102Articles
8Categories
2024-04-30Date
🚨 CISA KEV 1[−]
30 Apr KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-29988 Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability These types of vulnerabilities are frequent attack vectors for m…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
30 AprMost attacks affecting SMBs target five older vulnerabilitiesAttackers continue to aggressively target small and mid-size businesses using high-profile vulnerabilities dating back a decade or more, network telemetry shows. Between January and March this year, five high-severity flaws stood out above all others in terms of their frequency i…CSOONLINE.COM
30 AprVulnerability in R Programming Language Could Fuel Supply Chain AttacksA vulnerability (CVE-2024-27322) in the R programming language implementation can be exploited to execute arbitrary and be used as part of a supply chain attack. The post Vulnerability in R Programming Language Could Fuel Supply Chain Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
30 AprDelta Electronics CNCSoft-G2 DOPSoft DPAXView CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION : Low attack complexity Vendor : Delta Electronics Equipment : CNCSoft-G2 DOPSoft Vulnerability : Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to execute a…CISA.GOV
30 AprAnother Day, Another NAS: Attacks against Zyxel NAS326 devices CVE-2023-4473, CVE-2023-4474, (Tue, Apr 30th)Yesterday, I talked about attacks against a relatively recent D-Link NAS vulnerability. Today, scanning my honeypot logs, I found an odd URL that I didn&#;x26;#;39;t recognize. The vulnerability is a bit older but turns out to be targeting yet another …ISC.SANS.EDU
⚠️ VULNERABILITY DISCLOSURE 24[−]
30 AprMovieBoxPro - 6,009,014 breached accountsIn April 2024, over 6M records from the streaming service MovieBoxPro were scraped from a vulnerable API. Of questionable legality, the service provided no contact information to disclose the incident , although reportedly the vulnerability was rectified after being mass enumerat…HAVEIBEENPWNED.COM
30 AprClose the barn door now! Avoid the risk of not monitoring retained access before it’s a problemCompanies spend thousands of dollars (sometimes hundreds of thousands) to recruit the right person, put them through the interview cycle, then onboard them. Once an employee is within the corporate ecosystem, far too many entities forget all that effort and expect whatever system…CSOONLINE.COM
30 AprCyber breach misinformation creates a haze of uncertaintyAs the landscape of cybercrime evolves, the challenge of navigating the fog of uncertainty is intensifying. The increasing frequency of false or misleading reports is creating a web of misinformation that sometimes makes discerning the truth about criminal cyber incidents virtual…CSOONLINE.COM
30 AprMajor privacy question (linux distro)submitted by FutureProofBackdoors to cybersecurity 2 points | 0 comments cross-posted from: futurology.today/post/1308742 Hey guys, first post here and on an alt, I hope I don’t get flamed. If there’s not enough info I’ll post another thread tomorrow. Its been ~5-7 years since us…SH.ITJUST.WORKS
30 AprZloader Learns Old TricksZloader, a modular trojan based on the leaked ZeuS source code, has recently introduced a new anti-analysis feature in versions 2.4.1.0 and 2.5.1.0 to prevent execution on machines that differ from the original infection.ZSCALER.COM
30 AprRSAC Fireside Chat: Secure, flexible web browsers finally available, thanks to open-source codeAt the end of 2000, I was hired by USA Today to cover Microsoft, which at the time was being prosecuted by the U.S. Department of Justice. Related: Why proxies aren’t enough Microsoft had used illegal monopolistic practices to crush … (more…)LASTWATCHDOG.COM
30 AprSafari Vulnerability Exposes EU iOS Users to Malicious MarketplacesA serious concern has arisen for iPhone users in the European Union as a newly discovered flaw in Apple’s Safari browser has the potential to expose them to tracking and malicious activities. The vulnerability lies in the fact that third-party marketplace apps can exploit t…GBHACKERS.COM
30 AprUnitedHealth hackers exploited Citrix vulnerabilities, CEO to testifyAmid strong calls for enhanced cybersecurity measures in healthcare, UnitedHealth is set to testify this week that, on February 12, hackers exploited compromised credentials to gain remote access to a Citrix portal used by its Change Healthcare unit. In the written testimony befo…CSOONLINE.COM
30 AprWhatsApp in IndiaMeta has threatened to pull WhatsApp out of India if the courts try to force it to break its end-to-end encryption.SCHNEIER.COM
30 AprUK Enacts IoT Cybersecurity LawThe Product Security and Telecommunications Infrastructure (PSTI) Act has come into effect, requiring manufacturers of consumer-grade IoT products sold in the UK to stop using guessable default passwords and have a vulnerability disclosure policy.HELPNETSECURITY.COM
30 AprResearchers Unveil Novel Attack Methods Targeting Intel’s Conditional Branch PredictorResearchers have found two novel types of attacks that target the conditional branch predictor found in high-end Intel processors, which could be exploited to compromise billions of processors currently in use.HELPNETSECURITY.COM
30 AprPrompt Fuzzer: Open-Source Tool for Strengthening GenAI AppsPrompt Fuzzer is interactive and user-friendly, allowing users to repeat the process as many times as needed to harden their system prompts and see their security score increase as the prompt becomes more resilient.HELPNETSECURITY.COM
30 AprMillions of Malicious 'Imageless' Containers Planted on Docker Hub Over 5 YearsCybersecurity researchers have discovered multiple campaigns targeting Docker Hub by planting millions of malicious "imageless" containers over the past five years, once again underscoring how open-source registries could pave the way for supply chain attacks.…THEHACKERNEWS.COM
30 AprMicrosoft Releases New-Open Source Tool for OT SecurityMicrosoft has released a new open-source security tool to close gaps in threat analysis for industrial control systems and help address increased nation-state attacks on critical infrastructure.BANKINFOSECURITY.COM
30 AprSecuriti adds distributed LLM firewalls to secure genAI applicationsTo address the emerging threats around generative artificial intelligence (gen AI) systems and applications, cybersecurity provider Securiti has launched a firewall offering for large language models (LLMs), Securiti LLM Firewalls. Future applications are going to be more convers…CSOONLINE.COM
30 AprCISA Releases Three Industrial Control Systems AdvisoriesCISA released three Industrial Control Systems (ICS) advisories on April 30, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-121-01 Delta Electronics CNCSoft-G2 DOPSoft DPAX ICSA-24-016-01 SEW…CISA.GOV
30 AprChinese threat actor engaged in multi-year DNS resolver probing effortFor the past five years, a threat actor that’s likely connected to the Chinese government has been sending out unusual DNS queries to IP addresses over the internet to map open DNS resolvers inside networks and potentially gather other information in preparation for future attack…CSOONLINE.COM
30 AprGUEST ESSAY: Recalibrating critical infrastructure security in the wake of evolving threatsFor all the discussion around the sophisticated technology, strategies, and tactics hackers use to infiltrate networks, sometimes the simplest attack method can do the most damage. The recent Unitronics hack , in which attackers took control over a Pennsylvania water … (mor…LASTWATCHDOG.COM
30 AprCritical Vulnerabilities in Judge0 Lead to Sandbox Escape, Host TakeoverThree vulnerabilities in the Judge0 open source service could allow attackers to escape the sandbox and obtain root privileges on the host. The post Critical Vulnerabilities in Judge0 Lead to Sandbox Escape, Host Takeover appeared first on SecurityWeek .SECURITYWEEK.COM
30 AprGoogle now pays up to $450,000 for RCE bugs in some Android appsGoogle has increased rewards for reporting remote code execution vulnerabilities within select Android apps by ten times, from $30,000 to $300,000, with the maximum reward reaching $450,000 for exceptional quality reports. [...]BLEEPINGCOMPUTER.COM
30 AprR language flaw allows code execution via RDS/RDX filesA new vulnerability has been discovered in the R programming language that allows arbitrary code execution upon deserializing specially crafted RDS and RDX files. [...]BLEEPINGCOMPUTER.COM
30 AprPatched Deserialization Flaw in Siemens Product Allows RCEThe Siemens Simatic Energy Manager Used an Unsafe BinaryFormatter Method Researchers detailed a deserialization vulnerability in Siemens software used to monitor energy consumption in industrial settings and attributed the flaw to the German conglomerate's decision to use a progr…DATABREACHTODAY.CO.UK
30 AprHow Personal Branding Can Elevate Your Tech CareerYour Personal Brand Is as Crucial as Any Skill in Your Tech Toolkit Personal branding is the practice of marketing oneself and one's career as a brand. It plays a role in how you are perceived and how you perceive yourself as a professional, and it can set you apart from other ca…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 11[−]
30 AprNew U.K. Law Bans Default Passwords on Smart Devices Starting April 2024The U.K. National Cyber Security Centre (NCSC) is calling on manufacturers of smart devices to comply with new legislation that prohibits them from using default passwords, effective April 29, 2024. "The law, known as the Product Security and Telecommunication…THEHACKERNEWS.COM
30 AprFinnish Hacker Kivimaki Found Guilty in Vastaamo Hack'Ransom_man' Extortionist Faces 6-Year, 3-Month Prison Term A Finnish court found Aleksanteri Tomminpoika Kivimäki guilty of hacking and leaking online the psychotherapy records of 33,000 individuals in a 2020 incident. The District Court of Länsi-Uusimaa has sentenced Kivimäki, …DATABREACHTODAY.CO.UK
30 AprApptega Raises $15 Million for Cybersecurity Compliance PlatformMainsail Partners leads a $15 million financing round for end-to-end cybersecurity compliance platform company Apptega. The post Apptega Raises $15 Million for Cybersecurity Compliance Platform appeared first on SecurityWeek .SECURITYWEEK.COM
30 AprFBI Warns of Verification Scams Targeting Dating Site UsersThe US Federal Bureau of Investigation (FBI) has issued an advisory warning of a scam campaign targeting users of online dating platforms. The scammers are attempting to trick users into signing up for fraudulent monthly subscriptions in order to be verified as a real person.KNOWBE4.COM
30 AprAI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN #382AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more, are on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-382YOUTUBE.COM
30 AprDHS: AI-Enhanced Nuclear and Chemical Threats Are Risk to USNew Report Says Global Threat Actors May Use AI to Enhance Physical Attacks on US The U.S. Department of Homeland Security is warning that known limitations for nuclear and chemical security regulations in the United States could lead to global threat actors taking advantage of a…DATABREACHTODAY.CO.UK
30 AprDetecting browser data theft using Windows Event LogsPosted by Will Harris, Chrome Security Team Chromium's sandboxed process model defends well from malicious web content, but there are limits to how well the application can protect itself from malware already on the computer. Cookies and other credentials remain a high value targ…SECURITY.GOOGLEBLOG.COM
🔥 INCIDENT REPORTING 9[−]
30 AprAn Empty S3 Bucket Can Make Your AWS Bills ExplodeIn the world of cloud computing, Amazon Web Services (AWS) is a giant that offers a wide range of services that cater to various needs, from storage to computation. Among these services, AWS S3 (Simple Storage Service) is a trendy choice for data storage, known for its durability…GBHACKERS.COM
30 AprSecurity Flaws in IRS Systems Pose Risk to Financial Statements, GAO SaysIn its report, the GAO highlighted “new and continuing” shortcomings with information systems and the safeguarding of assets, issues that increase the likelihood of unauthorized access to sensitive IRS data.FEDSCOOP.COM
30 AprKaiser Permanente Cyber Attack Exposes 13.4 Million Users DataKaiser Permanente, one of the largest healthcare providers in the United States, was the victim of a cyber attack that compromised the personal information of approximately 13.4 million users. This incident, which involved unauthorized access to the systems of City of Hope—a key …GBHACKERS.COM
30 AprThe State of Ransomware 2024Our fifth annual report reveals how ransomware experiences have changed over the last year, plus brand-new insights into the business impact of an attack.SOPHOS.COM
30 AprThreat Actor Claims Selling of Dell Database with 49M User RecordsA threat actor reportedly sells a database containing 49 million user records from Dell, one of the world’s leading technology companies. This significant security breach encompasses a wide range of personal and corporate information, potentially exposing millions of Dell c…GBHACKERS.COM
30 AprAI cybersecurity solutions detect ransomware in under 60 secondsWorried about ransomware? If so, it’s not surprising. According to the World Economic Forum, for large cyber losses (€1 million+), the number of cases in which data is exfiltrated is increasing, doubling from 40% in 2019 to almost 80% in 2022. And more recent activity…SECURITYINTELLIGENCE.COM
30 AprChange Healthcare hacked using stolen Citrix account with no MFAUnitedHealth confirms that Change Healthcare's network was breached by the BlackCat ransomware gang, who used stolen credentials to log into the company's Citrix remote access service, which did not have multi-factor authentication enabled. [...]BLEEPINGCOMPUTER.COM
30 AprNew Wpeeper Android malware hides behind hacked WordPress sitesA new Android backdoor malware named 'Wpeeper' has been spotted in at least two unofficial app stores mimicking the Uptodown App Store, a popular third-party app store for Android devices with over 220 million downloads. [...]BLEEPINGCOMPUTER.COM
30 AprPhiladelphia Inquirer: Data of over 25,000 people stolen in 2023 breachDaily newspaper Philadelphia Inquirer revealed that attackers behind a May 2023 security breach have stolen the personal and financial information of 25,549 individuals. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 30[−]
30 AprTech CEOs Altman, Nadella, Pichai and Others Join Government AI Safety Board Led by DHS’ MayorkasCEOs of major tech companies are joining a new artificial intelligence safety board to advise the federal government on how to protect the nation’s critical services from “AI-related disruptions.” The post Tech CEOs Altman, Nadella, Pichai and Others Join Government AI Safety Boa…SECURITYWEEK.COM
30 AprISC Stormcast For Tuesday, April 30th, 2024 https://isc.sans.edu/podcastdetail/8960, (Tue, Apr 30th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
30 AprMeet the New Exclusive AI Malware Analyst: Gemini 1.5 ProGemini 1.5 Pro is the latest version of the Gemini AI malware analysis platform, which is set to transform the cybersecurity industry. With its innovative features, it enables security teams to detect, investigate, and respond to malware threats with unprecedented efficiency and …GBHACKERS.COM
30 AprDarkgate Malware Leveraging Autohotkey Following TeamsResearchers have uncovered a novel infection chain associated with the DarkGate malware. This Remote Access Trojan (RAT), developed using Borland Delphi, has been marketed as a Malware-as-a-Service (MaaS) offering on a Russian-language cybercrime forum since at least 2018. The Da…GBHACKERS.COM
30 AprNew Android Malware Mimic As Social Media Apps Steals Sensitive DataA new RAT malware has been discovered to be targeting Android devices. This malware is capable of executing additional commands compared to other RAT malware. This malware can also perform phishing attacks by disguising itself as legitimate applications like Snapchat, Instagram, …GBHACKERS.COM
30 AprLightSpy Malware Actively Targeting MacOS DevicesBlackBerry reported a new iOS LightSpy malware, but Huntress researchers found it to be a macOS variant targeting Intel or Apple Silicon with Rosetta 2-enabled devices. This caused media confusion, as Apple’s recent spyware alert likely referred to Pegasus spyware, and ther…GBHACKERS.COM
30 AprGoogle Blocks 2.28M Malicious Apps Entering The Play StoreA safe and trusted Google Play experience is our top priority. We leverage our SAFE (see below) principles to provide the framework to create that experience for both users and developers. Here’s what these principles mean in practice: With those principles in mind, we’ve m…GBHACKERS.COM
30 AprUserSec, NoName057(16), and Cyber Army of Russia Target UK's Economic Sectorsubmitted by kid to cybersecurity 1 points | 0 comments https://dailydarkweb.net/usersec-noname05716-and-cyber-army-of-russia-target-uks-economic-sector/DAILYDARKWEB.NET
30 AprFCC Fines US Cell Carriers $200M for Selling Location Datasubmitted by kid to cybersecurity 1 points | 0 comments https://www.bankinfosecurity.com/fcc-fines-us-cell-carriers-200m-for-selling-location-data-a-24968BANKINFOSECURITY.COM
30 AprAgent Tesla and Taskun Malware Targeting US Education and Govt Entitiessubmitted by kid to cybersecurity 2 points | 0 comments https://www.hackread.com/agent-tesla-taskun-malware-us-education-govt/HACKREAD.COM
30 AprWhy Using Microsoft Copilot Could Amplify Existing Data Quality and Privacy IssuesMicrosoft provides an easy and logical first step into GenAI for many organizations, but beware of the pitfalls. The post Why Using Microsoft Copilot Could Amplify Existing Data Quality and Privacy Issues appeared first on SecurityWeek .SECURITYWEEK.COM
30 AprAir Gapped! The Myth of Securing OT - Thomas Johnson - CSP #172The terminology of ICS has morphed into OT (Operational Technology) security; however many organizations are lacking in addressing the OT security controls. As some companies talk about air gapping as the primary method of securing OT, the reality is many times true air gapping d…YOUTUBE.COM
30 AprSafeBase Scores $33M Series B InvestmentSafeBase has raised north of $50 million since launching in 2020 with plans to simplify vendor risk assessment disclosures. The post SafeBase Scores $33M Series B Investment appeared first on SecurityWeek .SECURITYWEEK.COM
30 AprKnowBe4 to Acquire EgressKnowBe4, a Tampa Bay, FL-based provider of security awareness training and simulated phishing platform, is to acquire Egress Software Technologies, a London, UK-based company that specializes in adaptive and integrated cloud email security.FINSMES.COM
30 AprRedline Malware Using Lua Bytecode to Challenge the SOC/TI Team to DetectThe first instance of Redline using such a method is in a new variant of Redline Stealer malware that McAfee has discovered uses Lua bytecode to obfuscate its malicious code.  The malware was discovered on a legitimate Microsoft repository (vcpkg) disguised within a zip file…GBHACKERS.COM
30 AprFCC Fines Wireless Carriers for Sharing User Locations Without ConsentThe Federal Communications Commission leveraged nearly $200 million in fines against wireless carriers AT&T, Sprint, T-Mobile and Verizon for illegally sharing customers’ location data. The post FCC Fines Wireless Carriers for Sharing User Locations Without Consent appeared …SECURITYWEEK.COM
30 AprNew Payment Rails to Rely on RFP for More SecurityModern Treasury's Ani Narayan on Why RFP on New Rails Won't Replace ACH Just Yet As ACH continues to dominate U.S. transactions, newer payment rails, including FedNow, are working to make their platforms more secure. One of the ways they are doing this is by implementing a reques…DATABREACHTODAY.CO.UK
30 AprRandom Problems, Protecting Packages, and Vulns in Designs, Defaults & Data Leaks - ASW #283Misusing random numbers, protecting platforms for code repos and package repos, vulns that teach us about designs and defaults, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-283YOUTUBE.COM
30 AprWhy Companies Continue to Struggle with Supply Chain Security - Melinda Marks - ASW #283Companies deploy tools (usually lots of tools) to address different threats to supply chain security. Melinda Marks shares some of the chaos those companies still face when trying to prioritize investments, measure risk, and scale their solutions to keep pace with their developme…YOUTUBE.COM
30 AprFinnish Hacker Gets Prison for Accessing Thousands of Psychotherapy Records and Demanding RansomsIn February 2023, French police arrested well-known Finnish hacker Aleksanteri Kivimäki, who was living under a false identity near Paris. He was deported to Finland. His trial ended last month. The post Finnish Hacker Gets Prison for Accessing Thousands of Psychotherapy Records …SECURITYWEEK.COM
30 AprDocker Hub Users Targeted With Imageless, Malicious RepositoriesJFrog raises an alarm after finding three large-scale malware campaigns targeting Docker Hub with imageless repositories. The post Docker Hub Users Targeted With Imageless, Malicious Repositories appeared first on SecurityWeek .SECURITYWEEK.COM
30 AprIsland Secures $175M Investment as Enterprise Browser Startups Defy Tech GiantsDespite competitive pressures from industry behemoths like Microsoft and Google, investors are still betting big on startups in the specialized enterprise browser space. The post Island Secures $175M Investment as Enterprise Browser Startups Defy Tech Giants appeared first on Sec…SECURITYWEEK.COM
30 AprChinese Hackers Have Been Probing DNS Networks Globally for Years: ReportWhile China-linked Muddling Meerkat’s operations look like DNS DDoS attacks, it seems unlikely that denial of service is their goal, at least in the near term. The post Chinese Hackers Have Been Probing DNS Networks Globally for Years: Report appeared first on SecurityWeek .SECURITYWEEK.COM
30 AprPhishing Failures: How Not to Phish Your UsersThis blog was co-written by Javvad Malik and Erich Kron. Let’s dive into the cautionary world of phishing simulations gone wrong. You know, those attempts to train users not to fall for phishing that somehow end up setting off more alarms than a Hawaiian missile alert system.KNOWBE4.COM
30 AprHow New College Graduates Can Avoid Increasingly Personalized Job ScamsFor many fresh out of college, the drive to land that first professional role is a top priority. Yet, new graduates can be exposed to sophisticated scams that can jeopardize not just their finances but also their identities.KNOWBE4.COM
30 AprNews alert: Cybersixgill unveils ‘Third-Party Intelligence’ to deliver vendor-specific threat intelTel Aviv, Israel – April 30, 2024 – Cybersixgill, the global cyber threat intelligence data provider, broke new ground today by introducing its Third-Party Intelligence module. The new module delivers vendor-specific cybersecurity and threat intelligence to organizations’ s…LASTWATCHDOG.COM
30 AprUnitedHealth CEO: Paying Ransom Was 'Hardest Decision' EverCEO Tells Congress Attackers Gained Access Via a Citrix Portal; What Happened Next Deciding to pay cybercriminals a ransom in the attack on Change Healthcare was one of the most difficult choices UnitedHealth Group CEO Andrew Witty ever faced, according to written testimony ahead…DATABREACHTODAY.CO.UK
30 AprIsland Gets $175M Series D Funding, Doubles Valuation to $3BInvestments in Island Led by Coatue and Sequoia Support Global Expansion, R&D, M&A Island's Series D funding doubles its valuation to $3 billion and gives the enterprise browser startup more than $350 million in its war chest. The funding aims to boost Island's global exp…DATABREACHTODAY.CO.UK
30 AprThe Hidden Benefits of Digital Minimalismsubmitted by 0x0 to security 1 points | 0 comments https://blog.thenewoil.org/the-hidden-benefits-of-digital-minimalismTHENEWOIL.ORG
🌐 CYBER THREAT LANDSCAPE 5[−]
30 AprThe Darkgate Menace: Leveraging Autohotkey & Attempt to Evade SmartScreenResearchers found a novel infection chain associated with the DarkGate malware, which is a Remote Access Trojan (RAT) developed using Borland Delphi and marketed as a Malware-as-a-Service (MaaS) offering on a Russian-language cybercrime forum.MCAFEE.COM
30 AprGoogle Rejected 2.28 Million Risky Android Apps From Play Store in 2023Additionally, the tech giant reports that it identified and blocked 333,000 Google Play accounts that uploaded malware, fraudulent apps, or engaged in repeated grave policy violations.BLEEPINGCOMPUTER.COM
30 AprU.S. Government Releases New AI Security Guidelines for Critical InfrastructureThe U.S. government has unveiled new security guidelines aimed at bolstering critical infrastructure against artificial intelligence (AI)-related threats. "These guidelines are informed by the whole-of-government effort to assess AI risks across all sixteen critical infrastructur…THEHACKERNEWS.COM
30 AprMillions of Docker repos found pushing malware, phishing sitesThree large-scale campaigns have targeted Docker Hub users, planting millions of repositories designed to push malware and phishing sites since early 2021. [...]BLEEPINGCOMPUTER.COM
30 AprNew Latrodectus malware attacks use Microsoft, Cloudflare themesLatrodectus malware is now being distributed in phishing campaigns using Microsoft Azure and Cloudflare lures to appear legitimate while making it harder for email security platforms to detect the emails as malicious. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 18[−]
30 AprThoma Bravo to take UK cybersecurity company Darktrace private in $5B dealThoma Bravo, a private equity firm, is set to acquire the U.K.-based cybersecurity company Darktrace in a deal valued at around $5 billion. The deal is pending shareholder approval and is expected to be finalized by the end of 2024.TECHCRUNCH.COM
30 AprFCC Imposes $200 Million in Fines on Four US CarriersThe FCC has fined four major U.S. wireless carriers - AT&T, Sprint, T-Mobile, and Verizon - a total of nearly $200 million for unlawfully selling access to their customers' real-time location data without consent.SECURITYAFFAIRS.COM
30 AprMuddling Meerkat Hackers Manipulate DNS Using China’s Great FirewallDiscovered by Infoblox, the threat activity does not have a clear goal or motivation but demonstrates sophistication and advanced capabilities to manipulate global DNS systems.BLEEPINGCOMPUTER.COM
30 AprChange Healthcare hackers broke in using stolen credentials — and no MFA, says UHG CEOUnitedHealth's CEO said in congressional testimony that the portal used by the hackers to break into Change Healthcare was not protected with a basic security feature. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
30 AprSafeBase taps AI to automate software security reviewsSecurity review automation platform SafeBase has raised new cash from investors including Zoom's corporate VC arm. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
30 AprMan Who Mass-Extorted Psychotherapy Patients Gets Six YearsA 26-year-old Finnish man was sentenced to more than six years in prison today after being convicted of hacking into an online psychotherapy clinic, leaking tens of thousands of patient therapy records, and attempting to extort the clinic and patients.KREBSONSECURITY.COM
30 AprResearchers Discover Coordinated Attacks on Docker Hub to Plant Millions of Malicious RepositoriesOf the 4.79 million imageless Docker Hub repositories uncovered, 3.2 million of them are said to have been used as landing pages to redirect unsuspecting users to fraudulent sites as part of three broad campaigns.JFROG.COM
30 AprEmulating RH850 architecture with Unicorn EngineAnalyzing an automotive ECU firmware is sometimes quite challenging, especially when you cannot emulate some of its most interesting functions to find vulnerabilities, like ECUs based on Renesas RH850 system-on-chips. This article details how we managed to add support for this sp…QUARKSLAB.COM
30 AprUS fines telcos $200M for sharing customer location data without consentThe U.S. Federal Communications Commission said on Monday that it is fining the four U.S. major wireless carriers around $200 million in total for “illegally” sharing and selling customers’ real-time location data without their consent. AT&T’s fine is more than $57 million, …TECHCRUNCH.COM
30 AprSophos named a Leader in the 2024 IDC MarketScape for Worldwide Managed Detection and Response (MDR)The IDC MarketScape evaluates the capabilities and business strategies of managed detection and response service providers worldwide.SOPHOS.COM
30 AprMDR: Unlocking the power of enterprise-grade security for businesses of all sizesFaced with expanding attack surfaces and a barrage of threats, businesses of all sizes are increasingly looking to unlock the manifold capabilities of enterprise-grade securityWELIVESECURITY.COM
30 AprSensor Intel Series: Top CVEs in March 2024TP-Link Archer AX21 Wifi Router targeting, plus a handful of new CVEs! See what mass scanning looks like in March 2024.F5.COM
30 AprSensor Intel Series: Top CVEs in March 2024TP-Link Archer AX21 Wifi Router targeting, plus a handful of new CVEs! See what mass scanning looks like in March 2024.F5.COM