🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
7 JunNew RansomHub ransomware gang has ties to older Knight groupOne of the most active ransomware groups this year, which operates under the name RansomHub, may have its origins in an older and now defunct ransomware group called Knight, which was itself a rebrand of an older operation known as Cyclops. The links discovered by researchers fro…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 21[−]
7 JunHow Amazon CISO Amy Herzog responds to cybersecurity challengesThere is no such thing as a typical career path for many CISOs, and Amy Herzog’s journey is no exception. Herzog is one of several CISOs for Amazon, she is responsible for two large pieces of the company’s business: securing hardware devices and advertising products and services.…CSOONLINE.COM
7 JunMicrosoft Details On Using KQL To Hunt For MFA ManipulationsIt is difficult to secure cloud accounts from threat actors who exploit multi-factor authentication (MFA) settings. Threat actors usually alter compromised users’ MFA attributes by bypassing the requirements, disabling MFA for others, or enrolling rogue devices in the syste…GBHACKERS.COM
7 JunSPECTR Malware Targets Ukraine Defense Forces in SickSync CampaignThe Computer Emergency Response Team of Ukraine (CERT-UA) has warned of cyber attacks targeting defense forces in the country with a malware called SPECTR as part of an espionage campaign dubbed SickSync. The agency attributed the attacks to a threat actor it tracks under the mon…THEHACKERNEWS.COM
7 Jun300+ Times Downloaded Package from PyPI Contains Wiper ComponentsReversingLabs researchers recently uncovered a malicious open-source package named xFileSyncerx on the Python Package Index (PyPI). This package, which had been downloaded nearly 300 times, contained separate malicious “wiper” components. Initially, it raised concerns…GBHACKERS.COM
7 JunFBI Distributes 7,000 LockBit Ransomware Decryption Keys to Help VictimsThe U.S. Federal Bureau of Investigation (FBI) has disclosed that it's in possession of more than 7,000 decryption keys associated with the LockBit ransomware operation to help victims get their data back at no cost. "We are reaching out to known LockBit victims and encouraging a…THEHACKERNEWS.COM
7 JunWhitelisting explained: How it works and where it fits in a security programWhat is whitelisting? Whitelisting is a cybersecurity strategy under which only pre-approved or trusted users, entities, or actions are allowed to operate on a system or network. Instead of trying to keep one step ahead of cyber attackers to identify and block malicious code, wit…CSOONLINE.COM
7 JunCyber Security Today, June 7, 2024 - More news about Snowflake attacks, and a warning to better protect Docker containersThis episode reports on Snowflake users' credentials for sale, how Docker containers are being exploited, and moreCYBERSECURITYTODAY.LIBSYN.COM
7 JunSolarWinds Patches High-Severity Vulnerability Reported by NATO PentesterSolarWinds has released patches for high-severity vulnerabilities in Serv-U and the SolarWinds Platform. The post SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester appeared first on SecurityWeek .SECURITYWEEK.COM
7 Jun750k Impacted by Frontier Communications Data BreachFrontier Communications has started notifying over 750,000 individuals that their personal information was stolen in a recent data breach. The telecommunications giant says it identified the incident on April 14, when it was forced to shut down certain systems to contain it. By m…SECURITYWEEK.COM
7 JunSPECTR Malware Attacking Defense Forces of Ukraine With a batch scriptThe government computer emergency response team of Ukraine, CERT-UA, in direct cooperation with the Cyber Security Center of the Armed Forces of Ukraine (CCB), has detected and investigated the activity of the UAC-0020 (Vermin) group, aimed at the Defense Forces of Ukraine. This …GBHACKERS.COM
7 JunPOC exploit code published for critical Apache HugeGraph bugsubmitted by kid to cybersecurity 1 points | 1 comments https://www.theregister.com/2024/06/07/poc_apache_hugegraph/THEREGISTER.COM
7 JunMuhstik Malware Attacking Apache RocketMQ To Execute Remote CodeApache RocketMQ platform is a widely used messaging system that handles high volumes of data and critical operations, often attracting hackers. Exploiting the vulnerabilities in RocketMQ allows attackers to disrupt communications, access sensitive information, and potentially gai…GBHACKERS.COM
7 JunOpen source, open risks: The growing dangers of unregulated generative AIWhile mainstream generative AI models have built-in safety barriers, open-source alternatives have no such restrictions. Here’s what that means for cyber crime. There’s little doubt that open-source is the future of software. According to the 2024 State of Open Source…SECURITYINTELLIGENCE.COM
7 JunMozilla Launches 0Din Gen-AI Bug Bounty ProgramMozilla has announced a 0Day Investigative Network (0Din) bug bounty program for LLMs and other deep learning tech. The post Mozilla Launches 0Din Gen-AI Bug Bounty Program appeared first on SecurityWeek .SECURITYWEEK.COM
7 JunFinding End of Support Dates: UK PTSI Regulation, (Fri, Jun 7th)One of the challenges with many IoT devices, in particular those targeting consumers and small businesses, is the ability to find how long a device is supported. This "expiration date" is becoming important as vulnerabilities are often discovered after a product no longer receive…ISC.SANS.EDU
7 JunPHP fixes critical RCE flaw impacting all versions for WindowsA new PHP for Windows remote code execution (RCE) vulnerability has been disclosed, impacting all releases since version 5.x, potentially impacting a massive number of servers worldwide. [...]BLEEPINGCOMPUTER.COM
7 JunIn Other News: TikTok Zero-Day, DMM Bitcoin Hack, Free VPN App AnalysisNoteworthy stories that might have slipped under the radar: TikTok patches account hijacking zero-day, $300 million DMM Bitcoin hack, free Android VPN apps analyzed. The post In Other News: TikTok Zero-Day, DMM Bitcoin Hack, Free VPN App Analysis appeared first on SecurityWeek .SECURITYWEEK.COM
7 JunLightSpy Spyware's macOS Variant Found with Advanced Surveillance CapabilitiesCybersecurity researchers have disclosed that the LightSpy spyware allegedly targeting Apple iOS users is in fact a previously undocumented macOS variant of the implant. The findings come from both Huntress Labs and ThreatFabric, which separately analyzed the artifacts associated…THEHACKERNEWS.COM
7 JunSpam blocklist SORBS shuts down after over two decadesSORBS, a list of email servers known to distribute spam, has been shut down by its current owner, Proofpoint. Industry observers said that SORBS was no longer profitable and that enterprises had long since moved to other spam filter options. “The decision to sunset a product is n…CSOONLINE.COM
7 JunMultiple Vulnerabilities in PHP Could Allow for Remote Code ExecutionMultiple vulnerabilities have been discovered in PHP which could allow for remote code execution. PHP is a programming language originally designed for use in web-based applications with HTML content. Successful exploitation could allow for remote code execution in the context of…CISECURITY.ORG
7 JunA Vulnerability in SolarWinds Serv-U Could Allow for Path TransversalA vulnerability has been discovered in SolarWinds Serv-U that could allow for path transversal that could lead to disclosure of sensitive information. SolarWinds Serv-U is a managed file transfer solution used to store and share files across an enterprise network. It can be hoste…CISECURITY.ORG
📋 SECURITY BULLETINS 2[−]
7 JunApple Says iPhones Will Get Security Updates for at Least 5 YearsTo comply with new UK government regulations, Apple has specified that iPhones will get at least 5 years of security updates. The post Apple Says iPhones Will Get Security Updates for at Least 5 Years appeared first on SecurityWeek .SECURITYWEEK.COM
📢 SECURITY ADVISORIES 4[−]
7 JunThe Justice Department Took Down the 911 S5 BotnetThe US Justice Department has dismantled an enormous botnet: According to an indictment unsealed on May 24, from 2014 through July 2022, Wang and others are alleged to have created and disseminated malware to compromise and amass a network of millions of residential Windows compu…SCHNEIER.COM
7 JunMinnesotans Targeted by Scammers With Phony Arrest WarrantsThe Minnesota Judicial Branch has issued an advisory warning that scammers are messaging Minnesotans with phony arrest warrants for missing jury duty.KNOWBE4.COM
7 JunISMG Editors: Infosecurity Europe Conference 2024 Wrap-UpPanelists Discuss Latest Updates on AI Tech, Cyber Resilience and Regulations Live from Infosecurity Europe Conference 2024 in London, ISMG editors and special guest CISO Ian Thornton-Trump close the event by discussing key topics including progress on AI-based cybersecurity solu…DATABREACHTODAY.CO.UK
7 JunCISA Planning JCDC Overhaul as Experts Criticize Slow StartTop US Cyber Defense Agency Aims to Revamp Its Key Public-Private Collaborative The Joint Cyber Defense Collaborative may get a much-needed facelift in the coming months after experts and a cybersecurity advisory committee urged the U.S. Cybersecurity and Infrastructure Security …DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 10[−]
7 JunBreach or Bluff: Cyber Criminals' Slippery TacticsWhen the news first broke about a potential data breach at Ticketmaster, the details were murky. The Department of Home Affairs confirmed a cyber incident affecting Ticketmaster customers, but the extent of the breach and the veracity of the claims made by the hacker group ShinyH…KNOWBE4.COM
7 JunSecurity and privacy settings in WhatsApp | Kaspersky official blogHow to set up WhatsApp's security and privacy for maximum protection against surveillance, and unauthorized access to your correspondence.KASPERSKY.COM
7 JunUltimate Cyber Hygiene Guide: Learn How to Simplify Your Security Efforts2023 was a year of unprecedented cyberattacks. Ransomware crippled businesses, DDoS attacks disrupted critical services, and data breaches exposed millions of sensitive records. The cost of these attacks? Astronomical. The damage to reputations? Irreparable. But here's the shocki…THEHACKERNEWS.COM
7 JunAI, Lockbit, Veeam, Club Penguin, Kali, Commando Cat, HugeGraph, Aaran Leyland... - SWN #391Burning AI, Lockbit, Veeam, Club Penguin, Kali, Commando Cat, HugeGraph, Aaran Leyland, and More, on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-391YOUTUBE.COM
7 JunFrontier warns 750,000 of a data breach after extortion threatsFrontier Communications is warning 750,000 customers that their information was exposed in a data breach after an April cyberattack claimed by the RansomHub ransomware operation. [...]BLEEPINGCOMPUTER.COM
7 JunChristie's starts notifying clients of RansomHub data breachBritish auction house Christie's is notifying individuals whose data was stolen by the RansomHub ransomware gang in a recent network breach. [...]BLEEPINGCOMPUTER.COM
7 JunQilin RaaS Group Believed to Be Behind Synnovis, NHS AttackPatient Care, Including Transplants, Still Disrupted at London Hospitals, Clinics A ransomware attack on a pathology services firm earlier this week continues to disrupt patient care, including transplants, blood testing and other services, at multiple NHS hospitals and primary c…DATABREACHTODAY.CO.UK
7 Jun560 million Ticketmaster customer data for sale? – Week in security with Tony AnscombeTicketmaster seems to have experienced a data breach, with the ShinyHunters hacker group claiming to have exfiltrated 560 million customer data. Watch as Tony discusses the story and provides useful tips on how to protect people's data.WELIVESECURITY.COM
7 JunFrontier warns 750,000 of a data breach after extortion threatsFrontier Communications is warning 750,000 customers that their information was exposed in a data breach after an April cyberattack claimed by the RansomHub ransomware operation. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 17[−]
7 JunISC Stormcast For Friday, June 7th, 2024 https://isc.sans.edu/podcastdetail/9014, (Fri, Jun 7th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
7 JunCommando Cat Cryptojacking Attacks Target Misconfigured Docker InstancesThe threat actor known as Commando Cat has been linked to an ongoing cryptojacking attack campaign that leverages poorly secured Docker instances to deploy cryptocurrency miners for financial gain. "The attackers used the cmd.cat/chattr docker image container that retrieves the p…THEHACKERNEWS.COM
7 JunTenable Acquires Eureka Security To Provide Data Security Across InfrastructureTenable® Holdings, Inc., a leading Exposure Management company, has announced a definitive agreement to acquire Eureka Security, Inc., a prominent provider of data security posture management (DSPM) for cloud environments. This strategic acquisition aims to bolster Tenable’…GBHACKERS.COM
7 JunFCC Proposes BGP Security Reporting for Broadband ProvidersThe FCC proposes that broadband providers plan for BGP security and provide quarterly reports on implemented risk mitigations. The post FCC Proposes BGP Security Reporting for Broadband Providers appeared first on SecurityWeek .SECURITYWEEK.COM
7 JunAirMDR Raises $5 Million for AI-Powered Managed Detection and ResponseAI-powered MDR startup AirMDR has raised $5 million in seed funding from Foundation Capital and Storm Ventures. The post AirMDR Raises $5 Million for AI-Powered Managed Detection and Response appeared first on SecurityWeek .SECURITYWEEK.COM
7 JunFighting Phishing: Everything You Can Do to Fight Social Engineering and PhishingI have created a comprehensive webinar, based on my recent book , “Fighting Phishing: Everything You Can Do to Fight Social Engineering and Phishing”. It contains everything that KnowBe4 and I know to defeat scammers.KNOWBE4.COM
7 JunHacktivist Groups Attacking Industrial Control Systems To Disrupt ServicesHacktivist groups are increasingly targeting critical infrastructure’s Operational Technology (OT) systems, motivated by geopolitical issues that, unlike traditional website defacements, can disrupt essential services and endanger public safety. The success of h…GBHACKERS.COM
7 JunNorth Korean Kimsuky Attacking Arms Manufacturer In EuropeThe North Korean state-sponsored group known as Kimsuky has launched a sophisticated cyber-espionage campaign targeting a prominent weapons manufacturer in Western Europe. This attack released on LinkedIn, discovered on May 16, 2024, underscores the growing threat state-sponsored…GBHACKERS.COM
7 JunOff-Topic Fridaysubmitted by shellsharks to cybersecurity 2 points | 0 comments Wanna chat about something non-infosec amongst those of us who frequent /c/cybersecurity? Here’s your chance! (Keep things civil & respectful please)INFOSEC.PUB
7 JunTenable to Acquire Eureka Security to Boost DSPM CapabilitiesTenable goes shopping again in Israel with plans to buy early stage startup Eureka Security to boost data security posture management tooling. The post Tenable to Acquire Eureka Security to Boost DSPM Capabilities appeared first on SecurityWeek .SECURITYWEEK.COM
7 JunMicrosoft Bows to Public Pressure, Disables Controversial Windows Recall by DefaultAmidst public pressure, Microsoft changes the set-up experience of Copilot+ PCs to disable the controversial Windows Recall feature by default. The post Microsoft Bows to Public Pressure, Disables Controversial Windows Recall by Default appeared first on SecurityWeek .SECURITYWEEK.COM
7 JunNearly Three-Quarters of Organizations Were the Target of Attempted Business Email Compromise AttacksNew data highlights just how dangerous Business Email Compromise attacks are.KNOWBE4.COM
7 JunTenable Boosts Data, Cloud Security With Eureka AcquisitionTenable to Natively Integrate Eureka's Data Security Posture Management Product Tenable plans to acquire Israeli startup Eureka to enhance its cloud security platform with advanced data security posture management capabilities. The transaction aims to provide customers with compr…DATABREACHTODAY.CO.UK
7 JunSecurity and Human Behavior (SHB) 2024This week, I hosted the seventeenth Workshop on Security and Human Behavior at the Harvard Kennedy School. This is the first workshop since our co-founder, Ross Anderson, died unexpectedly . SHB is a small, annual, invitational workshop of people studying various aspects of the h…SCHNEIER.COM
7 JunFriday Squid Blogging: Squid Catch Quotas in PeruPeru has set a lower squid quota for 2024. The article says “giant squid,” but that seems wrong. We don’t eat those. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines…SCHNEIER.COM
7 JunMicrosoft Tweaks Recall for SecurityThe Computing Giant Faced a Wave of Criticism Over 'Photographic Memory' Feature Microsoft is retreating somewhat from Recall, a planned feature it touts as "photographic memory" for personal computers. The company announced on Friday that it's shifting the default setting for Re…DATABREACHTODAY.CO.UK
7 JunHypr Secures $30M to Expand Identity Protection PlatformSilver Lake Waterman Investment in Hypr Fuels Product Development, Market Expansion Hypr raised $30 million from Silver Lake Waterman to boost its identity security offerings, aiming for market expansion and a potential initial public offering. The investment supports the New Yor…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 2[−]
7 JunCyber Landscape is Evolving - So Should Your SCATraditional SCAs Are Broken: Did You Know You Are Missing Critical Pieces? Application Security professionals face enormous challenges securing their software supply chains, racing against time to beat the attacker to the mark. Software Composition Analysis (SCA) tools have…THEHACKERNEWS.COM
7 Jun16-year-old arrested in France in connection with high-profile Epsilon hacking group attacksA 16-year-old youth has been arrested in France on suspicion of having run a malware-for-rent business. The unnamed Frenchman, who goes by online handles including "ChatNoir" and "Casquette", is said to be a key member of the Epsilon hacking group, which has in the recent past st…BITDEFENDER.COM
🎙️ PODCASTS 1[−]
7 JunCyber Security Today, Week in Review for week ending June 7, 2024This episode features a discussion of data thefts from Snowflake data stores, more on the controversy over Microsoft Recall and the Auditor-General's report on Canada's cyber fighting agenciesCYBERSECURITYTODAY.LIBSYN.COM
📡 INFOSEC NEWS 11[−]
7 JunBangladeshi police agents accused of selling citizens’ personal information on TelegramTwo senior police officials in Bangladesh are accused of collecting and selling citizens' personal information to criminals on Telegram. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
7 JunThe AI Debate: Google's Guidelines, Meta's GDPR Dispute, Microsoft's Recall BacklashGoogle is urging third-party Android app developers to incorporate generative artificial intelligence (GenAI) features in a responsible manner. The new guidance from the search and advertising giant is an effort to combat problematic content, including sexual content and hate spe…THEHACKERNEWS.COM
7 JunSophos Wiesbaden Sprints to SuccessSophos Wiesbaden takes on the epic J.P. Morgan Corporate Challenge in Frankfurt on its 30th AnniversarySOPHOS.COM
7 JunMicrosoft makes Windows Recall opt-in, secures data with Windows HelloFollowing massive customer pushback after it announced the new AI-powered Recall for Copilot+ PCs last month, Microsoft says it will update the feature to be more secure and require customers to opt in to enable it. [...]BLEEPINGCOMPUTER.COM
7 JunApple to unveil new 'Passwords' password manager app for iPhones, MacsApple will reportedly unveil a standalone password manager named 'Passwords' as part of iOS 18, iPadOS 18, and macOS 15 during the upcoming Apple Worldwide Developers Conference. [...]BLEEPINGCOMPUTER.COM
7 JunCollaborative Security: The Team Sport ApproachBy decentralizing the ownership of cybersecurity and increasing security consciousness among everyone in the organization, businesses can improve their security posture, said Dom Lombardi, the vice president of security and trust at Kandji. He discussed the concept of collaborati…DATABREACHTODAY.CO.UK
7 JunLastPass says 12-hour outage caused by bad Chrome extension updateLastPass says its almost 12-hour outage yesterday was caused by a bad update to its Google Chrome extension. [...]BLEEPINGCOMPUTER.COM