95Articles
8Categories
2024-01-19Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
19 Jan KEVU.S. Cybersecurity Agency Warns of Actively Exploited Ivanti EPMM VulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a now-patched critical flaw impacting Ivanti Endpoint Manager Mobile (EPMM) and MobileIron Core to its Known Exploited Vulnerabilities (KEV) catalog, stating it's being actively exploited…THEHACKERNEWS.COM
19 Jan KEVVMware vCenter Server Vulnerability Exploited in WildVMware warns customers that CVE-2023-34048, a vCenter Server vulnerability patched in October 2023, is being exploited in the wild. The post VMware vCenter Server Vulnerability Exploited in Wild appeared first on SecurityWeek .SECURITYWEEK.COM
19 JanChinese hackers exploit VMware bug as zero-day for two yearsA Chinese hacking group has been exploiting a critical vCenter Server vulnerability (CVE-2023-34048) as a zero-day since at least late 2021. [...]BLEEPINGCOMPUTER.COM
19 JanUpdate: VMware Confirms Critical vCenter Flaw Now Exploited in AttacksA critical vCenter Server vulnerability (CVE-2023-34048) is actively being exploited, allowing attackers to execute remote code with high impact and without requiring authentication.BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 25[−]
19 JanBigpanzi Bot Hacks 170,000+ Android TVs to Launch DDoS AttacksAndroid TVs are widely used, and due to their wide adoption, threat actors frequently target them for unauthorized access or data theft. In Android smart TVs, the vulnerabilities in outdated software or third-party apps can be exploited. The interconnected nature of the smart or …GBHACKERS.COM
19 JanOSINVGPT – A Tool For Open-source InvestigationsOSINVGPT is an AI-based system that helps security analysts with open-source investigations and tool selection. While this tool was developed by “Very Simple Research.” This tool can assist security analysts in gathering relevant information, sources, and tools for th…GBHACKERS.COM
19 JanOleria Raises $33M Series A to Usher in New Era of Adaptive and Autonomous Identity SecurityOleria, a company specializing in adaptive and autonomous identity security solutions, has secured $33.1 million in Series A funding, led by Evolution Equity Partners with participation from Salesforce Ventures, Tapestry VC, and Zscaler.FINANCE.YAHOO.COM
19 JanPopular GPUs Used in AI Systems Vulnerable to Memory LeakLeftoverLocals Affects Apple, AMD and Qualcomm Devices Researchers uncovered a critical vulnerability in graphic processing units of popular devices that could allow attackers to access data from large language models. They dubbed the vulnerability LeftoverLocals and said it affe…DATABREACHTODAY.CO.UK
19 JanCyberWire Daily Podcast - A credential dump hits the online underground - 31 minutessubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/098a0d8a-b934-46c4-bc60-8397b911b130.png CyberWire Daily Podcast - A credential dump hits the online underground A massive credential dump hits the online underground. CISA and the FBI issue…INFOSEC.PUB
19 JanNew CISO appointments 2024The upper ranks of corporate security are seeing a high rate of change as companies try to adapt to the evolving threat landscape. Many companies are hiring a chief security officer (CSO) or chief information security officer (CISO) for the first time to support a deeper commitme…CSOONLINE.COM
19 Jan KEVU.S. Cybersecurity Agency Warns of Actively Exploited Ivanti EPMM VulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw in Ivanti Endpoint Manager Mobile and MobileIron Core to its list of actively exploited vulnerabilities.THEHACKERNEWS.COM
19 JanIvanti EPMM Vulnerability Targeted in Attacks as Exploitation of VPN Flaws IncreasesThe number of Ivanti VPN appliances compromised through exploitation of recent flaws increases and another vulnerability is added to exploited list. The post Ivanti EPMM Vulnerability Targeted in Attacks as Exploitation of VPN Flaws Increases appeared first on SecurityWeek .SECURITYWEEK.COM
19 JanCybercriminals Leverage TeamViewer to Breach Networks in New Ransomware AttacksRansomware actors are exploiting TeamViewer to gain access to organization endpoints and attempt to deploy ransomware, highlighting the importance of maintaining strong security practices and using the latest software versions.BLEEPINGCOMPUTER.COM
19 JanAdversaries Exploit Trends, Target Popular GenAI AppsEnterprise employees are increasingly accessing generative AI applications, posing a risk of exposing sensitive data, making it crucial for organizations to implement advanced data security measures.HELPNETSECURITY.COM
19 JanVMware confirms critical vCenter flaw now exploited in attacksVMware has confirmed that a critical vCenter Server remote code execution vulnerability patched in October is now under active exploitation. [...]BLEEPINGCOMPUTER.COM
19 JanShmoocon 2023submitted by ashar to security_cpe 1 points | 0 comments ShmooCon 2023 Videos by Shmoo Group, various presenters The videos in this collection are from ShmooCon 2023, which occurred on 20 - 22 January 2023, at the Washington Hilton Hotel. For more information about ShmooCon pleas…INFOSEC.PUB
19 JanCanadian Man Stuck in Triangle of E-Commerce FraudA Canadian man who says he's been falsely charged with orchestrating a complex e-commerce scam is seeking to clear his name. His case appears to involve "triangulation fraud," which occurs when a consumer purchases something online -- from a seller on Amazon or eBay, for example …KREBSONSECURITY.COM
19 JanCritical Vulnerabilities Found in Open Source AI/ML PlatformsSecurity researchers flag multiple severe vulnerabilities in open source AI/ML solutions MLflow, ClearML, Hugging Face. The post Critical Vulnerabilities Found in Open Source AI/ML Platforms appeared first on SecurityWeek .SECURITYWEEK.COM
19 Jan35.5 Million Customers Affected by Apparel Maker VF's BreachOwner of Such Brands as North Face and Vans Says Business Mostly Back to Normal Skateboarding shoe and outdoor apparel maker VF Corp. said data pertaining to 35.5 million customers appears to have been stolen in a data breach it detected and disclosed last month. The breach disru…DATABREACHTODAY.CO.UK
19 JanCISA emergency directive: Mitigate Ivanti zero-days immediatelyCISA issued this year's first emergency directive ordering Federal Civilian Executive Branch (FCEB) agencies to immediately mitigate two Ivanti Connect Secure and Ivanti Policy Secure zero-day flaws in response to widespread and active exploitation by multiple threat actors. [...…BLEEPINGCOMPUTER.COM
19 JanDeprecated npm packages that appear active present open-source riskSecurity researchers warn that many npm packages are being deprecated and abandoned by their maintainers without a clear warning to users. Such packages can accumulate serious vulnerabilities over time and sometimes their maintainers even abandon them particularly because they do…CSOONLINE.COM
19 JanCISA Issues Emergency Directive on Ivanti Zero-DaysThe US government’s cybersecurity agency CISA ramps up the pressure on organizations to mitigate two exploited Ivanti VPN vulnerabilities. The post CISA Issues Emergency Directive on Ivanti Zero-Days appeared first on SecurityWeek .SECURITYWEEK.COM
19 JanCISA Directs Agencies to Mitigate Ivanti Zero-Day ExploitsUS Agencies Told to Remove Ivanti's Affected Products From Federal Networks The U.S. Cybersecurity and Infrastructure Security Agency directed federal agencies to implement mitigation measures for two zero-day exploits that affect Ivanti’s popular VPN products while they await a …DATABREACHTODAY.CO.UK
19 JanHackers breached Microsoft to find out what Microsoft knows about themOn Friday, Microsoft disclosed that the hacking group it calls Midnight Blizzard, also known as APT29 or Cozy Bear — and widely believed to be sponsored by the Russian government — hacked some corporate email accounts, including those of the company’s “senior leadership team and …TECHCRUNCH.COM
19 JanMicrosoft: Russian State Hackers Obtained Access to Leadership EmailsComputing Giant Says Hackers Did Not Access Customer Data or Production Systems Russian state hackers obtained access to the inboxes of senior Microsoft executives for at least six weeks, the computing giant disclosed late Friday afternoon. "There is no evidence that the threat a…DATABREACHTODAY.CO.UK
19 JanRussian hackers breached Microsoft to steal corporate emailsMicrosoft disclosed Friday night that some of its corporate email accounts were breached and data stolen by the Russian state-sponsored hacking group Midnight Blizzard. [...]BLEEPINGCOMPUTER.COM
19 JanRussian hackers stole Microsoft corporate emails in month-long breachMicrosoft disclosed Friday night that some of its corporate email accounts were breached and data stolen by the Russian state-sponsored hacking group Midnight Blizzard. [...]BLEEPINGCOMPUTER.COM
19 JanAccess management startup Oleria lands $33M in fundingOleria, a startup providing access management tools primarily for enterprise customers, today announced that it raised $33 million in a Series A round led by Evolution Equity Partners with participation from Salesforce Ventures, Tapestry Ventures and Zscaler. Oleria was co-founde…TECHCRUNCH.COM
📋 SECURITY BULLETINS 2[−]
19 JanCyber Security Today, Jan. 19, 2024 - Vulnerabilities found in server firmware, a warning to Docker administrators, and moreThis episode reports on firmware updates from hardware manufacturers that IT admins should be watching for, a phishing warning to Middle Eastern expets and moreCYBERSECURITYTODAY.LIBSYN.COM
19 JanCISA Issues Emergency Directive on Ivanti VulnerabilitiesCISA has issued Emergency Directive (ED) 24-01 Mitigate Ivanti Connect Secure and Ivanti Policy Secure Vulnerabilities in response to active vulnerabilities in the following Ivanti products: Ivanti Connect Secure and Ivanti Policy Secure. ED 24-01 directs all Federal Civilian Exe…CISA.GOV
📢 SECURITY ADVISORIES 13[−]
19 JanFBI & CISA Warns of risk to critical infrastructure by Chinese DronesThe Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) have raised a red flag: Chinese-made drones pose a significant risk to the security of critical infrastructure in the United States. While any UAS can harbor vulnerabilities,…GBHACKERS.COM
19 JanPreventing Data Loss: Backup and Recovery Strategies for Exchange Server AdministratorsIn the current digital landscape, data has emerged as a crucial asset for organizations, akin to currency. It’s the lifeblood of any organization in today's interconnected and digital world. Thus, safeguarding the data is of paramount importance. Its importance is magnified in on…THEHACKERNEWS.COM
19 JanCISA Warns Against New Androxgh0st Malware AttacksThe CISA and the FBI issued a joint warning about the Androxgh0st malware botnet, indicating that threat actors are building a botnet network to extract cloud credentials. Threat actors were also observed using stolen AWS credentials to create new users and user policies on …CYWARE.COM
19 JanUS Gov Publishes Cybersecurity Guidance for Water and Wastewater UtilitiesCISA, FBI and EPA document aims to help water and wastewater organizations improve their cyber resilience and incident response. The post US Gov Publishes Cybersecurity Guidance for Water and Wastewater Utilities appeared first on SecurityWeek .SECURITYWEEK.COM
19 JanNew Sophisticated NFT Airdrop Attack  Steals Funds From Victim’s WalletThe allure of NFTs, those shimmering digital tokens holding unique artworks and promises of fortune, has captivated the world.  But amidst the buzz lurks a sinister shadow: the NFT scam.  Recently, Check Point Research exposed a sophisticated airdrop scam targeting over…GBHACKERS.COM
19 JanCISA & FBI released Incident Response Guide for WWS SectorMalicious cyber incidents, such as ransomware and unauthorized access, have affected the Water and Wastewater Sector (WWS) in the past few years. Particularly, ransomware is a common tactic cybercriminals use to target WWS utilities. Cyber threat actors target the WWS because it …GBHACKERS.COM
19 JanReport: World governments must act to create generative AI safeguardsGenerative AI’s fast-flowering utility in the cybersecurity field means that governments must take steps to regulate the technology as its use by malicious actors becomes increasingly common, according to a report issued this week by the Aspen Institute. The report called generat…CSOONLINE.COM
19 JanNew Guidance Urges US Water Sector to Boost Cyber ResilienceCISA, EPA and FBI Warn of Increased Cyberthreats Targeting US Water Systems The U.S. Cybersecurity and Infrastructure Security Agency published guidance for water and wastewater sector owners and operators to bolster their cyber defenses with comprehensive incident response plans…DATABREACHTODAY.CO.UK
19 JanFrench CNIL Imposes Fine of 10 Million Euros on YahooCompany Fined for Dropping Advertising Cookies Without Consent The French data regulator imposed a fine of 10 million euros on Yahoo after determining that the company's advertising cookie policy had violated the country's privacy regulations. Yahoo deposited more than 20 trackin…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 20[−]
19 JanTop Official Says Kansas Courts Need at Least $2.6 Million to Recover From CyberattackKansas Courts needs funding to cover the costs of bringing computer systems back online, pay vendors, improve cybersecurity and hire three additional cybersecurity officials. The post Top Official Says Kansas Courts Need at Least $2.6 Million to Recover From Cyberattack appeared …SECURITYWEEK.COM
19 JanAn Analysis of the DarkGate AutoIt LoaderThe malware employs tactics such as lateral movement via PSEXEC, malicious download and execution, proxy setup, and RDP configuration to exfiltrate data and establish command and control communications.SPLUNK.COM
19 JanNpm Trojan Bypasses UAC, Installs AnyDesk with "Oscompatible" PackageA malicious package uploaded to the npm registry has been found deploying a sophisticated remote access trojan on compromised Windows machines. The package, named "oscompatible," was published on January 9, 2024, attracting a total of 380 downloads before it was taken down. oscom…THEHACKERNEWS.COM
19 JanUpdate: Cyberattack on Ukraine’s Largest Telecom Provider Will Cost It About $100 MillionThe attack on Kyivstar, believed to have been carried out by Sandworm APT, aimed to cause a destructive impact, deliver a psychological blow, and gather intelligence, marking a significant incident in the ongoing cyberwar between Ukraine and Russia.THERECORD.MEDIA
19 JanWealthy Countries Boast Superior Cyber DefensesA report by SecurityScorecard revealed that wealthier regions have better cybersecurity defenses and lower cyber risk compared to poorer regions. The study found that organizations in regions with lower GDP are more likely to suffer data breaches.CYBERSECURITYDIVE.COM
19 JanRansomware Attacks Leave Small Business Owners Feeling Suicidal, Report SaysThe stress caused by ransomware attacks can lead to burnout and sickness among IT teams, potentially resulting in personnel leaving their jobs or being absent on sick leave.THERECORD.MEDIA
19 JanKansas State University Cyberattack Disrupts IT Network and ServicesKansas State University is managing a cybersecurity incident that has disrupted various network systems, including VPN, email services, and video platforms, impacting the educational continuity for its 20,000 students and 1,400 academic personnel.BLEEPINGCOMPUTER.COM
19 JanNPM Trojan Bypasses UAC, Installs AnyDesk with "Oscompatible" PackageIn a recent incident, a malicious package called "oscompatible" was uploaded to the npm registry. The package was found to contain a sophisticated remote access trojan for Windows machines.THEHACKERNEWS.COM
19 JanRussian hacker Coldriver extends tactics to include custom malwareRussian state-sponsored actor Coldriver, known for using spearphishing attacks on high-profile government accounts in Western countries for cyberespionage, has evolved tacts to include custom malware in its campaigns, according to a Google Threat Analysis Group (TAG) report. Also…CSOONLINE.COM
19 JanVF Corp Says Data Breach Resulting From Ransomware Attack Impacts 35 MillionApparel and footwear brands owner VF Corp shares more details on the impact of a December 2023 ransomware attack. The post VF Corp Says Data Breach Resulting From Ransomware Attack Impacts 35 Million appeared first on SecurityWeek .SECURITYWEEK.COM
19 Jan35.5 million customers of major apparel brands have their data breached after ransomware attackBought some Timberland shoes? Wear a North Face jacket? You, and millions of purchasers of other popular high-street brands, could have had their data stolen by the ALPHV ransomware group. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
19 JanLoanDepot outage drags into second week after ransomware attackLoanDepot customers say they have been unable to make mortgage payments or access their online accounts following a suspected ransomware attack on the company last week. The mortgage and loan giant said on January 8 that it was working to “restore normal business operations…TECHCRUNCH.COM
19 JanVans, North Face owner says ransomware breach affects 35 million peopleVF Corporation, the company behind brands like Vans, Timberland, The North Face, Dickies, and Supreme, said that more than 35 million customers had their personal information stolen in a December ransomware attack. [...]BLEEPINGCOMPUTER.COM
19 JanUpdate: LoanDepot Outage Drags Into Second Week After Ransomware AttackThe mortgage and loan company LoanDepot experienced a suspected ransomware attack, leading to difficulties for customers in making mortgage payments and accessing their online accounts.TECHCRUNCH.COM
19 JanISMG Editors: Why Are Crypto Phishing Attacks Surging?Legal Moves: Crypto Theft Lawsuit; Hospital Sues LockBit Gang In the latest weekly update, ISMG editors discussed why crypto-seeking drainer scam-as-a-service operations are thriving, a novel legal move that recovered a hospital's stolen data, and a ground-breaking case involving…DATABREACHTODAY.CO.UK
19 JanKyivstar Hack to Cost the Ukrainian Telco Giant $100 MillionKyivstar Parent Veon Attributes Losses to Customer Retention Measures A December cyberattack on Ukraine's top telecom operator, which authorities in Kyiv attribute to the Russian military, will cost the parent company nearly $100 million. Ukraine in mid-December accused the Russi…DATABREACHTODAY.CO.UK
19 JanCyber Security Today, Week in Review for Friday Jan. 19, 2024This episode features a discussion on cryptocurrency scammers hacking X accounts, the arrest of a Ukrainian man for using hacked cloud accounts to create 1 million virtual servers for mining cryptocurrency and how an accounting firm employee fell for a phishing email pretending t…CYBERSECURITYTODAY.LIBSYN.COM
19 JanPayoneer accounts in Argentina hacked in 2FA bypass attacksNumerous Payoneer users in Argentina report waking up to find that their 2FA-protected accounts were hacked and funds stolen after receiving SMS OTP codes while they were sleeping. [...]BLEEPINGCOMPUTER.COM
19 JanFinnish Hacker Denies Role In Psychotherapy Clinic AttackAleksanteri Kivimäki Disputed In Court Evidence Collected by Police A Finnish man accused of hacking and leaking mental health records downplayed his tech skills and said during cross-examination in court he had no part in the data breach. Kivimäki said he's been engaged with com…DATABREACHTODAY.CO.UK
19 JanBreachForums hacking forum admin sentenced to 20 years supervised releaseConor Brian Fitzpatrick was sentenced to 20 years of supervised release today in the Eastern District of Virginia for operating the notorious BreachForums hacking forum, known for the sale and leaking of personal data for hundreds of millions of people worldwide. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 15[−]
19 JanISC Stormcast For Friday, January 19th, 2024 https://isc.sans.edu/podcastdetail/8816, (Fri, Jan 19th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
19 JanResearchers Uncover npm Package Delivering RAT Via Microsoft Executablesubmitted by expertmadman to cybersecurity 1 points | 0 comments https://blog.phylum.io/npm-package-found-delivering-sophisticated-rat/PHYLUM.IO
19 JanmacOS Python Script Replacing Wallet Applications with Rogue Apps, (Fri, Jan 19th)Still today, many people think that Apple and its macOS are less targeted by malware. But the landscape is changing and threats are emerging in this ecosystem too[ 1 ]. Here is a good example: I found a malicious Python script targeting wallet application on macOS. …ISC.SANS.EDU
19 JanRussian State Hackers Deploying Malware in Espionage Attacks Around EuropeRussian state hackers from Center 18, a unit within Russia’s Federal Security Service (FSB), have been using sophisticated tactics to deploy backdoors on the devices of targets in NATO countries and Ukraine.THERECORD.MEDIA
19 JanSpeaking to the CIA’s Creative Writing GroupThis is a fascinating story. Last spring, a friend of a friend visited my office and invited me to Langley to speak to Invisible Ink, the CIA’s creative writing group. I asked Vivian (not her real name) what she wanted me to talk about. She said that the topic of the talk w…SCHNEIER.COM
19 JanUS Charges Russian Involved in 2013 Hacking of Neiman Marcus, MichaelsUS charges Russian cybercriminals, including man allegedly involved in hacking of Neiman Marcus and Michaels Stores in 2013. The post US Charges Russian Involved in 2013 Hacking of Neiman Marcus, Michaels appeared first on SecurityWeek .SECURITYWEEK.COM
19 JanGoogle, Pax, LeftOverlocals, Mint Sandstorm, DJI, Colossus, Aaran Leyland, and More – SWN #355Google, Pax, LeftOverlocals, Mint Sandstorm, DJI, Colossus, JelloRain, Aaran Leyland, and More News on the Security Weekly News. →Watch Live: securityweekly.com/live →Subscribe to our podcasts: https://securityweekly.com/subscribe →Join our community Discord: https://securityweek…YOUTUBE.COM
19 Jan71 Million Unique Emails Found in Naz.api Cybercrime DumpInformation-Stealing Malware Continues to Amass Fresh Credentials, Experts Warn The appearance of Naz.api - a massive collection of online credentials harvested by information-stealing malware that contains 71 million unique email addresses - illustrates the scale at which such d…DATABREACHTODAY.CO.UK
19 JanFacebook Work-From-Home “Job” Posting Scam Goes the Extra Mile to Trick VictimsA new job posting scam   found by IT security company Qualysys is focused on capturing victim’s identity details, accessing victim’s Facebook accounts, and committing fraud. In this new scam, legitimate Facebook advertising is used to post fake work-from-home job ads from se…KNOWBE4.COM
19 JanGoogle, Pax, LeftOverlocals, Mint Sandstorm, DJI, Colossus, Aaran Leyland, and More - SWN #355Google, Pax, LeftOverlocals, Mint Sandstorm, DJI, Colossus, JelloRain, Aaran Leyland, and More News on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-355YOUTUBE.COM
19 JanZelle Is Using My Name and Voice without My ConsentOkay, so this is weird. Zelle has been using my name, and my voice, in audio podcast ads—without my permission. At least, I think it is without my permission. It’s possible that I gave some sort of blanket permission when speaking at an event. It’s not likely, b…SCHNEIER.COM
19 JanMicrosoft Actions Following Attack by Nation State Actor Midnight BlizzardThe Microsoft security team detected a nation-state attack on our corporate systems on January 12, 2024, and immediately activated our response process to investigate, disrupt malicious activity, mitigate the attack, and deny the threat actor further access. Microsoft has identif…MSRC.MICROSOFT.COM
19 JanFriday Squid Blogging: New Foods from Squid FinsWe only eat about half of a squid, ignoring the fins. A group of researchers is working to change that . As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here .SCHNEIER.COM
19 JanGroups Urge FTC to Scrutinize Google Location Data PracticesComplaint Alleges Tech Giant Is Breaking Privacy Promises, Putting Patients at Risk Two tech advocacy groups are pushing the Federal Trade Commission to investigate Google, alleging the company has reneged on a promise it made after the Supreme Court's 2022 overturn of Roe v. Wad…DATABREACHTODAY.CO.UK
19 JanMicrosoft Says Russian Gov Hackers Stole Email Data from Senior ExecsA Russian government-backed hacking team broke into Microsoft’s corporate network and stole emails and attachments from senior executives. The post Microsoft Says Russian Gov Hackers Stole Email Data from Senior Execs appeared first on SecurityWeek .SECURITYWEEK.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
19 JanExperts Warn of macOS Backdoor Hidden in Pirated Versions of Popular SoftwareThese applications are found on Chinese pirating websites and contain modified disk image files that download and execute multiple payloads to compromise the victim's machine.THEHACKERNEWS.COM
19 JanExperts Warn of macOS Backdoor Hidden in Pirated Versions of Popular SoftwarePirated applications targeting Apple macOS users have been observed containing a backdoor capable of granting attackers remote control to infected machines. "These applications are being hosted on Chinese pirating websites in order to gain victims," Jamf Threat Labs researchers F…THEHACKERNEWS.COM
📡 INFOSEC NEWS 13[−]
19 JanJPMorgan Ups Cyber Defenses as Scam Attacks RiseMary Callahan Erdoes, head of the bank’s asset and wealth management division, highlighted a significant rise in cybercrime, with a 65% increase in fraud losses for U.S. financial institutions from 2022 to 2023.PYMNTS.COM
19 JanRemcos Rat Propagates via WebhardsThe Remcos RAT is being distributed in South Korea through webhards, leveraging adult-themed games as a disguise. In this tactic, users are deceived into opening files posing as adult games. This campaign emphasizes the need for heightened vigilance when downloading files fr…CYWARE.COM
19 JanAHA Warns of Rise in Scams Targeting IT Help Desks for Payment FraudThe AHA recommends strict IT help desk security protocols and immediate notification to financial institutions and the FBI to mitigate the risk of falling victim to these schemes.BANKINFOSECURITY.COM
19 JanFTC bans another data broker from selling consumers’ location dataThe U.S. Federal Trade Commission has continued its crackdown on data brokers with a settlement banning data aggregation company InMarket from selling consumers’ precise location data. Texas-based InMarket, which debuted as CheckPoints at TechCrunch Disrupt 2010, provides a marke…TECHCRUNCH.COM
19 JanReport: Illicit Cryptocurrency Flows Drop 39% in 2023In 2023, the flow of cryptocurrency into illicit addresses decreased by nearly 39% compared to the previous year, with sanctioned entities accounting for the majority of activity, according to Chainalysis.INFOSECURITY-MAGAZINE.COM
19 JanUpdate: Vans, Supreme Owner VF Corp Says Hackers Stole 35 Million Customers’ Personal DataThe clothing company has not specified the type of data stolen but assured that Social Security numbers, bank account information, and payment card details were not retained.TECHCRUNCH.COM
19 JanXDR and the Benefits of Managed ServicesExtended Detection and Response (XDR) has evolved significantly over the past few years, becoming more critical than ever for organizations in need of enhanced capabilities. But so, too, have the accompanying managed services evolved. Port53 Technologies President Omar Zarabi exp…DATABREACHTODAY.CO.UK
19 JanPolyCrypt Runtime Crypter Being Sold on Cybercrime ForumsThe underground market for crypters, exemplified by PolyCrypt, facilitates the sale and use of these tools for malicious purposes, highlighting the ongoing challenge of cybercrime.BLACKFOG.COM
19 JanFTC bans one more data broker from selling your location infoThe U.S. Federal Trade Commission (FTC) continues to target data brokers, this time in a settlement with InMarket Media, which bans the company from selling Americans' precise location data. [...]BLEEPINGCOMPUTER.COM
19 JanWhy many CISOs consider quitting – Week in security with Tony AnscombeThe job of a CISO is becoming increasingly stressful as cybersecurity chiefs face overwhelming workloads and growing concerns over personal liability for security failingsWELIVESECURITY.COM