🐛 COMMON VULNERABILITIES AND EXPOSURES 8[−]
27 FebWordPress Plugin Alert - Critical SQLi Vulnerability Threatens 200K+ WebsitesA critical security flaw has been disclosed in a popular WordPress plugin called Ultimate Member that has more than 200,000 active installations. The vulnerability, tracked as CVE-2024-1071, carries a CVSS score of 9.8 out of a maximum of 10. Security researcher Christi…THEHACKERNEWS.COM
27 FebThreat Actor Groups, Including Black Basta, are Exploiting Recent ScreenConnect VulnerabilitiesThis blog entry gives a detailed analysis of these recent ScreenConnect vulnerabilities. We also discuss our discovery of threat actor groups, including Black Basta and Bl00dy Ransomware gangs, that are actively exploiting CVE-2024-1708 and CVE-2024-1709 based on our telemetry.TRENDMICRO.COM
27 FebReport: CVE Count Set to Rise by 25% in 2024A report from Coalition predicts a 25% increase in common vulnerabilities and exposures (CVEs) in 2024, reaching 34,888 vulnerabilities. This sharp rise in CVEs raises concerns about software vulnerability and the potential for ransomware attacks.HELPNETSECURITY.COM
27 FebWordPress Plugin Alert - Critical SQLi Vulnerability Threatens 200K+ WebsitesA critical security flaw (CVE-2024-1071) in the Ultimate Member WordPress plugin allowed unauthenticated attackers to perform SQL injection and extract sensitive data, affecting users who enabled the "Enable custom table for usermeta" option.THEHACKERNEWS.COM
27 Feb KEVHackers Actively Hijacking ConnectWise ScreenConnect serverConnectWise, a prominent software company, issued an urgent security bulletin on February 19, 2024, revealing two significant vulnerabilities in its self-hosted ScreenConnect servers. These vulnerabilities were initially reported on February 13 through a vulnerability disclosure …GBHACKERS.COM
27 FebNew WiFi Authentication Vulnerabilities Discoveredsubmitted by kid to cybersecurity 0 points | 0 comments https://www.top10vpn.com/research/wifi-vulnerabilities/ Two new vulnerabilities have been identified in WiFi software affecting devices connecting to both enterprise and home networks. The wpa_supplicant vulnerability (CVE-2…TOP10VPN.COM
27 FebZyxel Firewall Flaw Let Attackers Execute Remote CodeFour new vulnerabilities have been discovered in some of the Zyxel Firewall and access point (AP) versions that are associated with Denial of Service, OS Command Injection, and Remote code execution. These vulnerabilities have been assigned with CVE-2023-6397, CVE-2023-6398, CVE-…GBHACKERS.COM
27 FebWordPress LiteSpeed Plugin Vulnerability Puts 5 Million Sites at RiskA security vulnerability has been disclosed in the LiteSpeed Cache plugin for WordPress that could enable unauthenticated users to escalate their privileges. Tracked as CVE-2023-40000, the vulnerability was addressed in October 2023 in version 5.7.0.1. "This plugin suffers f…THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 26[−]
27 Feb8 associations that women in cybersecurity should follow or joinJoining a female-only association can provide crucial support for women in cybersecurity as they provide opportunities for networking, mentorship, career development, advocacy, and access to resources. These groups can also help female cyber workers build confidence and develop l…CSOONLINE.COM
27 FebWordPress Plugin Flaw Exposes 200,000+ Websites for HackingA critical security flaw has been identified in the Ultimate Member plugin for WordPress, which could potentially put over 200,000 websites at risk. The vulnerability was discovered by Christiaan Swiers and reported through the Wordfence Bug Bounty Program, earning him a bounty o…GBHACKERS.COM
27 FebNew Hugging Face Vulnerability Exposes AI Models to Supply Chain AttacksCybersecurity researchers have found that it's possible to compromise the Hugging Face Safetensors conversion service to ultimately hijack the models submitted by users and result in supply chain attacks. "It's possible to send malicious pull requests with attacker-controlled dat…THEHACKERNEWS.COM
27 FebHow the FBI and CISA Look to Mature the Government’s Top Ransomware Task ForceThe Joint Ransomware Task Force aims to enhance collaboration to identify ransomware groups and drive a comprehensive government and societal response to protect critical infrastructure and businesses.THERECORD.MEDIA
27 FebWeb Check Provides Open-Source Intelligence for Any WebsiteThe tool offers a wide range of features including IP info, SSL chain, DNS records, cookies, headers, server location, open ports, and more, making it a valuable resource for both OSINT investigations and general curiosity.HELPNETSECURITY.COM
27 FebNIST releases expanded 2.0 version of the Cybersecurity FrameworkAfter two years of work, the US National Institute of Standards and Technology (NIST) has issued the 2.0 version of its widely referenced Cybersecurity Framework (CSF), expanding upon the draft 2.0 version it issued in September. The CSF 2.0, cited in President Biden’s National C…CSOONLINE.COM
27 FebHackers Exploit 14-Year-Old CMS Editor on Government and Educational Sites for SEO PoisoningThe deprecated FCKeditor plugin is being abused to create open redirects on university, government, and corporate websites, allowing threat actors to poison search engine results with malicious content.BLEEPINGCOMPUTER.COM
27 FebLockBit back in action, threatens to leak stolen Trump docssubmitted by kid to cybersecurity -1 points | 0 comments https://www.theregister.com/2024/02/26/lockbit_back_in_action/ The group’s new leak site lists the FBI among its alleged victims and threatens to release confidential Fulton County data, including details of a murder trial …THEREGISTER.COM
27 FebCybersecurity Crisis in SchoolsThe education sector faces significant cybersecurity risks due to factors such as BYOD culture, vast student data troves, and resource scarcity, making strong cybersecurity measures crucial.HELPNETSECURITY.COM
27 FebSteel Production Giant ThyssenKrupp Confirms Cyberattack on Automotive DivisionThyssenKrupp, a major steel producer and industrial engineering firm, experienced a cyberattack on its Automotive division, leading to a forced shutdown of IT systems as part of the response and containment measures.BLEEPINGCOMPUTER.COM
27 FebOpen-Source Xeno RAT Trojan Emerges as a Potent Threat on GitHubAn "intricately designed" remote access trojan (RAT) called Xeno RAT has been made available on GitHub, making it available to other actors at no extra cost. Written in C# and compatible with Windows 10 and Windows 11 operating systems, the open-source RAT comes with a …THEHACKERNEWS.COM
27 FebThe compelling need for cloud-native data protectionCloud environments were frequent targets for cyber attackers in 2023. Eighty-two percent of breaches that involved data stored in the cloud were in public, private or multi-cloud environments. Attackers gained the most access to multi-cloud environments, with 39% of breaches span…SECURITYINTELLIGENCE.COM
27 Feb14-Year-Old CMS Editor Flaw Exploited to Hack Govt & Edu SitesHackers have exploited a vulnerability in a 14-year-old Content Management System (CMS) editor, FCKeditor, to launch SEO poisoning attacks against government and educational websites worldwide. This campaign has compromised numerous sites, redirecting unsuspecting users to malici…GBHACKERS.COM
27 FebAbyss Locker Ransomware Attacks Microsoft Windows and Linux UsersFortiGuard Labs has released a report detailing the emergence and impact of the Abyss Locker ransomware, which has been targeting Microsoft Windows and Linux platforms. Abyss Locker, believed to be based on the HelloKitty ransomware source code, has been stealing and encrypting v…GBHACKERS.COM
27 FebCyber Insights 2024: Quantum and the CryptopocalypseQuantum computers are coming, and will defeat current PKE encryption. But this cryptopocalypse is not dependent upon quantum computers — it could happen through other means, at any time. The post Cyber Insights 2024: Quantum and the Cryptopocalypse appeared first on SecurityWeek …SECURITYWEEK.COM
27 Feb3 guiding principles of data security in the AI eraAI hype and adoption are seemingly at an all-time high with nearly 70% of respondents to a recent S&P report on Global AI Trends saying they have at least one AI project in production. While the promise of AI can fundamentally reshape business operations, it has also created…CSOONLINE.COM
27 FebZyxel Issues Security Advisory for Multiple Vulnerabilities in Firewalls and APsZyxel has identified and patched four critical vulnerabilities in its firewall and access point products, including flaws that could lead to remote code execution and denial-of-service attacks.ZYXEL.COM
27 FebCreating the Secure Pipeline Verification Standard - Farshad Abasi - ASW #274Farshad Abasi joins us again to talk about creating a new OWASP project, the Secure Pipeline Verification Standard. (Bonus points for not being a top ten list!) We talk about what it takes to pitch a new project and the problems that this new project is trying to solve. For this …YOUTUBE.COM
27 FebCISA Releases Two Industrial Control Systems AdvisoriesCISA released two Industrial Control Systems (ICS) advisories on February 27, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-058-01 Mitsubishi Electric Multiple Factory Automation Products &n…CISA.GOV
27 FebNew Hugging Face Vulnerability Exposes AI Models to Supply Chain AttacksCybersecurity researchers discovered a vulnerability in the Hugging Face Safetensors conversion service that could be exploited by attackers to compromise machine learning models submitted by users, leading to supply chain attacks.THEHACKERNEWS.COM
27 FebBlack Basta, Bl00dy Ransomware Exploiting Recent ScreenConnect FlawsThe Black Basta and Bl00dy ransomware gangs have started exploiting two vulnerabilities in ConnectWise ScreenConnect. The post Black Basta, Bl00dy Ransomware Exploiting Recent ScreenConnect Flaws appeared first on SecurityWeek .SECURITYWEEK.COM
27 FebBroadcom pauses sale of Carbon Black as EUC deal goes throughA potentially $1 billion deal by semiconductor manufacturer Broadcom to sell a security software business it acquired with its $61 billion purchase of VMware last year has reportedly been put on hold, if not abandoned. Investment firm KKR had agreed to buy Carbon Black along with…CSOONLINE.COM
27 FebOpen-Source Xeno RAT Trojan Emerges as a Potent Threat on GitHubThe multi-stage dissemination of Xeno RAT via Discord CDN demonstrates the use of deceptive tactics such as disguised shortcut files to deliver and execute the open-source malware.THEHACKERNEWS.COM
27 FebBlack Basta, Bl00dy ransomware gangs join ScreenConnect attacksThe Black Basta and Bl00dy ransomware gangs have joined widespread attacks targeting ScreenConnect servers unpatched against a maximum severity authentication bypass vulnerability. [...]BLEEPINGCOMPUTER.COM
27 FebMoscow Military Hackers Used Microsoft Outlook VulnerabilityAPT28 Used Hacked Ubiquiti Routers for Hashed Password Relay Attacks A campaign by Russian military intelligence to convert Ubiquiti routers into a platform for a global cyberespionage operation began as early as 2022, U.S. and foreign intelligence agencies said. The U.S. disrupt…DATABREACHTODAY.CO.UK
27 FebMicrosoft boosts its Microsoft 365 Insider Builds on Windows Bounty Program with higher awards and an expanded scopeStarting today, we are doubling the maximum bounty award for the Microsoft 365 Insider Bug Bounty Program to $30,000 USD for high impact scenarios, such as unauthenticated non-sandboxed code execution with no user interaction. We are also expanding the scope of our bounty program…MSRC.MICROSOFT.COM
📢 SECURITY ADVISORIES 10[−]
27 FebUK: NCSC to Offer Cyber Governance Guidance to BoardsBoards have a legal responsibility to understand and manage cyber-governance within their organizations and should seek practical guidance to enhance their cybersecurity understanding.INFOSECURITY-MAGAZINE.COM
27 FebChina Warns of Fake Digital Yuan WalletsFake wallet apps for China's digital currency are circulating, leading to warnings from the Ministry of Industry and Information Technology about potential scams and data theft.THEREGISTER.COM
27 FebFive Eyes Agencies Expose APT29's Evolving Cloud Attack TacticsCybersecurity and intelligence agencies from the Five Eyes nations have released a joint advisory detailing the evolving tactics of the Russian state-sponsored threat actor known as APT29. The hacking outfit, also known as BlueBravo, Cloaked Ursa, Cozy Bear, Midnight Blizzar…THEHACKERNEWS.COM
27 FebNIST Cybersecurity Framework 2.0 Officially ReleasedNIST releases Cybersecurity Framework 2.0, the first major update since the creation of the CSF a decade ago. The post NIST Cybersecurity Framework 2.0 Officially Released appeared first on SecurityWeek .SECURITYWEEK.COM
27 FebNIST Releases Version 2.0 of Landmark Cybersecurity FrameworkNIST has updated the Cybersecurity Framework (CSF) to include quick-start guides, success stories, and a searchable catalog of references, making it more accessible and actionable for a wider range of organizations and sectors.NIST.GOV
27 FebData Distribution in Privacy-Preserving Federated LearningThis post is part of a series on privacy-preserving federated learning. The series is a collaboration between NIST and the UK government’s Responsible Technology Adoption Unit (RTA), previously known as the Centre for Data Ethics and Innovation. Learn more and read all the posts …NIST.GOV
27 FebRussian hackers hijack Ubiquiti routers to launch stealthy attacksRussian APT28 military hackers are using compromised Ubiquiti EdgeRouters to evade detection, the FBI says in a joint advisory issued with the NSA, the U.S. Cyber Command, and international partners. [...]BLEEPINGCOMPUTER.COM
27 FebCISA, FBI, and HHS Release an Update to #StopRansomware Advisory on ALPHV BlackcatToday, CISA, the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) released an update to the joint advisory #StopRansomware: ALPHV Blackcat to provide new indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) ass…CISA.GOV
27 FebFBI, CISA warn US hospitals of targeted BlackCat ransomware attacksToday, the FBI, CISA, and the Department of Health and Human Services (HHS) warned U.S. healthcare organizations of targeted ALPHV/Blackcat ransomware attacks. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 18[−]
27 FebMGM Resorts’ Cyberattack Headache Continues as Regulators Launch InvestigationsMGM Resorts is facing regulatory investigations and potential fines following a cyberattack that disrupted its operations, with the possibility of incurring losses from legal proceedings.CYBERSECURITYDIVE.COM
27 FebChina Surveillance Company HackedLast week, someone posted something like 570 files, images and chat logs from a Chinese company called I-Soon. I-Soon sells hacking and espionage services to Chinese national and local government. Lots of details in the news articles . These aren’t details about the tools o…SCHNEIER.COM
27 Feb67,000 U-Haul Customers Impacted by Data BreachU-Haul says customer information was compromised in a data breach involving a reservation tracking system. The post 67,000 U-Haul Customers Impacted by Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
27 FebCanada’s RCMP, Global Affairs Hit by CyberattacksCanadian authorities are actively investigating cyberattacks impacting the RCMP network and Global Affairs Canada. The post Canada’s RCMP, Global Affairs Hit by Cyberattacks appeared first on SecurityWeek .SECURITYWEEK.COM
27 FebThreatHunter.ai Stops Hundreds of Attacks in 48 Hours: Fighting Ransomware and Nation-State Cyber ThreatsThe current large surge in cyber threats has left many organizations grappling for security so ThreatHunter.ai is taking decisive action. Recognizing the critical juncture at which the digital world stands, ThreatHunter.ai is now offering their cutting-edge cybersecurity services…GBHACKERS.COM
27 FebHackers Abuse Telegram API To Exfiltrate User InformationAttackers have been using keywords like “remittance” and “receipts” to spread phishing scripts using Telegram to steal user data indiscriminately. In the past, phishing script files were disseminated using various strategies and techniques, like asking use…GBHACKERS.COM
27 FebRussian Hacker Set to Face Trial for the Hack of a Local Power GridA 49-year-old Russian national has been charged with carrying out a cyberattack on a local power plant, resulting in a widespread blackout in 38 villages in the Vologda region.SECURITYAFFAIRS.COM
27 FebAttackers penetrate Walmart’s Spark Driver portalsubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://cybernews.com/news/walmarts-spark-driver-portal-breach/CYBERNEWS.COM
27 FebAnnual Ransomware Payments Surpass $1 BillionFor the first time, analysis of ransomware payments made in a single year tops $1,000,000,000. This signals a massive return to more frequent, sophisticated, and successful attacks.KNOWBE4.COM
27 FebHow will AI change the security operations center?Cyberattacks are scaling up. That means security operations center (SOC) teams are overwhelmed by the volume of alerts they must analyze and how to sort out real threats vs. system noise. The good news? Artificial intelligence (AI) is poised to supercharge SOC modernization effor…CSOONLINE.COM
27 FebGerman state of Hessen says systems encrypted by ransomwareThe German state of Hessen (Hesse) has been hit with a ransomware attack, causing the government to shut down IT systems and disrupting the availability of its consumer advice center. [...]BLEEPINGCOMPUTER.COM
27 FebUpdate: LoanDepot Says About 17M Customers Had Personal Data and SSNs Stolen During CyberattackThe cyberattack left LoanDepot's customers unable to make payments or access their online accounts, and the company expects the incident to impact its fiscal first quarter earnings by $12 to $17 million.TECHCRUNCH.COM
27 FebHessen Consumer Center says systems encrypted by ransomwareThe Hessen Consumer Center in Germany has been hit with a ransomware attack, causing IT systems and disrupting the availability of its consumer advice center. [...]BLEEPINGCOMPUTER.COM
27 FebAvast, Hadoop & Druid Servers, HackerGPT, Apple, Crowdstrike, EFF Lockbit, & More - SWN #364This week in the Security Weekly News: Avast fines, HackerGPT innovations, DDoS threats, encryption updates, Josh Marpet, and more! Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-364YOUTUBE.COM
27 FebNews alert: ThreatHunter.ai stops hundreds of ransomware attacks, nation-state threats in 48 hoursBrea, Calif. Feb. 27, 2024 — The current large surge in cyber threats has left many organizations grappling for security so ThreatHunter.ai is taking decisive action. Recognizing the critical juncture at which the digital world stands, ThreatHunter.ai is now offering ……LASTWATCHDOG.COM
27 FebPharmaceutical giant Cencora says data was stolen in a cyberattackPharmaceutical giant Cencora says they suffered a cyberattack where threat actors stole data from corporate IT systems. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 26[−]
27 FebISC Stormcast For Tuesday, February 27th, 2024 https://isc.sans.edu/podcastdetail/8870, (Tue, Feb 27th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
27 FebHeavily Obfuscated PIKABOT Evades EDR ProtectionPIKABOT is a polymorphic malware that constantly modifies its code, making it hard to recognize and easily bypasses the Endpoint Detection and Response (EDR) systems. Obfuscation, encryption, and anti-analysis techniques help the object avoid these traditional security measures.&…GBHACKERS.COM
27 FebOver 13,000 Hijacked Major-Brand Subdomains Found Bombarding Users With Millions of Malicious EmailsThe threat actors hijack abandoned subdomains and domains of well-known companies, allowing the emails to bypass spam filters and appear legitimate. Brands like MSN, VMware, and eBay have been unwittingly involved.LABS.GUARD.IO
27 FebFrom Alert to Action: How to Speed Up Your SOC InvestigationsProcessing alerts quickly and efficiently is the cornerstone of a Security Operations Center (SOC) professional's role. Threat intelligence platforms can significantly enhance their ability to do so. Let's find out what these platforms are and how they can empower analysts. The C…THEHACKERNEWS.COM
27 FebWhite House Urges Tech Industry to Eliminate Memory Safety Vulnerabilisubmitted by kid to cybersecurity 0 points | 0 comments https://www.infosecurity-magazine.com/news/white-house-tech-memory The White House is calling on the tech industry to use programming languages that prevent memory vulnerabilities, responsible for up to 70% of CVEs in insecu…INFOSECURITY-MAGAZINE.COM
27 FebArtificial Arms Race: What Can Automation and AI do to Advance Red TeamsThe best Red Team engagements are a balanced mix of technology, tools and human operators. The post Artificial Arms Race: What Can Automation and AI do to Advance Red Teams appeared first on SecurityWeek .SECURITYWEEK.COM
27 FebRussian SVR-Linked APT29 Threat Actors Adapt Their Tactics for Initial Cloud AccessThe Russian Foreign Intelligence Service (SVR) cyber actors, also known as APT29 or Cozy Bear, have shifted their tactics to target cloud environments as organizations increasingly move to cloud-based infrastructure.CISA.GOV
27 FebCyberheistNews Vol 14 #09 Exposed: Global Espionage Unleashed by China's Police in Groundbreaking LeakKNOWBE4.COM
27 FebUnderstand SASE ROI for Network Security TransformationSASE offers cost savings and operational efficiency. Learn your potential ROI with Prisma SASE. The post Understand SASE ROI for Network Security Transformation appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
27 FebDomains Once Owned by Major Firms Help Millions of Spam Emails Bypass Security8,800 domains, many once owned by major companies, have been abused to get millions of emails past spam filters as part of SubdoMailing campaign. The post Domains Once Owned by Major Firms Help Millions of Spam Emails Bypass Security appeared first on SecurityWeek .SECURITYWEEK.COM
27 FebEmails Are Responsible for 88% of Malicious File DeliveriesEmails are still the most common delivery method for malicious files, according to Check Point’s Cyber Security Report for 2024.KNOWBE4.COM
27 FebIntelligent Generative AI Handling - Aaron Weismann - CSP #163Generative AI security and integrity. This is important to me because it's a cool new commercially available technology that promises efficiency and time savings--and therefore everyone wants to use it without a thorough understanding of how to secure data used with it or correct…YOUTUBE.COM
27 Feb[SCARY] You knew about OSINT, but did you know about ADINT?WIRED just published a scary (long) article. I am summarizing it here and highly recommend you read the whole thing.KNOWBE4.COM
27 FebEnergy Department Invests $45 Million in 16 Projects to Improve CybersecurityThe US government makes a $45 million investment in 16 projects to improve cybersecurity across the energy sector. The post Energy Department Invests $45 Million in 16 Projects to Improve Cybersecurity appeared first on SecurityWeek .SECURITYWEEK.COM
27 FebHackers Selling DCRat Malware Subscriptions For $5 on TelegramResearchers from ANY.RUN reported a new wave of DCRat malware, known for its wide array of harmful functions, selling the membership for the low cost of $5. The detailed report covers the distribution, dynamic, and static analysis of DCRat, also known as Dark Crystal RAT, which i…GBHACKERS.COM
27 FebPrintListener, Post-Quantum Crypto in iMessage, Silent Sabotage, Rust Survey Results - ASW #274PrintListener recreates fingerprints, iMessage updates key handling for a PQ3 rating, Silent Sabotage shows supply chain subterfuge against AI models, 2023 Rust survey results, the ways genAI might help developers, and more! Visit https://www.securityweekly.com/asw for all the la…YOUTUBE.COM
27 FebProof of Concept: Securing Elections in the Age of AICISOs Discuss AI Scams, Cyberthreats and Election Security Defenses In the latest "Proof of Concept," Jeff Brown, CISO for the state of Connecticut, and Lester Godsey, CISO for Maricopa County, Arizona, join ISMG editors to discuss AI-related threats to election security, safegua…DATABREACHTODAY.CO.UK
27 FebIs Microsegmentation for Zero Trust Defenses Worth It?Forrester's David Holmes on Why CISOs Must Evaluate Microsegmentation in Cloud Microsegmentation is a fundamental concept in zero trust security, but CISOs should assess its feasibility before diving in. This is particularly true in a public cloud environment where there is no re…DATABREACHTODAY.CO.UK
27 FebHSCC Issues Cyber 'Call to Action' Plan for Health Sector5-Year Plan Details How to Raise the Bar on Health Ecosystem's Approach to Cyber The Health Sector Coordinating Council has issued a five-year strategic plan - "a call to action" - for healthcare and public health organizations to implement cybersecurity programs that do a better…DATABREACHTODAY.CO.UK
27 FebNew Server Side Prototype Pollution Gadgets Scanner from Doyensecsubmitted by L4s to secops 1 points | 0 comments https://blog.doyensec.com/2024/02/17/server-side-prototype-pollution-Gadgets-scanner.html New Server Side Prototype Pollution Gadgets Scanner from Doyensec::Unveiling the Server-Side Prototype Pollution Gadgets ScannerDOYENSEC.COM
27 FebUS Gov Says Software Measurability is ‘Hardest Problem to Solve’White House calls for the “timely, complete, and consistent” publication of CVE and CWE data to help solve the security metrics problem. The post US Gov Says Software Measurability is ‘Hardest Problem to Solve’ appeared first on SecurityWeek .SECURITYWEEK.COM
27 FebWhat Goes Around Comes Back Around, With Chatbots TooStudy Shows Correlation Between Polite Language, Culture and LLM Output It pays to be nice, even to an inanimate chunk of code masquerading as a conversation partner, find Japanese researchers from Tokyo's Waseda University who investigated the performance of large language model…DATABREACHTODAY.CO.UK
27 FebData Scientists Targeted by Malicious Hugging Face ML Models with Silent Backdoorsubmitted by L4s to secops 1 points | 0 comments https://jfrog.com/blog/data-scientists-targeted-by-malicious-hugging-face-ml-models-with-silent-backdoor/ Data Scientists Targeted by Malicious Hugging Face ML Models with Silent Backdoor::Is Hugging Face the target of model-based …JFROG.COM
27 FebEU to Analyze Partnership Between Microsoft and Mistral AIMicrosoft Announces $16.3 Million Investment in French AI Firm The European competition regulator will examine a partnership between Microsoft and French artificial intelligence startup Mistral AI for potential anti-competitive effects. Microsoft announced Monday that it has ente…DATABREACHTODAY.CO.UK
27 FebReport Says Iranian Hackers Targeting Israeli Defense SectorHackers Are Leveraging Israel-Hamas War to Carry Out Attacks, Researcher Tells ISMG Cybersecurity researchers identified a suspected Iranian espionage campaign targeting aerospace, aviation and defense industries across the Middle East. Hackers targeted employees within the aviat…DATABREACHTODAY.CO.UK
27 FebNews alert: Chiral announces $3.8m funding round to advance nanomaterial chip manufacturingZurich, Switzerland, Feb. 27, 2024 — Chipmaking has become one of the world’s most critical technologies in the last two decades. The main driver of this explosive growth has been the continuous scaling of silicon technology (widely known as the … (more…)LASTWATCHDOG.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
27 FebTakes Downs and the Rest of Us: Do they matter?, (Tue, Feb 27th)Last week, the US Department of Justice published a press release entitled "Justice Department Conducts Court-Authorized Disruption of Botnet Controlled by the Russian Federation's Main Intelligence Directorate of the General Staff (GRU)" [1]. The disruption targete…ISC.SANS.EDU
📡 INFOSEC NEWS 17[−]
27 FebEarth Lusca Uses Geopolitical Lure to Target Taiwan Before ElectionsThe attack involved a multi-stage infection chain, including spear phishing, obfuscated JavaScript files, and DLL hijacking, ultimately leading to the deployment of a Cobalt Strike payload.TRENDMICRO.COM
27 FebPayPal Files Patent for New Method to Detect Stolen CookiesPayPal has filed a patent application for a method to detect when "super-cookies" are stolen, aiming to improve cookie-based authentication and prevent account takeover attacks.BLEEPINGCOMPUTER.COM
27 FebWindows February 2024 updates fail to install with 0x800F0922 errorsMicrosoft says the February 2024 updates fail to install on Windows 11 22H2 and 23H2 systems, with 0x800F0922 errors and downloads stopping at 96%. [...]BLEEPINGCOMPUTER.COM
27 FebNew IDAT Loader Version Uses Steganography to Push Remcos RATThe attackers employed sophisticated techniques such as code injection, execution modules, and dynamic loading of Windows API functions to evade detection by automated security products.BLEEPINGCOMPUTER.COM
27 FebIt’s Time for Security Operations to Ditch ExcelSecurity teams often rely on manual Excel work to manage their cybersecurity operations, despite the limitations and inefficiencies of using spreadsheets for such critical tasks.HELPNETSECURITY.COM
27 FebWhite House Urges Tech Industry to Switch to Memory-Safe Programming LanguagesA new report by the Office of the National Cyber Director (ONCD) highlighted that up to 70% of security vulnerabilities are due to memory safety issues in certain programming languages.BLEEPINGCOMPUTER.COM
27 FebInvestigators Trace $100 Million in Crypto Payments to Myanmar Scam SyndicateTwo cryptocurrency addresses linked to a company operating in a notorious scam compound in Myanmar have received nearly $100 million worth of deposits in less than two years.THERECORD.MEDIA
27 FebUK: Privacy Watchdog Cracks Down on Biometric Employee TrackingThe British privacy watchdog has ordered a leisure center contractor, Serco Leisure, to stop using facial recognition and fingerprint scanning to track employees at 38 leisure facilities.BANKINFOSECURITY.COM
27 FebMalicious code in Tornado Cash governance proposal puts user funds at riskMalicious JavaScript code hidden in a Tornado Cash governance proposal has been leaking deposit notes and data to a private server for almost two months. [...]BLEEPINGCOMPUTER.COM
27 FebPikabot Returns With New Tricks up Its SleeveThe new version of Pikabot features simpler encryption algorithms, anti-debugging methods, and plaintext bot configuration, indicating a new codebase with potential future improvements.HELPNETSECURITY.COM
27 FebToy robot security issues | Kaspersky official blogVulnerabilities in a popular toy robot model allowed malicious actors to make video calls to the robot, and hijack the parental account.KASPERSKY.COM
27 FebSophos Sponsors Scholarships To Celebrate Black History MonthThe funding will help aspiring future engineering talent.SOPHOS.COM
27 FebLabHost cybercrime service lets anyone phish Canadian bank usersThe Phishing as a Service (PhaaS) platform 'LabHost' has been helping cybercriminals target North American banks, particularly financial institutes in Canada, causing a notable increase in activity. [...]BLEEPINGCOMPUTER.COM
27 FebWhat's Next for Carbon Black Now That Broadcom Sale Is Dead?A Carbon Black-Symantec Marriage Would Combine 2 Low-Growth Endpoint Security Teams Carbon Black won't be getting a new residence anytime soon after indications of interest in the organization fell short of Broadcom's expectations. The semiconductor giant had been looking to fetc…DATABREACHTODAY.CO.UK