250Articles
9Categories
2024-07-09Date
🚨 CISA KEV 3[−]
9 Jul KEVCISA adds Cisco NX-OS Command Injection bug to its Known Exploited Vulnerabilities catalogThe flaw allows an attacker to execute arbitrary commands as root on the affected device's operating system. Only attackers with administrator credentials can successfully exploit this vulnerability.SECURITYAFFAIRS.COM
9 Jul KEVCISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-23692 Rejetto HTTP File Server Improper Neutralization of Special Elements Used in a Template Engine Vulnerability CVE-2024-38080 Mic…CISA.GOV
9 Jul KEVCISA Red Team’s Operations Against a Federal Civilian Executive Branch Organization Highlights the Necessity of Defense-in-DepthEXECUTIVE SUMMARY In early 2023, the Cybersecurity and Infrastructure Security Agency (CISA) conducted a SILENTSHIELD red team assessment against a Federal Civilian Executive Branch (FCEB) organization. During SILENTSHIELD assessments, the red team first performs a no-notice, lon…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 150[−]
9 JulSplunk Addresses Critical Vulnerabilities in Enterprise and Cloud PlatformsSplunk has released a set of security updates to address 16 vulnerabilities in Splunk Enterprise and Cloud Platform, including high-severity issues. CVE-2024-36985 allows remote code execution via External Lookup in Splunk Enterprise.THECYBEREXPRESS.COM
9 JulIncrease in the Exploitation of Microsoft SmartScreen VulnerabilityCyble Research and Intelligence Labs (CRIL) has identified an increase in the exploitation of the Microsoft SmartScreen vulnerability (CVE-2024-21412) through an active campaign targeting regions like Spain, the US, and Australia.CYBLE.COM
9 JulGhostscript Rendering Platform Vulnerability Let Attackers Execute Remote CodeA critical vulnerability has been discovered in the Ghostscript rendering platform, identified as CVE-2024-29510. This flaw, a format string vulnerability, affects versions up to 10.03.0 and allows attackers to bypass the -dSAFER sandbox, leading to remote code execution (RCE). T…GBHACKERS.COM
9 JulHCL Domino Vulnerability Let Attackers obtain Sensitive informationA critical security vulnerability has been discovered in HCL Domino, a popular enterprise server software, that could potentially expose sensitive configuration information to remote unauthenticated attackers. This vulnerability, CVE-2024-23562, has raised concerns among cybersec…GBHACKERS.COM
9 JulApache Fixed a Source Code Disclosure Flaw in Apache HTTP ServerThis vulnerability, tracked as CVE-2024-39884 and caused by a regression, can lead to unintentional exposure of sensitive data when legacy content-type configurations are used.SECURITYAFFAIRS.COM
9 JulCVE-2024-28899 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-30081 Windows NTLM Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37969 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37970 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37974 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37981 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37986 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37987 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38041 Windows Kernel Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38043 PowerShell Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38059 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38064 Windows TCP/IP Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38080 Windows Hyper-V Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38086 Azure Kinect SDK Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38112 Windows MSHTML Platform Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-26184 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-35266 Azure DevOps Server Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-35267 Azure DevOps Server Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37971 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37972 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37973 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37975 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37977 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37978 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37984 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37988 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-37989 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38010 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38011 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38020 Microsoft Outlook Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38021 Microsoft Office Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38030 Windows Themes Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38032 Microsoft Xbox Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38033 PowerShell Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38047 PowerShell Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38058 BitLocker Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38065 Secure Boot Security Feature Bypass VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2024-38066 Windows Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
9 JulCVE-2022-44684 Windows Local Session Manager (LSM) Denial of Service VulnerabilityIn the Security Updates table, added Windows Server 2022, 23H2 Edition (Server Core installation) as it also affected by this vulnerability. Microsoft strongly recommends that customers install the updates to be fully protected from the vulnerability. Customers whose systems are …MSRC.MICROSOFT.COM
9 JulCitrix Releases Security Updates for Multiple ProductsCitrix released security updates to address vulnerabilities in multiple Citrix products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.   CISA encourages users and administrators to review the following and apply neces…CISA.GOV
9 JulMD5 attack puts RADIUS networks everywhere at riskThe “secure enough” RADIUS/UDP authentication protocol may have finally met its match, and organizations that have continued to rely on RADIUS to authenticate networked devices over UDP and TCP despite its reliance on outdated cryptography are urged to take immediate action to se…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 33[−]
9 JulCybersecurity Agencies Warn of China-linked APT40's Rapid Exploit AdaptationCybersecurity agencies from Australia, Canada, Germany, Japan, New Zealand, South Korea, the U.K., and the U.S. have released a joint advisory about a China-linked cyber espionage group called APT40, warning about its ability to co-opt exploits for newly disclosed security flaws …THEHACKERNEWS.COM
9 JulUniversal Code Execution Vulnerability In Browsers Puts Millions Of Users At RiskHackers remotely execute malicious code on a compromised device or server by exploiting the Universal Code Execution vulnerability. Through this vulnerability, threat actors can inject codes into server-side interpreter languages such as Java, Python, and PHP. Hacking into this s…GBHACKERS.COM
9 JulCRISC certification: Exam, requirements, training, potential salaryWhat is CRISC certification? Certified in Risk and Information Systems Control (CRISC) is an upper-level IT professional certification focused on enterprise IT risk management . CRISC is offered by ISACA, a nonprofit professional association devoted to IT governance that offers a…CSOONLINE.COM
9 JulFake network traffic is on the rise — here’s how to counter itThe ability to effectively analyze network traffic is a must for a successful enterprise cybersecurity program, as it’s critical to identifying and defending against many types of attacks. That message isn’t lost on CISOs, with the use of network traffic analysis tools nearly uni…CSOONLINE.COM
9 JulChina’s APT40 group can exploit vulnerabilities within hours of public releaseMultiple international cybersecurity agencies, including the US CISA and the UK NCSC, have issued a joint advisory warning about a Chinese state-sponsored hacker group — APT40 — actively targeting global networks. The advisory, led by the Australian Signals Directorate’s Australi…CSOONLINE.COM
9 Jul KEVCritical Ghostscript flaw exploited in the wild. Patch it now!This vulnerability affects Ghostscript versions ? 10.03.0 and can have a significant impact on web applications and services using Ghostscript for document conversion and previews.SECURITYAFFAIRS.COM
9 JulHackers Exploiting Jenkins Script Console for Cryptocurrency Mining AttacksCybersecurity researchers have found that it's possible for attackers to weaponize improperly configured Jenkins Script Console instances to further criminal activities such as cryptocurrency mining. "Misconfigurations such as improperly set up authentication mechanisms expose th…THEHACKERNEWS.COM
9 JulLet’s Go into the rabbit hole (part 3) — the challenges of dynamically hooking Golang programsGolang is the most used programming language for developing cloud technologies. Tools such as Kubernetes , Docker , Containerd and gVisor are all written in Go. Despite the fact that the code of these programs is open source, there is not an obvious way to analyze and extend thei…QUARKSLAB.COM
9 JulPhishing Attacks Target High Profile YouTube AccountsResearchers at ESET warn of phishing attacks that are attempting to hack high-profile YouTube channels in order to spread scams or malware.KNOWBE4.COM
9 JulRADIUS Protocol Vulnerability Exposes Networks to MitM AttacksCybersecurity researchers have discovered a security vulnerability in the RADIUS network authentication protocol called BlastRADIUS that could be exploited by an attacker to stage Mallory-in-the-middle (MitM) attacks and bypass integrity checks under certain circumstances. "The R…THEHACKERNEWS.COM
9 JulA decade of global cyberattacks, and where they left usThe cyberattack landscape has seen monumental shifts and enormous growth in the past decade or so. I spoke to Michelle Alvarez, X-Force Strategic Threat Analysis Manager at IBM, who told me that the most visible change in cybersecurity can be summed up in one word: scale. A decad…SECURITYINTELLIGENCE.COM
9 JulSAP Patches High-Severity Vulnerabilities in PDCE, CommercePatch Tuesday: Enterprise software vendor SAP releases patches for high-severity vulnerabilities in multiple products and tools. The post SAP Patches High-Severity Vulnerabilities in PDCE, Commerce appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulDeep Dive in GRC: Know Your Sources - Jonathan Ruf - CSP #182As organizations grow, there comes a time when managing by excel spreadsheets is not longer feasible and accurate data sources, regulations, and risk need to be accurately reflected within Governance, Risk and Compliance (GRC) tools. Reporting to the board must be based upon accu…YOUTUBE.COM
9 JulCISA Releases Seven Industrial Control Systems AdvisoriesCISA released seven Industrial Control Systems (ICS) advisories on July 9, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-191-01 Delta Electronics CNCSoft-G2 ICSA-24-191-02 Mitsubishi Electri…CISA.GOV
9 JulReverse-Engineering Ticketmaster’s Barcode SystemInteresting : By reverse-engineering how Ticketmaster and AXS actually make their electronic tickets, scalpers have essentially figured out how to regenerate specific, genuine tickets that they have legally purchased from scratch onto infrastructure that they control. In doing so…SCHNEIER.COM
9 JulCISA and Partner Agencies Join ASD’S ACSC to Release Advisory on APT40, a Chinese State-Sponsored GroupCybersecurity agencies from Australia, Canada, Germany, Japan, New Zealand, South Korea, the UK, and the US have warned about APT40, a China-linked cyber espionage group known for quickly exploiting new security bugs after public disclosure.CISA.GOV
9 JulCity of Philadelphia says over 35,000 hit in May 2023 breachThe City of Philadelphia revealed that a May 2024 disclosed in October impacted more than 35,000 individuals' personal and protected health information. [...]BLEEPINGCOMPUTER.COM
9 JulState Of Application Security 2024 - Sandy Carielli, Janet Worthington - ASW #290Sandy Carielli and Janet Worthington, authors of the State Of Application Security 2024 report, join us to discuss their findings on trends this year! Old vulns, more bots, and more targeted supply chain attacks -- we should be better at this by now. We talk about where secure de…YOUTUBE.COM
9 JulHackers target WordPress calendar plugin used by 150,000 sitesHackers are trying to exploit a vulnerability in the Modern Events Calendar WordPress plugin that is present on more than 150,000 websites to upload arbitrary files to a vulnerable site and execute code remotely. [...]BLEEPINGCOMPUTER.COM
9 JulMicrosoft mandates Chinese staff to use iPhones, not AndroidMicrosoft has ordered its staff in China to use iPhones for their work starting in September. The decision effectively bars the use of Android smartphones by the tech giant’s Chinese staffers, Bloomberg reports . The decision has more to do with standardising use of the Microsoft…CSOONLINE.COM
9 Jul KEVMicrosoft July 2024 Patch Tuesday fixes 142 flaws, 4 zero-daysToday is Microsoft's July 2024 Patch Tuesday, which includes security updates for 142 flaws, including two actively exploited and two publicly disclosed zero-days. [...]BLEEPINGCOMPUTER.COM
9 JulMicrosoft Patch Tuesday July 2024, (Tue, Jul 9th)Microsoft today released patches for 142 vulnerabilities. Only four of the vulnerabilities are rated as "critical". There are two vulnerabilities that have already been discussed and two that have already been exploited. ISC.SANS.EDU
9 JulNew Phishing Platform Targets Microsoft 365 Accounts at Financial FirmsAnalysis of the latest phishing -as-a-service (PhaaS) platform ONNX Store highlights just how successful these platforms can be.KNOWBE4.COM
9 JulMicrosoft Warns of Windows Hyper-V Zero-Day Being ExploitedPatch Tuesday: Microsoft patches more than 140 security vulnerabilities in the Windows ecosystem, including a pair of exploited zero-days. The post Microsoft Warns of Windows Hyper-V Zero-Day Being Exploited appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulMicrosoft Releases July 2024 Security UpdatesMicrosoft released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.   CISA encourages users and administrators to review the following and apply nece…CISA.GOV
9 JulAdobe Releases Security Updates for Multiple ProductsAdobe released security updates to address multiple vulnerabilities in Adobe software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.   CISA encourages users and administrators to review the following Adobe Securi…CISA.GOV
9 JulMicrosoft Patch Tuesday, July 2024 EditionMicrosoft Corp. today issued software updates to plug 139 security holes in various flavors of Windows and other Microsoft products. Redmond says attackers are already exploiting at least two of the vulnerabilities in active attacks against Windows users.KREBSONSECURITY.COM
9 JulCritical Patches Issued for Microsoft Products, July 09, 2024Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
9 JulIdentity security: The keystone of trustA few weeks ago, my wife asked me why stopping threat actors from impacting our lives is so difficult. In this digital age, the necessity to connect online brings inherent exposure to vulnerabilities. The challenge for you as a security leader lies in reducing the sense of vulner…CSOONLINE.COM
9 JulUS and partners disrupt bot farm pushing Russian propagandaAlmost a thousand Twitter accounts controlled by a large bot farm pushing Russian propaganda and domains used to register the bots were taken down in a joint international law enforcement operation led by the U.S. Justice Department. [...]BLEEPINGCOMPUTER.COM
9 JulEvolve Discloses That Hackers Stole Data of 7.6M IndividualsStolen Data Includes Names, Social Security and Bank Account Numbers, Contact Info Evolve Bank & Trust disclosed that hackers stole the data of more than 7.6 million individuals in an incident detected in May. The Arkansas firm has been in incident disclosure mode for weeks now, …DATABREACHTODAY.CO.UK
9 JulUS disrupts AI-powered bot farm pushing Russian propaganda on XAlmost a thousand Twitter accounts controlled by a large bot farm pushing Russian propaganda and domains used to register the bots were taken down in a joint international law enforcement operation led by the U.S. Justice Department. [...]BLEEPINGCOMPUTER.COM
📋 SECURITY BULLETINS 1[−]
9 JulJuly Patch Tuesday Unleashes a Torrent of UpdatesMicrosoft fixes 138 bugs in Windows and other products this monthSOPHOS.COM
📢 SECURITY ADVISORIES 6[−]
9 JulChinese APT40 hackers hijack SOHO routers to launch attacksAn advisory by CISA and multiple international cybersecurity agencies highlights the tactics, techniques, and procedures (TTPs) of APT40 (aka "Kryptonite Panda"), a state-sponsored Chinese cyber-espionage actor. [...]BLEEPINGCOMPUTER.COM
9 JulWhat Will UK Labour Government Mean for AI, Data Protection?Legal Expert Jonathan Armstrong on New Government's Impact on Regulations The new U.K. Labour government is expected to significantly shift AI and data protection regulations. Jonathan Armstrong, legal expert and partner at Punter Southall Law, discussed the Labour Party's likely…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 12[−]
9 JulUpdate: Network Segmentation Hobbled Midnight Blizzard's Attack on TeamViewerThe company revealed that their corporate IT network, production environment, and TeamViewer connectivity platform are segmented to prevent unauthorized access. Immediate remediation measures were effective in blocking suspicious activity.HELPNETSECURITY.COM
9 JulCritical Infrastructure Providers Seek Guardrails on Scope, Timeline for CIRCIA RulesCritical infrastructure providers are urging federal officials for more flexibility in reporting cyber incidents within the first 72 hours under the Cyber Incident Reporting for Critical Infrastructure Act.CYBERSECURITYDIVE.COM
9 JulNew Mallox Ransomware Variant Targets Linux SystemsA new variant of Mallox ransomware has been discovered by cybersecurity researchers at Uptycs, targeting Linux systems with custom encryption and a builder web panel. A custom Python script called web_server.py is used to deliver the ransomware.HACKREAD.COM
9 JulEvolve Bank says ransomware gang stole personal data on millions of customersEvolve has confirmed that the personal data of at least 7.6 million people was accessed during LockBit attack © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
9 JulEvolve Bank Data Breach Impacts 7.6 Million PeopleEvolve Bank says personal information of more than 7.6 million individuals was compromised in a ransomware attack. The post Evolve Bank Data Breach Impacts 7.6 Million People appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulRansomware Gang Leaks Data Allegedly Stolen from Florida Department of HealthThe Ransomhub ransomware gang has claimed the theft of 100GB of data from the Florida Department of Health. The post Ransomware Gang Leaks Data Allegedly Stolen from Florida Department of Health appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulEvolve Bank says data breach impacts 7.6 million AmericansEvolve Bank & Trust (Evolve) is sending notices of a data breach to 7.6 million Americans whose data was stolen during a recent LockBit ransomware attack. [...]BLEEPINGCOMPUTER.COM
9 JulRansomware attack on blood-testing service puts lives in danger in South AfricaA ransomware attack by the BlackSuit gang against South Africa's National Health Laboratory Service (NHLS) has put lives at risk and created chaos for healthcare services across the country. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
9 JulNew Blast-RADIUS attack bypasses widely-used RADIUS authenticationBlast-RADIUS, an authentication bypass in the widely used RADIUS/UDP protocol, enables threat actors to breach networks and devices in man-in-the-middle MD5 collision attacks. [...]BLEEPINGCOMPUTER.COM
9 JulFujitsu confirms customer data exposed in March cyberattackFujitsu confirms that information related to some individuals and customers' business has been compromised during the data breach detected earlier this year. [...]BLEEPINGCOMPUTER.COM
9 JulNeiman Marcus - 31,152,842 breached accountsIn May 2024, the American luxury retailer Neiman Marcus suffered a data breach which was later posted to a popular hacking forum . The data included 31M unique email addresses, names, phone numbers, dates of birth, physical addresses and partial credit card data (note: this is in…HAVEIBEENPWNED.COM
9 Jul4 Million People Affected by Debt Collector Data Theft HackStolen Data Includes Patient Medical Information, According to Breach Notification A Pennsylvania-based debt collector originally told regulators in April that a hacker compromised the personal identifiable information of 1.9 million people. Now the company says the data breach a…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 29[−]
9 JulTrojanized jQuery Packages Found on npm, GitHub, and jsDelivr Code RepositoriesUnknown threat actors have been found propagating trojanized versions of jQuery on npm, GitHub, and jsDelivr in what appears to be an instance of a "complex and persistent" supply chain attack. "This attack stands out due to the high variability across packages," Phylum said in a…THEHACKERNEWS.COM
9 JulISC Stormcast For Tuesday, July 9th, 2024 https://isc.sans.edu/podcastdetail/9044, (Tue, Jul 9th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
9 JulTurla Hackers Weaponizing LNK-Files To Deploy Fileless MalwareHackers often weaponize LNK files because they can carry malware into systems undetected by anyone. LNK files are shortcuts that, when opened, launch a malicious payload (like scripts or executables). LNK files are widely used in Windows environments and can easily pass themselve…GBHACKERS.COM
9 JulRSAC Fireside Chat: Madison Horn’s quest to add cyber expertise, restore ethics to CongressAt a time of devolving politics, Madison Horn stands out as a breath of fresh air. Related: The Biden-Harris National Cybsecurity Strategy I had the chance to sit down with Horn at RSAC 2024 to learn all about her measured … (more…) The post RSAC Fireside Chat: Madison Horn…LASTWATCHDOG.COM
9 JulBringing the Boardroom to the Cyber Battlefield as CISOs Navigate the Role - BSW #355In the leadership and communications section, Bringing the boardroom to the cyber battlefield, Navigating the CISO Role: Common Pitfalls for New Leaders, Ask Better Questions to be a Better Leader, and more! Visit https://www.securityweekly.com/bsw for all the latest episodes! Sh…YOUTUBE.COM
9 JulTechnology Rationalization in Cybersecurity - Max Shier - BSW #355On average, CISOs manage 50-75 security products. Many of these products have either not been deployed or only partially deployed, while others overlap of products. How do CISOs effectively consolidate their products to a manageable size? Max Shier, Chief Information Security Off…YOUTUBE.COM
9 JulCryptocurrency Theft Haul Surges Alongside Crypto ValuePrivate Key and Seed Phrase Compromise Remains Top Attack Vector, TRM Labs Reports Heists perpetrated by cryptocurrency-targeting hackers netted twice as much in stolen proceeds in the first half of 2024 as they did in the first half of 2023, as the overall rise in crypto's value…DATABREACHTODAY.CO.UK
9 JulHUMINT: Diving Deep into the Dark WebClear Web vs. Deep Web vs. Dark Web Threat intelligence professionals divide the internet into three main components: Clear Web - Web assets that can be viewed through public search engines, including media, blogs, and other pages and sites. Deep Web - Websites and forums that ar…THEHACKERNEWS.COM
9 JulGuardZoo Malware Targets Over 450 Middle Eastern Military PersonnelMilitary personnel from Middle East countries are the target of an ongoing surveillanceware operation that delivers an Android data-gathering tool called GuardZoo. The campaign, believed to have commenced as early as October 2019, has been attributed to a Houthi-aligned threat ac…THEHACKERNEWS.COM
9 JulGlobal Coalition Blames China’s APT40 for Hacking Government NetworksSeven nations are backing Australia in calling out a China-linked hacking group for compromising government networks. The post Global Coalition Blames China’s APT40 for Hacking Government Networks appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulHow to Fix a Dysfunctional Security CultureMoving from a state of indifference about security to a place where users actively champion it can be transformed through a focused effort. The post How to Fix a Dysfunctional Security Culture appeared first on SecurityWeek .SECURITYWEEK.COM
9 Jul[Live Demo] Ridiculously Easy Security Awareness Training and PhishingOld-school awareness training does not hack it anymore. Your email filters have an average 7-10% failure rate; you need a strong human firewall as your last line of defense.KNOWBE4.COM
9 JulThe Importance of Security Culture: When Telecom Giants Resort to MalwareI recently read a story about a South Korean telecom company that pushed out malware to over 600,000 of its customers who were using torrents to share files, in a bid to limit their file-sharing capabilities.KNOWBE4.COM
9 JulTravelers Beware: Booking.com Warns of Increases in AI-Enabled Travel ScamsIn an interview at the Collision technology conference in Toronto, Booking.com’s CISO sounds the alarm on what she calls “supercharged artificial intelligence (AI) scams.”KNOWBE4.COM
9 JulPalo Alto Networks a Leader Again in Gartner Single-Vendor SASE ReportPalo Alto Networks has been recognized for the second time in the 2024 Gartner Magic Quadrant for Single-Vendor SASE. Read the blog to learn more. The post Palo Alto Networks a Leader Again in Gartner Single-Vendor SASE Report appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
9 JulBlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS ProtocolSecurity vendor InkBridge Networks calls urgent attention to the discovery of a decades-old design flaw in the widely used RADIUS protocol. The post BlastRADIUS Attack Exposes Critical Flaw in 30-Year-Old RADIUS Protocol appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulCommand Zero Emerges From Stealth Mode to Speed Up Cyber InvestigationsCommand Zero has emerged from stealth mode with $21 million in a seed funding round led by Andreessen Horowitz. The post Command Zero Emerges From Stealth Mode to Speed Up Cyber Investigations appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulCisco adds heft to cybersecurity push with acquisitions, new talentWith new leadership, key acquisitions, and a platform-based vision, Cisco is betting big on security. Cisco’s dominance in networking and telecommunications products and services is well established, but its role in cybersecurity is less cemented. It has provided security softwar…NETWORKWORLD.COM
9 Jul🚨 How to Put Malicious Code on Components! 🤖 | Josh Marpet Interview 🎙️ | Below the Surface Podcast🔍 Discover the dark side of tech with Josh Marpet as he reveals how malicious code can be embedded in various components! 🤯 Hosted by Paul Asadoorian, this gripping clip from the Below the Surface Podcast dives into the complexities and dangers of cybersecurity threats. Don't mis…YOUTUBE.COM
9 JulAdobe Issues Critical Patches for Multiple Products, Warns of Code Execution RisksAdobe documents at least seven code execution bugs affecting Adobe Premiere Pro, Adobe InDesign and Adobe Bridge on Windows and macOS. The post Adobe Issues Critical Patches for Multiple Products, Warns of Code Execution Risks appeared first on SecurityWeek .SECURITYWEEK.COM
9 JulPolyfill Empties Trust, regreSSHion, CocoaPods Vulns & Secure Design, LLM Bughunters - ASW #290Polyfill loses trust after CDN misuse, an OpenSSH flaw reappears, how to talk about secure design from some old CocoaPods vulns, using LLMs to find bugs, Burp Proxy gets more investment, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: h…YOUTUBE.COM
9 JulAmazon-Related Scams Spike Ahead of Prime DayResearchers at Check Point observed more than a thousand newly registered malicious or suspicious web domains related to Amazon last month. The criminals are likely gearing up to target users during Amazon Prime Day next week.KNOWBE4.COM
9 JulThe AI Fix #6: AI lobotomies, and bots scam scam botsIn episode six of The AI Fix, our hosts discover an unusual place to put a traffic cone, Mark learns why Americans should pretend to be from Brazil, and Graham discovers a way to make any situation much, much worse. Graham inflicts his terrible Australian accent on Mark while exp…GRAHAMCLULEY.COM
9 JulUS Busts Russian AI-Driven Disinformation OperationMeliorator Software Generates Social Media Bots U.S. federal authorities seized two web domains they said supported an artificial intelligence-driven disinformation network run by the Russian domestic intelligence agency and affiliates of a state-run propaganda broadcaster. Autho…DATABREACHTODAY.CO.UK
9 JulWhat Will Drive the Use of Faster Payments in the US?Faster Payments Council's Reed Luhtanen on the Importance of Well-Defined Practices Awareness of instant payments has grown significantly in the U.S. payments ecosystem since the launch of FedNow last July. Many banks have signed up for FedNow, but transaction volumes remain low …DATABREACHTODAY.CO.UK
9 JulZotac, Eldorado, Donex, Qlins, Ticketmaster, AI, Physical Security, Aaran Leyland... - SWN #396Zotac, Eldorado, Donex, Qlins, Ticketmaster, AI, Physical Security, Aaran Leyland, and more, are on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-396YOUTUBE.COM
9 JulSenate NDAA 2025 Boosts Military Cyber and AI InitiativesMilitary Omnibus Bill Includes Focus on Cybersecurity, Countering Drone Technology The Senate Armed Services Committee's fiscal year 2025 National Defense Authorization Act includes a significant focus on military cyber preparedness, with plans to develop capabilities to prevent …DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 2[−]
9 JulAs Cyber Command Evolves, Its Novel Malware Alert System Fades AwayThe shift away from public disclosure on Twitter is part of an evolution in how the CNMF communicates cyber threat information. The command now focuses on working closely with industry partners to share information effectively and efficiently.THERECORD.MEDIA
📡 INFOSEC NEWS 14[−]
9 JulTurning Jenkins Into a Cryptomining Machine From an Attacker's PerspectiveAttackers can leverage the Jenkins Script Console to execute malicious Groovy scripts, leading to cybercriminal activities such as the deployment of cryptocurrency miners.TRENDMICRO.COM
9 JulScammers Double-Dip by Offering Prior Victims Help to Recover Stolen FundsThe scammers identify previous scam victims and pose as trusted entities such as government agencies, cybersecurity firms, or fund recovery services, asking for upfront fees or personal information to supposedly help with the recovery process.THEREGISTER.COM
9 JulWhy You Need Network Detection & Response NowCybersecurity teams are well-equipped to handle threats to technology assets that they manage. But with unmanaged devices providing ideal spots for attackers to lurk unseen, network detection and response capabilities have become vitally important.TRENDMICRO.COM
9 JulResearchers Catch Yemeni Hackers Spying on Middle East Military PhonesA Yemeni hacking group associated with the Houthi movement has been spying on military personnel in the Middle East by infecting their phones with surveillance software, according to cybersecurity firm Lookout.CYBERSCOOP.COM
9 JulWindows 11 KB5040435 update released with 31 fixes, changesMicrosoft is rolling out the KB5040442 cumulative update for Windows 11 23H3, which includes up to thirty-two improvements and changes. The changes include a new feature that adds back the "Show Desktop" button, which Copilot replaced. [...]BLEEPINGCOMPUTER.COM
9 JulWindows 10 KB5040427 update released with Copilot changes, 12 other fixesMicrosoft has released the KB5040427 cumulative update for Windows 10 21H2 and Windows 10 22H2 with 13 changes, including Microsoft Copilot now behaving like an app, providing more flexibility on how it is displayed. [...]BLEEPINGCOMPUTER.COM
9 JulWhat Kind of People Do Cybersecurity for a Living?What kind of people do cybersecurity for a living? In the past, there was a formula potential practitioners followed, but today there are many ways to get into the field and having people from diverse backgrounds is valued. The Curry brothers discuss the cybersecurity profession.DATABREACHTODAY.CO.UK
9 JulWindows 11 KB5040442 update released with 31 fixes, changesMicrosoft is rolling out the KB5040442 cumulative update for Windows 11 23H2, which includes up to thirty-one improvements and changes. The changes include a new feature that adds back the "Show Desktop" button, which Copilot replaced. [...]BLEEPINGCOMPUTER.COM
9 JulCysurance announces discounted cyber insurance program for Sophos customers in AustraliaExpanding our successful partnership from the United States to Australia.SOPHOS.COM
9 Jul5 common Ticketmaster scams: How fraudsters steal the showScammers gonna scam scam scam, so before hunting for your tickets to a Taylor Swift gig or other in-demand events, learn how to stop fraudsters from leaving a blank space in your bank accountWELIVESECURITY.COM