🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
23 MarMicrosoft Xbox Gaming Services Flaw Let Attackers Gain SYSTEM PrivilegesA new elevation of privilege vulnerability has been discovered in the Xbox Gaming services that allow a threat actor to elevate their privileges to that of a SYSTEM. This particular vulnerability has been assigned CVE-2024-28916, and its severity has been given as 8.8 (High). Whe…GBHACKERS.COM
23 Mar KEVUpdate: Exploit Released for Fortinet RCE Bug Used in Attacks, Patch NowWhile the company didn't initially mention that CVE-2023-48788 was being used in attacks, it has since silently updated the advisory to say that the "vulnerability is exploited in the wild."BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 3[−]
23 MarMozilla Fixes Two Firefox Zero-Day Bugs Exploited at Pwn2OwnMozilla fixed the security flaws in Firefox 124.0.1 and Firefox ESR 115.9.1 to block potential remote code execution attacks targeting unpatched web browsers on desktop devices.BLEEPINGCOMPUTER.COM
23 MarUnsaflok Flaw can Let Hackers Unlock Millions of Hotel DoorsResearchers disclosed vulnerabilities today that impact 3 million Saflok electronic RFID locks deployed in 13,000 hotels and homes worldwide, allowing the researchers to easily unlock any door in a hotel by forging a pair of keycards.BLEEPINGCOMPUTER.COM
23 MarGoFetch Side-Channel Attack Impact Apple CPUs: Attackers Steal Secret KeysResearchers have unveiled a new class of microarchitectural side-channel attacks that pose a severe threat to the security of Apple CPUs. The attack, GoFetch, exploits the Data Memory-dependent Prefetchers (DMPs) in modern processors to extract secret cryptographic keys from cons…GBHACKERS.COM
📢 SECURITY ADVISORIES 1[−]
23 MarUS Government Releases New DDoS Attack Guidance for Public SectorThe joint advisory from the CISA, the FBI, and the MS-ISAC, highlighted three main types of DDoS attacks public sector entities must be prepared for, including Volume-based attacks, Protocol-based attacks, and Application layer-based attacks.INFOSECURITY-MAGAZINE.COM
🔥 INCIDENT REPORTING 2[−]
23 MarRussian Hackers Use 'WINELOADER' Malware to Target German Political PartiesThe WINELOADER backdoor used in recent cyber attacks targeting diplomatic entities with wine-tasting phishing lures has been attributed as the handiwork of a hacking group with links to Russia's Foreign Intelligence Service (SVR), which was responsible for breaching SolarWin…THEHACKERNEWS.COM
23 MarIllinois County Government, Local College Affected by Ransomware AttacksHenry County has been dealing with a wide-ranging cyberattack since March 18, Mat Schnepple, director of the Emergency Management (OEM) office in Henry County, confirmed to Recorded Future News.THERECORD.MEDIA
🕵️ THREAT INTELLIGENCE 8[−]
23 MarGerman Authorities Shut Down Online Marketplace for Drugs, Data and Cybercrime ServicesGerman authorities took down the Nemesis Market, a major online marketplace for drugs, cybercrime services and stolen credit card data. The post German Authorities Shut Down Online Marketplace for Drugs, Data and Cybercrime Services appeared first on SecurityWeek .SECURITYWEEK.COM
23 MarFinite State Raises $20 Million to Grow Software Supply Chain Security BusinessSoftware risk management firm Finite State has raised a $20 million growth round led by Energy Impact Partners (EIP). The post Finite State Raises $20 Million to Grow Software Supply Chain Security Business appeared first on SecurityWeek .SECURITYWEEK.COM
23 MarIranian TA450 Group Tries Out New Tactics on IsraelisProofpoint Researchers Say Beware of Phishing Emails, Embedded Links in PDFs Iran-aligned threat actor TA450, also called MuddyWater, is using fake salary, compensation and financial incentive emails to trick Israeli employees at multi-national organizations into clicking malicio…DATABREACHTODAY.CO.UK
23 MarNew Go Loader Pushes Rhadamanthys StealerPuTTY is a very popular SSH and Telnet client for Windows used by IT admins for years. The threat actor bought an ad that claims to be the PuTTY homepage and appeared at the top of the Google search results page, right before the official website.MALWAREBYTES.COM
23 MarIranian TA450 Group Tries Out New Tactics on IsraelisIran-aligned threat actor TA450 is using fake salary, compensation and financial incentive emails to trick Israeli employees at multi-national organizations into clicking malicious links, according to researchers at security firm Proofpoint.BANKINFOSECURITY.COM
23 MarHackers Deploy STRRAT & VCURMS Malware on Windows Via GitHubA new phishing campaign targets users with emails containing a button to “verify payment information.” Clicking the button triggers the download of a malicious JAR file (disguised as an invoice) that leverages a PowerShell command to download two additional JARs. …GBHACKERS.COM
23 Mar1768.py's Experimental Mode, (Sat, Mar 23rd)The reason I extracted a PE file in my last diary entry , is that I discovered it was the dropper of a Cobalt Strike beacon &#;x26;#;x40;DebugPrivilege had pointed me to . My 1768.py tool crashed on the process memory dump. This is fixed now, but it st…ISC.SANS.EDU
23 MarRussian Hackers Use 'WINELOADER' Malware to Target German Political Partiessubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://thehackernews.com/2024/03/russian-hackers-use-wineloader-malware.html?m=1THEHACKERNEWS.COM
📡 INFOSEC NEWS 2[−]
23 MarOpera sees big jump in EU users on iOS, Android after DMA updateOpera has reported a substantial 164% increase in new European Union users on iOS devices after Apple introduced a new feature to comply with the EU's Digital Markets Act (DMA). [...]BLEEPINGCOMPUTER.COM
23 MarMicrosoft to shut down 50 cloud services for Russian businessesMicrosoft plans to limit access to over fifty cloud products for Russian organizations by the end of March as part of the sanctions requirements against the country issued by EU regulators last December. [...]BLEEPINGCOMPUTER.COM