79Articles
7Categories
2024-06-21Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
21 JunMailcow Mail Server Vulnerability Let Attackers Execute Remote CodeTwo critical vulnerabilities (CVE-2024-31204 and CVE-2024-30270) affecting Mailcow versions before 2024-04 allow attackers to execute arbitrary code on the server. An attacker can exploit these vulnerabilities by sending a specially crafted email to an administrator.  When t…GBHACKERS.COM
21 Jun KEVSolarWinds Serv-U Vulnerability Under Active Attack - Patch ImmediatelyA recently patched high-severity flaw impacting SolarWinds Serv-U file transfer software is being actively exploited by malicious actors in the wild. The vulnerability, tracked as CVE-2024-28995 (CVSS score: 8.6), concerns a directory transversal bug that could allow attackers to…THEHACKERNEWS.COM
21 JunPrestaShop Website Under Injection Attack Via Facebook ModuleA critical vulnerability has been discovered in the “Facebook” module (pkfacebook) from Promokit.eu for PrestaShop. The vulnerability, CVE-2024-36680, allows a guest to perform SQL injection attacks on affected module versions. CVE-2024-36680 – Vulnerability Det…GBHACKERS.COM
21 JunScanning for TP-Link Wifi Router Vulnerability Increases by 100%The TP-Link Archer AX21 Wifi Router vulnerability CVE-2023-1389 experiences massive targeting along with a rather old critical RCE in PHPUnit.F5.COM
21 JunScanning for TP-Link Wifi Router Vulnerability Increases by 100%The TP-Link Archer AX21 Wifi Router vulnerability CVE-2023-1389 experiences massive targeting along with a rather old critical RCE in PHPUnit.F5.COM
⚠️ VULNERABILITY DISCLOSURE 15[−]
21 Jun KEVWhat is swatting? Criminal harassment falsely involving armed policeSwatting definition Swattingis a form of criminal harassment in which attackers try to trick police forces into sending a heavily armed strike force to a victim’s home or business. The term takes its name from SWAT (Special Weapons and Tactics), a highly trained police unit that …CSOONLINE.COM
21 JunU.S. Bans Kaspersky Software, Citing National Security RisksThe U.S. Department of Commerce's Bureau of Industry and Security (BIS) on Thursday announced a "first of its kind" ban that prohibits Kaspersky Lab's U.S. subsidiary from directly or indirectly offering its security software in the country. The blockade also extends to the cyber…THEHACKERNEWS.COM
21 JunChinese UNC3886 Actors Exploiting VMware, Fortinet 0-days For SpyingIn 2021, UNC3886, a suspected China nexus cyber espionage actor, was found to be targeting strategic organizations on a large scale, utilizing multiple vulnerabilities in FortiOS and VMware to install backdoors on the infected machines. Fortinet and VMware have released patches t…GBHACKERS.COM
21 JunBeware Of Illegal OTT Platforms That Exposes Sensitive Personal InformationA recent rise in data breaches from illegal Chinese OTT platforms exposes that user information, including names and financial details, is vulnerable to exploitation by criminals.  The leaked information can be used for phishing attacks, financial fraud, and even harassment,…GBHACKERS.COM
21 JunUS bans Kaspersky Labs over national security concernsThe Biden administration has reached a decision to block all new sales of Kaspersky Labs’ products and services on US soil over allegations of the Moscow-based cybersecurity company’s strong ties to Russia’s nation-state cyber offensives. According to a statement issued by the De…CSOONLINE.COM
21 Jun5 biggest risks of using third-party service providersAs business processes become more complex, companies are turning to third parties to boost their ability to provide critical services from cloud storage to data management to security. It’s often more efficient and less expensive to do so, but the use of third-party services can …CSOONLINE.COM
21 JunBeware PowerShell: Too-helpful users tricked into ‘fixing’ their machines with malwareIt’s bad enough that crooks foist malware on us for their profit – now some are persuading users to do their work for them. Security researchers have identified a technique using social engineering to persuade users to copy and run malicious PowerShell scripts that infect their c…CSOONLINE.COM
21 JunSpatial Computing Hack Exploits Apple Vision Pro Flaw to Fill Room With Spiders, BatsA recently patched Vision Pro vulnerability was classified by Apple as a DoS issue, but a researcher has shown that it’s ‘scary’. The post Spatial Computing Hack Exploits Apple Vision Pro Flaw to Fill Room With Spiders, Bats appeared first on SecurityWeek .SECURITYWEEK.COM
21 JunIn Other News: Microsoft Email Spoofing, Snowflake Hack Ransoms, LogoFail Follow-UpNoteworthy stories that might have slipped under the radar: Microsoft email spoofing vulnerability, Snowflake hack victims get ransom demands, LogoFail still around. The post In Other News: Microsoft Email Spoofing, Snowflake Hack Ransoms, LogoFail Follow-Up appeared first on Sec…SECURITYWEEK.COM
21 Jun KEVRecent SolarWinds Serv-U Vulnerability Exploited in the WildThreat actors are exploiting a recent path traversal vulnerability in SolarWinds Serv-U using public PoC code. The post Recent SolarWinds Serv-U Vulnerability Exploited in the Wild appeared first on SecurityWeek .SECURITYWEEK.COM
21 JunOptus breach occurred due to a coding error, alleges ACMAThe Australian Communications and Media Authority (ACMA) alleged the Optus data breach of September 2022 happened due to a coding error which Optus did not detect during 17 and 20 September 2022, and for four years before that. ACMA filed a document with the Victoria Registry of …CSOONLINE.COM
21 JunJuniper Networks Releases Security Bulletin for Juniper Secure AnalyticsJuniper Networks released a security bulletin to address multiple vulnerabilities affecting Juniper Secure Analytics optional applications. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system. Users and administrators are encourag…CISA.GOV
21 JunTata Communications partners with Versa Networks on hosted SASETata Communications has entered the fast-growing SASE market with a hosted offering for global enterprises. It said that Hosted Secure Access Service Edge (SASE), offered in partnership with unified SASE platform vendor Versa Networks, “converges software-defined wide area networ…CSOONLINE.COM
21 JunGoogle's Zero-Day Hunters Test AI for Security ResearchProject Zero Framework Aims to Boost AI Bug Detection Skills Google's team of zero-day hunters say artificial intelligence can lead to improved automated threat identification and analysis. Researchers say that a framework allows LLMs to mimic the iterative, hypothesis-driven app…DATABREACHTODAY.CO.UK
21 JunAustralia Optus 2022 Data Breach 'Not Highly Sophisticated'Hackers Exploited Coding Error, Says Australian Communications and Media Authority Hackers behind the leak of 10 million records from Australia's second-largest telecommunications carrier Optus exploited a vulnerability the company unwittingly inserted four years earlier into a w…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 5[−]
21 JunPersonal and Chemical Facility Information Potentially Accessed in CISA HackCISA says CFATS program data was likely accessed after an Ivanti Connect Secure appliance was hacked in January. The post Personal and Chemical Facility Information Potentially Accessed in CISA Hack appeared first on SecurityWeek .SECURITYWEEK.COM
21 JunChinese Hackers Deploy SpiceRAT and SugarGh0st in Global Espionage CampaignA previously undocumented Chinese-speaking threat actor codenamed SneakyChef has been linked to an espionage campaign primarily targeting government entities across Asia and EMEA (Europe, Middle East, and Africa) with SugarGh0st malware since at least August 2023. "SneakyChef use…THEHACKERNEWS.COM
21 JunUS Sanctions 12 Kaspersky ExecutivesSanctions Comes After Biden Administration Banned the Russian Cybersecurity Firm Senior executives of Russian cybersecurity firm Kaspersky face new restrictions against doing business in Western countries following an announcement Friday morning by the U.S. Department of the Trea…DATABREACHTODAY.CO.UK
21 JunApple to Delay AI Rollout in EuropeSmartphone Giant Fingers Regulation Meant to Restrain Big Tech Apple said it will delay the rollout of artificial intelligence-powered features on smartphones in Europe in a Friday statement citing European law meant to rein in the power of large tech companies. The smartphone gi…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 18[−]
21 JunChange Healthcare to Start Notifying Customers Who Had Data Exposed in CyberattackChange Healthcare is starting to notify hospitals, insurers and other customers that they may have had patient information exposed in a massive cyberattack. The post Change Healthcare to Start Notifying Customers Who Had Data Exposed in Cyberattack appeared first on SecurityWeek …SECURITYWEEK.COM
21 JunDisruptions at Many Car Dealerships Continue as CDK Hack WorsensCar dealership software provider CDK Global was in the process of restoring services impacted by a cyberattack when it discovered an additional hack. The post Disruptions at Many Car Dealerships Continue as CDK Hack Worsens appeared first on SecurityWeek .SECURITYWEEK.COM
21 JunCDK warns: threat actors are calling customers, posing as supportCDK Global has cautioned customers about unscrupulous actors calling them and posing as CDK agents or affiliates to gain unauthorized systems access. The warning follows ongoing cyberattacks that have hit CDK, a software-as-a-service (SaaS) platform that thousands of US car deale…BLEEPINGCOMPUTER.COM
21 JunLockBit Most Prominent Ransomware Actor in May 2024submitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/lockbit-prominent-ransomware-may/INFOSECURITY-MAGAZINE.COM
21 JunDDoS Attack Targets Poland's UEFA Euro Opening Matchsubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/ddos-attack-poland-uefa-euro-opening-matchDARKREADING.COM
21 JunSantander Employee Data Breach Linked to Snowflake AttackSantander US is notifying over 12,000 employees that their personal information was compromised in a data breach. The post Santander Employee Data Breach Linked to Snowflake Attack appeared first on SecurityWeek .SECURITYWEEK.COM
21 JunChange Healthcare confirms ransomware hackers stole medical records on a ‘substantial proportion’ of AmericansThe February ransomware attack on UHG-owned Change Healthcare stands as one of the largest-ever known digital thefts of U.S. medical records. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
21 JunChange Healthcare lists the medical data stolen in ransomware attackUnitedHealth has confirmed for the first time what types of medical and patient data were stolen in the massive Change Healthcare ransomware attack, stating that data breach notifications will be mailed in July. [...]BLEEPINGCOMPUTER.COM
21 JunISMG Editors: How Did Medibank's Lack of MFA Cause a Breach?Also: Critical Infrastructure Security and Fortinet's Latest Acquisition In the latest weekly update, ISMG editors discussed critical infrastructure security challenges, a report on the 2022 Medibank breach compromising personal data for 10 million people, and Fortinet's acquisit…DATABREACHTODAY.CO.UK
21 JunQilin Ransomware Group Leaks NHS DataThe Group Published 104 Files It Says Come From NHS Hospitals in London A ransomware group late Thursday published information stolen during an attack that's led to postponed cancer treatment and organ transplant surgeries at two London National Health Service hospitals. The Qili…DATABREACHTODAY.CO.UK
21 JunAs Britain's NHS Faces Data Leak, Never Normalize RansomwareBattle the Business Model With Business Resilience Planning, Failover Capabilities Never let ransomware become normalized. Businesses today are more likely that not to be hit by ransomware, but this doesn't mean we should ever let ransomware seem like a new normal, akin to death …DATABREACHTODAY.CO.UK
21 JunFirst million breached Ticketmaster records released for freesubmitted by kid to cybersecurity 1 points | 0 comments https://www.malwarebytes.com/blog/news/2024/06/first-million-breached-ticketmaster-records-released-for-freeMALWAREBYTES.COM
21 JunHacker claims to have 30 million customer records from Australian ticket seller giant TEGA hacker is advertising customer data allegedly stolen from the Australia-based live events and ticketing company TEG on a well-known hacking forum. On Thursday, a hacker put up for sale the alleged stolen data from TEG, claiming to have information of 30 million users, including…TECHCRUNCH.COM
21 JunLos Angeles Unified confirms student data stolen in Snowflake account hackThe Los Angeles Unified School District has confirmed a data breach after threat actors stole student and employee data by breaching the company's Snowflake account. [...]BLEEPINGCOMPUTER.COM
21 JunAuto Dealerships Using CDK Global Hit With Cyber DisruptionsAuto Dealership Tech Firm Confirms System Shutdowns After Multiple Cyber Incidents CDK Global, a leading software and solutions providers for thousands of car dealerships across the United States and Canada, has launched investigations into consecutive cyber incidents that caused…DATABREACHTODAY.CO.UK
21 JunChange Healthcare Begins to Notify Clients Affected by HackThe Company Will Start Notifying Individuals Affected by the Breach in Late July Change Healthcare says it has begun to notify customers whose data was compromised in the February ransomware attack that affected scores of healthcare providers, health insurance plans and other org…DATABREACHTODAY.CO.UK
21 JunThe long-tail costs of a data breach – Week in security with Tony AnscombeUnderstanding and preparing for the potential long-tail costs of data breaches is crucial for businesses that aim to mitigate the impact of security incidentsWELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 21[−]
21 JunISC Stormcast For Friday, June 21st, 2024 https://isc.sans.edu/podcastdetail/9030, (Fri, Jun 21st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
21 JunCyber A.I. Group Announces the Engagement of Walter L. Hughes as Chief Executive OfficerCyber A.I. Group, Inc., an early stage cybersecurity, A.I. and IT services company, announced today the engagement of Walter L. Hughes as Chief Executive Officer. The announcement was made by A.J. Cervantes, Jr., Executive Chairman of Cyber A.I. Group and Chairman of Trilogy Capi…GBHACKERS.COM
21 JunNew Highly Evasive SquidLoader Attacking Employees Mimic As Word DocumentResearchers discovered a new malware loader named SquidLoader targeting Chinese organizations, which arrives as an executable disguised as a Word document attached to phishing emails. It uses evasion techniques to avoid detection and analysis. Then it downloads a malicious payloa…GBHACKERS.COM
21 JunHackers Weaponizing Windows Shortcut Files for PhishingLNK files, a shortcut file type in Windows OS, provide easy access to programs, folders, or websites. Created automatically during shortcut creation or manually by users, LNK files contain the target location and other information useful for threat intelligence.  It includes…GBHACKERS.COM
21 JunHackers Attacking Vaults, Buckets, And Secrets To Steal DataHackers target vaults, buckets, and secrets to access some of the most classified and valuable information, including API keys, logins, and other useful data kept within these storage solutions. These storage solutions’ centralized and often inadequately protected nature ma…GBHACKERS.COM
21 JunBeware Of Zergeca Botnet with Advanced Scanning & Persistence FeaturesA new botnet named Zergeca has emerged, showcasing advanced capabilities that set it apart from typical Distributed Denial of Service (DDoS) botnets. Discovered by the XLab Cyber Threat Insight Analysis (CTIA) system on May 20, 2024, Zergeca has already demonstrated its potential…GBHACKERS.COM
21 JunKaspersky products are now banned in the USsubmitted by 0x0 to security 1 points | 0 comments https://www.xda-developers.com/kaspersky-us-banned/ If it ain’t 'murican we ban 'em! Guess all foreign cars should be next, what with all the telemetry and all…XDA-DEVELOPERS.COM
21 JunUS Bans Kaspersky SoftwareThe US government has announced a ban on the sale of Kaspersky software over fears that the company is controlled by the Russian government. The post US Bans Kaspersky Software appeared first on SecurityWeek .SECURITYWEEK.COM
21 JunRoss Anderson’s Memorial ServiceThe memorial service for Ross Anderson will be held on Saturday, at 2:00 PM BST. People can attend remotely on Zoom . (The passcode is “L3954FrrEF”.)SCHNEIER.COM
21 JunAtlassian fixed six high-severity bugs in Confluencesubmitted by kid to cybersecurity 2 points | 0 comments https://securityaffairs.com/164743/security/atlassian-confluence-crucible-jira-flaws.htmlSECURITYAFFAIRS.COM
21 JunSweden says Russia is interfering with Nordic satellitessubmitted by kid to cybersecurity 2 points | 1 comments https://www.theregister.com/2024/06/21/sweden_russia_jamming/THEREGISTER.COM
21 JunChinese-aligned hacking group targeted more than a dozen government agencies, researchers findsubmitted by kid to cybersecurity 1 points | 0 comments https://cyberscoop.com/chinese-aligned-hacking-group-targeted-more-than-a-dozen-government-agencies-researchers-find/CYBERSCOOP.COM
21 JunNews Alert: INE Security lays out strategies for optimizing security teams to mitigate AI risksCary, NC, June 20, 2024, CyberNewsWire — 2024 is rapidly shaping up to be a defining year in generative AI. While 2023 saw its emergence as a potent new technology, business leaders are now grappling with how to best leverage … (more…) The post News Alert: INE Securit…LASTWATCHDOG.COM
21 JunHow generative AI Is expanding the insider threat attack surfaceAs the adoption of generative AI (GenAI) soars, so too does the risk of insider threats. This puts even more pressure on businesses to rethink security and confidentiality policies. In just a few years, artificial intelligence (AI) has radically changed the world of work. 61% of …SECURITYINTELLIGENCE.COM
21 JunMilitary-themed Email Scam Spreads Malware to Infect Pakistani UsersCybersecurity researchers have shed light on a new phishing campaign that has been identified as targeting people in Pakistan using a custom backdoor. Dubbed PHANTOM#SPIKE by Securonix, the unknown threat actors behind the activity have leveraged military-related phishing documen…THEHACKERNEWS.COM
21 JunNews Alert: 1inch partners with Blockaid to enhance Web3 security through the 1inch ShieldDubai, UAE, June 20, 2024, CyberNewsWire — 1inch , a leading DeFi aggregator that provides advanced security solutions to users across the entire space, has announced today the launch of the 1inch Shield. This solution, that is offering enhanced protection … (more…) T…LASTWATCHDOG.COM
21 JunUS Treasury Moves to Limit Investments in Chinese Tech FirmsNew Rule Would Restrict Americans From Investing in Chinese AI, Semiconductors The U.S. Treasury Department is proposing a new rule that would restrict Americans from investing in technology companies developing quantum information technology, semiconductors and certain AI system…DATABREACHTODAY.CO.UK
21 JunCybersecurity In College - SWN VaultCheck out this interview from the SWN Vault, hand picked by main host Doug White! This Secure Digital Life segment was originally published on June 19, 2018. This week, Doug and Russ interview Matthew Silva, President and Founder of the Cybersecurity and Intel Club at Roger Willi…YOUTUBE.COM
21 JunOff-Topic Fridaysubmitted by shellsharks to cybersecurity 2 points | 0 comments Wanna chat about something non-infosec amongst those of us who frequent /c/cybersecurity? Here’s your chance! (Keep things civil & respectful please)INFOSEC.PUB
21 JunFriday Squid Blogging: Squid NebulaBeautiful astronomical photo .SCHNEIER.COM
21 JunCourt: HHS Overstepped HIPAA Authority in Web Tracking GuideAgency Must Drop Updated Guidance Provisions Regarding Certain PHI 'Combinations' A Texas federal court ruled the U.S. Department of Health and Human Services overstepped its authority in guidance warning HIPAA-regulated entities that it's unlawful to use online tracking tools to…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 4[−]
21 JunCyber Security Today, June 21, 2024 - US to ban Kaspersky for consumers and businessesThis episode reports on how gullible employees are falling for a scam and cutting and pasting malware into their organization's IT systems, and moreCYBERSECURITYTODAY.LIBSYN.COM
21 JunOyster Backdoor Spreading via Trojanized Popular Software DownloadsA malvertising campaign is leveraging trojanized installers for popular software such as Google Chrome and Microsoft Teams to drop a backdoor called Oyster (aka Broomstick and CleanUpLoader). That's according to findings from Rapid7, which identified lookalike websites hosting th…THEHACKERNEWS.COM
21 JunU.S. government sanctions Kaspersky executivesThe U.S. government announced Friday sanctions against twelve executives and senior leaders of the Russia-based cybersecurity giant Kaspersky. In a press release, the Department of the Treasury’s Office of Foreign Assets Control (OFAC) said it designated the twelve company execut…TECHCRUNCH.COM
📡 INFOSEC NEWS 11[−]
21 JunHow to exclude your router from surveillance via Wi-Fi positioning system | Kaspersky official blogHow global WPS systems track the location of routers, and the corresponding steps you should takeKASPERSKY.COM
21 JunTor Browser 13.5 brings Android enhancements, better bridge managementThe Tor Project has released Tor Browser 13.5, bringing several improvements and enhancements for Android and desktop versions. [...]BLEEPINGCOMPUTER.COM
21 JunFive men convicted for operating illegal streaming site JetflicksA federal jury in Las Vegas convicted five men for their involvement in the operation of Jetflicks, one of the largest and most popular illegal streaming services in the United States. [...]BLEEPINGCOMPUTER.COM
21 JunUS sanctions 12 Kaspersky Lab execs for working in Russian tech sectorThe Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned twelve Kaspersky Lab executives for operating in the technology sector of Russia. [...]BLEEPINGCOMPUTER.COM
21 JunCorpay, UHN Secure Hybrid Cloud Infrastructure With GigamonHow Gigamon's Technical Capabilities Boost Organizations' Cybersecurity Network security threats are ever-evolving, and all types of organizations work hard to face down emerging threats while maintaining robust performance across their hybrid cloud infrastructure. In this quest,…DATABREACHTODAY.CO.UK