matlock.ca // THREAT INTELLIGENCE

95Articles

8Categories

2024-07-11Date

🐛

GitLab Patches Critical Flaw Allowing Unauthorized Pipeline Jobs

THEHACKERNEWS.COM — 11 Jul 2024

🐛

PHP Vulnerability Exploited to Spread Malware and Launch DDoS Attacks

THEHACKERNEWS.COM — 11 Jul 2024

🐛

VMware Fixed Critical SQL Injection Flaw in Aria Automation Platform

SECURITYAFFAIRS.COM — 11 Jul 2024

🐛

Citrix Fixed Critical and High-Severity Bugs in NetScaler Product

SECURITYAFFAIRS.COM — 11 Jul 2024

🐛

A new flaw in OpenSSH can lead to remote code execution

SECURITYAFFAIRS.COM — 11 Jul 2024

🐛

Microsoft Outlook Faced Critical Zero-Click RCE Vulnerability

INFOSECURITY-MAGAZINE.COM — 11 Jul 2024

🐛

Palo Alto Networks Patches Critical Flaw in Expedition Migration Tool

THEHACKERNEWS.COM — 11 Jul 2024

🐛

Microsoft Outlook Faced Critical Zero-Click RCE Vulnerability

INFOSECURITY-MAGAZINE.COM — 11 Jul 2024

🐛

Announcing the CVRF API 3.0 upgrade

MSRC.MICROSOFT.COM — 11 Jul 2024

🐛

Ransomware attackers exploit year-old backup vulnerability

CSOONLINE.COM — 11 Jul 2024

🐛

Announcing the CVRF API 3.0 upgrade

MSRC.MICROSOFT.COM — 11 Jul 2024

⚠️

Attackers Have Been Leveraging Microsoft Zero-Day for 18 Months

INFOSEC.PUB — 11 Jul 2024

⚠️

Apple alerts iPhone users in 98 countries to mercenary spyware attacks

TECHCRUNCH.COM — 11 Jul 2024

⚠️

Threat actors exploited Windows 0-day for more than a year before Microsoft fixed it

ARSTECHNICA.COM — 11 Jul 2024

⚠️

Top 10 Active Directory Management Tools – 2024

GBHACKERS.COM — 11 Jul 2024

⚠️

Japanese Space Agency Spotted zero-day via Microsoft 365 Services

GBHACKERS.COM — 11 Jul 2024

⚠️

Universal Code Execution by Chaining Messages in Browser Extensions

SPACERACCOON.DEV — 11 Jul 2024

⚠️

6 tips for consolidating your IT security tool set

CSOONLINE.COM — 11 Jul 2024

⚠️

Python GitHub token leak shows binary files can burn developers too

CSOONLINE.COM — 11 Jul 2024

⚠️

Diversifying Cyber Teams to Tackle Complex Threats

HELPNETSECURITY.COM — 11 Jul 2024

⚠️

New Poco RAT Targets Spanish-Speaking Victims in Phishing Campaign

THEHACKERNEWS.COM — 11 Jul 2024

⚠️

New Malware Campaign Targeting Spanish Language Victims and the Mining Sector

COFENSE.COM — 11 Jul 2024

⚠️

Palo Alto Networks Addresses BlastRADIUS Vulnerability, Fixes Critical Bug in Expedition Tool

SECURITYWEEK.COM — 11 Jul 2024

⚠️

Streamlined Security Solutions: PAM for Small to Medium-sized Businesses

THEHACKERNEWS.COM — 11 Jul 2024

⚠️

CISA, FBI Urge Immediate Action on OS Command Injection Vulnerabilities in Network Devices

SECURITYWEEK.COM — 11 Jul 2024

⚠️

Hackers steal data of 200k Lulu customers in an alleged breach

CSOONLINE.COM — 11 Jul 2024

⚠️

Japanese space agency spots unspecified zero-day attacks

THEREGISTER.COM — 11 Jul 2024

⚠️

Apple Inc issues warning against Mercenary Spyware Cyber Attacks

CYBERSECURITY-INSIDERS.COM — 11 Jul 2024

⚠️

Critical GitLab Bug Lets Attackers Run Pipelines as Other Users

BLEEPINGCOMPUTER.COM — 11 Jul 2024

⚠️

BunkerWeb: Open-Source Web Application Firewall (WAF)

HELPNETSECURITY.COM — 11 Jul 2024

⚠️

Threat Actors Exploited Windows 0-Day For More Than A Year Before Microsoft Fixed It

PACKETSTORMSECURITY.COM — 11 Jul 2024

⚠️

Japanese Space Agency Spotted Zero-Day Attacks While Cleaning Up Attack On M365

PACKETSTORMSECURITY.COM — 11 Jul 2024

⚠️

Palo Alto Networks Addresses BlastRADIUS Vulnerability

PACKETSTORMSECURITY.COM — 11 Jul 2024

⚠️

‘CrystalRay’ Expands Arsenal, Hits 1,500 Targets with SSH-Snake and Open Source Tools

SECURITYWEEK.COM — 11 Jul 2024

⚠️

GitLab Ships Update for Critical Pipeline Execution Vulnerability

SECURITYWEEK.COM — 11 Jul 2024

⚠️

Apple Is Alerting iPhone Users of Spyware Attacks

SCHNEIER.COM — 2024-07-11

⚠️

CRYSTALRAY hacker expands to 1,500 breached systems using SSH-Snake tool

BLEEPINGCOMPUTER.COM — 11 Jul 2024

⚠️

CISA Releases Twenty-one Industrial Control Systems Advisories

CISA.GOV — Thu, 11 Jul 24 1

⚠️

🚨 Hidden Risks in Your Devices! 🛠️ | Casey Ellis on Supply Chain Security

YOUTUBE.COM — 2024-07-11

⚠️

RFID hacking - Iceman - PSW #834

YOUTUBE.COM — 2024-07-11

⚠️

Google increases bug bounty rewards five times, up to $151K

BLEEPINGCOMPUTER.COM — 11 Jul 2024

⚠️

Introducing A New Vulnerability Class: False File Immutability

PACKETSTORMSECURITY.COM — 11 Jul 2024

⚠️

Japan aerospace agency provides details of October data breach

CSOONLINE.COM — 11 Jul 2024

⚠️

Multiple Threat Actors Moving Quickly to Exploit PHP Flaw

DATABREACHTODAY.CO.UK — 2024-07-11

⚠️

Anton’s Security Blog Quarterly Q2 2024

MEDIUM.COM — 11 Jul 2024

⚠️

Breach Roundup: Microsoft Patches Zero-Day Active Since 2023

DATABREACHTODAY.CO.UK — 2024-07-11

⚠️

Experts: Federal Privacy Law Needed to Curb AI Data Misuse

DATABREACHTODAY.CO.UK — 2024-07-11

⚠️

Cisco Talos analyzes attack chains, network ransomware tactics

NETWORKWORLD.COM — 11 Jul 2024

⚠️

Phishing Attacks Against State and Local Governments Are Surging

KNOWBE4.COM — 11 Jul 2024

⚠️

Ransomware Attacks on Healthcare Is Costing Lives

KNOWBE4.COM — 11 Jul 2024

📢

CISA Releases Advisory Detailing Red Team Activity During Assessment of US FCEB Organization, Highlighting Necessity of Defense-in-Depth

CISA.GOV — Thu, 11 Jul 24 1

📢

VMware security advisory (AV24-384)

CYBER.GC.CA — 2024-07-11

📢

[Control systems] Siemens security advisory (AV24-385)

CYBER.GC.CA — 2024-07-11

📢

GitLab security advisory (AV24-386)

CYBER.GC.CA — 2024-07-11

📢

Mitel security advisory (AV24-387)

CYBER.GC.CA — 2024-07-11

🔥

Ransomware Groups Prioritize Defense Evasion for Data Exfiltration

INFOSECURITY-MAGAZINE.COM — 11 Jul 2024

🔥

Fujitsu blames malware that's 'not ransomware' for attack

THEREGISTER.COM — 11 Jul 2024

🔥

Advance Auto Parts data breach impacts 2.3 million people

BLEEPINGCOMPUTER.COM — 11 Jul 2024

🔥

Cryptohack Roundup: Huione Guarantee

DATABREACHTODAY.CO.UK — 2024-07-11

🔥

Dallas County: Data of 200,000 exposed in 2023 ransomware attack

BLEEPINGCOMPUTER.COM — 11 Jul 2024

🔥

The State of Ransomware in Education 2024

SOPHOS.COM — 11 Jul 2024

🔥

Millions of mSpy spyware customers exposed by huge data breach

TECHCRUNCH.COM — 11 Jul 2024

🔥

Major Health Data Breaches: How Are Trends Shifting in 2024?

DATABREACHTODAY.CO.UK — 2024-07-11

🔥

CDK breach compromises customer data from 15,000 car dealers

SECURITYINTELLIGENCE.COM — 11 Jul 2024

🔥

ARRL finally confirms ransomware gang stole data in cyberattack

BLEEPINGCOMPUTER.COM — 11 Jul 2024

🔥

An In-Depth Look at Crypto-Crime in 2023 Part 2

TRENDMICRO.COM — 11 Jul 2024

🔥

mSpy (2024) - 2,394,179 breached accounts

HAVEIBEENPWNED.COM — 11 Jul 2024

🕵️

ISC Stormcast For Thursday, July 11th, 2024 https://isc.sans.edu/podcastdetail/9048, (Thu, Jul 11th)

ISC.SANS.EDU — 11 Jul 2024

🕵️

GUEST ESSAY: How cybercriminals are using ‘infostealers’ to sidestep passwordless authentication

LASTWATCHDOG.COM — 11 Jul 2024

🕵️

Hackers Created 700+ Fake Domains to Sell Olympic Games Tickets

GBHACKERS.COM — 11 Jul 2024

🕵️

Chinese APT41 Upgrades Malware Arsenal with DodgeBox and MoonWalk

THEHACKERNEWS.COM — 11 Jul 2024

🕵️

39% of MSPs report major setbacks when adapting to advanced security technologies

SECURITYINTELLIGENCE.COM — 11 Jul 2024

🕵️

60 New Malicious Packages Uncovered in NuGet Supply Chain Attack

THEHACKERNEWS.COM — 11 Jul 2024

🕵️

Tracebit Raises $5 Million for Threat Deception Solution

SECURITYWEEK.COM — 11 Jul 2024

🕵️

SO-Con Spectre Ops 2024

INFOSEC.PUB — 11 Jul 2024

🕵️

Simplified Zero Trust security with the Microsoft Entra Suite and unified security operations platform, now generally available

MICROSOFT.COM — 11 Jul 2024

🌐

DarkGate: Dancing the Samba With Alluring Excel Files

UNIT42.PALOALTONETWORKS.COM — 11 Jul 2024

🌐

Risk Escalates as Communication Channels Proliferate

CYBERSECURITYDIVE.COM — 11 Jul 2024

🌐

ViperSoftX Info-Stealing Malware Being Distributed Through Fake Ebooks

THECYBEREXPRESS.COM — 11 Jul 2024

🎙️

Smashing Security podcast #380: Teachers TikTok targeted, and fraud in the doctors’ waiting room

GRAHAMCLULEY.COM — 11 Jul 2024

📡

How to set up Apple Shortcuts in VPN & Antivirus by Kaspersky for iOS | Kaspersky official blog

KASPERSKY.COM — 11 Jul 2024

📡

Smishing Triad Targets India with Fraud Surge

INFOSECURITY-MAGAZINE.COM — 11 Jul 2024

📡

Google Advanced Protection Program gets passkeys for high-risk users

BLEEPINGCOMPUTER.COM — 11 Jul 2024

📡

Huione Guarantee Exposed as a $11 Billion Marketplace for Cybercrime

BLEEPINGCOMPUTER.COM — 11 Jul 2024

📡

Singapore to Phase Out One-Time Passwords in Banking

HEALTHCAREINFOSECURITY.COM — 11 Jul 2024

📡

Russian Researchers Identify Alleged Ukrainian Developer of Malicious Remote Access Tool

THERECORD.MEDIA — 11 Jul 2024

📡

Exposed! The AI-enhanced social media bot farm that pumped out Kremlin propaganda on Twitter

BITDEFENDER.COM — 11 Jul 2024

📡

State, Local Governments Facing Deluge Of Phishing Attacks

PACKETSTORMSECURITY.COM — 11 Jul 2024

📡

VMware Patches Critical SQL Injection Flaw In Aria Automation

PACKETSTORMSECURITY.COM — 11 Jul 2024

📡

You Had A Year To Patch This Veeam Flaw And Now It's Going To Hurt

PACKETSTORMSECURITY.COM — 11 Jul 2024

📡

Getting From Midlevel to Specialty Niche in Cybersecurity

DATABREACHTODAY.CO.UK — 2024-07-11

📡

Exein raised $15M Series B to stop robotic arms going haywire

TECHCRUNCH.COM — 11 Jul 2024

📡

Multifactor Authentication Shouldn't Be Optional

DATABREACHTODAY.CO.UK — 2024-07-11

📡

Understanding SSH Honeypot Logs: Attackers Fingerprinting Honeypots, (Thu, Jul 11th)

ISC.SANS.EDU — 11 Jul 2024

📡

Signal downplays encryption key flaw, fixes it after X drama

BLEEPINGCOMPUTER.COM — 11 Jul 2024