🚨 CISA KEV 1[−]
26 Feb KEV#StopRansomware: Phobos RansomwareSUMMARY Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and hi…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
26 FebHack me if you can: LockBit challenges authorities, promises to returnLess than a week after global law enforcement disrupted its operations in a coordinated seizure, the infamous ransomware gang, LockBit, has already issued promises of return, this time with an agenda. In a lengthy note  published on Saturday, the group’s leader “LockBitSupp…CSOONLINE.COM
26 FebLinux Kernel TLS Vulnerability CVE-2024-26582 could lead to RCE or privilege escalationsubmitted by kid to cybersecurity 2 points | 0 comments https://lore.kernel.org/linux-cve-announce/2024022139-spruce-prelude-c358@gregkh/LORE.KERNEL.ORG
⚠️ VULNERABILITY DISCLOSURE 22[−]
26 FebLockBit Ransomware Group Resurfaces After Law Enforcement TakedownThe threat actors behind the LockBit ransomware operation have resurfaced on the dark web using new infrastructure, days after an international law enforcement exercise seized control of its servers. To that end, the notorious group has moved its data leak portal to a n…THEHACKERNEWS.COM
26 FebHackers Steal Nearly $10 Million From Axie Infinity Co-Founder’s Personal AccountsThe theft, attributed to a "wallet compromise," did not affect the validation or operations of the Ronin chain or Sky Mavis, but highlighted the vulnerability of personal cryptocurrency wallets.THERECORD.MEDIA
26 FebNew DDoS malware Attacking Apache big-data stack, Hadoop, & Druid ServersConcerning a development for organizations leveraging Apache’s big-data solutions, a new variant of the Lucifer DDoS botnet malware targeting Apache Hadoop and Apache Druid servers has been identified. This sophisticated malware campaign exploits existing vulnerabilities an…GBHACKERS.COM
26 FebBreaking down the language barrier: How to master the art of communicationCommunication skills are some of the most fundamental learned in life. Whether in written, verbal, non-verbal, or visual form, the ability to communicate clearly and effectively is quickly becoming a top prerequisite for cybersecurity jobs. In fact, it’s become so highly valued…CSOONLINE.COM
26 FebCyber Security Today, Feb. 26, 2024 - Canadian online harms legislation to be revealed today, and moreThis episode reports on hackers using an open source tool aimed at helping network administrators, the latest data breaches in the U.S., and Australia, and moreCYBERSECURITYTODAY.LIBSYN.COM
26 FebLockBit Ransomware Operation Relaunches Dark Web Leak SiteThe Russian-speaking ransomware group LockBit has announced its return to hacking after a law enforcement operation, Operation Cronos, targeted the group. The group's leader, LockBitSupp, has vowed to continue hacking despite the takedown.BANKINFOSECURITY.COM
26 FebCISA, NCSC-UK, and Partners Release Advisory on Russian SVR Actors Targeting Cloud InfrastructureCISA, in partnership with UK National Cyber Security Centre (NCSC) and other U.S. and international partners released the joint advisory, SVR Cyber Actors Adapt Tactics for Initial Cloud Access . This advisory provides recent tactics, techniques, and procedures (TTPs) used by Rus…CISA.GOV
26 FebUpdate: Authorities Uncover 30,000 Bitcoin Wallet Addresses Linked to LockBitLaw enforcement's takedown of LockBit's infrastructure revealed 2,200 unspent bitcoins worth over $110 million, highlighting the extensive scale of the group's operations.BANKINFOSECURITY.COM
26 FebLockBit Ransomware Gang Resurfaces With New SiteThe LockBit ransomware operators announce a new leak site as they try to restore credibility after law enforcement takedown. The post LockBit Ransomware Gang Resurfaces With New Site appeared first on SecurityWeek .SECURITYWEEK.COM
26 FebTravel Update! The NIST CSF 2.0 is HERE…Along with Many Helpful Resources…NIST CSF 2.0 QUICK LINKS | Explore our Full Suite of Resources: CSF 2.0 Quick Start Guides CSF 2.0 Profiles CSF 2.0 Informative References Cybersecurity & Privacy Reference Tool (CPRT) CSF 2.0 Reference Tool CSF 2.0 Website ( Homepage ) Official NIST News Announcement The NIST Cy…NIST.GOV
26 FebCritical Flaw in Popular ‘Ultimate Member’ WordPress PluginThe vulnerability carries a CVSS severity score of 9.8/10 and affects web sites running the Ultimate Member WordPress membership plugin. The post Critical Flaw in Popular ‘Ultimate Member’ WordPress Plugin appeared first on SecurityWeek .SECURITYWEEK.COM
26 FebThe LockBit ransomware gang rears its ugly head again, after law enforcement takedownSurprise! The LockBit ransomware group has re-emerged, just days after a high-profile law enforcement operation seized control of its infrastructure and disrupted its operations. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
26 FebOpen Source Security Podcast Episode 417 - Linux Kernel security with Greg K-H - 42 minutessubmitted by ashar to security_cpe 1 points | 0 comments https://assets.libsyn.com/secure/content/168209203/?height=90&width=90 Open Source Security Podcast Episode 417 - Linux Kernel security with Greg K-H Josh and Kurt talk to GregKH about Linux Kernel security. We most foc…ASSETS.LIBSYN.COM
26 FebFrom Open Source to Enterprise Ready: 4 Pillars to Meet Your Security RequirementsOpen source is a great way to test the waters and define requirements. But when looking at putting a platform into production, an enterprise-ready solution will ensure you can keep up with business demands. The post From Open Source to Enterprise Ready: 4 Pillars to Meet Your Sec…SECURITYWEEK.COM
26 FebResearchers say easy-to-exploit security bugs in ConnectWise remote access software now under mass-attackSecurity researchers say a pair of easy-to-exploit flaws in a popular remote access tool used by more than a million companies around the world are now being mass-exploited, with hackers abusing the vulnerabilities to deploy ransomware and steal sensitive data. Cybersecurity gian…TECHCRUNCH.COM
26 FebZyxel Patches Remote Code Execution Bug in Firewall ProductsTaiwanese networking vendor Zyxel confirms security flaws in firewall and access points put users at risk of remote code execution attacks. The post Zyxel Patches Remote Code Execution Bug in Firewall Products appeared first on SecurityWeek .SECURITYWEEK.COM
26 FebHackers exploit 14-year-old CMS editor on govt, edu sites for SEO poisoningThreat actors are exploiting a CMS editor discontinued 14 years ago to compromise education and government entities worldwide to poison search results with malicious sites or scams. [...]BLEEPINGCOMPUTER.COM
26 FebFeds hack LockBit, LockBit springs back. Now what?Days after it was knocked offline by a sweeping, years-in-the-making law enforcement operation, the notorious Russia-based LockBit ransomware group has returned to the dark web with a new leak site complete with a number of new victims. In a verbose, borderline-rambling statement…TECHCRUNCH.COM
26 FebHacker group hides malware in images to target Ukrainian organizationsA group of attackers targeting Ukraine-affiliated organizations has been delivering malicious payloads hidden within the pixels of image files. Known as steganography, it is just one of many advanced techniques the group uses to evade detection as part of a malware loader known a…CSOONLINE.COM
26 FebGroups Warn Health Sector of Change Healthcare Cyber FalloutSome Researchers Confident ConnectWise ScreenConnect Flaw Was Exploited in Attack Healthcare industry groups are urging their members to take certain precautionary actions in the wake of the attack last week on Change Healthcare, a unit of Optum. The advisories come as some resea…DATABREACHTODAY.CO.UK
26 FebNIST Unveils Second Iteration of Cybersecurity FrameworkNew CSF Adds 'Governance' to Core Functions Cybersecurity guidance for the private sector published by the U.S. National Institute of Standards and Technology in 2014 has received its first major update. The revised Cybersecurity Framework focuses on governance and says cybersecu…DATABREACHTODAY.CO.UK
26 FebUnitedHealth subsidiary Optum hack linked to BlackCat ransomwareA cyberattack on UnitedHealth Group subsidiary Optum that led to an ongoing outage impacting the Change Healthcare payment exchange platform was linked to the BlackCat ransomware group by sources familiar with the investigation. [...]BLEEPINGCOMPUTER.COM
📋 SECURITY BULLETINS 1[−]
26 FebMowing down demons: DOOM comes to Husqvarna smart lawnmowersIf you ever wanted to play DOOM on a lawnmower, you will soon have your chance with a new software update coming to Husqvarna's robotic line of lawnmowers this spring. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 11[−]
26 FebApple Announces Post-Quantum Encryption Algorithms for iMessageApple announced PQ3 , its post-quantum encryption standard based on the Kyber secure key-encapsulation protocol, one of the post-quantum algorithms selected by NIST in 2022. There’s a lot of detail in the Apple blog post , and more in Douglas Stabila’s security analys…SCHNEIER.COM
26 FebJoint cyber security advisory warns that Russian state actors are adapting their tactics to access cloud infrastructureCYBER.GC.CA
26 FebYour KnowBe4 Compliance Plus Fresh Content Updates from February 2024Check out the February updates in Compliance Plus so you can stay on top of featured compliance training content.KNOWBE4.COM
26 FebCISA, EPA, FBI Publish Top Cyber Steps for Water System OperatorsWater and wastewater systems need to enhance their cybersecurity measures to protect against potential cyberattacks due to vulnerabilities in their operational technology (OT) and information technology (IT) systems.MERITALK.COM
26 FebNorth Korean Group Seen Snooping on Russian Foreign MinistryEspionage Groups Deploy Info Stealer to Monitor Russia's Diplomatic Moves North Korean espionage group TA406, aka the Konni Group, deployed information-stealing malware on a Russian government-owned software to spy on the country's foreign ministry officials. This is the latest a…DATABREACHTODAY.CO.UK
26 FebThe Unique Challenges of AI Risks - Padraic O'Reilly - BSW #339Released on January 26, 2023, the NIST AI RMF Framework was developed through a consensus-driven, open, transparent, and collaborative process that included a Request for Information, several draft versions for public comments, multiple workshops, and other opportunities to provi…YOUTUBE.COM
🔥 INCIDENT REPORTING 17[−]
26 FebFBI’s LockBit Takedown Postponed a Ticking Time Bomb in Fulton County, Ga.The FBI's takedown of the LockBit ransomware group last week came as LockBit was preparing to release sensitive data stolen from government computer systems in Fulton County, Ga. But LockBit is now regrouping, and the gang says it will publish the stolen Fulton County data on Mar…KREBSONSECURITY.COM
26 FebUpdate: Sony Subsidiary Insomniac Games Alerts Employees Hit by Ransomware Data BreachThe leaked files include personal information of employees, former employees, and independent contractors, as well as sensitive internal documents, and only 98% of the stolen data has been leaked so far.BLEEPINGCOMPUTER.COM
26 FebBusinesses Increase Cybersecurity as Budgets Surge in 2024Cloud security and incident response are top priorities, attracting 47% of additional cybersecurity spending, followed by areas such as MSSP outsourcing, identity management, and security awareness training, according to Infosecurity Europe.INFOSECURITY-MAGAZINE.COM
26 FebDormant PyPI Package Compromised to Spread Nova Sentinel MalwareThe attacker stripped the package of its original content, leaving only an __init__.py and example.py file, and introduced an executable named "Updater_1.4.4_x64.exe" to launch the Nova Sentinel malware.THEHACKERNEWS.COM
26 FebMalawi Immigration Department Halts Services Amid CyberattackThe Malawi government has suspended passport issuance for two weeks due to a ransomware attack on the immigration service's network. President Lazarus Chakwera stated that the hackers are demanding a ransom, but the government refuses to pay.DARKREADING.COM
26 FebRansomware Operation LockBit Relaunches Dark Web Leak SiteAfter Operation Cronos, LockBit Leader LockBitSupp's Vows to Continue Hacking Russian-speaking ransomware operation LockBit reestablished a dark web leak site Saturday afternoon, posting a lengthy screed apparently authored by its leader, who vowed not to retreat from the crimina…DATABREACHTODAY.CO.UK
26 FebHHS Reaches Second-Ever Ransomware SettlementThe U.S. Department of Health and Human Services (HHS) reached a settlement with Green Ridge Behavioral Health after a ransomware attack exposed the health information of over 14,000 individuals.CYBERSECURITYDIVE.COM
26 FebHackers Leak 2.5 Million Private Plane Owners’ Data Linked to LA International Airport BreachIntelBroker successfully breached the Los Angeles International Airport's CRM system, obtaining 2.5 million sensitive records, highlighting the critical need for organizations to strengthen cybersecurity measures against skilled hackers.HACKREAD.COM
26 FebCanada: RCMP Investigating Cyberattack as its Website Remains DownThe RCMP website was down due to the cyber incident, with pages being redirected to an install.php page that does not exist, indicating potential issues with website configuration.BLEEPINGCOMPUTER.COM
26 FebScattered Spider: Advanced Techniques for Launching High-Profile AttacksScattered Spider is a threat group responsible for attacking several organizations since May 2022 by using techniques like social engineering, ransomware, extortion, SIM Swapping and many other tactics. There were also reports that this threat group was affiliated with the BlackC…GBHACKERS.COM
26 FebHHS OCR Tells Congress it Needs More Funding for HIPAA WorkThe number of reported health data breaches and HIPAA complaints has been increasing, posing a significant challenge for the Department of Health and Human Services' Office for Civil Rights to keep up with their workload.BANKINFOSECURITY.COM
26 FebState-Sponsored Group Blamed for Change Healthcare BreachUnitedHealth Group is blaming a state-sponsored threat actor for a disruptive cyberattack on its subsidiary Change Healthcare. The post State-Sponsored Group Blamed for Change Healthcare Breach appeared first on SecurityWeek .SECURITYWEEK.COM
26 FebLoanDepot Ransomware Attack Exposed 16.9 Million IndividualsLending firm LoanDepot said the personal information of 16.9 million people was stolen in a ransomware attack in early January. The post LoanDepot Ransomware Attack Exposed 16.9 Million Individuals appeared first on SecurityWeek .SECURITYWEEK.COM
26 FebSteel giant ThyssenKrupp confirms cyberattack on automotive divisionSteel giant ThyssenKrupp confirms that hackers breached systems in its Automotive division last week, forcing them to shut down IT systems as part of its response and containment effort. [...]BLEEPINGCOMPUTER.COM
26 FebRansomware attack blamed for Change Healthcare outage stalling US prescriptionsAn ongoing cyberattack at U.S. health tech giant Change Healthcare that sparked outages and disruption to hospitals and pharmacies across the U.S. for the past week was caused by ransomware, TechCrunch has learned. A healthcare executive with knowledge of the incident, who was on…TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 24[−]
26 FebUtilizing the VirusTotal API to Query Files Uploaded to DShield Honeypot [Guest Diary], (Sun, Feb 25th)[This is a Guest Diary by Keegan Hamlin, an ISC intern as part of the SANS.edu BACS program]
ISC.SANS.EDU
26 FebISC Stormcast For Monday, February 26th, 2024 https://isc.sans.edu/podcastdetail/8868, (Mon, Feb 26th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
26 FebHackerGPT – A ChatGPT-Powered AI Tool for Ethical Hackers & Cyber Security CommunityHackerGPT is a cutting-edge AI tool designed explicitly for the cybersecurity sector, particularly beneficial for individuals involved in ethical hacking, such as bug bounty hunters. This advanced assistant is at the cutting edge of cyber intelligence, offering a vast repository …GBHACKERS.COM
26 FebMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
26 FebSEO Poisoning to Domain Control: The Gootloader Saga Continuessubmitted by L4s to secops 1 points | 0 comments https://thedfirreport.com/2024/02/26/seo-poisoning-to-domain-control-the-gootloader-saga-continues/ SEO Poisoning to Domain Control: The Gootloader Saga Continues::Key Takeaways More information about Gootloader can be found in the…THEDFIRREPORT.COM
26 FebAccelerate 5G with AI-Powered CybersecurityWhile the promise of Private 5G networks can bring tremendous efficiency, protecting private 5G networks can be challenging to organizations of all sizes. The post Accelerate 5G with AI-Powered Cybersecurity appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
26 Feb8220 Hacker Group Attacking Linux & Windows Users to Mine CryptoIn a significant escalation of cyber threats, the 8220 Gang, a notorious Chinese-based hacker group, has intensified its attacks on cloud-based infrastructure, targeting both Linux and Windows users to mine cryptocurrency. This latest&…GBHACKERS.COM
26 FebNorth Korean Hackers Targeting Developers with Malicious npm PackagesA set of fake npm packages discovered on the Node.js repository has been found to share ties with North Korean state-sponsored actors, new findings from Phylum show. The packages are named execution-time-async, data-time-utils, login-time-utils, mongodb-connection-utils, and mong…THEHACKERNEWS.COM
26 FebSwiss Government Identified 10,000 Phishing Websites Impersonating 260 BrandsAttacks targeting Swiss residents increased 10% last year, according to newly-released data that shows a growth in not just phishing attacks , but brand impersonation at purely a national level.KNOWBE4.COM
26 FebNorth Korean Hackers Targeting Developers with Malicious npm PackagesThe malicious packages contained scripts capable of stealing credentials from web browsers, downloading additional harmful scripts, and establishing connections to known North Korean threat actors.THEHACKERNEWS.COM
26 FebBeware That Anonymous Sudan Is Promoting A New DDoS BotnetIt has come to light that a group known as Anonymous Sudan is actively promoting a new Distributed Denial of Service (DDoS) botnet service named “Skynet-GodzillaBotnet.” An advertisement circulating online showcases a red dragon logo with the word “SKYNET.”…GBHACKERS.COM
26 FebNew IDAT Loader Attacks Using Steganography to Deploy Remcos RATUkrainian entities based in Finland have been targeted as part of a malicious campaign distributing a commercial remote access trojan known as Remcos RAT using a malware loader called IDAT Loader. The attack has been attributed to a threat actor tracked by the Computer Emergency …THEHACKERNEWS.COM
26 Feb“SubdoMailing” — Thousands of Hijacked Major-Brand Subdomains Found Bombarding Users With Millions of Malicious Emailssubmitted by L4s to secops 1 points | 0 comments https://labs.guard.io/subdomailing-thousands-of-hijacked-major-brand-subdomains-found-bombarding-users-with-millions-a5e5fb892935 “SubdoMailing” — Thousands of Hijacked Major-Brand Subdomains Found Bombarding Users With Millions of…LABS.GUARD.IO
26 FebRussian Cyberspies Targeting Cloud Infrastructure via Dormant AccountsUS government and allies expose TTPs used by notorious Russian hacking teams and warn of the targeting of dormant cloud accounts. The post Russian Cyberspies Targeting Cloud Infrastructure via Dormant Accounts appeared first on SecurityWeek .SECURITYWEEK.COM
26 FebCyber Insights 2024: Artificial IntelligenceAI will allow attackers to improve their attacks, and defenders to improve their defense. Over time, little will change — but the battle will be more intense. The post Cyber Insights 2024: Artificial Intelligence appeared first on SecurityWeek .SECURITYWEEK.COM
26 FebRussian hackers shift to cloud attacks, US and allies warnMembers of the Five Eyes (FVEY) intelligence alliance warned today that APT29 Russian Foreign Intelligence Service (SVR) hackers are now switching to attacks targeting their victims' cloud services. [...]BLEEPINGCOMPUTER.COM
26 FebIt's now possible to find the AWS Account ID for any S3 Bucket (private or public)submitted by L4s to secops 1 points | 0 comments https://tracebit.com/blog/2024/02/finding-aws-account-id-of-any-s3-bucket/ It’s now possible to find the AWS Account ID for any S3 Bucket (private or public)::A technique to find the Account ID of a private S3 bucket.TRACEBIT.COM
26 FebPrivacy Watchdog Cracks Down on Biometric Employee TrackingLeisure Center Operators Ordered to Stop Using Facial and Fingerprint Recognition Britain's privacy watchdog ordered Serco Leisure, which operates nearly 40 leisure facilities, to cease using facial recognition and fingerprint scanning for clocking employees in and out, saying th…DATABREACHTODAY.CO.UK
26 FebRussian Threat Actor APT29 Pivots to the Cloud for EspionageFive Eyes Cyber Agencies Say Kremlin Hackers Are Following Victims to the Cloud The Russian intelligence hacking group known as APT29 or Cozy Bear is responding to the corporate migration to the cloud with matching hacking techniques, says an alert from international cyber agenci…DATABREACHTODAY.CO.UK
26 FebFrom Indiana Jones to Cybersecurity: The Inspiring Journey of DevinAs a young boy, Devin found himself captivated by the adventures of Indiana Jones, the whip-wielding archaeologist from the VHS movies his grandfather showed him. The thrill of unearthing history and the allure of the unknown ignited a spark in Devin, leading him to dream of beco…MSRC.MICROSOFT.COM
26 FebHow Application Performance Transformed into Application Security - Shibu George - BSW #339Panoptica, Cisco’s cloud application security solution, was born out of Outshift, Cisco's incubation engine. Shibu George, Engineering Product Manager at Outshift, joins Business Security Weekly to discuss his transition from application performance monitoring to application secu…YOUTUBE.COM
26 FebMicrosoft Copilot for Security: The great equalizer for government securityMicrosoft Copilot for Security is the first generative AI security product that will help defend organizations at machine speed and scale. It combines the most advanced GPT4 model from OpenAI with a Microsoft-developed security model, powered by Microsoft Security’s unique expert…MICROSOFT.COM
26 FebSSH Exec Rami Raulas Named Interim CEO in Finnish ShakeupTeemu Tunkelo Left SSH Abruptly After License Sales Slump and Stock Price Nosedive SSH Communications Security CEO Teemu Tunkelo left the Finnish cybersecurity vendor abruptly Monday after low license sales in late 2023 slowed the company's growth. No reason was given for Tunkelo…DATABREACHTODAY.CO.UK
26 FebManaging Supply Chain Risk - Saša Zdjelar - BTS #24Saša Zdjelar joins us on this episode to dive into how organizations can manage supply chain risk, including the current challenges we face and how best to deal with them. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them!…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 6[−]
26 FebCybersecurity Fears Drive a Return to On-Premise Infrastructure From Cloud ComputingAccording to Citrix, 42% of organizations surveyed in the US are considering or already have moved at least half of their cloud-based workloads back to on-premises infrastructures, a phenomenon known as cloud repatriation.HELPNETSECURITY.COM
26 FebRussian-Aligned Network Doppelgänger Targets German ElectionsThe campaign involves a substantial network of social media accounts, sophisticated infrastructure, and tactics to evade detection, posing a challenge to combat such influence operations.INFOSECURITY-MAGAZINE.COM
26 FebBanking Trojans Target Latin America and Europe Through Google Cloud RunCybersecurity researchers are warning about a spike in email phishing campaigns that are weaponizing the Google Cloud Run service to deliver various banking trojans such as Astaroth (aka Guildma), Mekotio, and Ousaban (aka Javali) to targets across Latin …THEHACKERNEWS.COM
26 FebCalifornia AG Settles with DoorDash Over Selling Consumer Data Without NoticeThe settlement includes a $375,000 civil penalty, a review of vendor agreements, and the requirement to provide annual reports on potential sale or sharing of consumer information.THERECORD.MEDIA
26 FebBooking.com refund request? It might be an Agent Tesla malware attackAlways be wary of opening unsolicited attachments - they might harbour malware. That's a message that is being strongly underlined once again, following the discovery of a cybercrime campaign that is sending out poisoned PDF files - pretending they are associated with hotel reser…GRAHAMCLULEY.COM
26 FebNew IDAT loader version uses steganography to push Remcos RATA hacking group tracked as 'UAC-0184' was observed utilizing steganographic image files to deliver the Remcos remote access trojan (RAT) onto the systems of a Ukrainian entity operating in Finland. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 17[−]
26 FebEarth Lusca Uses Geopolitical Lure to Target Taiwan Before ElectionsDuring our monitoring of Earth Lusca, we noticed a new campaign that used Chinese-Taiwanese relations as a social engineering lure to infect selected targets.TRENDMICRO.COM
26 FebA New Age of HacktivismSome countries experience disproportionate hacktivist attacks based on their aid to Ukraine, shedding light on the complexities of political motivations in cyber warfare.THEHACKERNEWS.COM
26 FebApple Unveils PQ3 Protocol - Post-Quantum Encryption for iMessageThe protocol combines Kyber and ECC, aims to mitigate the impact of key compromises, and will be integrated into Apple's iOS, iPadOS, macOS, and watchOS in the next update.THEHACKERNEWS.COM
26 FebFTC to Ban Avast From Selling Browsing Data for Advertising PurposesThe U.S. Federal Trade Commission (FTC) has ordered Avast to pay $16.5 million and banned the company from selling users' web browsing data or licensing it for advertising purposes.BLEEPINGCOMPUTER.COM
26 FebThree Tips to Protect Your Secrets from AI AccidentsLast year, the Open Worldwide Application Security Project (OWASP) published multiple versions of the "OWASP Top 10 For Large Language Models," reaching a 1.0 document in August and a 1.1 document in October. These documents not only demonstrate the rapidly evolving nature of Lar…THEHACKERNEWS.COM
26 FebUS Leading Global Alliance To Counter Foreign Government DisinformationPACKETSTORMSECURITY.COM
26 Feb8,000+ Subdomains of Trusted Brands Hijacked for Massive Spam OperationMore than 8,000 subdomains belonging to legitimate brands and institutions have been hijacked as part of a sophisticated distribution architecture for spam proliferation and click monetization. Guardio Labs is tracking the coordinated malicious activity, which has been ongoing si…THEHACKERNEWS.COM
26 FebMicrosoft Releases PyRIT - A Red Teaming Tool for Generative AIThe tool can be used to assess the robustness of large language model (LLM) endpoints against various harm categories, such as fabrication, misuse, prohibited content, security harms, and privacy harms.THEHACKERNEWS.COM
26 FebCybersecurity Training Not Sticking? How to Fix Risky Password HabitsWhile security training can help create a culture of cybersecurity awareness, it can't be relied upon to consistently change behavior. Learn more from Specops Software about the limitations of training and five ways you can increase password security. [...]BLEEPINGCOMPUTER.COM
26 FebSubdoMailing campaign spams 5 million emails daily via 8k hijacked domainsA massive ad fraud campaign named "SubdoMailing" is using over 8,000 legitimate internet domains and 13,000 subdomains to send up to five million emails per day to generate revenue through scams and malvertising. [...]BLEEPINGCOMPUTER.COM
26 FebHijacked subdomains of major brands used in massive spam campaignA massive ad fraud campaign named "SubdoMailing" is using over 8,000 legitimate internet domains and 13,000 subdomains to send up to five million emails per day to generate revenue through scams and malvertising. [...]BLEEPINGCOMPUTER.COM
26 FebWhite House urges devs to switch to memory-safe programming languagesThe White House Office of the National Cyber Director (ONCD) urged tech companies today to switch to memory-safe programming languages, such as Rust, to improve software security by reducing the number of memory safety vulnerabilities. [...]BLEEPINGCOMPUTER.COM
26 Feb10 things to avoid posting on social media – and whyDo you often take to social media to broadcast details from your life? Here’s why this habit may put your privacy and security at risk.WELIVESECURITY.COM
26 FebLooking Forward, Looking Back: A Quarter Century as a CISOGail Coury explores how cybersecurity has evolved and what the future holds, after a distinguished career as a CISO.F5.COM
26 FebLooking Forward, Looking Back: A Quarter Century as a CISOGail Coury explores how cybersecurity has evolved and what the future holds, after a distinguished career as a CISO.F5.COM