208Articles
8Categories
2024-04-09Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 111[−]
9 AprCritical Flaws Leave 92,000 D-Link NAS Devices Vulnerable to Malware AttacksThreat actors are actively scanning and exploiting a pair of security flaws that are said to affect as many as 92,000 internet-exposed D-Link network-attached storage (NAS) devices. Tracked as CVE-2024-3272 (CVSS score: 9.8) and CVE-2024-3273 (CVSS score: 7.3)…THEHACKERNEWS.COM
9 AprHTTP/2 Vulnerability Let Hackers Launch DOS Attacks on Web ServersResearchers identified a significant vulnerability within the HTTP/2 protocol, potentially allowing hackers to launch Denial of Service (DOS) attacks on web servers. The vulnerability tracked as CVE-2024-28182 has raised concerns among internet security experts and prompted respo…GBHACKERS.COM
9 Apr KEVD-Link RCE Vulnerability That Affects 92,000 Devices Exploited in WildCybercriminals have actively exploited a critical vulnerability in D-Link Network Attached Storage (NAS) devices globally. Identified as CVE-2024-3273, this remote code execution (RCE) flaw poses a significant threat to as many as 92,000 devices worldwide. The exploit allows atta…GBHACKERS.COM
9 Apr KEVExploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS DevicesUnpatched D-Link NAS device vulnerability CVE-2024-3273, potentially affecting many devices, is being exploited in the wild. The post Exploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS Devices appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprPatches for CVE-2024-1086 for CloudLinux 6h, 7 Users on KernelCare LiveThe KernelCare team is working on deploying a live patch for CVE-2024-1086 for CloudLinux users. A patch has already been released for CloudLinux 6h and CloudLinux 7, and users can manually update without a live patch.TUXCARE.COM
9 AprSysdig digs up a ransomware gang in stealth for over a decadeA threat research team (TRT) of cloud security software provider Sysdig, has discovered a Romania-based ransomware group, which it now tracks as Rubycarp, that has been active for a decade. The threat actor, as discovered by Sysdig, operates primarily by deploying a botnet using …CSOONLINE.COM
9 AprThousands Of Internet-Exposed Ivanti VPN Appliances Vulnerable To RCE AttacksIn a recent cybersecurity revelation, Ivanti, a leading provider of enterprise-grade secure access solutions, has been found to have significant vulnerabilities in its VPN appliances. The most critical of these, identified as CVE-2024-21894, is a heap overflow vulnerability that …GBHACKERS.COM
9 AprLessons That The XZ Utils Backdoor Spells Out - Farshad Abasi - ASW #280We look into the supply chain saga of the XZ Utils backdoor. It's a wild story of a carefully planned long con to add malicious code to a commonly used package that many SSH connections rely on. It hits themes from social engineering and abuse of trust to obscuring the changes an…YOUTUBE.COM
9 Apr KEVMicrosoft patches actively exploited security feature bypass vulnerability (CVE-2024-29988) - Help Net Securitysubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2024/04/09/april-2024-patch-tuesday-cve-2024-29988/HELPNETSECURITY.COM
9 AprCVE-2024-26193 Azure Migrate Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-20688 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-20693 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-20669 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-20665 BitLocker Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26250 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26256 libarchive Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28920 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28922 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28921 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28919 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28923 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28896 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28898 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28903 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-29063 Azure AI Search Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-29064 Windows Hyper-V Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-23594 Lenovo: CVE-2024-23594 Stack buffer overflow in Lenovo system recovery boot managerCorrected CVE title. This is an informational change only.MSRC.MICROSOFT.COM
9 AprCVE-2024-20689 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26168 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26171 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26175 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26180 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26183 Windows Kerberos Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26189 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26194 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26218 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26219 HTTP.sys Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26241 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26245 Windows SMB Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26212 DHCP Server Service Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26215 DHCP Server Service Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26240 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-26251 Microsoft SharePoint Server Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28924 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28925 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-28897 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-29052 Windows Storage Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-29061 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-29062 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 AprCVE-2024-20670 Outlook for Windows Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 27[−]
9 Apr5 groups that support diversity in cybersecurityWhether you’re a veteran or a newcomer to the field of cybersecurity, groups that support diversity in cybersecurity can provide you with more than just guidance and mentorship. They also help you connect with people who share similar interests. It’s important for cybersecurity p…CSOONLINE.COM
9 AprGoogle Rolls Out “Find My Device” Network for Android UsersGoogle has announced the global rollout of its revamped Find My Device network. This innovative feature is set to transform how Android users locate their misplaced devices and everyday items, leveraging a vast, crowdsourced network of over a billion Android devices. Here’s…GBHACKERS.COM
9 AprNotepad++ Wants Your Help to Take Down the Parasite WebsiteIn a recent announcement, the team behind the widely acclaimed source code editor, Notepad++, has issued a call to arms for its user community. The appeal comes in response to the emergence of a deceptive website that misleads users and poses significant security risks. Here̵…GBHACKERS.COM
9 AprMalware-Initiated Vulnerability Scanning is on the RiseThreat actors have been using scanning methods to pinpoint vulnerabilities in networks or systems for a very long time. Some scanning attacks originate from benign networks likely driven by malware on infected machines.UNIT42.PALOALTONETWORKS.COM
9 AprTop Israeli Spy Chief Identity Exposed In A Privacy MistakePrivacy mistakes could pose a serious threat to sensitive information or systems,, which threat actors could exploit for their gain. These mistakes can include weak passwords, unsecured networks, and outdated software, making it easier for threat actors to infiltrate and exploit …GBHACKERS.COM
9 AprCISO Conversations: Nick McKenzie (Bugcrowd) and Chris Evans (HackerOne)SecurityWeek discusses cybersecurity leadership with CISOs from crowdsourced hacking organizations Bugcrowd (Nick McKenzie) and HackerOne (Chris Evans) The post CISO Conversations: Nick McKenzie (Bugcrowd) and Chris Evans (HackerOne) appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprGoogle Adds V8 Sandbox To Chrome To Fight Against Browser AttacksA Sandbox is a protective medium that blocks the entire system from any application accessing vulnerable resources.  Restrictive environments for web content in browsers called sandboxes reduce the impact that can be caused by browser-based attacks such as malicious programs…GBHACKERS.COM
9 AprResearchers Discover LG Smart TV Vulnerabilities Allowing Root AccessMultiple security vulnerabilities have been disclosed in LG webOS running on its smart televisions that could be exploited to bypass authorization and gain root access on the devices. The findings come from Romanian cybersecurity firm Bitdefender, which discovered and reported th…THEHACKERNEWS.COM
9 AprHackers Using ScrubCrypt ‘AV Evasion Tool’ To Exploit Oracle WebLogic ServersHackers exploit Oracle WebLogic Servers, knowing that they are extensively used in enterprises. Threat actors can use security vulnerabilities present in the WebLogic servers to gain unauthorized access to sensitive data and install backdoors that open avenues for further exploit…GBHACKERS.COM
9 AprRUBYCARP hackers linked to 10-year-old cryptomining botnetA Romanian botnet group named 'RUBYCARP' is leveraging known vulnerabilities and performing brute force attacks to breach corporate networks and compromise servers for financial gain. [...]BLEEPINGCOMPUTER.COM
9 AprImplementing container security best practices using WazuhMaintaining visibility into container hosts, ensuring best practices, and conducting vulnerability assessments are necessary to ensure effective security. In this article Wazuh explores how its software can help implement best security practices for containerized environments. [.…BLEEPINGCOMPUTER.COM
9 AprCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) advisory on April 9, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-100-01 SUBNET PowerSYSTEM Server and Substation Server CISA encourages u…CISA.GOV
9 AprAsia-Focused Dark Web Threat Intelligence Startup StealthMole Raises $7 MillionFounded in 2022, Singapore-based StealthMole leverages AI to analyze data from the dark web, deep web, and other sources to provide risk assessment and threat monitoring capabilities. The post Asia-Focused Dark Web Threat Intelligence Startup StealthMole Raises $7 Million appeare…SECURITYWEEK.COM
9 AprMicrosoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEsToday is Microsoft's April 2024 Patch Tuesday, which includes security updates for 150 flaws and sixty-seven remote code execution bugs. [...]BLEEPINGCOMPUTER.COM
9 AprPatch Tuesday: Code Execution Flaws in Multiple Adobe Software ProductsAdobe calls attention to a pair of code execution bugs in Adobe Commerce and Magento Open Source, a product used to manage online stories. The post Patch Tuesday: Code Execution Flaws in Multiple Adobe Software Products appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprAged D-Link NAS Devices Are Being Exploited by HackersD-Link Tells Owners to Buy a Newer Model Network-attached storage manufacturer D-Link says owners of devices vulnerable to remote takeover exploits should suck it up and buy a replacement. Internet scans have tallied the number of affected NAS devices - a handful of servers relea…DATABREACHTODAY.CO.UK
9 AprGHC-SCW: Ransomware gang stole health data of 533,000 peopleNon-profit healthcare service provider Group Health Cooperative of South Central Wisconsin (GHC-SCW) has disclosed that a ransomware gang breached its network in January and stole documents containing the personal and medical information of over 500,000 individuals. [...]BLEEPINGCOMPUTER.COM
9 Apr KEVAutomattic buys Beeper for $125MM, launches closed-source "privacy" appsubmitted by delirious_owl to securitynews 1 points | 0 comments https://techcrunch.com/2024/04/09/wordpress-com-owner-automattic-acquires-multi-service-messaging-app-beeper-for-125m/ Curious how none of the coverage of this purchase mention that the app isn’t open-source, which …TECHCRUNCH.COM
9 AprDronepocalypse, Microsoft, DLINK, Home Depot, Phishing, NIST, VenomRat, Josh Marpet - SWN #376Dronepocalypse, Privacy, Microsoft, DLINK, Home Depot, Phishing, NIST, VenomRat, Josh Marpet, and more, are on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-376YOUTUBE.COM
9 AprMicrosoft Releases April 2024 Security UpdatesMicrosoft released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.   Users and administrators are encouraged to review the following and apply the necess…CISA.GOV
9 AprAdobe Releases Security Updates for Multiple ProductsAdobe has released security updates to address multiple vulnerabilities in Adobe software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Users and administrators are encouraged to review the following Adobe Security Bullet…CISA.GOV
9 AprCritical Rust flaw enables Windows command injection attacksThreat actors can exploit a security vulnerability in the Rust standard library to target Windows systems in command injection attacks. [...]BLEEPINGCOMPUTER.COM
9 AprApril 2024 Microsoft Patch Tuesday Summary, (Tue, Apr 9th)This update covers a total of 157 vulnerabilities. Seven of these vulnerabilities are Chromium vulnerabilities affecting Microsoft&#;x26;#;39;s Edge browser. However, only three of these vulnerabilities are considered critical. One of the vulnerabiliti…ISC.SANS.EDU
9 AprResearchers uncover evasion data exfiltration techniques that can be exploited in SharePointResearchers have discovered two techniques employed in SharePoint that allow users to circumvent audit logs and avoid triggering download events while exfiltrating files. “These techniques can bypass the detection and enforcement policies of traditional tools, such as cloud acces…CSOONLINE.COM
9 Apr KEVMicrosoft fixes two Windows zero-days exploited in malware attacksMicrosoft has fixed two actively exploited zero-day vulnerabilities during the April 2024 Patch Tuesday, although the company failed to initially tag them as such. [...]BLEEPINGCOMPUTER.COM
9 AprCritical Patches Issued for Microsoft Products, April 09, 2024Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
📋 SECURITY BULLETINS 4[−]
9 AprICS Patch Tuesday: Siemens Addresses Palo Alto Networks Product VulnerabilitiesSiemens and Schneider Electric release their ICS Patch Tuesday advisories for April 2024, informing customers about dozens of vulnerabilities. The post ICS Patch Tuesday: Siemens Addresses Palo Alto Networks Product Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprCohesity partners with Intel to solve insider threat challengesAI-powered data security and management company Cohesity has announced plans to bring Intel’s confidential computing capabilities to the Cohesity Data Cloud. With this collaboration, Cohesity and Intel aim to tackle a significant cybersecurity concern for CIOs — the issue of insi…CSOONLINE.COM
9 AprMicrosoft Plugs Gaping Hole in Azure Kubernetes Service Confidential ContainersPatch Tuesday: Microsoft warns that unauthenticated hackers can take complete control of Azure Kubernetes clusters. The post Microsoft Plugs Gaping Hole in Azure Kubernetes Service Confidential Containers appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprApril’s Patch Tuesday Brings Record Number of FixesIf only Patch Tuesdays came around infrequently -- like total solar eclipse rare -- instead of just creeping up on us each month like The Man in the Moon. Although to be fair, it would be tough for Microsoft to eclipse the number of vulnerabilities fixed in this month's patch bat…KREBSONSECURITY.COM
📢 SECURITY ADVISORIES 8[−]
9 AprSprinto raises $20M to bring automation to security compliance managementSprinto, a startup offering a security compliance and risk platform, has raised $20 million in new investment led by Accel. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
9 AprUS Cyber Safety Review Board on the 2023 Microsoft Exchange HackUS Cyber Safety Review Board released a report on the summer 2023 hack of Microsoft Exchange by China. It was a serious attack that From the executive summary: The Board finds that this intrusion was preventable and should never have occurred. The Board also concludes that Micros…SCHNEIER.COM
🔥 INCIDENT REPORTING 15[−]
9 AprKaspersky Club - 55,971 breached accountsIn March 2024, the independent fan forum Kaspersky Club suffered a data breach . The incident exposed 56k unique email addresses alongside usernames, IP addresses and passwords stored as either MD5 or bcrypt hashes.HAVEIBEENPWNED.COM
9 AprHackers Deploy Crypto Drainers on Thousands of WordPress SitesAccording to cybersecurity researcher MalwareHunterTeam, the threat actors have now begun monetizing the pool of compromised WordPress sites to display pop-ups promoting fake NFT offers and crypto discounts.BLEEPINGCOMPUTER.COM
9 AprCyber Attack on Consulting Firm Exposes DOJ Data of 341,000 PeopleGreylock McKinnon Associates, a prominent consulting firm, has reported a cyber attack that exposed personal data belonging to 341,000 individuals, including sensitive information from the Department of Justice (DOJ). Greylock McKinnon Associates, located at 75 Park Plaza, Boston…GBHACKERS.COM
9 AprTargus Hacked: Attackers Gain Access to File ServersTargus International, LLC and its affiliates fell victim to a sophisticated cyberattack. The company, an indirect subsidiary of B. Riley Financial, Inc., announced that an unauthorized entity breached its file systems, prompting an immediate and robust response to mitigate the da…GBHACKERS.COM
9 AprSophos Named Best MSP Solution by SE LabsSophos has been recognized for enabling MSPs to effectively defend customers against today’s complex cyberattacks.SOPHOS.COM
9 AprCVS Group Restoring Systems Impacted by CyberattackVeterinary services provider CVS Group is restoring systems after a cyberattack disrupted its UK operations. The post CVS Group Restoring Systems Impacted by Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprDOJ-Collected Information Exposed in Data Breach Affecting 340,000Economic analysis and litigation support firm GMA says personal and medical information was stolen in a May 2023 data breach. The post DOJ-Collected Information Exposed in Data Breach Affecting 340,000 appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprSecond Ransomware Group Extorting Change HealthcareRansomHub is extorting Change Healthcare, threatening to release data stolen in a February 2024 BlackCat ransomware attack. The post Second Ransomware Group Extorting Change Healthcare appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprCL0P's Ransomware Rampage - Security Measures for 20242023 CL0P Growth  Emerging in early 2019, CL0P was first introduced as a more advanced version of its predecessor the ‘CryptoMix’ ransomware, brought about by its owner CL0P ransomware, a cybercrime organisation. Over the years the group remained active with significant camp…THEHACKERNEWS.COM
9 AprRansomware gang’s new extortion trick? Calling the front deskRansomware gangs are increasingly calling up victim organizations to extort and intimidate rank-and-file employees. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
9 AprOWASP Breach, Types of Prompt Injection, Device-Bound Sessions, ASVS & APIs - ASW #280OWASP leaks resumes, defining different types of prompt injection, a secure design example in device-bound sessions, turning an ASVS requirement into practice, Ivanti has its 2000s-era Microsoft moment, HTTP/2 CONTINUATION flood, and more! Visit https://www.securityweekly.com/asw…YOUTUBE.COM
9 AprMicrosoft Two-Step Phishing Campaign Targets LinkedIn UsersA new LinkedIn threat combines breached users’ accounts and an evasive 2-step phishing attack. A recent Python-based infostealer called Snake targets Facebook users with malicious messages.PERCEPTION-POINT.IO
9 AprTips for a Successful Cyber Resilience Program - Olusegun Opeyemi-Ajayi - CSP #169The cybersecurity threat landscape is constantly evolving, and experience has shown that everyone and every organization is prone to being breached. How do you prepare for what seems inevitable? You assume breach and plan accordingly. Cyber resilience has become a top priority as…YOUTUBE.COM
9 AprFirm Says Medicare Info Obtained From DOJ Breached in AttackNearly 342,000 Affected; Health Data Incident Isn't Covered by HIPAA Rules A cyberattack on a Boston-based consulting firm that provides litigation support services to the U.S. Department of Justice in its investigations has potentially compromised Medicare numbers and other heal…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 19[−]
9 AprISC Stormcast For Tuesday, April 9th, 2024 https://isc.sans.edu/podcastdetail/8930, (Tue, Apr 9th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
9 AprExploring How Penetration Tests Are Classified – Pentesting Aspirant Guide 2024In the dynamic and ever-evolving landscape of cyber security defenses, enterprise-grade penetration testing is one of the most crucial practices for organizations to adopt. With cyber criminals operating on a far more sophisticated level than ever, continuous and multi-layered se…GBHACKERS.COM
9 AprStrikeReady Raises $12M to Build AI-Powered Security Command CenterStrikeReady, an early-stage Silicon Valley startup working on technology to modernize cybersecurity command centers, has banked $12 million in new financing from 33N Ventures. The Palo Alto, Calif.-based StrikeReady said the Series A included equity interests for Hitachi Ventures…SECURITYWEEK.COM
9 AprAll The Ways the Internet is Surveilling YouYour personal information is continuously harvested and analyzed by countless data brokers eager to sell to the highest bidder. From your name to your online activities, to your employment details and even your real-time location   —  all are on the market for anyone in…KNOWBE4.COM
9 AprEntering the Next Chapter of SASE at InterSECt 2024Join Palo Alto Networks at InterSECt 2024 to learn about the next chapter in SASE innovations to better protect your business, data, apps and users. The post Entering the Next Chapter of SASE at InterSECt 2024 appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
9 AprSAP’s April 2024 Updates Patch High-Severity VulnerabilitiesSAP has released 12 new and updated security notes on April 2024 Security Patch Day, including three notes dealing with high-severity vulnerabilities. The post SAP’s April 2024 Updates Patch High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprAhoi Attacks – New Attack Breaking VMs With Malicious InterruptsAhoy, which is often associated with communicating to ships, has now been playfully adopted in pirate language. We coin ‘Ahoi,’ an anagram of ‘Iago,’ to pay tribute to research on interface attacks with TEEs. Confidential computing, also referred to as tru…GBHACKERS.COM
9 AprHackers Targeting Human Rights Activists in Morocco and Western SaharaHuman rights activists in Morocco and the Western Sahara region are the targets of a new threat actor that leverages phishing attacks to trick victims into installing bogus Android apps and serve credential harvesting pages for Windows users. Cisco Talos is tracking the…THEHACKERNEWS.COM
9 AprData Security Firm Cyera Raises $300 Million at $1.4 Billion ValuationData security company Cyera’s latest $300 million funding round brings the total raised by the firm to $460 million, at unicorn valuation. The post Data Security Firm Cyera Raises $300 Million at $1.4 Billion Valuation appeared first on SecurityWeek .SECURITYWEEK.COM
9 AprStreamline Threat Hunting: Shortemall Automates Short URL Analysis with a Clicksubmitted by testeronious to security 1 points | 0 comments https://github.com/osintmatter/shortemallGITHUB.COM
9 AprWhat Cisco's Purchase of Splunk Means for Cybersecurity, AIJeetu Patel on How Buying Splunk Will Fortify Cisco's Security, AI and Data Muscle Executive Vice President and General Manager Jeetu Patel explains how Cisco's $28 billion acquisition of Splunk will transform the company's security practice to bring in advanced AI, improve data …DATABREACHTODAY.CO.UK
9 AprHow to Use Cyber Threat Intelligence ? 4 TI Categories to Learn SOC/DIFR TeamCyber Threat Intelligence (CTI) is a process that actively gathers and analyzes information on potential cyber threats, including Indicators of Compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) used by attackers, along with their goals and capabilities. The ultimat…GBHACKERS.COM
9 AprCritical Improvements To The Seven Most Common Pieces of Cybersecurity AdviceI have been in the cybersecurity industry for over 35 years and I am the author of 14 books and over 1,400 articles on cybersecurity.KNOWBE4.COM
9 AprNew Phishing-as-a-Service (PhaaS) platform, 'Tycoon 2FA', Targets Microsoft 365 and Gmail AccountsA new PhaaS service brings the power of bypassing multi-factor authentication (MFA) to the world’s most-used email platforms.KNOWBE4.COM
9 AprUkrainian security service’s cyber chief suspended following media investigationsubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://therecord.media/ukraine-cybersecurity-sbu-illia-vitiuk-suspendedTHERECORD.MEDIA
9 AprUS Bipartisan Privacy Bill Contains Cybersecurity MandatesAmerican Privacy Rights Act Has Genuine Chance of Becoming Law A bipartisan privacy proposal in the U.S. Congress backed by a key Senate Democrat and her House counterpart contains provisions that would place vast swaths of the American economy under new cybersecurity mandates. S…DATABREACHTODAY.CO.UK
9 AprCyera Gets $300M at $1.4B Valuation to Fuel Safe AI AdoptionSeries C Funding Round Aims to Transform Data Protection, Empower Safe Use of AI Cyera completed a $300 million funding round led by Coatue to fortify data security and facilitate safer AI adoption across enterprises. By consolidating data protection measures, Cyera hopes to addr…DATABREACHTODAY.CO.UK
9 AprWhy security orchestration, automation and response (SOAR) is fundamental to a security platformPlacing SOAR at the heart of a security platform helps teams extend and maximize value across the ecosystem and to any security process while working in a centralized, coordinated manner. The post Why security orchestration, automation and response (SOAR) is fundamental to a secu…SECURITYINTELLIGENCE.COM
🌐 CYBER THREAT LANDSCAPE 5[−]
9 AprAttackers Using Obfuscation Tools to Deliver Multi-Stage Malware via Invoice PhishingCybersecurity researchers have discovered an intricate multi-stage attack that leverages invoice-themed phishing decoys to deliver a wide range of malware such as Venom RAT, Remcos RAT, XWorm, NanoCore RAT, and a stealer that targets crypto wallets. The email messages come w…THEHACKERNEWS.COM
9 AprScrubCrypt Deploys VenomRAT with an Arsenal of PluginsCybersecurity researchers have discovered an intricate multi-stage attack that leverages invoice-themed phishing decoys to deliver a wide range of malware such as Venom RAT, Remcos RAT, XWorm, NanoCore RAT, and a stealer that targets crypto wallets.FORTINET.COM
9 AprUS Health Deptarment Warns Hospitals of Hackers Targeting IT Help DesksThe U.S. Department of Health and Human Services (HHS) warns that hackers are now using social engineering tactics to target IT help desks across the Healthcare and Public Health (HPH) sector.BLEEPINGCOMPUTER.COM
9 Apr10-Year-Old 'RUBYCARP' Romanian Hacker Group Surfaces with BotnetA threat group of suspected Romanian origin called RUBYCARP has been observed maintaining a long-running botnet for carrying out crypto mining, distributed denial-of-service (DDoS), and phishing attacks. The group, believed to be active for at least 10 years, employs th…THEHACKERNEWS.COM
9 AprSmoke and (screen) mirrors: A strange signed backdoorSophos X-Ops discovers a curious backdoored (and signed) executable, masquerading as something else entirelySOPHOS.COM
📡 INFOSEC NEWS 19[−]
9 AprAutomating Pikabot’s String DeobfuscationPrevious versions of Pikabot used advanced string encryption techniques, which have been replaced with simpler algorithms. Previously, the strings were encrypted using a combination of AES-CBC and RC4 algorithms.ZSCALER.COM
9 AprCybercriminal Adoption of Browser FingerprintingNumerous pieces of data can be collected as a part of fingerprinting, including Time zone, Language settings, IP address, Cookie settings, Screen resolution, Browser privacy, and User-agent string.HELPNETSECURITY.COM
9 AprAI data security startup Cyera confirms $300M raise at a $1.4B valuationArtificial intelligence continues to be the biggest threat but also the biggest promise in the world of cybersecurity. Today, one of the startups tackling both the opportunity and the challenge is announcing a major round of funding. Cyera has built an AI-based platform to help o…TECHCRUNCH.COM
9 AprGoogle injects generative AI into its cloud security toolsMany of the announcements had to do with Gemini, Google's flagship family of generative AI models. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
9 AprChrome Enterprise goes Premium with new security and management featuresWith Chrome Enterprise, IT departments get the ability to manage employees' browser settings, the extensions they install and web apps they use. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
9 AprPhishing Deception - Suspended Domains Reveal Malicious Payload for Latin American RegionThe phishing email contained a ZIP file attachment that when extracted reveals an HTML file that leads to a malicious file download posing as an invoice. The email header has an email address format that uses the domain ‘temporary[.]link’.TRUSTWAVE.COM
9 AprX adds support for passkeys globally on iOSX, formerly Twitter, is rolling out support for passkeys, a new and more secure login method compared with traditional passwords, to all iOS users globally. The option had first debuted in January, but only for iOS users in the U.S. In an update to the X @Safety account on Monday…TECHCRUNCH.COM
9 AprHow to verify the authenticity and origin of photos and videos | Kaspersky official blogAn in-depth look at ways to verify the authenticity of an image: from a conventional search to the new C2PA standard.KASPERSKY.COM
9 AprOver 90,000 LG Smart TVs may be exposed to remote attacksSecurity researchers at Bitdefender have discovered four vulnerabilities impacting multiple versions of WebOS, the operating system used in LG smart TVs. [...]BLEEPINGCOMPUTER.COM
9 AprNew SharePoint flaws help hackers evade detection when stealing filesResearchers have discovered two techniques that could enable attackers to bypass audit logs or generate less severe entries when downloading files from SharePoint. [...]BLEEPINGCOMPUTER.COM
9 Apr KEVEvolving Threats Facing Robotic and Other Medical GearRobotic medical devices, such as surgical gear, offer great potential to improve patient care, but the cyber risks associated with these products must be carefully addressed, said Kevin Fu, director of the Archimedes Center for Health Care and Medical Device Cybersecurity at Nort…DATABREACHTODAY.CO.UK
9 AprWindows 11 KB5036893 update released with 29 changes, Moment 5 featuresMicrosoft has released the KB5036893 cumulative update for Windows 11 23H3, which includes 29 changes and fixes and enables the Moment 5 features for every user. [...]BLEEPINGCOMPUTER.COM
9 AprMicrosoft employees exposed internal passwords in security lapseThe tech giant secured a cloud storage server that was inadvertently spilling Microsoft internal data and credentials to the open internet. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
9 AprWindows 10 KB5036892 update released with 23 new fixes, changesMicrosoft has released the KB5036892 cumulative update for Windows 10 21H2 and Windows 10 22H2 with twenty-three changes and two new features. [...]BLEEPINGCOMPUTER.COM
9 AprEmployees Are 'Quiet Quitting' - What Can Employers Do?How Employers and Employees Can Create an Engaging, Satisfying Workplace Culture "Quiet quitting" is when employees strictly adhere to their job descriptions and meticulously avoid any tasks that fall outside their defined responsibilities. Here's how employers and employees can …DATABREACHTODAY.CO.UK
9 AprWhy Claroty Is Considering Going Public at a $3.5B ValuationRubrik Began the IPO Process. Will Cyber-Physical Systems Vendor Claroty Join It? Following Rubrik's announcement that it plans to list on the New York Stock Exchange, another company is considering trying its luck in the public market. Claroty is meeting with underwriters ahead …DATABREACHTODAY.CO.UK