111Articles
8Categories
2024-04-12Date
🚨 CISA KEV 3[−]
12 Apr KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-3400 Palo Alto Networks PAN-OS Command Injection Vulnerability These types of vulnerabilities are frequent attack vectors for malicious c…CISA.GOV
12 Apr KEVPalo Alto Networks Releases Guidance for Vulnerability in PAN-OS, CVE-2024-3400Palo Alto Networks has released workaround guidance for a command injection vulnerability (CVE-2024-3400) affecting PAN-OS versions 10.2, 11.0, and 11.1. Palo Alto Networks has reported active exploitation of this vulnerability in the wild.  CISA encourages users and adminis…CISA.GOV
12 Apr KEVAttackers exploit critical zero-day flaw in Palo Alto Networks firewallsNetwork security vendor Palo Alto Networks released mitigation instructions for an actively exploited vulnerability in PAN-OS, the software that powers its next-generation firewall (NGFW) products. The company is still working on developing software patches. The vulnerability, tr…CSOONLINE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 13[−]
12 Apr KEVZero-Day Alert: Critical Palo Alto Networks PAN-OS Flaw Under Active AttackPalo Alto Networks is warning that a critical flaw impacting its PAN-OS software used in its GlobalProtect gateways is being exploited in the wild. Tracked as CVE-2024-3400, the issue has a CVSS score of 10.0, indicating maximum severity. "A command injection vulnerability i…THEHACKERNEWS.COM
12 AprPalo Alto Networks Fixed Multiple DoS Bugs in its FirewallsPalo Alto Networks released security updates to address several high-severity vulnerabilities in its PAN-OS operating system, including CVE-2024-3385, CVE-2024-3384, CVE-2024-3382.SECURITYAFFAIRS.COM
12 AprExploitation of Unpatched D-Link NAS Device Vulnerabilities SoarsSecond identifier, CVE-2024-3272, assigned to unpatched D-Link NAS device vulnerabilities, just as exploitation attempts soar. The post Exploitation of Unpatched D-Link NAS Device Vulnerabilities Soars appeared first on SecurityWeek .SECURITYWEEK.COM
12 AprMicrosoft Fixed Two Zero-Day Flaws Exploited in Malware AttacksMicrosoft addressed two zero-day vulnerabilities, tracked as CVE-2024-29988 and CVE-2024-26234, that threat actors are exploiting to deliver malware payloads on vulnerable systems.SECURITYAFFAIRS.COM
12 AprCitrix Releases Security Updates for XenServer and Citrix HypervisorCitrix released security updates to address multiple vulnerabilities in XenServer and Citrix Hypervisor. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.  CISA encourages users and administrators to review and apply the n…CISA.GOV
12 Apr KEVAlert! Palo Alto RCE Zero-day Vulnerability Actively Exploited in the WildIn a recent security bulletin, Palo Alto Networks disclosed a critical vulnerability in its GlobalProtect Gateway, identified as CVE-2024-3400. This flaw, rooted in the PAN-OS operating system, has already been exploited in a limited number of attacks, raising alarms across the c…GBHACKERS.COM
12 AprCVE 10.0 vulnerability in PAN-OSsubmitted by testeronious to security 1 points | 0 comments https://security.paloaltonetworks.com/CVE-2024-3400SECURITY.PALOALTONETWORKS.COM
12 Apr KEVPalo Alto Networks warns of zero-day in VPN productsubmitted by c0mmando to netsec 1 points | 0 comments https://therecord.media/vpn-zero-day-palo-alto-networks Cybersecurity giant Palo Alto Networks is alerting customers that a zero-day vulnerability in its firewall tool is being exploited by hackers. The company released an adv…THERECORD.MEDIA
12 AprTool finds new ways to exploit Spectre holes in Intel CPUssubmitted by c0mmando to netsec 1 points | 1 comments https://www.theregister.com/2024/04/10/intel_cpus_native_spectre_attacks/ Intel CPU cores remain vulnerable to Spectre data-leaking attacks, say academics at VU Amsterdam. We’re told mitigations put in place at the software an…THEREGISTER.COM
12 AprCVE-2024-3400 exploited: Unit 42, Volexity share more details about the attacks - Help Net Securitysubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2024/04/12/palo-alto-networks-firewalls-cve-2024-3400-exploited/HELPNETSECURITY.COM
12 AprChromium: CVE-2024-3157 Out of bounds write in CompositingThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
12 AprChromium: CVE-2024-3515 Use after free in DawnThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
12 AprChromium: CVE-2024-3516 Heap buffer overflow in ANGLEThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 32[−]
12 AprISC2 study pegs average US cybersecurity salary at $147K, up from $119K in 2021Salaries for cybersecurity professionals have jumped more than 23% since 2021, according to the 2024 annual workforce study from ISC2, the organization that maintains and administers the CISSP certification exam. The average salary for a cybersecurity professional in 2023 was $14…CSOONLINE.COM
12 AprHow Exposure Management Elevates Cyber ResilienceAttackers are adept at identifying and exploiting the most cost-effective methods of compromise, highlighting the critical need for organizations to implement asset identification and understand assets’ security posture in relation to the network.HELPNETSECURITY.COM
12 AprNew Technique Detected in an Open Source Supply Chain Attacksubmitted by kid to cybersecurity 2 points | 0 comments https://checkmarx.com/blog/new-technique-to-trick-developers-detected-in-an-open-source-supply-chain-attack/CHECKMARX.COM
12 AprApple Warns of 'Mercenary Attack' on iPhones. What You Should Knowsubmitted by kid to cybersecurity 3 points | 0 comments https://www.cnet.com/tech/mobile/apple-alerts-iphone-users-of-mercenary-attack-what-you-should-know/CNET.COM
12 AprPalo Alto Networks Warns of Exploited Firewall VulnerabilityPalo Alto Networks warns of limited exploitation of a critical command injection vulnerability leading to code execution on firewalls. The post Palo Alto Networks Warns of Exploited Firewall Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
12 Apr‘BatBadBut’ Command Injection Vulnerability Affects Multiple Programming LanguagesA critical vulnerability in multiple programming languages allows attackers to inject commands in Windows applications. The post ‘BatBadBut’ Command Injection Vulnerability Affects Multiple Programming Languages appeared first on SecurityWeek .SECURITYWEEK.COM
12 Apr KEVPalo Alto Networks warns of PAN-OS firewall zero-day used in attacksToday, Palo Alto Networks warns that an unpatched critical command injection vulnerability in its PAN-OS firewall is being actively exploited in attacks. [...]BLEEPINGCOMPUTER.COM
12 Apr6-year-old Lighttpd Flaw Impacts Intel And Lenovo ServersThe software supply chain is filled with various challenges, such as untracked security vulnerabilities in open-source components and inconsistent update uptake. The lighttpd vulnerability was silently fixed in 2018 without any CVE assignment in a single instance of vulnerability…GBHACKERS.COM
12 AprApple Boosts Spyware Alerts For Mercenary AttacksApple has updated its documentation related to its warning system for mercenary spyware threats, now specifying that it alerts users when they may have been individually targeted by such attacks.INFOSECURITY-MAGAZINE.COM
12 AprCISA opens its malware analysis and threat hunting tool for public useThe US Cybersecurity and Infrastructure Security Agency (CISA) is opening a government tool for analyzing malware to all. Malware Next-Gen is already used by US government agencies to submit malware samples and other suspicious artifacts for examination by CISA analysts in a secu…CSOONLINE.COM
12 AprIn Other News: Moscow Sewage Hack, Women in Cybersecurity Report, Dam Security ConcernsNoteworthy stories that might have slipped under the radar: Moscow sewage system hacked, a new women in cybersecurity report, PasteHub domain seized by law enforcement. The post In Other News: Moscow Sewage Hack, Women in Cybersecurity Report, Dam Security Concerns appeared first…SECURITYWEEK.COM
12 AprJuniper Releases Security Bulletin for Multiple Juniper ProductsJuniper has released security updates to address multiple vulnerabilities in Junos OS, Junos OS Evolved, Paragon Active Assurance and Junos OS: EX4300 Series. A cyber threat actor could exploit some of these vulnerabilities to cause a denial-of-service condition. Users …CISA.GOV
12 AprHow Ukraine’s cyber police fights back against Russia’s hackersOn February 24, 2022, Russian forces invaded Ukraine. Since then, life in the country has changed for everyone. For the Ukrainian forces who had to defend their country, for the regular citizens who had to withstand invading forces and constant shelling, and for the Cyberpolice o…TECHCRUNCH.COM
12 AprWiz Acquires Gem Security, Pushes Security Tools ConsolidationFinancial terms of the translation were not disclosed but reports out of Tel Aviv valued the deal in the range of $350 million. The post Wiz Acquires Gem Security, Pushes Security Tools Consolidation appeared first on SecurityWeek .SECURITYWEEK.COM
12 AprHow a 9.8 critical security vulnerability in ZeroMQ was found (with mostly pure luck)submitted by testeronious to security 1 points | 0 comments https://fangpenlin.com/posts/2024/04/07/how-i-discovered-a-9-point-8-critical-security-vulnerability-in-zeromq-with-mostly-pure-luck/FANGPENLIN.COM
12 AprCybersecurity Decluttered: A Journey to ConsolidationLearn how far cybersecurity has come from scattered resources to consolidation the future.TRENDMICRO.COM
12 AprCISA orders US government agencies to check email systems for signs of Russian compromiseRussian nation-state hackers have exploited a recent Microsoft email compromise to steal the emails of government agencies, the US Cybersecurity and Infrastructure Security Agency (CISA) has reiterated in a new alert. The warning ordered agencies to urgently check their email sys…CSOONLINE.COM
12 AprCurrent and former Polish officials face probe of alleged spyware abusesubmitted by c0mmando to netsec 1 points | 0 comments https://therecord.media/poland-pegasus-spyware-government-investigation Polish prosecutors are now actively building a case against current and former government officials believed to have deployed powerful commercial spyware …THERECORD.MEDIA
12 AprApple notifies users in 92 countries about mercenary spyware attackssubmitted by c0mmando to netsec 1 points | 0 comments https://therecord.media/apple-spyware-notifications-92-countries Apple has sent a new batch of threat notifications to users in 92 countries who may have been targeted by mercenary spyware attacks, according to several media r…THERECORD.MEDIA
12 AprTelegram fixes Windows app zero-day caused by file extension typoTelegram fixed a zero-day vulnerability in its Windows desktop application that could be used to bypass security warnings and automatically launch Python scripts. [...]BLEEPINGCOMPUTER.COM
12 AprCyber Security Today, Week in Review for week ending Friday, April 12, 2024This episode features a discussion on Microsoft's cybersecurity troubles, worries about open source, a warning about abusing IT help desks to launch attacks and moreCYBERSECURITYTODAY.LIBSYN.COM
12 AprSeveral vulnerabilities in LG WebOS. Chained, lead to RCE.submitted by testeronious to security 2 points | 0 comments https://www.bitdefender.com/blog/labs/vulnerabilities-identified-in-lg-webos/BITDEFENDER.COM
12 AprState-Sponsored Hackers Exploit Zero-Day to Backdoor Palo Alto Networks FirewallsA state-sponsored threat actor has been exploiting a zero-day in Palo Alto Networks firewalls for the past two weeks. The post State-Sponsored Hackers Exploit Zero-Day to Backdoor Palo Alto Networks Firewalls appeared first on SecurityWeek .SECURITYWEEK.COM
12 AprA Vulnerability in PAN-OS Could Allow for Arbitrary Code ExecutionA vulnerability has been discovered in PAN-OS that could allow for arbitrary code execution. PAN-OS is the software that runs all Palo Alto Networks next-generation firewalls. Successful exploitation of this vulnerability could allow for arbitrary code execution in the context of…CISECURITY.ORG
12 AprFriday Squid Blogging: The Awfulness of Squid Fishing BoatsIt’s a pretty awful story . As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here .SCHNEIER.COM
12 AprTelegram fixes Windows app zero-day used to launch Python scriptsTelegram fixed a zero-day vulnerability in its Windows desktop application that could be used to bypass security warnings and automatically launch Python scripts. [...]BLEEPINGCOMPUTER.COM
12 AprUS Cyber Command Expanded 'Hunt Forward' Operations in 2023US Cyber Mission Force Led 22 Defensive Cyber Operations in 2023, Commander Says Air Force Gen. Timothy Haugh told the Senate Armed Services Committee the U.S. Cyber Command carried out nearly two dozen defensive cyber operations across the globe in 2023, expanding in size and sc…DATABREACHTODAY.CO.UK
12 AprUK Markets Authority Warns of AI Market Capture by Big TechCMA Says Market Is Becoming more Verticially Integrated The British antitrust authority warned Thursday that the market for foundational models is taking on "winner takes all" dynamics that could entrench a small number of providers. Firms with an outsize presence in offering com…DATABREACHTODAY.CO.UK
12 ApriPhone Users in 92 Countries Targeted by Mercenary Spyware Attackssubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://www.hackread.com/iphone-users-mercenary-spyware-attacks/ Follow us on Twitter (X) @Hackread - Facebook @ /HackreadHACKREAD.COM
📢 SECURITY ADVISORIES 13[−]
12 AprU.S. Federal Agencies Ordered to Hunt for Signs of Microsoft Breach and Mitigate RisksThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday issued an emergency directive (ED 24-02) urging federal agencies to hunt for signs of compromise and enact preventive measures following the recent compromise of Microsoft's systems that led to the theft…THEHACKERNEWS.COM
12 AprMidnight Blizzard’s Microsoft Corporate Email Hack Threatens Federal Agencies: CISA WarnsThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive concerning a breach in Microsoft’s corporate email system. The directive, ED 24-02, outlines the urgent steps required to mitigate the risks posed by Midnight Blizzard, a nation-st…GBHACKERS.COM
12 AprThe Cyber Defense Matrix (CDM) - Wim Remes - 36 minutessubmitted by ashar to security_cpe 2 points | 0 comments https://infosec.pub/pictrs/image/1591a374-aa16-411e-b7a1-c6d52fb6c86f.png The Cyber Defense Matrix (CDM) Organisations need to prove their security credentials – both internally and to auditors, regulators, customers and ot…INFOSEC.PUB
12 AprIT Pros Targeted with Malicious Google Ads for PuTTY, FileZillaAn ongoing malvertising campaign is targeting IT administrators looking to download system utilities such as PuTTY (a free SSH and Telnet client) and FileZilla (a free cross-platform FTP application).HELPNETSECURITY.COM
12 AprIranian MuddyWater Hackers Adopt New C2 Tool 'DarkBeatC2' in Latest CampaignThe Iranian threat actor known as MuddyWater has been attributed to a new command-and-control (C2) infrastructure called DarkBeatC2, becoming the latest such tool in its arsenal after SimpleHarm, MuddyC3, PhonyC2, and MuddyC2Go. "While occasionally switching t…THEHACKERNEWS.COM
12 AprSisence Data Breach, CISA Urges To Reset Login CredentialsIn response to a recent data breach at Sisense, a provider of data analytics services, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) advised customers to reset their login credentials. Sisense’s AI and machine learning-driven analytics platform is us…GBHACKERS.COM
12 AprCISA Alerts Organizations Regarding Cyber Incident at Global Data Analytics CompanyCISA is taking an active role in collaborating with private industry partners to respond to this incident, especially as it relates to impacted critical infrastructure sector organizations.CISA.GOV
12 AprAmerican Privacy Rights Bill: Implications for Health SectorHow Proposed Data Privacy Law Could Affect the Handling of Health Information The proposed bipartisan, bicameral American Privacy Rights Act poses a variety of potential implications to the healthcare sector and other groups that handle health-related data - if the legislation ga…DATABREACHTODAY.CO.UK
12 AprCombadges, SISENSE, Microsoft, CISA, Lastpass, Palo Alto, Broadband, Aaran and More - SWN #377Combadges, SISENSE, Microsoft, Malware Next-Gen, Lastpass, Palo Alto, Broadband, Aaran Leyland, and More, on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-377YOUTUBE.COM
12 AprCISA Briefs World Travel Organization Expedia with Advice on SecurityBringing expertise from the cybersecurity and protective security worlds, three of CISA Region 10’s advisors presented to a worldwide audience recently at the Expedia Group in SeattleCISA.GOV
12 AprCISA Partners with State’s K-12 Schools Fighting Cyberattacks to Keep Kids LearningCISA's Cybersecurity Advisors across the nation are continuing to focus on our schools, a significant target of malicious cyber intruders.CISA.GOV
12 AprCISA's Malware Analysis Platform Could Foster Better Threat Intelsubmitted by Lanky_Pomegranate530 to cybersecurity 2 points | 0 comments https://www.darkreading.com/vulnerabilities-threats/cisa-s-new-malware-analysis-platform-could-enable-better-threat-intelligence But just how the government differentiates its platform from similar private-s…DARKREADING.COM
🔥 INCIDENT REPORTING 19[−]
12 AprBuilding a Live SIFT USB with Persistence, (Fri, Apr 12th)The SIFT Workstation&#;x26;#;x5b; 1 &#;x26;#;x5d; is a well-known Linux distribution oriented to forensics and incident response tasks. It is used in many SANS training as the default platform. This is also my preferred solu…ISC.SANS.EDU
12 AprCyber Attack Surge by 28%:Education Sector at High RiskIn Q1 2024, Check Point Research (CPR) witnessed a notable increase in the average number of cyber attacks per organization per week, reaching 1308. This marked a 5% increase from Q1 2023 and a 28% increase from the last quarter of 2023. This escalation is not just a number but a…GBHACKERS.COM
12 AprHackers Employ Deepfake Technology To Impersonate as LastPass CEOA LastPass employee recently became the target of an attempted fraud involving sophisticated audio deepfake technology. This incident underscores the urgent need for heightened cybersecurity awareness and the implementation of robust verification processes within organizations. T…GBHACKERS.COM
12 AprUS think tank Heritage Foundation hit by cyberattackFounded in 1973, the Washington DC-based Heritage Foundation and supports and lobbies on conservative issues. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
12 AprCyber Attacks Could Cause Global Bank RunsThe International Monetary Fund (IMF) has warned that severe cyber attacks against financial institutions could lead to major bank runs and market selloffs. While this hasn’t happened yet, the IMF has observed these effects on a smaller scale after a cyber attack hits a bank.KNOWBE4.COM
12 AprUK Councils Under Cyber Attack: The Urgent Need for a Culture of Cybersecurity and ResilienceThe very fabric that stitches our society together — our councils and local governing bodies — is under a silent siege from cyber attacks. The recent ransomware assault on Leicester Council is  another real life cybercrime added to a growing list of attacks in the UK.KNOWBE4.COM
12 AprIntel and Lenovo Servers Impacted by 6-Year-Old BMC FlawThe security issue could lead to the exfiltration of process memory addresses, which could help attackers bypass protection mechanisms like Address Space Layout Randomization (ASLR).BLEEPINGCOMPUTER.COM
12 AprRoku warns 576,000 accounts hacked in new credential stuffing attacksRoku warns that 576,000 accounts were hacked in new credential stuffing attacks after disclosing another incident that compromised 15,000 accounts in early March. [...]BLEEPINGCOMPUTER.COM
12 AprPopular Rust Crate liblzma-sys Compromised with XZ Utils Backdoor Files"Test files" associated with the XZ Utils backdoor have made their way to a Rust crate known as liblzma-sys, new findings from Phylum reveal. liblzma-sys, which has been downloaded over 21,000 times to date, provides Rust developers with bindings to the l…THEHACKERNEWS.COM
12 AprRoku says 576,000 user accounts hacked after second security incidentRoku said it discovered malicious hackers compromised more than half a million user accounts while investigating an earlier spate of account hacks. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
12 AprISMG Editors: Unpacking the Change Healthcare Attack SagaAlso: Positive Cyber Market Trends, AI Threats to Supply Chain Security In the latest weekly update, four ISMG editors discussed the unending twists and turns in the Change Healthcare cyberattack, positive signs of economic recovery in the cybersecurity tech market, and how artif…DATABREACHTODAY.CO.UK
12 AprState-Sponsored Disinformation Campaigns Targeting Africa Driving Instability And ViolenceA shocking report shows how email-based disinformation campaigns can have material real-world impacts to the citizens in the targeted countries.KNOWBE4.COM
12 AprRoku says more than 500,000 accounts impacted in cyberattacksubmitted by kid to cybersecurity 4 points | 0 comments https://www.reuters.com/technology/cybersecurity/roku-says-more-than-500000-accounts-impacted-by-cyber-attack-2024-04-12/REUTERS.COM
12 AprPE Firm Accuses Synopsys of Breaching Exclusivity AgreementSunstone Partners: We Had a Letter of Intent to Buy Synopsys' Security Testing Unit A California private equity firm sued Synopsys and accused the systems design behemoth of breaching an exclusivity agreement by shopping its $525 million software integrity business. Sunstone Part…DATABREACHTODAY.CO.UK
12 AprGiant Tiger - 2,842,669 breached accountsIn March 2024, Canadian discount store Giant Tiger suffered a data breach that exposed 2.8M customer records . Attributed to a vendor of the retailer, the breach included physical and email addresses, names and phone numbers.HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 21[−]
12 AprISC Stormcast For Friday, April 12th, 2024 https://isc.sans.edu/podcastdetail/8936, (Fri, Apr 12th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
12 AprAnálisis de Malware en América Latina - 8dot8 - SPANISH & ENGLISHsubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/1b0be128-1ad0-4590-adfa-c22fd2cf18bd.png Keynote: From Brazil with Love: Latin American Malware Analysis from Tactical and Strategic Cyber Threat Intel Outlook. Speakers: Cybelle Oliveira &a…INFOSEC.PUB
12 AprCyber Security Today, April 12, 2024 - A warning to Sisense customers, a new tactic for spreading the Raspberry Robin worm, and moreThis episode reports on a new way threat actors are planting malware on GitHub, why you should watch for the running of unexpected automated scripts on your network, and moreCYBERSECURITYTODAY.LIBSYN.COM
12 AprCyberespionage Group Earth Hundun's Continuous Refinement of Waterbear and DeuterbearIn 2022, Earth Hundun began using the latest version of Waterbear (aka Deuterbear) which has several changes, including anti-memory scanning and decryption routines, that distinguish it from the original Waterbear.TRENDMICRO.COM
12 AprLastPass Employee Targeted With Deepfake CallsLastPass this week revealed that one of its employees was targeted in a phishing attack involving deepfake technology. The post LastPass Employee Targeted With Deepfake Calls appeared first on SecurityWeek .SECURITYWEEK.COM
12 AprCyberespionage Group Earth Hundun's Continuous Refinement of Waterbear and Deuterbearsubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://www.trendmicro.com/en_us/research/24/d/earth-hundun-waterbear-deuterbear.html?web_view=trueTRENDMICRO.COM
12 AprIT pros targeted with malicious Google ads for PuTTY, FileZilla - Help Net Securitysubmitted by Lanky_Pomegranate530 to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2024/04/10/malvertising-putty-filezilla/?web_view=trueHELPNETSECURITY.COM
12 AprDuckDuckGo Launches Privacy Pro: 3-in-1 service With VPNDuckDuckGo has launched Privacy Pro, a new subscription service that promises to enhance user privacy across the web. This innovative offering combines a VPN service with additional privacy features integrated into DuckDuckGo’s existing privacy-focused browser. A Closer Loo…GBHACKERS.COM
12 AprSmuggling Gold by Disguising it as Machine PartsSomeone got caught trying to smuggle 322 pounds of gold (that’s about 1/4 of a cubic foot) out of Hong Kong. It was disguised as machine parts: On March 27, customs officials x-rayed two air compressors and discovered that they contained gold that had been “concealed …SCHNEIER.COM
12 AprExpired Redis Service Abused to Use Metasploit Meterpreter Maliciouslysubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/cloud-security/outdated-redis-service-abused-to-spread-meterpreter-backdoorDARKREADING.COM
12 AprMicrosoft left internal passwords exposed in latest security blundersubmitted by kid to cybersecurity 3 points | 0 comments https://www.theverge.com/2024/4/10/24126057/microsoft-azure-server-internal-passwords-exposed-cybersecurityTHEVERGE.COM
12 AprThreat Actors Manipulate GitHub Search to Deliver MalwareCheckmarx warns of a new attack relying on GitHub search manipulation to deliver malicious code. The post Threat Actors Manipulate GitHub Search to Deliver Malware appeared first on SecurityWeek .SECURITYWEEK.COM
12 AprHouse Will Try Again on Reauthorization of US Spy Program After Republican UpheavalSpeaker Mike Johnson is expected to bring forward a Plan B that would reform and extend Section 702 of the Foreign Intelligence Surveillance Act for a shortened period of two years. The post House Will Try Again on Reauthorization of US Spy Program After Republican Upheaval appea…SECURITYWEEK.COM
12 AprDarkBeatC2: The Latest MuddyWater Attack FrameworkThe Iranian threat actor known as MuddyWater has been attributed to a new command-and-control (C2) infrastructure called DarkBeatC2, becoming the latest such tool in its arsenal after SimpleHarm, MuddyC3, PhonyC2, and MuddyC2Go.DEEPINSTINCT.COM
12 AprUS-China Competition to Field Military Drone Swarms Could Fuel Global Arms RaceMilitary planners envision a scenario in which hundreds, even thousands of AI-powered machines engage in coordinated battle. The post US-China Competition to Field Military Drone Swarms Could Fuel Global Arms Race appeared first on SecurityWeek .SECURITYWEEK.COM
12 AprCCC Winterkongress 2024 - GERMAN and ENGLISH languagesubmitted by ashar to security_cpe 1 points | 0 comments https://infosec.pub/pictrs/image/aed8585f-9f9e-494e-a4fa-23e926f56f56.png CCC Winterkongress 2024 PROGRAMM CCC Winterkongress 2024 Audio/VideoINFOSEC.PUB
12 AprRubyCarp: Insights Into the Longevity of a Romanian Cybercriminal GangOperational for at least ten years, RubyCarp has its own botnet, its own tools, and its own community of users that concentrate on cryptomining and credential phishing. The post RubyCarp: Insights Into the Longevity of a Romanian Cybercriminal Gang appeared first on SecurityWeek …SECURITYWEEK.COM
12 AprU.S. Department of Health Alert: Hackers are Targeting IT Help Desks at Healthcare OrganizationsA new sector alert published by the U.S. Department of Health and Human Services outlines new attacks in which social engineering is used to obtain credentials for online fraud.KNOWBE4.COM
12 AprCloned Voice Tech Is Coming for Bank AccountsExperts Warn AI Tools Can Now Compromise Voice Password Systems Used by Many Banks At many financial institutions, your voice is your password. Tiny variations in pitch, tone and timbre make human voices an ideal method for authenticating customers - as long as computers can't be…DATABREACHTODAY.CO.UK
12 ApreXotic Visit includes XploitSPY malware – Week in security with Tony AnscombeAlmost 400 people in India and Pakistan have fallen victim to an ongoing Android espionage campaign called eXotic VisitWELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
12 AprSneaky Credit Card Skimmer Disguised as Harmless Facebook TrackerCybersecurity researchers have discovered a credit card skimmer that's concealed within a fake Meta Pixel tracker script in an attempt to evade detection. Sucuri said that the malware is injected into websites through tools that allow for custom code, such as WordPress …THEHACKERNEWS.COM
12 AprCredit Card Skimmer Hidden in Fake Facebook Pixel TrackerIn recent months, Sucuri researchers encountered a number of cases where attackers inject malware into website software that allows for custom or miscellaneous code, such as the Magento admin panel or WordPress plugins.SUCURI.NET
12 AprImportance of Scanning Files on Uploader ApplicationsDelve into the crucial practice of file scanning within uploader applications, and learn defensive measures to safeguards against malicious threats like malware.TRENDMICRO.COM
📡 INFOSEC NEWS 7[−]
12 AprCode Keepers: Mastering Non-Human Identity ManagementIdentities now transcend human boundaries. Within each line of code and every API call lies a non-human identity. These entities act as programmatic access keys, enabling authentication and facilitating interactions among systems and services, which are essential for every API ca…THEHACKERNEWS.COM
12 AprFormer AT&T customers get $6.3 million in data throttling refundsThe Federal Trade Commission (FTC) is sending out $6,300,000 in partial refunds to 267,000 former AT&T Wireless customers as part of a data throttling settlement in 2019. [...]BLEEPINGCOMPUTER.COM
12 AprMitigating the risks of residential proxies | Kaspersky official blogWhat are residential proxies, and how can attacks routed through them be tracked?KASPERSKY.COM
12 AprSecurity engineer jailed for 3 years for $12M crypto hacksShakeeb Ahmed, a cybersecurity engineer convicted of stealing around $12 million in crypto, was sentenced on Friday to three years in prison. In a press release, the U.S. Attorney for the Southern District of New York announced the sentence. Ahmed was accused of hacking into two …TECHCRUNCH.COM
12 AprEx-Amazon engineer gets 3 years for hacking crypto exchangesFormer Amazon security engineer Shakeeb Ahmed was sentenced to three years in prison for hacking two cryptocurrency exchanges in July 2022 and stealing over $12 million. [...]BLEEPINGCOMPUTER.COM
12 AprFBI warns of massive wave of road toll SMS phishing attacksOn Friday, the Federal Bureau of Investigation warned of a massive ongoing wave of SMS phishing attacks targeting Americans with lures regarding unpaid road toll fees. [...]BLEEPINGCOMPUTER.COM
12 AprMicrosoft now testing app ads in Windows 11's Start menuMicrosoft has started testing ads in the Windows 11 Start menu, a new experiment the company says will help users find new "great" apps in the Microsoft Store. [...]BLEEPINGCOMPUTER.COM