20Articles
5Categories
2024-07-20Date
⚠️ VULNERABILITY DISCLOSURE 7[−]
20 JulFederal judge greenlights securities fraud charges against SolarWinds and its CISOSecurity firm SolarWinds had good news and bad news this week, as most of the charges in the US Securities and Exchange Commission (SEC) lawsuit, filed in the wake of the 2020 Sunburst cyberattack , were dismissed. However, the charges against both the company and its CISO around…CSOONLINE.COM
20 Jul17-Year-Old Linked to Scattered Spider Cybercrime Syndicate Arrested in U.K.Law enforcement officials in the U.K. have arrested a 17-year-old boy from Walsall who is suspected to be a member of the notorious Scattered Spider cybercrime syndicate. The arrest was made "in connection with a global cyber online crime group which has been targeting large orga…THEHACKERNEWS.COM
20 JulNorth Korean Hackers May Have Attacked Indian Crypto Exchange WazirXIndian crypto exchange WazirX disclosed a loss of virtual assets worth more than $230 million due to a cyber attack linked to North Korea. The attack targeted a multi-signature wallet with six signatories, leading to a breach in security measures.THEREGISTER.COM
20 JulFake Websites, Phishing Surface in Wake CrowdStrike OutageAuthorities Warn About Domains Targeting Victims Seeking to Restore Windows Devices Cybercriminals are exploiting the chaos created by the CrowdStrike outage by launching fake websites and phishing campaigns to trick victims into downloading malware or divulging sensitive informa…DATABREACHTODAY.CO.UK
20 JulMicrosoft says 8.5M Windows devices were affected by CrowdStrike outageAround 8.5 million devices — less than 1 percent Windows machines globally — were affected by the recent CrowdStrike outage, according to a Microsoft blog post by David Weston, the company’s vice president of enterprise and OS security. These are the first real numbers released b…TECHCRUNCH.COM
20 JulCybercriminals Exploit CrowdStrike Update Mishap to Distribute Remcos RAT MalwareCybersecurity firm CrowdStrike, which is facing the heat for causing worldwide IT disruptions by pushing out a flawed update to Windows devices, is now warning that threat actors are exploiting the situation to distribute Remcos RAT to its customers in Latin America under the gui…THEHACKERNEWS.COM
20 JulUnpacking how Alphabet’s rumored Wiz acquisition could affect VCAlphabet, the parent company of Google, is in advanced talks to acquire cybersecurity startup Wiz for $23 billion, the Wall Street Journal reported on Sunday. TechCrunch’s sources heard similar and added that deal discussions could last into next week. If this deal does end…TECHCRUNCH.COM
📋 SECURITY BULLETINS 1[−]
20 JulCrowdStrike Provides Remediation Guidance After Software Update Causes Worldwide IT ChaosCrowdStrike on Saturday provided technical information and remediation guidance to help organizations impacted by the faulty software update that trigged massive IT outages across the globe on Friday. The post CrowdStrike Provides Remediation Guidance After Software Update Causes…SECURITYWEEK.COM
🔥 INCIDENT REPORTING 6[−]
20 JulNew Play Ransomware Linux Variant Targets ESXi Shows Ties With Prolific PumaThe Play ransomware group has introduced a Linux variant that targets ESXi environments. This variant verifies its environment before executing and has been successful in evading security measures.TRENDMICRO.COM
20 JulCrowdStrike CEO apologizes for crashing IT systems around the world, details fixCrowdStrike CEO has apologized to the company’s customers and partners for crashing their Windows systems, and the company has described the error that caused the disaster. “I want to sincerely apologize directly to all of you for today’s outage. All of CrowdStrike understands th…CSOONLINE.COM
20 Jul🔥 Breaking Down the CrowdStrike Incident with Josh Marpet | Security Weekly News 🔐Join us as Josh Marpet & Dr. Doug White dive into the recent CrowdStrike incident and the pitfalls of the 'beta test culture' promoted by big tech. 🚨 How does this affect our interconnected cloud systems? Tune in to find out! #cybersecurity #CrowdStrike #TechNews"YOUTUBE.COM
20 JulBreaking Down the CrowdStrike Incident: Data Flow and Supply Chain Vulnerabilities ExplainedIn this clip from Security Weekly News, Josh Marpet dives deep into the critical aspects of understanding your data flow and identifying supply chain vulnerabilities in light of the recent CrowdStrike incident. Learn how to ensure your systems are resilient and prepared for any d…YOUTUBE.COM
20 JulUK arrests suspected Scattered Spider hacker linked to MGM attackUK police have arrested a 17-year-old boy suspected of being involved in the 2023 MGM Resorts ransomware attack and a member of the Scattered Spider hacking collective. [...]BLEEPINGCOMPUTER.COM
20 JulLife360 - 442,519 breached accountsIn July 2024, data scraped from a misconfigured Life360 API was posted online after being obtained several months earlier . The records included 443k unique email addresses and in most cases, corresponding names and phone numbers (some records were null or obfuscated). Life360 pr…HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 4[−]
20 JulCrowdStrike Says Logic Error Caused Windows BSOD ChaosCrowdStrike says a routine sensor configuration update pushed to Windows OS triggered a logic error that blue-screened computers worldwide. The post CrowdStrike Says Logic Error Caused Windows BSOD Chaos appeared first on SecurityWeek .SECURITYWEEK.COM
20 JulAPT41 Has Arisen From the DUSTAPT41, a China-based hacking group, has targeted organizations in shipping, logistics, media, technology, and automotive sectors in Italy, Spain, Taiwan, Thailand, Turkey, and the U.K. since 2023.CLOUD.GOOGLE.COM
20 JulWhat is the best antivirus for windows 10/11?submitted by ModerateImprovement to cybersecurity 1 points | 2 comments I am under the impression that the best antivirus programs that work without account is Eset and Kaspersky. Is there is a better solutions?SH.ITJUST.WORKS
20 JulA recommended tool for people using Defender.submitted by ModerateImprovement to cybersecurity 2 points | 0 comments https://github.com/AndyFul/ConfigureDefender Based on my last post I saw a lot of people who recommend me windows defender, so I wanted to suggest this tool for people who use it on their systems.GITHUB.COM
📡 INFOSEC NEWS 2[−]
20 JulOilAlpha Malicious Applications Target Humanitarian Aid Groups Operating in YemenThe attacks, linked to a group called OilAlpha, involved malicious mobile apps and targeted CARE International, Norwegian Refugee Council (NRC), and Saudi Arabian King Salman Humanitarian Aid and Relief Centre.RECORDEDFUTURE.COM
20 JulMicrosoft confirms CrowdStrike update also hit Windows 365 PCsMicrosoft says the faulty CrowdStrike Falcon update, which caused widespread outages by crashing Windows systems worldwide, also resulted in Windows 365 Cloud PCs getting stuck in reboot loops, rendering them unusable. [...]BLEEPINGCOMPUTER.COM