106Articles
10Categories
2024-05-23Date
🚨 CISA KEV 1[−]
23 May KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2020-17519 Apache Flink Improper Access Control Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber a…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
23 MayHijack of monitoring devices highlights cyber threat to solar power infrastructureIn what might be the first publicly confirmed cyberattack on the solar power grid infrastructure, Japanese media recently reported that malicious actors hijacked 800 SolarView Compact remote monitoring devices made by industrial control electronics manufacturer Contec at solar po…CSOONLINE.COM
23 MayCritical SAML Auth Bypass Vulnerability Found in GitHub Enterprise ServerAn authentication bypass vulnerability of maximum severity (CVSS V4 Score: 10.0) tracked as CVE-2024-4985 was recently fixed by GitHub. It impacts GitHub Enterprise Server (GHES) instances using SAML single sign-on (SSO) authentication.HEIMDALSECURITY.COM
23 MayCritical flaw found in Fluent Bit cloud services monitoring componentSecurity researchers at Tenable have discovered a potentially critical memory corruption vulnerability in Fluent Bit, a core component in the monitoring infrastructure of many cloud services. The vulnerability, dubbed Linguistic Lumberjack and tracked as CVE-2024-4323 , stems fro…CSOONLINE.COM
23 MayIvanti Patches Critical Remote Code Execution Flaws in Endpoint ManagerIvanti on Tuesday rolled out fixes to address multiple critical security flaws in Endpoint Manager (EPM) that could be exploited to achieve remote code execution under certain circumstances. Six of the 10 vulnerabilities – from CVE-2024-29822 through CVE-2024-29827 (CVS…THEHACKERNEWS.COM
23 May KEVCISA Warns of Actively Exploited Apache Flink Security VulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a security flaw impacting Apache Flink, the open-source, unified stream-processing and batch-processing framework, to the Known Exploited Vulnerabilities (KEV) catalog, citing eviden…THEHACKERNEWS.COM
23 MayExploits Make You More Secure - PSW #830An exploit that makes you more secure, pardon the interruption, water heater company in hot water, IoT devices are vulnerable, Squeege and RDP scraping, free laundry for everyone!, Wifi routers and Apple Air tags, North Koreans fill US IT positions, taking out drones, the NVD bac…YOUTUBE.COM
⚠️ VULNERABILITY DISCLOSURE 22[−]
23 MayPersonal AI Assistants and PrivacyMicrosoft is trying to create a personal digital assistant: At a Build conference event on Monday, Microsoft revealed a new AI-powered feature called “Recall” for Copilot+ PCs that will allow Windows 11 users to search and retrieve their past activities on their PC. T…SCHNEIER.COM
23 MayZero-Day Attacks and Supply Chain Compromises Surge, MFA Remains Underutilized: Rapid7 ReportAttackers are getting more sophisticated, better armed, and faster. Nothing in Rapid7's 2024 Attack Intelligence Report suggests that this will change. The post Zero-Day Attacks and Supply Chain Compromises Surge, MFA Remains Underutilized: Rapid7 Report appeared first on Securit…SECURITYWEEK.COM
23 MayApple’s Wi-Fi Positioning Can Be System Abused To Track UsersA new study by researchers at the University of Maryland has uncovered a privacy vulnerability in Apple’s Wi-Fi Positioning System (WPS) that allows attackers to track users’ locations and movements globally. The findings raise serious concerns about the potential for…GBHACKERS.COM
23 MayUserPro Plugin Vulnerability Allows Account TakeoverPatchstack discovered the critical flaw in the plugin’s password reset mechanism, specifically within the userpro_process_form function, which allowed unauthenticated users to change the passwords of other users under certain conditions.INFOSECURITY-MAGAZINE.COM
23 MayBugcrowd, the crowdsourced white-hat hacker platform, acquires Informer to ramp up its security chopsOn the heels of raising $102 million earlier this year, Bugcrowd is making good on its promise to use some of that funding to make acquisitions to strengthen its security chops. The company — which crowdsources skills from more than half a million hackers to find and fix se…TECHCRUNCH.COM
23 MayCreating a Security Program with Less Complexity and More VisibilityOur 2024 Incident Response Report shows how vulnerabilities go unpatched, and critical resources sit exposed. The post Creating a Security Program with Less Complexity and More Visibility appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
23 MayRansomware Fallout: 94% Experience Downtime, 40% Face Work StoppageAccording to Arctic Wolf, 66% of organizations that suffered a data breach in the last year chose to publicly disclose information regarding their incidents, while 30% only disclosed their breaches to impacted parties.HELPNETSECURITY.COM
23 MayFake Pegasus spyware source code floods dark web: reportCybercriminals are exploiting the notoriety of NSO Group’s Pegasus spyware to dupe victims on the dark web, according to cybersecurity firm CloudSEK. This revelation comes just weeks after Apple warned users in 92 countries about a “mercenary spyware” attack. CloudSEK’s investiga…CSOONLINE.COM
23 MayKeylogger Malware Campaign Exploits Microsoft Exchange Server Flaws to Hit Over 30 VictimsThis campaign, active since at least 2021, has targeted over 30 victims in various countries, primarily in Africa and the Middle East, with government agencies being the main victims.SECURITYAFFAIRS.COM
23 MayEU resilience regulation DORA has financial CISOs waiting for answersIt just over seven months, the Digital Operational Resilience Act (DORA) enters into force in the EU — and not every organization is prepared. The regulation, which will apply as of January 17, 2025, covers the financial sector, but the regulation’s reach extends beyond tradition…CSOONLINE.COM
23 MayCISA Releases One Industrial Control Systems AdvisoryCISA released one Industrial Control Systems (ICS) advisory on May 23, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-144-01 AutomationDirect Productivity PLCs CISA encourages users and admin…CISA.GOV
23 MayNorthern Ireland police faces £750k fine after exposing staff infoUK's Information Commissioner Office (ICO) has announced the intention to impose a fine of £750,000 ($954,000) on the Police Service of Northern Ireland (PSNI) for exposing the entire workforce's personal details by inadvertently publishing a spreadsheet file online. [...]BLEEPINGCOMPUTER.COM
23 MayHigh-severity GitLab flaw lets attackers take over accountsGitLab patched a high-severity vulnerability that unauthenticated attackers could exploit to take over user accounts in cross-site scripting (XSS) attacks. [...]BLEEPINGCOMPUTER.COM
23 MayRansomware Attacks Exploit VMware ESXi Vulnerabilities in Alarming PatternRansomware attacks targeting VMware ESXi infrastructure following an established pattern regardless of the file-encrypting malware deployed. "Virtualization platforms are a core component of organizational IT infrastructure, yet they often suffer from inherent misconfig…THEHACKERNEWS.COM
23 MayLockBit no longer world’s No. 1 ransomware gangWell-known ransomware gang LockBit has been usurped as the world’s top ransomware gang, according to a recent report from NCC Group. For the past eight months, LockBit has led the world in ransomware attacks. But the group had its assets seized in February in connection with a cr…CSOONLINE.COM
23 MayMicrosoft amps up focus on Windows 11 security to address evolving cyberthreatsAhead of its Build conference this week, Microsoft announced a series of enhancements to Windows 11 aimed at making it more secure against a more intimidating, varied, and AI-enable threat landscape. In a blog post detailing the enhancements, David Weston, Microsoft’s vice presid…CSOONLINE.COM
23 MayTracking manual attacks may deliver zero-day previewsDifferentiating between manual and bot attacks, and homing in on human ones in particular, can give security professionals a leg up on combatting fraud attempts versus corporate systems. According to a report released Thursday by LexisNexis, last year automated attacks (aka bots)…CSOONLINE.COM
23 MayUnified Identity Security, Identity is Under Attack & Identity is Security - Andre Dur... - ESW #363The next generation of identity security is not about the popular idea of convergence, but of unification. A single, AI-driven solution that integrates PAM with identity security and access management is the clear path forward to manage and secure all enterprise data through a un…YOUTUBE.COM
23 MaySecure Code From the Start, Security Validation & Platformization - Maxime Lamothe-Bra... - ESW #363Qwiet AI provides real time detection of security vulnerabilities in code along with the best AI generated fixes to aid developers in finding and fixing their code with the addition of AI AutoFix. This segment is sponsored by Qwiet AI. Visit https://securityweekly.com/qwietrsac t…YOUTUBE.COM
23 MayA Vulnerability in GitHub Enterprise Server (GHES) Could Allow for Authentication BypassA vulnerability has been discovered in GitHub Enterprise Server (GHES), which could allow for authentication bypass. GHES is a popular platform for software developers. Organizations can build and store software applications using Git version control and automate deployment pipel…CISECURITY.ORG
23 MayCryptohack Roundup: $206M Gala Games ExploitAlso: Pump.fun Hack, Arrests in $73M Pig-Butchering Scam This week, Gala Games and Pump.fun were hacked; alleged pig-butchering scammers, Incognito admin and illicit banking racketeers were arrested; Pink Drainer was shut down; the U.S. House approved a crypto bill; a man pleaded…DATABREACHTODAY.CO.UK
23 MayStark Industries Solutions: An Iron Hammer in the CloudTwo weeks before Russia invaded Ukraine in February 2022, a large, mysterious new Internet hosting firm called Stark Industries Solutions materialized and quickly became the epicenter of massive distributed denial-of-service (DDoS) attacks on government and commercial targets in …KREBSONSECURITY.COM
📋 SECURITY BULLETINS 1[−]
23 MayMicrosoft pushes emergency fix for Windows Server 2019 update errorsMicrosoft has released an emergency out-of-band (OOB) update for Windows Server 2019 that fixes a bug causing 0x800f0982 errors when attempting to install the May 2024 Patch Tuesday security updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 8[−]
23 MayFormer White House Cyber Official Jeff Greene to Join CISAFormer White House National Security Council cyber staff member Jeff Greene, the current cybersecurity programs director at the Aspen Institute think tank, is joining the CISA next month, the agency confirmed.NEXTGOV.COM
23 May55,000 Impacted by Cyberattack on California School AssociationThe Association of California School Administrators (ACSA) is informing nearly 55,000 individuals that they have been impacted by a ransomware attack. The post 55,000 Impacted by Cyberattack on California School Association appeared first on SecurityWeek .SECURITYWEEK.COM
23 MayMicrosoft's Recall Stokes Security and Privacy ConcernsMicrosoft's new automatic screenshot retrieval feature could enable hackers to steal sensitive information such as online banking credentials, security experts warned. Additionally, the U.K ICO will probe Recall for compliance with privacy law.HEALTHCAREINFOSECURITY.COM
23 MayRockwell Automation Says to Disconnect ICS From the InternetAdvisory Says Disconnecting ICS Reduces Exposure to Malicious Cyber Activities Rockwell Automation warned customers to disconnect industrial control systems from the internet, citing escalating cyberthreats and rising global geopolitical tensions. Disconnecting these systems is a…DATABREACHTODAY.CO.UK
23 MayThe Aspen Institute's Jeff Greene Is Headed to CISAFormer White House, Symantec Executive Will Rejoin Government Reports say former White House cybersecurity official and cybersecurity executive Jeff Greene will join CISA to replace outgoing official Eric Goldstein as executive assistant director for cybersecurity, although the a…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 15[−]
23 MayPen Testing As A Service - Seemant Sehgal - PSW #830The Security Weekly crew and special guest Seemant Sehgal explore what PTaaS involves, how it differs from traditional penetration testing, and why it's becoming a crucial service for companies of all sizes to protect their digital assets. We'll discuss the how PTaaS is using the…YOUTUBE.COM
23 MayDota2 - 1,907,205 breached accountsIn July 2016, the Dota2 official developers forum suffered a data breach that exposed almost 2 million users . The hack of the vBulletin forum led to the disclosure of email and IP addresses, usernames and passwords stored as salted MD5 hashes.HAVEIBEENPWNED.COM
23 MaySEC Fines NYSE Owner ICE for Delay in Reporting VPN BreachThe U.S. Securities and Exchange Commission (SEC) announced today that a major player in the U.S. financial system has agreed to pay a $10 million penalty for failing to timely report an April 2021 VPN breach.THECYBEREXPRESS.COM
23 MayUsing AI, Mastercard Expects to Find Compromised Cards Quicker, Before They Get Used by CriminalsMastercard is integrating AI into its fraud-prediction technology that it expects will be able to see patterns in stolen cards faster and allow banks to replace them before they are used by criminals. The post Using AI, Mastercard Expects to Find Compromised Cards Quicker, Before…SECURITYWEEK.COM
23 May400,000 Impacted by CentroMed Data BreachThe personal information of 400,000 individuals was compromised in a data breach at El Centro Del Barrio (CentroMed). The post 400,000 Impacted by CentroMed Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
23 MayCybersecurity Labeling for Smart Devices Aims to Help People Choose Items Less Likely to be HackedUnder the new U.S. Cyber Trust Mark Initiative, manufacturers can affix the label on their products if they meet federal cybersecurity standards. The post Cybersecurity Labeling for Smart Devices Aims to Help People Choose Items Less Likely to be Hacked appeared first on Security…SECURITYWEEK.COM
23 MayBreach Forums Plans Dark Web Return This Week Despite FBI Crackdownsubmitted by kid to cybersecurity 4 points | 0 comments https://www.hackread.com/breach-forums-plan-dark-web-return-fbi-crackdown/HACKREAD.COM
23 MayAir-Ground Ambulance Firm Tells 858,000 of Hack 1 Year AgoIt's the Latest Hack Reported in Recent Weeks by an Ambulance Services Provider An Illinois-based air-ground ambulance company is notifying more than 858,000 individuals that their sensitive information was compromised in a hacking incident that happened about a year ago. The bre…DATABREACHTODAY.CO.UK
23 MayBreach Roundup: Fluent Bit Flaw Is Risky for Cloud ProvidersAlso: Spanish Hacker Alcasec Arrested Again This week, Fluent Bit contains a flaw, Microsoft is nuking VBScript, Irish police and the SEC face fines, a man was sentenced for BEC, a flaw was found in Netflix's Genie, an Australia university said it was breached and Black Basta cla…DATABREACHTODAY.CO.UK
23 MayJAVS courtroom recording software backdoored in supply chain attackAttackers have backdoored the installer of widely used Justice AV Solutions (JAVS) courtroom video recording software with malware that lets them take over compromised systems. [...]BLEEPINGCOMPUTER.COM
23 MayBuilding an AI strategy for the modern SOCArtificial intelligence (AI) holds significant promise to increase productivity across business functions, and cybersecurity is no exception. Arguably no area of the security operation is more poised to benefit from AI than the security operations center (SOC). Today’s SOC teams …CSOONLINE.COM
23 MayUK Government ponders major changes to ransomware response – what you need to knowThe British Government is proposing sweeping change in its approach to ransomware attacks, proposing mandatory reporting by victims and licensing regime for all payments. Read more in my article on the Exponential-e blog.EXPONENTIAL-E.COM
🕵️ THREAT INTELLIGENCE 31[−]
23 MayAnalysis of ?redtail? File Uploads to ICS Honeypot, a Multi-Architecture Coin Miner [Guest Diary], (Wed, May 22nd)[This is a Guest Diary by Robert Riley, an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
23 MayISC Stormcast For Thursday, May 23rd, 2024 https://isc.sans.edu/podcastdetail/8994, (Thu, May 23rd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
23 MayMicrosoft Replacing VBScript With JavaScript & PowerShellMicrosoft has shifted its scripting options for web development and task automation. The company is replacing VBScript with more advanced alternatives such as JavaScript and PowerShell to provide users with the most modern and efficient tools. This article explores what VBScript …GBHACKERS.COM
23 MayRSAC Fireside Chat: Qwiet AI leverages graph-database technology to reduce AppSec noiseAppSec has never been more challenging. By the same token, AppSec technology is advancing apace to help companies meet this challenge. Related: AppSec market trajectory At RSAC 2024 , I sat down with Bruce Snell , cybersecurity strategist at Qwiet.ai … (more…) The post RSAC…LASTWATCHDOG.COM
23 MayOpenText Acquires Cybersecurity MDR Platform for MSPsOpenText, a leader in information management solutions, has announced the acquisition of Pillr technology, a cloud-native, multi-tenant Managed Detection and Response (MDR) platform designed for Managed Service Providers (MSPs). This strategic move aims to improve OpenText’…GBHACKERS.COM
23 MaySpyware App Found Running on Multiple US Hotel Check-In ComputersA consumer-grade spyware app named pcTattletale has been discovered running on the check-in systems of at least three Wyndham hotels across the United States. This alarming discovery was made by TechCrunch, which reported that the app stealthily captured screenshots of hotel book…GBHACKERS.COM
23 MayWhy We Need to Get a Handle on AIIt will be interesting to see how AI continues to evolve and how it is used by defenders as they attempt to leapfrog attackers and protect the organization against new forms of AI attacks. The post Why We Need to Get a Handle on AI appeared first on SecurityWeek .SECURITYWEEK.COM
23 MayNewly Detected Chinese Group Targeting Military, Government EntitiesUnfading Sea Haze has been targeting military and government entities in South China Sea countries since 2018. The post Newly Detected Chinese Group Targeting Military, Government Entities appeared first on SecurityWeek .SECURITYWEEK.COM
23 MayNYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 HackIntercontinental Exchange, the company that operates NYSE and other exchanges, has agreed to pay a $10 million fine related to a 2021 hack. The post NYSE Operator Intercontinental Exchange Gets $10M SEC Fine Over 2021 Hack appeared first on SecurityWeek .SECURITYWEEK.COM
23 MayInside Operation Diplomatic Specter: Chinese APT Group's Stealthy Tactics ExposedGovernmental entities in the Middle East, Africa, and Asia are the target of a Chinese advanced persistent threat (APT) group as part of an ongoing cyber espionage campaign dubbed Operation Diplomatic Specter since at least late 2022. "An analysis of this threat actor’s…THEHACKERNEWS.COM
23 MayInsomni'hack 2024 - 28 talkssubmitted by ashar to security_cpe 1 points | 0 comments https://insomnihack.ch/wp-content/uploads/2023/11/SKULL_ULTRA_6938y7X-e1701093173718-350x246.png Insomni’hack is a Swiss security conference and hacking contest founded and organized by SCRT S.A. Insomni’hack 2024 Schedule …INSOMNIHACK.CH
23 MayBolster Raises $14 Million for AI-Powered Phishing ProtectionBolster has raised $14 million in Series B funding for technology integrations for its AI-powered phishing protection platform. The post Bolster Raises $14 Million for AI-Powered Phishing Protection appeared first on SecurityWeek .SECURITYWEEK.COM
23 MayU.S. House Panel Takes on AI Security and MisuseMuch of the testimony – and concerns raised by the committee – focused on the AI advantages for cybercriminals and nation-state actors, advantages that cybersecurity officials say must be countered by increasingly building AI into products.THECYBEREXPRESS.COM
23 MaySome Microsoft services, DuckDuckGo hit by global outagesubmitted by kid to cybersecurity 1 points | 0 comments https://techcentral.co.za/microsoft-services-hit-by-global-outage/245222/TECHCENTRAL.CO.ZA
23 MayVMware Abused in Recent MITRE Hack for Persistence, EvasionMITRE has shared information on how China-linked hackers abused VMware for persistence and detection evasion in the recent hack. The post VMware Abused in Recent MITRE Hack for Persistence, Evasion appeared first on SecurityWeek .SECURITYWEEK.COM
23 MayChinese Hackers Hide on Military and Government Networks for Six YearsBitdefender researchers who discovered the threat group report that its operations align with Chinese geo-political interests, focusing on intelligence collection and espionage.BLEEPINGCOMPUTER.COM
23 MayNew Frontiers, Old Tactics: Chinese Espionage Group Targets Africa & Caribbean GovtsThe China-linked threat actor known as Sharp Panda has expanded their targeting to include governmental organizations in Africa and the Caribbean as part of an ongoing cyber espionage campaign. "The campaign adopts Cobalt Strike Beacon as the payload, enabling backdoor functional…THEHACKERNEWS.COM
23 MayHow I got started: AI security researcherFor the enterprise, there’s no escape from deploying AI in some form. Careers focused on AI are proliferating, but one you may not be familiar with is AI security researcher. These AI specialists are cybersecurity professionals who focus on the unique vulnerabilities and th…SECURITYINTELLIGENCE.COM
23 MayCriminal record database of millions of Americans dumped onlinesubmitted by kid to cybersecurity 6 points | 0 comments https://www.malwarebytes.com/blog/news/2024/05/criminal-record-database-of-millions-of-americans-dumped-onlineMALWAREBYTES.COM
23 MayGitHub Fixes Maximum Severity Flaw in Enterprise Serversubmitted by kid to cybersecurity 3 points | 0 comments https://www.infosecurity-magazine.com/news/github-maximum-severity-flaw/INFOSECURITY-MAGAZINE.COM
23 MayOver 200K Likely Vulnerable Confluence Data Center Instances Exposedsubmitted by kid to cybersecurity 4 points | 0 comments https://cybernews.com/security/atlassian-confluence-server-exposed-instances/CYBERNEWS.COM
23 MayActive Chinese Cyberespionage Campaign Rifling Email Servers'Rare Tools' Employed in 'Operation Diplomatic Specter,' Threat Researchers Find Security researchers warn that an active Chinese global cyberespionage campaign continues to target at least nine different governments across Asia, the Middle East and Africa, and specializes in gai…DATABREACHTODAY.CO.UK
23 MayUS Intelligence Agencies’ Embrace of Generative AI Is at Once Wary and UrgentU.S. intelligence agencies are scrambling to embrace the AI revolution, believing they’ll be smothered by exponential data growth as sensor-generated surveillance tech further blankets the planet. The post US Intelligence Agencies’ Embrace of Generative AI Is at Once Wary and Urg…SECURITYWEEK.COM
23 MayNew Research Finds Phishing Scams Targeting Popular PDF ViewerSeveral phishing campaigns are targeting users of the Foxit PDF Reader, according to researchers at Check Point. Foxit is a popular alternative to Adobe Acrobat Reader for viewing PDF files.KNOWBE4.COM
23 MayFrom Boredom to Engagement: Gamification in Cybersecurity AwarenessAs someone who can barely keep up when my 10-year-old shows me around his Minecraft worlds, I was a bit apprehensive about writing a review of our gamified cybersecurity awareness module. But hey, maybe being a bit of a klutz at gaming might actually be beneficial from a test cas…KNOWBE4.COM
23 MayMicrosoft spots gift card thieves using cyber-espionage tacticsMicrosoft has published a "Cyber Signals" report sharing new information about the hacking group Storm-0539 and a sharp rise in gift card theft as we approach the Memorial Day holiday in the United States. [...]BLEEPINGCOMPUTER.COM
23 MaySecure Your Site: Learn from the Top 10 Cybersecurity Experts of 2024Companies have needed a website for the last 25 years at least. But where do you host your site? The techies at HostingAdvice decided to create an extremely thorough real-world review site to share their expertise.  And clearly, your organization's website is an attack vecto…KNOWBE4.COM
23 MayDNSBomb Pulsing DoS Attacksubmitted by kid to cybersecurity 1 points | 0 comments https://www.radware.com/security/threat-advisories-and-attack-reports/dnsbomb-pulsing-dos-attack/RADWARE.COM
23 MayBugcrowd Buys Informer to Enhance Attack Surface ManagementFirst Purchase in Bugcrowd's History to Boost Attack Surface Management, Visibility Bugcrowd has acquired Informer to enhance its external attack surface management, giving customers better visibility and security. The integration will bring Bugcrowd's existing bug bounty and pen…DATABREACHTODAY.CO.UK
23 MayThis Week: short on funding, long on research and analysis - ESW #363Only one funding announcement this week, so we dive deep into Thoma Bravo's past and present portfolio. They recently announced a sale of Venafi to Cyberark and no one is quite sure how much of a hand they had in the LogRhythm/Exabeam merger, and whether or not they sold their st…YOUTUBE.COM
23 MayCyber Signals: Inside the growing risk of gift card fraudIn the ever-evolving landscape of cyberthreats, staying ahead of malicious actors is a constant challenge. The latest edition of Cyber Signals dives deep into the world of Storm-0539, also known as Atlas Lion, shedding light on their sophisticated methods of gift and payment card…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 5[−]
23 MayScammers are Selling Fake NSO Pegasus SpywareCloudSEK researchers found the fake spyware after perusing around 25,000 posts of individuals offering Pegasus and other NSO tools via channels on the messaging service Telegram.THEREGISTER.COM
23 MayRockwell Automation Urges Disconnection of ICS from the InternetRockwell Automation warned customers to disconnect industrial control systems (ICS) from the internet, citing escalating cyber threats and rising global geopolitical tensions.HEALTHCAREINFOSECURITY.COM
23 MayConsumer-Grade Spyware App Found on US Hotel Check-in ComputerspcTattletale allows remote monitoring of Android or Windows devices and their data. The app claims to run invisibly in the background, undetectable on the target’s workstation.TECHCRUNCH.COM
23 MayCLOUD#REVERSER Campaign Leverages Cloud Storage for Malware DeliveryDelivered via a phishing email attachment, the malicious file makes use of the hidden right-to-left override (RLO) Unicode character (U+202E) to reverse the order of the characters that come after that character in the string.BROADCOM.COM
23 May10 years in prison for $4.5 million BEC scammer who bought Ferrari to launder moneyA scammer has been sentenced to 10 years in prison for laundering over US $4.5 million obtained by targeting businesses and the elderly with Business Email Compromise (BEC) and romance fraud schemes. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
🎙️ PODCASTS 1[−]
23 MayTransatlantic Cable podcast episode 348 | Kaspersky official blogEpisode 348 of the Kaspersky podcast has AI, Scarlett Johansson, Android scam detection and more!KASPERSKY.COM
📡 INFOSEC NEWS 16[−]
23 MayThe End of an Era: Microsoft Phases Out VBScript for JavaScript and PowerShellMicrosoft on Wednesday outlined its plans to deprecate Visual Basic Script (VBScript) in the second half of 2024 in favor of more advanced alternatives such as JavaScript and PowerShell. "Technology has advanced over the years, giving rise to more powerful and versatile scripting…THEHACKERNEWS.COM
23 MayServer-Side Credit Card Skimmer Lodged in Obscure PluginThere are plenty of widely-used code snippet plugins available but in this case the attackers decided to use a very obscure plugin called Dessky Snippets, with only a few hundred active installations at the time of writing.SUCURI.NET
23 MayMicrosoft outage affects Bing, Copilot, DuckDuckGo and ChatGPT internet searchA massive Microsoft outage in some regions affects Bing.com, Copilot for web and mobile, Copilot in Windows, ChatGPT internet search and DuckDuckGo. [...]BLEEPINGCOMPUTER.COM
23 MayOpenText Boosts MDR Offering for MSPs With Pillr AcquisitionThe MDR business was stood up in 2018 as a standalone unit within Novacoast, and rebranded in September 2022 from novaSOC to Pillr. Novacoast CEO Paul Anderson served as Pillr's chief executive for most of its existence.HEALTHCAREINFOSECURITY.COM
23 MayApple Wi-Fi Positioning System Open to Global Tracking AbuseApple is one of several companies, along with Google, Skyhook, and others, that operate a WPS. They offer client devices a way to determine their location that's more energy efficient than using the Global Positioning System (GPS).THEREGISTER.COM
23 MayAre Your SaaS Backups as Secure as Your Production Data?Conversations about data security tend to diverge into three main threads: How can we protect the data we store on our on-premises or cloud infrastructure? What strategies and tools or platforms can reliably backup and restore data? What would losing all this data cost us, and ho…THEHACKERNEWS.COM
23 MaySnowflake's Anvilogic Investment Signals Changes in SIEM MarketThe joint Snowflake and Anvilogic solution would lead to reduced costs — on the order of 50% to 80%, the companies claim — and will eventually replace legacy SIEM platforms, argues Karthik Kannan, CEO of Anvilogic.DARKREADING.COM
23 MayCybercriminals are Targeting Elections in India With Influence CampaignsAround 16 different independent hacktivist groups are targeting Indian elections, including Anon Black Flag Indonesia, Anonymous Bangladesh, and Morocco Black Cyber Army, among others.SECURITYAFFAIRS.COM
23 MayApple wasn’t storing deleted iOS photos in iCloud after allSecurity researchers reverse-engineered Apple's recent iOS 17.5.1 update and found that a recent bug that restored images deleted months or even years ago was caused by an iOS bug and not an issue with iCloud. [...]BLEEPINGCOMPUTER.COM
23 MayUnsaflok: how to forge keycards for Saflok locks | Kaspersky official blogThe Unsaflok attack involves forging keycards for dormakaba Saflok locks. These locks are used on three million doors across 13,000 hotels worldwide.KASPERSKY.COM
23 MayIntroducing Nimfilt: A reverse-engineering tool for Nim-compiled binariesAvailable as both an IDA plugin and a Python script, Nimfilt helps to reverse engineer binaries compiled with the Nim programming language compiler by demangling package and function names, and applying structs to stringsWELIVESECURITY.COM