🐛 COMMON VULNERABILITIES AND EXPOSURES 14[−]
22 MarTeamCity Vulnerability Exploits Leads to Surge in Ransomware AttacksAttackers are taking advantage of vulnerabilities in JetBrains Teamcity to distribute ransomware, coinminers, and backdoor payloads. Two critical vulnerabilities in the TeamCity On-Premises platform, identified as CVE-2024-27198 and CVE-2024-27199 by JetBrains, were published on …GBHACKERS.COM
22 MarBringing Access Back — Initial Access Brokers Exploit F5 BIG-IP (CVE-2023-46747) and ScreenConnect | Mandiantsubmitted by kid to cybersecurity 2 points | 0 comments https://www.mandiant.com/resources/blog/initial-access-brokers-exploit-f5-screenconnectMANDIANT.COM
22 MarCritical Vulnerabilities fixed in Firefox 124.0.1submitted by kid to cybersecurity 1 points | 0 comments https://www.mozilla.org/en-US/security/advisories/mfsa2024-15/ CVE-2024-29943: Out-of-bounds access via Range Analysis bypass CVE-2024-29944: Privileged JavaScript Execution via Event HandlersMOZILLA.ORG
22 Mar KEVExploit available for critical flaw in FortiClient ServerSecurity researchers have released technical details and a proof-of-concept (PoC) exploit for a critical vulnerability patched last week in Fortinet’s FortiClient Enterprise Management Server (FortiClient EMS), an endpoint security management solution. The vulnerability, tracked …CSOONLINE.COM
22 MarCVE-2024-26247 Microsoft Edge (Chromium-based) Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
22 MarCVE-2024-29057 Microsoft Edge (Chromium-based) Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
22 MarChromium: CVE-2024-2625 Object lifecycle issue in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 MarChromium: CVE-2024-2626 Out of bounds read in SwiftshaderThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 MarChromium: CVE-2024-2627 Use after free in CanvasThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 MarChromium: CVE-2024-2628 Inappropriate implementation in DownloadsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 MarChromium: CVE-2024-2629 Incorrect security UI in iOSThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 MarChromium: CVE-2024-2630 Inappropriate implementation in iOSThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 MarChromium: CVE-2024-2631 Inappropriate implementation in iOSThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 MarCVE-2024-29059 .NET Framework Information Disclosure VulnerabilityInformation published. This CVE was addressed by updates that were released in January 2024, but the CVE was inadvertently omitted from the January 2024 Security Updates. This is an informational change only. Customers who have already installed the January 2024 updates do not ne…MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 29[−]
22 MarLots Of Funding News, Airbus Says No, and Cato Networks Going IPO? - ESW #354In the enterprise security news, Lots of funding news, including: - Nozomi Networks Raises $100 Million to Expand Industrial Cybersecurity Business - BigID Raises $60 Million at $1 Billion Valuation - J.P. Morgan Growth Leads $39 Million Investment in Eye Security - CyberSaint ra…YOUTUBE.COM
22 MarTop 5 Myths About API Security and What to Do Instead - Robert Dickinson - ESW #354While awareness and attention towards cybersecurity are on the rise, some popular and persistent myths about cybersecurity have almost become threats themselves. API security requires a modern understanding of the threat landscape, with the context that most API providers desire …YOUTUBE.COM
22 Mar_Half of North Korea's foreign currency income comes from cyberattackssubmitted by INFERNUM1488 to cybersecurity 1 points | 0 comments forklog.com March 21, 2024 View Original About half of North Korea’s foreign currency income comes from cyberattacks, including on cryptocurrency companies. Yonhap writes about this with reference to a report by the…SH.ITJUST.WORKS
22 MarHackers earn $1,132,500 for 29 zero-days at Pwn2Own VancouverPwn2Own Vancouver 2024 has ended with security researchers collecting $1,132,500 after demoing 29 zero-days (and some bug collisions). [...]BLEEPINGCOMPUTER.COM
22 MarResearchers Propose An Invisible Backdoor Attack Dubbed DEBAAs deep neural networks (DNNs) become more prevalent, concerns over their security against backdoor attacks that implant hidden malicious functionalities have grown. Cybersecurity researchers (Wenmin Chen and Xiaowei Xu) recently proposed DEBA, an invisible backdoor attack …GBHACKERS.COM
22 MarUnsaflok Vulnerability Lets Hackers Open 3M+ Hotel Doors in SecondsA group of cybersecurity researchers has uncovered several critical security flaws in the Saflok electronic RFID locks by Dormakaba. These locks, widely used in hotels and multi-family housing environments across 131 countries, are now known to be susceptible to a vulnerability d…GBHACKERS.COM
22 MarFlowFixation Account Takeover Vulnerability Impacts AWS Managed Apache Airflow ServiceThe FlowFixation account-takeover vulnerability, now fixed by AWS, results from a combination of session fixation on the web management panel of the AWS MWAA together with an Amazon AWS domain misconfiguration that leads to cross-site scripting.TENABLE.COM
22 MarTinyTurla Evolved TTPs To Stealthly Attack Enterprise OrganizationsStaying ahead of security measures and exploiting new vulnerabilities requires hackers to change their tactics. By doing so, they manage to bypass better defenses, maximize success rates, and keep on with their illegal activities. The adaptation of techniques by hackers ena…GBHACKERS.COM
22 MarCyber Security Today, March 22, 2024 - Mac CPUs are vulnerable to encrypted key theft, white hat hackers win a second Tesla, and moreThis episode reports on the discovery of a side-channel vulnerability in Apple M-series chips and moreCYBERSECURITYTODAY.LIBSYN.COM
22 MarWindows 11, Tesla, and Ubuntu Linux Hacked at Pwn2Own VancouverOn the first day of Pwn2Own Vancouver 2024, contestants demoed 19 zero-day vulnerabilities in Windows 11, Tesla, Ubuntu Linux, and other devices and software to win $732,500 and a Tesla Model 3 car.BLEEPINGCOMPUTER.COM
22 MarAPI Environments Becoming Hotspots for ExploitationA total of 29% of web attacks targeted APIs over 12 months (January through December 2023), indicating that APIs are a focus area for cybercriminals, according to Akamai.HELPNETSECURITY.COM
22 MarDHCP Hacked to Escalate Privileges in Windows DomainsSecurity researchers have uncovered a sophisticated method of exploiting the Dynamic Host Configuration Protocol (DHCP) administrators group to escalate privileges within Windows domains. This technique, dubbed “DHCP Coerce,” leverages legitimate privileges to comprom…GBHACKERS.COM
22 MarTesla, OS, Software Exploits Earn Hackers $1.1 Million at Pwn2Own 2024Exploits targeting Tesla cars, operating systems, and popular software earned participants over $1.1 million at Pwn2Own Vancouver 2024. The post Tesla, OS, Software Exploits Earn Hackers $1.1 Million at Pwn2Own 2024 appeared first on SecurityWeek .SECURITYWEEK.COM
22 MarOne-Click AWS Vulnerability Let Attackers Takeover User’s Web Management PanelTenable Research has identified a critical vulnerability within the AWS Managed Workflows for Apache Airflow (MWAA) service, which they have named “FlowFixation.” This vulnerability could have permitted attackers to execute a one-click takeover of a user’s web m…GBHACKERS.COM
22 MarExploit Released For Critical Fortinet RCE Flaw: Patch Soon!FortiClientEMS (Enterprise Management Server), the security solution used for scalable and centralized management, was discovered with an SQL injection vulnerability that could allow an unauthenticated threat actor to execute unauthorized code or command on vulnerable servers thr…GBHACKERS.COM
22 MarChinese Government Hacker Exploiting Screenconnect, F5 Bugs To Attack Defense and Government EntitiesA hacker allegedly connected to the People's Republic of China has been exploiting two popular vulnerabilities to attack U.S. defense contractors, U.K. government entities, and institutions in Asia.THERECORD.MEDIA
22 MarGoogle Pays $10M in Bug Bounties in 2023BleepingComputer has the details . It’s $2M less than in 2022, but it’s still a lot. The highest reward for a vulnerability report in 2023 was $113,337, while the total tally since the program’s launch in 2010 has reached $59 million. For Android, the world̵…SCHNEIER.COM
22 MarImplementing Zero Trust Controls for ComplianceThe ThreatLocker® Zero Trust Endpoint Protection Platform implements a strict deny-by-default, allow-by-exception security posture to give organizations the ability to set policy-based controls within their environment and mitigate countless cyber threats, including zer…THEHACKERNEWS.COM
22 MarUnderstanding and Responding to Distributed Denial-Of-Service Attacks | CISAsubmitted by kid to cybersecurity 1 points | 0 comments https://www.cisa.gov/resources-tools/resources/understanding-and-responding-distributed-denial-service-attacks CISA, FBI, and MS-ISAC updated their DDoS guide, adding insights on Volumetric, Protocol, and Application attacks…CISA.GOV
22 MarSaflok Lock Vulnerability Can Be Exploited to Open Millions of DoorsVulnerability in Dormakaba’s Saflok electronic locks allow hackers to forge keycards and open millions of doors. The post Saflok Lock Vulnerability Can Be Exploited to Open Millions of Doors appeared first on SecurityWeek .SECURITYWEEK.COM
22 MarGitHub’s New AI-Powered Tool Auto-Fixes Vulnerabilities in Your CodeGitHub introduced a new AI-powered feature capable of speeding up vulnerability fixes while coding. This feature is in public beta and automatically enabled on all private repositories for GitHub Advanced Security (GHAS) customers.BLEEPINGCOMPUTER.COM
22 MarFBI and CISA warn government systems against increased DDoS attacksThe US Cybersecurity and Infrastructure Security Agency (CISA), the FBI, and the multistate information sharing, and analysis center (MS-ISAC) have, in a joint effort, released an advisory to defend against distributed denial of service (DDoS) attacks. Especially popular with Rus…CSOONLINE.COM
22 MarAWS Patches Critical 'FlowFixation' Bug in Airflow Service to Prevent Session HijackingCybersecurity researchers have shared details of a now-patched security vulnerability in Amazon Web Services (AWS) Managed Workflows for Apache Airflow (MWAA) that could be potentially exploited by a malicious actor to hijack victims' sessions and achieve remote code execution on…THEHACKERNEWS.COM
22 MarWebCopilot: Open-Source Automation Tool Enumerates Subdomains, Detects BugsWebCopilot is an open-source automation tool that enumerates a target’s subdomains and discovers bugs using various free tools. It simplifies the application security workflow and reduces reliance on manual scripting.HELPNETSECURITY.COM
22 MarLuxury Yacht Dealer Attack Claimed by Rhysida GangMarineMax, which posted multibillion-dollar revenues last year, disclosed a cyberattack to the Securities and Exchange Commission (SEC) on March 10, saying portions of its business were disrupted as a result of the containment measures it enacted.THEREGISTER.COM
22 MarApple M-Series Chip Vulnerability Puts Encryption Keys at RiskForesight News reported that the vulnerability poses a serious risk of leakage of wallet keys, The flaw operates as a side channel, facilitating the extraction of end-to-end keys during encrypted transactions.THECYBEREXPRESS.COM
22 MarMozilla fixes two Firefox zero-day bugs exploited at Pwn2OwnMozilla has released security updates to fix two zero-day vulnerabilities in the Firefox web browser exploited during the Pwn2Own Vancouver 2024 hacking competition. [...]BLEEPINGCOMPUTER.COM
22 MarMozilla Drops Onerep After CEO Admits to Running People-Search NetworksThe nonprofit organization that supports the Firefox web browser said today it is winding down its new partnership with Onerep, an identity protection service recently bundled with Firefox that offers to remove users from hundreds of people-search sites. The move comes just days …KREBSONSECURITY.COM
22 MarLikely Chinese Hacking Contractor Is Quick to Exploit N-DaysUNC5174 Exploited F5 BIG-IP and ScreenConnect Vulnerabilities A likely Chinese hacker-for-hire used high-profile vulnerabilities in a campaign targeting a slew of Southeast Asian and U.S. governmental and research organizations, says threat intel firm Mandiant. Rapid exploitation…DATABREACHTODAY.CO.UK
📋 SECURITY BULLETINS 1[−]
22 MarMicrosoft releases emergency fix for Windows Server crashesMicrosoft has released emergency out-of-band (OOB) updates to fix a known issue causing Windows domain controllers to crash after installing the March 2024 Windows Server security updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 4[−]
22 MarUS Government Issues New DDoS Mitigation GuidanceCISA, the FBI, and MS-ISAC have released new guidance on how federal agencies can defend against DDoS attacks. The post US Government Issues New DDoS Mitigation Guidance appeared first on SecurityWeek .SECURITYWEEK.COM
22 MarUS cyber investors pledge spyware is off limits — with a catchOn Monday, the Biden administration announced that six new countries had joined an international coalition to fight the proliferation of commercial spyware, sold by companies such as NSO Group or Intellexa. Now, some investors have announced that they too are committed to fightin…TECHCRUNCH.COM
🔥 INCIDENT REPORTING 17[−]
22 MarMediaWorks - 162,710 breached accountsIn March 2024, millions of rows of data from the New Zealand media company MediaWorks was publicly posted to a popular hacking forum . The incident exposed 163k unique email addresses provided by visitors who filled out online competitions and included names, physical addresses, …HAVEIBEENPWNED.COM
22 MarChange Healthcare Cyberattack Could Damage Credit at Small Providers: FitchThe cyberattack against Change Healthcare could damage the credit of smaller providers, pharmacies, and other healthcare organizations that rely on the UnitedHealth-owned technology company for financial services, as per a report from Fitch Ratings.CYBERSECURITYDIVE.COM
22 MarRaaS Groups Increasing Efforts to Recruit AffiliatesSmaller RaaS groups are trying to recruit new and “displaced” LockBit and Alphv/BlackCat affiliates by foregoing deposits and paid subscriptions, offering better payout splits, 24/7 support, and other “perks.”HELPNETSECURITY.COM
22 MarIAG Warns Air Europa’s Consumers of Personal Data Leaksubmitted by kid to cybersecurity 1 points | 0 comments https://www.wsj.com/articles/iag-warns-air-europas-consumers-of-personal-data-leak-2090798d The parent company of British Airways and Iberia on Thursday said in an email sent to Air Europa’s consumer base that the data breac…WSJ.COM
22 MarJacksonville Beach Report Data Breach Following CyberattacksThe city government of Jacksonville Beach was just the latest to report such an incident, disclosing Wednesday evening that 48,949 people had personal information accessed during a January cyberattack.THERECORD.MEDIA
22 MarPhilips Respironics Notifies the HHS-OCR of Data Breach Affecting 457,152 Individuals | JD Suprasubmitted by kid to cybersecurity 1 points | 0 comments https://www.jdsupra.com/legalnews/philips-respironics-notifies-the-hhs-1803740/JDSUPRA.COM
22 MarChina-Linked Group Breaches Networks via Connectwise, F5 Software FlawsA China-linked threat cluster leveraged security flaws in Connectwise ScreenConnect and F5 BIG-IP software to deliver custom malware capable of delivering additional backdoors on compromised Linux hosts as part of an "aggressive" campaign. Google-owned Mandiant is tracking&n…THEHACKERNEWS.COM
22 MarMassive Sign1 Campaign Infects 39,000+ WordPress Sites with Scam RedirectsA massive malware campaign dubbed Sign1 has compromised over 39,000 WordPress sites in the last six months, using malicious JavaScript injections to redirect users to scam sites. The most recent variant of the malware is estimated to have infected no less than 2,500 sit…THEHACKERNEWS.COM
22 MarNDSS Symposium 2023submitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/18a90dbe-8192-4749-854e-4e438ae814f3.png NDSS 2023 Schedule Playlists: NDSS 2023 4C: Mobile Security and Privacy NDSS 2023 8B: Web Security III NDSS 2023 7B: Web Security II NDSS 2023 7C: Cy…INFOSEC.PUB
22 MarFake Data Breaches: Countering the DamageAmid the constant drumbeat of successful cyberattacks, some fake data breaches have also cropped up to make sensational headlines. Unfortunately, even fake data breaches can have real repercussions.HELPNETSECURITY.COM
22 MarSouth China Athletic Association Suffers Cyberattack Potentially Compromising 70,000 Members’ DataThe South China Athletic Association (SCAA) was rocked by a cyberattack as unauthorized third parties breached the organization’s computer servers, sparking concerns over the security of member data.THECYBEREXPRESS.COM
22 MarRansomware Group Takes Credit for Attack on Boat Dealer MarineMaxThe Rhysida ransomware group has taken credit for the cyberattack on MarineMax and is offering to sell stolen data for 15 bitcoin. The post Ransomware Group Takes Credit for Attack on Boat Dealer MarineMax appeared first on SecurityWeek .SECURITYWEEK.COM
22 MarReport: Malware Stands Out as the Fastest-Growing Threat of 202493% of IT professionals believe security threats are increasing in volume or severity, a significant rise from 47% last year, according to Thales. The number of enterprises experiencing ransomware attacks surged by over 27% in the past year.HELPNETSECURITY.COM
22 MarNew Details on TinyTurla’s Post-Compromise Activity Reveal Full Kill ChainTalos’ analysis, in coordination with CERT.NGO, reveals that Turla infected multiple systems in the compromised network of a European non-governmental organization (NGO).TALOSINTELLIGENCE.COM
22 MarCyber Security Today, Week in Review for week ending Friday, March 22, 2024This episode features discussion on lessons learned from the ransomware attack on the British Library, advice for managing expectations of IT/security teams, why firms are leaving Google Firebase unprotected and moreCYBERSECURITYTODAY.LIBSYN.COM
22 MarNursing Home Declares Bankruptcy, Blames Recent CyberattacksAlso, Senate Bill Proposes Payment Relief for Firms Meeting Cyber 'Standards' A nursing home operator is seeking bankruptcy protection, citing the effects of a ransomware attack last fall and fallout from the recent Change Healthcare outage as factors that contributed to its fina…DATABREACHTODAY.CO.UK
22 MarRussian APT Releases More Deadly Variant of AcidRain Wiper Malwaresubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/russian-apt-releases-more-deadly-variant-of-acidrain-wiper-malware New AcidPour variant can attack a significantly broader range of targets including Io…DARKREADING.COM
🕵️ THREAT INTELLIGENCE 29[−]
22 MarGoFetch: Breaking Constant-Time Cryptographic Implementations Using Data Memory-Dependent Prefetcherssubmitted by thomask to cybersecurity 1 points | 0 comments https://gofetch.fail/GOFETCH.FAIL
22 MarISC Stormcast For Friday, March 22nd, 2024 https://isc.sans.edu/podcastdetail/8906, (Fri, Mar 22nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
22 MarRussian Hackers Target Ukrainian Telecoms with Upgraded 'AcidPour' MalwareThe data wiping malware called AcidPour may have been deployed in attacks targeting four telecom providers in Ukraine, new findings from SentinelOne show. The cybersecurity firm also confirmed connections between the malware and AcidRain, tying it to threat activity clu…THEHACKERNEWS.COM
22 MarAttackers are targeting financial departments with SmokeLoader malware - Help Net Securitysubmitted by kid to cybersecurity 2 points | 0 comments https://www.helpnetsecurity.com/2024/03/22/smokeloader-phishing/HELPNETSECURITY.COM
22 MarBlueFlag Security Emerges From Stealth With $11.5M in FundingBlueFlag Security emerges from stealth mode with $11.5 million in a seed funding round led by Maverick Ventures and Ten Eleven Ventures. The post BlueFlag Security Emerges From Stealth With $11.5M in Funding appeared first on SecurityWeek .SECURITYWEEK.COM
22 MarNew ‘GoFetch’ Apple CPU Attack Exposes Crypto KeysResearchers detail GoFetch, a new side-channel attack impacting Apple CPUs that could allow an attacker to obtain secret keys. The post New ‘GoFetch’ Apple CPU Attack Exposes Crypto Keys appeared first on SecurityWeek .SECURITYWEEK.COM
22 MarSecurity Brief: TA450 Uses Embedded Links in PDF Attachments in Latest Campaign | Proofpoint USsubmitted by kid to cybersecurity 2 points | 0 comments https://www.proofpoint.com/us/blog/threat-insight/security-brief-ta450-uses-embedded-links-pdf-attachments-latest-campaignPROOFPOINT.COM
22 MarMicrosoft Warns of New Tax Returns Phishing Scams Targeting Yousubmitted by kid to cybersecurity 2 points | 0 comments https://www.hackread.com/microsoft-tax-returns-phishing-malware-alert/HACKREAD.COM
22 Mar39,000 Websites Infected in ‘Sign1’ Malware CampaignOver 39,000 websites have been infected with the Sign1 malware that redirects visitors to scam domains. The post 39,000 Websites Infected in ‘Sign1’ Malware Campaign appeared first on SecurityWeek .SECURITYWEEK.COM
22 MarMunich Cyber Security Conferencec 2024 - 18 talkssubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/50ab3e83-d0f1-4436-ac75-f1548d8cb260.png Agenda on the website Munich Cyber Security Conferencec 2024 PlaylistINFOSEC.PUB
22 MarTruck-to-truck worm could infect entire US fleetsubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2024/03/22/boffins_tucktotruck_worm/THEREGISTER.COM
22 Mar‘Brain Weasels’: Impostor Syndrome in CybersecurityThere are several attributes that tie the cybersecurity community together–namely our collective passion for solving complex problems in order to reduce harm – but one has stood out prominently over the years: impostor syndrome. The post ‘Brain Weasels’: Impostor Syndrome in Cybe…SECURITYWEEK.COM
22 MarIn Other News: Google’s PQC Threat Model, Keyboard Sounds Expose Data, AI RoadmapNoteworthy stories that might have slipped under the radar: Google’s post-quantum cryptography threat model, keyboard typing sounds can expose data, DHS publishes AI roadmap. The post In Other News: Google’s PQC Threat Model, Keyboard Sounds Expose Data, AI Roadmap appeared…SECURITYWEEK.COM
22 MarRussian APT29 Hackers Caught Targeting German Political PartiesRussia’s APT29 hacking group is expanding targets to political parties in Germany using a new backdoor variant tracked as Wineloader. The post Russian APT29 Hackers Caught Targeting German Political Parties appeared first on SecurityWeek .SECURITYWEEK.COM
22 MarUN Adopts Resolution Backing Efforts to Ensure Artificial Intelligence is SafeThe resolution, sponsored by the United States and co-sponsored by 123 countries, including China, was adopted by consensus with a bang of the gavel and without a vote, meaning it has the support of all 193 U.N. member nations. The post UN Adopts Resolution Backing Efforts to Ens…SECURITYWEEK.COM
22 MarSolving SandboxAQ's Post-Quantum Crypto CTFIn March 2024, SandboxAQ proposed a CTF around Post-Quantum Cryptography (and more specifically Kyber's key exchange) for the RWPQC workshop. Here is our write-up of the solutions to the challenges.QUARKSLAB.COM
22 MarThousands of WordPress sites impacted by Sign1 malware campaignsubmitted by kid to cybersecurity 1 points | 0 comments https://www.scmagazine.com/brief/thousands-of-wordpress-sites-impacted-by-sign1-malware-campaignSCMAGAZINE.COM
22 MarISMG Editors: How Will the Quantum Era Reshape Cybersecurity?Also: US Regulators Backtrack on Web Tracker Privacy; ISMG's RSA 2024 Coverage In the latest weekly update, four editors discussed ISMG's plans for in-depth and diverse coverage at the 2024 RSA conference, the latest guidance on web trackers from federal regulators and the latest…DATABREACHTODAY.CO.UK
22 MarRussian hackers target German political parties with WineLoader malwareResearchers are warning that a notorious hacking group linked to Russia's Foreign Intelligence Service (SVR) is targeting political parties in Germany for the first time, shifting their focus away from the typical targeting of diplomatic missions. [...]BLEEPINGCOMPUTER.COM
22 MarRobots, UDP, GoFetch, DCs, Pwn2Own, Verner Vinge, Reddit, Aaran Leyland, and More - SWN #371Robots gone wild, UDP, GoFetch, Domain Controllers, Pwn2Own, Verner Vinge, Reddit, Aaran Leyland, and More on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-371YOUTUBE.COM
22 MarDetecting a tracker pixel/image in emailsubmitted by coffeeClean to cybersecurity 1 points | 0 comments An HTML-only email from a gov agency has a logo referencing an URL that looks like this: https://1wy1y.mjt.lu/tplimg/1wy1y/b/l9hl7/g3q3v.png It’s not exactly that (apart from the domain) but of course it’s rather uni…INFOSEC.PUB
22 MarBiden's Economic Team Warns of AI Risks and Job DisplacementUS Council of Economic Advisers Includes AI Section in Newly Released Report The 2024 Economic Report of the President includes a chapter on artificial intelligence that warns of the risks associated with AI-fueled job displacement and discrimination. The report also highlights t…DATABREACHTODAY.CO.UK
22 MarFriday Squid Blogging: New Species of Squid DiscoveredA new species of squid was discovered , along with about a hundred other species. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here .SCHNEIER.COM
22 MarRussian Nation-State Hacker Targets German Political PartiesLatest APT29 Campaign Uses a Previously Unseen Malware Backdoor A Russian hacking group is targeting German political parties as part of a Moscow-backed espionage campaign. The latest APT29 campaign marks the first time the group has been seen targeting political organizations, a…DATABREACHTODAY.CO.UK
22 MarGitLab Acquires Oxeye to Bolster SAST in DevSecOps WorkflowAcquisition Promises Enhanced Application Security and Reduced False Positives The integration of Oxeye into GitLab’s suite marks a significant leap in the accuracy and efficiency of security scans, directly addressing the challenge of false positives in static application securi…DATABREACHTODAY.CO.UK
22 MarSecurity expert Chris Krebs on TikTok, AI and the key to survival (part 2)submitted by ylai to cybersecurity 1 points | 0 comments https://venturebeat.com/security/security-expert-chris-krebs-on-tiktok-ai-and-the-key-to-survival-part-2/ Part 1: venturebeat.com/…/security-expert-chris-krebs-on-… Part 2: venturebeat.com/…/security-expert-chris-krebs-on-…VENTUREBEAT.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
22 MarNew Sysrv Botnet Variant Makes Use of Google Subdomain to Spread XMRig MinerSysrv is a well-documented botnet first identified in 2020, with the main payload being a worm written in Golang. It drops a cryptominer onto infected hosts before attempting to propagate itself using network vulnerabilities and other methods.IMPERVA.COM
22 MarAceCryptor attacks surge in Europe – Week in security with Tony AnscombeThe second half of 2023 saw massive growth in AceCryptor-packed malware spreading in the wild, including courtesy of multiple spam campaigns where AceCryptor packed the Rescoms RATWELIVESECURITY.COM
📡 INFOSEC NEWS 17[−]
22 MarDOJ calls Apple’s privacy justifications an ‘elastic shield’ for financial gainsThe U.S. Department of Justice sued Apple Thursday over monopolistic practices. The complaint accuses Apple of moulding its privacy and security practices in ways that benefits the company financially. One quote particularly jumps out where the DOJ calls Apple’s privacy and…TECHCRUNCH.COM
22 MarU.S. Justice Department Sues Apple Over Monopoly and Messaging SecurityThe U.S. Department of Justice (DoJ), along with 16 other state and district attorneys general, on Thursday accused Apple of illegally maintaining a monopoly over smartphones, thereby undermining, among others, security and privacy of users when messaging non-iPhone use…THEHACKERNEWS.COM
22 MarRed Teaming in the AI EraUnlike previous types of software, AI models become more intelligent over time. This constant change means new risks can emerge at any moment, making them incredibly difficult to anticipate. A one-and-done approach to red teaming simply won’t work.HELPNETSECURITY.COM
22 MarNemesis Darknet Marketplace Raided in Germany-Led OperationVisitors to the cybercrime website were greeted on Thursday with a red banner announcing the takedown. At the bottom, the police placed an animated spaceship reminiscent of a 1990s video game called Nemesis.THERECORD.MEDIA
22 MarUS Airlines’ Privacy Protection Practices to Get DOT ReviewThe Department of Transportation (DOT) will review data collection practices for the country's 10 largest airlines in a bid to improve passenger privacy protections, Secretary Pete Buttigieg said on Thursday.THERECORD.MEDIA
22 MarNew GoFetch attack on Apple Silicon CPUs can steal crypto keysA new side-channel attack called "GoFetch" impacts Apple M1, M2, and M3 processors and can be used to steal secret cryptographic keys from data in the CPU's cache. [...]BLEEPINGCOMPUTER.COM
22 MarEmail Bomb Attacks: Filling Up Inboxes and Servers Near YouThe HHS' Health Sector Cybersecurity Coordination Center in an alert warned that email bomb attacks - also known as letter bomb attacks - pose a considerable potential threat.HEALTHCAREINFOSECURITY.COM
22 MarNew StrelaStealer Phishing Attacks Hit Over 100 Organizations in E.U. and U.S.Cybersecurity researchers have detected a new wave of phishing attacks that aim to deliver an ever-evolving information stealer referred to as StrelaStealer. The campaigns impact more than 100 organizations in the E.U. and the U.S., Palo Alto Networks Unit 42 researchers sai…THEHACKERNEWS.COM
22 MarLarge-Scale StrelaStealer Campaign in Early 2024Recently, Unit 42 researchers have identified a wave of large-scale StrelaStealer campaigns impacting over 100 organizations across the EU and U.S. These campaigns deliver spam emails with attachments that eventually launch the DLL payload.UNIT42.PALOALTONETWORKS.COM
22 MarDarknet marketplace Nemesis Market seized by German policeThe German police have seized infrastructure for the darknet Nemesis Market cybercrime marketplace in Germany and Lithuania, disrupting the site's operation. [...]BLEEPINGCOMPUTER.COM
22 MarWays to detect and curb Living off the Land (LotL) attacks | Kaspersky official blogWhat measures should IT and InfoSec services take to “harden” against LotL attacks that leverage LOLBins and LOLBAS?KASPERSKY.COM
22 MarGoFetch - Breaking Constant-Time Cryptographic Implementations Using Data Memory-Dependent PrefetchersPACKETSTORMSECURITY.COM
22 MarAT&T won’t say how its customers’ data spilled onlineCustomers say leaked AT&T customer data — names, addresses, phone numbers and Social Security numbers — is accurate. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
22 MarCISOs: Make Sure Your Team Members Fit Your Company CultureWhy? Because 'Culture Eats Strategy for Breakfast,' as the Saying Goes Chief information security officers are challenged with building high-functioning cybersecurity teams amid an impossible labor and skills market. Here are strategies they can use to assemble teams capable of d…DATABREACHTODAY.CO.UK