125Articles
8Categories
2024-05-07Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
7 MayNATO and the EU Formally Condemned APT28 Cyber EspionageThe nation-state actor APT28 exploited the zero-day flaw CVE-2023-23397 in attacks against European entities since April 2022. The Russia-linked APT also targeted NATO entities and Ukrainian government agencies.SECURITYAFFAIRS.COM
7 MayTunnelVision - How Attackers Can Decloak Routing-Based VPNs For a Total VPN Leak (CVE-2024-3661)submitted by taaz to cybersecurity 6 points | 0 comments https://www.leviathansecurity.com/blog/tunnelvisionLEVIATHANSECURITY.COM
7 MayCitrix quietly fixes a new critical vulnerability similar to Citrix BleedA critical vulnerability has been affecting a line of Citrix NetScaler appliances, allowing attackers to capture sensitive information from the devices’ memory, but is now fixed, according to a Bishop Fox research. The vulnerability, which Citrix now appears to have silently addr…CSOONLINE.COM
7 MayRemote access risks on the rise with CVE-2024-1708 and CVE-2024-1709On February 19, ConnectWise reported two vulnerabilities in its ScreenConnect product, CVE-2024-1708 and 1709. The first is an authentication bypass vulnerability, and the second is a path traversal vulnerability. Both made it possible for attackers to bypass authentication proce…SECURITYINTELLIGENCE.COM
7 MayTrend Micro Antivirus One Let Attacker Inject Malicious Code Into ApplicationA significant update for Trend Micro’s Antivirus One software has been released. The update addresses a critical vulnerability that may have enabled attackers to inject malicious code.  The vulnerability, called custom dynamic library injection vulnerability CVE-2024-3…GBHACKERS.COM
7 MayOver 50,000 Tinyproxy servers vulnerable to critical RCE flawNearly 52,000 internet-exposed Tinyproxy instances are vulnerable to CVE-2023-49606, a recently disclosed critical remote code execution (RCE) flaw. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 37[−]
7 May145: ShannenShannen Rossmiller wanted to fight terrorism. So she went online and did. Read more about her from her book “The Unexpected Patriot: How an Ordinary American Mother Is Bringing Terrorists to Justice”. An affiliate link to the book on Amazon is here: https://amzn.to/3yaf5sI. Thank…DARKNETDIARIES.COM
7 MayRansomware Activity is Back on Track Despite Law Enforcement EffortsAccording to Corvus Insurance, ransomware activity surged in the first quarter of 2024, marking a 21% increase over the same period in 2023, despite disruptions to major ransomware groups like LockBit and ALPHV/BlackCat.HELPNETSECURITY.COM
7 MayNovel TunnelVision Attack Against Impacts Virtually All VPN Apps Through DHCP Server ManipulationThe TunnelVision attack is a newly discovered method that can compromise the security of most Virtual Private Network (VPN) applications by diverting traffic away from the encrypted tunnel, exposing it to potential interception.ARSTECHNICA.COM
7 MayWordPress Plugin Exploit Impacts Over 90,000 WebsitesThe vulnerability, which has a CVSS score of 9.8, is a SQL injection flaw that allows attackers to execute unauthorized SQL queries and potentially compromise the integrity and confidentiality of the WordPress database.SECURITYBOULEVARD.COM
7 MayCitrix Addresses High-Severity NetScaler Servers FlawCitrix appears to have quietly addressed a vulnerability in its NetScaler ADC and Gateway appliances that gave remote, unauthenticated attackers a way to obtain potentially sensitive information from the memory of affected systems.DARKREADING.COM
7 MayNew Case Study: The Malicious CommentHow safe is your comments section? Discover how a seemingly innocent 'thank you' comment on a product page concealed a malicious vulnerability, underscoring the necessity of robust security measures. Read the full real-life case study here.  When is a ‘Thank y…THEHACKERNEWS.COM
7 MayMultiple Samsung Mobile Devices Flaw Let Attackers Execute Arbitrary CodeIn a cybersecurity update, Samsung announced the patching of 25 vulnerabilities in its mobile devices, aiming to fortify them against potential code execution and privilege escalation attacks. This move is part of Samsung’s ongoing efforts to enhance the security of its sma…GBHACKERS.COM
7 MayCitrix NetScaler ADC & Gateway Flaw Lets Attackers Obtain Sensitive Data RemotelyA security vulnerability has been identified in Citrix NetScaler ADC and Gateway appliances, allowing remote attackers to access sensitive data without authentication. This flaw, identified as an out-of-bounds memory read issue, affects versions up to 13.1-50.23 of the software a…GBHACKERS.COM
7 MayWhat is IAM? Identity and access management explainedIdentity and access management definition IAM is a set of security services, processes, policies, and tools to define and manage the roles and access of users, devices, and application programming interfaces ( API s) to a variety of cloud and on-premises applications, servers and…CSOONLINE.COM
7 MayPrivacy Leadership That Gets Results: The Privacy Leader Compass - Valerie Lyons - RSA24 #1The Privacy Leader Compass presents a groundbreaking business oriented roadmap to building and leading a global privacy program. Founded on the McKinsey 7S model, the program is constructed around the 7S's of Privacy Leadership. Also included in the book are the contributions of …YOUTUBE.COM
7 MayClient-Side Threats, PCI DSS 4.0, and What You Need to Know - Lynn Marks - RSA24 #1While client-side resources enable web applications to provide a rich user experience, security teams struggle to gain visibility, insight, and enforcement over them. In this interview, Lynn Marks discusses the latest client-side attack trends observed by Imperva and the pivotal …YOUTUBE.COM
7 MayThe Role of Security Validation to Reduce and Quantify Cyber Risk - Volkan Ertürk - RSA24 #1With scores of security tools implemented, configured, and integrated security teams are overwhelmed while knowing there is still a possibility for a breach. As they work to prioritize threat exposures, it is imperative for organizations to have a clear, context-rich, and up-to-d…YOUTUBE.COM
7 MayChina-Linked Hackers Used ROOTROT Webshell in MITRE Network IntrusionThe MITRE Corporation has offered more details into the recently disclosed cyber attack, stating that the first evidence of the intrusion now dates back to December 31, 2023. The attack, which came to light last month, singled out MITRE's Networked Experimentation,…THEHACKERNEWS.COM
7 MayUS, UK police identify and charge Russian leader of LockBit ransomware gangThe identity of the leader of one of the most infamous ransomware groups in history has finally been revealed. On Tuesday, a coalition of law enforcement led by the U.K.’s National Crime Agency announced that Russian national, Dmitry Yuryevich Khoroshev, 31, is the person behind …TECHCRUNCH.COM
7 MayDBIR: Supply Chain Breaches up 68% Year Over YearAccording to Verizon's latest Data Breach Investigations Report (DBIR), supply chain breaches increased by 68% year-over-year, primarily due to software vulnerabilities exploited in ransomware and extortion attacks.DARKREADING.COM
7 MayCISA Releases Two Industrial Control Systems AdvisoriesCISA released two Industrial Control Systems (ICS) advisories on May 07, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-128-01 PTC Codebeamer ICSA-24-128-02 SUBNET Substation Server CISA enco…CISA.GOV
7 MayNew Attack on VPNsThis attack has been feasible for over two decades: Researchers have devised an attack against nearly all virtual private network applications that forces them to send and receive some or all traffic outside of the encrypted tunnel designed to protect it from snooping or tamperin…SCHNEIER.COM
7 MayWhite House in Talks With Industry to Build Legal Framework for Software LiabilityThe White House is engaging with the tech industry to establish a legal framework for software liability as part of a broader cybersecurity strategy, aiming to incentivize software developers to create products without exploitable security flaws.NEXTGOV.COM
7 MayUK Ministry of Defence System Hacked by Chinese HackersChinese state-sponsored hackers are highly sophisticated, leveraging advanced techniques and vast resources to conduct cyber espionage and steal sensitive data from Western governments, militaries, and critical infrastructure. The British government is expected to announce that p…GBHACKERS.COM
7 MayWhat we learned from the indictment of LockBit’s mastermindOn Tuesday, U.S. and U.K. authorities revealed that the mastermind behind LockBit, one of the most prolific and damaging ransomware groups in history, is a 31-year-old Russian named Dmitry Yuryevich Khoroshev, aka “LockbitSupp.” As it’s customary in these types of ann…TECHCRUNCH.COM
7 MayChange Healthcare went without cyber insurance before debilitating ransomware attackCongressional hearings have revealed that UnitedHealth was without cyber-insurance coverage before a hugely debilitating ransomware attack on its Change Healthcare subsidiary. During questions before the US House Energy and Commerce Committee last week UnitedHealth Group CEO Andr…CSOONLINE.COM
7 May3D-Printed USB Dead Man Switch (Prototype Demo)submitted by buskill to cybersecurity 1 points | 0 comments https://www.buskill.in/3d-print-2024-05/ Today we’re ecstatic to publish our first demo showing a homemade BusKill Cable (in the prototype 3D-printed case) triggering a lockscreen. Watch the 3D-Printed USB Dead Man Switc…BUSKILL.IN
7 MayUK confirms Ministry of Defence payroll data exposed in data breachThe UK Government confirmed today that a threat actor recently breached the country's Ministry of Defence and gained access to part of the Armed Forces payment network. [...]BLEEPINGCOMPUTER.COM
7 MayThe UK Says a Huge Payroll Data Breach by a ‘Malign Actor’ Has Exposed Details of Military PersonnelThe UK Ministry of Defense said a breach at a third-party payroll system exposed as many as 272,000 armed forces personnel and veterans. The post The UK Says a Huge Payroll Data Breach by a ‘Malign Actor’ Has Exposed Details of Military Personnel appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayHow to revamp your cybersecurity in the middle of the chaos - Ricardo Villadiego - RSA24 #2This interview examines the state and future of cybersecurity. Join the conversation as a cybersecurity expert delves into the failings of current defenses, the relentless tactics of attackers, and the imperative for innovative solutions. Explore how Lumu’s latest announcement de…YOUTUBE.COM
7 MayOne Big Problem SOC Teams can ACTUALLY Solve with AI - Jim McDonough - RSA24 #2Artificial intelligence isn’t a magic wand… but could AI actually solve the alert triage problem every security operations center faces? In this interview with Jim McDonough from Intezer, we’ll talk about how 2023 was a tipping point for the maturity of AI tech, what these soluti…YOUTUBE.COM
7 MayHow network transformation is driving demand for SASE and Zero Trust Edge services - T... - RSA24 #2In today's complex world, organizations are challenged to modernize their network while also improving their security posture to support digital transformation initiatives. Tim Roddy will talk about what is driving the need for network transformation efforts and why organizations…YOUTUBE.COM
7 MayBeyond Threats: The Shift to Proactive MDR - Randy WatkinsTraditional Managed Detection and Response (MDR) methods, centered on threat-based security, often miss the bigger picture of evolving cyber risks. This segment explores the shift towards a proactive, risk-based MDR approach, emphasizing the importance of anticipating and mitigat…YOUTUBE.COM
7 MayUS deploys commerce and communications against cyber threats, Blinken saysThe US government is doing everything it can to manage the cybersecurity challenges of quantum computing, cloud strategies, and generative AI and trying to secure sensitive technology hardware, Secretary of State Anthony Blinken said Monday. “We can’t tolerate technologies that t…CSOONLINE.COM
7 MayHackers exploit LiteSpeed Cache flaw to create WordPress adminsHackers have been targeting WordPress sites with an outdated version of the LiteSpeed Cache plugin to create administrator users and gain control of the websites. [...]BLEEPINGCOMPUTER.COM
7 MayAdministrator of ransomware operation LockBit named, charged, has assets frozenThe suspected creator and administrator of the notorious LockBit ransomware-as-a-service operation was indicted Tuesday in the United States on more than two dozen criminal charges. In addition, the US, UK, and Australian governments have frozen some of his assets and issued trav…CSOONLINE.COM
7 MayThe evolving role of the CISO and the business of cyber - James Doggett - RSA24 #2Semperis CISO Jim Doggett shares insights into the evolving role of the CISO. The daily onslaught of cyberattacks not only increases business risk, but also puts a company’s most important data at risk – data on the company, its employees, customers, and partners. Now, more than …YOUTUBE.COM
7 MayBusiness applications, they are the problem and the solution. - Chris Thomas - RSA24 #2In this interview, we will discuss the network security challenges of business applications and how they can also be the solution. AlgoSec has spent over two decades tackling tough security issues in some of the world’s most complex networks. Now, they’re applying their expertise…YOUTUBE.COM
7 MayA Vulnerability in Mozilla PDF.js Could Allow for Arbitrary Code ExecutionA vulnerability has been discovered in Mozilla PDF.js could allow for arbitrary code execution. Mozilla PDF.js is a PDF viewer that is built into Mozilla Firefox and can be used by other web browsers. Exploitation of this vulnerability could allow for arbitrary code execution in …CISECURITY.ORG
7 MayHarnessing the Power of Data and AI to Bridge Security Programs to the Business - Siva... - RSA24 #2With new industry regulations, like the SEC’s Cybersecurity Disclosure Rules, there is an increasing demand on CISOs and security leaders to be able to quantify, communicate, and demonstrate how their cybersecurity programs and strategies are impacting the business. In this inter…YOUTUBE.COM
7 MayWhat is Unified SASE as a Service and Why Should You Care - Renuka NadkarniIt’s not rocket science, it’s network security. And yet for many organizations, the road to securing employees and information often results in trade-offs to performance, agility, scalable services, and user experience. While first-generation SASE solutions promised companies a w…YOUTUBE.COM
7 MaySecuring Health: Navigating Ransomware Threats in Partnership with an MSSP - Jim BroomeThe interview will delve into the healthcare industry's tumultuous year in 2023, marked by 124 million breached health records across 725 hacking incidents (according to The HIPAA Journal). This interview will explore the critical role that MSSPs play in safeguarding health data …YOUTUBE.COM
📢 SECURITY ADVISORIES 5[−]
7 MayKrebs, Luber Added to Cyber Safety Review BoardThe Cyber Safety Review Board (CSRB) has added four new members, including Chris Krebs, former Director of the CISA, and David Luber, head of the NSA's Cybersecurity Directorate.CYBERSCOOP.COM
7 MayU.S. Government Warns of North Korean Spear-Phishing CampaignsThe North Korean state-sponsored threat actor Kimsuky is launching spear phishing attacks against individuals working at think tanks and academic institutions in the US, according to a joint advisory from the US State Department, the FBI, and the NSA.KNOWBE4.COM
7 MayRussian Hacker Dmitry Khoroshev Unmasked as LockBit Ransomware AdministratorThe U.K. National Crime Agency (NCA) has unmasked the administrator and developer of the LockBit ransomware operation, revealing it to be a 31-year-old Russian national named Dmitry Yuryevich Khoroshev. In addition, Khoroshev has been sanctioned by the U.K. Foreign…THEHACKERNEWS.COM
7 MayRansomware Attack Shuts Down Kansas City SystemsPhones, Wi-Fi, Digital Payments Are Among the Affected Systems The city administration of Kansas's largest city shut down IT systems and switched to cash transactions in the wake of a ransomware attack detected on Sunday. Municipal officials from the city of Wichita said Tuesday …DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 18[−]
7 MayMITRE Hack: China-Linked Group Breached Systems in December 2023MITRE has shared more details on the recent hack, including the new malware involved in the attack and a timeline of the attacker’s activities. The post MITRE Hack: China-Linked Group Breached Systems in December 2023 appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayNew TunnelVision Attack Lets Attackers Snoop on VPN TrafficIn a groundbreaking discovery, cybersecurity experts at Leviathan Security Group have unveiled a new type of cyberattack dubbed “TunnelVision,” which poses a threat to the security of Virtual Private Networks (VPNs).  This sophisticated attack method allows cyber…GBHACKERS.COM
7 MayDeutsche Telekom claimed by LockBit, dozens more ransom victimssubmitted by kid to cybersecurity 4 points | 0 comments https://cybernews.com/news/deutsche-telekom-lockbit-dozens-more-ransom-victims/CYBERNEWS.COM
7 MayThe Education Sector Experienced the Highest Number of Data Breaches in 2023New data from Verizon makes it clear that the Education sector is under attack, but also breaks down which threat actions and patterns are used most.KNOWBE4.COM
7 MayUS Sets Sights on Partnerships to Counter Cyberthreats, Secure AI in New Global Cyber StrategyThe new strategy of the U.S. government aims to defend against cyberattacks on critical infrastructure, prevent surveillance misuses, and promote digital solidarity among global partners.NEXTGOV.COM
7 MayLockBitSupp's Identity Revealed: Dmitry Yuryevich KhoroshevRussian National Faces US Criminal Indictment, Sanctions The Russian national known as LockBitSupp, head of ransomware-as-a-service group LockBit, came under indictment Tuesday in U.S. federal court and faces sanctions from the U.S. Department of the Treasury. Prosecutors say Loc…DATABREACHTODAY.CO.UK
7 MayLockBit ransomware admin identified, sanctioned in US, UK, AustraliaThe FBI, UK National Crime Agency, and Europol have unveiled sweeping indictments and sanctions against the admin of the LockBit ransomware operation, with the identity of the Russian threat actor being revealed for the first time. [...]BLEEPINGCOMPUTER.COM
7 MayNCA Unmasks and Sanctions Leader of Notorious LockBit Ransomware GroupIn collaboration with US and Australian authorities, the UK’s National Crime Agency (NCA) has unmasked and sanctioned the leader of the notorious LockBit ransomware group, once considered the world’s most harmful cybercrime operation. Russian national Dmitry Khoroshev…GBHACKERS.COM
7 MayGermany Recalls Ambassador to Russia Over CyberattacksGermany has recalled its ambassador to Russia in response to alleged Moscow-backed cyberattacks targeting various sectors in Germany, including defense, aerospace, and IT companies, as well as the German Social Democratic Party.THERECORD.MEDIA
7 MayThe Alleged LockBit Ransomware Mastermind Has Been Identifiedsubmitted by floofloof to securitynews 1 points | 0 comments https://www.wired.com/story/lockbitsupp-lockbit-ransomware/WIRED.COM
7 MayU.S. Charges Russian Man as Boss of LockBit Ransomware GroupThe United States joined the United Kingdom and Australia today in sanctioning 31-year-old Russian national Dmitry Yuryevich Khoroshev as the alleged leader of the infamous ransomware group LockBit. The U.S. Department of Justice also indicted Khoroshev as the gang's leader "Lock…KREBSONSECURITY.COM
7 MayLockBit Ransomware Mastermind Unmasked, ChargedCharges and sanctions announced against Dimitry Yuryevich Khoroshev, the alleged developer and operator of LockBit ransomware. The post LockBit Ransomware Mastermind Unmasked, Charged appeared first on SecurityWeek .SECURITYWEEK.COM
7 MaySuspected Chinese Hackers Hacked UK Defense ContractorUp to 270,000 Defense Staff Across the UK Affected by Hack Sensitive information of thousands of U.K. defense personnel was exposed to hackers after a threat actor with suspected ties to the Chinese government compromised the networks of a defense contractor. The data may not hav…DATABREACHTODAY.CO.UK
7 MayVerizon: Nearly 80% of Data Breaches Involve Phishing and the Misuse of CredentialsInnovative analysis of data breaches shows which attack vectors are being used and how they’re enabled, highlighting the roles phishing and credentials play.KNOWBE4.COM
7 MayBrandywine Realty Trust says data stolen in ransomware attackU.S. realty trust giant Brandywine Realty Trust has confirmed a cyberattack that resulted in the theft of data from its network. In a filing with regulators on Tuesday, the Philadelphia-based Brandywine described the cybersecurity incident as unauthorized access and the “de…TECHCRUNCH.COM
7 MayDefenders assemble: Time to get in the gameRecent research finds signs of progress in the public-private alliance against ransomwareSOPHOS.COM
7 MayDocGo discloses cyberattack after hackers steal patient health dataMobile medical care firm DocGo confirmed it suffered a cyberattack after threat actors breached its systems and stole patient health data. [...]BLEEPINGCOMPUTER.COM
7 MayBrandywine Realty Trust says data stolen in ransomware attackU.S. realty trust giant Brandywine Realty Trust has confirmed a cyberattack that resulted in the theft of data from its network. In a filing with regulators on Tuesday, the Philadelphia-based Brandywine described the cybersecurity incident as unauthorized access and the “de…TECHCRUNCH.COM
🕵️ THREAT INTELLIGENCE 41[−]
7 MayGlobal Fraud Prevention Leader BioCatch Valued at $1.3bn in Permira TakeoverThe acquisition will involve Permira buying out shares primarily from Bain Capital Tech Opportunities and Maverick Ventures, while existing shareholders Sapphire Ventures and Macquarie Capital will also increase their stakes in BioCatch.FINTECH.GLOBAL
7 MayFrom Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber ThreatsAs cyber threats grow more sophisticated, America cannot afford complacency. The time for decisive action and enhanced cyber resilience is now. The post From Warnings to Action: Preparing America’s Infrastructure for Imminent Cyber Threats appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayUS Releases International Cyberspace StrategyThe US calls for international engagement towards building an open, inclusive, resilient, safe, and equitable digital space. The post US Releases International Cyberspace Strategy appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayGermany Recalls Its Ambassador in Russia for a Week in Protest Over a Hacker AttackGermany recalled its ambassador to Russia for a week of consultations in Berlin following an alleged hacker attack on Chancellor Olaf Scholz’s party. The post Germany Recalls Its Ambassador in Russia for a Week in Protest Over a Hacker Attack appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayISC Stormcast For Tuesday, May 7th, 2024 https://isc.sans.edu/podcastdetail/8970, (Tue, May 7th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
7 MayAccelerating Real Time Security Outcomes with Precision AITo help our customers combat new threats while also leveraging the promise of efficient security, Palo Alto Networks is introducing Precision AI. The post Accelerating Real Time Security Outcomes with Precision AI appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
7 MayCopilots in Cybersecurity — Realizing the Promise of PrecisionRelevancy and precision become the most critical characteristics to the success of GenAI within cybersecurity. AI can ask questions in a natural language. The post Copilots in Cybersecurity — Realizing the Promise of Precision appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
7 MayCounter AI Attacks with AI DefensePrecision AI by Palo Alto Networks is our proprietary AI system, helping security teams trust AI outcomes, automating detection, prevention and remediation. The post Counter AI Attacks with AI Defense appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
7 MayDebian just released a kernel update with hundreds of CVE IDssubmitted by teh_shame to cybersecurity 61 points | 3 comments https://lists.debian.org/debian-security-announce/2024/msg00090.html It’s quite the listLISTS.DEBIAN.ORG
7 MayCitrix Addresses High-Severity NetScaler Servers Flawsubmitted by kid to cybersecurity 4 points | 0 comments https://www.darkreading.com/cyber-risk/citrix-addresses-high-severity-flaw-in-netscaler-adc-and-gatewayDARKREADING.COM
7 MayNVIDIA patches three ChatRTX security bugssubmitted by kid to cybersecurity 2 points | 0 comments https://www.scmagazine.com/news/nvidia-patches-three-chatrtx-security-bugsSCMAGAZINE.COM
7 MayRSAC Fireside Chat: LevelBlue launches, offers managed security services to bolster resiliencySAN FRANCISCO – The already simmering MSSP global market just got hotter. Related: The transformative power of GenAI/LLM This week at RSA Conference 2024 , AT&T announced the launch of LevelBlue – a top-tier managed security services business formed by … (more…)LASTWATCHDOG.COM
7 MayRSA Conference 2024 – Announcements Summary (Day 1)Hundreds of companies are showcasing their products and services this week at the 2024 edition of the RSA Conference in San Francisco. The post RSA Conference 2024 – Announcements Summary (Day 1) appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayAT&T Launches New Managed Cybersecurity Services Business LevelBlueLevelBlue, a new WillJam Ventures and AT&T joint venture, provides various managed cybersecurity services. The post AT&T Launches New Managed Cybersecurity Services Business LevelBlue appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayWeaponized Windows Shortcut Files Deploying Fileless RokRat MalwareHackers target LNK (Windows shortcut) files to disseminate malware because they can embed malicious code that automatically executes when the shortcut is clicked.  LNK files appear harmless but can stealthily trigger malware downloads or other malicious actions, making them …GBHACKERS.COM
7 MayRSAC Fireside Chat: Lacework’s cloud-native security platform delivers useful contextSAN FRANCISCO — Cloud security is stirring buzz as RSA Conference 2024 ramps up at Moscone Convention Center here. Related: The fallacy of ‘security-as-a-cost-center’ Companies are clambering to mitigate unprecedented exposures spinning out of their increasing r…LASTWATCHDOG.COM
7 MayRSAC Fireside Chat: AT&T, WillJam Ventures partner to launch new MSSP — LevelBlueSAN FRANCISCO – The already simmering MSSP global market just got hotter. Related: The transformative power of GenAI/LLM This week at RSA Conference 2024 , AT&T announced the launch of LevelBlue – a top-tier managed security services business formed by … (more…)LASTWATCHDOG.COM
7 MayAudit of Allbridge EstrelaAllbridge , with support from the Stellar Development Foundation , mandated Quarkslab to perform an audit of Estrela, an automated market maker for Stellar built on Soroban.QUARKSLAB.COM
7 MayAPT42 Hackers Pose as Journalists to Harvest Credentials and Access Cloud DataThe Iranian state-backed hacking outfit called APT42 is making use of enhanced social engineering schemes to infiltrate target networks and cloud environments. Targets of the attack include Western and Middle Eastern NGOs, media organizations, academia, l…THEHACKERNEWS.COM
7 MayBoosting US Tech Leadership: Antony Blinken's Agenda at RSACSecretary of State Antony Blinken Debuts New Policies to Propel US Tech Advancement U.S. Secretary of State Antony Blinken highlights a new international cyberspace strategy at RSA Conference 2024, aiming to protect democratic values and maximize technological potential in an era…DATABREACHTODAY.CO.UK
7 MayWhy CISO’s Fail: Some Practical Lessons for the Future - Barak Engel - CSP #173Security is both overcooked and underdeveloped at the same time, and we keep doubling down on insanity. Our own community is at great fault for pushing fear and ignoring service, leading to consistent, negative experiences for all other stakeholders in the organization - and ulti…YOUTUBE.COM
7 MayStealing cookies: Researchers describe how to bypass modern authenticationsubmitted by kid to cybersecurity 1 points | 0 comments https://cyberscoop.com/stealing-cookies-researchers-describe-how-to-bypass-modern-authentication/CYBERSCOOP.COM
7 MayWiz Raises $1 Billion at $12 Billion ValuationCloud security giant Wiz has raised $1 billion, which brings the total funding to $1.9 billion, at a valuation of $12 billion. The post Wiz Raises $1 Billion at $12 Billion Valuation appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayAkamai to Acquire API Protection Startup Noname Security for $450 MillionAkamai has announced plans to acquire Noname Security to enhance its API protection offering. The post Akamai to Acquire API Protection Startup Noname Security for $450 Million appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayInfluencing Change as Security Leader: Communication Is KeyNordstrom CISO Nicole Darden Ford Shares Her Journey From B2B to B2C Industry From working in B2B industries to now shifting to a B2C industry, Nicole Darden Ford, CISO, Nordstrom, is confident of bringing a fresh perspective to tackling the retail sector's complex cybersecurity …DATABREACHTODAY.CO.UK
7 MayNiobium Raises $5.5M for Zero Trust Computing Hardware AccelerationNiobium has raised $5.5 million in seed funding for a fully homomorphic encryption (FHE) hardware accelerator designed for zero trust computing. The post Niobium Raises $5.5M for Zero Trust Computing Hardware Acceleration appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayHunters Announces Full Adoption of OCSF and Introduces OCSF-Native SearchHunters, the pioneer in modern SOC platforms, today announced its full adoption of the Open Cybersecurity Schema Framework (OCSF), coupled with the launch of groundbreaking OCSF-native Search capability. This strategic advancement underscores Hunters’ commitment to standardizing …GBHACKERS.COM
7 MayTXOne Networks Scores $51M Series B ExtensionICS and OT security startup TXOne Networks secures $51 million in a Series B extension and adds new investors from Taiwan. The post TXOne Networks Scores $51M Series B Extension appeared first on SecurityWeek .SECURITYWEEK.COM
7 MayCredential-Harvesting Campaign Impersonates Fashion Retailer SheinA phishing campaign is impersonating fashion retailer Shein in an attempt to steal users’ credentials, according to researchers at Check Point.KNOWBE4.COM
7 MayISMG Editors: Day 1 Highlights at RSA Conference 2024Panel on Secretary of State Antony Blinken's Keynote, Risk and Emerging Tech From the RSA Conference in San Francisco, four ISMG editors discussed highlights from the first day including the keynote on global threats by U.S. Secretary of State Antony Blinken, enterprise risk mana…DATABREACHTODAY.CO.UK
7 MayFrom Vision to Reality: A CISO’s Perspective on Cybersecurity Marketplaces - Mike Lyborg - RSA24 #2In this interview, join Swimlane Chief Information Security Officer, Mike Lyborg, and NAME, TITLE at SC Media, as we discuss the value of cybersecurity marketplaces from a CISO perspective. Through insightful discussions, unpack the connection between outcomes-driven solutions an…YOUTUBE.COM
7 MayThe Role of AI in Securing Software and Data Supply Chains - Josh Lemos - RSA24 #2The cybersecurity landscape continues to transform, with a growing focus on mitigating supply chain vulnerabilities, enforcing data governance, and incorporating AI into security measures. This transformation promises to steer DevSecOps teams toward software development processes…YOUTUBE.COM
7 MayMicrosoft announces the 2024 Microsoft Security Excellence Awards winnersAt this year's Microsoft Security Excellence Awards, we took a journey through the evolution of cybersecurity from the 1950s to today. While this event theme celebrated the significant technological advancements that have shaped each decade, the main focus was on the Microsoft In…MICROSOFT.COM
7 MayBots are Taking Over the Internet: What That Means for Security - Erez HassonBots accounted for nearly half of all internet traffic in 2023, with bad bot traffic rising for a fifth consecutive year. Malicious bot activity is a significant risk for businesses as it can result in account compromise, higher infrastructure and support costs, customer churn, a…YOUTUBE.COM
7 MayReport: US Cybersecurity Makes Major Gains Amid New ThreatsFirst-Ever US National Cybersecurity Posture Report Highlights AI, Cloud Migrations The Office of the National Cyber Director released the United States' first-ever report on the nation's overall cybersecurity posture, revealing significant improvements despite an ever-changing t…DATABREACHTODAY.CO.UK
7 MayZscaler Annual Phishing Report Finds a Near 60% Increase of Phishing Attacks in 2023 -... - RSA24 #2The landscape of phishing attacks continues to rapidly evolve. In 2023, Zscaler ThreatLabz observed a year-over-year increase of 58.2% in global phishing attempts. This surge was characterized by emerging schemes, including voice phishing, recruitment scams, and browser-in-the-br…YOUTUBE.COM
7 MayTetris, APT42, Kimsuky, Android, ChatRTX, MITRE, Computer Dating, Josh Marpet, More - SWN #384Tetris, APT42, Kimsuky, Android, ChatRTX, MITRE, Computer Dating, Josh Marpet, and more, on this Edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-384YOUTUBE.COM
7 MayIdentity is Under Attack: Navigating a New Era of “Verify More, Trust Less” - Andre DurandOver the past 15 years, identity has evolved from a perimeter-based security model with clear boundaries to one that is fluid, flexible, and permeates every aspect of digital business. Simultaneously, AI has infiltrated every enterprise, becoming a double-edged sword for defender…YOUTUBE.COM
7 MayNew Research from AT&T Cybersecurity Reveals 2024 Cyber Resilience Trends - Theresa La... - RSA24 #2In this segment, Theresa will unpack the complexities of cyber resilience, and dive into new research that examines dynamic computing. She’ll discuss how it merges IT and business operations, taps into data-driven decision-making, and redefines computing for the modern era. This …YOUTUBE.COM
7 MaySBOMS for Evil: How Evil are they? - Larry PesceSoftware security is more critical than ever before, with cyber threats continuing to evolve. SBOMs (Software Bill of Materials) provide a comprehensive inventory of all components used in a software package, including their versions and dependencies. This transparency and visibi…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
7 MayCuckoo Mac Malware Mimics Music Converter to Steals Passwords and CryptoCuckoo employs deceptive tactics, claiming to convert Spotify music to MP3 format while actually stealing sensitive data like passwords, browsing history, cryptocurrency wallet details, and more.HACKREAD.COM
🎙️ PODCASTS 1[−]
7 MayHow to inspire the next generation of scientists | Unlocked 403: Cybersecurity podcastAs Starmus Earth draws near, we caught up with Dr. Garik Israelian to celebrate the fusion of science and creativity and venture where imagination flourishes and groundbreaking ideas take flightWELIVESECURITY.COM
📡 INFOSEC NEWS 16[−]
7 MayMastodon Delays Firm Fix to Solve Link Preview DDoS IssueMastodon delayed a firm fix for link preview DDoS issues, pushing it back to version 4.4.0 from the expected 4.3.0 release. The issue arises from the decentralized nature of Mastodon, where link previews generate excessive traffic on host servers.THEREGISTER.COM
7 MayAnetac Raises $16M in FundingAnetac, a startup protecting companies from blind spots of service accounts in hybrid environments, raised $16M in funding. The round was led by Liberty Global with participation from Shield Capital, GP Ventures, Anetac CEO Tim Eades and Jason Witty.FINSMES.COM
7 MayGoogle Simplifies 2-Factor Authentication Setup (It's More Important Than Ever)Google on Monday announced that it's simplifying the process of enabling two-factor authentication (2FA) for users with personal and Workspace accounts. Also called, 2-Step Verification (2SV), it aims to add an extra layer of security to users' accounts to prevent takeo…THEHACKERNEWS.COM
7 MayRussian Operator of BTC-e Crypto Exchange Pleads Guilty to Money LaunderingA Russian operator of a now-dismantled BTC-e cryptocurrency exchange has pleaded guilty to money laundering charges from 2011 to 2017. Alexander Vinnik, 44, was charged in January 2017 and taken into custody in Greece in July 2017. He was subsequently extradit…THEHACKERNEWS.COM
7 MayAkamai confirms acquisition of Noname for $450MA couple of weeks ago, TechCrunch broke the news that Akamai was in discussions to acquire Noname Security, a specialist in API security, for around $500 million. Today the deal is official, albeit at a lower price. Akamai has confirmed that it is buying the company in a $450 mil…TECHCRUNCH.COM
7 MayDangerous Scammers From the Yahoo Boys Group Operate Openly on Social MediaThe Yahoo Boys, a group of scammers primarily based in West Africa, openly operate on various social media platforms like Facebook, WhatsApp, and Telegram, engaging in fraudulent activities that range from romance fraud to business email compromise.ARSTECHNICA.COM
7 MaySynopsys to Sell its Software Integrity Business to Clearlake Capital and Francisco PartnersAfter the transaction, the business will operate independently as an application security testing software provider, with the current management team expected to lead the new entity.FINSMES.COM
7 MayWiz raises $1B at a $12B valuation to expand its cloud security platform through acquisitionsWiz, the buzzy startup building an all-in-one cloud security platform, is on an acquisition march to expand its business quickly en route to an IPO. Now, it has closed a major round of funding of $1 billion to help on that march. The Series E — co-led by Andreessen Horowitz…TECHCRUNCH.COM
7 MayWhat is credential stuffing? | Kaspersky official blogHow attackers use databases of stolen or leaked passwords to carry out credential stuffing attacks.KASPERSKY.COM
7 MayRussian Operator of BTC-e Crypto Exchange Pleads Guilty to Money LaunderingThe U.S. Department of Justice stated that BTC-e was a primary method for cybercriminals to transfer and launder illegal proceeds. Vinnik's actions led to a loss of at least $121 million through BTC-e.THERECORD.MEDIA
7 MayReport: Only 45% of Organizations Use MFA to Protect Against FraudA report by Ping Identity highlighted the pressing need for enhanced identity protection strategies, as 97% of organizations struggle with identity verification, and 48% lack confidence in defending against AI-related attacks.HELPNETSECURITY.COM
7 MayBetterHelp to pay $7.8 million to 800,000 in health data sharing settlementBetterHelp has agreed to pay $7.8 million in a settlement agreement with the U.S. Federal Trade Commission (FTC) over allegations of misusing and sharing consumer health data for advertising purposes. [...]BLEEPINGCOMPUTER.COM
7 MayAT&T Splits Cybersecurity Services Business, Launches LevelBlueAT&T has split its cybersecurity services business to form a new company called LevelBlue. It includes AT&T's managed security services business, cybersecurity consulting business, and assets from the acquisition of AlienVault in 2018.DARKREADING.COM
7 MayNew attack leaks VPN traffic using rogue DHCP serversA new attack dubbed "TunnelVision" can route traffic outside a VPN's encryption tunnel, allowing attackers to snoop on unencrypted traffic while maintaining the appearance of a secure VPN connection. [...]BLEEPINGCOMPUTER.COM
7 MayWiz raises $1B at a $12B valuation to expand its cloud security platform through acquisitionsWiz, the buzzy startup building an all-in-one cloud security platform, is on an acquisition march to expand its business quickly en route to an IPO. Now, it has closed a major round of funding of $1 billion to help on that march. The Series E — co-led by Andreessen Horowitz…TECHCRUNCH.COM