🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
17 FebCISA Warns of Akira Ransomware Exploiting Cisco ASA/FTD VulnerabilityThe information disclosure vulnerability, known as CVE-2020-3259, is being exploited by the Akira ransomware group to compromise susceptible Cisco Anyconnect SSL VPN appliances.THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 2[−]
17 FebGoogle Open Sources Magika: AI-Powered File Identification ToolGoogle has announced that it's open-sourcing Magika, an artificial intelligence (AI)-powered tool to identify file types, to help defenders accurately detect binary and textual file types. "Magika outperforms conventional file identification methods providing an overall 30% …THEHACKERNEWS.COM
17 FebKeyTrap attack: Internet access disrupted with one DNS packetA serious vulnerability named KeyTrap in the Domain Name System Security Extensions (DNSSEC) feature could be exploited to deny internet access to applications for an extended period. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 3[−]
17 FebAlpha Ransomware Emerges From NetWalker AshesThe Alpha ransomware operation appears to be linked to the previously inactive NetWalker ransomware, suggesting a potential revival or acquisition of the original payload.SYMANTEC-ENTERPRISE-BLOGS.SECURITY.COM
17 FebWhy are ransomware gangs making so much money?For many organizations and startups, 2023 was a rough year financially, with companies struggling to raise money and others making cuts to survive. Ransomware and extortion gangs, on the other hand, had a record-breaking year in earnings, if recent reports are anything to go by. …TECHCRUNCH.COM
17 FebDefense in Depth podcast - Tracking Anomalous Behaviors of Legitimate Identities - 34 minutessubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/ac87c21b-c7c5-4575-9e1e-cfac573aa5c6.png Defense in Depth podcast - Tracking Anomalous Behaviors of Legitimate Identities The Verizon DBIR found that about half of all breaches involved legi…INFOSEC.PUB
🕵️ THREAT INTELLIGENCE 3[−]
17 Febcreate fake password manager exportsubmitted by birdcat to cybersecurity 1 points | 0 comments Im looking to create a real looking .cvs or .json file as if it was exported from a password manager. E-Mail (username) should always be the same and of my choice. Websites should be real, random standard websites like f…SH.ITJUST.WORKS
17 FebNorth Korean Hackers Now Launder Stolen Crypto via YoMix TumblerYoMix saw a significant increase in funds in 2023, with about one-third of inflows originating from wallets associated with crypto hacks, demonstrating the adaptability of sophisticated threat actors.BLEEPINGCOMPUTER.COM
17 FebFIRSTCTI23 - FIRST Cyber Threat Intelligence Conference - 15 talkssubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/4581911d-eea9-455c-97e1-7ca0adc86248.png FIRST Cyber Threat Intelligence Conference 2023 playlist Program The conference provides a gathering place for experts in the field to share knowledg…INFOSEC.PUB
🌐 CYBER THREAT LANDSCAPE 1[−]
17 FebSpyNote Android Spyware Poses as Legit Crypto Wallets, Steals FundsAndroid users are advised to be cautious of applications requesting Accessibility API access, particularly those claiming to be crypto wallets, PDF readers, and video players.HACKREAD.COM
📡 INFOSEC NEWS 2[−]
17 FebHow Businesses Can Safeguard Their Communication Channels Against HackersEfficient communication is a cornerstone of business success. Internally, making sure your team communicates seamlessly helps you avoid friction losses, misunderstandings, delays, and overlaps. Externally, frustration-free customer communication is directly correlated to a positi…THEHACKERNEWS.COM
17 FebNew Google Chrome feature blocks attacks against home networksGoogle is testing a new feature to prevent malicious public websites from pivoting through a user's browser to attack devices and services on internal, private networks. [...]BLEEPINGCOMPUTER.COM