102Articles
9Categories
2024-01-24Date
🚨 CISA KEV 1[−]
24 Jan KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-22527 Atlassian Confluence Data Center and Server Template Injection Vulnerability These types of vulnerabilities are frequent attack vectors f…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
24 JanPatch Your GoAnywhere MFT Immediately - Critical Flaw Lets Anyone Be AdminA critical security flaw has been disclosed in Fortra's GoAnywhere Managed File Transfer (MFT) software that could be abused to create a new administrator user. Tracked as CVE-2024-0204, the issue carries a CVSS score of 9.8 out of 10. "Authentication bypass in Fortra's GoAn…THEHACKERNEWS.COM
24 JanOver 5,300 GitLab servers exposed to zero-click account takeover attacksOver 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 22[−]
24 JanCivilian cyber reserves gaining steam at the US federal and state levelsThe creation of civilian cyber reserves has gained traction over the past several years as US federal and state governments come up against the same constraints the private sector faces when recruiting and paying the high salaries of scarce cybersecurity talent. The Homeland Secu…CSOONLINE.COM
24 JanThe Unknown Risks of The Software Supply Chain: A Deep-DiveIn a world where more & more organizations are adopting open-source components as foundational blocks in their application's infrastructure, it's difficult to consider traditional SCAs as complete protection mechanisms against open-source threats. Using open-source libraries …THEHACKERNEWS.COM
24 JanThe Mass Exploitation of Ivanti Connect SecureAt the time of writing, no official patch has been made available. However, Ivanti has published recovery steps for customers to mitigate their systems in the interim. It’s strongly recommended that you apply this mitigation ASAP.CENSYS.COM
24 JanHackers Deploy Malicious npm Packages on GitHub to Steal SSH KeysTwo malicious npm packages were discovered on the npm open source package manager, which leverages GitHub to store stolen Base64-encrypted SSH keys obtained from developer systems that installed the malicious npm packages. In recent weeks, two suspicious npm packages, namely…GBHACKERS.COM
24 JanPoisoning AI ModelsNew research into poisoning AI models : The researchers first trained the AI models using supervised learning and then used additional “safety training” methods, including more supervised learning, reinforcement learning, and adversarial training. After this, they che…SCHNEIER.COM
24 JanGo St*lk Yourself: Privacy Through OSINT w/ Mishaal Khan | 1-Hoursubmitted by ashar to security_cpe 2 points | 0 comments https://infosec.pub/pictrs/image/ce8e6af3-32f2-42e7-9a1d-6a723779960f.png Go St*lk Yourself: Privacy Through OSINT w/ Mishaal Khan | 1-Hour It’s always scary to Google yourself and see what you find. In this Anti-Cast, we d…INFOSEC.PUB
24 JanTesla hacked, 24 zero-days demoed at Pwn2Own Automotive 2024Security researchers hacked a Tesla Modem and collected awards of $722,500 on the first day of Pwn2Own Automotive 2024 for three bug collisions and 24 unique zero-day exploits. [...]BLEEPINGCOMPUTER.COM
24 JanHow Bad User Interfaces Make Security Tools Harmful, (Wed, Jan 24th)User interface design is one of those often overlooked aspects in software design in general. A bad user interface can quickly become a vulnerability regarding security. Even though I do not remember actual CVE&#;x26;#;39;s assigned to bad user-interfa…ISC.SANS.EDU
24 JanGen AI fuelled 2023 cyberattacks, evolution pushed remediation costs: reportCyberattacks became more targeted, sophisticated, and severe in 2023 as attackers pivoted to leverage generative AI, according to a Barracuda report. Evolved attacks called for greater remediation time and resources, spiking average annual remediation costs for the year. “The pur…CSOONLINE.COM
24 JanPoC Code Published for Just-Disclosed Fortra GoAnywhere VulnerabilityPoC code exploiting a critical Fortra GoAnywhere MFT vulnerability gets published one day after public disclosure. The post PoC Code Published for Just-Disclosed Fortra GoAnywhere Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanGoogle Kubernetes Misconfig Lets Any Gmail Account Control Your ClustersCybersecurity researchers have discovered a loophole impacting Google Kubernetes Engine (GKE) that could be potentially exploited by threat actors with a Google account to take control of a Kubernetes cluster. The critical shortcoming has been codenamed Sys:All by cloud security …THEHACKERNEWS.COM
24 JanPwn2Own Automotive: Hackers Earn Over $700k for Tesla, EV Charger, Infotainment ExploitsOn the first day of Pwn2Own Automotive participants earned over $700,000 for hacking Tesla, EV chargers and infotainment systems. The post Pwn2Own Automotive: Hackers Earn Over $700k for Tesla, EV Charger, Infotainment Exploits appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanMozilla Releases Security Updates for Thunderbird and FirefoxMozilla has released security updates to address vulnerabilities in Thunderbird and Firefox. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and appl…CISA.GOV
24 JanGroup permission misconfiguration exposes Google Kubernetes Engine clustersResearchers warn that many admins have misunderstood the significance and scope of a default user group in Google Kubernetes Engine (GKE) and assigned dangerous permissions to it. As a result, a large number of clusters can now be potentially exploited by anyone with an internet …CSOONLINE.COM
24 JanHow the Sys:All Loophole Allowed Us To Penetrate GKE Clusters in ProductionAn external threat actor in possession of a Google account could misuse this misconfiguration by using their own Google OAuth 2.0 bearer token to seize control of the cluster for follow-on exploitation.ORCA.SECURITY
24 JanFortra GoAnywhere MFT Flaw Grants Admin Access to Anyone'/..;/' Strikes Again A security vulnerability in Fortra's GoAnywhere managed file transfer software can allow unauthorized users to create a new admin user. The vulnerability is a remotely exploitable authentication bypass flaw. Hackers have targeted file transfer software over …DATABREACHTODAY.CO.UK
24 JanHPE: Russian hackers breached its security team’s email accountsHewlett Packard Enterprise (HPE) disclosed today that suspected Russian hackers known as Midnight Blizzard gained access to the company's Microsoft Office 365 email environment to steal data from its cybersecurity team and other departments. [...]BLEEPINGCOMPUTER.COM
24 JanSBOMs and Supply Chains - Allan Friedman - BTS #22We sit down with the father of the SBOM, Allan Friedman, to discuss examples of where we really need SBOMs, how to operationalize SBOMs, and how to identify and deal with bad things that may be in your SBOM! CISA's resources on SBOM are at cisa.gov/SBOM and anyone can find out mo…YOUTUBE.COM
24 JanUK Mulls Rollout of New Software Vulnerability RulesVoluntary Rules Will Set Baseline Security Requirement for Software Vendors, Users The U.K. government is mulling the rollout of a voluntary set of rules urging software vendors to responsibly disclose vulnerabilities in their systems. The measure comes as the government continue…DATABREACHTODAY.CO.UK
24 JanHPE Fingers Russian State Hackers for Email Hack'Midnight Blizzard' Was Inside Company Network for 7 Months Hewlett Packard Enterprise in an after-hours regulatory filing disclosed that suspected Russian state hackers had gained access to corporate email inboxes for more than seven months. A threat group tracked as "Midnight B…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 9[−]
24 JanGoAnywhere MFT Critical Flaw Lets Anyone Be AdminAuthentication bypass in Fortra's GoAnywhere MFT before 7.4.1 allows an unauthorized user to create an admin user via the administration portal," Fortra said in an advisory released on January 22, 2024.THEHACKERNEWS.COM
24 JanBHIS Webcast: New Wave of Ransomware Attacks: How did this happen?submitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/e8de5ee8-c4f0-4ee4-b206-81868460b339.png Webcast: New Wave of Ransomware Attacks: How did this happen? This is a special joint webcast from the teams of Black Hills Information Security, Wil…INFOSEC.PUB
24 JanVenafi’s new offering to block unauthorized code across user environmentsCybersecurity software and services provider Venafi has launched a new offering, Stop Unauthorized Code, to help security teams detect and block unauthorized code across any development and operating environment. Combining Venafi’s existing code signing offering, CodeSign Protect…CSOONLINE.COM
24 JanUK says AI will empower ransomware over the next two yearsThe United Kingdom's National Cyber Security Centre (NCSC) warns that artificial intelligence (AI) tools will have an adverse near-term impact on cybersecurity, helping escalate the threat of ransomware. [...]BLEEPINGCOMPUTER.COM
24 JanPrivacy Attacks in Federated LearningThis post is part of a series on privacy-preserving federated learning. The series is a collaboration between NIST and the UK government’s Centre for Data Ethics and Innovation. Learn more and read all the posts published to date at NIST’s Privacy Engineering Collaboration Space …NIST.GOV
24 JanHHS Details New Cyber Performance Goals for Health Sector'Essential' and 'Enhanced' Best Practices Will Influence Upcoming Rule-Making Federal regulators have released guidance that spells out voluntary cybersecurity performance goals for the healthcare sector. The document is a first step in fleshing out the Biden administration's str…DATABREACHTODAY.CO.UK
24 JanWhat Smart CISOs and Mature Orgs Get That Others Don’t About Cyber Compliance with Matt Coose.Join us live at 6pm ET today as we talk about What Smart #CISOs and Mature Orgs Get That Others Don’t About Cyber Compliance with Matt Coose, Founder and CEO at Qmulos. →Watch Live Here: securityweekly.com/live →Subscribe to our podcasts: https://securityweekly.com/subscribe →Joi…YOUTUBE.COM
24 JanThe near-term impact of AI on the cyber threatAn NCSC assessment focusing on how AI will impact the efficacy of cyber operations and the implications for the cyber threat over the next two years.NCSC.GOV.UK
🔥 INCIDENT REPORTING 24[−]
24 JanParrot TDS Injecting Malicious Redirect Scripts on Hacked SitesIn the murky depths of the digital world lurks a cunning predator – Parrot TDS, a cyber campaign that has flown under the radar for years, leaving a trail of compromised websites and vulnerable users in its wake.  Parrot TDS identifies itself through a whisper in the code – …GBHACKERS.COM
24 JanTop 12 Best Penetration Testing Companies & Services – 2024Penetration Testing Companies are pillars when it comes to information security; nothing is more important than ensuring your systems and data are safe from unauthorized access; many organizations have a flawed security culture, with employees motivated to protect their informati…GBHACKERS.COM
24 JanMavenGate Supply Chain Attack Let Attackers Hijack Java & Android AppsHackers use supply chain attacks to breach a target by gaining access to and taking advantage of weaknesses in the vendor, partner, or supplier network. Threat actors can enter the target firm by distributing malware, influencing software upgrades, and gaining illicit access by b…GBHACKERS.COM
24 JanU.S., U.K., Australia Sanction Russian REvil Hacker Behind Medibank BreachGovernments from Australia, the U.K., and the U.S. have imposed financial sanctions on a Russian national for his alleged role in the 2022 ransomware attack against health insurance provider Medibank. Alexander Ermakov (aka blade_runner, GistaveDore, GustaveDore, or JimJones), 33…THEHACKERNEWS.COM
24 JanCyber Security Today, Jan. 24, 2024 - The latest ransomware news and a controversy over alleged viruses in HP printer cartridgesThis episode reports on ransomware attacks on a North American firm that manages water utilities ,and moreCYBERSECURITYTODAY.LIBSYN.COM
24 JanUS, UK, Australia Sanction Russian Man Over Ransomware Attack on Healthcare InsurerUS, UK and Australia announce sanctions against Alexander Ermakov for his role in the 2022 ransomware attack on healthcare insurer Medibank. The post US, UK, Australia Sanction Russian Man Over Ransomware Attack on Healthcare Insurer appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanVexTrio a hub of Cyber attacks With Massive Criminal Affiliate ChainVexTrio, a cybercrime syndicate with a history dating back to at least 2017, has been implicated in nefarious activities utilizing a sophisticated dictionary domain generation algorithm (DDGA).  Their malicious campaigns encompass scams, riskware, spyware, adware, potentiall…GBHACKERS.COM
24 JanTrello API Abused to Link Email Addresses to 15 Million AccountsFor those concerned, the Trello leak has been added to the Have I Been Pwned data breach notification service, allowing anyone to check if they are among the 15 million leaked email addresses.BLEEPINGCOMPUTER.COM
24 JanMajor US, UK Water Companies Hit by RansomwareTwo major water companies, Veolia in the US and Southern Water in the UK, have been targeted in ransomware attacks that resulted in data breaches. The post Major US, UK Water Companies Hit by Ransomware appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanKasseika Ransomware Operators Launch BYOVD AttacksThe ransomware uses targeted phishing techniques for initial access, as well as to gather credentials from one of the employees of its target company. It then uses RATs to gain privileged access and move laterally within its target network.TRENDMICRO.COM
24 JanKasseika Ransomware Using BYOVD Trick to Disarms Security Pre-EncryptionThe ransomware group known as Kasseika has become the latest to leverage the Bring Your Own Vulnerable Driver (BYOVD) attack to disarm security-related processes on compromised Windows hosts, joining the likes of other groups like Akira, AvosLocker, BlackByte, and RobbinHood. The…THEHACKERNEWS.COM
24 JanHackers Use SYSTEMBC Tool to Maintain Access to Compromised NetworkTo maintain access to compromised networks, hackers use specialized hacking tools. Such tools help the threat actors evade the detection mechanisms and maintain control over the compromised system. This unauthorized access enables the threat actors to extract sensitive informatio…GBHACKERS.COM
24 JanJason’s Deli Says Customer Data Exposed in Credential Stuffing Attack"We do not know the number of accounts that the unauthorized party was able to access, but out of an abundance of caution, we are sending this notice to all potentially affected account holders," reads the data breach notification from Jason's Deli.BLEEPINGCOMPUTER.COM
24 JanBeware of rogue chatbot hacking incidentsFor years, chatbots have been a useful tool to help automate customer-facing applications. But what happens if the chatbot goes rogue? Recent reports have revealed that this may have happened to the Comcast / Xfinity chatbot. First, there were incidents of Xfinity email outages. …SECURITYINTELLIGENCE.COM
24 JanGitGot: GitHub Leveraged by Cybercriminals to Store Stolen DataIt appears that the package author was in the process of building out the malware and adding layers of deception. Fortunately, the package was detected and removed from npm before that could happen.REVERSINGLABS.COM
24 JanWater Services Giant Veolia North America Hit by Ransomware AttackThe company has discovered a limited number of individuals whose personal information may have been impacted during the breach and is working with a third-party forensics firm to assess the extent of the attack's impact on its operations and systems.BLEEPINGCOMPUTER.COM
24 JanRansomware on Tap as Major Water Providers Fall VictimUS and UK Water Giants Report Network Breaches and Data Leaks, But No Encryption Two major water providers in the U.S. and U.K. report that they recently fell victim to ransomware attacks. In both cases, attackers appear to have stolen employee or customer data that they're now h…DATABREACHTODAY.CO.UK
24 JanGlobal fintech firm EquiLend offline after recent cyberattackNew York-based global financial technology firm EquiLend says its operations have been disrupted after some systems were taken offline in a Monday cyberattack. [...]BLEEPINGCOMPUTER.COM
24 Jan37C3: how ethical hackers broke DRM on trains | Kaspersky official blogHow white hats from Dragon Sector hacked into trains to fix them, but discovered manufacturer-installed malicious implants and backdoors in their software.KASPERSKY.COM
24 JanWatching the Watchdog: Learning from HHS' Grant Payment MessTight-Lipped Agency's Next Move in Wake of $7.5M Scam Could Be Telling Rumors are swirling about how the Department of Health and Human Services lost about $7.5 million in grant payments through a series of cyberattacks last year, including speculation over whether the incidents …DATABREACHTODAY.CO.UK
24 JanNorth Korean Hackers Using AI in Advanced CyberattacksU.S.-Led Sanctions Do Little to Curtail North Korea's Development of AI South Korea's intelligence agency has reported that North Korean hackers are using generative AI to conduct cyberattacks and search for hacking targets. Experts believe North Korea's AI capabilities are robus…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 21[−]
24 JanWindows - Data Protection API - A journey into various DPAPI potential abuses from an offensive security perspectivesubmitted by L4s to secops 1 points | 0 comments https://tierzerosecurity.co.nz/2024/01/22/data-protection-windows-api.html Windows - Data Protection API - A journey into various DPAPI potential abuses from an offensive security perspective::Information Security Services. Offensi…TIERZEROSECURITY.CO.NZ
24 JanISC Stormcast For Wednesday, January 24th, 2024 https://isc.sans.edu/podcastdetail/8822, (Wed, Jan 24th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
24 JanAmazon’s French Warehouses Fined Over Employee SurveillanceFrance's data protection agency fines Amazon's French warehouses unit 32 million euros ($34.9 million) for "excessively intrusive" employee surveillance system. The post Amazon’s French Warehouses Fined Over Employee Surveillance appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanChrome 121 Patches 17 VulnerabilitiesGoogle releases Chrome 121 to the stable channel with 17 security fixes, including 11 reported by external researchers. The post Chrome 121 Patches 17 Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanCybersecurity Market Forecasts: AI, API, Adaptive Security, Insurance Expected to SoarCybersecurity market projections for the next years focusing on AI, ICS, email, API, insurance, application and adaptive security.x The post Cybersecurity Market Forecasts: AI, API, Adaptive Security, Insurance Expected to Soar appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanGen AI Expected to Bring Big Changes to Banking SectorMcKinsey Predicts up to 15% Profit Increase, Gen AI Use in All Areas of Banking Bloomberg, JPMC, European Central Bank, Morgan Stanley, NASDAQ, HDFC ERGO and Commonwealth Bank Australia are harnessing gen AI to enhance productivity and customer experience. Gen AI has the potentia…DATABREACHTODAY.CO.UK
24 JanUse of Generative AI Apps Jumps 400% in 2023, Signaling the Potential for More AI-Themed AttacksAs the use of Cloud SaaS platforms of generative AI solutions increases, the likelihood of more “GPT” attacks used to gather credentials, payment info and corporate data also increases.KNOWBE4.COM
24 JanNorth Korean Threat Actor Targeting Cybersecurity Researchers With Spear Phishing AttacksA suspected North Korean state-sponsored threat actor called “ScarCruft” is launching spear phishing attacks against cybersecurity professionals, according to researchers at SentinelOne.KNOWBE4.COM
24 JanBeyond the Hype — Where AI Can Shine in SecurityDiscover the real-world impact of AI in cybersecurity with insights from experts at Palo Alto Networks and Unit 42. Dive into the proliferation of AI tools. The post Beyond the Hype — Where AI Can Shine in Security appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
24 Jan340,000 Jason’s Deli Customers Potentially Impacted by Credential Stuffing AttackJason’s Deli says hackers targeted users in credential stuffing attacks, likely compromising their personal information. The post 340,000 Jason’s Deli Customers Potentially Impacted by Credential Stuffing Attack appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanMethodology: How we discovered over 18,000 API secret tokenssubmitted by Penguincoder to cybersecurity 1 points | 0 comments https://escape.tech/blog/how-we-discovered-over-18-000-api-secret-tokens/ESCAPE.TECH
24 JanCISO Conversations: The Legal Sector With Alyssa Miller at Epiq and Mark Walmsley at FreshfieldsSecurityWeek talks to legal sector CISOs Alyssa Miller at Epiq and Mark Walmsley at Freshfields Bruckhaus Deringer The post CISO Conversations: The Legal Sector With Alyssa Miller at Epiq and Mark Walmsley at Freshfields appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanOrca Flags Dangerous Google Kubernetes Engine MisconfigurationAttackers could take over a Kubernetes cluster if access privileges are granted to all authenticated users in Google Kubernetes Engine. The post Orca Flags Dangerous Google Kubernetes Engine Misconfiguration appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanIsraeli Startup Gets $5M Seed Capital to Tackle AI SecurityPrompt Security emerges from stealth with $5 million in seed to help businesses with generative-AI security tasks. The post Israeli Startup Gets $5M Seed Capital to Tackle AI Security appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
24 JanBeware of Weaponized Office Documents that Deliver VenomRATSince office documents are often used in business communications, hackers take advantage of this fact to disseminate malicious malware easily. Hackers can mislead users into unintentionally activating malware by hiding it in documents that appear to be safe, which gives the malwa…GBHACKERS.COM
24 JanRoblox Game 'Hack-A-Cat' Now Part of the Free KnowBe4 Children’s Interactive Cybersecurity Activity KitIf you haven’t heard of Roblox, you probably don’t have kids like me. Roblox is an online virtual world/metaverse that has been around since 2006 that allows people to play with others and is super popular with young people. We know from research done at Berkeley that gamificatio…KNOWBE4.COM
24 JanHow Datawiza uses Microsoft Entra ID to help universities simplify accessDatawiza helps Claremont Graduate University enable Microsoft Entra ID multifactor authentication and single sign-on for Oracle PeopleSoft, streamling and improving the student experience. The post How Datawiza uses Microsoft Entra ID to help universities simplify access appeared…MICROSOFT.COM
24 JanGSA Sparks Security Fears After Buying Risky Chinese CamerasExperts Warn Against Increasing Federal Reliance on Chinese Technology Experts are raising fresh concerns about the "significant risk" for Chinese espionage against U.S. federal networks after a government watchdog caught the government's main acquisition arm purchasing unauthori…DATABREACHTODAY.CO.UK
24 JanNSPX30: A sophisticated AitM-enabled implant evolving since 2005ESET researchers have discovered NSPX30, a sophisticated implant used by a new China-aligned APT group we have named BlackwoodWELIVESECURITY.COM
24 JanNSPX30: A sophisticated AitM-enabled implant evolving since 2005ESET researchers have discovered NSPX30, a sophisticated implant used by a new China-aligned APT group we have named BlackwoodWELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
24 JanVexTrio: The Uber of Cybercrime - Brokering Malware for 60+ AffiliatesVexTrio has been attributed to malicious campaigns that use domains generated by a dictionary domain generation algorithm (DDGA) to propagate scams, riskware, spyware, adware, potentially unwanted programs (PUPs), and pornographic content.THEHACKERNEWS.COM
📰 CYBERSECURITY BRIEFINGS 2[−]
24 JanSensor Intel Series: Top CVEs in December 2023We add 6 CVEs to our list and do a brief roundup of some stats from 2023.F5.COM
24 JanSensor Intel Series: Top CVEs in December 2023We add 6 CVEs to our list and do a brief roundup of some stats from 2023.F5.COM
📡 INFOSEC NEWS 19[−]
24 JanMicrosoft: Recent updates cause Sysprep Windows validation errorsMicrosoft says admins are seeing 0x80073cf2 errors when using the System Preparation (Sysprep) tool to validate Windows installations for deployment after installing recent Windows 10 updates. [...]BLEEPINGCOMPUTER.COM
24 JanWhat is Nudge Security and How Does it Work?In today’s highly distributed workplace, every employee has the ability to act as their own CIO, adopting new cloud and SaaS technologies whenever and wherever they need. While this has been a critical boon to productivity and innovation in the digital enterprise, it has upended …THEHACKERNEWS.COM
24 JanSplunk fixed high-severity flaw impacting Windows versionsDeserialization of untrusted data can allow malicious code to be executed on the system. This is because the serialized data can contain instructions that the application will execute when it deserializes the data.SECURITYAFFAIRS.COM
24 JanOrganizations Invest More in Data Protection But Recover LessWhile most organizations consider cyber resiliency a foundational aspect of their broader business continuity or disaster recovery (BC/DR) strategy, BC/DR preparedness is not yet “passing” most service-level agreement (SLA) expectations.HELPNETSECURITY.COM
24 JanWindows 11 KB5034204 update fixes Bluetooth audio issues, 24 bugsMicrosoft released the January 2024 preview update for Windows 11 versions 22H2 and 23H2, which comes with Bluetooth audio bug fixes and addresses 24 known issues. [...]BLEEPINGCOMPUTER.COM
24 JanGoogle Pixel phones unusable after January 2024 system updateGoogle Pixel smartphone owners report problems after installing the January 2024 Google Play system update, being unable to access their devices internal storage, open the camera, take screenshots, or even open apps. [...]BLEEPINGCOMPUTER.COM
24 JanHow to secure AD passwords without sacrificing end-user experienceTo increase password security, regulatory bodies recommend longer and unique passwords. Despite this, many still stick to using the same easy-to-guess passwords for the sake of convenience. Learn more from Specops Software on an alternative approach that supports security and end…BLEEPINGCOMPUTER.COM
24 JanPrompt Security wants to make GenAI safe for the enterpriseBusinesses are moving faster than ever to use generative AI and bring it to both their employees and users. Moving fast and security don’t always go hand-in-hand, though, so it’s only now that many businesses are waking up to the potential security concerns related to…TECHCRUNCH.COM
24 JanChrome 121 Patches 17 VulnerabilitiesPACKETSTORMSECURITY.COM
24 JanWindows 11 KB5034204 Update Fixes Bluetooth Audio Issues, 24 bugsKB5034204 also fixes an issue caused by a deadlock that prevents search from working on the Start menu for some users and addresses a bug affecting the OpenType font driver, affecting how text renders for third-party applications.BLEEPINGCOMPUTER.COM
24 JanGlobal Retailer BuyGoods.com Leaks User PII, KYC dataWhat’s worse, the exposed server also laid bare the personal records of customers and affiliates, containing highly sensitive Personally Identifiable Information (PII) and Know Your Customer (KYC) data.HACKREAD.COM
24 JanSEC Twitter hack blamed on SIM swap attackThe US Securities & Exchange Comission (SEC) has confirmed that hackers managed to seize control of a phone number associated with its Twitter account, and used it to post an unauthorised message. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
24 JanVexTrio TDS: Inside a massive 70,000-domain cybercrime operationA previously unknown traffic distribution system (TDS) named 'VexTrio' has been active since at least 2017, aiding 60 affiliates in their cybercrime operations through a massive network of 70,000 sites. [...]BLEEPINGCOMPUTER.COM