🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
24 JunCritical RCE Vulnerability Discovered in Ollama AI Infrastructure ToolCybersecurity researchers have detailed a now-patch security flaw affecting the Ollama open-source artificial intelligence (AI) infrastructure platform that could be exploited to achieve remote code execution. Tracked as CVE-2024-37032, the vulnerability has been codenamed Probll…THEHACKERNEWS.COM
24 JunCVE-2022-26832 .NET Framework Denial of Service VulnerabilityUpdated the build numbers. This is an informational update only.MSRC.MICROSOFT.COM
24 JunCritical RCE Vulnerability Discovered in Ollama AI Infrastructure ToolThe vulnerability, tracked as CVE-2024-37032 and dubbed Probllama, was patched in version 0.1.34 released on May 7, 2024. Ollama is a service used for running large language models locally on Windows, Linux, and macOS devices.THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 15[−]
24 JunMultiple Threat Actors Deploying Open-Source Rafel RAT to Target Android DevicesMultiple threat actors, including cyber espionage groups, are employing an open-source Android remote administration tool called Rafel RAT to meet their operational objectives by masquerading it as Instagram, WhatsApp, and various e-commerce and antivirus apps. "It provides malic…THEHACKERNEWS.COM
24 JunAre you a CISO who doesn’t know jack? Here’s how to bridge your own skills gapIn 2023, six years into his job as a CISO, Rob Labbé realized he didn’t know jack. Did he understand the technical aspects of cybersecurity? Of course. He had a college degree in computer programming analysis, CISSP certification , and two decades of experience working in cyber. …CSOONLINE.COM
24 JunMicrosoft Power BI Vulnerability Let Attackers Access Organizations Sensitive DataA vulnerability in Microsoft Power BI allows unauthorized users to access sensitive data underlying reports, which affects tens of thousands of organizations and grants access to employee, customer, and potentially confidential data. By exploiting this vulnerability, attack…GBHACKERS.COM
24 JunNew RAT digs into Android phones to steal data and encrypt filesOutdated Android devices are being targeted by novel, targeted malware “ Rafel RAT ” to steal data and, sometimes, carry out ransomware attacks, according to a CheckPoint research . As many as 120 campaigns, including high-profile targets in the military sector, have been observe…CSOONLINE.COM
24 JunCar dealerships face continued disruption as CDK works to restore hacked systemsCar dealerships across North America are facing ongoing disruptions as software provider CDK Global grapples with the aftermath of a cyberattack Wednesday. The company began restoring its systems Sunday, but the process is expected to take “several days,” reported Bloomberg citin…CSOONLINE.COM
24 JunThreat Actor Claiming a 0-day in Linux LPE Via GRUB bootloaderA new threat actor has emerged, claiming a zero-day vulnerability in the Linux GRUB bootloader that allows for local privilege escalation (LPE). This alarming development has raised significant concerns within the cybersecurity community. A recent tweet from Dark Web Intelligence…GBHACKERS.COM
24 JunUnderstanding APIs and how attackers abuse them to steal dataSimply put, APIs (short for application programming interface) are how machines, cloud workloads, automation and other non-human entities communicate with one another. They also represent an access point to highly sensitive company data and services. Almost every organization use…CSOONLINE.COM
24 JunWhy identity security Is essential to cybersecurity strategyIn the modern digital landscape, cybersecurity isn’t just a technical challenge – it’s a business imperative. At the heart of cybersecurity is identity security – the principle that the right people have the right access at the right time. As we venture further into the digital w…CSOONLINE.COM
24 JunGoogle Introduces Project Naptime for AI-Powered Vulnerability ResearchGoogle has developed a new framework called Project Naptime that it says enables a large language model (LLM) to carry out vulnerability research with an aim to improve automated discovery approaches. "The Naptime architecture is centered around the interaction between an AI agen…THEHACKERNEWS.COM
24 JunNew attack uses MSC files and Windows XSS flaw to breach networksA novel command execution technique dubbed 'GrimResource' uses specially crafted MSC (Microsoft Saved Console) and an unpatched Windows XSS flaw to perform code execution via the Microsoft Management Console. [...]BLEEPINGCOMPUTER.COM
24 JunAI at Work 2024: C-suite Perspectives on Artificial Intelligence - Bhawna Singh - BSW #354In the age of AI, driving a business forward requires balancing three very significant considerations: growth through innovation, productivity through operational efficiency, and trust through security. To better understand how AI impacts the intersection of security, innovation,…YOUTUBE.COM
24 JunChinese Hackers Caught Spying on Taiwanese FirmsEspionage Group Used SoftEther VPN Client to Exploit Targeted Networks A Chinese state-sponsored group, tracked as RedJuliett, is using open-source VPN client SoftEther to target the infrastructure of about 75 organizations in government, academic and technology sectors in multip…DATABREACHTODAY.CO.UK
24 JunCISA Confirms Cyberattack on Critical Chemical Security ToolUS Cyber Defense Agency Says Major Cyberattack Result of Vulnerable Ivanti Products The Cybersecurity and Infrastructure Security Agency confirmed Monday that hackers attacked one of its critical tools housing private sector chemical security plans earlier this year after gaining…DATABREACHTODAY.CO.UK
24 JunResearchers Say Microsoft Power BI Reports Expose Sensitive Data on the WebThe vulnerability in Power BI reports allows access to underlying raw data when shared with others. This includes detailed records, hidden tables, non-displayed columns, and filtered-out data.NOKODSECURITY.COM
24 JunGoogle's Zero-Day Hunters Test AI for Security ResearchGoogle's Project Zero team of zero-day hunters believes that artificial intelligence (AI) can enhance automated threat identification and analysis by detecting vulnerabilities that are often missed by current tools.BANKINFOSECURITY.COM
📢 SECURITY ADVISORIES 7[−]
24 JunChemical Facilities Told of Possible Data Exfiltration in CISA Breachsubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/chemical-exfiltration-cisa-breach/INFOSECURITY-MAGAZINE.COM
24 JunHIPAA Omnibus: 5 Compliance TipsInsights on Taking Quick Action on New Healthcare Regulations Healthcare organizations need to implement a five-step plan to launch their efforts to comply with the HIPAA Omnibus Rule on a tight deadline, says security specialist Christopher Paidhrin.DATABREACHTODAY.CO.UK
24 JunChemical facilities warned of possible data theft in CISA CSAT breachCISA is warning that its Chemical Security Assessment Tool (CSAT) environment was breached in January after hackers deployed a webshell on its Ivanti device, potentially exposing sensitive security assessments and plans. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 21[−]
24 JunInvestigation of Russian Hack on London Hospitals May Take Weeks Amid Worries Over Online Data DumpHundreds of operations and appointments are still being canceled more than two weeks after the June 3 cyberattack on NHS provider Synnovis. The post Investigation of Russian Hack on London Hospitals May Take Weeks Amid Worries Over Online Data Dump appeared first on SecurityWeek …SECURITYWEEK.COM
24 JunJapan’s Space Agency Was Hit by Multiple Cyberattacks, but Officials Say No Sensitive Data Was TakenJapan’s space agency has suffered a series of cyberattacks, but sensitive information related to rockets and satellites was not affected. The post Japan’s Space Agency Was Hit by Multiple Cyberattacks, but Officials Say No Sensitive Data Was Taken appeared first on Security…SECURITYWEEK.COM
24 JunAdvance Auto Parts - 79,243,727 breached accountsIn June 2024, Advance Auto Parts confirmed they had suffered a data breach which was posted for sale to a popular hacking forum. Linked to unauthorised access to Snowflake cloud services, the breach exposed a large number of records related to both customers and employees. In tot…HAVEIBEENPWNED.COM
24 JunCyber Security Today, June 24, 2024 - Ransomware gang reportedly behind the hack of car dealership software providerThis episode reports on a warning to patch Serv-U applications, the workings of the Rafel trojan, and moreCYBERSECURITYTODAY.LIBSYN.COM
24 JunCDK Global Begins To Restore Systems After Cyber Attack Hits Thousands Of RetailersPACKETSTORMSECURITY.COM
24 JunLockBit Ransomware Group Claims Hack of US Federal ReserveThe notorious LockBit ransomware group has claimed responsibility for hacking the U.S. Federal Reserve, allegedly compromising 33 terabytes of sensitive data. The announcement was made on Twitter via the group’s Dark Web Intelligence, sending shockwaves through financial an…GBHACKERS.COM
24 JunPush Notification Fatigue Leads to LA County Health Department Data BreachThe Los Angeles County Department of Health Services discloses a data breach caused by push notification spamming attack. The post Push Notification Fatigue Leads to LA County Health Department Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
24 JunCoinStats says North Korean hackers breached 1,590 crypto walletsCoinStats suffered a massive security breach that compromised 1,590 cryptocurrency wallets, with the attack suspected to have been carried out by North Korean threat actors. [...]BLEEPINGCOMPUTER.COM
24 JunCar dealership outages drag on after CDK cyberattacksCar dealerships and auto shops around the U.S. enter a second week of disruption following cyberattacks at software maker CDK. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
24 JunThe State of Data BreachesPresently sponsored by: Push Security. Stop identity attacks with a browser-based agent that detects and prevents account takeover. Try it free now. I've been harbouring some thoughts about the state of data breaches over recent months, and I feel they've finally manife…TROYHUNT.COM
24 JunThe State of Ransomware in Financial Services 2024IT and cybersecurity leaders reveal ransomware realities for financial services businesses today.SOPHOS.COM
24 JunLivaNova USA Discloses Data Breach Impacting 130,000 IndividualsLivaNova USA says the personal and medical information of 130,000 individuals was compromised in an October 2023 data breach. The post LivaNova USA Discloses Data Breach Impacting 130,000 Individuals appeared first on SecurityWeek .SECURITYWEEK.COM
24 JunFour FIN9 hackers indicted for cyberattacks causing $71M in lossesFour Vietnamese nationals linked to the international cybercrime group FIN9 have been indicted for their involvement in a series of computer intrusions that caused over $71 million in losses to companies in the U.S. [...]BLEEPINGCOMPUTER.COM
24 JunEuropean Union Sanctions Russian State HackersHackers Part of Callisto and Armageddon Groups The European Union sanctioned four Russian domestic intelligence agency hackers including two military officers who participated in what researchers have described as "hack and leak" operations. Also coming under sanctions are ransom…DATABREACHTODAY.CO.UK
24 JunCDK Begins Restoring Systems Amid Ransomware Payment ReportsAuto Dealership Software Firm Says Restoring Service Will Take 'Days and Not Weeks' CDK Global, the auto dealership software solutions firm that supplies services to an estimated 15,000 dealerships in the U.S. and Canada, said it has begun the restoration process for its customer…DATABREACHTODAY.CO.UK
24 JunCHERI Backers Form Alliance to Promote Memory Safety ChipChipmaker Arm Is Not an Alliance Member Developers of a computer hardware project for stopping memory-based cyberattacks will soon release standards in a bid to overcome commercial hurdles to its adoption. Backers of the Capability Hardware Enhanced RISC Instructions, or CHERI, a…DATABREACHTODAY.CO.UK
24 JunCoinstats Says North Korean Hackers Breached 1,590 Crypto WalletsCoinStats, a crypto portfolio app with 1.5 million users, experienced a significant security breach affecting 1,590 cryptocurrency wallets. North Korean threat actors are suspected to be behind the attack.BLEEPINGCOMPUTER.COM
24 JunReport: One out of Three Breaches Remain UndetectedAccording to a survey conducted by Gigamon, organizations are facing challenges in detecting breaches due to their increasing complexity and the sophistication of attacks.HELPNETSECURITY.COM
🕵️ THREAT INTELLIGENCE 23[−]
24 JunISC Stormcast For Monday, June 24th, 2024 https://isc.sans.edu/podcastdetail/9032, (Mon, Jun 24th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
24 JunNew RAT Malware SneakyChef & SugarGhost Attack Windows SystemsTalos Intelligence has uncovered a sophisticated cyber campaign attributed to the threat actor SneakyChef. This operation leverages the SugarGh0st RAT and other malware to target government agencies, research institutions, and various organizations worldwide. The campaign began i…GBHACKERS.COM
24 JunConsulting Companies to Pay $11 Million Failing Cybersecurity RequirementsTwo consulting companies, Guidehouse Inc. and Nan McKay and Associates, have agreed to pay $11.3 million to resolve allegations of failing to meet cybersecurity requirements. Guidehouse Inc., headquartered in McLean, Virginia, will pay $7.6 million, while Nan McKay and Associates…GBHACKERS.COM
24 JunFacial Recognition Startup Clearview AI Settles Privacy SuitFacial recognition startup Clearview AI has reached a settlement in an Illinois lawsuit alleging its massive photographic collection of faces violated the subjects’ privacy rights. The post Facial Recognition Startup Clearview AI Settles Privacy Suit appeared first on SecurityWee…SECURITYWEEK.COM
24 JunRSAC 2024: The many flavors of ‘SASE’ now includes Aryaka’s ‘Unified SASE as a Service.”Secure Access Service Edge ( SASE ) has come a long way since Gartner christened this cloud-centric cybersecurity framework in 2019. Related: Can SASE stop tech sprawl? SASE blends networking architecture, namely SD-WAN, with cloud-delivered security services such as security …LASTWATCHDOG.COM
24 JunRedJuliett Cyber Espionage Campaign Hits 75 Taiwanese OrganizationsA likely China-linked state-sponsored threat actor has been linked to a cyber espionage campaign targeting government, academic, technology, and diplomatic organizations in Taiwan between November 2023 and April 2024. Recorded Future's Insikt Group is tracking the activity under …THEHACKERNEWS.COM
24 JunHacker Claims Theft of 30M User Records From Australia Ticketing Company TEGA hacker claims to have stolen the information of 30 million users from TEG subsidiary Ticketek. The post Hacker Claims Theft of 30M User Records From Australia Ticketing Company TEG appeared first on SecurityWeek .SECURITYWEEK.COM
24 JunPaul Nakasone Joins OpenAI’s Board of DirectorsFormer NSA Director Paul Nakasone has joined the board of OpenAI.SCHNEIER.COM
24 JunEase the Burden with AI-Driven Threat Intelligence ReportingLearn about critical threats that can impact your organization and the bad actors behind them from Cybersixgill’s threat experts. Each story shines a light on underground activities, the threat actors involved, and why you should care, along with what you can do to mitigate risk.…THEHACKERNEWS.COM
24 JunUS Sanctions 12 Kaspersky ExecutivesThe US has imposed sanctions on 12 individuals who have leadership roles at Kaspersky in Russia and the UK. The post US Sanctions 12 Kaspersky Executives appeared first on SecurityWeek .SECURITYWEEK.COM
24 JunMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
24 JunMy Hacker Story: A Cautionary Tale of Intern Antics and Cultural LearningsMy hacker story does not paint me in the best light, and it is not intended to. I am a firm believer in sharing one's mistakes and being open to learning from them.KNOWBE4.COM
24 JunBEC Attacks Accounted for More Than One in Ten Social Engineering Attacks in 2023A new report from Barracuda has found that email conversation hijacking attacks have risen by 70% since 2022. Additionally, business email compromise (BEC) attacks accounted for 10.6% of social engineering attacks in 2023, compared to 8% in 2022 and 9% in 2021.KNOWBE4.COM
24 JunVietnamese Members of FIN9 Hacking Group Charged in USThe US has announced charges against four Vietnamese nationals for hacking businesses and causing $71 million in losses. The post Vietnamese Members of FIN9 Hacking Group Charged in US appeared first on SecurityWeek .SECURITYWEEK.COM
24 JunEFF Issues New Warning After Discovery of Automated License Plate Reader VulnerabilitiesThe EFF has issued a warning over the use of automated license plate readers following the discovery of serious vulnerabilities. The post EFF Issues New Warning After Discovery of Automated License Plate Reader Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
24 JunBalancing Act: The European Union's AI Act and the Quest for Responsible InnovationThe current landscape of artificial intelligence (AI) bears a striking resemblance to the early days of the internet. Just as the internet was once a wild, untamed frontier full of promise and potential, AI now stands at a similar crossroads.KNOWBE4.COM
24 JunNew SnailLoad Attack Relies on Network Latency Variations to Infer User ActivityNew attack named SnailLoad allows a remote attacker to infer websites and videos viewed by a user without direct access to network traffic. The post New SnailLoad Attack Relies on Network Latency Variations to Infer User Activity appeared first on SecurityWeek .SECURITYWEEK.COM
24 JunChinese Hackers Have Stepped Up Attacks on Taiwanese Organizations, Cybersecurity Firm SaysA suspected Chinese state-sponsored hacking group has stepped up its targeting of Taiwanese organizations, particularly those in sectors such as government, education, technology and diplomacy. The post Chinese Hackers Have Stepped Up Attacks on Taiwanese Organizations, Cybersecu…SECURITYWEEK.COM
24 JunTech Leaders Gather This Week for AI Risk Summit + CISO Forum at the Ritz-Carlton, Half Moon BaySecurityWeek’s AI Risk Summit + CISO Forum brings together business and government stakeholders to provide meaningful guidance on risk management and cybersecurity in the age of artificial intelligence. The post Tech Leaders Gather This Week for AI Risk Summit + CISO Forum at the…SECURITYWEEK.COM
24 JunInformation Blocking of Patient Records Could Cost ProvidersFinal HHS Rule Cuts Financial Payments to Healthcare Firms That Violate Cures Act Federal regulators have issued a final rule that sets financial disincentives for healthcare providers that commit information blocking - or practices that they know are unreasonable and likely to i…DATABREACHTODAY.CO.UK
24 JunBuilding a Successful API Security Strategy - Luke Babarinde - BSW #354With 71% of web traffic coming from API calls last year and the average organization maintaining 613 API endpoints, a robust strategy is needed to protect APIs against automated threats and business logic attacks. Tune in as Luke Babarinde, Global Solution Architect, shares the k…YOUTUBE.COM
24 JunWikiLeaks Founder Julian Assange Will Plead Guilty in Deal With US and Return to AustraliaAssange will plead guilty to an Espionage Act charge of conspiring to unlawfully obtain and disseminate classified national defense information, the Justice Department said. The post WikiLeaks Founder Julian Assange Will Plead Guilty in Deal With US and Return to Australia appear…SECURITYWEEK.COM
24 JunRedJuliett Cyber Espionage Campaign Hits 75 Taiwanese OrganizationsThe primary objective appears to be gathering intelligence on Taiwan's economic policy, trade, and diplomatic relations. The group focuses on targeting vulnerabilities in internet-facing devices due to their limited security solutions.THEHACKERNEWS.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
24 Jun'Mirai-Like' Botnet Observed Attacking EOL Zyxel NAS devicesThe Shadowserver Foundation, in collaboration with top security agencies and vendors, detected multiple remote command execution attempts by a Mirai-like botnet. It advised Zyxel NAS owners to actively search for signs of compromise.THEREGISTER.COM
24 JunMeta, MS SQL Make Strange Bedfellows on Couch of Cyber-PainThe article discusses how Meta and Microsoft SQL Server, two very different parts of the tech industry, are both facing issues related to software and services supply chain.THEREGISTER.COM
📡 INFOSEC NEWS 10[−]
24 JunConfiguration Scanners Adding Java Specific Configuration Files, (Mon, Jun 24th)Hunting for configuration files is one of the favorite tricks we typically see used against our honeypots. Traditionally, standard and more generic configuration files like ".env" or ".config" are the target, with some cloud-specific configuration files sprinkled in.
ISC.SANS.EDU
24 JunFighting Payment Fraud by Integrating Security Into FinancePayment fraud is the top risk to companies across the globe. Business email compromise is continually on the rise. Johnny Deutsch, co-founder and CEO of B2B payments protection company Creednz, discusses the need to integrate security into financial processes.DATABREACHTODAY.CO.UK
24 JunWebinar | From Expense to Investment: Solutions for Modern Cybersecurity ChallengesDATABREACHTODAY.CO.UK
24 JunBudget-Friendly AI Deployment by Unlocking Efficiency and Scale | WebinarDATABREACHTODAY.CO.UK
24 JunChrome for Android tests feature that securely verifies your ID with sitesGoogle is testing a new feature called "Digital Credential API" for Chrome on Android that will allow websites to request identity information from mobile wallets using Android's IdentityCredential system. [...]BLEEPINGCOMPUTER.COM
24 JunExperts say Telegram’s ’30 engineers’ team is a security red flagTelegram's founder Pavel Durov says his company only employs around 30 engineers. Security experts say that raises serious questions about the company's cybersecurity. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM