108Articles
10Categories
2024-01-25Date
🚨 CISA KEV 1[−]
25 Jan KEVCISA Adds Atlassian Confluence Data Center Bug to Its Known Exploited Vulnerabilities CatalogThe vulnerability, tracked as CVE-2023-22527, allows remote attackers to execute arbitrary code on vulnerable Confluence installs. Atlassian has released patches to address the issue and recommends immediate action to update to the latest versions.SECURITYAFFAIRS.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
25 JanCritical Jenkins Vulnerability Exposes Servers to RCE Attacks - Patch ASAP!The maintainers of the open-source continuous integration/continuous delivery and deployment (CI/CD) automation software Jenkins have resolved nine security flaws, including a critical bug that, if successfully exploited, could result in remote code execution (RCE). The issue, as…THEHACKERNEWS.COM
25 JanThousands of GitLab Instances Unpatched Against Critical Password Reset BugOver 5,000 GitLab servers have yet to be patched against CVE-2023-7028, a critical password reset vulnerability. The post Thousands of GitLab Instances Unpatched Against Critical Password Reset Bug appeared first on SecurityWeek .SECURITYWEEK.COM
25 JanCritical Jenkins Vulnerability Exposes Servers to RCE AttacksThe vulnerability, CVE-2024-23897, allows attackers to read arbitrary files on the Jenkins controller file system. This could potentially lead to various attacks, including remote code execution and decryption of stored secrets.THEHACKERNEWS.COM
25 JanHHS Details New Cyber Performance Goals for Health SectorThe performance goals consist of essential and enhanced practices based on industry cybersecurity frameworks and aim to address common vulnerabilities and mature cybersecurity capabilities in the healthcare sector.BANKINFOSECURITY.COM
25 JanCisco Releases Security Advisory for Multiple Unified Communications and Contact Center Solutions ProductsCisco released a security advisory to address a vulnerability (CVE-2024-20253) affecting multiple Unified Communications Products. A cyber threat actor could exploit this vulnerability to take control of an affected system. CISA encourages users and administrators to review the C…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 25[−]
25 JanTech Giant HP Enterprise Hacked by Russian Hackers Linked to DNC BreachHackers with links to the Kremlin are suspected to have infiltrated information technology company Hewlett Packard Enterprise's (HPE) cloud email environment to exfiltrate mailbox data. "The threat actor accessed and exfiltrated data beginning in May 2023 from a small percentage …THEHACKERNEWS.COM
25 JanDefend critical infrastructure from cyber threats like the US Navy protects shipsAs critical infrastructure becomes more sophisticated and complex, it becomes more difficult to defend against cyber threats while ensuring systems work at peak efficiency. Smart cities need to orchestrate autonomous cars and touchless tolls. Power grids are evolving into bi-dire…CSOONLINE.COM
25 JanHPE’s corporate emails breached by Russian state-sponsored actor ‘Cozy Bear’A Russia-based threat actor known as “Cozy Bear” or “Midnight Blizzard” has breached some of HPE’s corporate mailboxes, the company revealed on Thursday in a Securities and Exchange Commission (SEC) filing . “Based on our investigation, we now believe that the threat ac…CSOONLINE.COM
25 JanNew CherryLoader Malware Mimics CherryTree to Deploy PrivEsc ExploitsA new Go-based malware loader called CherryLoader has been discovered by threat hunters in the wild to deliver additional payloads onto compromised hosts for follow-on exploitation. Arctic Wolf Labs, which discovered the new attack tool in two recent intrusions, said th…THEHACKERNEWS.COM
25 JanNew CherryLoader Malware Mimics CherryTree to Deploy Privilege Escalation ExploitsThe loader drops two publicly available privilege escalation tools, PrintSpoofer and JuicyPotatoNG, and uses encryption methods like XOR and AES to facilitate the attack chain.THEHACKERNEWS.COM
25 JanThe Effect of Omission Bias on Vulnerability ManagementOmission bias in vulnerability management leads to the reluctance to patch vulnerabilities, despite evidence showing the importance of timely patching to prevent cyberattacks.HELPNETSECURITY.COM
25 JanGlobal Fintech Firm EquiLend Offline After Recent CyberattackThe company is working to restore affected services and has hired third-party experts to investigate the security breach. It has not been disclosed if any data was exposed or stolen during the incident.BLEEPINGCOMPUTER.COM
25 JanWhy Cyberattacks Mustn’t Be Kept SecretEmbracing a culture of cybersecurity transparency is beneficial for businesses and the broader security of the internet, as it strengthens external perception and leads to quicker and more resilient reactions to breaches.HELPNETSECURITY.COM
25 JanKasseika Ransomware Exploits Driver Functionality to Kill AntivirusRansomware is a tool that hackers use to extort money from their targets like individuals, businesses, and governments. The malware encrypts the target’s data and demands payment to unlock it. This malicious strategy increases the possibility of payment by giving threat act…GBHACKERS.COM
25 JanCisco Patches Critical Vulnerability in Enterprise Collaboration ProductsA critical flaw in Cisco Unified Communications and Contact Center Solutions products could lead to remote code execution. The post Cisco Patches Critical Vulnerability in Enterprise Collaboration Products appeared first on SecurityWeek .SECURITYWEEK.COM
25 JanData privacy faces budget cuts despite being a customer favoriteData privacy remained a critical enabler of customer trust in 2023, causing an uptick in the demand for privacy roles, even as the privacy budget faces considerable cuts over the next 12 months, according to independent surveys conducted by Cisco and ISACA. Privacy laws were stro…CSOONLINE.COM
25 JanReport: Software Supply Chain Attacks Are Getting EasierIn 2023, ReversingLabs identified a significant increase in malicious packages across open-source software platforms like npm, PyPI, and RubyGems. The number of malicious packages detected increased by 1,300% from 2020 and 28% from 2022.HELPNETSECURITY.COM
25 JanKusari is building a supply chain security platform on top of open sourceThe software supply chain, which comprises the components, libraries and processes companies use to develop and publish software, is under threat. According to one recent survey, 88% of companies believe that software supply chain security presents an “enterprise-wide risk&…TECHCRUNCH.COM
25 JanCisco warns of critical RCE flaw in communications softwareCisco is warning that several of its Unified Communications Manager (CM) and Contact Center Solutions products are vulnerable to a critical severity remote code execution security issue. [...]BLEEPINGCOMPUTER.COM
25 JanTesla hacked again, 24 more zero-days exploited at Pwn2Own TokyoSecurity researchers hacked the Tesla infotainment system and demoed a total of 24 zero-days on the second day of the Pwn2Own Automotive 2024 hacking competition. [...]BLEEPINGCOMPUTER.COM
25 JanCISA Releases Two Industrial Control Systems AdvisoriesCISA released two Industrial Control Systems (ICS) advisories on January 25, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-025-01 Opteev MachineSense FeverWarn ICSA-24-025-02 SystemK NVR 504…CISA.GOV
25 JanVirusTotal Academy - 9 video coursesubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/22c09066-8ebd-4ead-a6d0-d882b5213359.png VirusTotal Academy - 9 video course Welcome to our VirusTotal SOC & IR training. In this first video we will discuss how to use VirusTotal to ana…INFOSEC.PUB
25 JanITRC Report: Breaches Up 78% in 2023, Breaking 2021 RecordIdentity Theft Resource Center's James E. Lee Calls for Uniform Breach Reporting Supply chain attacks and zero-day exploits surged in 2023, helping to set yet another record for data breaches tracked by the Identity Theft Resource Center. James E. Lee, COO of the group, explained…DATABREACHTODAY.CO.UK
25 JanPure Malware Tools Pose As Legitimate Software to Bypass AV DetectionsAn extensive examination of the growing danger posed by the Pure malware family has been released, providing the industry with more insightful information about PureCrypter, PureLogs, and PureMiner. ANY. RUN has disclosed that Pure tools are disguised as legitimate software desig…GBHACKERS.COM
25 JanNew Zyxel RCE Vulnerability allows remote attackes execute commands as root!submitted by L4s to secops 1 points | 0 comments https://ssd-disclosure.com/ssd-advisory-zyxel-vpn-series-pre-auth-remote-command-execution/ New Zyxel RCE Vulnerability allows remote attackes execute commands as root!::undefinedSSD-DISCLOSURE.COM
25 JanUsing Google Search to Find Software Can Be RiskyGoogle continues to struggle with cybercriminals running malicious ads on its search platform to trick people into downloading booby-trapped copies of popular free software applications. The malicious ads, which appear above organic search results and often precede links to legit…KREBSONSECURITY.COM
25 JanBreach Roundup: EquiLend Faces Cyberattack, Systems OfflineAlso: Ivanti Exploitation Continues; Apple Fixes First Zero-Day of 2024 This week, U.S. short seller lender EquiLend Holdings was hacked, the Ivanti exploitation continued, Apple addressed the first zero-day of 2024, Ukraine said hackers had hit a Russian research center, Kasseik…DATABREACHTODAY.CO.UK
25 JanNew Year, New Initiatives for the NIST Privacy Framework!It’s been four years since the release of The NIST Privacy Framework: A Tool for Improving Privacy Through Enterprise Risk Management, Version 1.0. Since then, many organizations have found it highly valuable for building or improving their privacy programs. We’ve also been able …NIST.GOV
25 JanRussian Hacker Sentenced to Over 5 Years in US PrisonVladimir Dunaev Acknowledged Acting 'Recklessly' in Working for Cybercriminal Group A U.S. federal judge sentenced a Russian national to five years and four months in prison for his role in developing TrickBot malware. Vladimir Dunaev, 40, pleaded guilty in December. Dunaev helpe…DATABREACHTODAY.CO.UK
25 Jan2024: The Year Cross-Platform Endpoint Management Finally Gets Good? - Zach Wasserman - ESW #347We interview the founder and CEO of Fleet to understand why good, cross platform MDM/EMM has been such a challenge for so many years. Want good Windows device management? You're probably going to compromise on MacOS management. Ditto for Windows if you prioritize your Macs. Want …YOUTUBE.COM
📋 SECURITY BULLETINS 2[−]
25 JanChina-backed Hackers Hijack Software Updates to Implant "NSPX30" SpywareA previously undocumented China-aligned threat actor has been linked to a set of adversary-in-the-middle (AitM) attacks that hijack update requests from legitimate software to deliver a sophisticated implant named NSPX30. Slovak cybersecurity firm ESET is tracking the advanced pe…THEHACKERNEWS.COM
25 JanChina-backed Hackers Hijack Software Updates to Implant NSPX30 SpywareA new China-aligned threat actor named Blackwood has been identified, deploying a sophisticated implant named NSPX30 via the update mechanisms of legitimate software to target Chinese and Japanese companies and individuals.THEHACKERNEWS.COM
📢 SECURITY ADVISORIES 6[−]
25 JanWhat Smart CISOs and Mature Orgs Get That Others Don’t About Cyber Compliance - PSW #814Matt Coose is the founder and CEO of cybersecurity compliance firm Qmulos, previously the director of Federal Network Security for the National Cyber Security Division of the (DHS). CISOs carry the ultimate burden and weight of compliance and reporting and are often the last buck…YOUTUBE.COM
25 JanUK: NCSC Warns AI Will Cause Surge in Ransomware Volume and ImpactRansomware attacks are expected to increase in volume and impact over the next two years due to advancements in artificial intelligence (AI) technologies, according to British intelligence.THERECORD.MEDIA
25 JanUpdated SBOM guidance: A new era for software transparency?The cost of cyberattacks on software supply chains is a growing problem, with the average data breach costing $4.45 million in 2023. Since President Biden’s 2021 executive order, software bills of materials (SBOMs) have become a cornerstone in protecting supply chains. In D…SECURITYINTELLIGENCE.COM
25 JanSystemBC Malware's C2 Server Analysis Exposes Payload Delivery TricksCybersecurity researchers have shed light on the command-and-control (C2) server of a known malware family called SystemBC. "SystemBC can be purchased on underground marketplaces and is supplied in an archive containing the implant, a command-and-control (C2) server, and a w…THEHACKERNEWS.COM
25 JanAI is already being used by ransomware gangs, warns NCSCIn a newly published report, the UK's National Cyber Security Centre (NCSC) has warned that malicious attackers are already taking advantage of artificial intelligence and that the volume and impact of threats - including ransomware - will increase in the next two years. Read mor…TRIPWIRE.COM
🔥 INCIDENT REPORTING 24[−]
25 JanSmashing Security podcast #356: Big dumpers, AI defamation, and the slug that slurpedThis week the podcast is more lavatorial than usual, as we explore how privacy may have gone to sh*t on Google Maps, our guest drives hands-free on Britain's motorways (and is defamed by AI), and ransomware attacks an airplane-leasing firm. All this and much much more is discusse…GRAHAMCLULEY.COM
25 JanHPE joins the 'our executive email was hacked by Russia' clubsubmitted by ylai to cybersecurity 2 points | 0 comments https://www.theregister.com/2024/01/25/hpe_russia_email_attack/THEREGISTER.COM
25 JanFacebook AdsManager Targeted by a Python Infostealer, (Thu, Jan 25th)These days, many pieces of malware are flagged as “infostealers” because, once running on the victim's computer, they search for interesting data and exfiltrate them. Classic collected data are: ISC.SANS.EDU
25 JanData from Indian Online Gaming Platforms Teenpatti.com and Mpl.live on SaleThe alleged data breach at Teenpatti.com and Mpl.live underscores the urgent need for improved security measures in online gaming platforms, especially in handling large volumes of personal user data.THECYBEREXPRESS.COM
25 JanUK Tells Business Leaders to ‘Toughen Up’ Against CyberattacksThe increase in ransomware attacks in the UK is attributed to the success of the ransomware-as-a-service ecosystem, making it easier for criminals to engage in disruptive attacks.THERECORD.MEDIA
25 JanHPE says it was hacked by Russian group behind Microsoft email breachHewlett Packard Enterprise said on Wednesday that its cloud-based email system was compromised by Midnight Blizzard, a Russia-linked hacking group that recently broke into Microsoft’s corporate network. In a filing with the U.S. Securities and Exchange Commission, the enter…TECHCRUNCH.COM
25 JanUkrainian Hackers Claim Attack on Russian Scientific Research CenterThe Ukrainian hacker group "BO Team" reportedly breached a Russian scientific research center, destroying its database and equipment. The target, the State Research Center on Space Hydrometeorology, is a key enterprise for processing satellite data.THERECORD.MEDIA
25 JanOrganizations need to switch gears in their approach to email securityAccording to Egress, email security incidents continue to have severe impacts on organizations, with 94% experiencing security incidents in the past year, including data loss, exfiltration, and phishing attacks.HELPNETSECURITY.COM
25 JanTech Giant HP Enterprise Hacked by Russian Hackers Linked to DNC BreachHackers linked to the Kremlin, specifically the Russian state-sponsored group APT29, infiltrated Hewlett Packard Enterprise's cloud email environment to steal mailbox data from select individuals within the company.THEHACKERNEWS.COM
25 JanSocial Engineering Attacks Rising in the Trucking IndustrySpear phishing and voice phishing (vishing) are on the rise in the trucking industry, according to a new report from the National Motor Freight Traffic Association (NMFTA).KNOWBE4.COM
25 JanFintech Company EquiLend Restoring Systems Following CyberattackFintech firm EquiLend is investigating a cyberattack (possibly a ransomware attack) that knocked some of its systems offline. The post Fintech Company EquiLend Restoring Systems Following Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
25 JanApple Debuts New Feature to Frustrate iPhone ThievesA new iOS 17 update brings Stolen Device Protection feature to prevent unauthorized access and actions on stolen iPhones. Thieves will have limited access to sensitive information and actions, requiring additional authentication for critical changes.HELPNETSECURITY.COM
25 JanMajor IT Outage Denies Happy Campers Their Caravan HolidaysMembers have expressed concern over potential data compromise and lack of communication from CAMC about the nature of the problem, leading to speculation about a ransomware-related security breach.THEREGISTER.COM
25 JanHP Enterprise Reveals It was hacked by the same Russians that broke into MicrosoftIn a new SEC disclosure, Hewlett Packard Enterprise (HPE) announced on Wednesday that it fell prey to the same Russian intelligence group, known as Midnight Blizzard or Cozy Bear, that recently breached Microsoft's email system. This disclosure comes just a week after Microsoft r…KNOWBE4.COM
25 JanCybercrime Researcher Examines the Ransomware Victim’s MindsetThe study by a cybercrime researcher at the University of Twente analyzed ransomware attacks in the Netherlands from 2019-2022, finding that companies working with incident response firms were most likely to pay ransoms.THERECORD.MEDIA
25 JanGoogle Kubernetes Flaw Let Any Google User Control the ClusterResearchers have discovered a new loophole in Google Kubernetes Engine (GKE), which threat actors can utilize with a Google account to take over the misconfigured Kubernetes Cluster. Threat actors can further use these compromised clusters for crypto mining, DoS (denial of servic…GBHACKERS.COM
25 JanThe Number of Ransomware Attack Victims Surge in 2023 to over 4000The surge in Ransomware -as-a-Service affiliates is likely the reason behind the dramatic increase in the number of victimized organizations, with all indicators suggesting that this trend will persist into 2024.KNOWBE4.COM
25 JanMS Breach, printers, Android hacking - PSW #814In the Security News: Don’t expose your supercomputer, auth bypass and command injection FTW, just patch it, using OSQuery against you, massive credential stuffing, backdoors in Harmony, looking at Android, so basically I am licensing my printer, hacking Tesla, injecting keystrok…YOUTUBE.COM
25 JanMultiple vulnerabilities discovered in widely used security driverA false-alarm incident involving Panda Security software leads to three very real CVEsSOPHOS.COM
25 Jan23andMe admits it didn’t detect cyberattacks for monthsIn a data breach notification letter filed with regulators this weekend, 23andMe revealed that hackers started breaking into customers’ accounts in April 2023 and continued through most of September. In other words, for around five months, 23andMe did not detect a series of cyber…TECHCRUNCH.COM
25 JanFeds Warn Healthcare Sector of ScreenConnect ThreatsHHS: Compromise at Large Pharma Software and Services Firm Puts Entities at Risk Federal authorities are warning of attacks on healthcare sector firms that use ConnectWise's remote access tool ScreenConnect. Hackers compromised a locally hosted version of the tool used by a large…DATABREACHTODAY.CO.UK
25 Jan23andMe data breach: Hackers stole raw genotype data, health reportsGenetic testing provider 23andMe confirmed that hackers stole health reports and raw genotype data of customers affected by a credential stuffing attack that went unnoticed for five months, from April 29 to September 27. [...]BLEEPINGCOMPUTER.COM
25 JanWeasel Words Rule Too Many Data Breach Notifications'The Security of Our Customers' Data Is Our Top Priority' - Really? Does a day ever go by without a fresh set of data breach notifications? Some organizations' breach notifications at least signal respect for the recipient. But others play it shadier, by resorting to marketing sp…DATABREACHTODAY.CO.UK
25 JanTransatlantic Cable podcast episode 331 | Kaspersky official blog331 of the Transatlantic Cable podcast takes a look at PalWorld, the biggest data breach of all time, swearing customer service chatbots & more.KASPERSKY.COM
🕵️ THREAT INTELLIGENCE 21[−]
25 JanISC Stormcast For Thursday, January 25th, 2024 https://isc.sans.edu/podcastdetail/8824, (Thu, Jan 25th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
25 JanPakistan Hackers Targeting Indian Android Users with Fake Loan AppsHackers in India are using fake loan applications to target Android users to take advantage of the rising demand for digital financial services by enticing consumers with instant credit offers. These malicious apps often steal personal and financial information, which leads to id…GBHACKERS.COM
25 JanHPE Says Russian Government Hackers Had Access to Emails for 6 MonthsHPE told the SEC that Russian state-sponsored threat group Midnight Blizzard had access to an email system for several months. The post HPE Says Russian Government Hackers Had Access to Emails for 6 Months appeared first on SecurityWeek .SECURITYWEEK.COM
25 JanCyber Threat Landscape: 7 Key Findings and Upcoming Trends for 2024The 2023/2024 Axur Threat Landscape Report provides a comprehensive analysis of the latest cyber threats. The information combines data from the platform's surveillance of the Surface, Deep, and Dark Web with insights derived from the in-depth research and investigations conducte…THEHACKERNEWS.COM
25 JanFirefox 122 Patches 15 VulnerabilitiesUpdates released for Firefox and Thunderbird resolve 15 vulnerabilities, including five high-severity bugs. The post Firefox 122 Patches 15 Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
25 JanRing Will No Longer Allow Police to Request Doorbell Camera Footage From UsersAmazon-owned Ring will stop allowing police to request doorbell camera footage from users following criticism from privacy advocates. The post Ring Will No Longer Allow Police to Request Doorbell Camera Footage From Users appeared first on SecurityWeek .SECURITYWEEK.COM
25 JanQuantum Computing SkepticsInteresting article . I am also skeptical that we are going to see useful quantum computers anytime soon. Since at least 2019, I have been saying that this is hard. And that we don’t know if it’s “land a person on the surface of the moon” hard, or “l…SCHNEIER.COM
25 JanTesla Hack Earns Researchers $100,000 at Pwn2Own AutomotiveOver $1 million paid out in the first two days of Pwn2Own Automotive for Tesla, infotainment and EV charger hacks. The post Tesla Hack Earns Researchers $100,000 at Pwn2Own Automotive appeared first on SecurityWeek .SECURITYWEEK.COM
25 JanNew Deepfake Video Scam has “Taylor Swift” Offering Free French CookwareA new wave of ads utilizing video of well-known celebrities seemingly promoting video games, fake giveaways, and more are starting to popup, and fans are falling for this trap.KNOWBE4.COM
25 JanSimplify, Scale and Accelerate Your SOC with AI-Driven SecurityDeloitte’s AI-Native Security Operations Platform, powered by Palo Alto Networks Cortex XSIAM, is designed to modernize your SOC. The post Simplify, Scale and Accelerate Your SOC with AI-Driven Security appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
25 JanNew Offerings From Protect AI, Venafi Tackle Software Supply Chain SecurityTwo new products aim to secure the traditional OSS supply chain, and the new AI model software supply chain. The post New Offerings From Protect AI, Venafi Tackle Software Supply Chain Security appeared first on SecurityWeek .SECURITYWEEK.COM
25 Jan$1.7 Billion Stolen in Cryptocurrency Hacks in 2023: Analysis$1.7 billion were stolen last year as a result of 231 cryptocurrency platform hacks, according to a report from Chainalysis. The post $1.7 Billion Stolen in Cryptocurrency Hacks in 2023: Analysis appeared first on SecurityWeek .SECURITYWEEK.COM
25 Jan198% Surge in Browser Based zero-hour Phishing AttacksThe digital landscape is under siege. Surging browser-based phishing attacks, a 198% increase in just the second half of 2023, paint a chilling picture of cyber threats outsmarting traditional security. Menlo Security’s 2023 State of Browser Security Report unveils this ala…GBHACKERS.COM
25 JanCryptologic History Symposium 2022 - USA NSA - 11 tallkssubmitted by ashar to security_cpe 1 points | 0 comments Cryptologic History Symposium 2022 playlist Schedule from the websiteINFOSEC.PUB
25 JanIn the Context of Cloud, Security and Mobility, It’s Time Organizations Ditch Legacy MPLSIf organizations understand the benefits SASE offers over MPLS and traditional SD-WAN, they will realize that SASE is poised to replace aging MPLS in due time. The post In the Context of Cloud, Security and Mobility, It’s Time Organizations Ditch Legacy MPLS appeared first on Sec…SECURITYWEEK.COM
25 JanBrowser-based Phishing Attacks Increase By 198% Over Six MonthsResearchers at Menlo Security observed a 198% increase in browser-based phishing attacks over the past six months.KNOWBE4.COM
25 JanOnDemand Panel | Mitigating Risks in Pharmacy Environments: Effective Tactics UnveiledStrengthening OT Security with HCLTech and Microsoft In an age reliant on operational technology, ensuring robust security for diverse industries is crucial. Join us as we discuss operational challenges, highlighting specific threats faced by businesses today. Explore how the pow…DATABREACHTODAY.CO.UK
25 JanUS FTC Launches Investigation Into Tech Giants' AI InfluenceChair Lina Khan Says Probe Will Look for Potential 'Undue Influence' The Federal Trade Commission is investigating whether five artificial intelligence technology giants are exerting undue influence or gaining privileged access "in ways that undermine fair competition" across the…DATABREACHTODAY.CO.UK
25 Jan2024: The Year Cross-Platform Endpoint Management Finally Gets Good? – Zach Wasserman – ESW #347We interview the founder and CEO of Fleet to understand why good, cross platform MDM/EMM has been such a challenge for so many years. Want good Windows device management? You're probably going to compromise on MacOS management. Ditto for Windows if you prioritize your Macs. Want …YOUTUBE.COM
25 JanBlackwood hackers hijack WPS Office update to install malwareA previously unknown advanced threat actor tracked as 'Blackwood' is using sophisticated malware called NSPX30 in cyberespionage attacks against companies and individuals. [...]BLEEPINGCOMPUTER.COM
25 JanStrengthening AIoT: Key Cybersecurity ConsiderationsAIoT, the integration of Artificial Intelligence (AI) with the Internet of Things (IoT), represents a major step in technological development. This convergence combines the analytical strength of AI with IoT massive data collection, optimizing decision-making and streamlining ope…GBHACKERS.COM
🌐 CYBER THREAT LANDSCAPE 6[−]
25 JanUnmasking MacOS Malware in Pirated AppsPirate applications targeting macOS users distribute a backdoor, allowing attackers to download and execute multiple payloads. Each application includes a malicious dylib, a backdoor, and a persistent downloader, posing a significant threat to users. The researchers from Jamf Thr…CYWARE.COM
25 JanLODEINFO Fileless Malware Evolves with Anti-Analysis and Remote Code TricksCybersecurity researchers have uncovered an updated version of a backdoor called LODEINFO that's distributed via spear-phishing attacks. The findings come from Japanese company ITOCHU Cyber & Intelligence, which said the malware "has been updated with new …THEHACKERNEWS.COM
25 JanRussian TrickBot malware dev sentenced to 64 months in prisonRussian national Vladimir Dunaev has been sentenced to five years and four months in prison for his role in creating and distributing the Trickbot malware used in attacks against hospitals, companies, and individuals worldwide. [...]BLEEPINGCOMPUTER.COM
25 JanAssessing and mitigating supply chain cybersecurity risksBlindly trusting your partners and suppliers on their security posture is not sustainable – it’s time to take control through effective supplier risk managementWELIVESECURITY.COM
🎙️ PODCASTS 1[−]
25 JanResilience: The New Priority for Your Security ModelSecurity leaders focus on protection and detection, but the new priority is resilience. A resilience strategy should "get the real 'ground truth' of what has happened" in the attack, said Brian Dye, CEO of Corelight, in this episode of "Cybersecurity Insights."DATABREACHTODAY.CO.UK
📡 INFOSEC NEWS 17[−]
25 JanOver 5,300 GitLab Servers Exposed to Zero-Click Account Takeover AttacksThe flaw affects several versions of GitLab and patches have already been released. The servers at risk are mainly located in the United States, Germany, Russia, China, France, the U.K., India, and Canada.BLEEPINGCOMPUTER.COM
25 JanSecurity Vendors are Accused of Bending CVE Assignment RulesBoth Juniper Networks and Ivanti have attracted criticism from members of the infosec industry for the way they've handled the disclosure of vulnerabilities over the past week.THEREGISTER.COM
25 JanFrench Regulators Levy $34.7 Million Fine Against Amazon for Surveilling EmployeesFrance's data protection authority, CNIL, has fined Amazon €32 million ($34.7 million) for excessive monitoring of employees in its warehouses and for not promptly deleting the data.THERECORD.MEDIA
25 JanHow to turn off Facebook link history and why | Kaspersky official blogHere’s how to turn off Facebook link history. We explain what it is, and how your link history is used to show targeted ads.KASPERSKY.COM
25 JanFederal Judge Rejects NSO’s Effort to Dismiss Apple’s Pegasus LawsuitApple's lawsuit alleges that NSO Group facilitated hacking into Apple's servers, leading to significant time and expense for Apple in detecting and eradicating Pegasus from users' devices.THERECORD.MEDIA
25 JanHackers target WordPress database plugin active on 1 million sitesMalicious activity targeting a critical severity flaw in the 'Better Search Replace' WordPress plugin has been detected, with researchers observing thousands of attempts in the past 24 hours. [...]BLEEPINGCOMPUTER.COM
25 JanNetherlands-based Medical Lab Database Exposed 1.3 Million Records, COVID Test InformationA Netherlands-based medical laboratory's unsecured database exposed 1.3 million records, including COVID test results and personal identifiable information, due to a configuration issue and lack of response to responsible disclosure notices.BANKINFOSECURITY.COM
25 JanReport: AI, Fake CFOs Drive Soaring Corporate Payment-Fraud AttacksAccording to Trustpair, 96% of U.S. companies experienced at least one payment fraud attempt in the past year, with a 71% increase from the prior year, indicating a significant rise in fraudulent activities.CYBERSECURITYDIVE.COM
25 JaniPhone apps abuse iOS push notifications to collect user dataNumerous iOS apps are using background processes triggered by push notifications to collect user data about devices, potentially allowing the creation of fingerprinting profiles used for tracking. [...]BLEEPINGCOMPUTER.COM