108Articles
8Categories
2024-07-24Date
🚨 CISA KEV 1[−]
24 Jul KEVCISA Adds Twilio Authy and IE Flaws to Exploited Vulnerabilities ListThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added two security flaws to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerabilities are listed below - CVE-2012-4792 (CVSS score: 9.3) - Microsoft Interne…THEHACKERNEWS.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 8[−]
24 JulMicrosoft Defender Flaw Exploited to Deliver ACR, Lumma, and Meduza StealersA now-patched security flaw in the Microsoft Defender SmartScreen has been exploited as part of a new campaign designed to deliver information stealers such as ACR Stealer, Lumma, and Meduza. Fortinet FortiGuard Labs said it detected the stealer campaign targeting Spain, Thailand…THEHACKERNEWS.COM
24 JulInfostealer Campaign Exploits Microsoft Windows SmartScreen Flaw to Spread PayloadsA security flaw in Microsoft Defender SmartScreen was exploited to deliver ACR, Lumma, and Meduza stealers in a recent campaign. The campaign targeted Spain, Thailand, and the U.S. by using booby-trapped files exploiting CVE-2024-21412.FORTINET.COM
24 Jul KEVMicrosoft Defender SmartScreen bug actively used in stealer campaignAn actively exploited security bypass vulnerability in Microsoft Defender SmartScreen is being exploited in a new stealer campaign to download malicious executables on the victim’s system. Tracked as CVE-2024-21412, the vulnerability allows threat actors to bypass SmartScreen war…CSOONLINE.COM
24 JulTwo Vulnerabilities Discovered in LangChain GenAI FrameworkResearchers identified two vulnerabilities in LangChain, an open-source generative AI framework with over 81,000 stars on GitHub: CVE-2023-46229 and CVE-2023-44467 (LangChain Experimental).UNIT42.PALOALTONETWORKS.COM
24 JulOrganizations Warned of Exploited Twilio Authy VulnerabilityCISA warns of the in-the-wild exploitation of CVE-2024-39891, a Twilio Authy bug leading to the disclosure of phone number data. The post Organizations Warned of Exploited Twilio Authy Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulISC Releases Security Advisories for BIND 9The Internet Systems Consortium (ISC) released security advisories to address vulnerabilities affecting multiple versions of ISC’s Berkeley Internet Name Domain (BIND) 9. A cyber threat actor could exploit one of these vulnerabilities to cause a denial-of-service condition. …CISA.GOV
24 JulDocker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018The vulnerability, tagged as CVE-2024-41110 with a CVSS severity score of 10/10, was originally found and fixed in 2018. The post Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018 appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulNorth Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear ProgramsSummary The U.S. Federal Bureau of Investigation (FBI) and the following authoring partners are releasing this Cybersecurity Advisory to highlight cyber espionage activity associated with the Democratic People’s Republic of Korea (DPRK)’s Reconnaissance General Bureau (RGB) 3rd B…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 19[−]
24 JulPort shadow: Yet another VPN weakness ripe for exploitA new flaw in virtual private networks (VPNs) was reported last week at a security conference . The flaw, discovered by a collection of academic and industry researchers, has to do with a vulnerability in how VPN servers assign TCP/IP communication ports and use this to attack th…CSOONLINE.COM
24 JulCountdown to DORA: How CISOs can prepare for EU’s Digital Operational Resilience ActThe finance sector has been among cybercriminals’ favourite targets. Nearly one-fifth of all recent cyberattacks were aimed at financial firms, with banks being the most vulnerable of all, according to the International Monetary Fund . To help financial institutions stay resilien…CSOONLINE.COM
24 JulThe Power and Peril of RMM ToolsRMM tools have become essential in managing remote devices, but they also pose risks if exploited by threat actors. Attackers can gain remote access to devices, exfiltrate data, and remain undetected.VARONIS.COM
24 JulCrowdStrike meltdown highlights IT’s weakest link: Too much administrationThe most unsafe part of our technology ecosystem isn’t the number of unpatched systems we have. Nor is it shadow IT , whether it’s homegrown software or the burgeoning bring-your-own-SaaS ecosystem. The shared responsibility model, and the impossible complexity of safely configur…CSOONLINE.COM
24 JulHow to Reduce SaaS Spend and Risk Without Impacting ProductivityThere is one simple driver behind the modern explosion in SaaS adoption: productivity. We have reached an era where purpose-built tools exist for almost every aspect of modern business and it’s incredibly easy (and tempting) for your workforce to adopt these tools without going t…THEHACKERNEWS.COM
24 JulHackers leak documents stolen from Pentagon contractor LeidosHackers have breached the systems of Leidos Holdings, a major contractor for the US government, and leaked stolen internal documents online, Bloomberg News reported . The leak is believed to be tied to a previously disclosed breach of a Diligent Corp system that Leidos used. Virg…CSOONLINE.COM
24 JulGoogle's reCAPTCHAv2 is just labor exploitation, boffins saysubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2024/07/24/googles_recaptchav2_labor/THEREGISTER.COM
24 Jul KEVCrowdStrike blames testing shortcomings for Windows meltdownCrowdStrike has blamed a hole in its testing software for the release of a defective content update that hobbled millions of Windows computers worldwide on Friday, July 19. The hole caused CrowdStrike’s Content Validator tool to miss a flaw in an update for the security vendor’s …CSOONLINE.COM
24 JulTelegram App Flaw Exploited to Spread Malware Hidden in VideosA zero-day security flaw in Telegram's mobile app for Android called EvilVideo made it possible for attackers to malicious files disguised as harmless-looking videos. The exploit appeared for sale for an unknown price in an underground forum on June 6, 2024, ESET said. Following …THEHACKERNEWS.COM
24 JulBlueStacks Emulator For Windows Flaw Exposes Millions Of Gamers To AttackA significant vulnerability was discovered in BlueStacks, the world’s fastest Android emulator and cloud gaming platform. When used against a victim, this gives attackers complete access to the machine. The American technology business BlueStacks, also known as BlueStacks b…GBHACKERS.COM
24 JulChinese Hackers Using Shared Framework To Create Multi-Platform MalwareShared frameworks are often prone to hackers’ abuses as they have been built into various applications, which offer a range of systems that can be exploited at the same time. By attacking shared framework vulnerabilities, hackers can get into many apps and information store…GBHACKERS.COM
24 JulRobot Dog Internet JammerSupposedly the DHS has these : The robot, called “NEO,” is a modified version of the “Quadruped Unmanned Ground Vehicle” (Q-UGV) sold to law enforcement by a company called Ghost Robotics. Benjamine Huffman, the director of DHS’s Federal Law Enforcem…SCHNEIER.COM
24 JulCrowdStrike offers a $10 apology gift card to say sorry for outageCrowdStrike, the cybersecurity firm that crashed millions of computers with a botched update all over the world last week, is offering its partners a $10 Uber Eats gift card as an apology, according to several people who say they received the gift card, as well as a source who al…TECHCRUNCH.COM
24 JulDocker fixes critical 5-year old authentication bypass flawDocker has issued security updates to address a critical vulnerability impacting certain versions of Docker Engine that could allow an attacker to bypass authorization plugins (AuthZ) under certain circumstances. [...]BLEEPINGCOMPUTER.COM
24 JulZest Security Aims to Resolve, Not Just Mitigate Cloud RisksZest Security emerged from stealth with $5 million funding and an AI-powered platform that resolves the root source of risk in the cloud. The post Zest Security Aims to Resolve, Not Just Mitigate Cloud Risks appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulGuide your SOC Leaders to More Engineering Wisdom for Detection(Part 9)This blog series was written jointly with Amine Besson, Principal Cyber Engineer, Behemoth CyberDefence and one more anonymous collaborator. In this blog (#9 in the series), we will cover a few higher level elements for moving to detection engineering approaches Detection Enginee…MEDIUM.COM
24 JulA Tumblr User Talks Crowdstrikesubmitted by homesweethomeMrL to cybersecurity 0 points | 0 comments Source idk if people on tumblr know about this but a cybersecurity software called crowdstrike just did what is probably the single biggest fuck up in any sector in the past 10 years. it’s monumentally bad. lite…SH.ITJUST.WORKS
24 JulUS CISA Urges BIND 9 Users to Address New DNS ExploitsNewly Discovered Security Flaws Can Trigger DNS Performance Issues, CISA Says The Internet Systems Consortium and the U.S. Cybersecurity and Infrastructure Security Agency are urging administrators to apply updates to the widely used solution called Berkeley Internet Name Domain …DATABREACHTODAY.CO.UK
24 JulVulnerabilities in LangChain Gen AI Could Prompt Data LeakOpen-Source Company Issues Patches After Being Alerted by Palo Alto A widely used generative artificial intelligence framework is vulnerable to a prompt injunction flaw that could enable sensitive data to leak. Security researchers at Palo Alto Networks uncovered two arbitrary co…DATABREACHTODAY.CO.UK
📋 SECURITY BULLETINS 1[−]
24 JulWindows July security updates send PCs into BitLocker recoveryMicrosoft warned that some Windows devices will boot into BitLocker recovery after installing the July 2024 Windows security updates. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 22[−]
24 JulBreachForums v1 database leak is an OPSEC test for hackersThe leak comes from a backup allegedly sold by Conor Fitzpatrick, also known as Pompompurin. Following the seizure of RaidForums in 2022, Fitzpatrick launched BreachForums v1, which was later seized by the FBI and linked to his arrest.BLEEPINGCOMPUTER.COM
24 JulVerizon to Pay $16 Million in TracFone Data Breach SettlementVerizon Communications has agreed to pay a $16 million settlement to the FCC for three data breaches at TracFone Wireless, a subsidiary acquired in 2021. TracFone provides services under brands like Total by Verizon Wireless and Straight Talk.BLEEPINGCOMPUTER.COM
24 JulPentagon IT Service Provider Hacked: U.S. Government Secrets ExposedA massive breach in cybersecurity has occurred at Leidos Holdings Inc., which is a key provider of information technology services to the United States government. Hackers have released internal information, which has raised significant worries regarding the safety of sensitive g…GBHACKERS.COM
24 JulCrowdStrike Explains Friday Incident Crashing Millions of Windows DevicesCybersecurity firm CrowdStrike on Wednesday blamed an issue in its validation system for causing millions of Windows devices to crash as part of a widespread outage late last week. "On Friday, July 19, 2024 at 04:09 UTC, as part of regular operations, CrowdStrike released a conte…THEHACKERNEWS.COM
24 JulBreachForums v1 database leak is an OPSEC test for hackersThe entire database for the notorious BreachForums v1 hacking forum was released on Telegram Tuesday night, exposing a treasure trove of data, including members' information, private messages, cryptocurrency addresses, and every post on the forum. [...]BLEEPINGCOMPUTER.COM
24 JulPatchwork Hackers Target Bhutan with Advanced Brute Ratel C4 ToolThe threat actor known as Patchwork has been linked to a cyber attack targeting entities with ties to Bhutan to deliver the Brute Ratel C4 framework and an updated version of a backdoor called PGoShell. The development marks the first time the adversary has been observed using th…THEHACKERNEWS.COM
24 JulChinese Espionage Group Upgrades Malware Arsenal to Target All Major Operating SystemsThe new Macma macOS backdoor is capable of data exfiltration through functionalities like device fingerprinting, keylogging, audio capture, and file uploading and downloading.INFOSECURITY-MAGAZINE.COM
24 JulCrowdStrike Explains Why Bad Update Was Not Properly TestedCrowdStrike has shared a preliminary incident review, explaining why the update that caused global chaos was not caught by testing. The post CrowdStrike Explains Why Bad Update Was Not Properly Tested appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulDazz snaps up $50M for AI-based, automated cloud security remediationCybersecurity has become a white-hot topic in the world of technology. Not only are data breaches continuing unabated; but security companies themselves are very much in the spotlight as a result – with one of the fastest-growing, Wiz, the object of a (now abandoned) $23 billion …TECHCRUNCH.COM
24 JulUnique malware identified in Panchan botnet with advanced persistence techniquessubmitted by kid to cybersecurity 2 points | 0 comments https://industrialcyber.co/ransomware/unique-malware-identified-in-panchan-botnet-with-advanced-persistence-techniques/INDUSTRIALCYBER.CO
24 JulDeFi Crypto Exchange dYdX v3 Website Hacked in DNS Hijacking AttackdYdX's decentralized finance (DeFi) exchange v3 website was hacked in a DNS hijack attack, compromising the platform. Users were warned not to visit or interact with the hacked website and to avoid withdrawing assets until the platform was safe.BLEEPINGCOMPUTER.COM
24 JulVerizon Subsidiary Settles With FCC for $16M Over Three Data BreachesVerizon subsidiary TracFone Wireless settles for $16 million with the FCC over three old data breaches. The post Verizon Subsidiary Settles With FCC for $16M Over Three Data Breaches appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulCrisis communication: What NOT to doRead the 1st blog in this series, Cybersecurity crisis communication: What to do When an organization experiences a cyberattack, tensions are high, customers are concerned and the business is typically not operating at full capacity. Every move you make at this point makes a…SECURITYINTELLIGENCE.COM
24 JulBreachForumsV1 Database Leaked: Private messages, Emails & IP ExposedBreachForumsV1, a notorious online platform for facilitating illegal activities, has reportedly suffered a massive data breach. According to a recent post on X by DailyDarkWeb, the database of BreachForumsV1 has been leaked, exposing a treasure trove of sensitive information. The…GBHACKERS.COM
24 JulBeware Of Malicious Python Packages That Steal Users Sensitive DataMalicious Python packages uploaded by “dsfsdfds” to PyPI infiltrated user systems by exfiltrating sensitive data to a Telegram bot likely linked to Iraqi cybercriminals.  Active since 2022 and containing more than 90,000 Arabic messages, it has functioned as both…GBHACKERS.COM
24 JulCrowdStrike: 'Content Validator' bug let faulty update pass checksCrowdStrike released a Preliminary Post Incident Review (PIR) on the faulty Falcon update explaining that a bug allowed bad data to pass its Content Validator and cause millions of Windows systems to crash on July 19, 2024. [...]BLEEPINGCOMPUTER.COM
24 JulShadowRoot Ransomware Attacking Organizations With Weaponized PDF DocumentsA rudimentary ransomware targets Turkish businesses through phishing emails with “.ru” domain sender addresses. Clicking a PDF attachment’s link triggers downloading a malicious executable from a compromised GitHub account.  The executable encrypts crucial …GBHACKERS.COM
24 Jul57,000 Patients Impacted by Michigan Medicine Data BreachMichigan Medicine is notifying roughly 57,000 individuals of a data breach impacting their personal and health information. The post 57,000 Patients Impacted by Michigan Medicine Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulIs GhostEmperor Back? Sygnia Finds Clues in Recent Cyber IncidentSygnia discovered what it believes to be a variant of the GhostEmperor infection chain leading to the Demodex rootkit – which was first seen and described in 2021. The post Is GhostEmperor Back? Sygnia Finds Clues in Recent Cyber Incident appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulHow to Lead When a Crisis OccursTips on Managing Public Relations in the Face of a Cyber Incident Cybersecurity incidents are not just technical problems. They are also major public relations challenges. Effective IT and cybersecurity leadership during a crisis can significantly affect your company's reputation…DATABREACHTODAY.CO.UK
24 JulDaixin Gang Threatening to Leak 10 Million Ambulance RecordsData Theft Is Latest Cyberattack on an Emergency Medical Services Provider Ransomware group Daixin is threatening to leak sensitive medical information of 10 million patients on the dark web. The group claims to have stolen the data in an attack on Louisiana-based Acadian Ambulan…DATABREACHTODAY.CO.UK
24 JulA Hacker ‘Ghost’ Network Is Quietly Spreading Malware on GitHubsubmitted by BrikoX to cybersecurity 1 points | 0 comments https://www.wired.com/story/github-malware-spreading-network-stargazer-goblin/ Cybersecurity researchers have spotted a 3,000-account network on GitHub that is manipulating the platform and spreading ransomware and info s…WIRED.COM
🕵️ THREAT INTELLIGENCE 33[−]
24 JulMost Airlines Except One Are Recovering From the CrowdStrike Tech Outage. The Feds Have NoticedDelta has canceled more than 5,500 flights since the outage started early Friday morning. The post Most Airlines Except One Are Recovering From the CrowdStrike Tech Outage. The Feds Have Noticed appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulKnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting MalwareKnowBe4 chief executive Stu Sjouwerman: “We sent them their Mac workstation, and the moment it was received, it immediately started to load malware." The post KnowBe4 Hires Fake North Korean IT Worker, Catches New Employee Planting Malware appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulISC Stormcast For Wednesday, July 24th, 2024 https://isc.sans.edu/podcastdetail/9066, (Wed, Jul 24th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
24 JulSpanish Police Arrest Three Suspects Linked to Pro-Moscow NoName057(16) HackersSpanish police authorities have arrested three suspects connected to the pro-Russian hacker group NoName057(16), known for conducting DDoS attacks against Ukraine and its allies.THERECORD.MEDIA
24 JulPossible APT28-linked Hackers Target Ukraine’s Scientific InstitutionsAPT28-linked hackers have targeted Ukraine's scientific institutions in a cyber-espionage campaign, believed to have ties to the Kremlin-backed group APT28, also known as Fancy Bear and BlueDelta.THERECORD.MEDIA
24 JulResearchers Detail on How Defenders Eliminate Detection Gaps in AWS EnvironmentsAs enterprises increasingly migrate their workloads to cloud infrastructure, the need for robust security measures becomes more pressing. Unlike traditional data centers, cloud environments offer business agility at a reduced cost, making them attractive targets for cybercriminal…GBHACKERS.COM
24 JulAttackers Can Bypass 'Windows Hello' Strong Authenticationsubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/endpoint-security/goodbye-attackers-can-bypass-windows-hello-strong-authenticationDARKREADING.COM
24 JulCrowdStrike Says Code-Testing Bugs Failed to Prevent OutageCybersecurity Vendor's Preliminary Review Details Problems, Promises Improvements CrowdStrike, in a preliminary report, has blamed internal testing problems for failing to prevent the faulty "rapid content update" that caused worldwide disruption on Friday. The cybersecurity vend…DATABREACHTODAY.CO.UK
24 JulRussia Shifts Cyber Focus to Battlefield Intelligence in UkraineMultiple Russian cyber units are targeting frontline Ukrainian military computers and mobile devices in preparation for a summer offensive. This change reflects Russia's adaptation to the demands of a prolonged war in Ukraine.INFOSECURITY-MAGAZINE.COM
24 JulWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
24 JulVanta Raises $150 Million at $2.45 Billion ValuationVanta has raised $150 million in a Series C funding round and it plans on using the money to fuel expansion and AI innovation. The post Vanta Raises $150 Million at $2.45 Billion Valuation appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulChrome 127 Patches 24 VulnerabilitiesChrome 127 was promoted to the stable channel with patches for 24 vulnerabilities, including 16 reported externally. The post Chrome 127 Patches 24 Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulChinese Daggerfly uses a new version of Macma macOS backdoorsubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/166102/apt/daggerfly-macma-macos-backdoor.htmlSECURITYAFFAIRS.COM
24 JulMalware Campaigns Target Hamster Kombat PlayersThreat actors are targeting Hamster Kombat's 250 million players with fake Android and Windows software that install spyware and malware. The clicker mobile game allows players to earn fictional currency by completing simple tasks.WELIVESECURITY.COM
24 JulGoogle Chrome 127 Released with a fix for 24 Security VulnerabilitiesGoogle has unveiled the latest version of its Chrome browser, Chrome 127, which is now available on the Stable channel. The update, identified as version 127.0.6533.72/73 for Windows and Mac, and 127.0.6533.72 for Linux, will be rolled out over the coming days and weeks. This rel…GBHACKERS.COM
24 Jul250 Million Hamster Kombat Players Targeted Via Android And Windows MalwareDespite having simple gameplay, the new Telegram clicker game Hamster Kombat has become very well-liked among gamers who use cryptocurrencies because of the potential rewards of a brand-new cryptocoin that the developers intend to launch. The game’s success has spawned nume…GBHACKERS.COM
24 JulSiemens Patches Power Grid Product Flaw Allowing Backdoor DeploymentSiemens has released out-of-band updates to patch two potentially serious vulnerabilities in products used in energy supply. The post Siemens Patches Power Grid Product Flaw Allowing Backdoor Deployment appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulCyber firm KnowBe4 hired a fake IT worker from North Koreasubmitted by kid to cybersecurity 6 points | 1 comments https://cyberscoop.com/cyber-firm-knowbe4-hired-a-fake-it-worker-from-north-korea/CYBERSCOOP.COM
24 JulCompanies Are Playing Catch-Up to Secure Generative AINetskope Says Firms Are Using Blocking Controls, DLP But Still Face Security Gaps It's been nearly 18 months since ChatGPT paved the way for rapid generative AI adoption, but enterprises are just beginning to implement basic cybersecurity strategies and use blocking controls, DLP…DATABREACHTODAY.CO.UK
24 JulKnowBe4 mistakenly hires North Korean hacker, faces infostealer attackAmerican cybersecurity company KnowBe4 says a person it recently hired as a Principal Software Engineer turned out to be a North Korean state actor who attempted to install information-stealing on its devices. [...]BLEEPINGCOMPUTER.COM
24 JulDazz Scores Hefty $50M Investment for AI-Powered Risk Remediation TechThe new financing brings the total raised by Dazz to $110 million as investors double down on bets in the cloud security remediation space. The post Dazz Scores Hefty $50M Investment for AI-Powered Risk Remediation Tech appeared first on SecurityWeek .SECURITYWEEK.COM
24 JulWhy Chatbots Aren't Always the Answer: Insights from Application Security WeeklyAllie Mellen (@hackerxbella) shares her thoughts on the limitations of chatbots in this clip from the Application Security Weekly podcast. Tune in as she explains why convenience often trumps conversation and the importance of seamless workflows for users. Don't miss her practica…YOUTUBE.COM
24 JulThe Blob of Cybersecurity: Allie Mellen's Take on Industry GroupthinkAllie Mellen (@hackerxbella) discusses the "blob" of cybersecurity and its impact on the industry, drawing parallels to Ben Rhodes' term for the foreign policy establishment. Learn how marketing messages and technical misunderstandings shape the cybersecurity landscape, especiall…YOUTUBE.COM
24 JulUS FTC Investigates Impact of AI-Powered Dynamic PricingAgency Asks Mastercard and 7 Other Firms to Furnish Data Used, Collection Methods The U.S. Federal Trade Commission demanded information from a clutch of firms that advertise their ability to match consumers with prices through AI, dubbing the practice "surveillance pricing." Dig…DATABREACHTODAY.CO.UK
24 JulCongratulations to the Top MSRC 2024 Q2 Security Researchers!Congratulations to all the researchers recognized in this quarter’s [Microsoft Researcher Recognition Program](https://www.microsoft.com/en-us/msrc/researcher-recognition-program) leaderboard! Thank you to everyone for your hard work and continued partnership to secure customers.…MSRC.MICROSOFT.COM
24 JulFBI Encountered Encryption Hurdles in Trump Shooting ProbeFBI Director: Phone Data Shows Shooter 'Became Very Focused on President Trump' A federal investigation into an assassination attempt on Republican presidential nominee Donald Trump encountered "significant technical challenges" due to the shooter's use of encrypted devices and p…DATABREACHTODAY.CO.UK
24 JulEmail Gateway Security Gaps Enable New Malware TacticsStatic Scanning Limitations Usher Malware Onto Corporate Network Phishing hackers have developed a new technique for smuggling malware past secure email gateway defenses, said researchers at Cofense who uncovered a recent info stealer campaign. "I honestly think that it was someo…DATABREACHTODAY.CO.UK
24 JulOver 3,000 GitHub accounts used by malware distribution serviceThreat actors known as 'Stargazer Goblin' have created a malware Distribution-as-a-Service (DaaS) from over 3,000 fake accounts on GitHub that push information-stealing malware. [...]BLEEPINGCOMPUTER.COM
24 JulSenator: Top Banks Only Reimburse 38% of Unauthorized ScamsBank Execs at Senate Hearing Defend Zelle Reimbursements, Payment Fraud Programs During a hearing Tuesday, U.S. Sen. Richard Blumenthal, D-Conn., revealed that Bank of America, JPMorgan Chase and Wells Fargo only reimbursed 38% of customers for unauthorized payments - leaving the…DATABREACHTODAY.CO.UK
24 JulCheck Point Snags Team8's Nadav Zafrir to Replace Gil ShwedCheck Point's 2nd CEO Since 1993 Arrives With Deep CISO Relationships, Sales Acumen Check Point Software tapped the longtime leader of an Israeli cybersecurity incubator to be just the second CEO in the firewall behemoth's 32-year history. The company selected Team8 co-founder an…DATABREACHTODAY.CO.UK
24 JulSmashing Security podcast #382: CrowdStrike, Dark Wire, and the Paris OlympicsComputers blue-screen-of-death around the world! The Paris Olympics is at risk of attack! And the FBI pull off the biggest sting operation in history by running a secret end-to-end encrypted messaging app! All this and much much more is discussed in the latest edition of the R…GRAHAMCLULEY.COM
24 JulZero Trust in the Age of AI: Join our online event to learn how to strengthen your security postureRegister for the “Zero Trust in the Age of AI” webcast to learn more about how our new capabilities in identity and network access and security operations make it easier to implement Zero Trust across your entire environment. The post Zero Trust in the Age of AI: Join our online …MICROSOFT.COM
24 JulBuilding security into the redesigned Chrome downloads experiencePosted by Jasika Bawa, Lily Chen, and Daniel Rubery, Chrome Security Last year, we introduced a redesign of the Chrome downloads experience on desktop to make it easier for users to interact with recent downloads. At the time, we mentioned that the additional space and more flexi…SECURITY.GOOGLEBLOG.COM
🌐 CYBER THREAT LANDSCAPE 6[−]
24 JulCrowdStrike CEO is summoned before the Homeland Security committee. Cyber Security Today for Wednesday, July 24, 2023In this episode of Cybersecurity Today, guest host Jim Love covers major events impacting the cybersecurity world, including CrowdStrike CEO George Kurtz's summons to testify before a U.S. House Committee on Homeland Security following a massive IT outage and a new malware strain…CYBERSECURITYTODAY.LIBSYN.COM
24 Jul"Mouse Logger" Malicious Python Script, (Wed, Jul 24th)Keylogging is a&#;x26;#;xc2;&#;x26;#;xa0;pretty common feature of many malware families because recording the key pressed on a keyboard may reveal a lot of interesting information like usernames, passwords, etc. Back from SA…ISC.SANS.EDU
24 JulFake CrowdStrike Repair Manual Pushes New Infostealer MalwareThe Daolpu malware collects account credentials, browser history, and cookies from Chrome, Edge, Firefox, and other browsers. It is spread through malicious document attachments in phishing emails that contain malicious macros.BLEEPINGCOMPUTER.COM
24 JulParis Wi-Fi Security Study | Kaspersky official blogKaspersky experts investigated the security of public Wi-Fi access points in Paris ahead of the Olympics.KASPERSKY.COM
24 JulHot topics: Can’t-miss sessions at Mandiant’s 2024 mWISE eventNow that the mWISE 2024 session catalog is out, it's time to take a closer look at the topics. Learn more from @mWISEConference about the three hottest tracks in this year's conference. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 18[−]
24 JulChinese ‘Cybercrime Syndicate’ Behind Gambling Sites Advertised at European Sporting EventsInfoblox revealed a Chinese cybercrime syndicate called Vigorish Viper behind illegal online gambling brands advertised at European football stadiums. The group is linked to online gambling and cyber fraud-related human trafficking in Southeast Asia.THERECORD.MEDIA
24 JulGoogle Abandons Plan to Drop Third-Party Cookies in ChromeGoogle has decided to continue supporting third-party cookies, instead proposing a new approach that allows users to opt-in to their Privacy Sandbox. This comes after criticism and regulatory pressure over privacy concerns and competition issues.THEREGISTER.COM
24 JulUnlocking cyber insurance savings to fund MDRRedirecting risk reduction spend from cyber insurance to MDR services is a win-win, resulting in better protection and lower cost coverage.SOPHOS.COM
24 JulAlphabet's Reported $23B Bet on Wiz Fizzles OutAlphabet's planned $23 billion acquisition of cybersecurity firm Wiz has fallen through, leading Wiz to pursue its own path toward an IPO and aiming for $1 billion in annual recurring revenue (ARR).THEREGISTER.COM
24 JulReport: HHS Needs to Beef up Cloud Security and SkillsThe Department of Health and Human Services is facing cloud security issues, with weaknesses in security controls and inventories of cloud systems. Over 30% of their systems are in the cloud, putting them at risk of compromise.BANKINFOSECURITY.COM
24 JulHow a Trust Center Solves Your Security Questionnaire ProblemSecurity questionnaires aren’t just an inconvenience — they’re a recurring problem for security and sales teams. They bleed time from organizations, filling the schedules of professionals with monotonous, automatable work. But what if there were a way to reduce or even altogether…THEHACKERNEWS.COM
24 JulPhilippines to End Online Casinos, Maybe Scams TooThe Philippines has decided to shut down its online gambling industry to tackle illegal activities such as financial scams and human trafficking. President Ferdinand Marcos Jr instructed PAGCOR to cease operations of POGOs by the end of the year.THEREGISTER.COM
24 JulChrome 127 Patches 24 VulnerabilitiesPACKETSTORMSECURITY.COM
24 JulCybersecurity Startup Protexxa Closes $10M Series A RoundProtexxa, a Toronto-based B2B SaaS cybersecurity company founded by Claudette McGowan, has secured $10 million in Series A funding from various investors including Bell Ventures and private investors like Sonia Baxendale and Annette Verschuren.PRIVATECAPITALJOURNAL.COM
24 JulGoogle Chrome now warns about risky password-protected archivesGoogle Chrome now warns when downloading risky password-protected files and provides improved alerts with more information about potentially malicious downloaded files. [...]BLEEPINGCOMPUTER.COM
24 JulMicrosoft fixes bug behind Windows 10 Connected Cache delivery issuesMicrosoft has fixed a known Windows 10 update issue that broke Microsoft Connected Cache (MCC) node discovery on enterprise networks. [...]BLEEPINGCOMPUTER.COM
24 JulGoogle Chrome now asks for passwords to scan protected archivesGoogle Chrome now warns when downloading risky password-protected files and provides improved alerts with more information about potentially malicious downloaded files. [...]BLEEPINGCOMPUTER.COM