124Articles
9Categories
2024-03-07Date
🚨 CISA KEV 2[−]
7 Mar KEVCISA Adds Android Pixel and Sunhillo SureLine Bugs to its Known Exploited Vulnerabilities CatalogThe CISA added Android Pixel and Sunhillo SureLine vulnerabilities to its Known Exploited Vulnerabilities catalog, with the potential for local information disclosure and OS command injection.SECURITYAFFAIRS.COM
7 Mar KEVCISA Adds One Known Exploited JetBrains Vulnerability, CVE-2024-27198, to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-27198 JetBrains TeamCity Authentication Bypass Vulnerability CISA urges organizations to review the following JetBrains blog post and app…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 11[−]
7 MarHackers Exploiting iOS 0-Day To Attack iPhones – Patch Now!Apple releases emergency fixes to address two new zero-day vulnerabilities in iOS that impact iPhones. The two zero-day vulnerabilities were discovered in RTKit, tracked as CVE-2024-23296, and the iOS Kernel, tracked as CVE-2024-23225. If exploited by an attacker with kernel read…GBHACKERS.COM
7 MarCisco Small Business Wireless Access Points Flaw Let Attackers Inject CommandsCisco has alerted its customers to critical vulnerabilities in the web-based management interface of its Small Business 100, 300, and 500 Series Wireless Access Points (APs). These flaws could allow an authenticated, remote attacker to perform command injection and buffer overflo…GBHACKERS.COM
7 MarKimsuky Exploits ScreenConnect Bugs, Drops ToddlerSharkThe North Korea-based Kimsuky APT is abusing ScreenConnect bugs, CVE-2024-1708 and CVE-2024-1709, to propagate a new malware called ToddleShark. ToddlerShark uses polymorphic traits, legitimate Microsoft binaries, and registry modifications to establish persistence and gather sen…CYWARE.COM
7 Mar KEVCritical TeamCity Vulnerability Exploitation Started Immediately After DisclosureCritical TeamCity authentication bypass vulnerability CVE-2024-27198 exploited in the wild after details were disclosed. The post Critical TeamCity Vulnerability Exploitation Started Immediately After Disclosure appeared first on SecurityWeek .SECURITYWEEK.COM
7 MarTeamCity supply chain bugs receive massive exploitationThe TeamCity on-premises bugs  that received patches on Monday have already been used by hackers to generate unauthorized admin accounts at a massive scale, according to the threat search engine LeakIX. The bugs, tracked under CVE-2024-27198 and CVE-2024-27199, remain unpatched…CSOONLINE.COM
7 MarUpdate: Critical TeamCity Flaw Now Widely Exploited to Create Admin AccountsHackers are exploiting a critical authentication bypass vulnerability (CVE-2024-27198) in TeamCity On-Premises, leading to the creation of hundreds of unauthorized users on unpatched instances.BLEEPINGCOMPUTER.COM
7 MarCVE-2024-26167 Microsoft Edge for Android Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
7 MarCVE-2024-2173CVE-2024-2173MSRC.MICROSOFT.COM
7 MarCVE-2024-2174CVE-2024-2174MSRC.MICROSOFT.COM
7 MarCVE-2024-2176CVE-2024-2176MSRC.MICROSOFT.COM
7 Mar KEVVMware patches critical flaws that could allow attackers to escape VMsVMware has released fixes for several flaws that together could allow attackers to execute malicious code on the host system from inside a virtual machine, bypassing the critical isolation layer. Some of the flaws are in the virtualized USB controllers, so they impact most VMware…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 30[−]
7 MarWoTLabs - 21,994 breached accountsIn March 2024, WoTLabs (World of Tanks Statistics and Resources) suffered a data breach and and website defacement attributed to "chromebook breachers" . The breach exposed 22k forum members' personal data including email and IP addresses, usernames, dates of birth and …HAVEIBEENPWNED.COM
7 MarBeyond the table stakes: CISO Ian Schneller on cybersecurity’s evolving roleWhen Ian Schneller entered the workforce in the early 1990s, cybersecurity was just emerging as a function within companies. It was a dedicated function, and where it existed at all, it served principally in a technical capacity by thwarting attacks against the organization and, …CSOONLINE.COM
7 MarOnline Trade (Онлайн Трейд) - 3,805,265 breached accountsIn September 2022, the Russian e-commerce website Online Trade (Онлайн Трейд) suffered a data breach that exposed 3.8M customer records. The data included email and IP addresses, names, phone numbers, dates of birth and MD5 password hashes.HAVEIBEENPWNED.COM
7 MarHackers Abuse QEMU to Covertly Tunnel Network Traffic in CyberattacksThreat actors used the open-source hypervisor QEMU as a network tunneling tool to create a covert communication channel, demonstrating the diverse methods attackers use to remain stealthy.BLEEPINGCOMPUTER.COM
7 MarNew Linux Malware Attacking Apache, Docker, Redis & Confluence ServersA sophisticated malware campaign targeting servers running popular web-facing services such as Apache Hadoop YARN, Docker, Confluence, and Redis has been identified. This campaign is notable for using unique and previously unreported payloads, including four Golang binaries desig…GBHACKERS.COM
7 MarEx-Google engineer charged with theft of AI tech for Chinese firmsA former Google engineer has been indicted for stealing trade secrets to benefit two companies in China. This case adds to a series of actions by US authorities to prevent the outflow of critical technological information to China. A federal jury in San Francisco charged the 38-y…CSOONLINE.COM
7 MarHacked WordPress Sites Using Visitors’ Browsers For Distributed Brute Force AttacksResearchers recently uncovered distributed brute force attacks on target WordPress websites using the browsers of innocent site visitors. A recent increase in website hacking that targets Web3 and cryptocurrency assets was noticed two weeks ago. With the use of cryptocurrency dra…GBHACKERS.COM
7 MarLinux Malware Targets Misconfigured Apache Hadoop, Confluence, Docker, and Redis ServersAn emerging malware campaign is targeting misconfigured servers hosting web-facing services like Apache Hadoop YARN, Docker, Confluence, and Redis, using novel Golang payloads for automated identification and exploitation of vulnerable hosts.SECURITYAFFAIRS.COM
7 MarHow Public AI Can Strengthen DemocracyWith the world’s focus turning to misinformation , manipulation , and outright propaganda ahead of the 2024 U.S. presidential election, we know that democracy has an AI problem. But we’re learning that AI has a democracy problem, too. Both challenges must be addressed…SCHNEIER.COM
7 MarHackers Switch From Crypto Drainer to Distributed WordPress Brute Force AttacksHackers are using compromised WordPress sites to force visitors' browsers to conduct brute-force attacks on other websites, potentially leading to data theft and site manipulation.SUCURI.NET
7 MarServer Killers Alliances: Here is the List of Hacker GroupsThe hacker group known as Server Killers has announced their participation in a coordinated cyber attack on Moldova. This group has joined forces with several other notorious hacker collectives, signaling a worrying escalation in cyber threats against the Eastern European nation.…GBHACKERS.COM
7 MarHacked WordPress Sites Abusing Visitors' Browsers for Distributed Brute-Force AttacksThreat actors are conducting brute-force attacks against WordPress sites by leveraging malicious JavaScript injections, new findings from Sucuri reveal. The attacks, which take the form of distributed brute-force attacks, “target WordPress websites from the browsers of completely…THEHACKERNEWS.COM
7 MarRiskInDroid Performs Open-Source Risk Analysis of Android AppsRiskInDroid is an open-source tool for analyzing the risk level of Android applications using machine learning. Unlike other tools, RiskInDroid conducts reverse engineering on apps to extract permissions and assess their usage in the bytecode.HELPNETSECURITY.COM
7 MarITRC Finds Online Job Scams on the RiseThe surge in online job scams, targeting job seekers for personal information, has seen a significant increase in reported incidents, with a 545% spike in January 2024 compared to December 2023, according to the Identity Theft Resource Center (ITRC).SECURITYBOULEVARD.COM
7 MarApple Releases Security Updates for iOS and iPadOSApple released security updates to address vulnerabilities in iOS and iPadOS. A cyber threat actor could exploit one of these vulnerabilities to obtain sensitive information. CISA encourages users and administrators to review the following security releases and apply the necessar…CISA.GOV
7 MarLeveraging Sourcetrail to a mapping tool, meet Numbat and PyrrhaEver wanted to find a nice tool to easily represent cartography results and other graphs? The Sourcetrail tool could be a nice solution! In this blog post, we will introduce two of our tools: Numbat, a new Python API for Sourcetrail, and Pyrrha, a mapper collection for firmware c…QUARKSLAB.COM
7 MarAnyCubic fixes exploited 3D printer zero day flaw with new firmwareAnyCubic has released new Kobra 2 firmware to fix a zero-day vulnerability exploited last month to print security warnings on 3D printers worldwide. [...]BLEEPINGCOMPUTER.COM
7 MarCisco Releases Security Updates for Secure ClientCisco released security updates to address vulnerabilities in Cisco Secure Client and Secure Client for Linux. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected device. CISA encourages users and administrators to review the following s…CISA.GOV
7 MarCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) advisory on March 7, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-067-01 Chirp Systems Chirp Access CISA encourages users and administrato…CISA.GOV
7 MarFacing the Reality of Risk Prioritization - Dan DeCloss - PSW #819Public information about exploits and vulnerabilities alone is not enough to inform prioritization, especially with the growing rate and variety of CVEs. Dan DeCloss, founder and CTO of PlexTrac, joins the show to discuss solving the challenges of risk prioritization to drive fas…YOUTUBE.COM
7 MarCISA and NSA Release Cybersecurity Information Sheets on Cloud Security Best PracticesToday, CISA and the National Security Agency (NSA) released five joint Cybersecurity Information Sheets (CSIs) to provide organizations with recommended best practices and/or mitigations to improve the security of their cloud environment(s). Use Secure Cloud Identity and Access M…CISA.GOV
7 MarDCNextGen, Memory Safety And More! - PSW #819BiaSciLab from DEF CON joins us to discuss DCNextGen! In the security News: MouseJacking still works, CISA recommends a complete rebuild, memory safety and re-writing code, not all doorbells are created equal, putting a firewall in front of your LLM, rugged gear and vulnerabiliti…YOUTUBE.COM
7 MarWhatDR or What Detection Domain Needs Its Own Tools?Pondering ?DR This is the blog where I really (briefly ) miss my analyst life and my “awesome+” peers like Augusto and Anna . It relies on ideas and comments from my past collaborators … and my current ones . And, yes, this blog was inspired by a hallways conversation at a confer…MEDIUM.COM
7 MarAI and Ransomware Top the List of Mid-Market IT Cyber ThreatsA recent report reveals a significant discrepancy in the priorities of mid-market IT departments when it comes to addressing cyber threats. It's somewhat ironic that IT professionals find themselves entangled in a logical paradox when responding to surveys, as demonstrated by Nod…KNOWBE4.COM
7 MarIs it unnecessary to cover one's webcam on Linux?submitted by Kalcifer to cybersecurity 1 points | 0 comments Cross-posted to: sh.itjust.works/post/15859253 From other conversations that I’ve read through, people usually say “ Yes, because it’s easy on Windows ”, or “ Yes, because they simply don’t trust the webcam ”. But neith…SH.ITJUST.WORKS
7 MarCISA Launches New Efforts to Secure Open Source EcosystemUS Cyber Agency Aiming to Promote Information Sharing with Open Source Community The U.S. Cybersecurity and Infrastructure Security Agency hopes to expand voluntary information sharing between the federal government and open source software operators with a series of actions the …DATABREACHTODAY.CO.UK
7 MarZama Raises $73M in Series A Led by Multicoin Capital & Protocol Labs for Fully Homomorphic EncryptionCompany Open Sources FHE Libraries to Build Privacy-Preserving Blockchain and AI Applications for the First Time. An investment has been secured to bring Fully Homomorphic Encryption (FHE) to the fore, giving developers the ability to address data privacy challenges across blockc…GBHACKERS.COM
📋 SECURITY BULLETINS 1[−]
7 MarCISA, NSA share best practices for securing cloud servicesThe NSA and the Cybersecurity and Infrastructure Security Agency (CISA) have released five joint cybersecurity bulletins containing on best practices for securing a cloud environment. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 4[−]
7 MarUkraine's GUR hacked the Russian Ministry of Defensesubmitted by kid to cybersecurity 3 points | 0 comments https://securityaffairs.com/159981/cyber-warfare-2/ukraine-gur-hacked-russian-ministry-of-defense.htmlSECURITYAFFAIRS.COM
7 MarEU Agrees 'Cyber Solidarity Act' to Bolster Incident Response and RecoveryThe regulations will establish an EU-wide cybersecurity alert system and a cybersecurity emergency mechanism to support preparedness, financial assistance, and a cybersecurity reserve for large-scale incidents.INFOSECURITY-MAGAZINE.COM
7 MarSwitzerland: Play ransomware leaked 65,000 government documentsThe National Cyber Security Centre (NCSC) of Switzerland has released a report on its analysis of a data breach following a ransomware attack on Xplain, disclosing that the incident impacted thousands of sensitive Federal government files. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 20[−]
7 MarSmashing Security podcast #362: Ransomware fraud, pharmacy chaos, and suicideIs there any truth behind the alleged data breach at Fortnite maker Epic Games? Who launched the ransomware attack that caused a fallout at pharmacies? And what’s the latest on the heart-breaking hack of Finnish therapy clinic Vastaamo? All this and much much more is discus…GRAHAMCLULEY.COM
7 MarHackers Use Number of Legitimate Tools in Ransomware AttacksRansomware attacks remain a formidable challenge for organizations worldwide. These attacks not only encrypt critical data, rendering it inaccessible to the rightful owners but increasingly involve the exfiltration of sensitive information.  This dual-threat approach amplifi…GBHACKERS.COM
7 MarUpdate: CMS Rolls Out Provider Flexibilities Amid Fallout From Change Healthcare CyberattackProvider groups, such as the American Hospital Association and the American Medical Association, are urging the government to provide further financial assistance, particularly for smaller practices, in response to the cyberattack's impact.CYBERSECURITYDIVE.COM
7 MarUpdate: Europol, DOJ, NCA Deny Involvement in Recent ALPHV/BlackCat ‘Shutdown’The incident highlights the common occurrence of theft and exit scams within criminal ransomware organizations, and experts anticipate the group's return under a new identity after their hiatus.THERECORD.MEDIA
7 MarFidelity Investments Notifying 28,000 People of Data BreachFidelity says 28,000 individuals were impacted by data breach at third-party services provider Infosys McCamish System. The post Fidelity Investments Notifying 28,000 People of Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
7 MarHuman vs. Non-Human Identity in SaaSIn today's rapidly evolving SaaS environment, the focus is on human users. This is one of the most compromised areas in SaaS security management and requires strict governance of user roles and permissions, monitoring of privileged users, their level of activity (dormant, active,…THEHACKERNEWS.COM
7 MarCapita Says Cyberattack Contributed to Annual Loss of More Than $135 MillionThe incident led to a drop in Capita's share price and a decline in its customer experience score. Data breaches and potential regulatory penalties could further impact the company, which is also facing criticism for its handling of personal data.THERECORD.MEDIA
7 MarPetSmart Warns of Credential Stuffing Attacks Trying to Hack AccountsPetSmart, a major pet retail company, has issued a warning to customers about credential stuffing attacks aimed at breaching their accounts. As a precaution, passwords for accounts logged in during the attack have been reset.BLEEPINGCOMPUTER.COM
7 MarTransatlantic Cable podcast episode 336 | Kaspersky official blogEpisode 336 of the Kaspersky podcast looks at LockBit’s resurgence, META fights fake news, Wi-Fi scanners and much more!KASPERSKY.COM
7 MarAI Tools Put Companies at Risk of Data ExfiltrationThe rise of GenAI, along with cloud applications, has made it challenging to monitor and protect critical data. As a result, organizations are concerned about the impact of AI on sensitive data and struggle to comply with data protection laws.HELPNETSECURITY.COM
7 MarDuvel Says It Has “More Than Enough” Beer After Ransomware AttackThe Duvel Moortgat Brewery in Belgium was hit by a ransomware attack, causing the halt of beer production in their bottling facilities. The company's IT systems detected the attack, leading to an immediate stop in production.BLEEPINGCOMPUTER.COM
7 MarEmbedded PLC Web Servers a Vector to New Class of OT MalwareWeb PLC Malware Holds Potential for Catastrophic Incidents Fusty and fussy operational technology devices are probably the farthest things away from a web server. Except - not anymore. But web servers embedded into industrial firmware are also a potential bonanza for hackers, say…DATABREACHTODAY.CO.UK
7 MarRansomware Attackers Leak Sensitive Swiss Government Documents, LoginThe leaked data included 65,000 documents, with 5% related to the federal government. Most of the leaked federal government files contained personal data, technical information, classified data, and passwords.INFOSECURITY-MAGAZINE.COM
7 MarCanadian City Says Timeline for Recovery From Ransomware Attack ‘Unknown’The city of Hamilton, Canada, is recovering from a ransomware attack that has disrupted online government services, forcing residents to use cash transactions and manual methods for payments.THERECORD.MEDIA
7 MarMinnesota's South St. Paul Public Schools Investigating Potential Cybersecurity ThreatThis incident is impacting online platforms, emails, and other digital services. The school district is working to restore its systems and maintain a secure online environment for students and staff.TWINCITIES.COM
7 MarRansomware Attacks on Critical Infrastructure Are SurgingFBI Says It Received Most Attack Reports From Healthcare, Critical Manufacturing Cybercrime reports submitted by victims to the FBI's Internet Crime Complaint Center surged last year, and the total reported losses exceeded $12.5 billion. Investment fraud and business email compro…DATABREACHTODAY.CO.UK
7 MarEarly stage startup M&A on fire, funding healthy, and attackers are like lawyers? - ESW #352In the enterprise security news, 1. Axonius raises $200M and is doing $100M ARR! 2. Claroty raises $100M and is doing $100M ARR! 3. Crowdstrike picks up DSPM with Flow Security 4. CyCode picks up Bearer 5. Are attackers like lawyers? 6. How a bank failed (with no help from a cybe…YOUTUBE.COM
7 MarEHRs Back at Kids' Hospital But Patient Portal Still OfflineAlso: Ransomware Group Rhysida Says It Sold Data Stolen in the Attack A Chicago children's hospital has finally restored access to its electronic health records systems following a cyberattack detected in late January. But the pediatrics hospital is still working to bring its MyC…DATABREACHTODAY.CO.UK
7 MarEmergency. Ransomware halts beer production at Belgium’s Duvel breweryI'm afraid that the people of Belgium are dealing with a national emergency.GRAHAMCLULEY.COM
🕵️ THREAT INTELLIGENCE 31[−]
7 MarNSA Details Seven Pillars Of Zero TrustThe National Security Agency (NSA) issued a Cybersecurity Information Sheet (CSI) that discusses limiting adversary lateral movement within an organization’s network to access sensitive data and vital systems. This offers instructions on how to use Zero Trust principle…GBHACKERS.COM
7 MarISC Stormcast For Thursday, March 7th, 2024 https://isc.sans.edu/podcastdetail/8884, (Thu, Mar 7th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
7 MarWatch Out for Spoofed Zoom, Skype, Google Meet Sites Delivering MalwareThreat actors have been leveraging fake websites advertising popular video conferencing software such as Google Meet, Skype, and Zoom to deliver a variety of malware targeting both Android and Windows users since December 2023. “The threat actor is distributing Remote Access Troj…THEHACKERNEWS.COM
7 MarPetSmart warns of Active Password Cracking AttacksPetSmart, Inc. is a renowned retail chain operating in the United States, Canada, and Puerto Rico. It offers a comprehensive range of pet products and services such as pet supplies, grooming, training, and in-store adoptions. PetSmart prides itself on being a trusted partner to p…GBHACKERS.COM
7 MarChinese chap charged with stealing Google’s AI datacenter secretssubmitted by 0nekoneko7 to securitynews 1 points | 0 comments https://www.theregister.com/2024/03/07/doj_google_ai_theft_indictment/THEREGISTER.COM
7 MarWelcoming the German Government to Have I Been PwnedPresently sponsored by: Kolide ensures that if a device isn't secure, it can't access your apps. It's Device Trust for Okta. Watch the demo today! Back in 2018, we started making Have I Been Pwned domain searches freely available to national government cybersecurity agencies resp…TROYHUNT.COM
7 MarNew Python-Based Snake Info Stealer Spreading Through Facebook MessagesFacebook messages are being used by threat actors to a Python-based information stealer dubbed Snake that’s designed to capture credentials and other sensitive data. “The credentials harvested from unsuspecting users are transmitted to different platforms such as Discord, GitHub,…THEHACKERNEWS.COM
7 MarTA4903 Threat Actor Spoofs U.S. Government, Small Businesses in Phishing, BEC BidsThe actor uses tactics such as spoofing government agencies, incorporating QR codes in phishing campaigns, and adopting new themes to lure victims into credential phishing and BEC activities.PROOFPOINT.COM
7 MarVMware Critical Flaws Let Attackers Execute Remote CodeVulnerabilities in VMware software expose it to remote execution of code by threat actors due to critical defects.  These are found in different parts of the virtualization platform, management interfaces, and other related tools, making the flaw latent. This can enable them…GBHACKERS.COM
7 MarNew Fakext malware targets Latin American banksBrowser extensions have become integral to our online experience. From productivity tools to entertainment add-ons, these small software modules offer customized features to suit individual preferences. Unfortunately, extensions can prove useful to malicious actors as well. Capit…SECURITYINTELLIGENCE.COM
7 MarBeware of New Snake Python Infostealer Attacking Facebook Messenger UsersA new menace has emerged targeting unsuspecting Facebook Messenger users. Dubbed the “Python Infostealer,” this malicious software is designed to pilfer credentials through sophisticated means, leveraging popular platforms like GitHub and GitLab for its nefarious purp…GBHACKERS.COM
7 MarIs protonVPN blocking VOIP?submitted by coffeeClean to cybersecurity 1 points | 0 comments cross-posted from: infosec.pub/post/9382315 I have had no problem using VOIP over #protonVPN until recently. Connections happen but there is no audio. Anyone notice this? I wondered if maybe they decided to make VOIP…INFOSEC.PUB
7 MarCyber Insights 2024: A Dire Year for CISOs?The role of the CISO continuously evolves in tandem with the growing reliance on cybersecurity as a business enabler. But it is possible that the SEC has pitched a curveball with its increasing assertiveness? The post Cyber Insights 2024: A Dire Year for CISOs? appeared first on …SECURITYWEEK.COM
7 MarSpinning YARN - A New Linux Malware Campaign Targets Docker, Apache Hadoop, Redis and Confluencesubmitted by kid to cybersecurity 1 points | 0 comments https://www.cadosecurity.com/spinning-yarn-a-new-linux-malware-campaign-targets-docker-apache-hadoop-redis-and-confluence/ Indicators of Compromise Filename SHA256 cronb.sh d4508f8e722f2f3ddd49023e7689d8c65389f65c871ef12e3a6…CADOSECURITY.COM
7 MarSapphireStealer Sneaks In: Deceptive Legal Documents Prey on Russianssubmitted by kid to cybersecurity 1 points | 0 comments https://cyble.com/blog/sapphirestealer-sneaks-in-deceptive-legal-documents-prey-on-russians/CYBLE.COM
7 MarTA4903 Phishing Campaigns Evolve, Targets US Governmentsubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/ta4903s-phishing-target-us-entities/INFOSECURITY-MAGAZINE.COM
7 MarCustomer Spotlight: MESA’s Strategy for Building Strong Security Culture and Email DefenseIn a world where digital threats grow more sophisticated by the day, gaining firsthand knowledge from those who have successfully bolstered their organization's defenses is invaluable.KNOWBE4.COM
7 MarUnit 42 MDR Recognized as a Leader in MDRPalo Alto Networks announces that Unit 42 MDR has been named as a leader in the Frost Radar™: Global MDR Market evaluation. The post Unit 42 MDR Recognized as a Leader in MDR appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
7 MarFBI: Cybercrime Losses Exceeded $12.5 Billion in 2023FBI’s IC3 publishes its 2023 Internet Crime Report, which reveals a 10% increase in the number of cybercrime complaints compared to 2022. The post FBI: Cybercrime Losses Exceeded $12.5 Billion in 2023 appeared first on SecurityWeek .SECURITYWEEK.COM
7 MarCayosoft Raises $22.5 Million for Microsoft AD Recovery TechOhio security vendor Cayosoft banks new capital to fuel growth of its flagship Active Directory forest recovery product suite. The post Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech appeared first on SecurityWeek .SECURITYWEEK.COM
7 MarNigerian BEC Scammer Pleads Guilty in US CourtHenry Echefu admitted in a US courtroom to participating in a $200,000 business email compromise fraud scheme. The post Nigerian BEC Scammer Pleads Guilty in US Court appeared first on SecurityWeek .SECURITYWEEK.COM
7 MarCisco Patches High-Severity Vulnerabilities in VPN ProductHigh-severity flaws in Cisco Secure Client could lead to code execution and unauthorized remote access VPN sessions. The post Cisco Patches High-Severity Vulnerabilities in VPN Product appeared first on SecurityWeek .SECURITYWEEK.COM
7 MarCybercriminals Spoof US Government Organizations in BEC, Phishing AttacksThreat actor tracked as TA4903 spoofing US government entities in phishing and fraud campaigns. The post Cybercriminals Spoof US Government Organizations in BEC, Phishing Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
7 MarApple is Making Big App Store Changes in Europe Over New Rules. Could it Mean More iPhone Hacking?Apple is opening small cracks in the iPhone’s digital fortress as part of a regulatory clampdown in Europe— at the risk of creating new avenues for hackers to steal personal and financial information stored on the devices. The post Apple is Making Big App Store Changes in Europe …SECURITYWEEK.COM
7 MarChinese State Hackers Target Tibetans with Supply Chain, Watering Hole AttacksThe China-linked threat actor known as Evasive Panda orchestrated both watering hole and supply chain attacks targeting Tibetan users at least since September 2023. The end of the attacks is to deliver malicious downloaders for Windows and macOS that deploy a known back…THEHACKERNEWS.COM
7 MarCryptography Firm Zama Raises $73 Million for FHE SolutionZama raises $73 million in Series A funding for a fully homomorphic encryption (FHE) solution for AI and blockchain applications. The post Cryptography Firm Zama Raises $73 Million for FHE Solution appeared first on SecurityWeek .SECURITYWEEK.COM
7 MarCryptohack Roundup: Binance LayoffsAlso: 2023 Crypto Crime Stats, Multichain's Potential Liquidation This week: Binance laying off two-thirds of its staff and exiting Nigeria, Chainalysis' 2023 crime statistics, Fantom seeking Multichain's liquidation, hackers stealing nearly $15M from crypto platforms and Hong Ko…DATABREACHTODAY.CO.UK
7 MarEvolving Microsoft Security Development Lifecycle (SDL): How continuous SDL can help you build more secure softwareThe software developers and systems engineers at Microsoft work with large-scale, complex systems, requiring collaboration among diverse and global teams, all while navigating the demands of rapid technological advancement, and today we’re sharing how they’re tackling security ch…MICROSOFT.COM
7 MarEuropean Diplomats Targeted With Phony Invitations to a Wine-Tasting PartyResearchers at Zscaler observed a cyberespionage campaign that targeted European diplomats with malicious PDFs disguised as invitations to a wine-tasting party hosted by the Ambassador of India.KNOWBE4.COM
7 MarEx-Google Exec Charged With AI Trade Secret TheftDing Accused of Stealing Data on 'Brain' of Google's Supercomputing Data Centers Federal authorities have accused a Chinese national who worked as a CTO in a Google supercomputer data center of stealing the company's proprietary artificial intelligence secrets and sharing them wi…DATABREACHTODAY.CO.UK
7 MarEmpowering Minority Voters to Fight Election MisinformationActivists Discuss Role of Technology, Strategies for Informed Voter Participation Election campaigners Michael Blake and Cynthia Wallace discuss the need for accurate information and community involvement to protect electoral integrity and empower underrepresented voters. Strateg…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 4[−]
7 MarUS Government Sanctions Intellexa Consortium Individuals and Entities Behind Predator Spyware AttacksThe U.S. government sanctioned individuals and entities linked to the development and distribution of the Predator spyware, which was used to target Americans and U.S. government officials.SECURITYAFFAIRS.COM
7 MarReach Security taps a company’s existing tools to fight cyber threatsThanks to an uncertain economy, cybersecurity budgets are in a tight spot. According to a 2023 survey from IANS and recruiting firm Artico Search, more than a third of chief information security officers (CISOs) kept their security spending the same — or slightly reduced &#…TECHCRUNCH.COM
7 Mar$12.5 billion lost to cybercrime, amid tidal wave of crypto investment fraudIf you have been optimistically daydreaming that losses attributed to cybercrime might have reduced in the last year, it's time to wake up. The FBI's latest annual Internet Crime Complaint Center (IC3) report has just been published, and makes for some grim reading. Read more in …TRIPWIRE.COM
📡 INFOSEC NEWS 21[−]
7 MarEx-Google Engineer Arrested for Stealing AI Technology Secrets for ChinaThe U.S. Department of Justice (DoJ) announced the indictment of a 38-year-old Chinese national and a California resident of allegedly stealing proprietary information from Google while covertly working for two China-based tech companies. Linwei Ding (aka Leon Ding), a former Goo…THEHACKERNEWS.COM
7 MarWhy Cyber Maturity Assessment Should Become Standard PracticeDespite obstacles like time constraints and lack of expertise, regular and thorough cyber maturity assessments based on established frameworks are crucial for businesses of all sizes to enhance their security posture and resilience.HELPNETSECURITY.COM
7 MarNSA Shares Zero-Trust Guidance to Limit Adversaries on the NetworkOrganizations need to gradually advance through specific maturity levels in various components of the zero-trust architecture to effectively build a resilient security environment.BLEEPINGCOMPUTER.COM
7 MarSouth Korean Police Develops Deepfake Detection ToolThe tool will be able to determine whether video content has been artificially generated using AI technology in about five to 10 minutes. Police said the software has an 80% probability of detecting whether a video is authentic.INFOSECURITY-MAGAZINE.COM
7 MarHow cybercriminals scam women ahead of March 8 | Kaspersky official blogPopular scams on the eve of International Women's Day.KASPERSKY.COM
7 MarFive Ways to Keep API Integrations SecureRegularly updating software, enforcing rate limits, and funneling logs to an SIEM solution are essential steps to maintain the security of API integrations and uncover security issues on time.HELPNETSECURITY.COM
7 MarZama’s homomorphic encryption tech lands it $73M on a valuation of nearly $400MHomomorphic encryption, a complex technique that uses cryptographic algorithms to keep data secure as it travels around networks and to third parties, continues to elude mass-market scalability and thus adoption — not least because currently, the complexity that makes it so…TECHCRUNCH.COM
7 MarFBI: U.S. lost record $12.5 billion to online crime in 2023FBI's Internet Crime Complaint Center (IC3) has released its 2023 Internet Crime Report, which recorded a 22% increase in reported losses compared to 2022, amounting to a record of $12.5 billion. [...]BLEEPINGCOMPUTER.COM
7 Mar[Guest Diary] AWS Deployment Risks - Configuration and Credential File Targeting, (Thu, Mar 7th)[This is a Guest Diary by Josh Lockwood, an ISC intern as part of the SANS.edu Bachelor&&#x23&#x3b;39&#x3b;s Degree in Applied Cybersecurity (BACS) program [1]. ISC.SANS.EDU
7 MarGoogle engineer caught stealing AI tech secrets for Chinese firmsThe U.S. Department of Justice (DoJ) has announced the unsealing of an indictment against Linwei (Leon) Ding, 38, a former software engineer at Google, suspected of stealing Google AI trade secrets for Chinese companies. [...]BLEEPINGCOMPUTER.COM
7 MarAnonymous social apps face another reckoning as UNC System to ban Yik Yik, Fizz, Sidechat & WhisperAnonymous social apps are in for a reckoning. Yes, again. This week, University of North Carolina (UNC) System President Peter Hans announced a plan to block the use of popular anonymous social apps on campus, including Yik Yak, Fizz, Whisper, and Sidechat. The ban would impact t…TECHCRUNCH.COM
7 MarFeds Get Second Guilty Plea in Prosecution of Nigerian-Led BEC CaseNigerian national Henry Onyedikachi Echefu pleaded guilty to wire fraud and money laundering in connection with a $6 million business email compromise scheme dating back to 2017.THERECORD.MEDIA
7 MarInspiring Inclusion: Sophos Celebrates International Women’s Day 2024Friday, March 8 is International Women’s Day and this year we are celebrating the theme of ‘Inspire Inclusion’ by showcasing the perspectives of three successful women working in tech here at Sophos.SOPHOS.COM
7 MarFlipper Zero WiFi attack can unlock and steal Tesla carsAn easy phishing attack using a Flipper Zero device can lead to compromising Tesla accounts, unlocking cars, and starting them. The attack works on the latest Tesla app, version 4.30.6, and Tesla software version 11.1 2024.2.7. [...]BLEEPINGCOMPUTER.COM
7 MarWindows 10 KB5001716 update fails with 0x80070643 errors, how to fixMicrosoft is pushing out a Windows 10 KB5001716 update used to improve Windows Update that is ironically failing to install, showing 0x80070643 errors. [...]BLEEPINGCOMPUTER.COM
7 MarFlipper Zero WiFi phishing attack can unlock and steal Tesla carsAn easy phishing attack using a Flipper Zero device can lead to compromising Tesla accounts, unlocking cars, and starting them. The attack works on the latest Tesla app, version 4.30.6, and Tesla software version 11.1 2024.2.7. [...]BLEEPINGCOMPUTER.COM
7 MarMiTM phishing attack can let attackers unlock and steal a TeslaResearchers demonstrated how they could conduct a Man-in-the-Middle (MiTM) phishing attack to compromise Tesla accounts, unlocking cars, and starting them. The attack works on the latest Tesla app, version 4.30.6, and Tesla software version 11.1 2024.2.7. [...]BLEEPINGCOMPUTER.COM
7 MarEvasive Panda leverages Monlam Festival to target TibetansESET researchers uncover strategic web compromise and supply-chain attacks targeting TibetansWELIVESECURITY.COM