🐛 COMMON VULNERABILITIES AND EXPOSURES 63[−]
12 MarHackers Compromised TeamCity Server To Install BianLian’s GO BackdoorBianLian attackers exploited a TeamCity vulnerability (CVE-2024-27198 or CVE-2023-42793) to gain initial access and move laterally within the network. They deployed a PowerShell backdoor disguised as legitimate tools that use two-layer obfuscation with encryption and string…GBHACKERS.COM
12 MarExperts Released PoC Exploit for Critical Progress Software OpenEdge BugResearchers from Horizon3.ai have disclosed technical details and a proof-of-concept exploit for a critical security flaw (CVE-2024-1403) in Progress Software OpenEdge Authentication Gateway and AdminServer.SECURITYAFFAIRS.COM
12 MarCVE-2024-20671 Microsoft Defender Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21392 .NET and Visual Studio Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21411 Skype for Consumer Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21418 Software for Open Networking in the Cloud (SONiC) Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21426 Microsoft SharePoint Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21429 Windows USB Hub Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21430 Windows USB Attached SCSI (UAS) Protocol Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21438 Microsoft AllJoyn API Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21439 Windows Telephony Server Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21441 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21442 Windows USB Print Driver Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21443 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21444 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21445 Windows USB Print Driver Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21446 NTFS Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21450 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21451 Microsoft ODBC Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26197 Windows Standards-Based Storage Management Service Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26159 Microsoft ODBC Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26190 Microsoft QUIC Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26198 Microsoft Exchange Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26199 Microsoft Office Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26201 Microsoft Intune Linux Agent Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26203 Azure Data Studio Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26161 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26164 Microsoft Django Backend for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21330 Open Management Infrastructure (OMI) Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21334 Open Management Infrastructure (OMI) Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21390 Microsoft Authenticator Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21400 Microsoft Azure Kubernetes Service Confidential Container Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21407 Windows Hyper-V Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21408 Windows Hyper-V Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21419 Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21427 Windows Kerberos Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21431 Hypervisor-Protected Code Integrity (HVCI) Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21432 Windows Update Stack Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21433 Windows Print Spooler Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21434 Microsoft Windows SCSI Class System File Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21435 Windows OLE Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21436 Windows Installer Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21437 Windows Graphics Component Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21440 Microsoft ODBC Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-21448 Microsoft Teams for Android Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26160 Windows Cloud Files Mini Filter Driver Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26162 Microsoft ODBC Driver Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26166 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26169 Windows Error Reporting Service Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26170 Windows Composite Image File System (CimFS) Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26173 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26174 Windows Kernel Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26176 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26177 Windows Kernel Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26178 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26181 Windows Kernel Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26182 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26185 Windows Compressed Folder Tampering VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2023-28746 Intel: CVE-2023-28746 Register File Data Sampling (RFDS)This CVE was assigned by Intel. Please see [CVE-2023-28746](https://www.cve.org/CVERecord?id=CVE-2023-28746) on CVE.org for more information.MSRC.MICROSOFT.COM
12 MarCVE-2024-26204 Outlook for Android Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarCVE-2024-26165 Visual Studio Code Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
12 MarMicrosoft Patch Tuesday - March 2024 - SANS Internet Storm Centersubmitted by kid to cybersecurity 1 points | 0 comments https://isc.sans.edu/diary/Microsoft+Patch+Tuesday+March+2024/30736/ This month’s patches are oddly “light”. We have patches for 60 vulnerabilities and 4 Chromium patches affecting Microsoft Edge. But only two of the vulnera…ISC.SANS.EDU
⚠️ VULNERABILITY DISCLOSURE 36[−]
12 MarFlipkart - 552,094 breached accountsIn September 2022, over 500k customer records from the Indian e-commerce service Flipkart appeared on a popular hacking forum . The breach exposed email addresses, latitudes and longitudes, names and phone numbers.HAVEIBEENPWNED.COM
12 MarWordPress Plugin Flaw Exposes 200,000+ Websites to XSS AttacksOver 200,000 websites have been left vulnerable to Cross-Site Scripting (XSS) attacks due to a flaw in the Ultimate Member plugin for WordPress. This vulnerability, discovered by a researcher known as stealthcopter, underscores the ongoing risks in the digital ecosystem and highl…GBHACKERS.COM
12 MarThinking beyond BitLocker: Managing encryption across Microsoft servicesWhen we think about encryption for a Microsoft-based network, what generally first springs to mind is BitLocker, Microsoft’s native fixed-drive encryption software. But that highlights a tendency to forget that in a network there are many locations where encryption decisions are …CSOONLINE.COM
12 MarBritish Authorities Have Never Detected a Breach of Ransomware Sanctions — But is That Good or Bad News?Aside from frustrating ransomware payments, the sanctions regime is used by law enforcement agencies to hamper the ability of cyber threat actors to monetize their criminal activities and sow discord within certain groups.THERECORD.MEDIA
12 MarMalware Campaign Exploits Popup Builder WordPress Plugin to Infect 3,900+ SitesA new malware campaign is leveraging a high-severity security flaw in the Popup Builder plugin for WordPress to inject malicious JavaScript code. According to Sucuri, the campaign has infected more than 3,900 sites over the past three weeks. "These attacks are orchestra…THEHACKERNEWS.COM
12 MarJustice Department Beefs up Focus on Artificial Intelligence Enforcement, Warns of Harsher SentencesOfficials are set to warn that companies and people who deliberately misuse AI technology to advance a white-collar crime like price fixing and market manipulation will be at risk for a harsher sentence The post Justice Department Beefs up Focus on Artificial Intelligence Enforce…SECURITYWEEK.COM
12 MarMuddled Libra Hackers Using Pentesting Tools To Gain Admin AccessThreat actors use pentesting tools to identify vulnerabilities and weaknesses in target systems or networks. These tools provide a simulated environment for testing potential attack vectors that allow threat actors to exploit security gaps and gain unauthorized access. By u…GBHACKERS.COM
12 MarChinese espionage a prime concern for connected vehiclesOn February 29, US President Joe Biden announced “unprecedented actions to ensure that cars on US roads from countries of concern like China do not undermine our national security.” He asked the Commerce Department to launch an advanced rulemaking (ANPRM) on connected vehicles wi…CSOONLINE.COM
12 MarExploited Building Access System Vulnerability Patched 5 Years After DisclosureVulnerabilities affecting a Nice Linear physical access product, including an exploited flaw, patched five years after their disclosure. The post Exploited Building Access System Vulnerability Patched 5 Years After Disclosure appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarCTEM 101 - Go Beyond Vulnerability Management with Continuous Threat Exposure ManagementIn a world of ever-expanding jargon, adding another FLA (Four-Letter Acronym) to your glossary might seem like the last thing you’d want to do. But if you are looking for ways to continuously reduce risk across your environment while making significant and consistent improvements…THEHACKERNEWS.COM
12 MarEquiLend Warns Employees Their Data Was Stolen by Ransomware GangThe company initially took some systems offline to contain the breach. Although the nature of the incident was not immediately disclosed, LockBit ransomware claimed responsibility for the attack.BLEEPINGCOMPUTER.COM
12 MarCloudGrappler: Open Source Tool that Detects Hacking ActivityCloudGrappler is an innovative open-source tool designed to detect the presence of notorious threat actors in cloud environments. This tool is a beacon of hope for security teams struggling to keep pace with the sophisticated tactics of groups like LUCR-3, also known as Scattered…GBHACKERS.COM
12 MarHow Not to Become the Target of the Next Microsoft Hacksubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/cybersecurity-operations/how-not-to-become-target-of-next-microsoft-hack Nothing fancy or new on this article, but the basics should prevent tears: Regularly checking and updating access control p…DARKREADING.COM
12 MarRussia-aligned hackers take down French state services in massive DDoS attackAnonymous Sudan, a Russian-speaking hacktivist group, has claimed the severe distributed denial of service ( DDoS ) attacks that disrupted several French government services on Monday. In a statement issued on Monday, Prime Minister Gabriel Attal’s office confirmed that a series …CSOONLINE.COM
12 MarCloudGrappler: Open-Source Tool Detects Activity in Cloud EnvironmentsThe open-source tool offers enhanced detection capabilities based on the tactics, techniques, and procedures (TTPs) of modern cloud threat actors like LUCR-3 (Scattered Spider).HELPNETSECURITY.COM
12 MarResearchers Expose Microsoft SCCM Misconfigurations Usable in CyberattacksThe Misconfiguration Manager repository provides a comprehensive resource for both offensive professionals and defenders to understand and manage the attack path related to Microsoft Configuration Manager (MCM), formerly known as SCCM.BLEEPINGCOMPUTER.COM
12 MarODNI Releases New Open-Source Intelligence Strategy With Limited DetailsIntelligence agencies are developing new strategies to collect and process open-source intelligence (OSINT) through 2026, in response to the explosion of publicly and commercially available information.THERECORD.MEDIA
12 MarCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) advisory on March 12, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-072-01 Schneider Electric EcoStruxure Power Design CISA encourages user…CISA.GOV
12 MarCISA Publishes SCuBA Hybrid Identity Solutions GuidanceCISA has published Secure Cloud Business Applications (SCuBA) Hybrid Identity Solutions Guidance (HISG) to help users better understand identity management capabilities and securely integrate their traditional on-premises enterprise networks with cloud-based solutions. This initi…CISA.GOV
12 MarMuddled Libra Threat Group Abuses Pentesting Tools to Infiltrate NetworksMuddled Libra threat actors leverage pentesting tools to identify vulnerabilities in target systems and networks, enabling them to exploit security gaps and gain unauthorized access.GBHACKERS.COM
12 MarExploited Building Access System Vulnerability Patched 5 Years After DisclosurePACKETSTORMSECURITY.COM
12 Mar KEVMicrosoft waited 6 months to patch actively exploited admin-to-kernel vulnerabilitysubmitted by ylai to cybersecurity 1 points | 0 comments https://www.theregister.com/2024/03/11/infosec_news_in_brief/THEREGISTER.COM
12 MarHHS Resources, Funding to Bolster Healthcare Cyber EffortsThe Department of Health and Human Services is working on grant programs and other financial programs to help under-resourced healthcare organizations deal with the cybersecurity challenges they're facing, said La Monte Yarborough, CISO and acting deputy CIO at HHS.DATABREACHTODAY.CO.UK
12 MarMicrosoft March 2024 Patch Tuesday fixes 60 flaws, 18 RCE bugsToday is Microsoft's March 2024 Patch Tuesday, and security updates have been released for 60 vulnerabilities, including eighteen remote code execution flaws. [...]BLEEPINGCOMPUTER.COM
12 MarFortinet Releases Security Updates for Multiple ProductsFortinet released security updates to address vulnerabilities in multiple Fortinet products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories …CISA.GOV
12 MarBuilding a 911 Cyber Civil Defense System for HealthcareThe healthcare sector needs a 911-style cyber civil defense system that can help all segments of the industry, including under-resourced groups, to more rapidly and effectively respond to cyberattacks and related incidents, said Erik Decker, CISO of Intermountain Health and a fed…DATABREACHTODAY.CO.UK
12 MarPatch Tuesday: Microsoft Flags Major Bugs in HyperV, Exchange ServerMicrosoft ships patches for at least 60 security vulnerabilities in the Windows ecosystem and warned of remote code execution risks. The post Patch Tuesday: Microsoft Flags Major Bugs in HyperV, Exchange Server appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarAdobe Releases Security Updates for Multiple ProductsAdobe released security updates to address multiple vulnerabilities in Adobe software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following Adobe Secu…CISA.GOV
12 MarMicrosoft Releases Security Updates for Multiple ProductsMicrosoft has released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply…CISA.GOV
12 MarPatch Tuesday, March 2024 EditionApple and Microsoft recently released software updates to fix dozens of security holes in their operating systems. Microsoft today patched at least 60 vulnerabilities in its Windows OS. Meanwhile, Apple's new macOS Sonoma addresses at least 68 security weaknesses, and its latest …KREBSONSECURITY.COM
12 MarRansomware Talent Surges to Akira After LockBit's DemiseUS Healthcare Entities Are Firmly in Akira Ransomware Group's Sights, Expert Warns Ransomware groups may come and go, but often it's only in name, as the individuals involved will move on to power whatever group remains a going concern. Cue a reported flow of top talent from Lock…DATABREACHTODAY.CO.UK
12 MarGoogle’s Security Command Center Enterprise fills gaps across cloud security lifecycleGoogle’s new Security Command Center Enterprise (SCC Enterprise) could streamline cloud risk management through AI automation, saving security teams time, experts say. Enhanced with Mandiant threat intelligence and generative AI, SCC Enterprise aims to offer comprehensive insight…CSOONLINE.COM
12 MarCritical Patches Issued for Microsoft Products, March 13, 2024Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
12 MarVulnerability Reward Program: 2023 Year in ReviewPosted by Sarah Jacobus, Vulnerability Rewards Team Last year, we again witnessed the power of community-driven security efforts as researchers from around the world contributed to help us identify and address thousands of vulnerabilities in our products and services. Working wit…SECURITY.GOOGLEBLOG.COM
📋 SECURITY BULLETINS 5[−]
12 MarICS Patch Tuesday: Siemens Ruggedcom Devices Impacted by 45 Fortinet VulnerabilitiesSiemens and Schneider Electric publish March 2024 Patch Tuesday advisories to inform customers about over 200 vulnerabilities. The post ICS Patch Tuesday: Siemens Ruggedcom Devices Impacted by 45 Fortinet Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarAdobe Patches Critical Flaws in Enterprise ProductsPatch Tuesday: Adobe ships a hefty batch of security updates to fix critical-severity vulnerabilities in multiple enterprise-facing products. The post Adobe Patches Critical Flaws in Enterprise Products appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarMicrosoft Patch Tuesday - March 2024, (Tue, Mar 12th)This month&#;x26;#;39;s patches are oddly "light". We have patches for 60 vulnerabilities and 4 Chromium patches affecting Microsoft Edge. But only two of the vulnerabilities are rated as "Critical":
ISC.SANS.EDU
12 Mar59 CVEs primed for Microsoft’s March Patch TuesdayJust two critical-severity issues addressed, though Azure and OMI admins won’t want to delay patching this monthSOPHOS.COM
12 MarWindows KB5035849 update failing to install with 0xd000034 errorsThe KB5035849 cumulative update released during today's Patch Tuesday fails to install on Windows 10 and Windows Server systems with 0xd0000034 errors. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 13[−]
12 MarWelcoming the Liechtenstein Government to Have I Been PwnedPresently sponsored by: Kolide can get your cross-platform fleet to 100% compliance. It's Zero Trust for Okta. Want to see for yourself? Book a demo. Over the last 6 years, we've been very happy to welcome dozens of national governments to have unhindered access to their dom…TROYHUNT.COM
12 MarUS Federal Budget Proposes $27.5B for CybersecurityThe Biden administration has unveiled a $1.67 trillion discretionary spending proposal, which includes a modest increase in federal cybersecurity spending. The budget allocates $13 billion for federal civilian cybersecurity.BANKINFOSECURITY.COM
12 MarHackers Advertising FUD APK Crypter that Runs on all Android DevicesCybersecurity experts have identified a new tool being promoted in the internet’s darker corners. Dubbed the “FUD APK Crypter,” this software claims to offer the ability to encrypt and obfuscate payloads created by Android Remote Administration Tools (RATs), mak…GBHACKERS.COM
12 MarCISA Lacks Staff with Skills Needed to Safeguard OTThe U.S. Government Accountability Office (GAO) recently released a report critiquing the information-sharing practices of the CISA with critical infrastructure stakeholders, warning about staffing shortages for handling OT incidents.BANKINFOSECURITY.COM
12 MarHow data residency impacts security and complianceEvery piece of your organization’s data is stored in a physical location. Even data stored in a cloud environment lives in a physical location on the virtual server. However, the data may not be in the location you expect, especially if your company uses multiple cloud prov…SECURITYINTELLIGENCE.COM
12 MarCISA’s OT Attack Response Team Understaffed: GAOGAO study finds that CISA does not have enough staff to respond to significant OT attacks in multiple locations at the same time. The post CISA’s OT Attack Response Team Understaffed: GAO appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarDem Bones, Leather, QNAP, CISA, Microsoft, PyPI, France, AirBnB, Josh Marpet and More - SWN #368Dem Bones, Leather, QNAP, CISA, Microsoft, PyPI, France, AirBnB, Josh Marpet, and More are on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-368YOUTUBE.COM
🔥 INCIDENT REPORTING 15[−]
12 MarThe French Government Says It’s Being Targeted by Unusual Intense CyberattacksA group of hackers called Anonymous Sudan, considered by cybersecurity experts as pro-Russia, claimed responsibility for the attacks in online posts. The post The French Government Says It’s Being Targeted by Unusual Intense Cyberattacks appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarUpdate: Third-Party Breach and Missing MFA Led to British Library AttackThe attackers successfully copied a significant amount of data, including personal details of Library users and staff, leading to a deep and extensive impact on the institution.INFOSECURITY-MAGAZINE.COM
12 MarRansomware Attacks are Hitting Critical Infrastructure More Often, FBI SaysAccording to the FBI's annual Internet Crime Report for 2023, more than 2 in 5 ransomware attacks in 2023 targeted organizations in critical infrastructure sectors, indicating a growing threat to essential services.CYBERSECURITYDIVE.COM
12 MarRoku Cancels Unauthorized Subscriptions and Provides Refunds for 15K Breached AccountsRoku canceled unauthorized subscriptions, refunded affected user accounts, and reset passwords after discovering a breach involving hacked username and password combinations.THERECORD.MEDIA
12 MarUpdate: Okta Says Data Leaked on Hacking Forum Not From its SystemsThe leaked data claimed to be from Okta includes user IDs, full names, company names, office addresses, phone numbers, email addresses, positions/roles, and other information.BLEEPINGCOMPUTER.COM
12 MarThe 2024 Sophos Threat Report: Cybercrime on Main StreetRansomware remains the biggest existential cyber threat to small businesses, but others are growing.SOPHOS.COM
12 MarFrench Government Agencies Hit by Cyberattacks of ‘Unprecedented Intensity’In response to the cyberattacks, a crisis cell has been activated to deploy countermeasures, reducing the impact on most public services and restoring access to state websites.THERECORD.MEDIA
12 MarEquiLend Ransomware Attack Leads to Data BreachEquiLend is informing its employees that their personal information was compromised in a January ransomware attack. The post EquiLend Ransomware Attack Leads to Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarUS, Russia Accuse Each Other of Potential Election CyberattacksUS and Russia suspect each other of intent to disrupt presidential elections set for this week in Russia and November in the US. The post US, Russia Accuse Each Other of Potential Election Cyberattacks appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarReport: Three-Quarters of Cyber Incident Victims are Small BusinessesOver 90% of cyber-attacks on small and medium businesses involve data or credential theft, with a notable increase in information-stealing malware targeting macOS, according to Sophos.INFOSECURITY-MAGAZINE.COM
12 MarSecuring Connections: 3rd Party Risk Mgmt Expert Insights - Charles Spence - CSP #165Breaches at software vendors used by many organizations have highlighted the external software supplier risk, requiring organizations to be even more diligent. Join us as we discuss the supply chain issues and their relationship to software supply chain issues and how organizatio…YOUTUBE.COM
12 MarLive Webinar | Identity Under Siege in the EU: How to Combat Data Breaches with Proactive MeasuresDATABREACHTODAY.CO.UK
12 MarNew DoNex Ransomware Observed in the Wild Targeting EnterprisesThe DoNex ransomware strain is actively targeting companies in the United States and Europe, employing a double-extortion method to hold files and sensitive data hostage.TTBINTERNETSECURITY.COM
12 MarStanford: Data of 27,000 people stolen in September ransomware attackStanford University says the personal information of 27,000 individuals was stolen in a ransomware attack impacting its Department of Public Safety (SUDPS) network. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 31[−]
12 MarISC Stormcast For Tuesday, March 12th, 2024 https://isc.sans.edu/podcastdetail/8890, (Tue, Mar 12th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
12 MarKrustyLoader Backdoor Attack Both Windows & Linux SystemsRecent developments within the cybersecurity landscape have included the emergence of KrustyLoader, a sophisticated Rust-based backdoor that has caught the attention of multiple industry experts. This malware, which boasts Windows and Linux variants, has been implicated in a seri…GBHACKERS.COM
12 Mar15 Best Ethical Hacking Learning Websites (2024) - TechApprisesubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://techapprise.com/cybersecurity/hacking-learning-websites/ Here are three other sites not listed in this article that you can also use to learn about hacking Hack the Box Try Hack Me Pico Capture the f…TECHAPPRISE.COM
12 MarHackers Deliver MSIX Malware in The Lure of Freemium Productivity AppCybercriminals usually use free apps to take advantage of the large number of people who use them freely. The broader user base serves as a larger attack surface that ensures the effective distribution of malware. In addition, this could happen if third-party plugins or fea…GBHACKERS.COM
12 MarSouth Korean Citizen Detained in Russia on Cyber Espionage ChargesRussia has detained a South Korean national for the first time on cyber espionage charges and transferred from Vladivostok to Moscow for further investigation. The development was first reported by Russian news agency TASS. “During the investigation of an espionage case…THEHACKERNEWS.COM
12 MarItalian DPA Asks OpenAI’s ‘Sora’ to Reveal Algorithm InformationThe Italian Data Protection Authority (DPA) has initiated a thorough investigation into OpenAI, the American tech giant, following its recent announcement of a cutting-edge AI model named ‘Sora.’ This new model can generate dynamic, realistic, and imaginative scenes f…GBHACKERS.COM
12 MarSecurity BSides Athens 2023 - 12 talkssubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/88326fa1-4add-4588-be5c-b443afdd2391.png Security BSides Athens 2023 Speakers Security BSides Athens 2023 Playlist “Security BSides is a community-driven framework for building events by and…INFOSEC.PUB
12 MarFrench Government Hit with Severe DDoS AttackSeveral French government websites faced disruptions due to a severe Distributed Denial of Service (DDoS) attack, marking a concerning escalation in cyber threats against state infrastructure. The attack commenced in the early hours of Sunday, rapidly escalating in intensity. Clo…GBHACKERS.COM
12 MarJailbreaking LLMs with ASCII ArtResearchers have demonstrated that putting words in ASCII art can cause LLMs—GPT-3.5, GPT-4 , Gemini, Claude, and Llama2—to ignore their safety instructions. Research paper .SCHNEIER.COM
12 MarTyposquatting Wave Shows No Signs of Abatingsubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/threat-intelligence/typosquatting-wave-shows-no-signs-of-abatingDARKREADING.COM
12 MarCyberheistNews Vol 14 #11 Microsoft and OpenAI Team Up to Block Threat Actor Access to AIKNOWBE4.COM
12 MarDodging Digital Deception: How to Spot Fake Recruiters and Shield Your Career Search from Phishing ScamsScammers are impersonating job-seeking platform Dice with phony employment opportunities designed to steal victims’ information.KNOWBE4.COM
12 MarHow Much Will AI Help Cybercriminals?Do not forget, AI-enabled technologies, like KnowBe4’s Artificial Intelligence Defense Agents (AIDA), will make defenses increasingly better.KNOWBE4.COM
12 MarGenerative AI Results In 1760% Increase in BEC AttacksAs cybercriminals leverage tools like generative AI, making attacks easier to execute and with a higher degree of success, phishing attacks continues to increase in frequency.KNOWBE4.COM
12 Mar[Question] Is this a secure way to generate passwordssubmitted by Eezyville to cybersecurity 1 points | 0 comments https://sh.itjust.works/pictrs/image/99d36338-94e1-42b4-a93a-529b8f928ca9.jpeg So I’ve been trying to create more secured passwords now that I have employment where I have responsibility. They require us to change our …SH.ITJUST.WORKS
12 MarJ.P. Morgan Growth Leads $39 Million Investment in Eye SecurityEye Security raises $39 million to bring enterprise-level security and cyber insurance products to mid-market businesses. The post J.P. Morgan Growth Leads $39 Million Investment in Eye Security appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarGetting Down to the Roots of First-Party FraudFrank McKenna on How Customers Are Scamming Their Banks and How Banks Can Respond First-party fraud hits banks from many different places - credit card fraud claims, bust-out schemes, lending fraud and synthetic identity fraud. The diversity of scams poses major challenges in spo…DATABREACHTODAY.CO.UK
12 MarTor’s new WebTunnel bridges mimic HTTPS traffic to evade censorshipThe Tor Project officially introduced WebTunnel, a new bridge type specifically designed to help bypass censorship targeting the Tor network by hiding connections in plain sight. [...]BLEEPINGCOMPUTER.COM
12 Mar5 Unique Challenges for AI in CybersecurityThere are challenges for AI in cybersecurity in real-world environments with high precision, requiring specialization in the specific field of study. The post 5 Unique Challenges for AI in Cybersecurity appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
12 MarTeamCity Authn Bypass, ArtPrompt Attacks, Low Quality Vuln Reports, Secure by Design - ASW #276The trivial tweaks to bypass authentication in TeamCity, ArtPrompt attacks use ASCII art against LLMs, annoying developers with low quality vuln reports, removing dependencies as part of secure by design, removing overhead with secure by design, and more! Visit https://www.securi…YOUTUBE.COM
12 MarMore API Calls, More Problems: The State of API Security in 2024 - Lebin Cheng - ASW #276A majority of internet traffic now originates from APIs, and cybercriminals are taking advantage. Increasingly, APIs are used as a common attack vector because they’re a direct pathway to access sensitive data. In this discussion, Lebin Cheng shares what API attack trends Imperva…YOUTUBE.COM
12 MarI am announcing AIDA: Artificial Intelligence Defense Agents!AI is evolving a breakneck speed. Elon Musk recently said : " I've never seen any technology advance faster than AI compute. We are on the edge of the biggest technology revolution ever. As in the Chinese curse; we are living in the most interesting of times. " KNOWBE4.COM
12 MarSAP Patches Critical Command Injection VulnerabilitiesEnterprise software maker SAP documents multiple critical-severity issues and warns of risk of command injection attacks. The post SAP Patches Critical Command Injection Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarGoogle Paid Out $10 Million via Bug Bounty Programs in 2023Google paid out $10 million via its bug bounty programs in 2023, bringing the total to nearly $60 million since 2010. The post Google Paid Out $10 Million via Bug Bounty Programs in 2023 appeared first on SecurityWeek .SECURITYWEEK.COM
12 MarAcer confirms Philippines employee data leaked on hacking forumAcer Philippines confirmed that employee data was stolen in an attack on a third-party vendor who manages the company's employee attendance data after a threat actor leaked the data on a hacking forum. [...]BLEEPINGCOMPUTER.COM
12 MarBuilding Cyber Resilience: Key Trends and Strategies for a Secure Future - Cybersecurity Magazinesubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://cybersecurity-magazine.com/building-cyber-resilience-key-trends-and-strategies-for-a-secure-future/ Join us for an interview with Darren Thomson, Field Chief Technology Officer at Commvault, as we de…CYBERSECURITY-MAGAZINE.COM
12 MarAdvanced Tech Fuels Authoritarian Threats, US Intel WarnsChina and Russia Strain an 'Increasingly Fragile Global Order' Authoritarian countries are seizing on technological advances to sway the global balance during a time of increased geopolitical fragility, U.S. intelligence agencies warned in an annual threat assessment. Generative …DATABREACHTODAY.CO.UK
12 MarGhostRace Detailed - Speculative Race Conditions Affecting All Major CPUs / ISAssubmitted by ylai to cybersecurity 1 points | 0 comments https://www.phoronix.com/news/CPU-Speculative-GhostRacePHORONIX.COM
12 Mar10 Security Metrics Categories CISOs Should Present to the Boardsubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://www.darkreading.com/cybersecurity-analytics/10-security-metrics-categories-cisos-should-present-to-the-board Boards of directors don’t care about the minute technical details of the security program.…DARKREADING.COM
12 MarSpanish High Court Upholds Temporary Worldcoin BanCourt Decision Backs 3-Month Ban Imposed by the Country's Data Regulator The Spanish High Court on Monday sided with the country's data regulator, the Spanish Data Protection Agency, to uphold a three-month ban on OpenAI founder Sam Altman's controversial digital identity and cry…DATABREACHTODAY.CO.UK
12 MarDARPA Picks 7 Small Businesses for AI Cyber ChallengeFirms Get $1 Million Funding to Develop System to Automatically Fix AI Bugs DARPA said it wants to "redefine" AI security, so it is offering support to seven small businesses to automatically find and fix software vulnerabilities at scale. As part of its AI Cyber Challenge, DARPA…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 3[−]
12 MarWatch Out: These PyPI Python Packages Can Drain Your Crypto WalletsThreat hunters have discovered a set of seven packages on the Python Package Index (PyPI) repository that are designed to steal BIP39 mnemonic phrases used for recovering private keys of a cryptocurrency wallet. The software supply chain attack campaign has been codenam…THEHACKERNEWS.COM
12 MarIncognito Darknet Market Mass-Extorts Buyers, SellersThe darknet narcotics market Incognito Market is extorting its vendors and buyers by threatening to publish their cryptocurrency transaction and chat records if they refuse to pay a fee.KREBSONSECURITY.COM
12 MarTax-Related Scams Escalate as Filing Deadline ApproachesScammers are taking advantage of the rush to file personal federal income tax returns, using tactics such as impersonation, phone calls, tax identity theft, phishing scams, and unethical tax return preparers.HELPNETSECURITY.COM
🎙️ PODCASTS 1[−]
12 MarTransatlantic Cable podcast episode 338 | Kaspersky official blogEpisode 338 of the Kaspersky podcast contains, Kate Middleton photoshop screw ups, South Korea deep fake scanning tech & much more!KASPERSKY.COM
📡 INFOSEC NEWS 19[−]
12 MarBroadcom Axes Carbon Black Sale, to Merge Unit with SymantecThis decision came after offers to purchase Carbon Black fell short of expectations, resulting in Broadcom's strategic shift to retain the company and merge it with Symantec.BANKINFOSECURITY.COM
12 MarTuta Mail Adds New Quantum-Resistant Encryption to Protect EmailTuta Mail has introduced TutaCrypt, a new post-quantum encryption protocol to safeguard communications from anticipated decryption attacks, offering strong protection against future threats.BLEEPINGCOMPUTER.COM
12 MarWebinar | Navigating the SEC Rules for Enhanced Cybersecurity in IT and OT EnvironmentsDATABREACHTODAY.CO.UK
12 MarMalicious PyPI Packages Target Crypto Wallet Recovery Passwords in BIPClip CampaignThe malicious packages used name squatting, disguised dependencies, and legitimate-looking code to steal mnemonic phrases, evading detection and targeting crypto assets without broader system compromise.REVERSINGLABS.COM
12 MarOver 12 million auth secrets and keys leaked on GitHub in 2023GitHub users accidentally exposed 12.8 million authentication and sensitive secrets in over 3 million public repositories during 2023, with the vast majority remaining valid after five days. [...]BLEEPINGCOMPUTER.COM
12 MarReport: Victims Lose $47 Million to Crypto Phishing Scams in FebruaryImpersonated accounts on X, formerly known as Twitter, have been responsible for a majority of crypto phishing attacks in the previous month. Per Scam Sniffer, victims lost almost $47 million to cybercriminals who stole from over 57,000 individuals.INFOSECURITY-MAGAZINE.COM
12 MarLive Webinar | Navigating Identity Threats: Detection & Response Strategies for Modern Security ChallengesDATABREACHTODAY.CO.UK
12 MarSteadybit's Chaos Engineering Platform Attracts $6M in Series A FundingBy simulating disturbances and potential failures, Steadybit helps organizations preempt and mitigate system vulnerabilities, ultimately improving performance and user experience.TECH.EU
12 MarGoogle paid $10 million in bug bounty rewards last yearGoogle awarded $10 million to 632 researchers from 68 countries in 2023 for finding and responsibly reporting security flaws in the company's products and services. [...]BLEEPINGCOMPUTER.COM
12 MarODNI Appoints New Election Security Leader Ahead of Presidential RaceThe Office of the Director of National Intelligence (ODNI) has appointed Jessica Brandt as the director of the Foreign Malign Influence Center, which aims to combat foreign interference in U.S. elections.THERECORD.MEDIA
12 MarLive Webinar | Navigating Identity Threats: Detection & Response Strategies for Modern Security ChallengesDATABREACHTODAY.CO.UK
12 MarWindows 10 KB5035845 update released with 9 new changes, fixesMicrosoft has released the KB5035845 cumulative update for Windows 10 21H2 and Windows 10 22H2, which includes nine new changes and fixes. [...]BLEEPINGCOMPUTER.COM
12 MarWindows 11 KB5035853 update released, here's what's newMicrosoft has released the KB5035853 cumulative update for Windows 11 23H3 and 22H2, with 21 fixes and changes, including fixing a bug causing 0x800F0922 errors when installing updates. [...]BLEEPINGCOMPUTER.COM
12 MarBrave: Sharp increase in installs after iOS DMA update in EUBrave has seen a sharp increase in users installing its privacy-focused Brave Browser on iPhones after Apple introduced changes to adhere to the new European Digital Markets Act. [...]BLEEPINGCOMPUTER.COM
12 MarElection cybersecurity: Protecting the ballot box and building trust in election integrityWhat cyberthreats could wreak havoc on elections this year and how worried should we as voters be about the integrity of our voting systems?WELIVESECURITY.COM