80Articles
7Categories
2024-07-08Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
8 JulCritical Unpatched Flaws Disclosed in Popular Gogs Open-Source Git ServiceFour unpatched security flaws, including three critical ones, have been disclosed in the Gogs open-source, self-hosted Git service that could enable an authenticated attacker to breach susceptible instances, steal or wipe source code, and even plant backdoors. The vulnerabilities…THEHACKERNEWS.COM
8 JulAttackers Exploiting Remote Code Execution Vulnerability in GhostscriptVulnerability in Ghostscript (CVE-2024-29510) allows attackers to bypass sandbox for remote code execution. The post Attackers Exploiting Remote Code Execution Vulnerability in Ghostscript appeared first on SecurityWeek .SECURITYWEEK.COM
8 JulPeople’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in ActionOverview Background This advisory, authored by the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), the United States Cybersecurity and Infrastructure Security Agency (CISA), the United States National Security Agency (NSA), the United States Federa…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 21[−]
8 JulLegacy systems are the Achilles’ heel of critical infrastructure cybersecurityRare is the element of critical infrastructure ecosystem that doesn’t contain legacy systems declared at end of life (EOL) or outdated and unsupported software or operating systems. Any CISO in charge of safeguarding said infrastructure should aspire to know and refresh often the…CSOONLINE.COM
8 JulOrcinius Trojan Attacking Users Via Dropbox & Google Docs A newly identified multi-stage trojan, dubbed “Orcinius,” has been reported to exploit popular cloud services Dropbox and Google Docs as part of its attack strategy. The sophisticated malware begins its assault with an innocuous-looking Excel spreadsheet, which …GBHACKERS.COM
8 JulReport: 99% of IoT Exploitation Attempts Rely on Previously Known CVEsThe expanding attack surface, with over 15 billion connected devices worldwide, raises concerns about privacy breaches for users. The average home now has 21 connected devices, facing more than 10 daily cyberattacks.HELPNETSECURITY.COM
8 JulEuropol Concerns Over Privacy Enhancing Technologies Challenge Lawful InterceptionA new position paper argues that Privacy Enhancing Technologies (PET) used in Home Routing are making it difficult for law enforcement to intercept information during investigations lawfully. Home Routing allows a user’s communication to be routed through their home network…GBHACKERS.COM
8 JulReport: 47% of Corporate Data Stored in the Cloud Is SensitiveCloud resources are increasingly targeted by cyberattacks, with SaaS applications, cloud storage, and cloud management infrastructure being the top categories of attack, according to Thales.HELPNETSECURITY.COM
8 JulGogs Vulnerabilities May Put Your Source Code at RiskExploiting these flaws could allow attackers to execute arbitrary commands, read source code, and gain unauthorized access. The vulnerabilities require authentication, with one flaw specifically requiring the built-in SSH server to be enabled.SCMAGAZINE.COM
8 JulEuropol Says Home Routing Mobile Encryption Feature Aids CriminalsEuropol is proposing solutions to address challenges posed by privacy-enhancing technologies in Home Routing that impede law enforcement's ability to intercept communications in criminal investigations.BLEEPINGCOMPUTER.COM
8 Jul KEVOpenAI failed to report a major data breach in 2023A previously unreported security breach at OpenAI, the developer of ChatGPT, has raised alarms over the potential of foreign adversaries, such as China, accessing sensitive AI technologies. While the hacker did not access the core code, the incident that took place in 2023 has sp…CSOONLINE.COM
8 JulSupreme Court Ruling Threatens the Framework of Cybersecurity RegulationThe Supreme Court's striking down of the Chevron Doctrine will have a major effect on the determination and enforcement of cyber regulation in the US. The post Supreme Court Ruling Threatens the Framework of Cybersecurity Regulation appeared first on SecurityWeek .SECURITYWEEK.COM
8 JulHow secure is Firefox Pocket?submitted by ReakDuck to cybersecurity 1 points | 0 comments Before going to university with a Linux Laptop, Linux PC (Waterfox) and Graphene OS on the Phone with Mull as Browser, I wonder how I can get a more comfy or efficient life. I never had the idea to sign in to Firefox Po…SH.ITJUST.WORKS
8 JulCloudSorcerer hackers abuse cloud services to steal Russian govt dataA new advanced persistent threat (APT) group named CloudSorcerer abuses public cloud services to steal data from Russian government organizations in cyberespionage attacks. [...]BLEEPINGCOMPUTER.COM
8 JulDark Web Malware Logs Expose 3,300 Users Linked to Child Abuse SitesAn analysis of information-stealing malware logs published on the dark web has led to the discovery of thousands of consumers of child sexual abuse material (CSAM), indicating how such information could be used to combat serious crimes. "Approximately 3,300 unique users were foun…THEHACKERNEWS.COM
8 JulKaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian GovernmentKaspersky said the CloudSorcerer APT has been abusing public cloud services to exfiltrate data from Russian government entities. The post Kaspersky Flags Cyberespionage APT ‘CloudSorcerer’ Targeting Russian Government appeared first on SecurityWeek .SECURITYWEEK.COM
8 JulRCE bug in widely used Ghostscript library now exploited in attacksA remote code execution vulnerability in the Ghostscript document conversion toolkit, widely used on Linux systems, is currently being exploited in attacks. [...]BLEEPINGCOMPUTER.COM
8 JulNew APT Group "CloudSorcerer" Targets Russian Government EntitiesA previously undocumented advanced persistent threat (APT) group dubbed CloudSorcerer has been observed targeting Russian government entities by leveraging cloud services for command-and-control (C2) and data exfiltration. Cybersecurity firm Kaspersky, which discovered the activi…THEHACKERNEWS.COM
8 JulRussia forces Apple to remove dozens of VPN apps from App StoreApple has removed 25 virtual private network (VPN) apps from the Russian App Store at the request of Roskomnadzor, Russia's telecommunications watchdog. [...]BLEEPINGCOMPUTER.COM
8 JulWhat's the Best Strategy for Exploiting Flaws in Ransomware?Researchers Privately Circulated DoNex Decryptor Before Police Publicized Their Own What's the best strategy for exploiting a known vulnerability in ransomware to help victims decrypt their files for free? That question continues to recur as researchers discover such vulnerabilit…DATABREACHTODAY.CO.UK
8 JulNeiman Marcus data breach: 31 million email addresses found exposedA May 2024 data breach disclosed by American luxury retailer and department store chain Neiman Marcus last month has exposed more than 31 million customer email addresses, according to Have I Been Pwned founder Troy Hunt, who analyzed the stolen data. [...]BLEEPINGCOMPUTER.COM
8 JulHow CISA Plans to Measure Trust in Open-Source SoftwareAgency Is in 2nd Phase of Its Open-Source Software Security Road Map The U.S. Cybersecurity and Infrastructure Security Agency provided details on Monday about a framework it's currently developing to measure and evaluate the trustworthiness of open-source software security, incl…DATABREACHTODAY.CO.UK
8 JulCISA and Partners join ASD’S ACSC to Release Advisory on PRC State-Sponsored Group, APT 40CISA has collaborated with the Australian Signals Directorate’s Australian Cyber Security Centre (ASD's ACSC) to release an advisory, People’s Republic of China (PRC) Ministry of State Security APT40 Tradecraft in Action outlining a PRC state-sponsored cyber group’s activity. The…CISA.GOV
📢 SECURITY ADVISORIES 9[−]
8 JulIf you’re a CISO without D&O insurance, you may need to fight for itThe role of the chief information security officer (CISO) is crucial and by definition filled with risk — not only risk to the organization but personal risk as well, as has become dauntingly apparent in recent years. The case of former Uber CISO Joe Sullivan was perhaps the firs…CSOONLINE.COM
8 JulVinted Fined $2.6m Over Data Protection FailureVinted, a prominent online platform for second-hand sales, has been fined €2,385,276 ($2,582,730) for violating the EU’s General Data Protection Regulation (GDPR) by not properly handling personal data deletion requests.INFOSECURITY-MAGAZINE.COM
8 JulReports: Florida Health Department Dealing With Data HeistRansomHub Group Claims It Began Leaking 100 Gigabytes of Stolen Information The Florida Department of Health is dealing with an attack involving the theft of sensitive information. RansomHub claims that it began to publish 100 gigabytes of data stolen in the hack after the state …DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 15[−]
8 JulRoblox Data Breach: Email & IP address Details ExposedRoblox, the globally renowned online gaming platform, has suffered a data breach. According to a tweet from cybersecurity expert H4ckManac, the breach has exposed sensitive information, including email addresses and IP addresses of millions of users. This alarming incident has ra…GBHACKERS.COM
8 JulPro-Bangladeshi Hacktivists Enter Global Stage with Matryoshka 424 AllianceTeam ARXU gained recognition earlier this year for targeting Romania over its support for Israel. The hacker group has a history of cyberattacks against Israel and its allies.THECYBEREXPRESS.COM
8 JulCyber Security Today, July 8, 2024 - A New Ransomware Group Is DiscoveredA new ransomware group that has been discovered is highlighted in this editionCYBERSECURITYTODAY.LIBSYN.COM
8 JulEgyptian Health Department Data Breach: 120,000 Users’ Data ExposedThe Egyptian Health Department (EHD) has reported a data breach affecting 121,995 individuals, including one resident of Maine. The breach, which occurred on December 21, 2023, was discovered on the same day and has since raised serious concerns about data security within healthc…GBHACKERS.COM
8 JulExperts Warn of Mekotio Banking Trojan Targeting Latin American CountriesFinancial institutions in Latin America are being threatened by a banking trojan called Mekotio (aka Melcoz). That's according to findings from Trend Micro, which said it recently observed a surge in cyber attacks distributing the Windows malware. Mekotio, known to be actively pu…THEHACKERNEWS.COM
8 Jul5 Key Questions CISOs Must Ask Themselves About Their Cybersecurity StrategyEvents like the recent massive CDK ransomware attack – which shuttered car dealerships across the U.S. in late June 2024 – barely raise public eyebrows anymore.  Yet businesses, and the people that lead them, are justifiably jittery. Every CISO knows that cybersecurity is an…THEHACKERNEWS.COM
8 JulCloudy with a Chance of Cyberattack: Understanding LOTC Attacks and How ZTNA Can Prevent ThemWith Living Off the Cloud (LOTC) attacks, hackers abuse APIs of trusted cloud services to remotely control botnets but also to make malicious traffic appear as trusted cloud traffic. The post Cloudy with a Chance of Cyberattack: Understanding LOTC Attacks and How ZTNA Can Prevent…SECURITYWEEK.COM
8 JulDecryptor for DoNex, Muse, DarkRace, (fake) LockBit 3.0 Ransomware ReleasedAvast researchers have identified a cryptographic weakness in the DoNex ransomware and its previous versions, enabling them to create a decryptor for files encrypted by these variants.HELPNETSECURITY.COM
8 JulRoblox vendor data breach exposes dev conference attendee infoRoblox announced late last week that it suffered a data breach impacting attendees of the 2022, 2023, and 2024 Roblox Developer Conference attendees. [...]BLEEPINGCOMPUTER.COM
8 JulFormer Nuance Employee Arrested After Geisinger Data Breach Exposed 1.2 Million RecordsA class action lawsuit was filed against Geisinger for failing to properly secure patients’ personal and health information. The post Former Nuance Employee Arrested After Geisinger Data Breach Exposed 1.2 Million Records appeared first on SecurityWeek .SECURITYWEEK.COM
8 JulNew Ransomware-as-a-Service 'Eldorado' Targets Windows and Linux SystemsAn emerging ransomware-as-a-service (RaaS) operation called Eldorado comes with locker variants to encrypt files on Windows and Linux systems. Eldorado first appeared on March 16, 2024, when an advertisement for the affiliate program was posted on the ransomware forum RAMP, Singa…THEHACKERNEWS.COM
8 JulHacked Ethereum Foundation Account Used to Send 35,000 Phishing EmailsA threat actor sent over 35,000 phishing emails after hacking into Ethereum Foundation's account on a mailing list platform. The post Hacked Ethereum Foundation Account Used to Send 35,000 Phishing Emails appeared first on SecurityWeek .SECURITYWEEK.COM
8 JulOn the CSRB’s Non-Investigation of the SolarWinds AttackProPublica has a long investigative article on how the Cyber Safety Review Board failed to investigate the SolarWinds attack, and specifically Microsoft’s culpability, even though they were directed by President Biden to do so.SCHNEIER.COM
8 JulAvast releases free decryptor for DoNex ransomware and past variantsAntivirus company Avast have discovered a weakness in the cryptographic scheme of the DoNex ransomware family and released a decryptor so victims can recover their files for free. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 12[−]
8 JulISC Stormcast For Monday, July 8th, 2024 https://isc.sans.edu/podcastdetail/9042, (Mon, Jul 8th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
8 JulUEFI Malware - The Low Level Threat To Millions of PCssubmitted by Lanky_Pomegranate530 to cybersecurity 3 points | 0 comments https://odysee.com/uefi-malware-the-low-level-threat-to#cd632b42bfbe53cdb64f3db63075e2c85ac7dae3ODYSEE.COM
8 JulKunai: Keep an Eye on your Linux Hosts Activity, (Mon, Jul 8th)Microsoft has a very popular tool (part of the SysInternals) called Sysmon[ 1 ]. It is a system service and device driver designed to monitor and log system activity, including very useful events like process creations, network connections, DNS requests, file changes, a…ISC.SANS.EDU
8 JulSignal under fire for storing encryption keys in plaintextsubmitted by kid to cybersecurity 1 points | 0 comments https://stackdiary.com/signal-under-fire-for-storing-encryption-keys-in-plaintext/STACKDIARY.COM
8 JulOpsec101submitted by BodaciousMunchkin to cybersecurity 2 points | 0 comments https://opsec101.org/OPSEC101.ORG
8 JulApple Removed VPN Services from the Russian AppStoreApple has removed several prominent VPN service apps from the Russian division of the App Store. The affected apps include Proton VPN, Red Shield VPN, NordVPN, and Le VPN. This action comes in response to complaints from Roskomnadzor, Russia’s federal executive body respons…GBHACKERS.COM
8 JulMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 2 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
8 JulAI SPERA Partners with Devcons to Expand ‘Criminal IP’ into the Middle Eastern MarketAI SPERA, a leading Cyber Threat Intelligence (CTI) company, has announced a partnership with UAE-based distributor Devcons to expand into the Middle Eastern market. This collaboration aims to introduce AI SPERA’s advanced CTI search engine, ‘Criminal IP’, acros…GBHACKERS.COM
8 JulMandiant Highlights Russian and Chinese Cyber Threats to NATO on Eve of 75th Anniversary SummitOn the eve of NATO’s 75th anniversary summit in Washington DC, Mandiant outlines the current state of cyberthreats facing NATO and aligned countries. The post Mandiant Highlights Russian and Chinese Cyber Threats to NATO on Eve of 75th Anniversary Summit appeared first on Securit…SECURITYWEEK.COM
8 JulUnderstanding the difference between IT and IoT🔍 Understanding the Differences Between IT & IoT! 🌐 | #IT #IoT #TechExplained Confused about IT and IoT? 🤔 We've got you covered! In this video, we'll break down the key differences between Information Technology (IT) and the Internet of Things (IoT) to help you understand these …YOUTUBE.COM
8 JulMicrosoft Banning Android Phones for Staff in ChinaStarting in September, Microsoft will mandate the the use of Apple’s iPhones to authenticate identities when logging into work machines. The post Microsoft Banning Android Phones for Staff in China appeared first on SecurityWeek .SECURITYWEEK.COM
8 JulHackers leak 39,000 print-at-home Ticketmaster tickets for 154 eventsIn an ongoing extortion campaign against Ticketmaster, threat actors have leaked almost 39,000 print-at-home tickets for 150 upcoming concerts and events, including Pearl Jam, Phish, Tate McCrae, and Foo Fighters. [...]BLEEPINGCOMPUTER.COM
🌐 CYBER THREAT LANDSCAPE 4[−]
8 JulGootLoader is Still Active and EfficientThe malware has evolved into multiple versions, with GootLoader 3 being the latest one in use. Despite updates to the payload, the infection strategies have remained consistent since its resurgence in 2020.SECURITYAFFAIRS.COM
8 JulInfostealing Malware Masquerading as Generative AI ToolsInformation-stealing malware families have evolved to impersonate generative AI tools, with examples like GoldPickaxe stealing facial recognition data for deepfake videos.HELPNETSECURITY.COM
8 JulEU Opens Applications for Cybersecurity and Digital Skills FundingThe EU Commission is offering over €210m ($227.3m) in funding for cybersecurity and digital skills programs through the Digital Europe Programme (DEP). About $38m will go towards projects protecting critical infrastructures.INFOSECURITY-MAGAZINE.COM
8 JulNew Variation of WordFence Evasion Malware DiscoveredA new variation of WordFence evasion malware has been discovered, concealing backdoors in infected WordPress environments. A suspicious plugin named "wp-engine-fast-action" was found tampering with the popular WordFence security plugin.SUCURI.NET
📡 INFOSEC NEWS 15[−]
8 JulApple Removes VPN Apps from Russian App Store Amid Government PressureApple removed a number of virtual private network (VPN) apps in Russia from its App Store on July 4, 2024, following a request by Russia's state communications watchdog Roskomnadzor, Russian news media reported. This includes the mobile apps of 25 VPN service providers, including…THEHACKERNEWS.COM
8 JulIndian Government Issues Serious Warning on Phishing Scams Alleging Sexual OffensesThe emails falsely accuse recipients of sexual offences, using names and seals of authorities to appear authentic. Citizens are advised not to respond to such emails and report them to authorities.THECYBEREXPRESS.COM
8 JulHacker Stole Secrets From OpenAIPACKETSTORMSECURITY.COM
8 JulChatGPT for Mac app flaw left users’ chat history exposedOpenAI's ever-so-clever ChatGPT's software was doing something really-rather-stupid: storing users' chats on their Mac computers in plaintext. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
8 JulNotepad finally gets spellcheck, autocorrect for all Windows 11 usersMicrosoft has finally released a spell check and autocorrect feature in Notepad for all Windows 11 users, forty-one years after the program was introduced in 1983. [...]BLEEPINGCOMPUTER.COM
8 JulMicrosoft: Windows 11 22H2 reaches end of service in OctoberMicrosoft reminded customers today that multiple editions of Windows 11, version 22H2, will reach the end of servicing (EOS) in three months, on October 8, 2024. [...]BLEEPINGCOMPUTER.COM
8 JulApple removes VPN apps at request of Russian authorities, say app makersVPN makers report having received a notification from Apple that their apps have been removed from the App Store in Russia. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
8 JulAn In-Depth Look at Crypto-Crime in 2023 Part 1Cybersecurity is a growing concern in today's digital age, as more sensitive information is stored and transmitted online. With the rise of cryptocurrencies, there has also been a rise in crypto-crimes, which pose a significant threat to the security of both individuals and busin…TRENDMICRO.COM
8 JulTaking an AI-First Approach to Securing Your OrganizationSecuring an organization often requires making fast decisions, said Tom Corn of Ontinue, and AI can gather information that you can use to answer the questions you have about how to handle a security problem. Corn discusses operationalizing an AI-first approach to security.DATABREACHTODAY.CO.UK
8 JulThe Top 10 AI Security Risks Every Business Should KnowWith every week bringing news of another AI advance, it’s becoming increasingly important for organizations to understand the risks before adopting AI tools. This look at 10 key areas of concern identified by the Open Worldwide Application Security Project (OWASP) flags risks ent…TRENDMICRO.COM
8 JulComputer maker Zotac exposed customers' RMA info on Google SearchComputer hardware maker Zotac has exposed return merchandise authorization (RMA) requests and related documents online for an unknown period, exposing sensitive customer information. [...]BLEEPINGCOMPUTER.COM
8 JulIndustry Moves for the week of July 8, 2024 - SecurityWeekExplore industry moves and significant changes in the industry for the week of July 8, 2024. Stay updated with the latest industry trends and shifts.SECURITYWEEK.COM