18Articles
6Categories
2024-02-24Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
24 FebOutlook Users Beware 0-Day Exploit Released On Hacking ForumsOutlook has identified a security flaw that affects how it handles certain hyperlinks. Malware actors actively exploit the vulnerability in real-world attacks. The assigned CVE number for this vulnerability is CVE-2024-21413, with a severity rating of 9.8 (Critical). Microsoft ha…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 3[−]
24 FebUpdate: New ScreenConnect RCE Flaw Exploited in Ransomware AttacksLockBit ransomware attacks are still occurring despite law enforcement takedown efforts, with threat actors exploiting ScreenConnect vulnerabilities to deploy the ransomware on compromised networks.BLEEPINGCOMPUTER.COM
24 FebResilience to Acquire BreachQuest for an undisclosed priceIn a strategic move to enhance its cyber risk management capabilities, Resilience has announced the acquisition of BreachQuest, an innovative incident response technology firm. This acquisition marks a significant step in Resilience’s efforts to combat the escalating threat…GBHACKERS.COM
📢 SECURITY ADVISORIES 1[−]
24 FebPresident Biden's Executive Order Seeks to Bolster Port CybersecurityThe White House issued an executive order to improve maritime port security, including bolstering cybersecurity policies and investing in infrastructure, while addressing concerns about Chinese-owned cranes' potential cybersecurity threats.THERECORD.MEDIA
🔥 INCIDENT REPORTING 5[−]
24 FebWeekly Update 388Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite It's just been a joy to watch the material produced by the NCA and friends following the LockBit takedown this week. So much good …TROYHUNT.COM
24 FebRecruitment Firm Das Team Ag Confirms Cyberattack by Black Basta Ransomware GroupThe cyberattack on Das Team Ag by the Black Basta ransomware group highlights the increasing threat to recruitment agencies and the potential consequences for affected individuals.THECYBEREXPRESS.COM
24 FebAustralia: Second Accidental Data Leak in Four Months ‘Regrettable’, Finance Department SaysThe Australian government has experienced a significant increase in data breaches, with human error being the leading cause, highlighting the need for improved detection and response systems.THEGUARDIAN.COM
24 FebRansomware Operation LockBit Reestablishes Dark Web Leak SiteLockBit Leader Vows to Continue Hacking Russian-speaking ransomware operation LockBit reestablished a dark web leak site Saturday afternoon, posting a lengthy screed apparently authored by its leader, who vowed not to retreat from the criminal underground world. The FBI had no co…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 4[−]
24 FebShould you allow username to use Apostrophe (aka quotes )submitted by Rick_C137 to cybersecurity 4 points | 0 comments cross-posted from: programming.dev/post/10497245 Hi, For websites I’ve always restricted username to use Apostrophe ’ and " and some times even space . If a website necessitate special character then I prefer to c…SH.ITJUST.WORKS
24 FebMicrosoft Expands Free Logging Capabilities for all U.S. Federal AgenciesMicrosoft has expanded free logging capabilities to all U.S. federal agencies using Microsoft Purview Audit irrespective of the license tier, more than six months after a China-linked cyber espionage campaign targeting two dozen organizations came to light. "Microsoft will automa…THEHACKERNEWS.COM
24 FebPyRIT – A Red Team Tool From Microsoft For Generative AI SystemsIn a significant move to bolster the security of generative AI systems, Microsoft has announced the release of an open automation framework named PyRIT (Python Risk Identification Toolkit). This innovative toolkit enables security professionals and machine learning engineers to p…GBHACKERS.COM
24 FebWhite House Wades Into Debate on ‘Open’ Versus ‘Closed’ Artificial Intelligence SystemsThe White House is seeking public comment on the risks and benefits of having an AI system’s key components publicly available for anyone to use and modify. The post White House Wades Into Debate on ‘Open’ Versus ‘Closed’ Artificial Intelligence Systems appeared first on Security…SECURITYWEEK.COM
📡 INFOSEC NEWS 4[−]
24 FebApple adds PQ3 quantum-resistant encryption to iMessageApple is adding to the iMessage instant messaging service a new post-quantum cryptographic protocol named PQ3, designed to defend encryption from quantum attacks. [...]BLEEPINGCOMPUTER.COM