matlock.ca // THREAT INTELLIGENCE — 2024-02-12

90Articles

8Categories

2024-02-12Date

🚨

CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-43770 Roundcube Webmail Persistent Cross-Site Scripting (XSS) Vulnerability These types of vulnerabilities are frequent attack vectors for mali…

KEVCISA.GOV — Mon, 12 Feb 24 1

🐛

How to protect against BitLocker-bypassing vulnerabilities in Windows recovery partitions

CSOONLINE.COM — 12 Feb 2024

⚠️

Breach Analysis: APT29’s Attack on Microsoft - Password Spray & OAuth abuse.

CYBERARK.COM — 12 Feb 2024

⚠️

Ransomware Actors Hit Zero-Day Exploits Hard in 2023

CYBERSECURITYDIVE.COM — 12 Feb 2024

⚠️

Exploiting a Vulnerable Minifilter Driver to Create a Process Killer

SECURITYAFFAIRS.COM — 12 Feb 2024

⚠️

ExpressVPN Flaw Exposes Some the DNS Requests to Third-Party Server

GBHACKERS.COM — 12 Feb 2024

⚠️

Exploitation of Another Ivanti VPN Vulnerability Observed

SECURITYWEEK.COM — 12 Feb 2024

⚠️

Warzone RAT Shut Down by Law Enforcement, Two Arrested

SECURITYWEEK.COM — 12 Feb 2024

⚠️

New Fortinet RCE Bug is Actively Exploited, CISA Confirms

KEVBLEEPINGCOMPUTER.COM — 12 Feb 2024

⚠️

CISA and OpenSSF Release Framework for Package Repository Security

THEHACKERNEWS.COM — 12 Feb 2024

⚠️

New API security startup claims edge over legacy protection capabilities

CSOONLINE.COM — 12 Feb 2024

⚠️

Ransomware attack forces 18 Romanian hospitals to go offline

BLEEPINGCOMPUTER.COM — 12 Feb 2024

⚠️

National Cyber Director Urges Private Sector Collaboration to Counter Nation-State Cyber Threat

CYBERSECURITYDIVE.COM — 12 Feb 2024

⚠️

Rhysida Ransomware Cracked, Free Decryption Tool Released

THEHACKERNEWS.COM — 12 Feb 2024

⚠️

Ransomware Attack Forces 18 Romanian Hospitals to Go Offline

BLEEPINGCOMPUTER.COM — 12 Feb 2024

⚠️

CISA Partners with OpenSSF to Release Principles for Package Repository Security Framework

CISA.GOV — 12 Feb 2024

⚠️

Ivanti Discloses 5th Vulnerability, Doesn't Credit Researchers

PACKETSTORMSECURITY.COM — 12 Feb 2024

⚠️

Decryptor for Rhysida Ransomware is Available

HELPNETSECURITY.COM — 12 Feb 2024

⚠️

Huge Surge in Hackers Exploiting QR code for Phishing Attacks

GBHACKERS.COM — 12 Feb 2024

⚠️

Free Rhysida ransomware decryptor for Windows exploits RNG flaw

BLEEPINGCOMPUTER.COM — 12 Feb 2024

⚠️

Security Teams Spend 71 Hours Responding to Every One Hour in a Cyber Attack

KNOWBE4.COM — 12 Feb 2024

⚠️

Americans Lose a Record $10 Billion to Fraud in 2023; Mostly Due To Investment Scams

KNOWBE4.COM — 12 Feb 2024

⚠️

3 Well-known Microsoft Word & Excel Flaws Abused by hackers Widely

GBHACKERS.COM — 12 Feb 2024

⚠️

Exploit against Unnamed "Bytevalue" router vulnerability included in Mirai Bot, (Mon, Feb 12th)

ISC.SANS.EDU — 12 Feb 2024

⚠️

Hackers exploit Ivanti SSRF flaw to deploy new DSLog backdoor

BLEEPINGCOMPUTER.COM — 12 Feb 2024

⚠️

Ransomware attack forces 21 Romanian hospitals to go offline

BLEEPINGCOMPUTER.COM — 12 Feb 2024

⚠️

CISA: Roundcube email server bug now exploited in attacks

KEVBLEEPINGCOMPUTER.COM — 12 Feb 2024

⚠️

20+ hospitals in Romania hit hard by ransomware attack on IT service provider

GRAHAMCLULEY.COM — 12 Feb 2024

📢

Microsoft Introduces Linux-Like 'sudo' Command to Windows 11

THEHACKERNEWS.COM — 12 Feb 2024

📢

Is privacy being traded away in the name of innovation and security?

CSOONLINE.COM — 12 Feb 2024

📢

CISA Blitzes Super Bowl With Cyber Campaign as Businesses Fumble Security

CYBERSECURITYDIVE.COM — 12 Feb 2024

📢

Priorities of the Joint Cyber Defense Collaborative for 2024

CISA.GOV — Mon, 12 Feb 24 1

📢

Ubuntu security advisory (AV24-077)

CYBER.GC.CA — 2024-02-12

📢

Dell security advisory (AV24-078)

CYBER.GC.CA — 2024-02-12

📢

Red Hat security advisory (AV24-080)

CYBER.GC.CA — 2024-02-12

📢

IBM security advisory (AV24-079)

CYBER.GC.CA — 2024-02-12

📢

[Control systems] CISA ICS security advisories (AV24-081)

CYBER.GC.CA — 2024-02-12

📢

Bipartisan Senate Bill Requires HHS to Bolster Cyber Efforts

DATABREACHTODAY.CO.UK — 2024-02-12

🔥

U.S. Offers $10 Million Bounty for Info Leading to Arrest of Hive Ransomware Leaders

THEHACKERNEWS.COM — 12 Feb 2024

🔥

GUEST ESSAY: Why internal IT teams are ill-equipped to adequately address cyber risks

LASTWATCHDOG.COM — 12 Feb 2024

🔥

Cyber Security Today, Feb. 12, 2024 - US seizes a website selling the Warzone malware

CYBERSECURITYTODAY.LIBSYN.COM — 12 Feb 2024

🔥

US offers $10M reward for info on Hive ransomware group leaders

SECURITYAFFAIRS.COM — 12 Feb 2024

🔥

Cybersecurity Teams Recognized as Key Enablers of Business Goals

HELPNETSECURITY.COM — 12 Feb 2024

🔥

Why Are Compromised Identities the Nightmare to IR Speed and Efficiency?

THEHACKERNEWS.COM — 12 Feb 2024

🔥

How AI is Revolutionizing Identity Fraud

HELPNETSECURITY.COM — 12 Feb 2024

🔥

4 Ways Hackers use Social Engineering to Bypass MFA

THEHACKERNEWS.COM — 12 Feb 2024

🔥

UN Experts Investigating 58 Suspected North Korean Cyberattacks Valued at About $3 Billion

APNEWS.COM — 12 Feb 2024

🔥

Ongoing Azure Compromises Target Senior Executives, Microsoft 365 Apps

DARKREADING.COM — 12 Feb 2024

🔥

Ongoing Azure Cloud Account Takeover Campaign Targeting Senior Personnel

SECURITYWEEK.COM — 12 Feb 2024

🔥

Account Takeover Campaign Hits Execs in Microsoft Azure

DATABREACHTODAY.CO.UK — 2024-02-12

🔥

Ongoing Microsoft Azure account hijacking campaign targets executives

BLEEPINGCOMPUTER.COM — 12 Feb 2024

🔥

FCC orders telecom carriers to report PII data breaches within 30 days

BLEEPINGCOMPUTER.COM — 12 Feb 2024

🔥

Hackers uncover new TheTruthSpy stalkerware victims: Is your Android device compromised?

TECHCRUNCH.COM — 12 Feb 2024

🔥

Ransomware Disrupts Hospital Services in Romania and France

DATABREACHTODAY.CO.UK — 2024-02-12

🔥

Bank of America warns customers of data breach after vendor hack

BLEEPINGCOMPUTER.COM — 12 Feb 2024

🕵️

ISC Stormcast For Monday, February 12th, 2024 https://isc.sans.edu/podcastdetail/8848, (Mon, Feb 12th)

ISC.SANS.EDU — 12 Feb 2024

🕵️

Uncovering the Deceptive Tactics of Chinese Websites Mimic as Local News

GBHACKERS.COM — 12 Feb 2024

🕵️

New Android MoqHao Malware Executes Automatically on Installation

GBHACKERS.COM — 12 Feb 2024

🕵️

Authorities Bust Accused Seller of Widely Used RAT Malware

DATABREACHTODAY.CO.UK — 2024-02-12

🕵️

Bugcrowd Raises $102 Million

SECURITYWEEK.COM — 12 Feb 2024

🕵️

BSidesBoulder 2023 - 5 talks

INFOSEC.PUB — 12 Feb 2024

🕵️

Hackers Leak Alleged Partial Facebook Marketplace Database

HACKREAD.COM — 12 Feb 2024

🕵️

Bugcrowd Attains $102M Strategic Growth Funding Round

DATABREACHTODAY.CO.UK — 2024-02-12

🕵️

Mentorship Monday - Discussions for career and learning!

INFOSEC.PUB — 12 Feb 2024

🕵️

ExpressVPN User Data Exposed Due to Bug

SECURITYWEEK.COM — 12 Feb 2024

🕵️

Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years

SECURITYWEEK.COM — 12 Feb 2024

🕵️

US Dismantled Sophisticated Warzone RAT, Key Operators Arrested

GBHACKERS.COM — 12 Feb 2024

🕵️

Stealthy Cyberespionage Campaign Remained Undiscovered For Two Years

PACKETSTORMSECURITY.COM — 12 Feb 2024

🕵️

Hard Lessons From Romance Scams

KNOWBE4.COM — 12 Feb 2024

🕵️

On Passkey Usability

SCHNEIER.COM — 2024-02-12

🕵️

Data Insights Are Key to Fighting Synthetic ID Fraud

DATABREACHTODAY.CO.UK — 2024-02-12

🕵️

How Application Performance Transformed into Application Security - Shibu George - BSW #338

YOUTUBE.COM — 2024-02-12

🕵️

Managing Supply Chain Risk - BTS #24

YOUTUBE.COM — 2024-02-12

🕵️

Material: cybersecurity word of the year, thanks to the SEC | News - ESW350

YOUTUBE.COM — 2024-02-12

🕵️

Batman | Microsoft | War Driving | OpenAI | DevDrive | The Dead | Aaran Leyland & More! – SWN363

YOUTUBE.COM — 2024-02-12

🌐

US Authorities Take Down Seller of Widely Used RAT Malware

BANKINFOSECURITY.COM — 12 Feb 2024

🌐

Meet VexTrio, A Network Of 70K Hijacked Websites Crooks Use To Sling Malware, Fraud

PACKETSTORMSECURITY.COM — 12 Feb 2024

🌐

FBI seizes Warzone RAT infrastructure, arrests malware vendor

BLEEPINGCOMPUTER.COM — 12 Feb 2024

📡

ExpressVPN Bug has Been Leaking Some DNS Requests for Years

BLEEPINGCOMPUTER.COM — 12 Feb 2024

📡

AI-Generated Voices in Robocalls Now Illegal

HELPNETSECURITY.COM — 12 Feb 2024

📡

Americans Lost Record $10 Billion to Fraud in 2023, FTC Warns

BLEEPINGCOMPUTER.COM — 12 Feb 2024

📡

Bugcrowd snaps up $102M for a ‘bug bounty’ security platform that taps 500K+ hackers

TECHCRUNCH.COM — 12 Feb 2024

📡

Navigating the risks of online dating | Kaspersky official blog

KASPERSKY.COM — 12 Feb 2024

📡

QR Code 'Quishing' Attacks on Executives Surge, Evading Email Security

DARKREADING.COM — 12 Feb 2024

📡

Extending the Breadth and Depth of our Partnerships - JCDC 2024 Priorities

CISA.GOV — Mon, 12 Feb 24 1

📡

Cohesity, Veritas Combine as New Data Protection Company

TECHTARGET.COM — 12 Feb 2024

📡

Europe's Largest Caravan Club Admits Personal Data Compromise

PACKETSTORMSECURITY.COM — 12 Feb 2024

📡

ExpressVPN User Data Exposed Due To Bug

PACKETSTORMSECURITY.COM — 12 Feb 2024

📡

“Smart” helmet flaw exposes location tracking and privacy risks

BITDEFENDER.COM — 12 Feb 2024

📡

Microsoft tests Windows 11 ‘Super Resolution’ AI-upscaling for gamers

BLEEPINGCOMPUTER.COM — 12 Feb 2024