80Articles
7Categories
2024-06-06Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
6 JunWhose Vulnerability Is It Anyway? - Josh Bressers - PSW #831Josh comes on the show to discuss all things related to vulnerability tracking and scoring, including the current issues with various systems and organizations including NIST, CVE, Mitre, CVSS, NVD, and more! Segment Resources: * NVD blog post Josh wrote: https://anchore.com/blog…YOUTUBE.COM
6 JunHackers exploit 2018 ThinkPHP flaws to install ‘Dama’ web shellsChinese threat actors are targeting ThinkPHP applications vulnerable to CVE-2018-20062 and CVE-2019-9082 to install a persistent web shell named Dama. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 22[−]
6 JunKali Linux 2024.2 Released With New Hacking ToolsThe Kali Linux team has announced the release of Kali Linux 2024.2, the latest version of their popular penetration testing and security auditing Linux distribution. Kali Linux is one of the most powerful Debian-based Linux distributions, developed and maintained by Offensive Sec…GBHACKERS.COM
6 Jun KEVWhat CISOs need to know about Microsoft’s Copilot+Microsoft recently announced a technology that contains a feature that is leading some in security to scratch their heads and wonder: “What were they thinking?” Called Copilot+, it brings artificial intelligence and search to local desktops in a bundle that is making many questio…CSOONLINE.COM
6 JunApple Refused to Pay $1 Million Bounty to Kaspersky Lab for iOS Zero-daysApple has refused to pay Kaspersky Lab a reward for discovering critical vulnerabilities in iOS that allowed attackers to install spyware on any iPhone. According to RTVI, the vulnerabilities were reported to Apple in 2023, and under the Apple Security Bounty program, such discov…GBHACKERS.COM
6 JunCommando Cat: A Novel Cryptojacking Attack Abusing Docker Remote API ServersWe analyze a cryptojacking attack campaign exploiting exposed Docker remote API servers to deploy cryptocurrency miners, using Docker images from the open-source Commando project.TRENDMICRO.COM
6 JunHackers Exploit Legitimate Packer Software to Spread Malware UndetectedThreat actors are increasingly abusing legitimate and commercially available packer software such as BoxedApp to evade detection and distribute malware such as remote access trojans and information stealers. "The majority of the attributed malicious samples targeted financial ins…THEHACKERNEWS.COM
6 JunVulnerability in Cisco Webex cloud service exposed government authorities, companiessubmitted by kid to cybersecurity 2 points | 0 comments https://www.helpnetsecurity.com/2024/06/05/cisco-webex-cloud-vulnerability/HELPNETSECURITY.COM
6 Jun“Operation Endgame” Ends with the Arrest of 4 Cybercriminal Suspects and 100 ServersCoordinated efforts between law enforcement agencies across nine countries has resulted in a major disruption of a threat group’s malware and ransomware operations.KNOWBE4.COM
6 JunComplaints in EU challenge Meta’s plans to utilize personal data for AIMeta is facing renewed scrutiny over privacy concerns as the privacy advocacy group NOYB has lodged complaints in 11 countries against the company’s plans to use personal data for training its AI models. NOYB has called on national regulators to take immediate action against Meta…CSOONLINE.COM
6 JunExploitation of Recent Check Point VPN Zero-Day SoarsGreyNoise has observed a rapid increase in the number of exploitation attempts targeting a recent Check Point VPN zero-day. The post Exploitation of Recent Check Point VPN Zero-Day Soars appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunMuhstik Botnet Exploiting Apache RocketMQ Flaw to Expand DDoS AttacksThe distributed denial-of-service (DDoS) botnet known as Muhstik has been observed leveraging a now-patched security flaw impacting Apache RocketMQ to co-opt susceptible servers and expand its scale. "Muhstik is a well-known threat targeting IoT devices and Linux-based servers, n…THEHACKERNEWS.COM
6 JunCISA Releases Four Industrial Control Systems AdvisoriesCISA released four Industrial Control Systems (ICS) advisories on June 6, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-158-01 Emerson PACSystem and Fanuc ICSA-24-158-02 Emerson Ovation ICSA…CISA.GOV
6 JunFBI offers to share 7,000 LockBit ransomware decryption keys with CISOsThe FBI has acquired more than 7,000 decryption keys from the massive ransomware group LockBit — and is encouraging corporate victims to come forward to see if the keys can unlock any of their data. “From our ongoing disruption of LockBit, we now have over 7,000 decryption keys a…CSOONLINE.COM
6 JunRouters, Breaches, and Vulnerabilities - PSW #831This week: Take on the upstream, how hard is it to patch end-of-life software, hack millions of routers, take over millions of routers, 0-days, and no responses, hack Taylor Swift wristbands, can you detect that covert channel?, and breach reports from Ticketmaster, Snowflake, Sa…YOUTUBE.COM
6 JunChinese Hackers Exploit Old ThinkPHP Vulnerabilities in New AttacksAkamai warns that a Chinese threat actor is exploiting years-old remote code execution vulnerabilities in ThinkPHP in new attacks. The post Chinese Hackers Exploit Old ThinkPHP Vulnerabilities in New Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunMicrosoft Says Azure Cloud Attack Scenario Isn't a FlawRedmond Calls Tenable Report Evidence of Customers Misconstruing Azure Service Tags Microsoft is calling security research asserting a high-severity vulnerability exists in Microsoft Azure evidence that customers should better configure their cloud environments. An attacker with …DATABREACHTODAY.CO.UK
6 JunUkraine says hackers abuse SyncThing data sync tool to steal dataThe Computer Emergency Response Team of Ukraine (CERT-UA) reports about a new campaign dubbed "SickSync," launched by the UAC-0020 (Vermin) hacking group in attacks on the Ukrainian defense forces. [...]BLEEPINGCOMPUTER.COM
6 JunInterest in Identity Security is Spiking - Will Lin - ESW #364"Identity security has been around forever though", you might be thinking. Allow me to clarify. Identity is the _largest_ cybersecurity product category, but most of it is focused on identity governance, authentication, multi-factor, etc. Very little of it is focused on operation…YOUTUBE.COM
6 JunSecuring Health, Creating Phishing-Resistant Users & Rising Ransomware Stakes - Jim Br... - ESW #364The interview will delve into the healthcare industry's tumultuous year in 2023, marked by 124 million breached health records across 725 hacking incidents (according to The HIPAA Journal). This interview will explore the critical role that MSSPs play in safeguarding health data …YOUTUBE.COM
6 JunThe Cybersecurity Market Gets Some New Quirks and Features - ESW #364We start off discussing the latest round of fundings, centered largely around data security and securing LLM use. This dovetails into a discussion about marketing language and how difficult it can be for buyers to work out what the latest round of early stage startups are doing. …YOUTUBE.COM
6 JunWeekly Update 403Presently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. I just watched back a little segment from this week's video and somehow landed at exactly the point where I said "I am starting to lose my patience with rep…TROYHUNT.COM
6 JunUkraine says hackers abuse SyncThing tool to steal dataThe Computer Emergency Response Team of Ukraine (CERT-UA) reports about a new campaign dubbed "SickSync," launched by the UAC-0020 (Vermin) hacking group in attacks on the Ukrainian defense forces. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 6[−]
6 JunFog Ransomware Attacking Windows Servers Administrators To Steal RDP LoginsA new ransomware variant dubbed ‘Fog’ has been spotted targeting US businesses in the education and recreation sectors. Forensic data revealed that threat actors accessed victim environments using compromised VPN credentials. Notably, two different VPN gateway providers were used…GBHACKERS.COM
6 JunAI-driven compliance: The key to cloud securityThe growth of cloud computing continues unabated, but it has also created security challenges. The acceleration of cloud adoption has created greater complexity, with limited cloud technical expertise available in the market, an explosion in connected and Internet of Things (IoT)…SECURITYINTELLIGENCE.COM
6 JunSenator Demands That HHS Ratchet Up Health Sector Cyber RegsLawmaker Says New Regulations Needed to Fix 'Lax' Cyber Postures of Major Entities A high-ranking U.S. senator is urging the Department of Health and Human Services to get tougher on healthcare sector cyber requirements. He says its failure to regulate the cyber practices of top …DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 14[−]
6 JunBuffalo Man Pleads Guilty To Buying Stolen Data From Genesis MarketBuffalo, N.Y. — U.S. Attorney Trini E. Ross announced today that Wul Isaac Chol, 27, of Buffalo, NY, pleaded guilty before the U.S. District Judge John L. Sinatra, Jr. to possessing 15 or more unauthorized access devices intending to defraud. The charge carries a maximum pe…GBHACKERS.COM
6 JunFBI Says It Has 7,000 LockBit Ransomware Decryption KeysThe FBI has obtained more than 7,000 LockBit ransomware decryption keys and is urging victims to get in touch with its IC3. The post FBI Says It Has 7,000 LockBit Ransomware Decryption Keys appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunPrevent Account Takeover with Better Password SecurityTom works for a reputable financial institution. He has a long, complex password that would be near-impossible to guess. He’s memorized it by heart, so he started using it for his social media accounts and on his personal devices too. Unbeknownst to Tom, one of these sites has ha…THEHACKERNEWS.COM
6 JunUpleveling the State of SMB CybersecurityGone are the days when cyberattacks were deemed concerns solely by corporate giants. The post Upleveling the State of SMB Cybersecurity appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunThird-Party Cyber Attacks: The Threat No One Sees Coming – Here's How to Stop ThemLearn about critical threats that can impact your organization and the bad actors behind them from Cybersixgill’s threat experts. Each story shines a light on underground activities, the threat actors involved, and why you should care, along with what you can do to mitigate risk.…THEHACKERNEWS.COM
6 JunA Russian Cyber Gang Is Thought to Be Behind a Ransomware Attack That Hit London HospitalsA Russian cyber gang is believed to be behind a ransomware attack that disrupted London hospitals and led to operations and appointments being canceled. The post A Russian Cyber Gang Is Thought to Be Behind a Ransomware Attack That Hit London Hospitals appeared first on SecurityW…SECURITYWEEK.COM
6 JunPandaBuy pays ransom to hacker only to get extorted againChinese shopping platform Pandabuy told BleepingComputer it previously paid a ransom not to leak stolen data after the same threat actor began extorting the company again this week. [...]BLEEPINGCOMPUTER.COM
6 JunHit by LockBit? The FBI is waiting to help you with over 7,000 decryption keysDid your company fall victim to the LockBit ransomware? Have cybercriminals left gigabytes of your data encrypted, with no easy route for recovery that doesn't involve paying a ransom? Well, don't fear... Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
6 JunNew Fog ransomware targets US education sector via breached VPNsA new ransomware operation named 'Fog' launched in early May 2024, using compromised VPN credentials to breach the networks of educational organizations in the U.S. [...]BLEEPINGCOMPUTER.COM
6 JunBreach Roundup: Microsoft Deprecates NTLM AuthenticationAlso: Hacker Sells Data Obtained Through Snowflake Attack This week, Microsoft deprecated NTLM authentication, a hacker put apparently stolen Snowflake data up for sale, Ticketmaster confirmed its breach, Cisco patched Webex vulnerabilities, pro-Russian hacktivists claimed a DDoS…DATABREACHTODAY.CO.UK
6 JunDutch political websites hit by cyber attacks as EU voting startssubmitted by neme to cybersecurity 1 points | 0 comments https://blog.cloudflare.com/dutch-political-websites-hit-by-cyber-attacks-as-eu-voting-startsCLOUDFLARE.COM
6 JunLos Angeles Unified School District investigates data theft claimsLos Angeles Unified School District (LAUSD) officials are investigating a threat actor's claims that they're selling stolen databases containing records belonging to millions of students and thousands of teachers. [...]BLEEPINGCOMPUTER.COM
6 JunTransatlantic Cable podcast episode 350 | Kaspersky official blogEpisode 350 of the Kaspersky podcast has crypto scams, (big) data breaches, Roaring Kitty and more!KASPERSKY.COM
🕵️ THREAT INTELLIGENCE 23[−]
6 JunISC Stormcast For Thursday, June 6th, 2024 https://isc.sans.edu/podcastdetail/9012, (Thu, Jun 6th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
6 JunParrot Security OS 6.1 Released – What’s NewThe Parrot Security team has officially announced the release of Parrot OS 6.1, the latest version of their popular Linux distribution tailored for security professionals, ethical hackers, and privacy enthusiasts. This new release brings a range of enhancements, updated tools, an…GBHACKERS.COM
6 JunPython Developers Beware! Russian Hackers Targeting You With Malicious PackagesA malicious Python package named “crytic-compilers” was identified on PyPI. Masquerading as a legitimate library for intelligent contract compilation, it mimicked the name and versioning scheme of the real “crytic-compile” tool. The imposter package infilt…GBHACKERS.COM
6 JunHackers Attacking Banking Customers Using Phishing-As-A-Service V3B ToolkitA cybercriminal group is selling and distributing a sophisticated phishing kit called “V3B” through Phishing-as-a-Service (PhaaS) and self-hosting methods, which targets EU banking customers and is designed to steal login credentials and one-time codes (OTPs) through …GBHACKERS.COM
6 JunUNC1151 Hackers Weaponizing Excel Documents To Attack Windows MachineMandiant identified a UNC1151 information campaign targeting Ukraine, Lithuania, Latvia, and Poland with disinformation, as CRIL linked a recent malicious XLS campaign to UNC1151.  The attackers used spam emails with Excel documents containing VBA macros that dropped LNK and…GBHACKERS.COM
6 JunInterpol and FBI Break Up a Cyber Scheme in Moldova to Get Asylum for Wanted CriminalsA multinational operation by Interpol and the FBI cracked down on attempts in Moldova to sabotage one of the international police agency’s key tools, the Red Notice system. The post Interpol and FBI Break Up a Cyber Scheme in Moldova to Get Asylum for Wanted Criminals appeared fi…SECURITYWEEK.COM
6 JunMultiple Chinese APTs Targeted Southeast Asian Government for Two YearsMultiple Chinese state-sponsored groups have targeted a Southeast Asian government in a years-long cyberespionage campaign. The post Multiple Chinese APTs Targeted Southeast Asian Government for Two Years appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunCisco addressed Webex flaws used to compromise German government meetingssubmitted by kid to cybersecurity 2 points | 0 comments https://securityaffairs.com/164173/breaking-news/cisco-webex-flaws-german-government-meetings.htmlSECURITYAFFAIRS.COM
6 JunVulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure ProcessIt took code security firm Kiuwan nearly two years to patch several serious vulnerabilities found in its SAST products. The post Vulnerabilities Patched in Kiuwan Code Security Products After Long Disclosure Process appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunSocial Engineering Scams Can Come in the Mail, TooSocial engineering scams can come through any communications channel (e.g., email, web, social media, SMS, phone call, etc.). They can even come in the mail as the Nextdoor warning below shares.KNOWBE4.COM
6 Jun26% of Global Organizations Lack Security Training ProgramsMore than a quarter (26%) of organizations around the world provide no security awareness training for their employees, according to a survey by Hornetsecurity. The researchers found that smaller companies in particular tend to lack security training programs.KNOWBE4.COM
6 JunGoogle, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris OlympicsGoogle and Microsoft warn of elevated risks of cyber threats facing the 2024 Paris Olympics, especially from Russian threat actors. The post Google, Microsoft: Russian Threat Actors Pose High Risk to 2024 Paris Olympics appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunUS Authorities Attempting to Recover $5.3 Million Stolen in BEC ScamThe US government is trying to recover more than $5.3 million stolen by cybercriminals through a BEC scheme from a workers union. The post US Authorities Attempting to Recover $5.3 Million Stolen in BEC Scam appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunWhy Hackers Love LogsLog tampering is an almost inevitable part of a compromise. Why and how do cybercriminals target logs, and what can be done to protect them? The post Why Hackers Love Logs appeared first on SecurityWeek .SECURITYWEEK.COM
6 JunSHARED INTEL Q&A: Forrester report shows Identity and Access Management (IAM) in fluxIdentity and Access Management (IAM) is at a crossroads. Related: Can IAM be a growth engine? A new Forrester Trends Report dissects ten IAM trends now in play, notably how AI is influencing IAM technologies to meet evolving identity threats.… (more…) The post SHARED INTEL …LASTWATCHDOG.COM
6 JunEspionage with a DroneThe US is using a World War II law that bans aircraft photography of military installations to charge someone with doing the same thing with a drone .SCHNEIER.COM
6 JunSSTIC 2024 - FRENCH language conferencesubmitted by ashar to security_cpe 1 points | 0 comments Symposium sur la sécurité des technologies de l’information et des communications Programme du SSTIC 2024 : Agenda du 5 au 7 juin 2024 StreamingINFOSEC.PUB
6 JunCryptohack Roundup: Robinhood to Acquire BitstampAlso: FBI Warns About Work-From-Home Scammers Demanding Crypto This week, Robinhood said it will acquire Bitstamp in a $200 million deal, a senior promoter of the Forcount crypto Ponzi scheme pleaded guilty, crypto scammers targeted work-from-home job seekers, and Tether and Coin…DATABREACHTODAY.CO.UK
6 JunRenewed Info Stealer Campaign Targets Ukrainian MilitaryCERT-UA Says Threat Actor 'Vermin' Used Syncthing Application Ukrainian cyber defenders say Russian intelligence hackers operating from the occupied Donbas city of Luhansk targeted military email inboxes with an info stealer. A group tracked as UAC-0020 - also known as "Vermin" -…DATABREACHTODAY.CO.UK
6 JunWiz Counters Orca Security's Patent Infringement AllegationsWiz Hits Back With Counterclaims, Says Orca Copied Patented Cloud Security Features In a clash of cloud security titans, Wiz denied all claims made by rival Orca Security of patent infringement and unauthorized use of proprietary information. Instead, Wiz said Orca copied its tec…DATABREACHTODAY.CO.UK
6 JunUS Regulators Intensify Antitrust Scrutiny of AI DevelopersDOJ and FTC to Launch Antitrust Investigations Into Microsoft, OpenAI and Nvidia The Justice Department and the Federal Trade Commission reportedly reached an agreement Thursday that will allow U.S. regulators to move forward with long-anticipated antitrust investigations into th…DATABREACHTODAY.CO.UK
6 JunMeta's AI Model Training Comes Under European ScrutinyAustrian Privacy Group Lodges Complaints With 11 European Regulators Against Meta Meta's plan to train artificial intelligence with data generated by Facebook and Instagram users faces friction in Europe after a rights group alleged it violates continental privacy law. Austrian p…DATABREACHTODAY.CO.UK
🎙️ PODCASTS 1[−]
6 JunSmashing Security podcast #375: Crashing robo-taxis, and name-dropping rappersDrones, some coloured cardboard, and a piece of tinfoil may be all the kit you need to crash a robot-driven taxi, and a rapper is accused of using Justin Bieber's name to defraud a TV company. All this and more is discussed in the latest edition of the "Smashing Security" podcast…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 12[−]
6 JunHackers Target Python Developers with Fake "Crytic-Compilers" Package on PyPICybersecurity researchers have discovered a malicious Python package uploaded to the Python Package Index (PyPI) repository that's designed to deliver an information stealer called Lumma (aka LummaC2). The package in question is crytic-compilers, a typosquatted version of a legit…THEHACKERNEWS.COM
6 JunGoogle Maps Timeline Data to be Stored Locally on Your Device for PrivacyGoogle has announced plans to store Maps Timeline data locally on users' devices instead of their Google account effective December 1, 2024. The changes were originally announced by the tech giant in December 2023, alongside changes to the auto-delete control when enabling Locati…THEHACKERNEWS.COM
6 JunMalicious Python Script with a "Best Before" Date, (Thu, Jun 6th)When you buy some fresh food, it&#;x26;#;39;s always a good idea to keep an eye on the best-before date. I found a funny piece of malicious Python script that implements the same technique. It will execute only before a specified date (Jun 10th in this…ISC.SANS.EDU
6 JunDownload our password managers enterprise buyer’s guideFrom the editors of CSO, this enterprise buyer’s guide helps security IT staff understand what password managers can do for their organizations and how to choose the right solution.US.RESOURCES.CSOONLINE.COM
6 JunKaspersky SIEM: normalizers and correlation rules | Kaspersky official blogUpdates to the Kaspersky Unified Monitoring and Analysis Platform 3.0.3 SIEM system: new normalizers and correlation rules.KASPERSKY.COM
6 JunNew Gitloker attacks wipe GitHub repos in extortion schemeAttackers are targeting GitHub repositories, wiping their contents, and asking the victims to reach out on Telegram for more information. [...]BLEEPINGCOMPUTER.COM
6 JunWhy Hackers Love LogsPACKETSTORMSECURITY.COM
6 JunThe job hunter’s guide: Separating genuine offers from scams$90,000/year, full home office, and 30 days of paid leave, and all for a job as a junior data analyst – unbelievable, right? This and many other job offers are fake though – made just to ensnare unsuspecting victims into giving up their data.WELIVESECURITY.COM