matlock.ca // THREAT INTELLIGENCE

91Articles

7Categories

2024-04-25Date

🐛

CISA Warns of Cisco and CrushFTP Vulnerabilities Being Actively Exploited

KEVTHERECORD.MEDIA — 25 Apr 2024

🐛

Hackers backdoored Cisco ASA devices via two zero-days (CVE-2024-20353, CVE-2024-20359) - Help Net Security

HELPNETSECURITY.COM — 25 Apr 2024

🐛

Palo Alto Networks Shares Remediation Advice for Hacked Firewalls

SECURITYWEEK.COM — 25 Apr 2024

🐛

Looking outside: How to protect against non-Windows network vulnerabilities

CSOONLINE.COM — 25 Apr 2024

⚠️

Hackers Exploit Cisco Firewall Zero-Days to Hack Government Networks

GBHACKERS.COM — 25 Apr 2024

⚠️

Authorities Warned that Hackers Are Exploiting Flaws in CISCO ASA VPNs

GBHACKERS.COM — 25 Apr 2024

⚠️

Maximum Severity Flowmon Bug has a Public Exploit, Patch Now

BLEEPINGCOMPUTER.COM — 25 Apr 2024

⚠️

State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage

THEHACKERNEWS.COM — 25 Apr 2024

⚠️

Alert! Cisco Releases Critical Security Updates to Fix 2 ASA Firewall 0-Days

GBHACKERS.COM — 25 Apr 2024

⚠️

ArcaneDoor Hackers Exploit Cisco Zero-Days to Breach Government Networks

BLEEPINGCOMPUTER.COM — 25 Apr 2024

⚠️

Cyber Attack Defenders Up For Battle: Huge Uptick In Timely Attack Detections

GBHACKERS.COM — 25 Apr 2024

⚠️

Vulnerabilities in Microsoft's PlayReady DRM Could Enable Illegal Movie Downloads From Streaming Services

SECURITY-EXPLORATIONS.COM — 25 Apr 2024

⚠️

Cisco urges immediate software upgrade after state-sponsored attack

CSOONLINE.COM — 25 Apr 2024

⚠️

JudgeO Online Code Editor Flaw Let Attackers Execute Code as Root User

GBHACKERS.COM — 25 Apr 2024

⚠️

Network Threats: A Step-by-Step Attack Demonstration

THEHACKERNEWS.COM — 25 Apr 2024

⚠️

Salt Security adds defense against OAuth attacks

CSOONLINE.COM — 25 Apr 2024

⚠️

NETGEAR routers vulnerable to buffer overflow

JVN.JP — 25 Apr 2024

⚠️

New Report Finds That 27% of Small Businesses Would Be Put Out of Business By A Cyber Attack

KNOWBE4.COM — 25 Apr 2024

⚠️

New DragonForce Ransomware Emerged From The Leaked LOCKBIT Builder

GBHACKERS.COM — 25 Apr 2024

⚠️

NIST’s role in the global tech race against AI

SECURITYINTELLIGENCE.COM — 25 Apr 2024

⚠️

Beware! Zero-click RCE Exploit for iMessage Circulating on Hacker Forums

GBHACKERS.COM — 25 Apr 2024

⚠️

Advising The President On Cyber-Physical Resilience - Philip Venables - PSW #826

YOUTUBE.COM — 2024-04-25

⚠️

WP Automatic WordPress plugin hit by millions of SQL injection attacks

BLEEPINGCOMPUTER.COM — 25 Apr 2024

⚠️

Nation-State Hackers Exploit Cisco Firewall Zero Days To Backdoor Government Networks

PACKETSTORMSECURITY.COM — 25 Apr 2024

⚠️

CISA Releases Eight Industrial Control Systems Advisories

CISA.GOV — Thu, 25 Apr 24 1

⚠️

Investigating industrial control systems using Microsoft’s ICSpector open-source framework

TECHCOMMUNITY.MICROSOFT.COM — 25 Apr 2024

⚠️

Over 1,400 CrushFTP servers vulnerable to actively exploited bug

KEVBLEEPINGCOMPUTER.COM — 25 Apr 2024

⚠️

Analyze Malicious Powershell Scripts by Running Malware in ANY.RUN Sandbox

GBHACKERS.COM — 25 Apr 2024

⚠️

Breach Roundup: Cloud Error Reveals DPRK Sanctions Busting

DATABREACHTODAY.CO.UK — 2024-04-25

⚠️

Cloud security teams: What to know as M&A activity rebounds in 2024

CSOONLINE.COM — 25 Apr 2024

⚠️

Governance, Compliance, and The Digital Supply Chain - Josh Marpet - BTS #27

YOUTUBE.COM — 2024-04-25

⚠️

LA County Health Services: Patients' data exposed in phishing attack

BLEEPINGCOMPUTER.COM — 25 Apr 2024

⚠️

Nagomi Exits Stealth With $30M to Help Manage Security Risks

DATABREACHTODAY.CO.UK — 2024-04-25

⚠️

FBI warns against using unlicensed crypto transfer services

BLEEPINGCOMPUTER.COM — 25 Apr 2024

⚠️

Microsoft Questioned by German Lawmakers About Russian Hack

DATABREACHTODAY.CO.UK — 2024-04-25

⚠️

Threat Modeling and Understanding Inherent Threats - Adam Shostack - ESW #359

YOUTUBE.COM — 2024-04-25

⚠️

Autonomous - I don't think that word means what you think it means - ESW #359

YOUTUBE.COM — 2024-04-25

⚠️

LA County Health Services: Patients' data exposed in phishing attack

BLEEPINGCOMPUTER.COM — 25 Apr 2024

📢

Drupal security advisory (AV24-224)

CYBER.GC.CA — 2024-04-25

📢

Non-Compliant, So What?

QUARKSLAB.COM — 2024-04-25

📢

The P25 Steering Committee, the Compliance Assessment Process and Procedures Task Group (CAPPTG), and the Joint SAFECOM-NCSWIC P25 User Needs Working Group (UNWG) release Project 25 Link Layer Encryption Informational Session

CISA.GOV — Thu, 25 Apr 24 1

📢

Mitel security advisory (AV24-226)

CYBER.GC.CA — 2024-04-25

📢

HPE security advisory (AV24-225)

CYBER.GC.CA — 2024-04-25

🔥

Pakistani APT Hackers Attacking Indian Govt Entities With Weaponized Shortcut Files

GBHACKERS.COM — 25 Apr 2024

🔥

Ring Customers Get $5.6 Million in Privacy Breach Settlement

BLEEPINGCOMPUTER.COM — 25 Apr 2024

🔥

North Korea APT Triumvirate Spied on South Korean Defense Industry For Years

DARKREADING.COM — 25 Apr 2024

🔥

AI-Assisted Phishing Attacks Are on the Rise

KNOWBE4.COM — 25 Apr 2024

🔥

Ransomware: How to prevent and recover (ITSAP.00.099)

CYBER.GC.CA — 2024-04-25

🔥

Autodesk Drive Abused in Phishing Attacks

SECURITYWEEK.COM — 25 Apr 2024

🔥

Cyber Hygiene Helps Organizations Mitigate Ransomware-Related Vulnerabilities

CISA.GOV — Thu, 25 Apr 24 1

🔥

“Junk gun” ransomware: the cheap new threat to small businesses

TRIPWIRE.COM — 25 Apr 2024

🔥

Health insurance giant Kaiser notifies millions of a data breach

TECHCRUNCH.COM — 25 Apr 2024

🔥

Judge Advises Dismissal of CommonSpirit Breach Lawsuit

DATABREACHTODAY.CO.UK — 2024-04-25

🔥

Cryptohack Roundup: Samourai Mixer Takedown

DATABREACHTODAY.CO.UK — 2024-04-25

🔥

Kaiser Permanente Notifying 13.4 Million of Tracker Breach

DATABREACHTODAY.CO.UK — 2024-04-25

🕵️

Does it matter if iptables isn't running on my honeypot?, (Thu, Apr 25th)

ISC.SANS.EDU — 25 Apr 2024

🕵️

5G Hackathons - Casey Ellis - BTS #28

YOUTUBE.COM — 2024-04-25

🕵️

Cisco Systems Joins Microsoft, IBM in Vatican Pledge to Ensure Ethical Use and Development of AI

SECURITYWEEK.COM — 25 Apr 2024

🕵️

ISC Stormcast For Thursday, April 25th, 2024 https://isc.sans.edu/podcastdetail/8954, (Thu, Apr 25th)

ISC.SANS.EDU — 25 Apr 2024

🕵️

73% of SME security pros missed or ignored critical alerts - Help Net Security

HELPNETSECURITY.COM — 25 Apr 2024

🕵️

Chinese, Russian Espionage Campaigns Increasingly Targeting Edge Devices

THERECORD.MEDIA — 25 Apr 2024

🕵️

Attackers Leverage Black Hat SEO Techniques to Distribute Info-Stealer Malware

ZSCALER.COM — 25 Apr 2024

🕵️

IBM Acquiring HashiCorp for $6.4 Billion

SECURITYWEEK.COM — 25 Apr 2024

🕵️

FTC Sending $5.6 Million in Refunds to Ring Customers Over Security Failures

SECURITYWEEK.COM — 25 Apr 2024

🕵️

Vulnerabilities Expose Brocade SAN Appliances, Switches to Hacking

SECURITYWEEK.COM — 25 Apr 2024

🕵️

Endpoint Security Firm ThreatLocker Raises $115 Million in Series D Funding

SECURITYWEEK.COM — 25 Apr 2024

🕵️

New Brokewell malware takes over Android devices, steals data

BLEEPINGCOMPUTER.COM — 25 Apr 2024

🕵️

Researcher Strips ROM For Binary Code

DATABREACHTODAY.CO.UK — 2024-04-25

🕵️

Predictive Security Startup BforeAI Raises $15 Million

SECURITYWEEK.COM — 25 Apr 2024

🕵️

North Korea's Lazarus Group Deploys New Kaolin RAT via Fake Job Lures

THEHACKERNEWS.COM — 25 Apr 2024

🕵️

How GenAI Can Improve SecOps - Ely Kahn - ESW #359

YOUTUBE.COM — 2024-04-25

🕵️

AeroNet Wireless Launches 10Gbps Internet Plan: A Landmark Moment in Puerto Rico’s Telecommunications Industry

GBHACKERS.COM — 25 Apr 2024

🌐

Researchers sinkhole PlugX malware server with 2.5 million unique IPs

BLEEPINGCOMPUTER.COM — 25 Apr 2024

📡

Google Meet opens client-side encrypted calls to non Google users

BLEEPINGCOMPUTER.COM — 25 Apr 2024

📡

Google Postpones Third-Party Cookie Deprecation Amid U.K. Regulatory Scrutiny

THEHACKERNEWS.COM — 25 Apr 2024

📡

Feds Accuse Founders of Cryptocurrency Mixer of ‘Large-Scale Money Laundering’

THERECORD.MEDIA — 25 Apr 2024

📡

Report: Security Leaders Braced for Daily AI-Driven Attacks by Year-End

INFOSECURITY-MAGAZINE.COM — 25 Apr 2024

📡

DOJ Arrests Founders of Crypto Mixer Samourai for $2 Billion in Illegal Transactions

THEHACKERNEWS.COM — 25 Apr 2024

📡

The Rise of Large-Language-Model Optimization

SCHNEIER.COM — 2024-04-25

📡

Using Bluetooth technology (ITSAP.00.011)

CYBER.GC.CA — 2024-04-25

📡

India’s ICICI Bank exposed thousands of credit cards to ‘wrong’ users

TECHCRUNCH.COM — 25 Apr 2024

📡

Ex-NSA hacker and ex-Apple researcher launch startup to protect Apple devices

TECHCRUNCH.COM — 25 Apr 2024

📡

Hacker posts fake news story about Ukrainians trying to kill Slovak President

BITDEFENDER.COM — 25 Apr 2024

📡

FTC Sending $5.6 Million To Ring Customers Over Security Failures

PACKETSTORMSECURITY.COM — 25 Apr 2024

📡

Palo Alto Networks Shares Remediation Advice

PACKETSTORMSECURITY.COM — 25 Apr 2024

📡

Russia, Iran Pose Most Aggressive Threat To 2024 Election

PACKETSTORMSECURITY.COM — 25 Apr 2024

📡

Kaspersky Thin Client 2.0 update | Kaspersky official blog

KASPERSKY.COM — 25 Apr 2024

📡

Rubrik’s shares climb 20% in its public debut

TECHCRUNCH.COM — 25 Apr 2024

📡

Reddit down in major outage blocking access to web, mobile apps

BLEEPINGCOMPUTER.COM — 25 Apr 2024

📡

What IBM Purchasing HashiCorp Means for Secrets Management

DATABREACHTODAY.CO.UK — 2024-04-25

📡

Gripped by Python: 5 reasons why Python is popular among cybersecurity professionals

WELIVESECURITY.COM — 25 Apr 2024