79Articles
9Categories
2024-07-31Date
🚨 CISA KEV 1[−]
31 Jul KEVThe Known Exploited Vulnerability catalogue, aka the KEV - Tod Beardsley - BTS #35Gain insights into the CISA KEV straight from one of the folks at CISA, Tod Beardsley. Learn how KEV was created, where the data comes from, and how you should use it in your environment. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn …YOUTUBE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
31 JulNew Specula Tool Uses Outlook for Remote Code Execution in WindowsTrustedSec released a post-exploitation framework called "Specula", which exploits CVE-2017-11774 to create a custom Outlook Home Page using WebView and execute arbitrary commands on compromised Windows systems.BLEEPINGCOMPUTER.COM
31 JulMultiple SMTP Servers Vulnerable to Spoofing Attacks, Let Hackers Bypass AuthenticationMultiple SMTP servers are vulnerable to spoofing attacks that allow hackers to bypass authentication. Two vulnerabilities, CVE-2024-7208 and CVE-2024-7209, exploit weaknesses in authentication and verification mechanisms provided by SPF and DKIM.CYBERSECURITYNEWS.COM
31 JulIncreased Activity Against Apache OFBiz CVE-2024-32113, (Wed, Jul 31st)As part of its extensive project portfolio, the Apache Foundation supports OFBiz, a Java-based framework for creating ERP (Enterprise Resource Planning) applications [1]. OFBiz appears to be far less prevalent than commercial alternatives [2]. However, just as…ISC.SANS.EDU
31 JulCVE-2024-38182 Microsoft Dynamics 365 Elevation of Privilege VulnerabilityWeak authentication in Microsoft Dynamics 365 allows an unauthenticated attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 16[−]
31 JulThe cost of a data breach continues to escalateThe global average cost of a data breach leaped by 10% compared to the previous reporting period, hitting US$4.88 million, according to the 19 th annual Cost of a Data Breach Report from IBM, which covers the period from March 2023 to February 2024. That’s a whopping 26.4% higher…CSOONLINE.COM
31 JulAdaptive Shield Showcases New ITDR Platform for SaaS at Black Hat USAAdaptive Shield , a leader in SaaS Security, today announced its breakthrough Identity Threat Detection & Response (ITDR) platform for SaaS environments. Since entering this space a year ago, the company has already become a leader in the field, implementing the solution in h…CSOONLINE.COM
31 JulMicrosoft world wide outage: Cybersecurity Today for Wednesday, July 31, 2024Microsoft Cloud Outage, WhatsApp Vulnerability, and AI-Powered Screen Reading In today's episode of Cyber Security Today, host Jim Love covers a significant global outage affecting Microsoft's cloud services, a vulnerability in WhatsApp that allows malicious scripts to run withou…CYBERSECURITYTODAY.LIBSYN.COM
31 JulChrome Security Update: Patch for Critical Flaw that Leads to ExploitationGoogle has rolled out a new security update for its Chrome browser, addressing several critical vulnerabilities. The update on the Stable channel brings Chrome to version 127.0.6533.88/89 for Windows and Mac, and 127.0.6533.88 for Linux. The update will be distributed over the co…GBHACKERS.COM
31 JulBumble and Hinge allowed stalkers to pinpoint users’ locations down to 2 meters, researchers sayBadoo, Bumble, Grindr, happn, Hinge and Hily all had the same vulnerability that could have helped a malicious user to identify the near-exact location of another user, according to the researchers. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
31 Jul7 top cloud security threats — and how to address themFor any enterprise relying on the cloud to accommodate a rapidly growing number of services, ensuring security is a top priority. Yet as most cloud adopters soon realize, migrating to a dynamic cloud environment requires both new and updated security measures to ensure that data …CSOONLINE.COM
31 JulAnimeLeague - 192,134 breached accountsIn July 2024, AnimeLeague disclosed a data breach of their services . The data was posted for sale on a popular hacking forum and included 2 databases covering both event registration records and a dump of the phpBB bulletin board. The impacted data included passwords in various …HAVEIBEENPWNED.COM
31 JulCybercriminals Deploy 100K+ Malware Android Apps to Steal OTP CodesA new malicious campaign has been observed making use of malicious Android apps to steal users' SMS messages since at least February 2022 as part of a large-scale campaign. The malicious apps, spanning over 107,000 unique samples, are designed to intercept one-time passwords (OTP…THEHACKERNEWS.COM
31 JulThe Fault in Our Metrics: Rethinking How We Measure Detection & Response | A Conversation with Allyn Stottsubmitted by ashar to security_cpe 2 points | 0 comments https://cdn.player.fm/images/15086079/series/BfupjN8dARqfAQxV/512.jpg The Fault in Our Metrics: Rethinking How We Measure Detection & Response | A Conversation with Allyn Stott Podcast Redefining CyberSecurity with Sean…INFOSEC.PUB
31 JulNew Specula Tool Turning Outlook as a C2 Server by Leveraging RegistryCybersecurity firm TrustedSec has unveiled a powerful new tool called Specula. It exploits a longstanding vulnerability in Microsoft Outlook to transform it into a Command and Control (C2) server. This revelation has sent shockwaves through the cybersecurity community, highlighti…GBHACKERS.COM
31 JulNearly 7% of Internet Traffic Is MaliciousCloudflare reports on the state of applications security. It claims that 6.8% of Internet traffic is malicious. And that CVEs are exploited as quickly as 22 minutes after proof-of-concepts are published. News articles .SCHNEIER.COM
31 JulSource Code of Phorpiex Botnet with Anti-AV Capabilities on SaleThe notorious Trik botnet, aka Phorpiex, is being sold in antivirus circles, offering advanced capabilities to evade detection. This C++ botnet includes modules such as a crypto clipper, a USB emitter, and a PE infector targeting crypto wallets.CYBERSECURITYNEWS.COM
31 JulMassive OTP-Stealing Android Malware Campaign DiscoveredAndroid malware can intercept and steal OTPs and login credentials, leading to complete account takeovers. The post Massive OTP-Stealing Android Malware Campaign Discovered appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulAs the skills gap grows, organizations should do these 3 things to enhance resiliencyThe cybersecurity industry needs nearly four million professionals to fill vacant roles, and as adversaries advance their tactics, this figure is set to increase. Meanwhile, this skills shortage significantly impacts organizations worldwide, with 70% of IT leaders saying this wid…CSOONLINE.COM
31 JulIntroducing the MSRC Researcher Resource CenterMicrosoft partners with the global security researcher community to surface and report security vulnerabilities to protect all users of Microsoft products and services. Researcher submissions help us address immediate threats while also identifying trends and insights to holistic…MSRC.MICROSOFT.COM
31 JulNorth Korean cyberspies trick developers into installing malware with fake job interviewsAttackers behind a campaign that targets developers from around the world using fake job interviews have expanded their toolset with an information stealing script that also supports Linux and macOS in addition to Windows. As part of the practical portion of the fake interview, d…CSOONLINE.COM
📋 SECURITY BULLETINS 1[−]
31 JulUbuntu Fixes Two OpenVPN VulnerabilitiesUbuntu has fixed two vulnerabilities in OpenVPN, a virtual private network software. These vulnerabilities could keep the closing session active or lead to denial of service. Canonical released security updates for affected Ubuntu releases.TUXCARE.COM
📢 SECURITY ADVISORIES 5[−]
31 JulChina takes steps to implement digital ID initiativeThe focus of China’s proposed Digital Identity proposal revolves around three key items: minimization of data sharing, user rights, and legal compliance, with data security being the fulcrum, an industry analyst said today. Late last week, Xinhua, the government news agency of th…CSOONLINE.COM
31 JulBlack Hat Fireside Chat: How ‘enterprise browsers’ help to shrink exposures, boost efficienciesWeb browser security certainly hasn’t been lacking over the past 25 years. Related: Island valued at $3.5 billion Advancements have included everything from sandboxing and web applications firewalls (WAFs,) early on, to secure web gateways (SWGs) and Virtual Desktop Infrastructur…LASTWATCHDOG.COM
31 JulCISA and FBI: DDoS attacks won’t impact US election integrity​CISA and the FBI said today that Distributed Denial of Service (DDoS) attacks targeting election infrastructure will, at most, hinder public access to information but will have no impact on the integrity or security of the 2024 U.S. general election processes. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 16[−]
31 JulIBM: Cost of a Breach Reaches Nearly $5 Million, With Healthcare Being Hit the HardestBreaches impacted 17 industries across 16 countries and regions, with costs related to detecting breaches, notifying victims, post-breach response efforts, and lost business.THERECORD.MEDIA
31 JulResearchers Study Evolution of Ransomware Gang UNC4393’s Campaigns After Qakbot TakedownInitially relying on Qakbot botnet infections, UNC4393 now uses custom malware and diverse access techniques after the crackdown on Qakbot. They have quick reconnaissance and encryption objectives, with a median time of 42 hours to ransomware.THECYBEREXPRESS.COM
31 JulCompany Paid Record-Breaking $75 Million to Ransomware Group: ReportZscaler is aware of a company that paid a record-breaking $75 million ransom to the Dark Angels ransomware group. The post Company Paid Record-Breaking $75 Million to Ransomware Group: Report appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulChinese Hackers Target Japanese Firms with LODEINFO and NOOPDOOR MalwareJapanese organizations are the target of a Chinese nation-state threat actor that leverages malware families like LODEINFO and NOOPDOOR to harvest sensitive information from compromised hosts while stealthily remaining under the radar in some cases for a time period ranging from …THEHACKERNEWS.COM
31 JulHottest selling product on the darknet: Hacked GenAI accountsCybercriminals looking to abuse the power of generative AI to build phishing campaigns and sophisticated malware can now purchase easy access to them from underground marketplaces as large numbers of threat actors are putting stolen GenAI credentials up for sale every day. Hacker…CSOONLINE.COM
31 JulResearchers Uncover Largest Ever Ransomware Payment of $75msubmitted by kid to cybersecurity 2 points | 0 comments https://www.infosecurity-magazine.com/news/researchers-largest-ransomware/INFOSECURITY-MAGAZINE.COM
31 JulPR vs cybersecurity teams: Handling disagreements in a crisisCheck out our first two articles in this series, Cybersecurity crisis communication: What to do and Crisis communication: What NOT to do. When a cyber incident happens inside an organization, everyone in the company has a stake in how to approach remediation. The problem is that …SECURITYINTELLIGENCE.COM
31 JulCity of Columbus Says Data Compromised in Ransomware AttackThe City of Columbus is investigating the scope of a data breach resulting from a thwarted ransomware attack. The post City of Columbus Says Data Compromised in Ransomware Attack appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulCrowdStrike Faces Lawsuits From Customers, InvestorsCrowdStrike is facing lawsuits from investors and customers following the incident that caused massive global outages. The post CrowdStrike Faces Lawsuits From Customers, Investors appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulWorld leading silver producer Fresnillo discloses cyberattack​Fresnillo PLC, the world's largest silver producer and a top global producer of gold, copper, and zinc, said attackers gained access to data stored on its systems during a recent cyberattack. [...]BLEEPINGCOMPUTER.COM
31 JulCost of Data Breach in 2024: $4.88 Million, Says Latest IBM StudyThe average cost of a data breach jumped to $4.88 million from $4.45 million in 2023, a 10% spike. The post Cost of Data Breach in 2024: $4.88 Million, Says Latest IBM Study appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulThe First Half of 2024 Results in More Than 1 Billion Data Breach VictimsNew data shows that cyber attacks have resulted in double the number of data breaches in 2024 than throughout all of 2023.KNOWBE4.COM
31 JulRansomware Attack Hits OneBlood Blood Bank, Disrupts Medical OperationsOneBlood, a non-profit blood bank serving more than 300 U.S. hospitals, has been hit by a disruptive ransomware attack. The post Ransomware Attack Hits OneBlood Blood Bank, Disrupts Medical Operations appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulOneBlood's virtual machines encrypted in ransomware attackOneBlood, a large not-for-profit blood center that serves hospitals and patients in the United States, is dealing with an IT systems outage caused by a ransomware attack. [...]BLEEPINGCOMPUTER.COM
31 JulThe cyberthreat that drives businesses towards cyber risk insuranceMany smaller organizations are turning to cyber risk insurance, both to protect against the cost of a cyber incident and to use the extensive post-incident services that insurers provideWELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 18[−]
31 JulISC Stormcast For Wednesday, July 31st, 2024 https://isc.sans.edu/podcastdetail/9076, (Wed, Jul 31st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
31 JulMeta Agrees to $1.4B Settlement With Texas in Privacy Lawsuit Over Facial RecognitionMeta has agreed to a $1.4 billion settlement with Texas in a privacy lawsuit over a facial recognition feature. The post Meta Agrees to $1.4B Settlement With Texas in Privacy Lawsuit Over Facial Recognition appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulCyber Espionage Group XDSpy Targets Companies in Russia and MoldovaCompanies in Russia and Moldova have been the target of a phishing campaign orchestrated by a little-known cyber espionage group known as XDSpy. The findings come from cybersecurity firm F.A.C.C.T., which said the infection chains lead to the deployment of a malware called DSDown…THEHACKERNEWS.COM
31 JulDigiCert Revoking Many Certificates Due to Verification IssueDigiCert is immediately revoking many certificates due to a domain validation issue, which could cause disruption to sites, apps and services. The post DigiCert Revoking Many Certificates Due to Verification Issue appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulSenate Passes Bill to Protect Kids Online and Make Tech Companies Accountable for Harmful ContentThe US Senate has passed a bill to protect kids online and make tech companies accountable for harmful content. The post Senate Passes Bill to Protect Kids Online and Make Tech Companies Accountable for Harmful Content appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulMeta paid a $1.4 Billion Settlement for the Unauthorized Capture of Personal Biometric DataTexas Attorney General Ken Paxton has secured a $1.4 billion settlement with Meta Platforms Inc. (formerly known as Facebook) over the unauthorized capture and use of millions of Texans’ personal biometric data. This settlement marks the largest privacy settlement ever obta…GBHACKERS.COM
31 Jul KEVKnowBe4 Named a Leader in the Summer 2024 G2 Grid Report for Security Awareness TrainingWe are thrilled to announce that KnowBe4 has been named a leader in the latest G2 Grid Report that compares   security awareness training   (SAT) vendors based on user reviews, customer satisfaction, popularity and market presence.KNOWBE4.COM
31 JulMicrosoft: DDoS defense error amplified attack on Azure, leading to outagesubmitted by kid to cybersecurity 1 points | 0 comments https://www.helpnetsecurity.com/2024/07/31/microsoft-azure-ddos/HELPNETSECURITY.COM
31 JulCritical security vulnerabilities in Voice over WiFisubmitted by kid to cybersecurity 1 points | 0 comments https://idw-online.de/en/news837652IDW-ONLINE.DE
31 JulChrome 127 Improves Cookie Protection on WindowsGoogle has improved the security of cookies in Chrome on Windows and rolled out a Chrome 127 update to address critical- and high-severity vulnerabilities. The post Chrome 127 Improves Cookie Protection on Windows appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulMicrosoft Says Azure Outage Caused by DDoS Attack ResponseMicrosoft’s response to a DDoS attack on Azure amplified the impact of the attack instead of mitigating it, causing outages. The post Microsoft Says Azure Outage Caused by DDoS Attack Response appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulWorld Wide Web Consortium Opposed Google’s Decision on Third-party cookiesThe World Wide Web Consortium (W3C) has strongly opposed Google’s decision to halt the deprecation of third-party cookies. The W3C has updated its Technical Architecture Group (TAG) finding to emphasize the necessity of removing third-party cookies due to their inherent privacy i…GBHACKERS.COM
31 JulNorth Korea-Linked Malware Targets Developers on Windows, Linux, and macOSThe threat actors behind an ongoing malware campaign targeting software developers have demonstrated new malware and tactics, expanding their focus to include Windows, Linux, and macOS systems. The activity cluster, dubbed DEV#POPPER and linked to North Korea, has been found to h…THEHACKERNEWS.COM
31 JulVulnerabilities Enable Attackers to Spoof Emails From 20 Million DomainsVulnerabilities in hosted email services allow attackers to spoof the identity of senders, bypassing security measures. The post Vulnerabilities Enable Attackers to Spoof Emails From 20 Million Domains appeared first on SecurityWeek .SECURITYWEEK.COM
31 JulKey Steps for a Successful Zero Trust JourneyIn this clip from the CISO Stories Podcast, George Finney emphasizes the importance of continuous progress in a Zero Trust journey. Discover the five key steps outlined by John Kindervag's methodology to help IT teams manage and secure their organizations effectively. Don't miss …YOUTUBE.COM
31 JulHalf of Travel-Themed Spam Emails Are ScamsResearchers at Bitdefender have found that half of all travel-themed spam emails contain scams.KNOWBE4.COM
31 JulGoogle ads push fake Google Authenticator site installing malwareGoogle has fallen victim to its own ad platform, allowing threat actors to create fake Google Authenticator ads that push the DeerStealer information-stealing malware. [...]BLEEPINGCOMPUTER.COM
31 JulThe Procurement and Operational Benefits of a Cybersecurity PlatformConsolidating multiple solutions into a unified platform closes security gaps that rise when deploying individual point products to address specific issues. The post The Procurement and Operational Benefits of a Cybersecurity Platform appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
🌐 CYBER THREAT LANDSCAPE 5[−]
31 JulMandrake Spyware Infects 32,000 Devices via Google Play AppsInitially detected in May 2020 by Bitdefender, Mandrake went undetected for four years. In April 2024, Kaspersky identified a new variant hidden in five Google Play apps from 2022 to 2024.INFOSECURITY-MAGAZINE.COM
31 JulCybercriminals Target Polish Businesses with Agent Tesla and Formbook Malware Delivered by ModiLoaderCybercriminals targeted Polish businesses with Agent Tesla and Formbook malware through widespread phishing campaigns in May 2024. Small and medium-sized businesses (SMBs) in Poland, Italy, and Romania have been affected.WELIVESECURITY.COM
31 JulNew Android malware wipes your device after draining bank accountsA new Android malware that researchers call 'BingoMod' can wipe devices after successfully stealing money from the victims' bank accounts using the on-device fraud technique. [...]BLEEPINGCOMPUTER.COM
31 JulDigiCert to delay cert revocations for critical infrastructureDigiCert urges critical infrastructure operators to request a delay if they cannot reissue their certificates, as required by an ongoing certificate mass-revocation process announced on Tuesday. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 13[−]
31 JulMeta Settles for $1.4 Billion with Texas Over Illegal Biometric Data CollectionMeta, the parent company of Facebook, Instagram, and WhatsApp, agreed to a record $1.4 billion settlement with the U.S. state of Texas over allegations that it illegally collected biometric data of millions of users without their permission, marking one of the largest penalties l…THEHACKERNEWS.COM
31 JulReport: 40% of Environments Exposed to Full Take OverThe Blue Report 2024 highlights alarming findings, with 40% of environments vulnerable to total takeover, emphasizing the importance of cybersecurity. Prevention effectiveness has improved to 69%, but detection effectiveness has dropped to 12%.PICUSSECURITY.COM
31 JulHow To Get the Most From Your Security Team’s Email Alert BudgetWe’ll TL;DR the FUDdy introduction: we all know that phishing attacks are on the rise in scale and complexity, that AI is enabling more sophisticated attacks that evade traditional defenses, and the never-ending cybersecurity talent gap means we’re all struggling to keep security…THEHACKERNEWS.COM
31 JulDon’t Let Your Domain Name Become a “Sitting Duck”More than a million domain names -- including many registered by Fortune 100 firms and brand protection companies -- are vulnerable to takeover by cybercriminals thanks to authentication weaknesses at a number of large web hosting providers and domain registrars, new research fin…KREBSONSECURITY.COM
31 JulMicrosoft says massive Azure outage was caused by DDoS attackMicrosoft confirmed today that a nine-hour outage on Tuesday that took down and disrupted multiple Microsoft 365 and Azure services worldwide was triggered by a distributed denial-of-service (DDoS) attack. [...]BLEEPINGCOMPUTER.COM
31 JulFraud ring pushes 600+ fake web shops via Facebook adsA malicious fraud campaign dubbed "ERIAKOS" promotes more than 600 fake web shops through Facebook advertisements to steal visitors' personal and financial information. [...]BLEEPINGCOMPUTER.COM
31 JulSpamhaus Is Disappointed With CloudFlarePACKETSTORMSECURITY.COM
31 JulDigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation OversightCertificate authority (CA) DigiCert has warned that it will be revoking a subset of SSL/TLS certificates within 24 hours due to an oversight with how it verified if a digital certificate is issued to the rightful owner of a domain. The company said it will be taking the step of r…THEHACKERNEWS.COM
31 JulPhase-by-phase SIEM implementation | Kaspersky official blogHow to implement a security information and event management (SIEM) system in a medium-sized business.KASPERSKY.COM
31 JulCredit card users get mysterious shopify-charge.com chargesPeople worldwide report seeing mysterious $1 or $0 charges from Shopify-charge.com appearing on their credit card bills, even when they did not attempt to purchase anything. [...]BLEEPINGCOMPUTER.COM