's Predator.  Kaspe…THEHACKERNEWS.COM
17 JanRansomware Gang Demands $11 Million After Attacking Spanish City Council in MajorcaThe city council has formed a crisis cabinet to assess the cyberattack's impact and is working with specialists to conduct forensic analyses and restore affected services.THERECORD.MEDIA
17 JanInside the Massive Naz.API Credential Stuffing ListPresently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite It feels like not a week goes by without someone sending me yet another credential stuffing list. It's usually something to the ef…TROYHUNT.COM
17 JanProgress Software’s MOVEit Meltdown: Uncovering the FalloutThe data breach involving Progress Software’s MOVEit file-transfer service exposed millions of individuals and thousands of organizations, highlighting the far-reaching impact of supply chain cyberattacks.CYBERSECURITYDIVE.COM
17 JanDid Uber's Delivery Service Drizly Die Due to Data Breach?Closing Time for Alcohol Delivery Service Follows Fed Crackdown for Poor Security It's last call for Drizly, the alcohol delivery service Uber bought for $1.1 billion in 2021. Whether or not Drizly's past cybersecurity missteps - leading to two-decade consent agreement with regul…DATABREACHTODAY.CO.UK
17 JaniShutdown scripts can help detect iOS spyware on your iPhoneSecurity researchers found that infections with high-profile spyware Pegasus, Reign, and Predator could be discovered on compromised Apple mobile devices by checking Shutdown.log, a system log file that stores reboot events. [...]BLEEPINGCOMPUTER.COM
17 JanSwiss Govt Websites Hit by Pro-Russia Hackers After Zelensky VisitSwitzerland said that a cyberattack claimed by a pro-Russian group disrupted access to some government websites, following Ukrainian President Volodymyr Zelensky's visit to Davos. The post Swiss Govt Websites Hit by Pro-Russia Hackers After Zelensky Visit appeared first on Securi…SECURITYWEEK.COM
17 JanHow a Novel Legal Maneuver Got a Hospital's Stolen Data BackThe ubiquity and anonymity of cryptocurrencies are fueling economic, legal and ethical challenges that put healthcare entities in the crosshairs of cybercriminals, said David Hoffman, general counsel of Claxton-Hepburn Medical Center, which recently filed a lawsuit against ransom…DATABREACHTODAY.CO.UK
17 JanHave I Been Pwned adds 71 million emails from Naz.API stolen account listHave I Been Pwned has added almost 71 million email addresses associated with stolen accounts in the Naz.API dataset to its data breach notification service. [...]BLEEPINGCOMPUTER.COM
17 JanNew Microsoft Incident Response guides help security teams analyze suspicious activityAccess the first two cloud investigation guides from Microsoft Incident Response to improve triage and analysis of data in Microsoft 365 and Microsoft Entra ID. The post New Microsoft Incident Response guides help security teams analyze suspicious activity appeared first on Micro…MICROSOFT.COM
🕵️ THREAT INTELLIGENCE 21[−]
17 JanCurrent account recovery best practices?submitted by viking to cybersecurity 1 points | 0 comments Hi all, Need to pick your brains for a bit regarding best practices for handling of account recovery issues while traveling. Premise would be that my phone gets lost or stolen, and I may not have easy access to my laptop …INFOSEC.PUB
17 JanISC Stormcast For Wednesday, January 17th, 2024 https://isc.sans.edu/podcastdetail/8812, (Wed, Jan 17th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
17 JanPentestGPT – A ChatGPT Powered Automated Penetration Testing ToolGBHackers come across a new ChatGPT-powered Penetration testing Tool called “PentestGPT” that helps penetration testers to automate their pentesting operations. PentestGPT has been released on GitHub under the operator “GreyDGL,” a Ph.D. student at Nanyang…GBHACKERS.COM
17 JanRemcos RAT Spreading Through Adult Games in New Attack WaveRemcos RAT is being distributed in South Korea disguised as adult-themed games via webhards, highlighting the deceptive tactics used by threat actors to propagate malware.THEHACKERNEWS.COM
17 JanHere’s How ChatGPT Maker OpenAI Plans to Deter Election Misinformation in 2024ChatGPT maker OpenAI outlines a plan to prevent its tools from being used to spread election misinformation in 2024. The post Here’s How ChatGPT Maker OpenAI Plans to Deter Election Misinformation in 2024 appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanOracle Patches 200 Vulnerabilities With January 2024 CPUOracle releases 389 new security patches to address 200 vulnerabilities as part of the first Critical Patch Update of 2024. The post Oracle Patches 200 Vulnerabilities With January 2024 CPU appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanCode Written with AI Assistants Is Less SecureInteresting research: “ Do Users Write More Insecure Code with AI Assistants? “: Abstract: We conduct the first large-scale user study examining how users interact with an AI Code assistant to solve a variety of security related tasks across different programming lang…SCHNEIER.COM
17 JanmacOS Infostealers That Actively Involve in Attacks Evade XProtect DetectionEver since the beginning of 2023, infostealers targeting macOS have been on the rise, with many threat actors actively targeting Apple devices. As of last year, many variants of Atomic Stealer, macOS meta stealer, RealStealer, and many others were discovered. However, Apple updat…GBHACKERS.COM
17 JanAI Data Exposed to ‘LeftoverLocals’ Attack via Vulnerable AMD, Apple, Qualcomm GPUsResearchers show how a new attack named LeftoverLocals, which impacts GPUs from AMD, Apple and Qualcomm, can be used to obtain AI data. The post AI Data Exposed to ‘LeftoverLocals’ Attack via Vulnerable AMD, Apple, Qualcomm GPUs appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanAchieving “Frictionless Defense” in the Age of Hybrid NetworksA "frictionless defense” is about integrating security measures seamlessly into the digital landscape to safeguard against threats while ensuring a positive user experience. The post Achieving “Frictionless Defense” in the Age of Hybrid Networks appeared first on Secu…SECURITYWEEK.COM
17 JanWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
17 JanAI in Security — Ready for Prime TimeYoni Allon shares insights on the evolving landscape and role of AI in security operations center, along with the opportunities and challenges it brings. The post AI in Security — Ready for Prime Time appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
17 JanPAX PoS Terminal Flaw Could Allow Attackers to Tamper with TransactionsThe point-of-sale (PoS) terminals from PAX Technology are impacted by a collection of high-severity vulnerabilities that can be weaponized by threat actors to execute arbitrary code. The STM Cyber R&D team, which reverse engineered the Android-based devices manufactured by th…THEHACKERNEWS.COM
17 JanNews alert: Incogni study reveals overwhelming majority of spam calls originate locallyLos Angeles, Calif., Jan. 17, 2024 – Spam calls continue to be a major nuisance in the US, and advice on how to avoid them abound. Incogni’s latest research challenges prevalent assumptions about spam calls, revealing that traditional advice on … (more…)LASTWATCHDOG.COM
17 JanMicrosoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing AttacksMicrosoft says an APT with links to Iran’s military intelligence is impersonating a prominent journalist in clever spear-phishing attacks. The post Microsoft: Iranian APT Impersonating Prominent Journalist in Clever Spear-Phishing Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanMicrosoft: Iranian hackers target researchers with new MediaPl malwareMicrosoft says that a group of Iranian-backed state hackers are targeting high-profile employees of research organizations and universities across Europe and the United States in spearphishing attacks pushing new backdoor malware. [...]BLEEPINGCOMPUTER.COM
17 JanHow 'sleeper agent' AI assistants can sabotage codesubmitted by ylai to cybersecurity 1 points | 1 comments https://www.theregister.com/2024/01/16/poisoned_ai_models/?td=rt-3aTHEREGISTER.COM
17 JanOpenAI Combats Election Misinformation Amid Growing ConcernsChatGPT Maker Wants to Deter Use of AI in Online Election Misinformation Campaigns OpenAI announced a series of steps it was taking to prevent the use of its models in online influence operations throughout the 2024 election season, amid growing concerns that the election could f…DATABREACHTODAY.CO.UK
17 JanNew TTPs observed in Mint Sandstorm campaign targeting high-profile individuals at universities and research orgsSince November 2023, Microsoft has observed a distinct subset of Mint Sandstorm (PHOSPHORUS) targeting high-profile individuals working on Middle Eastern affairs at universities and research organizations in Belgium, France, Gaza, Israel, the United Kingdom, and the United States…MICROSOFT.COM
17 JanK-12 Cybersecurity with Brian Stephens, Director, Stakeholder Engagement at Funds For LearningJoin us at as we discuss K-12 Cybersecurity with Brian Stephens, Director, Stakeholder Engagement at Funds For Learning – PSW #813 With a recent increase in government attention on K–12 #cybersecurity, there is a pressing need to shed light on the challenges school districts face…YOUTUBE.COM
17 JanUS Judge Again Says Meta Pixel Privacy Case Dismissal UnlikelyCase Against Meta Likely Moving Forward After Court Heard Dismissal Arguments A federal judge said he is inclined to let proceed a putative class action lawsuit against Meta over its gathering of data from medical center patient portals through a web activity tracking tool. U.S. …DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 5[−]
17 JanCyber Tops Business Risk for Enterprises Worldwide, Report FindsThe rising sophistication of cybercriminals and state-linked actors is outpacing private industry’s defense capabilities, leading to concerns about severe disruptions to major businesses and critical infrastructure providers.CYBERSECURITYDIVE.COM
17 JanUS Agencies Warn of Androxgh0st Malware Botnet Stealing AWS, Microsoft credentialsOrganizations are advised to implement mitigations such as keeping systems updated, securing cloud credentials, and scanning for unrecognized PHP files to reduce the risk of Androxgh0st infections.CISA.GOV
17 JanMacOS Info-Stealers Quickly Evolve to Evade XProtect DetectionXProtect, macOS's built-in anti-malware system, struggles to detect evolving info-stealers like KeySteal and Atomic Stealer, highlighting the need for more robust security measures.BLEEPINGCOMPUTER.COM
17 JanBigpanzi botnet infects 170,000 Android TV boxes with malwareA previously unknown cybercrime syndicate named 'Bigpanzi' has been making significant money by infecting Android TV and eCos set-top boxes worldwide since at least 2015. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 15[−]
17 JanWhat cybersecurity threats to kids parents should be aware of in 2024? | Kaspersky official blogIn 2024, parents need to be vigilant of the evolving cybersecurity threats targeting their children. Stay informed and safeguard your kids' online activities.KASPERSKY.COM
17 JanSoutheast Asian Casino Industry Supercharging Cyber Fraud, UN SaysThe expansion of online gambling platforms has made cryptocurrency-based money laundering more prevalent, with Tether (USDT) being a popular choice due to its stability and low transaction fees.THERECORD.MEDIA
17 JanReport: 94% of Firms Hit by Phishing Attacks in 2023Phishing attacks continue to pose a significant threat, with 94% of cyber decision-makers having to deal with such attacks in 2023, marking a 2% increase from the previous year, according to Egress.INFOSECURITY-MAGAZINE.COM
17 JanPSA: Anyone can tell if you are using WhatsApp on your computerAnyone who knows your WhatsApp number can figure out if you are only using the mobile app, or its companion web or desktop apps, a security researcher found. Tal Be’ery, the co-founder and CTO of crypto wallet maker ZenGo, found that it’s possible to determine whether a user on W…TECHCRUNCH.COM
17 JanCrypto Trading Firm Closes Shop After $8 Million NY State Fine Over Security IssuesGenesis Global Trading violated its BitLicense terms, with late and inadequate cybersecurity risk assessments, and appeared deficient in filing suspicious activity reports for potential money laundering.THERECORD.MEDIA
17 JanCombating IP Leaks into AI Applications with Free Discovery and Risk Reduction AutomationWing Security announced today that it now offers free discovery and a paid tier for automated control over thousands of AI and AI-powered SaaS applications. This will allow companies to better protect their intellectual property (IP) and data against the growing and evo…THEHACKERNEWS.COM
17 JanSnyk Acquires Helios for Runtime VisibilitySnyk's acquisition of Helios marks its second move in developer-led application security posture management, following the previous acquisition of Enso Security, further strengthening its platform with prioritization and remediation capabilities.DARKREADING.COM
17 JanCheap .cloud Domains and Shark Tank Impersonation Fuels Unhealthy ScamsScammers are using fake news campaigns and cheaply acquired domain names to sell dubious health products, often claiming endorsements from popular entrepreneurial reality shows like Shark Tank and Dragons' Den.THEREGISTER.COM
17 JanE-Crime Rapper ‘Punchmade Dev’ Debuts Card ShopThe rapper and social media personality Punchmade Dev is perhaps best known for his flashy videos singing the praises of a cybercrime lifestyle. With memorable hits such as "Internet Swiping" and "Million Dollar Criminal" earning millions of views, Punchmade has leveraged his con…KREBSONSECURITY.COM
17 JanThe threat from large language model text generatorsInformation about large language models (LLMs) including most likely threats and risks to organizations.CYBER.GC.CA
17 JanEmbracing a risk-based cybersecurity approach with ASRMExplore how a risk-based cybersecurity approach is critical to proactively stop dynamic, ever-evolving threats.TRENDMICRO.COM
17 JanIs Temu safe? What to know before you ‘shop like a billionaire’Here are some scams you may encounter on the shopping juggernaut, plus a few simple steps you can take to help safeguard your data while bagging that irresistible dealWELIVESECURITY.COM
17 JanModernize Federal Cybersecurity Strategy with FedRAMPDetection and response will be critical for the U.S. Government to modernize security operations and stay ahead of cyber-attacks.TRENDMICRO.COM