109Articles
8Categories
2024-02-21Date
🚨 CISA KEV 1[−]
21 Feb KEVThreat Actors Exploit Multiple Vulnerabilities in Ivanti Connect Secure and Policy Secure GatewaysSUMMARY The Cybersecurity and Infrastructure Security Agency (CISA) and the following partners (hereafter referred to as the authoring organizations) are releasing this joint Cybersecurity Advisory to warn that cyber threat actors are exploiting previously identified vulnerabilit…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
21 FebVMware Alert: Uninstall EAP Now - Critical Flaw Puts Active Directory at RiskVMware is urging users to uninstall the deprecated Enhanced Authentication Plugin (EAP) following the discovery of a critical security flaw. Tracked as CVE-2024-22245 (CVSS score: 9.6), the vulnerability has been described as an arbitrary authentication relay bug. "A ma…THEHACKERNEWS.COM
21 FebRemoving the deprecated VMware Enhanced Authentication Plugin (EAP) to address CVE-2024-22245 and CVE-2024-22250submitted by kid to cybersecurity 1 points | 0 comments https://kb.vmware.com/s/article/96442KB.VMWARE.COM
21 FebNew Wi-Fi Vulnerabilities Expose Android and Linux Devices to HackersCybersecurity researchers have identified two authentication bypass flaws in open-source Wi-Fi software found in Android, Linux, and ChromeOS devices that could trick users into joining a malicious clone of a legitimate network or allow an attacker to join a trusted network witho…THEHACKERNEWS.COM
21 Feb KEVCritical ConnectWise ScreenConnect flaw exploited in the wildA critical vulnerability patched this week in the ConnectWise ScreenConnect remote desktop software is already being exploited in the wild. Researchers warn that it’s trivial to exploit the flaw, which allows attackers to bypass authentication and gain remote code execution on sy…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 26[−]
21 FebRansomware Declines as InfoStealers and AI Threats Gain Ground: IBM X-ForceThe ransomware threat is declining as actors pivot to infostealing, according to IBM, which says that attacks on cloud services and critical infrastructures are growing. The post Ransomware Declines as InfoStealers and AI Threats Gain Ground: IBM X-Force appeared first on Securit…SECURITYWEEK.COM
21 FebIs hybrid encryption the answer to post-quantum security?If you wear suspenders, do you need a belt? If you have one parachute, do you need a reserve? Many CISOs, security teams, and cryptographers are asking a similar question about encryption algorithms when they choose the next generation of protocols. Do users need multiple layers …CSOONLINE.COM
21 FebLockBit Ransomware's Darknet Domains Seized in Global Law Enforcement RaidLaw enforcement agencies from 11 countries, including the U.K. and the U.S., have collaborated in a joint effort, codenamed Operation Cronos, to seize multiple darknet domains operated by the ransomware group LockBit.THEHACKERNEWS.COM
21 FebVMware Urges to Remove Enhanced EAP Plugin to Stop Auth & Session Hijack AttacksVMware has issued an urgent advisory to administrators to remove a deprecated authentication plugin vulnerable to severe security threats. The Enhanced Authentication Plugin (EAP), which provided seamless login capabilities to vSphere’s management interfaces, is susceptible…GBHACKERS.COM
21 FebTrend Micro and INTERPOL Join Forces Again for Operation SynergiaTrend and other private entities recently contributed to INTERPOL’s Operation Synergia, a global operation that successfully took down over 1,000 C&C servers and identified suspects related to phishing, banking malware, and ransomware activity.TRENDMICRO.COM
21 FebCyber Security Today, Feb. 21, 2024 - A patch warning from ConnectWise, the latest ransomware news, and moreThis episode reports on a patch for a critical vulnerability in a help desk application, threat actors using the Greatness phishing-as-a-service kit and moreCYBERSECURITYTODAY.LIBSYN.COM
21 FebSix things we learned from the LockBit takedownA sweeping law enforcement operation led by the U.K.’s National Crime Agency this week took down LockBit, the notorious Russia-linked ransomware gang that has for years wreaked havoc on businesses, hospitals, and governments around the world. The action saw LockBit’s leak site do…TECHCRUNCH.COM
21 FebNew Malicious PyPI Packages Use DLL Sideloading In A Supply Chain AttackResearchers have discovered that threat actors have been using open-source platforms and codes for several purposes, such as hosting C2 infrastructure, storing stolen data, and delivering second and third-stage downloaders or rootkit programs. Two open-source PyPI packages were d…GBHACKERS.COM
21 FebHackers using stolen credentials to launch attacks as info-stealing peaksAttackers prefer compromised valid accounts over phishing or any other infection methods to gain access into victim environments, according to an IBM report. “As defenders increase their detection and prevention capabilities, attackers are finding that obtaining valid credentia…CSOONLINE.COM
21 FebUScellular and Palo Alto Networks Join Forces to Secure 5GUScellular and Palo Alto Networks are teaming up once again to tackle the ever-growing security challenges of LTE, 5G and Gi-LAN networks. The post UScellular and Palo Alto Networks Join Forces to Secure 5G appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
21 FebMozilla Releases Security Updates for Firefox and ThunderbirdMozilla released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Mozilla S…CISA.GOV
21 FebAstaroth, Mekotio, and Ousaban Abusing Google Cloud Run in LATAM-Focused Malware CampaignsGoogle Cloud Run is being exploited by threat actors to distribute banking trojans, with a significant increase in malicious email campaigns observed since September 2023 targeting victims in Latin America, Europe, and North America.TALOSINTELLIGENCE.COM
21 FebCISA, EPA, and FBI Release Top Cyber Actions for Securing Water SystemsToday, CISA, the Environmental Protection Agency (EPA), and the Federal Bureau of Investigation (FBI) released the joint fact sheet Top Cyber Actions for Securing Water Systems . This fact sheet outlines the following practical actions Water and Wastewater Systems (WWS) Sector en…CISA.GOV
21 FebConnectWise Confirms ScreenConnect Flaw Under Active ExploitationSecurity experts describe exploitation of the CVSS 10/10 flaw as “trivial and embarrassingly easy.” The post ConnectWise Confirms ScreenConnect Flaw Under Active Exploitation appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebScreenConnect critical bug now under attack as exploit code emergesBoth technical details and proof-of-concept exploits are available for the two vulnerabilities ConnectWise disclosed earlier this week for ScreenConnect, its remote desktop and access software. [...]BLEEPINGCOMPUTER.COM
21 FebFake Tokens Exploit BRICS Investment HypeSecurity researchers have identified a rising trend of cryptocurrency counterfeiting targeting Fortune 100 companies, involving the creation of tokens impersonating major brands, government bodies, and national fiat currencies.INFOSECURITY-MAGAZINE.COM
21 FebKnight Ransomware Source Code for Sale After Leak Site Shuts DownThe alleged source code for the third iteration of the Knight ransomware is being offered for sale to a single buyer on a hacker forum, indicating a potential shift in the group's operations.BLEEPINGCOMPUTER.COM
21 FebResearchers warn high-risk ConnectWise flaw under attack is ’embarrassingly easy’ to exploitSecurity experts are warning that a high-risk vulnerability in a widely used remote access tool is “trivial and embarrassingly easy” to exploit, as the software’s developer confirms malicious hackers are actively exploiting the flaw. The maximum severity-rated v…TECHCRUNCH.COM
21 FebOngoing Malware Laced Developer Job Interviewssubmitted by L4s to secops 1 points | 0 comments https://blog.phylum.io/smuggling-malware-in-test-code/ Ongoing Malware Laced Developer Job Interviews::Phylum continues to discover malware polluting open-source ecosystems. In this blog post, we take a deep-dive into an npm packag…PHYLUM.IO
21 FebNew Malicious PyPI Packages Caught Using Covert Side-Loading TacticsReversingLabs' research revealed a broader campaign involving multiple packages and sophisticated tactics, indicating an emerging trend of DLL sideloading attacks in open-source environments.THEHACKERNEWS.COM
21 FebLockBit: Lessons learned on winning the war on cybercrimeMaking sense of the ransomware-group takedown -- what it means for ransomware and law enforcementSOPHOS.COM
21 FebNew SSH-Snake malware steals SSH keys to spread across the networkA threat actor is using an open-source network mapping tool named SSH-Snake to look for private keys undetected and move laterally on the victim infrastructure. [...]BLEEPINGCOMPUTER.COM
21 FebExposed: Global Espionage Unleashed by China's Police in Groundbreaking LeakI get my news from a very wide variety of sources. One is the venerable SpyTalk news that lives in Substack. They just reported something pretty astounding. Here are the first few paragraphs and at the end is the link to substack with the rest.KNOWBE4.COM
21 FebJoomla fixes XSS flaws that could expose sites to RCE attacksFive vulnerabilities have been discovered in the Joomla content management system that could be leveraged to execute arbitrary code on vulnerable websites. [...]BLEEPINGCOMPUTER.COM
21 FebIlluminating Cybersecurity Wisdom: Insights from a Thought Leader - Wendy Nather - PSW VaultJoin us in this illuminating podcast episode as we sit down with Wendy Nather, a distinguished thought leader and cybersecurity strategist, who has left an indelible mark on the ever-evolving landscape of digital security. Wendy's journey in cybersecurity is a narrative woven wit…YOUTUBE.COM
21 FebExperts Praise White House Port Cybersecurity InitiativesCyber Actions Reflect 'Positive Step' in Addressing Overlooked Issues, Experts Say The Biden administration's focus on addressing long-standing vulnerabilities in IT and OT at U.S. ports is a step in the right direction, and new incident reporting mandates could significantly ben…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 12[−]
21 FebBiden to Issue Executive Order Raising Maritime CybersecurityUS Coast Guard Will Publish Proposed Rule Establishing Cybersecurity Minimums U.S. President Joe Biden is set Wednesday to sign an executive order aimed at bolstering cybersecurity in maritime ports, including a directive for the Coast Guard to develop minimum cybersecurity stand…DATABREACHTODAY.CO.UK
21 FebChinese Hacking Contractor iSoon Leaks Internal DocumentsThe company mainly works for the Ministry of Public Security, focusing on domestic security interests. The leaked documents show the use of hacking tools such as Winnti backdoor and PlugX remote access Trojan.HEALTHCAREINFOSECURITY.COM
21 Feb[INFOGRAPHIC] KnowBe4’s Learner App by the NumbersThe KnowBe4 Learner App enables your users to complete their security awareness and compliance training conveniently from their smartphones and tablets. KNOWBE4.COM
21 FebBiden to Sign Executive Order Raising Maritime CybersecurityUS Coast Guard Will Publish Proposed Rule Establishing Cybersecurity Minimums U.S. President Joe Biden is set Wednesday to sign an executive order aimed at bolstering cybersecurity in maritime ports, including a directive for the Coast Guard to develop minimum cybersecurity stand…DATABREACHTODAY.CO.UK
21 FebExecutive Order on Port Cybersecurity Points to IT/OT Threat Posed by Chinese CranesA new Biden executive order to boost the cybersecurity of US ports highlights the risks associated with the use of Chinese cranes. The post Executive Order on Port Cybersecurity Points to IT/OT Threat Posed by Chinese Cranes appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebUS govt shares cyberattack defense tips for water utilitiesCISA, the FBI, and the Environmental Protection Agency (EPA) shared a list of defense measures U.S. water utilities should implement to better defend their systems against cyberattacks [...]BLEEPINGCOMPUTER.COM
21 FebPAM Provider Delinea Buys FastpathAcquisition Will Allow Delinea to Detect Overprivileged Access, Company Says California privileged access management vendor Delinea announced it will acquire identity governance and administration vendor Fastpath. "We believe privilege, not just identity, is the true security per…DATABREACHTODAY.CO.UK
21 FebHack at Services Firm Hits 2.4 Million Eye Doctor PatientsAs Vendor Breaches Surge, Medical Practices Need 20/20 Visibility on Third Parties An Arizona firm that provides administrative services to a dozen ophthalmology practices in several states is notifying nearly 2.4 million patients of a data theft incident. The hack is among the l…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 21[−]
21 FebLockbit Ransomeware global taketownsubmitted by L4s to secops 1 points | 0 comments https://www.itnews.com.au/news/lockbit-cybercrime-gang-faces-global-takedown-605311 Lockbit Ransomeware global taketown::With indictments and arrests.ITNEWS.COM.AU
21 FebIsraeli El Al Alleges Hackers Targeted Flights in Mid-Air Hijack AttemptThe hackers tried to divert the planes, but the pilots detected the suspicious activity and took appropriate action to ensure the safety of the flights. This incident raises concerns about aircraft safety in the face of growing cybersecurity threats.HACKREAD.COM
21 FebNew 'VietCredCare' Stealer Targeting Facebook Advertisers in VietnamFacebook advertisers in Vietnam are the target of a previously unknown information stealer dubbed VietCredCare at least since August 2022. The malware is “notable for its ability to automatically filter out Facebook session cookies and credentials stolen from compromise…THEHACKERNEWS.COM
21 FebIran and Hezbollah Hackers Launch Attacks to Influence Israel-Hamas NarrativeIranian and Hezbollah-backed hackers conducted cyber attacks to undermine public support for the Israel-Hamas war, using tactics such as destructive attacks, hack-and-leak operations, phishing campaigns, and information operations.THEHACKERNEWS.COM
21 FebHacker Arrested for Selling Bank Accounts of US, Canadian UsersA 31-year-old Ukrainian cybercriminal was arrested for distributing trojanized software to gain access to American and Canadian users' bank accounts, selling the breached accounts on the dark web.BLEEPINGCOMPUTER.COM
21 FebCybersecurity for Healthcare—Diagnosing the Threat Landscape and Prescribing Solutions for RecoveryOn Thanksgiving Day 2023, while many Americans were celebrating, hospitals across the U.S. were doing quite the opposite. Systems were failing. Ambulances were diverted. Care was impaired. Hospitals in three states were hit by a ransomware attack, and in that moment, the rea…THEHACKERNEWS.COM
21 FebDC-Area School System Says Data of 100,000 People Affected in Ransomware AttackThe Prince George's County Public Schools in the Washington, D.C. area experienced a ransomware attack, compromising the personal information of nearly 100,000 individuals, including names, financial account information, and Social Security Numbers.THERECORD.MEDIA
21 FebControl Systems Firm PSI Struggles to Recover From Ransomware AttackGerman control system solutions provider PSI Software says it is still recovering from a ransomware attack. The post Control Systems Firm PSI Struggles to Recover From Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebCritical Infrastructure Vendor PSI Software Hit by Ransomware AttackPSI Software, a Germany-based critical infrastructure software vendor, suffered a ransomware attack, resulting in diminished capacity and shutting down of external connections and systems.CYBERSECURITYDIVE.COM
21 FebRussia Announces Arrest of Medibank Hacker Tied to REvil3 Suspects Charged With Using Sugar Ransomware, Phishing Attacks Against Russians Russian authorities have reportedly arrested three accused members of the SugarLocker ransomware-as-a-service operation. Their alleged crime? Targeting Russians, although one suspect has also been t…DATABREACHTODAY.CO.UK
21 FebBreach at Aussie Telecom Tangerine Affects 232,000 CustomersCustomer Accounts Were Secured by MFA, But Contractor's Credentials Exposed Data Australian telecom company Tangerine is blaming the compromise of a third-party contractor's credentials for exposing personal information of 232,000 customers, which had been stored in a legacy data…DATABREACHTODAY.CO.UK
21 FebUS offers $15 million bounty for info on LockBit ransomware gangThe U.S. State Department is now also offering rewards of up to $15 million to anyone who can provide information about LockBit ransomware gang members and their associates. [...]BLEEPINGCOMPUTER.COM
21 FebBeware of VietCredCare Malware that Steals businesses’ Facebook AccountsA new cybersecurity threat targeting Facebook advertisers in Vietnam, known as VietCredCare, has emerged. This information stealer has been active since at least August 2022 and is designed to hijack corporate Facebook accounts by automatically filtering out Facebook session cook…GBHACKERS.COM
21 FebTop UK Universities Recovering Following Targeted DDoS AttackThe attack targeted the Janet Network, used by several UK universities, and was claimed by the hacktivist group Anonymous Sudan. This incident reflects a growing trend of cyberattacks against UK institutions.INFOSECURITY-MAGAZINE.COM
21 FebCyber Insights 2024: RansomwareRansomware insights: When ransomware first appeared, the term became associated with encrypting data. This is a misconception. The post Cyber Insights 2024: Ransomware appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebMicrosoft finally expands free logging—but only for govt agenciesMicrosoft has expanded free Purview Audit logging capabilities for all U.S. federal agencies six months after disclosing that Chinese hackers stole U.S. government emails undetected in an Exchange Online breach between May and June 2023. [...]BLEEPINGCOMPUTER.COM
21 FebUS health tech giant Change Healthcare hit by cyberattackU.S. healthcare technology giant Change Healthcare has confirmed a cyberattack on its systems. In a brief statement, the company said it was “experiencing a network interruption related to a cyber security issue.” “Once we became aware of the outside threat, in …TECHCRUNCH.COM
21 FebWyze Security Incident Exposes Private Cameras13,000 Users Received Incorrect Thumbnails; 1,504 Tapped on Them, Risking Privacy A glitch in Wyze home security cameras permitted thousands of users to catch glimpses inside strangers' homes as its cloud system came back online after an hourslong outage. Around 13,000 Wyze users…DATABREACHTODAY.CO.UK
21 FebMicrosoft expands free logging capabilities after May breachMicrosoft has expanded free logging capabilities for all Purview Audit standard customers, including U.S. federal agencies, six months after disclosing that Chinese hackers stole U.S. government emails undetected in an Exchange Online breach between May and June 2023. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 26[−]
21 FebISC Stormcast For Wednesday, February 21st, 2024 https://isc.sans.edu/podcastdetail/8862, (Wed, Feb 21st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
21 FebISC Stormcast For Wednesday, February 21st, 2024 https://isc.sans.edu/podcastdetail/8864, (Wed, Feb 21st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
21 FebExploring Changing SOC LandscapesThe landscape of cybersecurity is continuously evolving, with new threats emerging and the roles and responsibilities of security professionals constantly adapting.TRENDMICRO.COM
21 FebRussian Hackers Target Ukraine with Disinformation and Credential-Harvesting AttacksCybersecurity researchers have unearthed a new influence operation targeting Ukraine that leverages spam emails to propagate war-related disinformation. The activity has been linked to Russia-aligned threat actors by Slovak cybersecurity company ESET, which also identified a spea…THEHACKERNEWS.COM
21 FebWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
21 FebPhishing pages hosted on archive.org, (Wed, Feb 21st)The Internet Archive is a well-known and much-admired institution, devoted to creating a “digital library of Internet sites and other cultural artifacts in digital form”[ 1 ]. On its “WayBackMachine ISC.SANS.EDU
21 FebCharming Kitten Uses BASICSTAR Against Middle East Policy ExpertsIranian-origin threat group Charming Kitten has launched an espionage campaign targeting Middle East policy experts using malware such as BASICSTAR and KORKULOADER, capable of executing remote commands and displaying decoy PDF files. Some phishing attacks dropped customized backd…CYWARE.COM
21 FebSecurity Onion 2.4.50 Released for Defenders With New FeaturesSecurity Onion Solutions has recently rolled out the latest version of its network security monitoring tool, Security Onion 2.4.50. This updated version comes equipped with an array of new features and bug fixes, making it an even more critical tool for enterprise security manage…GBHACKERS.COM
21 FebNew Mingo Malware Attacking Linux Redis Servers To Mine CryptocurrencyThe malware, termed Migo by the creators, attempts to infiltrate Redis servers to mine cryptocurrency on the Linux host. The campaign employed many Redis system-weakening commands to potentially disable data store security features that could hinder their initial attemp…GBHACKERS.COM
21 FebChrome 122, Firefox 123 Patch High-Severity VulnerabilitiesGoogle and Mozilla resolve high-severity memory safety vulnerabilities with the latest Chrome and Firefox updates. The post Chrome 122, Firefox 123 Patch High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebNSA Announces Retirement of Cybersecurity Director Rob JoyceNSA says Rob Joyce is retiring as cybersecurity director and will be replaced by David Luber, the current deputy director of cybersecurity. The post NSA Announces Retirement of Cybersecurity Director Rob Joyce appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebGoogle Chrome 122 Update Addresses Critical Security VulnerabilitiesGoogle has recently unveiled Chrome 122, a significant milestone for the widely used web browser. The most recent release, compatible with Windows, Mac, and Linux operating systems, includes a set of crucial security patches and novel functionalities that enrich the user’s …GBHACKERS.COM
21 FebDetails of a Phone ScamFirst-person account of someone who fell for a scam, that started as a fake Amazon service rep and ended with a fake CIA agent, and lost $50,000 cash. And this is not a naive or stupid person. The details are fascinating. And if you think it couldn’t happen to you, think ag…SCHNEIER.COM
21 FebRedis Servers Targeted With New ‘Migo’ MalwareAttackers weaken Redis instances to deploy the new Migo malware and install a rootkit and cryptominers. The post Redis Servers Targeted With New ‘Migo’ Malware appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebMustang Panda Targets Asia with Advanced PlugX Variant DOPLUGSThe China-linked threat actor known as Mustang Panda has targeted various Asian countries using a variant of the PlugX (aka Korplug) backdoor dubbed DOPLUGS. "The piece of customized PlugX malware is dissimilar to the general type of the PlugX malware that contains a completed ba…THEHACKERNEWS.COM
21 FebApple Adds Post-Quantum Encryption to iMessageApple unveils PQ3, a new post-quantum cryptographic protocol for iMessage designed to protect communications against quantum computing attacks. The post Apple Adds Post-Quantum Encryption to iMessage appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebDiversifying Defenses: FjordPhantom Malware Shows Importance of a Multi-Pronged ApproachSecurity teams need to combine the angles of client-side and server-side detection in order to have the best chance of mitigating the risk of advanced mobile malware. The post Diversifying Defenses: FjordPhantom Malware Shows Importance of a Multi-Pronged Approach appeared first …SECURITYWEEK.COM
21 FebSHARED INTEL: Poll shows companies pursuing ‘Digital Trust’ reap benefits as laggards fall behindAchieving “ digital trust ” is not going terribly well globally. Related: How decentralized IoT boosts decarbonization Yet, more so than ever, infusing trustworthiness into modern-day digital services has become mission critical for most businesses. Now comes survey findings that…LASTWATCHDOG.COM
21 FebWebinar Tomorrow: The Active Threat Landscape in the CloudJoin the webinar to learn about active threats targeting common cloud deployments and what security teams can do to mitigate them. The post Webinar Tomorrow: The Active Threat Landscape in the Cloud appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebResearchers Devise ‘VoltSchemer’ Attacks Targeting Wireless ChargersResearchers document VoltSchemer attacks that manipulate power voltage to take over commercial wireless chargers. The post Researchers Devise ‘VoltSchemer’ Attacks Targeting Wireless Chargers appeared first on SecurityWeek .SECURITYWEEK.COM
21 FebQR-Code Attacks Target the C-Suite 42 Times More than Standard EmployeesQR-code attacks leveraging QR-codes are kicking into high gear and becoming a common method used in phishing attacks, according to new data from Abnormal Security.KNOWBE4.COM
21 FebAnyone Can Be Scammed and Phished, With ExamplesI recently read an article about a bright, sophisticated woman who fell victim to an unbelievable scam . By unbelievable, I mean most people reading or hearing about it could not believe it was successful.KNOWBE4.COM
21 FebMalware Delivered Through Phishing Surges 276%Researchers at VIPRE Security observed a 276% increase in malware delivered by phishing between Q1 and Q4 of 2023.KNOWBE4.COM
21 FebManaging Supply Chain Risk - Saša Zdjelar - BTS #24Saša Zdjelar joins us on this episode to dive into how organizations can manage supply chain risk, including the current challenges we face and how best to deal with them. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them!…YOUTUBE.COM
21 FebGet the most out of Microsoft Copilot for Security with good prompt engineeringGood prompt engineering can greatly improve generative AI outputs, which means more relevant and accurate results. Microsoft Copilot for Security includes featured prompts as well as promptbooks to help security teams better investigate, manage, and respond to cyberthreats. The p…MICROSOFT.COM
21 FebOperation Texonto: Information operation targeting Ukrainian speakers in the context of the warA mix of PSYOPs, espionage and … fake Canadian pharmacies!WELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
21 FebNew Migo Malware Targeting Redis Servers for Cryptocurrency MiningMigo disables security defenses on Redis servers, sets up keys for SSH access, and deploys a modified rootkit to hide processes and artifacts, resembling tactics used by known cryptojacking groups.THEHACKERNEWS.COM
21 FebNew 'VietCredCare' Stealer Targeting Facebook Advertisers in VietnamThe malware is distributed through links to bogus sites on social media and messaging platforms, and it is designed to filter out Facebook credentials while evading detection by security software.THEHACKERNEWS.COM
21 FebHackers abuse Google Cloud Run in massive banking trojan campaignSecurity researchers are warning of hackers abusing the Google Cloud Run service to distribute massive volumes of banking trojans like Astaroth, Mekotio, and Ousaban. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 15[−]
21 FebDecoding Digital Transformation: AI, ML, and RPA in the Modern EraExplore the first article in this series about AI, ML, and RPA, which aims to demystify and explore the full spectrum of these core technologies.TRENDMICRO.COM
21 FebDecoding Digital Transformation: AI, ML, and RPA in the Modern EraExplore the first article in this series about AI, ML, and RPA, which aims to demystify and explore the full spectrum of these core technologies.TRENDMICRO.COM
21 FebSignal Introduces Usernames, Allowing Users to Keep Their Phone Numbers PrivateEnd-to-end encrypted (E2EE) messaging app Signal said it’s piloting a new feature that allows users to create unique usernames (not to be confused with profile names) and keep the phone numbers away from prying eyes. “If you use Signal, your phone number will no longer be visible…THEHACKERNEWS.COM
21 FebPermit.io Secures $8m in Series A for Revolutionary Authorization ServicePermit.io, a provider of authorization-as-a-service solution has closed a successful $8m Series A funding round led by Scale Venture Partners and supported by other investors.FINTECH.GLOBAL
21 FebClean Links and Sophisticated Scams Mark New Era in Email AttacksAn analysis by VIPRE Security revealed that email attacks are on the rise, with an increase in malicious EML file attachments and social engineering attacks in the last quarter of 2023.HELPNETSECURITY.COM
21 Feb6 Ways to Simplify SaaS Identity GovernanceWith SaaS applications now making up the vast majority of technology used by employees in most organizations, tasks related to identity governance need to happen across a myriad of individual SaaS apps. This presents a huge challenge for centralized IT teams who are ultimately he…THEHACKERNEWS.COM
21 FebSophos NDR is now available on AWSGet started quickly with Sophos NDR.SOPHOS.COM
21 FebInsider Steals 80,000 Email Addresses From UK District CouncilsA former council worker has been cautioned by police for taking 79,000 residents' email addresses from a database to promote a business unrelated to the council. Another database from Warwick District Council was also affected.INFOSECURITY-MAGAZINE.COM
21 FebApple readies iMessage for when quantum computers could break encryptionApple announced today it is upgrading iMessage’s security layer to post-quantum cryptography, starting in iOS and iPadOS 17.4, macOS 14.4, and watchOS 10.4. The technology giant said that in the coming years, quantum computers will be able to break today’s cryptograph…TECHCRUNCH.COM
21 FebVoltSchemer Attacks Use Wireless Chargers to Inject Voice Commands, Fry PhonesThe attack takes advantage of security flaws in wireless charging systems, allowing attackers to manipulate the charger's voltage and interfere with the communication between the charger and the smartphone.BLEEPINGCOMPUTER.COM
21 FebVMware Urges Admins to Remove Deprecated, Vulnerable Enhanced Authentication Plug-inVMware has urged users to uninstall the deprecated Enhanced Authentication Plugin (EAP) due to the discovery of critical security flaws, including an arbitrary authentication relay bug and a session hijack flaw.BLEEPINGCOMPUTER.COM
21 FebFraudsters tried to scam Apple out of 5,000 iPhones worth over $3 millionTwo Chinese nationals face 20 years in prison after being caught and convicted of submitting over 5,000 fake iPhones worth more than $3 million to Apple with the goal of having them replaced with genuine devices. [...]BLEEPINGCOMPUTER.COM
21 FebConnectWise sounds the alarm on two vulnerabilitiesAre you using ScreenConnect? Here’s what to know – and whether to worrySOPHOS.COM
21 FebDiscord took no action against server that coordinated costly Mastodon spam attacksOver the weekend, hackers targeted federated social networks like Mastodon to carry out ongoing spam attacks that were organized on Discord, and conducted using Discord applications. But Discord has yet to remove the server where the attacks are facilitated, and Mastodon communit…TECHCRUNCH.COM