86Articles
9Categories
2024-04-10Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
10 AprCritical 'BatBadBut' Rust Vulnerability Exposes Windows Systems to AttacksA critical security flaw in the Rust standard library could be exploited to target Windows users and stage command injection attacks. The vulnerability, tracked as CVE-2024-24576, has a CVSS score of 10.0, indicating maximum severity. That said, it only impacts scenarios whe…THEHACKERNEWS.COM
10 AprNew Critical Rust Vulnerability Allows Attackers to Inject Commands on Windows SystemsA new critical vulnerability has been discovered in two of the Rust standard libraries, which could allow a threat actor to execute shell commands on vulnerable versions. This vulnerability has been assigned CVE-2024-24576, and its severity has been given as 10.0 (Critical). In t…GBHACKERS.COM
10 AprMicrosoft Patches Two Zero-Days Exploited for Malware DeliveryMicrosoft patches CVE-2024-29988 and CVE-2024-26234, two zero-day vulnerabilities exploited by threat actors to deliver malware. The post Microsoft Patches Two Zero-Days Exploited for Malware Delivery appeared first on SecurityWeek .SECURITYWEEK.COM
10 AprFlaws in 90,000+ LG WebOS TVs Let Attacker’s Completely take Over DevicesBitdefender, the cybersecurity firm, has unveiled a series of critical vulnerabilities in LG’s WebOS TVs, affecting over 91,000 devices worldwide. These flaws, identified as CVE-2023-6317, CVE-2023-6318, CVE-2023-6319, and CVE-2023-6320, could allow attackers to gain unauth…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 24[−]
10 AprFortinet Releases Security Updates for Multiple ProductsFortinet released security updates to address vulnerabilities in multiple products, including OS and FortiProxy. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.  CISA encourages users and administrators to review the fo…CISA.GOV
10 AprMicrosoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days IncludedMicrosoft has released security updates for the month of April 2024 to remediate a record 149 flaws, two of which have come under active exploitation in the wild. Of the 149 flaws, three are rated Critical, 142 are rated Important, three are rated Moderate, and one is rated …THEHACKERNEWS.COM
10 AprWhy global warnings about China’s cyber-espionage matter to CISOsScarcely a week goes by in which one security service or another reveals they have discovered that the People’s Republic of China has been engaged in some sort of skullduggery, be it cyber or human operations targeting individuals, intellectual property, or infrastructure. Chief …CSOONLINE.COM
10 AprVedalia APT Group Exploits Oversized LNK Files in Malware CampaignThe Vedalia APT group has ingeniously utilized LNK files with double extensions, effectively masking the malicious .lnk extension. This tactic deceives users into believing the files are harmless, increasing the likelihood of execution.BROADCOM.COM
10 AprRUBYCARP the SSH Brute Botnet Resurfaces With New ToolsThe cybersecurity community is again on high alert as the notorious botnet group RUBYCARP, known for its SSH brute force attacks, has resurfaced with new tools and tactics. The Sysdig Threat Research Team (Sysdig TRT) has been closely monitoring the activities of this Romanian th…GBHACKERS.COM
10 AprWebinar: Learn How to Stop Hackers from Exploiting Hidden Identity WeaknessesWe all know passwords and firewalls are important, but what about the invisible threats lurking beneath the surface of your systems? Identity Threat Exposures (ITEs) are like secret tunnels for hackers – they make your security way more vulnerable than you think. Think of it like…THEHACKERNEWS.COM
10 AprResearchers Uncover First Native Spectre v2 Exploit Against Linux KernelCybersecurity researchers have disclosed what they say is the "first native Spectre v2 exploit" against the Linux kernel on Intel systems that could be exploited to read sensitive data from the memory. The exploit, called Native Branch History Injection (BHI), can be used to leak…THEHACKERNEWS.COM
10 AprMicrosoft Patch Tuesday: 149 Security Vulnerabilities & Zero-daysOn April Patch Tuesday, Microsoft fixed 149 bugs—one of the biggest security update releases in the company’s history.  Many of its software products, such as Microsoft Office and its SQL Server database package, have fixed vulnerabilities. The majority of vulnerabilit…GBHACKERS.COM
10 AprSidestepping SharePoint Security: Two New Techniques to Evade Exfiltration DetectionThese techniques can bypass the detection and enforcement policies of traditional tools, such as cloud access security brokers, data loss prevention, and SIEMs, by hiding downloads as less suspicious access and sync events.VARONIS.COM
10 AprHands-on Review: Cynomi AI-powered vCISO PlatformThe need for vCISO services is growing. SMBs and SMEs are dealing with more third-party risks, tightening regulatory demands and stringent cyber insurance requirements than ever before. However, they often lack the resources and expertise to hire an in-house security executive te…THEHACKERNEWS.COM
10 AprFortinet Patches Critical RCE Vulnerability in FortiClientLinuxFortinet has released patches for a dozen vulnerabilities, including a critical-severity remote code execution flaw in FortiClientLinux. The post Fortinet Patches Critical RCE Vulnerability in FortiClientLinux appeared first on SecurityWeek .SECURITYWEEK.COM
10 AprBeware: GitHub's Fake Popularity Scam Tricking Developers into Downloading MalwareThreat actors are now taking advantage of GitHub's search functionality to trick unsuspecting users looking for popular repositories into downloading spurious counterparts that serve malware. The latest assault on the open-source software supply chain involves concealing maliciou…THEHACKERNEWS.COM
10 AprAT&T now says data breach impacted 51 million customersAT&T is sending data breach notifications to 51 million former and current customers, warning them that their personal data was exposed in a hacking forum. However, the company has still not disclosed how the data was obtained. [...]BLEEPINGCOMPUTER.COM
10 AprAT&T now says data breach impacted 51 million customersAT&T is sending data breach notifications to 51 million former and current customers, warning them that their personal data was exposed in a hacking forum. However, the company has still not disclosed how the data was obtained. [...]BLEEPINGCOMPUTER.COM
10 AprReal-World Law Enforcement Hack of Hackers End-to-Encrypted Chat MessengerLaw enforcement authorities successfully penetrated EncroChat, an encrypted chat program that is frequently used by criminals, in a ground-breaking operation that has shocked the world of organized crime. This operation led to the arrest of hundreds of individuals involved in ill…GBHACKERS.COM
10 AprNew Spectre v2 attack impacts Linux systems on Intel CPUsResearchers have demonstrated the "first native Spectre v2 exploit" for a new speculative execution side-channel flaw that impacts Linux systems running on many modern Intel processors. [...]BLEEPINGCOMPUTER.COM
10 AprBoys’ club mentality still a barrier to women’s success in cybersecurity careersExclusionary practices in the cybersecurity workplace are keeping women from being recruited, hired, retained, and advanced at the same rate as men. Inferior recognition and disparities in career advancement opportunities are creating a “boys club” culture that is making it harde…CSOONLINE.COM
10 AprAlert! Brute-Force SSH Attacks Rampant in the Wild: New Study From 427 Million Failed SSH Login AttemptsA comprehensive four-year study of brute-force attacks against SSH servers has revealed an alarming increase in the frequency and sophistication of these cyber attacks on internet-connected systems. The research by scientists at the University of Utah provides unprecedented insig…GBHACKERS.COM
10 AprAI tools likely wrote malicious script for threat group targeting German organizationsA recent attack that targeted organizations in Germany deployed a new information-stealer program called Rhadamanthys distributed with the help of a PowerShell script likely created by a large language model (LLM) such as ChatGPT, Gemini or CoPilot, according to a report from sec…CSOONLINE.COM
10 AprMicrosoft-blasting CSRB report offers roadmap for better cloud securityOn March 30, the US Cyber Safety Review Board (CSRB) released its review of the July 2023 Microsoft Exchange Online intrusion by the Chinese state group Storm-0558 , blasting Microsoft for its shoddy security practices and saying the incident “was preventable and should never hav…CSOONLINE.COM
10 AprSilent Surge: The Sudden Rise in Synthetic Business FraudExperts Say Fraud Related to Fake Businesses Has Grown 150% in the Past Year While banks and fraud fighters focus their energies on combating synthetic identities used by individuals, fraudsters are simultaneously establishing fake business entities to exploit the system for more…DATABREACHTODAY.CO.UK
10 AprGovernance, Compliance, and The Digital Supply Chain - Josh Marpet - BTS #27In this episode, we disccuss digital supply chain governance and compliance, featuring Josh Marpet from Guarded Risk, hosted by Paul Asadorian and Alan Alford. Specifically, we discuss: * The importance of understanding and complying with regulations affecting digital supply chai…YOUTUBE.COM
10 AprWhat “next-gen” identity security actually means – and why it’s increasingly essentialWritten by Matt Mills, President, SailPoint From smartphones to video game consoles, people love to throw around the term “next generation.” But what does it actually mean? Well, when the term is applied to a piece of technology, it usually means something that fundamentally chan…CSOONLINE.COM
📋 SECURITY BULLETINS 2[−]
10 AprCyber Security Today, April 10, 2024 - RansomHub gang trying to extort Change Healthcare, large number of Microsoft security updates are released, and moreThis episode reports on a warning to application developers using the Rust language, the need to unplug end of life D-Link NAS devices, and moreCYBERSECURITYTODAY.LIBSYN.COM
10 AprA tumultuous, titanic Patch Tuesday as Microsoft makes some changesThe largest CVE count in recent history rolls outSOPHOS.COM
📢 SECURITY ADVISORIES 9[−]
10 AprSprinto Raises $20 Million for Automated Risk and Compliance PlatformRisk and compliance solutions provider Sprinto has raised $20 million in a Series B funding round led by Accel. The post Sprinto Raises $20 Million for Automated Risk and Compliance Platform appeared first on SecurityWeek .SECURITYWEEK.COM
10 AprGathid’s new access mapping tech promises affordable and streamlined IAMCloud identity solutions provider Gathid has launched its patented identity and access governance platform (also named Gathid) with a unique offering that works on a principle of “gathered identities” to help organizations visualize and manage identities through a directed graph …CSOONLINE.COM
10 AprCypago Announces New Automation Support for AI Security & GovernanceCyber GRC software company Cypago has announced a new automation solution for artificial intelligence (AI) governance, risk management and compliance. This includes implementation of NIST AI RMF and ISO/IEC 42001, the newest AI security and governance frameworks. With more and mo…GBHACKERS.COM
10 AprCISA Releases Malware Next-Gen Analysis System for Public UseCISA's Malware Next-Gen system is now available for any organization to submit malware samples and other suspicious artifacts for analysis. The post CISA Releases Malware Next-Gen Analysis System for Public Use appeared first on SecurityWeek .SECURITYWEEK.COM
10 AprUS CISA Aims to Expand Automated Malware Analysis SupportUS Cyber Defense Agency Scales Next-Generation Malware Analysis Platform The U.S. Cybersecurity and Infrastructure Security Agency has announced an update to its Next-Generation Malware Analysis platform as part of an effort to better provide all government entities - including s…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 11[−]
10 AprNew SharePoint Technique Lets Hackers Bypass Security MeasuresTwo new techniques uncovered in SharePoint enable malicious actors to bypass traditional security measures and exfiltrate sensitive data without triggering standard detection mechanisms. Illicit file downloads can be disguised as harmless activities, making it difficult for cyber…GBHACKERS.COM
10 AprTargus business operations disrupted following cyber attackTargus, the well-known laptop bag and case manufacturer, has been hit by a cyber attack that has interrupted its normal business operations. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
10 AprResearchers Discover New Ransomware Gang ‘Muliaka’ Attacking Russian BusinessesThe gang, which researchers at the Moscow-based cybersecurity company F.A.C.C.T. have dubbed “Muliaka," or Muddy Water in English, has left minimal traces from its attacks but has likely been active since at least December 2023.THERECORD.MEDIA
10 AprGHC-SCW Hack: Ransomware Actors Stolen User’s Personal InformationGroup Health Cooperative of South Central Wisconsin (GHC-SCW) has announced a significant breach in their cybersecurity, leading to unauthorized access and theft of personal information by ransomware actors. This incident has raised alarms about the security measures to protect s…GBHACKERS.COM
10 Apr530k Impacted by Data Breach at Wisconsin Healthcare OrganizationThe personal information of 500,000 people was compromised in a data breach at Group Health Cooperative of South Central Wisconsin. The post 530k Impacted by Data Breach at Wisconsin Healthcare Organization appeared first on SecurityWeek .SECURITYWEEK.COM
10 AprAT&T notifies regulators after customer data breachThe legally required disclosure came a week after AT&T confirmed a cache containing millions of customers' data that leaked online was genuine. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
10 AprAT&T Data Breach Update: 51 Million Customers ImpactedThe recent AT&T data breach impacts 51 million customers, the company tells Maine's attorney general. The post AT&T Data Breach Update: 51 Million Customers Impacted appeared first on SecurityWeek .SECURITYWEEK.COM
10 AprNearly 534,000 Affected in Data Theft at Managed Care OrgWisconsin Nonprofit Says Attackers Also Tried to Encrypt Systems, But They Failed A Wisconsin nonprofit managed care organization is notifying nearly 534,000 individuals that their protected health information was copied and stolen in a recent attack by a "foreign ransomware gang…DATABREACHTODAY.CO.UK
10 AprHalf of UK Firms, Charities Failed to Report Cyber IncidentsSurvey: SMBs, Charities Mostly Targeted With Phishing, Online Impersonation in 2023 Cybercriminals launched 7.78 million attacks against U.K. businesses and nearly 1 million against charity organizations, according to the latest U.K. government survey report. But fewer than half …DATABREACHTODAY.CO.UK
10 AprWiz Buys Startup Gem Security for $350M to Spot Cloud IssuesBuying CDR Startup Gem Will Help Wiz Address Needs of SecOps, Incident Responders Wiz bought a cloud detection and response startup founded by a longtime Israeli Military Intelligence leader to address security operations and incident response use cases. The deal will bring Wiz's…DATABREACHTODAY.CO.UK
10 AprSalvadoran Citizens - 946,989 breached accountsIn April 2024, nearly 6 million records of Salvadoran citizens were published to a popular hacking forum . The data included names, dates of birth, phone numbers, physical addresses and nearly 1M unique email addresses. Further, over 5M corresponding profile photos were also incl…HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 19[−]
10 AprISC Stormcast For Wednesday, April 10th, 2024 https://isc.sans.edu/podcastdetail/8932, (Wed, Apr 10th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
10 AprMicrosoft Cybersecurity Disaster Triggers Customer Doubt, Competitor Opportunitysubmitted by onlinepersona to security 1 points | 0 comments https://accelerationeconomy.com/cloud-wars/microsoft-cybersecurity-disaster-triggers-customer-doubt-competitor-opportunityACCELERATIONECONOMY.COM
10 AprIn Memoriam: Ross Anderson, 1956-2024Last week I posted a short memorial of Ross Anderson. The Communications of the ACM asked me to expand it. Here’s the longer version .SCHNEIER.COM
10 AprWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
10 AprNew Threat Actor Starry Addax Targets Human Rights Defenders in North AfricaAccording to Cisco’s Talos threat research team, Starry Addax has been active since January 2024, orchestrating spear-phishing campaigns aimed at individuals sympathetic to the Sahrawi Arab Democratic Republic (SADR) cause.CYBERSECURITY-HELP.CZ
10 AprThousands of LG TVs Possibly Exposed to Remote HackingMany LG TVs may be vulnerable to remote hacking due to a series of vulnerabilities found by Bitdefender researchers. The post Thousands of LG TVs Possibly Exposed to Remote Hacking appeared first on SecurityWeek .SECURITYWEEK.COM
10 AprWhat should an AI ethics governance framework look like?While the race to achieve generative AI intensifies, the ethical debate surrounding the technology also continues to heat up. And the stakes keep getting higher. As per Gartner, “Organizations are responsible for ensuring that AI projects they develop, deploy or use do not …SECURITYINTELLIGENCE.COM
10 AprBeware of Encrypted Phishing Attack With Weaponized SVG FilesAttackers are now leveraging encrypted phishing emails that utilize Scalable Vector Graphics (SVG) files to execute malicious JavaScript code. The phishing campaign begins with an email masquerading as a notification for a new voice message. Recipients are prompted to click on a …GBHACKERS.COM
10 AprMalicious Visual Studio projects on GitHub push Keyzetsu malwareThreat actors are abusing GitHub automation features and malicious Visual Studio projects to push a new variant of the "Keyzetsu" clipboard-hijacking malware and steal cryptocurrency payments. [...]BLEEPINGCOMPUTER.COM
10 AprResearchers Resurrect Spectre v2 Attack Against Intel CPUsVUSec researchers resurrect Spectre v2 attack, showing that it works against the Linux kernel on the latest-generation Intel CPUs. The post Researchers Resurrect Spectre v2 Attack Against Intel CPUs appeared first on SecurityWeek .SECURITYWEEK.COM
10 Apr'eXotic Visit' Spyware Campaign Targets Android Users in India and PakistanAn active Android malware campaign dubbed eXotic Visit has been primarily targeting users in South Asia, particularly those in India and Pakistan, with malware distributed via dedicated websites and Google Play Store. Slovak cybersecurity firm said the activity, ongoing since Nov…THEHACKERNEWS.COM
10 AprBatBadBut: You can't securely execute commands on Windowssubmitted by testeronious to security 1 points | 0 comments https://flatt.tech/research/posts/batbadbut-you-cant-securely-execute-commands-on-windows/FLATT.TECH
10 AprMalicious PowerShell script pushing malware looks AI-writtenA threat actor is using a PowerShell script that was likely created with the help of an artificial intelligence system such as OpenAI's ChatGPT, Google's Gemini, or Microsoft's CoPilot. [...]BLEEPINGCOMPUTER.COM
10 AprMatch Systems publishes report on the consequences of CBDC implementationMatch Systems, a leading authority in crypto crimes investigations and crypto AML solutions provider, has published a comprehensive analytical report examining the potential implications of Central Bank Digital Currency (CBDC) implementation. In a landscape where the debate betwe…GBHACKERS.COM
10 AprShould We Just Accept the Lies We Get From AI Chatbots?NYC's New Chatbot, Hallucinating LLMs Just Can't Be Fixed, Says Linguistics Expert Employers can now fire an employee who complains about sexual harassment, take a cut of their workers' tips and serve customers cheese nibbled on by rats: at least according to advice doled out by …DATABREACHTODAY.CO.UK
10 AprRussia Tops Global Cybercrime Index, New Study RevealsRussia, Ukraine, China and US All Top 'First-Ever World Cybercrime Index' A new study published by researchers from the universities of Oxford and New South Wales ranks Russia at the top of a global list of cybercrime hot spots and says Ukraine, China, the United States, Nigeria …DATABREACHTODAY.CO.UK
10 AprHow to protect yourself from online harassmentsubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://www.malwarebytes.com/blog/news/2024/04/how-to-protect-yourself-from-online-harassmentMALWAREBYTES.COM
10 AprCybercrime Group Uses Likely AI Script to Load Info StealerProofpoint Spots Novel Threat Against German Organizations A financially motivated threat group used a script apparently coded by artificial intelligence to download an info stealer onto victim computers. The script, used to load the Rhadamanthys info stealer, contains "grammatic…DATABREACHTODAY.CO.UK
10 ApreXotic Visit campaign: Tracing the footprints of Virtual InvadersESET researchers uncovered the eXotic Visit espionage campaign that targets users mainly in India and Pakistan with seemingly innocuous appsWELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
10 Apr91,000 Smart LG TV Devices Vulnerable to Remote TakeoverCybersecurity researchers from Bitdefender discovered critical vulnerabilities in LG TVs running webOS versions 4 through 7. These vulnerabilities could allow attackers to gain complete control over the TV, steal data, or install malware.HACKREAD.COM
10 AprRaspberry Robin Returns: New Malware Campaign Spreading Through WSF FilesCybersecurity researchers have discovered a new Raspberry Robin campaign wave that propagates the malware through malicious Windows Script Files (WSFs) since March 2024. "Historically, Raspberry Robin was known to spread through removable media like USB drives, but over time its …THEHACKERNEWS.COM
10 AprTransatlantic Cable podcast episode 342 | Kaspersky official blogEpisode 342 of the Kaspersky podcast focuses on politics, AI meddling, YouTube and a governmental honey trap.KASPERSKY.COM
🎙️ PODCASTS 1[−]
10 AprSmashing Security podcast #367: WhatsApp at Westminster, unhealthy AI, and Drew BarrymoreMPs aren't just getting excited about an upcoming election, but also the fruity WhatsApp messages they're receiving, can we trust AI with our health, and who on earth is pretending to be a producer for the Drew Barrymore TV show? All this and much much more is discussed in the la…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 13[−]
10 AprNovel Ahoi Attacks Could Compromise Confidential VMsThe researchers presented two variations of what they call Ahoi attacks. One of them, dubbed Heckler, involves a malicious hypervisor injecting interrupts to alter data and control flow, breaking the integrity and confidentiality of CVMs.SCMAGAZINE.COM
10 AprProton picks up Standard Notes to deepen its pro-privacy portfolioBy adding Standard Notes to its portfolio of apps, Proton will deepen its reach with an engaged community of pro-privacy users. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
10 AprKaspersky Next: our new portfolio | Kaspersky official blogKaspersky rolls out its new line of products for corporate users — Kaspersky Next.KASPERSKY.COM
10 AprResearch Unearths RUBYCARP’s Multi-Miner Assault on CryptoOne of the key findings from the technical write-up, published by Sysdig today, is the group’s use of a script capable of simultaneously deploying multiple cryptocurrency miners.INFOSECURITY-MAGAZINE.COM
10 AprReusing passwords: The hidden cost of conveniencePassword reuse might seem like a small problem — but it can have far-reaching consequences for an organization's cybersecurity. Learn more from Specops Software about what IT teams can do to combat the problem. [...]BLEEPINGCOMPUTER.COM
10 AprTwitter’s Clumsy Pivot to X.com Is a Gift to PhishersOn April 9, Twitter/X began automatically modifying links that mention "twitter.com" to redirect to "x.com" instead. But over the past 48 hours, dozens of new domain names have been registered that demonstrate how this change could be used to craft convincing phishing links -- su…KREBSONSECURITY.COM
10 AprDOJ Data On 340,000 Individuals StolenPACKETSTORMSECURITY.COM
10 AprGoogle Workspace rolls out multi-admin approval feature for risky changesGoogle is rolling out a new Workspace feature that requires multiple admins to approve high-risk setting changes to prevent unauthorized or accidental modifications that could reduce security. [...]BLEEPINGCOMPUTER.COM
10 AprChrome Enterprise gets Premium security but you have to pay for itGoogle has announced a new version of its browser for organizations, Chrome Enterprise Premium, which comes with extended security controls for a monthly fee per user. [...]BLEEPINGCOMPUTER.COM