MATLOCK.CA
76Articles
8Categories
2024-07-12Date
🚨
Top 10 open source software risks — and how to mitigate themCalls for a critical look at how open-source software (OSS) is secured and used have been increasing after a number of recent scares exposed vulnerabilities and risks, in particular the XZ Utils incident that revealed a backdoor inserted into a widely used OSS for compression and…
KEVCSOONLINE.COM — 12 Jul 2024
🐛
CVE-2024-6387 RedHat Openssh: CVE-2024-6387 Remote Code Execution Due To A Race Condition In Signal Handling
MSRC.MICROSOFT.COM — 12 Jul 2024
🐛
Multiple Threat Actors Exploit PHP Flaw CVE-2024-4577 to Deliver Malware
SECURITYAFFAIRS.COM — 12 Jul 2024
🐛
Known SSH-Snake bites more victims with multiple OSS exploitation
CSOONLINE.COM — 12 Jul 2024
🐛
Critical Exim Mail Server Vulnerability Exposes Millions to Malicious Attachments
THEHACKERNEWS.COM — 12 Jul 2024
🐛
Attacks against the "Nette" PHP framework CVE-2020-15227, (Fri, Jul 12th)
ISC.SANS.EDU — 12 Jul 2024
⚠️
Weekly Update 408
TROYHUNT.COM — 12 Jul 2024
⚠️
Exim vulnerability affecting 1.5 million servers lets attackers attach malicious files
ARSTECHNICA.COM — 12 Jul 2024
⚠️
Coyote Banking Trojan Attacking Windows Users To Steal Login Details
GBHACKERS.COM — 12 Jul 2024
⚠️
What is the CIA triad? A principled framework for defining infosec policies
CSOONLINE.COM — 12 Jul 2024
⚠️
Veeam Flaw Becomes Ransomware Vector a Year After Patching
THEREGISTER.COM — 12 Jul 2024
⚠️
Ever Wonder How Hackers Really Steal Passwords? Discover Their Tactics in This Webinar
THEHACKERNEWS.COM — 12 Jul 2024
⚠️
mSpy Data Breach: Millions of Customers’ Data Exposed
GBHACKERS.COM — 12 Jul 2024
⚠️
Macau Government Websites Hit with Cyberattack by Suspected Foreign Hackers
THERECORD.MEDIA — 12 Jul 2024
⚠️
AT&T Details Massive Breach of Subscribers' Call Logs
DATABREACHTODAY.CO.UK — 2024-07-12
⚠️
Year-Old Veeam Vulnerability Exploited in Fresh Ransomware Attacks
SECURITYWEEK.COM — 12 Jul 2024
⚠️
Japanese Space Agency Spots Unspecified Zero-Day Attacks
THEREGISTER.COM — 12 Jul 2024
⚠️
Australian Defence Force Private and Husband Charged with Espionage for Russia
THEHACKERNEWS.COM — 12 Jul 2024
⚠️
AT&T Details Massive Breach of Customers' Call and Text Logs
DATABREACHTODAY.CO.UK — 2024-07-12
⚠️
More Vulnerability Shenanigans - PSW #834
YOUTUBE.COM — 2024-07-12
⚠️
GitLab Patches Second Critical Pipeline Vulnerability In Last Month
PACKETSTORMSECURITY.COM — 12 Jul 2024
⚠️
Exim Vulnerability Affects 1.5 Million Servers
PACKETSTORMSECURITY.COM — 12 Jul 2024
⚠️
AT&T Discloses Breach of Customer Data
CISA.GOV — Fri, 12 Jul 24 1
⚠️
DarkGate Malware Exploits Samba File Shares in Short-Lived Campaign
THEHACKERNEWS.COM — 12 Jul 2024
⚠️
Critical Exim Flaw Allows Attackers to Deliver Malicious Executables to Mailboxes
SECURITYWEEK.COM — 12 Jul 2024
⚠️
Hackers Steal Phone, SMS Records for Nearly All AT&T Customers
KREBSONSECURITY.COM — 12 Jul 2024
⚠️
CRYSTALRAY Group Targets 1,500 Organizations in 6 Months
DATABREACHTODAY.CO.UK — 2024-07-12
⚠️
Critical Exim bug bypasses security filters on 1.5 million mail servers
BLEEPINGCOMPUTER.COM — 12 Jul 2024
⚠️
Friday Squid Blogging: 1994 Lair of Squid Game
SCHNEIER.COM — 2024-07-12
⚠️
Zeus Banking Malware Player Gets 9-Year Prison Term
DATABREACHTODAY.CO.UK — 2024-07-12
⚠️
Detecting Living Off The Land attacks with Wazuh
BLEEPINGCOMPUTER.COM — 12 Jul 2024
📢
CISA Red Team Exercise Finds Critical Vulnerabilities in Federal Civilian Agency
SECURITYWEEK.COM — 12 Jul 2024
📢
ISMG Editors: How Should We Handle Ransomware Code Flaws?
DATABREACHTODAY.CO.UK — 2024-07-12
📢
White House Calls for Defending Critical Infrastructure
DATABREACHTODAY.CO.UK — 2024-07-12
🔥
Hackers Using ClickFix Social Engineering Tactics to Deploy Malware
GBHACKERS.COM — 12 Jul 2024
🔥
Ransomware Gangs Invest in Custom Data Stealing Malware
THEREGISTER.COM — 12 Jul 2024
🔥
Advance Auto Parts Cyber Attack: Over 2 Million Users Data Exposed
GBHACKERS.COM — 12 Jul 2024
🔥
RansomHub ransomware – what you need to know
TRIPWIRE.COM — 12 Jul 2024
🔥
AT&T says criminals stole phone records of ‘nearly all’ customers in new data breach
TECHCRUNCH.COM — 12 Jul 2024
🔥
AT&T Data Breach: ‘Nearly All’ Wireless Customers Exposed in Massive Hack
SECURITYWEEK.COM — 12 Jul 2024
🔥
Massive AT&T data breach exposes call logs of 109 million customers
BLEEPINGCOMPUTER.COM — 12 Jul 2024
🔥
Millions Impacted by Breach at Advance Auto Parts Linked to Snowflake Incident
SECURITYWEEK.COM — 12 Jul 2024
🔥
Millions Impacted By Breach At Advance Auto Parts
PACKETSTORMSECURITY.COM — 12 Jul 2024
🔥
Nearly All AT&T Cell Customers’ Call And Text Records Exposed
PACKETSTORMSECURITY.COM — 12 Jul 2024
🔥
In Other News: Apple’s Spyware Warning, CDK Global Ransom Payment, Sibanye Cyberattack
SECURITYWEEK.COM — 12 Jul 2024
🔥
Mobile surveillance software firm mSpy suffers data breach
CSOONLINE.COM — 12 Jul 2024
🔥
What the AT&T phone records data breach means for you
TECHCRUNCH.COM — 12 Jul 2024
🔥
Rite Aid confirms data breach after June ransomware attack
BLEEPINGCOMPUTER.COM — 12 Jul 2024
🔥
AT&T confirms arrest in data breach of more than 110 million customers
CSOONLINE.COM — 12 Jul 2024
🔥
Should ransomware payments be banned? – Week in security with Tony Anscombe
WELIVESECURITY.COM — 12 Jul 2024
🕵️
Joiners, Movers, Leavers, and Failures: Why is Identity Management Still Struggling? -... - ESW #367
YOUTUBE.COM — 2024-07-12
🕵️
Rockyou2024 is a scam, Google has a whoopsie, and AI is giving folks indigestion - ESW #367
YOUTUBE.COM — 2024-07-12
🕵️
ISC Stormcast For Friday, July 12th, 2024 https://isc.sans.edu/podcastdetail/9050, (Fri, Jul 12th)
ISC.SANS.EDU — 12 Jul 2024
🕵️
U.S. Seizes Domains Used by AI-Powered Russian Bot Farm for Disinformation
THEHACKERNEWS.COM — 12 Jul 2024
🕵️
Japan Warns of Attacks Linked to North Korean Kimsuky Hackers
BLEEPINGCOMPUTER.COM — 12 Jul 2024
🕵️
The NSA Has a Long-Lost Lecture by Adm. Grace Hopper
SCHNEIER.COM — 2024-07-12
🕵️
Howto unlock KeepassDX with your Secure Element
SH.ITJUST.WORKS — 12 Jul 2024
🕵️
Brands are changing cybersecurity strategies due to AI threats
SECURITYINTELLIGENCE.COM — 12 Jul 2024
🕵️
China's APT41 Crew Adds A Stealthy Malware Loader And Fresh Backdoor To Its Toolbox
PACKETSTORMSECURITY.COM — 12 Jul 2024
🕵️
🚨 The REAL Cost of Security Vulnerabilities! 🛡️💸 | Interview with Jason Kikta 🎙️
YOUTUBE.COM — 2024-07-12
🕵️
Off-Topic Friday
INFOSEC.PUB — 12 Jul 2024
🕵️
Autobahn, APT 40, Meliorator, RADIUS, AT&T, Apple, Josh Marpet, and More... - SWN #397
YOUTUBE.COM — 2024-07-12
🕵️
FedNow's First Year: Mixed Bag of Achievements, Challenges
DATABREACHTODAY.CO.UK — 2024-07-12
🌐
Exploring Compiled V8 JavaScript Usage in Malware
RESEARCH.CHECKPOINT.COM — 12 Jul 2024
📡
Cytactic Raises $16M in Seed Funding
FINSMES.COM — 12 Jul 2024
📡
OnDemand | BEC Aware: Three Actionable Steps to Activate Security Culture in UK
DATABREACHTODAY.CO.UK — 2024-07-12
📡
The Stark Truth Behind the Resurgence of Russia’s FIN7
KREBSONSECURITY.COM — 12 Jul 2024
📡
Justifying Your Hybrid Cloud Network Security Investment
DATABREACHTODAY.CO.UK — 2024-07-12
📡
Computer Company Breaks Quantum Supremacy Record Set By Google
PACKETSTORMSECURITY.COM — 12 Jul 2024
📡
OpenSSH Bug Leaves RHEL And RHELatives Vulnerable
PACKETSTORMSECURITY.COM — 12 Jul 2024
📡
Gay Furry Hackers Say They Have Disbanded After Raiding Project 2025's Heritage Foundation
PACKETSTORMSECURITY.COM — 12 Jul 2024
📡
Netgear warns users to patch auth bypass, XSS router flaws
BLEEPINGCOMPUTER.COM — 12 Jul 2024
📡
SIEM benefits for medium-sized business | Kaspersky official blog
KASPERSKY.COM — 12 Jul 2024
📡
Netgear warns users to patch auth bypass, XSS router flaws
BLEEPINGCOMPUTER.COM — 12 Jul 2024
📡
Gaining Better Visibility Into Medical Devices, IoT, OT
DATABREACHTODAY.CO.UK — 2024-07-12
📡
DNS hijacks target crypto platforms registered with Squarespace
BLEEPINGCOMPUTER.COM — 12 Jul 2024