matlock.ca // THREAT INTELLIGENCE

124Articles

9Categories

2024-03-07Date

🚨

CISA Adds Android Pixel and Sunhillo SureLine Bugs to its Known Exploited Vulnerabilities CatalogThe CISA added Android Pixel and Sunhillo SureLine vulnerabilities to its Known Exploited Vulnerabilities catalog, with the potential for local information disclosure and OS command injection.

KEVSECURITYAFFAIRS.COM — 07 Mar 2024

🚨

CISA Adds One Known Exploited JetBrains Vulnerability, CVE-2024-27198, to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-27198 JetBrains TeamCity Authentication Bypass Vulnerability CISA urges organizations to review the following JetBrains blog post and app…

KEVCISA.GOV — Thu, 07 Mar 24 1

🐛

Hackers Exploiting iOS 0-Day To Attack iPhones – Patch Now!

GBHACKERS.COM — 07 Mar 2024

🐛

Cisco Small Business Wireless Access Points Flaw Let Attackers Inject Commands

GBHACKERS.COM — 07 Mar 2024

🐛

Kimsuky Exploits ScreenConnect Bugs, Drops ToddlerShark

CYWARE.COM — 07 Mar 2024

🐛

Critical TeamCity Vulnerability Exploitation Started Immediately After Disclosure

KEVSECURITYWEEK.COM — 07 Mar 2024

🐛

TeamCity supply chain bugs receive massive exploitation

CSOONLINE.COM — 07 Mar 2024

🐛

Update: Critical TeamCity Flaw Now Widely Exploited to Create Admin Accounts

BLEEPINGCOMPUTER.COM — 07 Mar 2024

🐛

CVE-2024-26167 Microsoft Edge for Android Spoofing Vulnerability

MSRC.MICROSOFT.COM — 07 Mar 2024

🐛

CVE-2024-2173

MSRC.MICROSOFT.COM — 07 Mar 2024

🐛

CVE-2024-2174

MSRC.MICROSOFT.COM — 07 Mar 2024

🐛

CVE-2024-2176

MSRC.MICROSOFT.COM — 07 Mar 2024

🐛

VMware patches critical flaws that could allow attackers to escape VMs

KEVCSOONLINE.COM — 07 Mar 2024

⚠️

WoTLabs - 21,994 breached accounts

HAVEIBEENPWNED.COM — 07 Mar 2024

⚠️

Beyond the table stakes: CISO Ian Schneller on cybersecurity’s evolving role

CSOONLINE.COM — 07 Mar 2024

⚠️

Online Trade (Онлайн Трейд) - 3,805,265 breached accounts

HAVEIBEENPWNED.COM — 07 Mar 2024

⚠️

Hackers Abuse QEMU to Covertly Tunnel Network Traffic in Cyberattacks

BLEEPINGCOMPUTER.COM — 07 Mar 2024

⚠️

New Linux Malware Attacking Apache, Docker, Redis & Confluence Servers

GBHACKERS.COM — 07 Mar 2024

⚠️

Ex-Google engineer charged with theft of AI tech for Chinese firms

CSOONLINE.COM — 07 Mar 2024

⚠️

Hacked WordPress Sites Using Visitors’ Browsers For Distributed Brute Force Attacks

GBHACKERS.COM — 07 Mar 2024

⚠️

Linux Malware Targets Misconfigured Apache Hadoop, Confluence, Docker, and Redis Servers

SECURITYAFFAIRS.COM — 07 Mar 2024

⚠️

How Public AI Can Strengthen Democracy

SCHNEIER.COM — 2024-03-07

⚠️

Hackers Switch From Crypto Drainer to Distributed WordPress Brute Force Attacks

SUCURI.NET — 07 Mar 2024

⚠️

Server Killers Alliances: Here is the List of Hacker Groups

GBHACKERS.COM — 07 Mar 2024

⚠️

CISA Announces New Efforts to Help Secure Open Source Ecosystem

CISA.GOV — Thu, 07 Mar 24 1

⚠️

Critical TeamCity Vulnerability Exploitation Started Immediately After Disclosure

PACKETSTORMSECURITY.COM — 07 Mar 2024

⚠️

Kimsuky Gang Joins Rush To Exploit New ScreenConnect Bugs

PACKETSTORMSECURITY.COM — 07 Mar 2024

⚠️

Hacked WordPress Sites Abusing Visitors' Browsers for Distributed Brute-Force Attacks

THEHACKERNEWS.COM — 07 Mar 2024

⚠️

RiskInDroid Performs Open-Source Risk Analysis of Android Apps

HELPNETSECURITY.COM — 07 Mar 2024

⚠️

ITRC Finds Online Job Scams on the Rise

SECURITYBOULEVARD.COM — 07 Mar 2024

⚠️

Apple Releases Security Updates for iOS and iPadOS

CISA.GOV — Thu, 07 Mar 24 1

⚠️

Leveraging Sourcetrail to a mapping tool, meet Numbat and Pyrrha

QUARKSLAB.COM — 2024-03-07

⚠️

AnyCubic fixes exploited 3D printer zero day flaw with new firmware

BLEEPINGCOMPUTER.COM — 07 Mar 2024

⚠️

Cisco Releases Security Updates for Secure Client

CISA.GOV — Thu, 07 Mar 24 1

⚠️

CISA Releases One Industrial Control Systems Advisory

CISA.GOV — Thu, 07 Mar 24 1

⚠️

Facing the Reality of Risk Prioritization - Dan DeCloss - PSW #819

YOUTUBE.COM — 2024-03-07

⚠️

CISA and NSA Release Cybersecurity Information Sheets on Cloud Security Best Practices

CISA.GOV — Thu, 07 Mar 24 1

⚠️

DCNextGen, Memory Safety And More! - PSW #819

YOUTUBE.COM — 2024-03-07

⚠️

WhatDR or What Detection Domain Needs Its Own Tools?

MEDIUM.COM — 07 Mar 2024

⚠️

AI and Ransomware Top the List of Mid-Market IT Cyber Threats

KNOWBE4.COM — 07 Mar 2024

⚠️

Is it unnecessary to cover one's webcam on Linux?

SH.ITJUST.WORKS — 7 Mar 2024

⚠️

CISA Launches New Efforts to Secure Open Source Ecosystem

DATABREACHTODAY.CO.UK — 2024-03-07

⚠️

Zama Raises $73M in Series A Led by Multicoin Capital & Protocol Labs for Fully Homomorphic Encryption

GBHACKERS.COM — 07 Mar 2024

📋

CISA, NSA share best practices for securing cloud services

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📢

Ukraine's GUR hacked the Russian Ministry of Defense

SECURITYAFFAIRS.COM — 7 Mar 2024

📢

EU Agrees 'Cyber Solidarity Act' to Bolster Incident Response and Recovery

INFOSECURITY-MAGAZINE.COM — 07 Mar 2024

📢

Switzerland: Play ransomware leaked 65,000 government documents

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📢

Apple security advisory (AV24-128)

CYBER.GC.CA — 2024-03-07

🔥

Smashing Security podcast #362: Ransomware fraud, pharmacy chaos, and suicide

GRAHAMCLULEY.COM — 07 Mar 2024

🔥

Hackers Use Number of Legitimate Tools in Ransomware Attacks

GBHACKERS.COM — 07 Mar 2024

🔥

Update: CMS Rolls Out Provider Flexibilities Amid Fallout From Change Healthcare Cyberattack

CYBERSECURITYDIVE.COM — 07 Mar 2024

🔥

Update: Europol, DOJ, NCA Deny Involvement in Recent ALPHV/BlackCat ‘Shutdown’

THERECORD.MEDIA — 07 Mar 2024

🔥

Fidelity Investments Notifying 28,000 People of Data Breach

SECURITYWEEK.COM — 07 Mar 2024

🔥

Human vs. Non-Human Identity in SaaS

THEHACKERNEWS.COM — 07 Mar 2024

🔥

Capita Says Cyberattack Contributed to Annual Loss of More Than $135 Million

THERECORD.MEDIA — 07 Mar 2024

🔥

PetSmart Warns of Credential Stuffing Attacks Trying to Hack Accounts

BLEEPINGCOMPUTER.COM — 07 Mar 2024

🔥

Belgian Ale Legend Duvel’s Brewery Borked As Ransomware Halts Production

PACKETSTORMSECURITY.COM — 07 Mar 2024

🔥

Transatlantic Cable podcast episode 336 | Kaspersky official blog

KASPERSKY.COM — 07 Mar 2024

🔥

AI Tools Put Companies at Risk of Data Exfiltration

HELPNETSECURITY.COM — 07 Mar 2024

🔥

Duvel Says It Has “More Than Enough” Beer After Ransomware Attack

BLEEPINGCOMPUTER.COM — 07 Mar 2024

🔥

Embedded PLC Web Servers a Vector to New Class of OT Malware

DATABREACHTODAY.CO.UK — 2024-03-07

🔥

Ransomware Attackers Leak Sensitive Swiss Government Documents, Login

INFOSECURITY-MAGAZINE.COM — 07 Mar 2024

🔥

Canadian City Says Timeline for Recovery From Ransomware Attack ‘Unknown’

THERECORD.MEDIA — 07 Mar 2024

🔥

Minnesota's South St. Paul Public Schools Investigating Potential Cybersecurity Threat

TWINCITIES.COM — 07 Mar 2024

🔥

Ransomware Attacks on Critical Infrastructure Are Surging

DATABREACHTODAY.CO.UK — 2024-03-07

🔥

Early stage startup M&A on fire, funding healthy, and attackers are like lawyers? - ESW #352

YOUTUBE.COM — 2024-03-07

🔥

EHRs Back at Kids' Hospital But Patient Portal Still Offline

DATABREACHTODAY.CO.UK — 2024-03-07

🔥

Emergency. Ransomware halts beer production at Belgium’s Duvel brewery

GRAHAMCLULEY.COM — 07 Mar 2024

🕵️

NSA Details Seven Pillars Of Zero Trust

GBHACKERS.COM — 07 Mar 2024

🕵️

ISC Stormcast For Thursday, March 7th, 2024 https://isc.sans.edu/podcastdetail/8884, (Thu, Mar 7th)

ISC.SANS.EDU — 07 Mar 2024

🕵️

Watch Out for Spoofed Zoom, Skype, Google Meet Sites Delivering Malware

THEHACKERNEWS.COM — 07 Mar 2024

🕵️

PetSmart warns of Active Password Cracking Attacks

GBHACKERS.COM — 07 Mar 2024

🕵️

Chinese chap charged with stealing Google’s AI datacenter secrets

THEREGISTER.COM — 7 Mar 2024

🕵️

Welcoming the German Government to Have I Been Pwned

TROYHUNT.COM — 07 Mar 2024

🕵️

New Python-Based Snake Info Stealer Spreading Through Facebook Messages

THEHACKERNEWS.COM — 07 Mar 2024

🕵️

TA4903 Threat Actor Spoofs U.S. Government, Small Businesses in Phishing, BEC Bids

PROOFPOINT.COM — 07 Mar 2024

🕵️

VMware Critical Flaws Let Attackers Execute Remote Code

GBHACKERS.COM — 07 Mar 2024

🕵️

New Fakext malware targets Latin American banks

SECURITYINTELLIGENCE.COM — 07 Mar 2024

🕵️

Beware of New Snake Python Infostealer Attacking Facebook Messenger Users

GBHACKERS.COM — 07 Mar 2024

🕵️

Is protonVPN blocking VOIP?

INFOSEC.PUB — 7 Mar 2024

🕵️

Cyber Insights 2024: A Dire Year for CISOs?

SECURITYWEEK.COM — 07 Mar 2024

🕵️

Spinning YARN - A New Linux Malware Campaign Targets Docker, Apache Hadoop, Redis and Confluence

CADOSECURITY.COM — 7 Mar 2024

🕵️

SapphireStealer Sneaks In: Deceptive Legal Documents Prey on Russians

CYBLE.COM — 7 Mar 2024

🕵️

TA4903 Phishing Campaigns Evolve, Targets US Government

INFOSECURITY-MAGAZINE.COM — 7 Mar 2024

🕵️

Customer Spotlight: MESA’s Strategy for Building Strong Security Culture and Email Defense

KNOWBE4.COM — 07 Mar 2024

🕵️

Unit 42 MDR Recognized as a Leader in MDR

PALOALTONETWORKS.COM — 07 Mar 2024

🕵️

FBI: Cybercrime Losses Exceeded $12.5 Billion in 2023

SECURITYWEEK.COM — 07 Mar 2024

🕵️

Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech

SECURITYWEEK.COM — 07 Mar 2024

🕵️

Nigerian BEC Scammer Pleads Guilty in US Court

SECURITYWEEK.COM — 07 Mar 2024

🕵️

Cisco Patches High-Severity Vulnerabilities in VPN Product

SECURITYWEEK.COM — 07 Mar 2024

🕵️

Cybercriminals Spoof US Government Organizations in BEC, Phishing Attacks

SECURITYWEEK.COM — 07 Mar 2024

🕵️

Apple is Making Big App Store Changes in Europe Over New Rules. Could it Mean More iPhone Hacking?

SECURITYWEEK.COM — 07 Mar 2024

🕵️

Chinese State Hackers Target Tibetans with Supply Chain, Watering Hole Attacks

THEHACKERNEWS.COM — 07 Mar 2024

🕵️

Cryptography Firm Zama Raises $73 Million for FHE Solution

SECURITYWEEK.COM — 07 Mar 2024

🕵️

Cryptohack Roundup: Binance Layoffs

DATABREACHTODAY.CO.UK — 2024-03-07

🕵️

Evolving Microsoft Security Development Lifecycle (SDL): How continuous SDL can help you build more secure software

MICROSOFT.COM — 07 Mar 2024

🕵️

European Diplomats Targeted With Phony Invitations to a Wine-Tasting Party

KNOWBE4.COM — 07 Mar 2024

🕵️

Ex-Google Exec Charged With AI Trade Secret Theft

DATABREACHTODAY.CO.UK — 2024-03-07

🕵️

Empowering Minority Voters to Fight Election Misinformation

DATABREACHTODAY.CO.UK — 2024-03-07

🌐

US Government Sanctions Intellexa Consortium Individuals and Entities Behind Predator Spyware Attacks

SECURITYAFFAIRS.COM — 07 Mar 2024

🌐

Reach Security taps a company’s existing tools to fight cyber threats

TECHCRUNCH.COM — 07 Mar 2024

🌐

EMEA OnDemand | Defending against today's threat landscape with MDR

DATABREACHTODAY.CO.UK — 2024-03-07

🌐

$12.5 billion lost to cybercrime, amid tidal wave of crypto investment fraud

TRIPWIRE.COM — 07 Mar 2024

📡

Ex-Google Engineer Arrested for Stealing AI Technology Secrets for China

THEHACKERNEWS.COM — 07 Mar 2024

📡

Why Cyber Maturity Assessment Should Become Standard Practice

HELPNETSECURITY.COM — 07 Mar 2024

📡

NSA Shares Zero-Trust Guidance to Limit Adversaries on the Network

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📡

South Korean Police Develops Deepfake Detection Tool

INFOSECURITY-MAGAZINE.COM — 07 Mar 2024

📡

How cybercriminals scam women ahead of March 8 | Kaspersky official blog

KASPERSKY.COM — 07 Mar 2024

📡

Five Ways to Keep API Integrations Secure

HELPNETSECURITY.COM — 07 Mar 2024

📡

Zama’s homomorphic encryption tech lands it $73M on a valuation of nearly $400M

TECHCRUNCH.COM — 07 Mar 2024

📡

FBI: U.S. lost record $12.5 billion to online crime in 2023

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📡

[Guest Diary] AWS Deployment Risks - Configuration and Credential File Targeting, (Thu, Mar 7th)

ISC.SANS.EDU — 07 Mar 2024

📡

Former Google Engineer Indicted For Stealing AI Secrets To Aid Chinese Companies

PACKETSTORMSECURITY.COM — 07 Mar 2024

📡

Cisco Patches High Severity Vulnerabilities In VPN Product

PACKETSTORMSECURITY.COM — 07 Mar 2024

📡

VMware Sandbox Escape Bugs Are So Critical, Patches Are Released For End-Of-Life Products

PACKETSTORMSECURITY.COM — 07 Mar 2024

📡

Google engineer caught stealing AI tech secrets for Chinese firms

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📡

Anonymous social apps face another reckoning as UNC System to ban Yik Yik, Fizz, Sidechat & Whisper

TECHCRUNCH.COM — 07 Mar 2024

📡

Feds Get Second Guilty Plea in Prosecution of Nigerian-Led BEC Case

THERECORD.MEDIA — 07 Mar 2024

📡

Inspiring Inclusion: Sophos Celebrates International Women’s Day 2024

SOPHOS.COM — 07 Mar 2024

📡

Flipper Zero WiFi attack can unlock and steal Tesla cars

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📡

Windows 10 KB5001716 update fails with 0x80070643 errors, how to fix

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📡

Flipper Zero WiFi phishing attack can unlock and steal Tesla cars

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📡

MiTM phishing attack can let attackers unlock and steal a Tesla

BLEEPINGCOMPUTER.COM — 07 Mar 2024

📡

Evasive Panda leverages Monlam Festival to target Tibetans

WELIVESECURITY.COM — 07 Mar 2024