MATLOCK.CA
106Articles
9Categories
2024-01-31Date
🚨
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2022-48618 Apple Multiple Products Improper Authentication Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cy…
KEVCISA.GOV — Wed, 31 Jan 24 1
🚨
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-21893 Ivanti Connect Secure, Policy Secure, and Neurons Server-Side Request Forgery (SSRF) Vulnerability These types of vulnerabilities are fre…
KEVCISA.GOV — Wed, 31 Jan 24 1
🐛
New Glibc Flaw Grants Attackers Root Access on Major Linux Distros
THEHACKERNEWS.COM — 31 Jan 2024
🐛
“45K+ Exposed Jenkins Instances Vulnerable to RCE Attacks”
GBHACKERS.COM — 31 Jan 2024
🐛
Chinese Hackers Exploiting VPN Flaws to Deploy KrustyLoader Malware
THEHACKERNEWS.COM — 31 Jan 2024
🐛
New Glibc Flaw Grants Attackers Root Access on Major Linux Distros
THEHACKERNEWS.COM — 31 Jan 2024
🐛
45,000 Exposed Jenkins Instances Found Amid Reports of In-the-Wild Exploitation
SECURITYWEEK.COM — 31 Jan 2024
🐛
Alert: Ivanti Discloses 2 New Zero-Day Flaws, One Under Active Exploitation
THEHACKERNEWS.COM — 31 Jan 2024
🐛
AI Predictions for 2024: Moving forward with precise systems that combine power, security, intelligence, and ease of use.
CSOONLINE.COM — 31 Jan 2024
🐛
Ivanti patches two zero-days under attack, but finds another
TECHCRUNCH.COM — 31 Jan 2024
🐛
CISA and FBI Release Secure by Design Alert Urging Manufacturers to Eliminate Defects in SOHO Routers
CISA.GOV — Wed, 31 Jan 24 1
🐛
CVE-2023-6246: Heap-based buffer overflow in the glibc's syslog()
QUALYS.COM — 31 Jan 2024
🐛
Vulnerabilities in Docker, other container engines enable host OS access
CSOONLINE.COM — 31 Jan 2024
⚠️
6 user experience mistakes made for security and how to fix them
CSOONLINE.COM — 31 Jan 2024
⚠️
Israeli Government Says Smallest of SMBs Hit Hardest in Cyberattacks
DARKREADING.COM — 31 Jan 2024
⚠️
Pawn Storm Uses Brute Force and Stealth Against High-Value Targets
TRENDMICRO.COM — 31 Jan 2024
⚠️
Hitron DVR Zero-Day Vulnerabilities Exploited by InfectedSlurs Botnet
SECURITYWEEK.COM — 31 Jan 2024
⚠️
Security Now podcast SN959: Stamos on "Microsoft Security" - HP Printer Bricking, Mercedes Benz Source Code - 2 hours
INFOSEC.PUB — 31 Jan 2024
⚠️
Rust Payloads Exploiting Ivanti Zero-Days Linked to Sliver Toolkit
INFOSECURITY-MAGAZINE.COM — 31 Jan 2024
⚠️
Vulnerabilities in Lamassu Bitcoin ATMs
LABS.IOACTIVE.COM — 31 Jan 2024
⚠️
Check Point’s new generative AI tool offers platform-wide intelligence and remediation
CSOONLINE.COM — 31 Jan 2024
⚠️
Microsoft Teams Phishing Attack Pushes DarkGate Malware via Group Chats
BLEEPINGCOMPUTER.COM — 31 Jan 2024
⚠️
New Israeli startup to help organizations deal with GenAI-related risks
CSOONLINE.COM — 31 Jan 2024
⚠️
Canada’s foreign affairs department investigates data breach
CSOONLINE.COM — 31 Jan 2024
⚠️
Ivanti warns of new Connect Secure zero-day exploited in attacks
BLEEPINGCOMPUTER.COM — 31 Jan 2024
⚠️
Tor Code Audit Finds 17 Vulnerabilities
SECURITYWEEK.COM — 31 Jan 2024
⚠️
Leaked GitHub Token Exposed Mercedes Source Code
SECURITYWEEK.COM — 31 Jan 2024
⚠️
Safeguarding the healthcare sector with dynamic cybersecurity
CSOONLINE.COM — 31 Jan 2024
⚠️
Hackers steal $112 million of XRP Ripple cryptocurrency
TECHCRUNCH.COM — 31 Jan 2024
⚠️
Leaked GitHub Token Exposed Mercedes Source Code
PACKETSTORMSECURITY.COM — 31 Jan 2024
⚠️
Security giant Proofpoint is laying off 280 employees, about 6% of its workforce
TECHCRUNCH.COM — 31 Jan 2024
⚠️
Proofpoint Lays Off 6% of Workforce, Offshores Jobs
DATABREACHTODAY.CO.UK — 2024-01-31
⚠️
GNU C Library Vulnerability Leads to Full Root Access
SECURITYWEEK.COM — 31 Jan 2024
⚠️
After Delays, Ivanti Patches Zero-Days and Confirms New Exploit
SECURITYWEEK.COM — 31 Jan 2024
⚠️
Pawn Storm Uses Brute Force and Stealth Against High-Value Targets
TRENDMICRO.COM — 31 Jan 2024
⚠️
CISA warns of patched iPhone kernel bug now exploited in attacks
KEVBLEEPINGCOMPUTER.COM — 31 Jan 2024
⚠️
Scaling security with AI: from detection to solution
SECURITY.GOOGLEBLOG.COM — 2024-01-31
⚠️
Exploit released for Android local elevation flaw impacting 7 OEMs
BLEEPINGCOMPUTER.COM — 31 Jan 2024
⚠️
Apple fixes zero-day bug in Apple Vision Pro that ‘may have been exploited’
TECHCRUNCH.COM — 31 Jan 2024
⚠️
Accelerate threat response and democratize SOC skill sets with generative AI
CSOONLINE.COM — 31 Jan 2024
⚠️
Ivanti Discloses Additional Zero-Day That Is Being Exploited
DATABREACHTODAY.CO.UK — 2024-01-31
⚠️
Water Sector Leaders Urge Congress to Fund Cyber Mandates
DATABREACHTODAY.CO.UK — 2024-01-31
⚠️
Multiple Vulnerabilities in Ivanti Products Could Allow for Remote Code Execution
CISECURITY.ORG — 31 Jan 2024
📋
China-Linked Hackers Target Myanmar's Top Ministries with Backdoor Blitz
THEHACKERNEWS.COM — 31 Jan 2024
📢
[Live Demo] Customizing Your Compliance Training to Increase Effectiveness
KNOWBE4.COM — 31 Jan 2024
📢
CISA: Vendors must secure SOHO routers against Volt Typhoon attacks
BLEEPINGCOMPUTER.COM — 31 Jan 2024
📢
Dutch Watchdog Fines Uber 10 Million Euros Over Privacy Regulations Infringement
PACKETSTORMSECURITY.COM — 31 Jan 2024
📢
Ivanti security advisory (AV24-058)
CYBER.GC.CA — 2024-01-31
📢
Here’s How the FBI Stopped a Major Chinese Hacking Campaign
DATABREACHTODAY.CO.UK — 2024-01-31
📢
Opening Statement by CISA Director Jen Easterly
CISA.GOV — Wed, 31 Jan 24 1
🔥
Author Q&A: The ongoing role of fortified structures in military clashes — and cybersecurity
LASTWATCHDOG.COM — 31 Jan 2024
🔥
Canada’s ‘most prolific hacker’ jailed for two years
BITDEFENDER.COM — 31 Jan 2024
🔥
Alpha Ransomware Group Launches Data Leak Site on the Dark Web
INFOSECURITY-MAGAZINE.COM — 31 Jan 2024
🔥
Online Ransomware Decryptor Helps Recover Partially Encrypted Files
BLEEPINGCOMPUTER.COM — 31 Jan 2024
🔥
Cyber Security Today, Jan. 31, 2024 -A new ransomware strain found, and questions about the level of ransomware payments
CYBERSECURITYTODAY.LIBSYN.COM — 31 Jan 2024
🔥
Fulton County Cyberattack Brings Down Phones, Court Site and Tax Systems
EDITION.CNN.COM — 31 Jan 2024
🔥
The SEC Won't Let CISOs Be: Understanding New SaaS Cybersecurity Rules
THEHACKERNEWS.COM — 31 Jan 2024
🔥
How to Align Your Incident Response Practices With the New SEC Disclosure Rules
SECURITYWEEK.COM — 31 Jan 2024
🔥
U.S. Officials Detained a 19-year-old SIM-Swap Hacker
GBHACKERS.COM — 31 Jan 2024
🔥
Hackers Hijacking MS-SQL Servers to Install Mimic Ransomware
GBHACKERS.COM — 31 Jan 2024
🔥
What IT Leaders should appreciate about SOAR in 2024
CSOONLINE.COM — 31 Jan 2024
🔥
Data security posture management vs cloud security posture management
SECURITYINTELLIGENCE.COM — 31 Jan 2024
🔥
Johnson Controls says ransomware attack cost $27 million, data stolen
BLEEPINGCOMPUTER.COM — 31 Jan 2024
🔥
Timex Breach Leaks Employee Social Security Numbers
PACKETSTORMSECURITY.COM — 31 Jan 2024
🔥
Ransomware Payments On The Decline As Cyber Attackers Focus on The Smallest, And Largest, Organizations
KNOWBE4.COM — 31 Jan 2024
🔥
What is Email Hijacking? – Email Account Takeover Protection Guide – 2024
GBHACKERS.COM — 31 Jan 2024
🔥
ISACs Slam US Federal Cyber Incident Reporting Proposals
DATABREACHTODAY.CO.UK — 2024-01-31
🔥
Europcar denies data breach of 50 million users, says data is fake
BLEEPINGCOMPUTER.COM — 31 Jan 2024
🔥
Europcar says someone likely used ChatGPT to promote a fake data breach
TECHCRUNCH.COM — 31 Jan 2024
🔥
Identifying Bad By Defining Good with Danny Jenkins, CEO & Co-Founder at ThreatLocker – PSW #815
YOUTUBE.COM — 2024-01-31
🔥
ESET Research Podcast: ChatGPT, the MOVEit hack, and Pandora
WELIVESECURITY.COM — 31 Jan 2024
🕵️
ISC Stormcast For Wednesday, January 31st, 2024 https://isc.sans.edu/podcastdetail/8832, (Wed, Jan 31st)
ISC.SANS.EDU — 31 Jan 2024
🕵️
Italian Businesses Hit by Weaponized USBs Spreading Cryptojacking Malware
THEHACKERNEWS.COM — 31 Jan 2024
🕵️
CFPB’s Proposed Data Rules
SCHNEIER.COM — 2024-01-31
🕵️
Two More Individuals Charged for DraftKings Hacking
SECURITYWEEK.COM — 31 Jan 2024
🕵️
Aim Security Raises $10M to Tackle Shadow AI
SECURITYWEEK.COM — 31 Jan 2024
🕵️
US Sanctions Two ISIS-Affiliated ‘Cybersecurity Experts’
SECURITYWEEK.COM — 31 Jan 2024
🕵️
Telegram Marketplaces Fuel Phishing Attacks with Easy-to-Use Kits and Malware
THEHACKERNEWS.COM — 31 Jan 2024
🕵️
Reken Emerges From Stealth With $10 Million Seed Funding
SECURITYWEEK.COM — 31 Jan 2024
🕵️
FBI Sting Targeted Dangerous Volt Typhoon Botnet, Report Claims
PACKETSTORMSECURITY.COM — 31 Jan 2024
🕵️
FBI disrupts Chinese botnet by wiping malware from infected routers
BLEEPINGCOMPUTER.COM — 31 Jan 2024
🕵️
Italian Businesses Hit by Weaponized USB Devices Spreading Cryptojacking Malware
THEHACKERNEWS.COM — 31 Jan 2024
🕵️
Podcast: Palo Alto Networks Talks IT/OT Convergence
SECURITYWEEK.COM — 31 Jan 2024
🕵️
News alert: Reken raises $10M from Greycroft to protect against generative AI-enabled fraud
LASTWATCHDOG.COM — 31 Jan 2024
🕵️
Proof of Concept: How Do We Ensure Ethical AI Systems?
DATABREACHTODAY.CO.UK — 2024-01-31
🕵️
FBI Cyber Alert: Tech Support Scams Steal Cash or Precious Metals
KNOWBE4.COM — 31 Jan 2024
🕵️
US Gov Disrupts SOHO Router Botnet Used by Chinese APT Volt Typhoon
SECURITYWEEK.COM — 31 Jan 2024
🕵️
Hackers push USB malware payloads via news, media hosting sites
BLEEPINGCOMPUTER.COM — 31 Jan 2024
🕵️
News alert: Oasis Security raises $40M funding to automate the lifecycle of non-human identities
LASTWATCHDOG.COM — 31 Jan 2024
🌐
Crypto theft from Exodus and Bitcoin wallets through cracked macOS apps | Kaspersky official blog
KASPERSKY.COM — 31 Jan 2024
🌐
Ars Technica Used In Malware Campaign With Never-Before-Seen Obfuscation
PACKETSTORMSECURITY.COM — 31 Jan 2024
🌐
US disrupts China-backed hacking operation amid warning of threat to American infrastructure
TECHCRUNCH.COM — 31 Jan 2024
🌐
Smarter, Meaner, Sneakier: Security Trends for 2024
TRENDMICRO.COM — 31 Jan 2024
📡
OpenAI Says Mysterious Chat Histories Resulted From Account Takeover
ARSTECHNICA.COM — 31 Jan 2024
📡
Critical Workspace Creation Flaw in GitLab Allows File Overwrite
THEHACKERNEWS.COM — 31 Jan 2024
📡
Great Security or Great UX? Both, Please
HELPNETSECURITY.COM — 31 Jan 2024
📡
Oasis Security leaves stealth with $40M to lock down the wild west of non-human identity management
TECHCRUNCH.COM — 31 Jan 2024
📡
Tor Code Audit Finds 17 Vulnerabilities
PACKETSTORMSECURITY.COM — 31 Jan 2024
📡
Two More Individuals Charged For DraftKings Hacking
PACKETSTORMSECURITY.COM — 31 Jan 2024
📡
Data Leak at Fintech Giant Direct Trading Technologies
SECURITYAFFAIRS.COM — 31 Jan 2024
📡
New Evasive Large-Scale Scareware and PUP Delivery Campaign Spotted
UNIT42.PALOALTONETWORKS.COM — 31 Jan 2024
📡
The Fun and Dangers of Top Level Domains (TLDs), (Wed, Jan 31st)
ISC.SANS.EDU — 31 Jan 2024
📡
Top Tips to Avoid Corporate Social Media Account Hijacking
DATABREACHTODAY.CO.UK — 2024-01-31
📡
Pushing the Healthcare Sector into Stronger Cybersecurity
DATABREACHTODAY.CO.UK — 2024-01-31
📡
Pushing the Healthcare Sector to Improve Cybersecurity
DATABREACHTODAY.CO.UK — 2024-01-31
📡
Police seize record 50,000 Bitcoin from now-defunct piracy site
BLEEPINGCOMPUTER.COM — 31 Jan 2024