107Articles
8Categories
2024-05-22Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
22 MayCritical Veeam Backup Enterprise Manager Flaw Allows Authentication BypassUsers of Veeam Backup Enterprise Manager are being urged to update to the latest version following the discovery of a critical security flaw that could permit an adversary to bypass authentication protections. Tracked as CVE-2024-29849 (CVSS score: 9.8), the vulner…THEHACKERNEWS.COM
22 MayQNAP Patches New Flaws in QTS and QuTS hero Impacting NAS AppliancesTaiwanese company QNAP has rolled out fixes for a set of medium-severity flaws impacting QTS and QuTS hero, some of which could be exploited to achieve code execution on its network-attached storage (NAS) appliances. The issues, which impact QTS 5.1.x and QuTS hero…THEHACKERNEWS.COM
22 MayCritical Flaw In Confluence Server Let Attackers Execute Arbitrary CodeThe widely used team workspace corporate wiki Confluence has been discovered to have a critical remote code execution vulnerability. This vulnerability has been assigned with CVE-2024-21683 with a severity of 8.3 (High). This vulnerability affects multiple versions of Confluence …GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 21[−]
22 May KEVRise of zero-day exploits reshape security recommendationsWith zero-day attacks rapidly eclipsing exploits of known flaws, CISOs face the specter of having to switch up their security strategies in favor of post-exploitation response. That’s the key takeaway from security firm Rapid7’s newly released 2024 Attack Intelligence Report : Wi…CSOONLINE.COM
22 MayThreat Actors Leverage Bitbucket Artifacts to Breach AWS AccountsIn a recent investigation into Amazon Web Services (AWS) security breaches, Mandiant uncovered a troubling scenario client-specific secrets were leaked from Atlassian’s code repository tool, Bitbucket, and exploited by threat actors to gain unauthorized access to AWS accoun…GBHACKERS.COM
22 MayMS Exchange Server Flaws Exploited to Deploy Keylogger in Targeted AttacksAn unknown threat actor is exploiting known security flaws in Microsoft Exchange Server to deploy a keylogger malware in attacks targeting entities in Africa and the Middle East. Russian cybersecurity firm Positive Technologies said it identified over 30 victims spanning governme…THEHACKERNEWS.COM
22 MayVeeam Warns of Critical Backup Enterprise Manager Auth Bypass Bug?Veeam warned customers today to patch a critical security vulnerability that allows unauthenticated attackers to sign into any account via the Veeam Backup Enterprise Manager (VBEM).BLEEPINGCOMPUTER.COM
22 MayAuthelia: Open-Source Authentication and Authorization ServerAuthelia is an open-source authentication and authorization server that offers 2FA and SSO for applications through a web portal. It works alongside reverse proxies to permit, deny, or redirect requests.HELPNETSECURITY.COM
22 MayGHOSTENGINE Exploits Vulnerable Drivers to Disable EDRs in Cryptojacking AttackCybersecurity researchers have discovered a new cryptojacking campaign that employs vulnerable drivers to disable known security solutions (EDRs) and thwart detection in what's called a Bring Your Own Vulnerable Driver (BYOVD) attack. Elastic Security Labs is tracking t…THEHACKERNEWS.COM
22 MayBreach Forums Plans Dark Web Return This Week Despite FBI CrackdownShinyHunters disclosed to Hackread.com their suspicion that Baphomet may have surrendered backend credentials to the FBI, leading to the complete seizure of the forum’s Escrow, both dark web and clearnet domains.HACKREAD.COM
22 MayOmniVision Technologies Cyber Attack, Hackers Stolen Personal Data in Ransomware AttackOmniVision Technologies, Inc. (OVT) recently disclosed a significant security breach that compromised its clients’ personal data. The company, known for its advanced digital imaging solutions, reported that the incident occurred between September 4, 2023, and September 30, …GBHACKERS.COM
22 MayCritical Vulnerability in Honeywell Virtual Controller Allows Remote Code ExecutionClaroty shows how Honeywell ControlEdge Virtual UOC vulnerability can be exploited for unauthenticated remote code execution. The post Critical Vulnerability in Honeywell Virtual Controller Allows Remote Code Execution appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayCritical Veeam Vulnerability Leads to Authentication BypassVeeam Backup Enterprise Manager update resolves multiple vulnerabilities, including a critical authentication bypass. The post Critical Veeam Vulnerability Leads to Authentication Bypass appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayCritical Authentication Bypass Resolved in GitHub Enterprise ServerCritical vulnerability in GitHub Enterprise Server allows unauthenticated attackers to obtain administrative privileges. The post Critical Authentication Bypass Resolved in GitHub Enterprise Server appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayResearchers Warn of Chinese-Aligned Hackers Targeting South China Sea CountriesCybersecurity researchers have disclosed details of a previously undocumented threat group called Unfading Sea Haze that's believed to have been active since 2018. The intrusion singled out high-level organizations in South China Sea countries, particularly military and…THEHACKERNEWS.COM
22 MayTurla Hackers Leveraging Microsoft Build Engine To Deliver Malware StealthilyHackers exploit the Microsoft Build Engine because it can execute code and build applications. This engine provides an easy means for them to send harmful payloads using legitimate software development tools. Moreover, inside corporate environments, Build Engine’s trusted n…GBHACKERS.COM
22 MayIkaruz Red Team Leveraging LockBit Builder To Launch Ransomware AttacksHackers exploit ransomware as it enables them to extort money from victims by encrypting their data and demanding a ransom for its release.  While this method is highly lucrative and often difficult to trace back to the perpetrators. Sentinel One researchers recently discove…GBHACKERS.COM
22 MayMicrosoft’s new Windows 11 Recall is a privacy nightmareMicrosoft's announcement of the new AI-powered Windows 11 Recall feature has sparked a lot of concern, with many thinking that it has created massive privacy risks and a new attack vector that threat actors can exploit to steal data. [...]BLEEPINGCOMPUTER.COM
22 MayMicrosoft Azure’s Russinovich sheds light on key generative AI threatsGenerative AI-based threats operate over a huge landscape, and CISOs must look at it from a variety of perspectives, said Microsoft Azure CTO Mark Russinovich during Microsoft Build conference this week in Seattle. “We take a multidisciplinary approach when it comes to AI securit…CSOONLINE.COM
22 MayLockBit Demands $25M Ransom from Canadian Drug Store ChainThreatens to Leak Stolen Data; Attack Temporarily Shut Down Retail Pharmacy Stores LockBit cybercriminals demanded a $25 million ransom from Canadian pharmacy retail chain London Drugs following an attack detected in late April that forced the company to temporarily close its 79 …DATABREACHTODAY.CO.UK
22 MayUS government could mandate quantum-resistant encryption from JulyCompanies working on sensitive projects for the US government may soon be required to use encryption algorithms that protect their data and technology from quantum computer attacks. In July, the National Institute for Standards and Technology (NIST), an agency of the Department o…CSOONLINE.COM
22 MayOn Fire Drills and Phishing TestsMatt Linton, Chaos Specialist In the late 19th and early 20th century, a series of catastrophic fires in short succession led an outraged public to demand action from the budding fire protection industry. Among the experts, one initial focus was on “Fire Evacuation Tests”. The ea…SECURITY.GOOGLEBLOG.COM
22 MayBuilding DDoS Botnets with TP-Link and Netgear RoutersThreat actors double down with their botnet building efforts. Vulnerable Netgear routers join exploitable TP-Link and other IoT devices, expanding attacker DDoS capabilities.F5.COM
22 MayBuilding DDoS Botnets with TP-Link and Netgear RoutersThreat actors double down with their botnet building efforts. Vulnerable Netgear routers join exploitable TP-Link and other IoT devices, expanding attacker DDoS capabilities.F5.COM
📋 SECURITY BULLETINS 1[−]
22 MayIvanti Patches Critical Code Execution Vulnerabilities in Endpoint ManagerIvanti has released product updates to resolve multiple vulnerabilities, including critical code execution flaws in Endpoint Manager. The post Ivanti Patches Critical Code Execution Vulnerabilities in Endpoint Manager appeared first on SecurityWeek .SECURITYWEEK.COM
📢 SECURITY ADVISORIES 12[−]
22 MayZoom Adopts NIST-Approved Post-Quantum End-to-End Encryption for MeetingsPopular enterprise services provider Zoom has announced the rollout of post-quantum end-to-end encryption (E2EE) for Zoom Meetings, with support for Zoom Phone and Zoom Rooms coming in the future. "As adversarial threats become more sophisticated, so does the need to safeguard us…THEHACKERNEWS.COM
22 MaySnapchat Revises AI Privacy Policy Following UK ICO ProbeInstant messaging app Snapchat its artificial intelligence-powered tool under compliance after the U.K. data regulator said it violated the privacy rights of individual Snapchat users.HEALTHCAREINFOSECURITY.COM
22 MayRockwell Advises Disconnecting Internet-Facing ICS Devices Amid Cyber ThreatsRockwell Automation is urging its customers to disconnect all industrial control systems (ICSs) not meant to be connected to the public-facing internet to mitigate unauthorized or malicious cyber activity. The company said it's issuing the advisory due to "heightened ge…THEHACKERNEWS.COM
22 MayProof of Concept: Ensuring AI Compliance, Security ControlsPanelists Troy Leach and Avani Desai on AI Organizational and Regulatory Challenges In the latest "Proof of Concept," Troy Leach of CSA and Avani Desai of Schellman discussed integrating AI into organizational frameworks. They highlighted the evolving roles of compliance and lead…DATABREACHTODAY.CO.UK
22 MayUK Cybersecurity Org Offers Advice for Thwarting BEC AttacksThe UK’s National Cyber Security Centre (NCSC) has issued guidance to help medium-sized organizations defend themselves against business email compromise (BEC) attacks, especially those targeting senior staff members.KNOWBE4.COM
22 MayRockwell Automation Urges Disconnection of ICS from the InternetAdvisory Says Disconnecting ICS Reduces Exposure to Malicious Cyber Activities Rockwell Automation warned customers to disconnect industrial control systems from the internet, citing escalating cyber threats and rising global geopolitical tensions. Disconnecting these systems is …DATABREACHTODAY.CO.UK
22 MayMicrosoft's Recall Stokes Security and Privacy ConcernsK ICO Announces Probe Into Microsoft Screenshot Storage Feature Microsoft's new automatic screenshot retrieval feature could enable hackers to steal sensitive information such as online banking credentials, security experts warned. Additionally, the U.K. data regulator will probe…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 14[−]
22 MayHackers Breached Western Sydney University Microsoft 365 & Sharepoint EnvironmentsWestern Sydney University has informed approximately 7,500 individuals today of an unauthorized access incident involving its IT network. The breach, first identified in January 2024, affected the University’s Microsoft Office 365 environment, including email accounts and S…GBHACKERS.COM
22 May100 Groups Urge Feds to Put UHG on Hook for Breach NoticesOver 100 medical associations and industry groups, representing thousands of U.S. doctors and healthcare professionals, have urged the HHS to hold Change Healthcare accountable for breach notifications following a massive February ransomware attack.BANKINFOSECURITY.COM
22 MayCyber Security Today, May 22, 2024 - LockBit ransomware gang hits more victims, Fluent Bit servers need to be updated, and moreThis episode reports on a cyber warning to American drinking water utilities from a regulator, a ransomware attack on a prescription drug distributor and moreCYBERSECURITYTODAY.LIBSYN.COM
22 MayMore Than 70% of Surveyed Water Systems Failed to Meet EPA Cyber StandardsOver 70% of water systems surveyed since last September failed to meet certain EPA security standards, leaving them vulnerable to cyberattacks that could disrupt wastewater and water sanitation systems nationwide, the EPA reported on Monday.NEXTGOV.COM
22 MayVirtual Event Today: Threat Detection and Incident Response (TDIR) SummitSecurityWeek’s Threat Detection and Incident Response (TDIR) Summit takes place on Wednesday, May 22nd as a fully immersive virtual summit. The post Virtual Event Today: Threat Detection and Incident Response (TDIR) Summit appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayHackers Claiming Access to Qatar National Bank DatabaseA group of hackers has claimed to have accessed the database of Qatar National Bank (QNB), one of the largest financial institutions in the Middle East. The announcement was made via a post on Twitter by the account MonThreat. ANYRUN malware sandbox’s 8th Birthday Special Of…GBHACKERS.COM
22 MayChinese Cyber Espionage Groups Tied to ORB Network AttacksBeijing's Tough-to-Track Mesh Networks Built Using Hacked Devices, Mandiant Warns Multiple Chinese cyber espionage groups, including Volt Typhoon, are using operational relay box networks, aka ORBs, built using leased proxy servers and compromised or end-of-life routers, to avoid…DATABREACHTODAY.CO.UK
22 MayLastPass is now encrypting URLs in password vaults for better securityLastPass announced it will start encrypting URLs stored in user vaults for enhanced privacy and protection against data breaches and unauthorized access. [...]BLEEPINGCOMPUTER.COM
22 MayIntercontinental Exchange to pay $10M SEC penalty over VPN breachThe Intercontinental Exchange (ICE) will pay a $10 million penalty to settle charges brought by the U.S. Securities and Exchange Commission (SEC) after failing to ensure its subsidiaries promptly reported an April 2021 VPN security breach. [...]BLEEPINGCOMPUTER.COM
22 MayState hackers turn to massive ORB proxy networks to evade detectionSecurity researchers are warning that China-linked state-backed hackers are increasingly relying on vast proxy networks of virtual private servers and compromised connected devices for cyberespionage operations. [...]BLEEPINGCOMPUTER.COM
22 MayRussia's Turla APT Abuses MSBuild to Deliver TinyTurla Backdoorsubmitted by kid to cybersecurity 3 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/russia-turla-apt-msbuild-tinyturla-backdoorDARKREADING.COM
22 MayNovel EDR-Killing 'GhostEngine' Malware Is Built for Stealthsubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/novel-edr-killing-ghostengine-malware-stealthDARKREADING.COM
22 MayCheck Your Wallet? How Mobile Driver’s Licenses are Changing Online TransactionsCan you recall the last time you opened a bank account? It’s likely you walked into a local bank branch and spoke to a representative who asked for your driver’s license and social security card to verify your identity. Now imagine you want to create a bank account online. The pr…NIST.GOV
🕵️ THREAT INTELLIGENCE 26[−]
22 MayISC Stormcast For Wednesday, May 22nd, 2024 https://isc.sans.edu/podcastdetail/8992, (Wed, May 22nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
22 MayChrome 125 Update Patches High-Severity VulnerabilitiesGoogle released a Chrome 125 update to resolve four high-severity vulnerabilities reported by external researchers. The post Chrome 125 Update Patches High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayBeware – Your Customer Chatbot is Almost Certainly Insecure: ReportAs chatbots become more adventurous, the dangers will increase. The post Beware – Your Customer Chatbot is Almost Certainly Insecure: Report appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayUnredacting Pixelated TextExperiments in unredacting text that has been pixelated.SCHNEIER.COM
22 MayCloud-Based Malware Attack Abusing Google Drive & DropboxA phishing email with a malicious zip attachment initiates the attack. The zip contains a single executable disguised as an Excel file using Left-To-Right Override characters (LTRO). LTRO makes the filename appears to have a harmless .xlsx extension (e.g., RFQ-101432620247flexe.x…GBHACKERS.COM
22 MayHoles in Your Bitbucket: Why Your CI/CD Pipeline Is Leaking Secretssubmitted by kid to cybersecurity 1 points | 0 comments https://cloud.google.com/blog/topics/threat-intelligence/bitbucket-pipeline-leaking-secretsCLOUD.GOOGLE.COM
22 MayAnnouncing KnowBe4 Student Edition: Cybersecurity Education Tailored for the Next GenerationI recently heard another heartbreaking story of students who were scammed out of financial aid by a phishing attack . We have also heard stories of employment scams and social media based attacks where students fell victim to cybercriminals. KNOWBE4.COM
22 MayAI in Cyber Is Here to Stay — How to Weather This Sea ChangeAI is transforming cybersecurity, automating tasks and enabling better custom threat detection. AI impacts jobs and cloud services. The post AI in Cyber Is Here to Stay — How to Weather This Sea Change appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
22 MayWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 2 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
22 MayDHS establishes Artificial Intelligence Safety and Security BoardAs part of its commitment to addressing the rapid growth and adoption of AI technology across all industries and sectors, the Department of Homeland Security (DHS) announced the establishment of the Artificial Intelligence Safety and Security Board in late April. The Board’…SECURITYINTELLIGENCE.COM
22 MayNMAP Scanning without Scanning (Part 2) - The ipinfo API, (Wed, May 22nd)Going back a year or so, I wrote a story on the passive recon, specifically the IPINFO API ( https://isc.sans.edu/diary/28596 ).&#;x26;#;xc2;&#;x26;#;xa0; This API returns various information on an IP address: the registered…ISC.SANS.EDU
22 MayStealerium Malware Targeting Wi-Fi Networks, Outlook to Steal Login CredentialsA new strain of malware known as Stealerium has been identified. It targets Wi-Fi networks and Microsoft Outlook to steal login credentials. This sophisticated malware poses a significant threat to individual users and organizations, highlighting the need for heightened vigilance…GBHACKERS.COM
22 MayUnfading Sea Haze APT Targeting South China Sea GovernmentsBitdefender Exposes Unfading Sea Haze's Advanced Cyberespionage Tactics A previously undetected, suspected Chinese-state threat actor has been targeting governments in the South China Sea for years with a remote access Trojan that has been a favorite of Chinese hackers since its …DATABREACHTODAY.CO.UK
22 MayChinese hackers hide on military and govt networks for 6 yearsA previously unknown threat actor dubbed "Unfading Sea Haze" has been targeting military and government entities in the South China Sea region since 2018, remaining undetected all this time. [...]BLEEPINGCOMPUTER.COM
22 MayUS to Invest $50 Million in Securing Hospitals Against Cyber ThreatsARPA-H has announced a $50 million investment in tools to help IT teams better secure hospital environments. The post US to Invest $50 Million in Securing Hospitals Against Cyber Threats appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayRockwell Automation Urges Customers to Disconnect ICS From InternetRockwell Automation is concerned about internet-exposed ICS due to heightened geopolitical tensions and adversarial cyber activity globally. The post Rockwell Automation Urges Customers to Disconnect ICS From Internet appeared first on SecurityWeek .SECURITYWEEK.COM
22 MayCriminal IP: Enhancing Security Solutions through AWS Marketplace IntegrationAI SPERA, a leader in Cyber Threat Intelligence (CTI) solutions, announced today that its proprietary search engine, Criminal IP, is now available on the AWS Marketplace. This integration ensures efficient software procurement and deployment, aligning seamlessly with customers…GBHACKERS.COM
22 MayNews alert: AI SPERA integrates its ‘Criminal IP’ threat intelligence tool into AWS MarketplaceTorrance,Calif., May 22, 2024, CyberNewsWire — AI SPERA, a leader in Cyber Threat Intelligence (CTI) solutions, announced today that its proprietary search engine, Criminal IP , is now available on the AWS Marketplace . This integration ensures efficient software procuremen…LASTWATCHDOG.COM
22 MayNews analysis Q&A: Shake up of the SIEM, UEBA markets continues as LogRhythm-Exabeam mergeIt’s easy to compile a checklist on why the announced merger of LogRhythm and Exabeam could potentially make strategic sense. Related: Cisco pays $28 billion for Splunk LogRhythm’s is a long established SIEM provider and Exabeam has been making hay … (more…) The post …LASTWATCHDOG.COM
22 MayPakistani-Aligned APT36 Targets Indian Defense OrganizationsEspionage Group Using Linux-based Espionage Tools to Nab Defense Secrets A politically motivated hacking group aligned with Pakistani interests is matching the Indian military's shift away from the Windows operating system with a heavy focus on malware encoded for Linux. BlackBer…DATABREACHTODAY.CO.UK
22 MayDon't Let Criminals Steal Your Summer FunSummer has finally arrived in certain parts of the world, and with it come many exciting events — from the grandeur of the Olympics to the grass courts of Wimbledon, from the electrifying performances of Taylor Swift to the many other concerts that light up the season.KNOWBE4.COM
22 MayMalicious Use of Generative AI Large Language Models Now Comes in Multiple FlavorsAnalysis of malicious large language model (LLM) offerings on the dark web uncovers wide variation in service quality, methodology and value – with some being downright scams.KNOWBE4.COM
22 MaySOCRadar Raises $25M Series B for Threat Intel TechDelaware startup secures a $25 million Series B funding round from PeakSpan Capital and Oxx. SOCRadar has raised to $30.2 million to date. The post SOCRadar Raises $25M Series B for Threat Intel Tech appeared first on SecurityWeek .SECURITYWEEK.COM
22 MaySystems Of Trust - Robert Martin - BTS #30Bob Martin comes on the show to discuss systems of trust, supply chain security and more! This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-30YOUTUBE.COM
22 MayOpenText Boosts MDR Offering for MSPs With Pillr AcquisitionPurchase Fills Gap in OpenText's Cyber Offering for Small and Mid-Sized Businesses OpenText has acquired Pillr to strengthen its managed detection and response capabilities for small and mid-sized businesses. The integration will provide managed service providers with advanced se…DATABREACHTODAY.CO.UK
22 MayAnyone Can Trick AI Bots into Spilling PasswordsThousands of People Tricked Bots into Revealing Sensitive Data in Lab Setting It doesn't take a skilled hacker to glean sensitive information anymore: all you need to trick a chatbot into spilling someone else's passwords is "creativity." In a multi-level test, nearly all partici…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 5[−]
22 May23-year-old alleged founder of dark web Incognito Market arrested after FBI tracks cryptocurrency paymentsThe United States Department of Justice has dealt a blow to dark web drug traffickers by arresting a man alleged to operate the dark web drugs marketplace Incognito Market. According to a DOJ press release, the alleged operator of a darknet platform sold over $100 million worth o…BITDEFENDER.COM
22 MaySpyware found on US hotel check-in computersSeveral hotel check-in computers are running a remote access app, which is leaking screenshots of guest information to the interne © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
22 MaySmashing Security podcast #373: iPhone undeleted photos, and stealing Scarlett Johansson’s voiceiPhone photos come back from the dead! Scarlett Johansson sounds upset about GPT-4o, and there's a cockup involving celebrity fakes. All this and much more is discussed in the latest edition of the “Smashing Security” podcast by cybersecurity veterans Graham Cluley and Carole The…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 25[−]
22 MayAI Chatbots Highly Vulnerable to Jailbreaks, UK Researchers FindIn a May 2024 update published ahead of the AI Seoul Summit 2024, co-hosted by the UK and South Korea on 21-22 May, the UK AISI shared the results of a series of tests performed on five leading AI chatbots.INFOSECURITY-MAGAZINE.COM
22 MayZoom Adds ‘Post-Quantum’ Encryption for Video ConferencingTo enable E2EE, all meeting participants must join from the Zoom desktop or mobile app. While those hosting a meeting on a free account can use E2EE, they will still need to verify their phone number via an SMS-delivered code.THEREGISTER.COM
22 MayIs it possible to spy on keystrokes from an Android on-screen keyboard? | Kaspersky official blogHow to protect yourself from spying through your Android keyboard and pinyin IME.KASPERSKY.COM
22 MayExploring the Depths of SolarMarker's Multi-tiered InfrastructureThe core of SolarMarker’s operations is its layered infrastructure, which consists of at least two clusters: a primary one for active operations and a secondary one likely used for testing new strategies or targeting specific regions or industries.RECORDEDFUTURE.COM
22 MaySet of Bugs Puts Software Company and IoT Device Makers Into MotionCybersecurity researchers and Internet of Things (IoT) technology companies say they worked together to eliminate four software vulnerabilities that could have given malicious hackers deep access to networks.THERECORD.MEDIA
22 MayThe Ultimate SaaS Security Posture Management Checklist, 2025 EditionSince the first edition of The Ultimate SaaS Security Posture Management (SSPM) Checklist was released three years ago, the corporate SaaS sprawl has been growing at a double-digit pace. In large enterprises, the number of SaaS applications in use today is in the hundre…THEHACKERNEWS.COM
22 MayARPA-H Pledges $50M for Hospital IT Security Auto-PatchingThe US government's Advanced Research Projects Agency for Health (ARPA-H) has pledged more than $50 million to fund the development of technology that aims to automate the process of securing hospital IT environments.THEREGISTER.COM
22 MayGhostEngine Mining Attacks Kill EDR Security Using Vulnerable DriversA malicious crypto mining campaign codenamed 'REF4578,' has been discovered deploying a malicious payload named GhostEngine that uses vulnerable drivers to turn off security products and deploy an XMRig miner.BLEEPINGCOMPUTER.COM
22 MayBolster, creator of the CheckPhish phishing tracker, raises $14M led by Microsoft’s M12A dodgy email containing a link that looks “legit” but is actually malicious remains one of the most dangerous, yet successful, tricks in a cyber criminal’s handbook. Now, an AI startup called Bolster that has built a novel approach to tackle that trick has raised $14 million in …TECHCRUNCH.COM
22 MayWebinar | Mythbusting MDRDATABREACHTODAY.CO.UK
22 MayMicrosoft to start killing off VBScript in second half of 2024Microsoft announced today that it will start deprecating VBScript in the second half of 2024 by making it an on-demand feature until it's completely removed. [...]BLEEPINGCOMPUTER.COM
22 MayWindows 11 24H2 now rolling out to Release Preview InsidersMicrosoft is rolling out Windows 11 24H2 to testers in the Release Preview Channel, confirming that it is in the final stages of testing. [...]BLEEPINGCOMPUTER.COM
22 MayISPM & ITDR Synergize for AI-Based Identity SecurityIn the ever-evolving landscape of cybersecurity, staying ahead of malicious actors requires a multifaceted approach.TRENDMICRO.COM
22 MayWhat happens when AI goes rogue (and how to stop it)As AI gets closer to the ability to cause physical harm and impact the real world, “it’s complicated” is no longer a satisfying responseWELIVESECURITY.COM