🚨 CISA KEV 1[−]
18 Jul KEVCISA Adds OSGeo GeoServer GeoTools Bug to its Known Exploited Vulnerabilities CatalogThe US Cybersecurity and Infrastructure Security Agency (CISA) issued a directive to federal agencies to fix a critical vulnerability in GeoServer, a popular open-source server, that is actively being exploited.SECURITYAFFAIRS.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 10[−]
18 JulCisco Warns of Critical Flaw Affecting On-Prem Smart Software ManagerCisco has released patches to address a maximum-severity security flaw impacting Smart Software Manager On-Prem (Cisco SSM On-Prem) that could enable a remote, unauthenticated attacker to change the password of any users, including those belonging to administrative users. The vul…THEHACKERNEWS.COM
18 JulCisco SSM On-Prem Bug Lets Hackers Change Any User’s PasswordTracked as CVE-2024-20419, the flaw enables remote attackers to set new passwords without authentication. Admins are advised to upgrade to the fixed release to protect vulnerable servers, as there are no workarounds available.BLEEPINGCOMPUTER.COM
18 JulChromium: CVE-2024-6779 Out of bounds memory access in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
18 JulChromium: CVE-2024-6773 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
18 JulChromium: CVE-2024-6772 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
18 JulChromium: CVE-2024-6775 Use after free in Media StreamThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
18 JulChromium: CVE-2024-6776 Use after free in AudioThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
18 JulChromium: CVE-2024-6778 Race in DevToolsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
18 JulChromium: CVE-2024-6777 Use after free in NavigationThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
18 JulChromium: CVE-2024-6774 Use after free in Screen CaptureThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 33[−]
18 JulBeware the tools that can bring risk to a Windows networkThere are a few essential questions that anyone maintaining security on a Windows network needs to ask right now to avoid engaging in some very risky behavior, but there’s one that may be the most important of all — are you aware of tools in your network that may be bringing more…CSOONLINE.COM
18 JulAttackers abuse URL protection services to hide phishing links in emailsRecent phishing campaigns were seen abusing email security services that rewrite URLs to hide their own malicious links. The irony is that this URL rewriting feature, which is common in secure email gateways and some cloud-based email services, is specifically intended as a reput…CSOONLINE.COM
18 JulReport: Half of SMEs Unprepared for Cyber-ThreatsAccording to a new report by JumpCloud, About 49% of SME IT teams feel they lack resources to defend against cyber-threats, with layoffs affecting nearly half of them. 71% believe budget cuts would increase risk.INFOSECURITY-MAGAZINE.COM
18 JulCybercriminals Exploit Attack on Donald Trump for Crypto ScamsResearchers at Bitdefender Labs remain ever-vigilant, informing users about the latest scams and internet perils that threaten their security and finances. The latest discovery involves cybercriminals exploiting an alleged assassination attempt on former US President Donald Trump…GBHACKERS.COM
18 JulNew TE.0 HTTP Request Smuggling Flaw Impacts Google Cloud WebsitesHTTP Request Smuggling is a flaw in web security that is derived from variations in the way different web servers or intermediaries, such as load balancers and proxies handle HTTP request sequences. By creating malicious HTTP requests that exploit these inconsistencies, an attack…GBHACKERS.COM
18 JulSAP AI Core Vulnerabilities Expose Customer Data to Cyber AttacksCybersecurity researchers have uncovered security shortcomings in SAP AI Core cloud-based platform for creating and deploying predictive artificial intelligence (AI) workflows that could be exploited to get hold of access tokens and customer data. The five vulnerabilities have be…THEHACKERNEWS.COM
18 JulTAG-100: New Threat Actor Uses Open-Source Tools for Widespread AttacksUnknown threat actors have been observed leveraging open-source tools as part of a suspected cyber espionage campaign targeting global government and private sector organizations. Recorded Future's Insikt Group is tracking the activity under the temporary moniker TAG-100, noting …THEHACKERNEWS.COM
18 JulIvanti Issues Hotfix for High-Severity Endpoint Manager VulnerabilityIvanti has released a hotfix to address an SQL injection vulnerability in Endpoint Manager (EPM) 2024 flat. The post Ivanti Issues Hotfix for High-Severity Endpoint Manager Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulHackers Exploiting Legitimate RMM Tools With BugSleep MalwareSince October 2023, MuddyWater, which is an Iranian threat group linked to MOIS, has escalated its phishing campaigns in Middle East countries, specifically Israel. In their approach, they use already compromised email accounts to spread malicious content across various sectors. …GBHACKERS.COM
18 JulSubSnipe: Open-Source Tool for Finding Subdomains Vulnerable to TakeoverSubSnipe is an open-source tool designed to identify vulnerable subdomains at risk of takeover. Created by Florian Walter, the tool offers improved accuracy and efficiency compared to other similar tools by conducting additional verification steps.HELPNETSECURITY.COM
18 JulTrump’s assassination attempt exploited in new crypto doubling scamsCrypto scammers are using the recent assassination attempts against former US President Donald Trump to lure customers into a crypto doubling scheme, according to a Bitdefender study. The new scam has the actors hijack YouTube channels to show convincing deep fakes and encourage …CSOONLINE.COM
18 JulCritical Cisco bug lets hackers add root users on SEG devicesCisco has fixed a critical severity vulnerability that lets attackers add new users with root privileges and permanently crash Security Email Gateway (SEG) appliances using emails with malicious attachments. [...]BLEEPINGCOMPUTER.COM
18 JulPentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force SaysTeixeira, who was part of the 102nd Intelligence Wing at Otis Air National Guard Base in Massachusetts, worked as a cyber transport systems specialist. The post Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulPort Shadow Attack Allows VPN Traffic Interception, RedirectionResearchers show how the Port Shadow technique against VPNs can allow MitM attacks, enabling threat actors to intercept and redirect traffic. The post Port Shadow Attack Allows VPN Traffic Interception, Redirection appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulPower9, Talos-II PC, the most open source modern PC you can getsubmitted by boredsquirrel to cybersecurity 1 points | 0 comments https://www.youtube.com/watch?v=5syd5HmDdGU www.raptorcs.com/TALOSII I just saw this, even if it is pretty old. They continue the IMB powerPC architecture. 3mdeb develops coreboot for the architecture. Here is an i…YOUTUBE.COM
18 JulTAG-100 Actors Using Open-Source Tools To Attack Gov & Private OrgsHackers exploit open-source tools to execute attacks because they are readily available, well-documented, and often have extensive community support, making them easy to modify and deploy. Besides this, open-source tools can be customized to evade detection, automate tasks, and l…GBHACKERS.COM
18 JulOcto Tempest Know for Attacking VMWare ESXi Servers Added RansomHub & Qilin to Its ArsenalThreat actors often attack VMware ESXi servers since they accommodate many virtual machines, which link to a variety of systems via one breach. Compromising an ESXi server can bring the targeted services down. Additionally, valuable resources and data are stored in the ESXi serve…GBHACKERS.COM
18 JulVulnerability In Cisco Smart Software Manager Lets Attacker Change Any User PasswordPACKETSTORMSECURITY.COM
18 JulCISA Releases Three Industrial Control Systems AdvisoriesCISA released three Industrial Control Systems (ICS) advisories on July 18, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-200-01 Mitsubishi Electric MELSOFT MaiLab ICSA-24-200-02 Subnet Solu…CISA.GOV
18 JulOracle Releases Critical Patch Update Advisory for July 2024Oracle released its quarterly Critical Patch Update Advisory for July 2024 to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to re…CISA.GOV
18 Jul KEVRecent Adobe Commerce Vulnerability Exploited in WildAdobe and CISA warn that a recent Adobe Commerce vulnerability has been exploited in the wild. The post Recent Adobe Commerce Vulnerability Exploited in Wild appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulIvanti Releases Security Updates for Endpoint ManagerIvanti released security updates to address vulnerabilities in Ivanti Endpoint Manager (EPM) and Ivanti Endpoint Manager for Mobile (EPMM). A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and admi…CISA.GOV
18 JulSolarWinds fixes 8 critical bugs in access rights audit softwareSolarWinds has fixed eight critical vulnerabilities in its Access Rights Manager (ARM) software, six of which allowed attackers to gain remote code execution (RCE) on vulnerable devices. [...]BLEEPINGCOMPUTER.COM
18 JulCisco Releases Security Updates for Multiple ProductsCisco released security updates to address vulnerabilities in Cisco software. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following advisories and apply necessary up…CISA.GOV
18 JulFrom Email to Human Behavior: Abnormal Security's EvolutionCo-Founder, CEO Evan Reiser Discusses New SaaS and Account Takeover Protections Abnormal Security co-founder and CEO Evan Reiser explains the company's evolution from email security to comprehensive human behavior security. He highlights new capabilities to protect against accoun…DATABREACHTODAY.CO.UK
18 JulVulnerability Chains - PSW #835Find new flaws in UEFI using STASE, combining vulnerabilities to exploit Sonicwall Devices, remote BMC exploits, Netgear patches, and not a lot of information, 22 minutes before exploited, if the secrets were lost, we'd all be in screwed, Exim has not been replaced by something b…YOUTUBE.COM
18 Jul3D Printing For Hackers - David Johnson - PSW #835Thinking about getting a 3D printer or have one and need a good primer? Check out this segment, we live 3D print a Captain Crunch whistle and talk all about 3D printing for hackers! Segment Resources: * Slides used in this segment: https://files.scmagazine.com/wp-content/uploads/…YOUTUBE.COM
18 JulSAP security holes raise questions about the rush to AICloud security firm Wiz has probed SAP defenses as part of its tenant isolation research on AI service providers, and on Wednesday published a lengthy list of shortcomings. SAP says that they fixed all of the problems before Wiz published. Most deal with either a lack of meaningf…CSOONLINE.COM
18 JulOracle Quarterly Critical Patches Issued July 16, 2024Multiple vulnerabilities have been discovered in Oracle products, the most severe of which could allow for remote code execution.CISECURITY.ORG
18 JulGoogle Cloud Security Threat Horizons Report #10 Is Out!This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our next Threat Horizons Report ( full version ) that we just released ( the official blog for #1 report , my unofficial blogs for #2 , #3 , #4 , #5 , #6 , #…MEDIUM.COM
18 JulCryptohack Roundup: $230M WazirX Exploit in IndiaAlso: Craig Wright, Be Seated. Will the Real Satoshi Nakamoto Please Stand Up? This week, WazirX, LI.FI, Dough Finance and CoinStats were breached; Satoshi Nakamoto impersonator's was charged; FTX and CFTC reached a settlement; a man was convicted of fraud; new details emerged in…DATABREACHTODAY.CO.UK
18 JulResearcher finds flaw in a16z website that exposed some company dataVenture capital giant a16z fixed a security vulnerability in one of the firm's websites after being warned by a security researcher. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
📢 SECURITY ADVISORIES 8[−]
18 JulUK to Introduce Watered-Down Version of Mandatory Reporting for Ransomware AttacksDespite the limited scope of the bill, it aims to protect digital services and supply chains from cyberattacks. The legislation will also empower regulators to ensure critical infrastructure companies implement essential cyber safety measures.THERECORD.MEDIA
18 JulAnnouncing OpenAI ChatGPT Enterprise Compliance IntegrationPalo Alto Networks has integrated with OpenAI’s ChatGPT Enterprise Compliance API to empower organizations with the transformative potential of AI. The post Announcing OpenAI ChatGPT Enterprise Compliance Integration appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
18 JulOpenAI Rolls Out Compliance API and Integrations for ChatGPT EnterpriseThe tools are being positioned as crucial to help business customers meet requirements for regulations like FINRA, HIPAA, and GDPR. The post OpenAI Rolls Out Compliance API and Integrations for ChatGPT Enterprise appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulChile Leads Latin America With New Cybersecurity GovernanceChile took a major step toward a more resilient cyber landscape for its citizens and the Latin American region on Tuesday, March 26, 2024, when Chile’s president of the Republic, Gabriel Boric, signed and enacted the new Cybersecurity and Critical Information Infrastructure Frame…KNOWBE4.COM
🔥 INCIDENT REPORTING 15[−]
18 JulScattered Spider Chooses RansomHub, Qilin for Latest AttacksScattered Spider, a notorious cybercrime group, has added ransomware strains RansomHub and Qilin to its arsenal, as revealed by Microsoft. They are known for sophisticated social engineering tactics to breach targets and steal data.THEREGISTER.COM
18 JulIndia’s WazirX confirms security breach following a $230M ‘suspicious transfer’The Mumbai-based firm said one of its multisig wallets had suffered a security breach, and it was temporarily pausing all withdrawals from the platform. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
18 JulMysterious Chinese Hacking Group ‘GhostEmperor’ Spotted for First Time in Two YearsSecurity firm Sygnia revealed that GhostEmperor recently compromised a network, using it as a launchpad to access another victim's systems. This marks the first public report on the group since it was identified by Kaspersky Lab in 2021.THERECORD.MEDIA
18 JulRansomware Costs at Critical Infrastructure Organizations SoarAccording to Sophos, ransomware attacks on critical national infrastructure (CNI) organizations have seen a significant increase in costs over the past year, with the median ransom payments reaching $2.54 million.THEREGISTER.COM
18 JulMarineMax Notifying 123,000 of Data Breach Following Ransomware AttackBoat dealer MarineMax said the data breach caused by a recent ransomware attack impacts over 123,000 individuals. The post MarineMax Notifying 123,000 of Data Breach Following Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulUnitedHealth’s Cyberattack Response Costs to Surpass $2.3 Billion This YearUnitedHealth is expected to spend over $2.3 billion this year to recover from a cyberattack on its subsidiary Change Healthcare, which is significantly higher than initial estimates.CYBERSECURITYDIVE.COM
18 JulTransatlantic Cable podcast episode 356 | Kaspersky official blogEpisode 356 has K-Pop, AI, Bob Dylan and the AT&T ‘mega breach!’ SEO tags: Music, AI, kpop, AI, AT&T, databreach, data, privacyKASPERSKY.COM
18 JulOperation Spincaster Targets Crypto Pig-Butchering ScamsPublic-Private Effort Based on Intelligence Tied to $162 Million in Crypto Losses A public-private effort with the codename Operation Spincaster is using intelligence related to 7,000 compromised cryptocurrency wallets and $162 million in losses to warn victims, recover funds and…DATABREACHTODAY.CO.UK
18 JulUsing Threat Intelligence to Predict Potential Ransomware AttacksThe risk of suffering a ransomware attack is high and organizations must take proactive steps to protect themselves and minimize the impact of a potential breach. The post Using Threat Intelligence to Predict Potential Ransomware Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulBreach Roundup: North Korean Hackers Target macOS UsersInterpol Arrests 300, Seizes $3 Million From West African Financial Crime Gang This week, North Korean hackers targeted macOS users, Bassett Furniture suffered a ransomware attack, Interpol arrested 300 and seized $3 million, new details emerged about Designed Receivable Solution…DATABREACHTODAY.CO.UK
18 JulCyber Threats Targeting the 2024 Paris OlympicsOur friends at the CyberWire reported: "ZeroFox and Fortinet have both published reports on threats facing the 2024 Olympics in Paris. ZeroFox says the primary cybersecurity threat will be cyberattacks from Russia, which are "likely to take the form of DDoS attacks,…KNOWBE4.COM
18 JulChange Healthcare Ransomware Attack May Cost Nearly $2.5 BillionThe ransomware attack against UnitedHealth Group’s Change Healthcare platform is expected to cost the company up to $2.45 billion, more than a billion dollars more than was previously estimated, Cybersecurity Dive reports. The incident has already cost the firm nearly $2 billion.KNOWBE4.COM
18 Jul7 in 10 Organizations Experienced a Business Email Compromise Attack in the Last 12 MonthsDespite ransomware getting the lion’s share of the tech pub headlines, business email compromise (BEC) attacks are alive and well… and having a material impact.KNOWBE4.COM
🕵️ THREAT INTELLIGENCE 21[−]
18 JulISC Stormcast For Thursday, July 18th, 2024 https://isc.sans.edu/podcastdetail/9058, (Thu, Jul 18th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
18 JulChinese APT Targets Italian Government Agencies and Companies Using 9002 RATThe 9002 RAT malware, used in Operation Aurora in 2009, is a versatile trojan that can monitor network traffic, capture screenshots, and execute commands from a remote server. The malware is constantly updated with new variants to avoid detection.TGSOFT.IT
18 JulThreat group FIN7 adapts with new tactics and tools, researchers saysubmitted by kid to cybersecurity 1 points | 0 comments https://cybernews.com/security/fin7-cyber-threat-group-new-tactics-tools-sentinel-research/CYBERNEWS.COM
18 JulRising Tides: Alyssa Miller on ‘Do Better, be Better’ and ‘See Past the Technology’ to Advance CybersecurityMiller has been in cybersecurity for roughly 20 years and is now the CISO of Epiq Global. The post Rising Tides: Alyssa Miller on ‘Do Better, be Better’ and ‘See Past the Technology’ to Advance Cybersecurity appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulCisco Patches Critical Vulnerabilities in Secure Email Gateway, SSMCisco has released patches for critical vulnerabilities in Secure Email Gateway and Smart Software Manager On-Prem. The post Cisco Patches Critical Vulnerabilities in Secure Email Gateway, SSM appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulOkta Announces SaaS Startup CompetitionThe Okta SaaS Startup Competition will allow early-stage startups a chance to receive a cash investment and support from Okta. The post Okta Announces SaaS Startup Competition appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulNorth Korean Hackers Update BeaverTail Malware to Target MacOS UsersNorth Korean hackers have updated their BeaverTail malware to target MacOS users. The malware is disguised as a legitimate video call service named "MiroTalk.dmg" in an Apple macOS disk image file.OBJECTIVE-SEE.ORG
18 JulCtera Raises $80 Million From PSG EquityCtera has received $80 million in primary and secondary funding from private equity firm PSG Equity. The post Ctera Raises $80 Million From PSG Equity appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulMacOS Users Beware Of Weaponized Meeting App From North Korean HackersMeeting apps are often targeted and turned into weapons by hackers as they are largely employed for communication and collaboration, frequently carrying sensitive data and user groups that are wide. Such platforms gain trust among their users as of their pervasiveness as we…GBHACKERS.COM
18 Jul[Dasharo Coreboot] Verified Boot and secure updates - How to do them securely and openly?submitted by boredsquirrel to cybersecurity 1 points | 0 comments https://www.youtube.com/watch?v=GDdwAciTp8YYOUTUBE.COM
18 JulSAP AI Core Vulnerabilities Allowed Service Takeover, Customer Data AccessSAP patches AI Core vulnerabilities allowing attackers to access customer data and take over the service. The post SAP AI Core Vulnerabilities Allowed Service Takeover, Customer Data Access appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulGen AI Spending Slows as Businesses Exercise CautionHigh Implementation Costs and Hallucination Risks Curb AI Investments in 2024 Generative AI has advanced rapidly over the past year, and organizations are recognizing its potential across business functions. But businesses have now taken a cautious stance regarding gen AI adoptio…DATABREACHTODAY.CO.UK
18 JulCriminal Gang Physically Assaulting People for Their CryptocurrencyThis is pretty horrific : …a group of men behind a violent crime spree designed to compel victims to hand over access to their cryptocurrency savings. That announcement and the criminal complaint laying out charges against St. Felix focused largely on a single theft of cryp…SCHNEIER.COM
18 JulWhat is Emotional Intelligence? Understanding Diverse Learning Styles with Jessica Hoffman!In this clip from Business Security Weekly, Jessica Hoffman, Deputy CISO at the City of Philadelphia, explains the essence of emotional intelligence and the importance of recognizing diverse learning styles in leadership. Learn how these concepts can enhance communication, foster…YOUTUBE.COM
18 JulMicrosoft-Signed Chinese Adware Opens the Door to Kernel Privilegessubmitted by BrikoX to cybersecurity 1 points | 0 comments https://www.darkreading.com/threat-intelligence/microsoft-signed-chinese-adware-opens-the-door-to-kernel-privileges An official stamp of approval might give the impression that a purported "HotPage" adtech tool …DARKREADING.COM
18 JulChinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant WarnsChinese government-backed hacking team caught breaking into organizations in shipping, logistics and automotive sectors in Europe and Asia. The post Chinese Hacking Group APT41 Infiltrates Global Shipping and Tech Sectors, Mandiant Warns appeared first on SecurityWeek .SECURITYWEEK.COM
18 JulCyber Fail: Attack of the Zombie APIs!Also: Election Security Dysfunction; the Legacy of Government-Backed Spyware Welcome to "Cyber Fail," where our experts uncover fails so we can all strengthen our defenses. Today, we take on the looming menace of zombie APIs, the terrors of election dysfunction and the scary lega…DATABREACHTODAY.CO.UK
18 Jul[Dasharo Coreboot] Intel's HBFA-FL fuzzer for UEFI CI-CD fuzzingsubmitted by boredsquirrel to cybersecurity 1 points | 0 comments https://www.youtube.com/watch?v=6FkGw8wz21kYOUTUBE.COM
18 JulHow did the FBI access the trump rally shooters phone?submitted by yokonzo to cybersecurity 2 points | 0 comments https://www.xda-developers.com/fbi-gain-access-trump-rally-shooter-phone/?user=bWlrZWF3ZXNvbWUzQGdtYWlsLmNvbQ&lctg=460c8af606d1876987d97a4a94224d36b1d50f51a3dc2956018d5d51f9ee7af8XDA-DEVELOPERS.COM
18 JulDOD Testing Generative AI Tools to Enhance ContractingPentagon Testing Generative AI to Streamline, Enhance Contracting Operations An official from the U.S. Department of Defense Chief Digital and Artificial Intelligence Office said Thursday the department is testing generative AI tools to help streamline its contracting and managem…DATABREACHTODAY.CO.UK
18 JulJudge Dismisses Most SEC Fraud Claims Against SolarWindsFeds Can Proceed With Claims About Falsehoods in SolarWinds Security Statement A judge Thursday dismissed most of the claims federal regulators made against SolarWinds related to allegedly misleading investors about the company's cybersecurity practices and risks. The SEC can pro…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 4[−]
18 JulIntimate image abuse – Kaspersky new survey indicates alarming trends | Kaspersky official blogThe Naked Truth – how attitudes are changing toward intimate image abuse.KASPERSKY.COM
18 JulAlert: HotPage Adware Disguised as Ad Blocker Installs Malicious Kernel DriverCybersecurity researchers have shed light on an adware module that purports to block ads and malicious websites, while stealthily offloading a kernel driver component that grants attackers the ability to run arbitrary code with elevated permissions on Windows hosts. The malware, …THEHACKERNEWS.COM
18 JulRevolver Rabbit gang registers 500,000 domains for malware campaignsA cybercriminal gang that researchers track as Revolver Rabbit has registered more than 500,000 domain names for infostealer campaigns that target Windows and macOS systems. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 18[−]
18 JulIsrael’s startup scene shows reslience despite nine months of warWhen the war between Israel and Hamas broke out last October, we examined its potential impact on the tech ecosystems in Israel and Palestine. Nine months later, the prevailing sentiment in Israel, based on my conversation with founders and investors, is that the conflict has mad…TECHCRUNCH.COM
18 JulMeta Halts AI Use in Brazil Following Data Protection Authority's BanMeta has suspended the use of generative artificial intelligence (GenAI) in Brazil after the country's data protection authority issued a preliminary ban objecting to its new privacy policy. The development was first reported by news agency Reuters. The company said it has decide…THEHACKERNEWS.COM
18 JulGlobal Police Swoop on Black Axe Cybercrime SyndicateInterpol's global operation, Jackal III, targeted West African cybercrime groups, including Black Axe. It resulted in 300 arrests across 21 countries, seizure of $3 million, identification of 400 suspects, and the blocking of over 720 bank accounts.INFOSECURITY-MAGAZINE.COM
18 JulCoast Guard Battles Cyberthreats Amid Industry ResistanceA recent report reveals that private sector stakeholders in the marine transportation system are hesitating to utilize critical cybersecurity services offered by the U.S. Coast Guard.BANKINFOSECURITY.COM
18 JulMost GitHub Actions Workflows are Insecure in Some WayA report by Legit Security highlights concerns around the security posture of the GitHub Actions marketplace, with most custom Actions lacking verification and being maintained by one developer.HELPNETSECURITY.COM
18 JulWeak Credentials Behind Nearly Half of All Cloud-Based Attacks, Research FindsCredential mismanagement was the leading cause of cloud-based attacks in the first half of 2024, according to a Google Cloud report. Weak credentials and misconfigurations were responsible for 75% of network intrusions during this period.CYBERSECURITYDIVE.COM
18 JulRussia-linked FIN7 Hackers Sell Their Security Evasion Tool to Other Groups on DarknetRussia-linked cybercriminal group FIN7 sells its security evasion tool, AvNeutralizer, to other criminal gangs on darknet forums. The tool helps hackers bypass threat detection systems on victims' devices.THERECORD.MEDIA
18 JulAutomated Threats Pose Increasing Risk to the Travel IndustryAs the travel industry rebounds post-pandemic, it is increasingly targeted by automated threats, with the sector experiencing nearly 21% of all bot attack requests last year. That’s according to research from Imperva, a Thales company. In their 2024 Bad Bot Report, Imperva finds …THEHACKERNEWS.COM
18 JulMicrosoft: Windows 11 23H2 now available for all eligible devicesMicrosoft says the Windows 11 2023 Update has entered the broad deployment phase and is now available to all seekers on eligible systems. [...]BLEEPINGCOMPUTER.COM
18 JulAppSec Webinar: How to Turn Developers into Security ChampionsLet's face it: AppSec and developers often feel like they're on opposing teams. You're battling endless vulnerabilities while they just want to ship code. Sound familiar? It's a common challenge, but there is a solution. Ever wish they proactively cared about security? The answer…THEHACKERNEWS.COM
18 JulHackers could create traffic jams thanks to flaw in traffic light controller, researcher saysA security researcher found that some traffic lights controllers are exposed on the internet and could be manipulated. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
18 JulFirms Skip Security Reviews of Updates About Half the TimeA recent poll of tech managers from CrowdStrike's 2024 State of Application Security Report revealed that cybersecurity workers only review major updates to software applications 54% of the time.THEREGISTER.COM
18 JulMicrosoft fixes bug blocking Windows 11 Photos from startingMicrosoft has fixed a known issue preventing the Microsoft Photos app from starting on some Windows 11 22H2 and 23H2 systems. [...]BLEEPINGCOMPUTER.COM
18 JulUSPS shared customer postal addresses with Meta, LinkedIn and SnapThe U.S. Postal Service confirmed it took action to "remediate" the data sharing following a TechCrunch investigation. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
18 JulTop 'Privacy by Design' Considerations for Medical DevicesThe interconnectedness of medical devices, which generate data that can be distributed to multiple systems that are often managed by different policies, presents privacy concerns that device manufacturers must address, said Adam Hesse, CEO of Full Spectrum.DATABREACHTODAY.CO.UK
18 JulHotPage: Story of a signed, vulnerable, ad-injecting driverA study of a sophisticated Chinese browser injector that leaves more doors open!WELIVESECURITY.COM