71Articles
8Categories
2024-03-25Date
🚨 CISA KEV 1[−]
25 Mar KEVCISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-48788  Fortinet FortiClient EMS SQL Injection Vulnerability CVE-2021-44529 Ivanti Endpoint Manager Cloud Service Appliance (EPM …CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 19[−]
25 MarUnpatched Zephyr OS Expose Devices to DoS Attacks via IP SpoofingCybersecurity researchers at the Synopsys Cybersecurity Research Center (CyRC) have uncovered vulnerabilities within the Zephyr OS network stack, potentially leaving connected devices susceptible to IP spoofing (or IP address spoofing) attacks.HACKREAD.COM
25 MarCISA Issues Advisory on WebAccess/SCADA VulnerabilityThe latest CISA Industrial Control Systems (ICS) advisory, marked by a flaw with a CVSS v4 score of 7.1, highlights concerns regarding the WebAccess/SCADA system manufactured by Advantech.THECYBEREXPRESS.COM
25 MarThe state of ransomware: Faster, smarter, and meanerRansomware payments hit $1.1 billion in 2023, a record high and twice what they were in 2022. The frequency, scope and volume of attacks were all up, as was the number of independent groups conducting the attacks, according to a report by Chainalysis . “We’re tracking dozens more…CSOONLINE.COM
25 MarCyber Security Today, March 25, 2024 - A suspected China threat actor going after unpatched F5 and ScreenConnet installationsThis episode reports on a new campaign stealing email passwords, the latest data breaches, and moreCYBERSECURITYTODAY.LIBSYN.COM
25 MarHackers Earn $1,132,500 for 29 Zero-Days at Pwn2Own VancouverVendors have 90 days to release security fixes for zero-day vulnerabilities reported during Pwn2Own contests before TrendMicro's Zero Day Initiative discloses them publicly.BLEEPINGCOMPUTER.COM
25 MarNew "GoFetch" Vulnerability in Apple M-Series Chips Leaks Secret Encryption KeysA new security shortcoming discovered in Apple M-series chips could be exploited to extract secret keys used during cryptographic operations. Dubbed GoFetch, the vulnerability relates to a microarchitectural side-channel attack that takes advantage of a feature known as data…THEHACKERNEWS.COM
25 MarThreat Groups Hit Enterprise Software, Network Infrastructure Hard in 2023High-risk vulnerabilities in operating systems across major vendors such as Microsoft, Google, Apple, and Cisco, network infrastructure, including VPNs, and enterprise software, accounted for two-thirds of all active exploits in 2023.CYBERSECURITYDIVE.COM
25 MarMozilla Patches Firefox Zero-Days Exploited at Pwn2OwnFirefox browser updates address two zero-day vulnerabilities exploited at the Pwn2Own hacking contest. The post Mozilla Patches Firefox Zero-Days Exploited at Pwn2Own appeared first on SecurityWeek .SECURITYWEEK.COM
25 MarLinux Admins Beware! Fake PuTTY Client that Rhadamanthys stealerA malvertising campaign has been discovered deploying a fake PuTTY client to deliver the Rhadamanthys stealer, a dangerous malware. This campaign cleverly exploits the trust in the widely used SSH and Telnet client, PuTTY, by presenting a counterfeit website through malicious ads…GBHACKERS.COM
25 MarCloud-Conscious Cyber Attacks Spike 110% as Threat Groups Sharpen their Attack SkillsNew data shows increased expertise in leveraging and exploiting cloud environments.KNOWBE4.COM
25 MarKey Lesson from Microsoft’s Password Spray Hack: Secure Every AccountIn January 2024, Microsoft discovered they’d been the victim of a hack orchestrated by Russian-state hackers Midnight Blizzard (sometimes known as Nobelium). The concerning detail about this case is how easy it was to breach the software giant. It wasn’t a highly techni…THEHACKERNEWS.COM
25 MarCISA and FBI Release Secure by Design Alert to Urge Manufacturers to Eliminate SQL Injection VulnerabilitiesToday, CISA and the Federal Bureau of Investigation (FBI) released a joint Secure by Design Alert, Eliminating SQL Injection Vulnerabilities in Software . This Alert was crafted in response to a recent, well-publicized exploitation of SQL injection (SQLi) defects in a managed fil…CISA.GOV
25 Mar170K+ Python Developers GitHub Accounts Hacked in Supply Chain AttackOver 170,000 users have fallen victim to a meticulously orchestrated scheme exploiting the Python software supply chain. The Checkmarx Research team has uncovered a multi-faceted attack campaign that leverages fake Python infrastructure to distribute malware, compromising the sec…GBHACKERS.COM
25 MarCombine Qualys TruRisk™ and MITRE ATT&CK to Adopt a Threat-Informed Defense to Reduce RiskThere are so many vulnerabilities disclosed daily that no one can patch all of them. Unfortunately, attackers can exploit them while you are still in the process of reviewing, prioritizing, and patching. Effective risk-based prioritization focuses your limited resources and remed…QUALYS.COM
25 MarUK blames China for massive breach of voter dataIt's the first time the United Kingdom has attributed the massive breach of millions of citizens' voter data since the cyberattack was first disclosed in 2023. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
25 MarHackers poison source code for largest Discord bot platformA new supply chain attack has impacted the top gg Discord bot developers community on GitHub, which has over 170,000 members, with data-stealing malware. [...]BLEEPINGCOMPUTER.COM
25 MarHackers poison source code from largest Discord bot platformThe Top.gg Discord bot community with over 170,000 members has been impacted by a supply-chain attack aiming to infect developers with malware that steals sensitive information. [...]BLEEPINGCOMPUTER.COM
25 MarTop 5 Myths About API Security and What to Do Instead - Robert Dickinson - ESW #354While awareness and attention towards cybersecurity are on the rise, some popular and persistent myths about cybersecurity have almost become threats themselves. API security requires a modern understanding of the threat landscape, with the context that most API providers desire …YOUTUBE.COM
📋 SECURITY BULLETINS 1[−]
25 MarThere Is Only So Much Lipstick You Can Put on a Cybercriminal TrollThe one thing I love about our annual conference in Orlando, KB4-CON, is its thought-provoking nature. Year after year, the events team manages to keep a fine balance between product updates and thought leadership talks. The convention is the best time to shine for all of us at K…KNOWBE4.COM
📢 SECURITY ADVISORIES 8[−]
25 MarGUEST ESSAY: NIST’s Cybersecurity Framework update extends best practices to supply chain, AIThe National Institute of Standards and Technology (NIST) has updated their widely used Cybersecurity Framework (CSF) — a free respected landmark guidance document for reducing cybersecurity risk. Related: More background on CSF However, it’s important to note that most of ……LASTWATCHDOG.COM
25 MarBiden Nominates First Assistant Defense Secretary for Cyber PolicyPresident Joe Biden on Thursday nominated Michael Sulmeyer to be assistant secretary of defense for cyber policy at the Pentagon, the first individual to hold the position.NEXTGOV.COM
25 MarWhite House Nominates First Assistant Secretary of Defense for Cyber PolicyMichael Sulmeyer has been nominated by the White House as the first assistant secretary of defense for cyber policy at the Pentagon. The post White House Nominates First Assistant Secretary of Defense for Cyber Policy appeared first on SecurityWeek .SECURITYWEEK.COM
25 MarRansomware: lessons all companies can learn from the British Library attackIn October 2023, the British Library suffered "one of the worst cyber incidents in British history," as described by Ciaran Martin, ex-CEO of the National Cyber Security Centre (NCSC). What lessons can other organisations learn from the ransomware attack? Read more in my article …EXPONENTIAL-E.COM
25 MarMy AI Odyssey in Cybersecurity | Kashif Iqbal | TEDx University of West Londonsubmitted by ashar to security_cpe 1 points | 0 comments My AI Odyssey in Cybersecurity | Kashif Iqbal | TEDx How easy is it for AI models to create phishing emails that people actually fall for? What impact and challenges does this cause for cybersecurity professionals? In this …INFOSEC.PUB
25 MarUS sanctions APT31 hackers behind critical infrastructure attacksThe U.S. Treasury Department has sanctioned a Wuhan-based company used by the Chinese Ministry of State Security (MSS) as cover in attacks against U.S. critical infrastructure organizations. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 12[−]
25 MarWeekly Update 392Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite Let's get straight to the controversial bit: email address validation. A penny-drop moment during this week's video was that …TROYHUNT.COM
25 MarHackers Claiming Unauthorized Access to the Fortinet Devices of Many CompaniesHackers have claimed unauthorized access to Fortinet devices across various companies. This breach highlights cybercriminals’ persistent threat to corporate security infrastructures and the importance of robust cybersecurity measures. Overview of the Breach A tweet from a d…GBHACKERS.COM
25 MarLawsuit Filed Following Greensboro College Data BreachThe data exposed in the Greensboro College data leak encompassed a broad spectrum of personal details, including names, Social Security numbers, student identification numbers, dates of birth, passport numbers, and health information.THECYBEREXPRESS.COM
25 MarAir Europa Customers Warned Their Data May Have Been LeakedThe parent company IAG has reportedly sent out a breach notification email to affected individuals, telling them that their names, dates of birth, nationalities, ID cards, passport information, and phone numbers, have all been taken by the hackers.SG.NEWS.YAHOO.COM
25 MarTop Python Developers Hacked in Sophisticated Supply Chain AttackMultiple Python developers get infected after downloading malware-packed clone of the popular tool Colorama. The post Top Python Developers Hacked in Sophisticated Supply Chain Attack appeared first on SecurityWeek .SECURITYWEEK.COM
25 MarBeware of New ‘HelloFire’ Ransomware Actor Mimic as a PentesterA new threat is the emergence of a ransomware encryptor dubbed ‘HelloFire.’ This new player in the cybercrime arena is employing deceptive tactics to disguise its malicious intent as legitimate penetration testing activities. Here’s what you need to know about t…GBHACKERS.COM
25 MarStrelaStealer Malware Hacked 100+ Organizations Across The EU And U.SStrelastealer malware has been found to be distributed in large-scale campaigns that have currently impacted over 100 organizations across the U.S. and EU. The malware was first discovered in 2022 and is capable of stealing a victim’s email login information and exfiltratin…GBHACKERS.COM
25 MarSupply Chain Attack Discovered Using Fake Python InfrastructureThe multi-stage and evasive malicious payload harvests passwords, credentials, and more dumps of valuable data from infected systems and exfiltrates them to the attacker’s infrastructure.CHECKMARX.COM
25 MarRussian Hackers Attacking Political Parties In Recent Cyber AttacksPolitical parties are often targeted by hackers since they want to achieve various goals. This is because hackers may attempt to access confidential data like campaign strategies, opposition research, or even personal communications, which helps them interfere with election proce…GBHACKERS.COM
25 MarSandworm-Linked Group Likely Knocked Down Ukrainian Internet ProvidersRussian state-backed hackers are likely behind recent attacks on four Ukrainian internet providers, disrupting their operations for over a week. A group known as Solntsepek claimed responsibility for the incidents on its Telegram channel last week.THERECORD.MEDIA
25 Mar​​Frost & Sullivan names Microsoft a Leader in the Frost Radar™: Managed Detection and Response, 2024The Frost Radar™: Managed Detection and Response, 2024 report recognizes Microsoft as a Leader. Learn how Microsoft Defender Experts for XDR augments your security operations center team to triage, investigate, and respond to incidents for you. The post ​​Frost & Sullivan nam…MICROSOFT.COM
🕵️ THREAT INTELLIGENCE 19[−]
25 MarISC Stormcast For Monday, March 25th, 2024 https://isc.sans.edu/podcastdetail/8908, (Mon, Mar 25th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
25 MarTool updates: le-hex-to-ip.py and sigs.py, (Sun, Mar 24th)I am TA-ing for Taz for the new SANS FOR577 class again and I figured it was time to release some fixes to my le-hex-to-ip.py script that I wrote up last fall while doing the same. I still plan to make some additional updates to the script to be able to take the hex strings from …ISC.SANS.EDU
25 MarHackers Transform the Raspberry Pi into an Online Anonymity ToolA new tool, GEOBOX, was advertised on the Dark Web that utilizes Raspberry Pi devices for fraud and anonymization, allowing users to spoof GPS locations, emulate network settings, mimic Wi-Fi access points, and bypass anti-fraud filters.  Criminals were using multiple GEOBOX…GBHACKERS.COM
25 MarUpdated APT Playbook of North Korean Kimsuky Threat GroupThe North Korea-linked threat actor known as Kimsuky (aka Black Banshee, Emerald Sleet, or Springtail) has been observed shifting its tactics, leveraging Compiled HTML Help (CHM) files as vectors to deliver malware for harvesting sensitive data.RAPID7.COM
25 MarGitHub - ZephrFish/ChunkyIngress: Chunking Text Ingresssubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://github.com/ZephrFish/ChunkyIngress cross-posted from: lemmy.world/post/13478707GITHUB.COM
25 MarIran-Linked MuddyWater Deploys Atera for Surveillance in Phishing AttacksThe Iran-affiliated threat actor tracked as MuddyWater (aka Mango Sandstorm or TA450) has been linked to a new phishing campaign in March 2024 that aims to deliver a legitimate Remote Monitoring and Management (RMM) solution called Atera. The activity, which took place …THEHACKERNEWS.COM
25 MarPancakesCon 4 (2023) - 25 talkssubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/00bd851b-b1b8-41b3-bc6e-8b8d0293a6e9.png PancakesCon is a one day community hacking / cybersecurity conference which occurs around the Spring Equinox every year. This conference is 100% virt…INFOSEC.PUB
25 MarRussian Hackers Target German Political Parties With WineLoader MalwareThe campaign has been active since late February and mainly uses phishing emails that appear to come from the German Christian Democratic Union, according to a report by Mandiant.BLEEPINGCOMPUTER.COM
25 MarLicensing AI EngineersThe debate over professionalizing software engineers is decades old. (The basic idea is that, like lawyers and architects, there should be some professional licensing requirement for software engineers.) Here’s a law journal article recommending the same idea for AI enginee…SCHNEIER.COM
25 MarFBI: Losses Due to Cybercrime Jump to $12.5 Billion as Phishing Continues to DominateThe FBI’s Internet Crime Complaint Center (IC3) newly-released   Internet Crimes Report   provides an unbiased big picture of the cyber crimes that were the most used and most successful.KNOWBE4.COM
25 MarOver 100 US and EU orgs targeted in StrelaStealer malware attackssubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/over-100-us-and-eu-orgs-targeted-in-strelastealer-malware-attacks/BLEEPINGCOMPUTER.COM
25 MarMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 2 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
25 MarHackers Hijack GitHub Accounts in Supply Chain Attack Affecting Top-gg and OthersUnidentified adversaries orchestrated a sophisticated attack campaign that has impacted several individual developers as well as the GitHub organization account associated with Top.gg, a Discord bot discovery site. "The threat actors used multiple TTPs in this attack, including a…THEHACKERNEWS.COM
25 MarMicrosoft To Ban 50+ Products For Users In RussiaSoftline Group, a major IT solutions provider, has confirmed the suspension of access to cloud products offered by Microsoft, Amazon, and Google for Russian customers. Microsoft Corporation has recently announced the suspension of new sales in Russia. This disruption is effective…GBHACKERS.COM
25 MarUN Probing 58 Alleged Crypto Heists by North Korea Worth $3 BillionIn a report released March 7, the U.N. experts said they tracked the activity of “cyberthreat actors subordinate to the Reconnaissance General Bureau (RGB), including Kimsuky, the Lazarus Group, Andariel and BlueNoroff,” between 2017 and 2023.THERECORD.MEDIA
25 MarOver 100 Organizations Targeted in Recent ‘StrelaStealer’ AttacksMore than 100 organizations in the US and EU have been targeted in recent StrelaStealer infostealer campaigns. The post Over 100 Organizations Targeted in Recent ‘StrelaStealer’ Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
25 MarWhy Endpoint Security Tools Are Still Such a ChallengeLinkedIn Chief Security Architect Calls for More Integration of Devices, Identities Despite advances in endpoint security, Sergei Rousakov, chief security architect at LinkedIn, said the landscape remains complex. He said endpoint tools need to take a more integrated approach tha…DATABREACHTODAY.CO.UK
25 MarThe Average Malicious Website Exists for Less Than 10 MinutesA new Chrome update brings to light Google findings about malicious websites that have serious implications on detecting malicious links, spoofed brands and the use of legitimate web services.KNOWBE4.COM
25 MarChinese State-Sponsored Hackers Charged, Sanctions Levied by USsubmitted by Lanky_Pomegranate530 to cybersecurity 24 points | 0 comments https://www.darkreading.com/cyber-risk/chinese-state-hackers-slapped-with-us-charges-sanctionsDARKREADING.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
25 MarFinite State Raises $20 Million Growth Round to Secure Critical Infrastructure and Software Supply Chains"This funding round marks a significant milestone for Finite State and reaffirms the trust and confidence our investors have placed in our mission," said Matt Wyckhouse, CEO and Founder of Finite State.FINITESTATE.IO
25 MarGoogle's new AI search results promotes sites pushing malware, scamsGoogle's new AI-powered 'Search Generative Experience' algorithms recommend scam sites that redirect visitors to unwanted Chrome extensions, fake iPhone giveaways, browser spam subscriptions, and tech support scams. [...]BLEEPINGCOMPUTER.COM
25 MarGoogle’s New AI Search Results Promotes Sites Pushing Malware, ScamsGoogle's new AI-powered 'Search Generative Experience' algorithms recommend scam sites that redirect visitors to unwanted Chrome extensions, fake iPhone giveaways, browser spam subscriptions, and tech support scams.BLEEPINGCOMPUTER.COM
25 MarNotorious Nemesis Market zapped by video game-loving German policeNemesis Market, a notorious corner of the darknet beloved by cybercriminals and drug dealers, has been suddenly shut down after German police seized control of its systems. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
📡 INFOSEC NEWS 7[−]
25 MarBlueFlag Security Emerges from Stealth with $11.5M Seed Funding to Address Critical Gaps in SDLC SecurityLed by Maverick Ventures and Ten Eleven Ventures with participation from Pier 88 Investment Partners, the investment will fund the development of BlueFlag’s SDLC security and governance platform.FINANCE.YAHOO.COM
25 MarPolice Bust Multimillion-Dollar Holiday Fraud GangPolice in Romania and Spain have struck a blow against a sophisticated cyber-fraud gang that tricked victims out of millions of dollars through fake ads and business email compromise (BEC) scams.INFOSECURITY-MAGAZINE.COM
25 MarScammers Steal Millions From FTX, BlockFi ClaimantsCustomers of bankrupt crypto platform BlockFi have been targeted with a very convincing phishing email impersonating the platform, asking them to connect their wallet to complete the withdrawal of remaining funds.HELPNETSECURITY.COM
25 MarNew ZenHammer memory attack impacts AMD Zen CPUsAcademic researchers developed ZenHammer, the first variant of the Rowhammer DRAM attack that works on CPUs based on recent AMD Zen microarchitecture that map physical addresses on DDR4 and DDR5 memory chips. [...]BLEEPINGCOMPUTER.COM
25 MarNew MFA-bypassing phishing kit targets Microsoft 365, Gmail accountsCybercriminals have been increasingly using a new phishing-as-a-service (PhaaS) platform named 'Tycoon 2FA' to target Microsoft 365 and Gmail accounts and bypass two-factor authentication (2FA) protection. [...]BLEEPINGCOMPUTER.COM
25 MarCybersecurity starts at home: Help your children stay safe online with open conversationsStruggle to know how to help children and teens stay safe in cyberspace? A good ol’ fashioned chat is enough to put them on the right track.WELIVESECURITY.COM