107Articles
9Categories
2024-08-05Date
🚨 CISA KEV 1[−]
5 Aug KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2018-0824 Microsoft COM for Windows Deserialization of Untrusted Data Vulnerability These types of vulnerabilities are frequent attack vectors…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
5 AugCritical Flaw in Rockwell Automation Devices Allows Unauthorized AccessA high-severity security bypass vulnerability has been disclosed in Rockwell Automation ControlLogix 1756 devices that could be exploited to execute common industrial protocol (CIP) programming and configuration commands. The flaw, which is assigned the CVE identifier CVE-2024-62…THEHACKERNEWS.COM
5 AugLeaked Wallpaper Vulnerability Exposes Windows Users to Privilege Escalation AttacksA newly discovered vulnerability in Windows File Explorer has raised alarms within the cybersecurity community. Identified as CVE-2024-38100, this security flaw allows attackers to escalate privileges by exploiting a seemingly innocuous wallpaper feature. CVE-2024-38100 – W…GBHACKERS.COM
5 AugIncreased Botnet Activity Against Apache OFBiz Exploiting CVE-2024-32113The open-source ERP framework OFBiz is being targeted by the Mirai botnet due to a critical directory traversal vulnerability that allows for remote command execution. This vulnerability was patched in May for versions before 18.12.13.ISC.SANS.EDU
5 AugSecurity Bypass Vulnerability Exposed in Rockwell Automation Logix ControllersA vulnerability in Rockwell Automation's Logix controllers, CVE-2024-6242, poses a security risk to industrial automation systems worldwide by allowing unauthorized access to PLCs.THECYBEREXPRESS.COM
5 AugNew Linux kernel cross-cache attack allows arbitrary memory writesResearchers from the Graz University of Technology have discovered a way to convert a limited heap vulnerability in the Linux kernel into a malicious memory writes capability to demonstrate novel software cross-cache attacks. While such vulnerabilities are known to be restricted …CSOONLINE.COM
5 Aug KEVNew critical Apache OFBiz vulnerability patched as older flaw is actively exploitedResearchers warn of a new critical vulnerability in Apache OFBiz, an open-source enterprise resource planning (ERP) system and framework. The flaw potentially allows for remote code execution (RCE) without authentication and was patched shortly after news that another vulnerabili…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 22[−]
5 AugSwitcher’s guide to mesh VPNs: Pros, cons, and how to set up key featuresAs organizations increasingly seek to support and secure more remote network connections, many are rethinking the traditional VPN. Many VPN alternatives exist to help secure remote access — mesh VPNs chief among them. Mesh virtual private networks (VPNs) use a peer-to-peer archit…CSOONLINE.COM
5 AugBeware Of New BingoMod Android Malware Steals Money And Formats Your DeviceThe wide use and the huge user base of Android often lucrative the threat actors. As threat actors often use Android malware to exploit vulnerabilities in the Android operating system. This enables them to perform several illicit activities like stealing sensitive information, tr…GBHACKERS.COM
5 AugNewly Identified BITSLOTH Backdoor Uses Novel C2 Communication ChannelA new Windows backdoor named BITSLOTH has been discovered by cybersecurity researchers. This malware exploits the Background Intelligent Transfer Service (BITS) for stealthy communication, making it difficult to detect.ELASTIC.CO
5 AugThreat Actor Abuses Trial Feature for Cloudflare Tunnels to Deliver RATsHackers are exploiting the free TryCloudflare service to distribute remote access trojans (RATs) like AsyncRAT, GuLoader, and Remcos RAT. This activity was first detected in February and has been linked to campaigns targeting various industries.PROOFPOINT.COM
5 AugNew NSA AI-powered Tool Would Help Industry Optimize Cyber Defense TestingThe Autonomous Penetration Testing platform would replace much of the laborious, manual process of such testing, where organizations use vulnerability scanning tools and other methods to measure the robustness of their cyberdefenses against hackersNEXTGOV.COM
5 AugCisco Investments Backs Anti-Ransomware Firm HalcyonCisco Investments has invested in Halcyon, an anti-ransomware company, to enhance its platform and reduce ransomware risks to zero. The investment amount remains undisclosed, but Halcyon has raised a total of $90 million so far.FINTECH.GLOBAL
5 AugDesign flaw has Microsoft Authenticator overwriting MFA accounts, locking users outWith use of multi-factor authentication rising, end-users can find themselves fiddling with codes and authentication apps frequently throughout their days. For those who rely on Microsoft Authenticator, the experience can go beyond momentary frustration to full-blown panic as the…CSOONLINE.COM
5 AugMirai Botnet Attacking Apache OFBiz Directory Traversal VulnerabilityThe notorious Mirai botnet has been observed exploiting a recently disclosed directory traversal vulnerability in Apache OFBiz. This Java-based framework, supported by the Apache Foundation, is used for creating ERP (Enterprise Resource Planning) applications, which are critical …GBHACKERS.COM
5 AugHackers Abused StackExchange Platform To Deliuver Malicious Python PackageAttackers uploaded malicious Python packages targeting Raydium and Solana users to PyPI, leveraging a StackExchange post to distribute the malware.  The multi-stage malware stole sensitive data, drained cryptocurrency wallets, and established persistent backdoor access, bypa…GBHACKERS.COM
5 AugTech contractor exposes data of 4.6 million US votersA US technology contractor has exposed the data of 4.6 million voters and election documents from multiple counties in Illinois, raising serious concerns about election security and voter privacy. The exposed databases, managed by the technology contractor Platinum Technology Res…CSOONLINE.COM
5 AugHackers Infect Windows With Backdoor Malware Via “Car For Sale” AdFighting Ursa, a Russian APT, has employed a car sales phishing lure to distribute the HeadLace backdoor malware targeting diplomats since March 2024. This strategy mirrors previous campaigns by the group and other Russian threat actors. The attack leveraged public, free infrastr…GBHACKERS.COM
5 AugApache OFBiz Users Warned of New and Exploited VulnerabilitiesOrganizations are being warned of a newly discovered Apache OFBiz vulnerability as exploitation of another recent flaw is observed. The post Apache OFBiz Users Warned of New and Exploited Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
5 AugKazakh Organizations Targeted by 'Bloody Wolf' Cyber AttacksOrganizations in Kazakhstan are the target of a threat activity cluster dubbed Bloody Wolf that delivers a commodity malware called STRRAT (aka Strigoi Master). "The program selling for as little as $80 on underground resources allows the adversaries to take control of corporate …THEHACKERNEWS.COM
5 AugCryptonator Seized for Laundering Ransom Payments, Stolen CryptoThe U.S. and German law enforcement have seized the domain of the Cryptonator crypto wallet platform, indicting its operator, Roman Boss, for money laundering and running an unlicensed money service business.BLEEPINGCOMPUTER.COM
5 AugNew SLUBStick Attack Makes Linux Kernel Vulnerabilities More DangerousA new Linux kernel exploitation technique named SLUBStick makes heap vulnerabilities more dangerous. The post New SLUBStick Attack Makes Linux Kernel Vulnerabilities More Dangerous appeared first on SecurityWeek .SECURITYWEEK.COM
5 AugLinux Kernel Impacted by New SLUBStick Cross-Cache AttackA new Linux Kernel attack called SLUBStick has a 99% success rate in turning a limited heap vulnerability into a powerful memory read-and-write capability, allowing for privilege escalation and container escape.BLEEPINGCOMPUTER.COM
5 AugCritical Vulnerability in Apache OFBiz Requires Immediate Patchingsubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/fla-apache-ofbiz-requires-patching/INFOSECURITY-MAGAZINE.COM
5 AugNorth Korean hackers exploit VPN update flaw to install malwareSouth Korea's National Cyber Security Center (NCSC) warns that state-backed DPRK hackers hijacked flaws in a VPN's software update to deploy malware and breach networks. [...]BLEEPINGCOMPUTER.COM
5 AugWindows Smart App Control, SmartScreen bypass exploited since 2018A design flaw in Windows Smart App Control and SmartScreen that enables attackers to launch programs without triggering security warnings has been under exploitation since at least 2018. [...]BLEEPINGCOMPUTER.COM
5 AugBrand Impersonation of Microsoft Increases 50% in One QuarterThe use of the Microsoft brand in phishing attacks demonstrates both its widespread credibility as well as the continued success of attacks leveraging it.KNOWBE4.COM
5 AugGoogle fixes Android kernel zero-day exploited in targeted attacksAndroid security updates this month patch 46 vulnerabilities, including a high-severity remote code execution (RCE) exploited in targeted attacks. [...]BLEEPINGCOMPUTER.COM
5 AugShoe Zone - 46,140 breached accountsIn June 2024, the UK footwear chain Shoe Zone disclosed a data breach that was subsequently posted for sale on a popular hacking forum . The data included over 100k orders containing names, addresses, partial credit card numbers (card type and last 4 digits), and 46k unique email…HAVEIBEENPWNED.COM
📋 SECURITY BULLETINS 5[−]
5 AugChina-Linked Hackers Compromise ISP to Deploy Malicious Software UpdatesThe China-linked threat actor known as Evasive Panda compromised an unnamed internet service provider (ISP) to push malicious software updates to target companies in mid-2023, highlighting a new level of sophistication associated with the group. Evasive Panda, also known by the n…THEHACKERNEWS.COM
5 AugChinese hacker group StormBamboo successfully hijacked an ISP's automatic software updates with backdoor malware and bad Chrome extensions to breach a downstream targetsubmitted by Alphane_Moon to cybersecurity 1 points | 0 comments https://www.tomshardware.com/tech-industry/cyber-security/chinese-hacker-group-stormbamboo-successfully-hijacked-an-isps-automatic-software-updates-with-backdoor-malware-and-bad-chrome-extensions-to-breach-a-downstr…TOMSHARDWARE.COM
5 AugHackers Hijacked ISP Service Provider To Poison Software Updates⁤Hackers often attack ISP service providers for several illicit purposes. The most significant ones are disrupting internet services, stealing sensitive data, and many more. ⁤Besides this, such compromise also provides hackers with control over a vast number of connected devices,…GBHACKERS.COM
5 AugEvasive Panda Compromises ISP to Distribute Malicious Software UpdatesThe group used DNS poisoning to redirect software update queries to attacker-controlled servers, infecting victims with malware. Volexity detected one attack in Hong Kong, which ceased when the ISP took action.INFORMATIONSECURITYBUZZ.COM
5 AugCrowdStrike Outage Renews Supply Chain Concerns, Federal Officials SayFederal officials have raised concerns about the software supply chain and memory safety vulnerabilities following a global IT outage caused by a faulty CrowdStrike software update.CYBERSECURITYDIVE.COM
📢 SECURITY ADVISORIES 6[−]
5 AugUS Senate Panel Advances Cyber Regulatory Harmonization BillThe Streamlining Federal Cybersecurity Regulations Act, led by senators Gary Peters and James Lankford, would create an interagency group to synchronize U.S. cyber regulatory regimes and establish a pilot program for testing new frameworks.NEXTGOV.COM
5 AugNew Tech, Personnel Will Help CISA with Coming Rush of Cyber Incident ReportsThe CISA is working to comply with the Cyber Incident Reporting for Critical Infrastructure Act of 2022, requiring critical infrastructure providers to report cybersecurity incidents and ransomware attacks within specific timeframes.NEXTGOV.COM
5 AugAustralian Companies Will Soon Need to Report Ransom PaymentsAustralian companies will soon be required to report ransom payments, in line with the upcoming Cyber Security Act in the country. The legislation aims to enhance the response to cyber incidents, similar to CIRCIA in the US.DARKREADING.COM
5 AugThe Loper Bright Decision: How it Impacts Cybersecurity LawThe Loper Bright decision has yielded impactful results: the Supreme Court has overturned forty years of administrative law, leading to potential litigation over the interpretation of ambiguous laws previously decided by federal agencies. This article explores key questions for c…THEHACKERNEWS.COM
5 AugMozilla Follows Google in Distrusting Entrust’s TLS CertificatesMozilla has joined Google in no longer trusting Entrust as a root certificate authority due to compliance failures and inadequate responses. Google was the first to make this decision, citing concerning behaviors from Entrust.THEREGISTER.COM
5 AugUS Senate Confirms First DOD Cyber Policy ChiefThe Senate has confirmed Michael Sulmeyer as the first cyber policy chief at the Defense Department, where he will serve as the assistant secretary of Defense for cyber policy.THERECORD.MEDIA
🔥 INCIDENT REPORTING 14[−]
5 AugRansomware Attack Cost Keytronic Over $17 MillionKeytronic says the recent ransomware attack resulted in expenses and lost revenue totaling more than $17 million. The post Ransomware Attack Cost Keytronic Over $17 Million appeared first on SecurityWeek .SECURITYWEEK.COM
5 AugGermany Summons Chinese Ambassador Over Cyberattack on Cartography AgencyGermany has summoned the Chinese ambassador over a cyberattack by a Beijing-backed threat actor on a cartography agency. The attack, aimed at espionage, was carried out at the end of 2021.THERECORD.MEDIA
5 AugEnhancing Incident Response Readiness with WazuhIncident response is a structured approach to managing and addressing security breaches or cyber-attacks. Security teams must overcome challenges such as timely detection, comprehensive data collection, and coordinated actions to enhance readiness. Improving these areas ensures a…THEHACKERNEWS.COM
5 AugMint-stealer Targeting web browsers, VPN clients & messaging apps to Steal LoginsMint-Stealer is a Malware-as-a-Service tool designed to exfiltrate sensitive data from compromised systems stealthily and targets a broad spectrum of data, including web credentials, cryptocurrency wallet details, gaming credentials, VPN configurations, messaging app data, and FT…GBHACKERS.COM
5 AugHackers directly email customers of immigration firm after damaging cyberattacksubmitted by kid to cybersecurity 1 points | 0 comments https://therecord.media/hackers-email-victims-customers-data-breachTHERECORD.MEDIA
5 AugThreat Actor Claiming Breach of Gregory’s Foods 400Gb DatabaseA threat actor has claimed responsibility for breaching Gregory’s Foods, a well-known supplier of frozen bread, bun, and cookie doughs, among other bakery products. The announcement was made on a dark web forum, where the alleged hacker stated that a 400GB database file fro…GBHACKERS.COM
5 AugSurge in Magniber Ransomware Attacks Impact Home Users WorldwideUnlike other ransomware groups targeting businesses, Magniber focuses on individuals. Victims report their devices getting infected after running software cracks. Ransom demands start at $1,000 and escalate to $5,000 if not paid within three days.BLEEPINGCOMPUTER.COM
5 AugSupply Chain Security Harm Reduction with 3TOFUsubmitted by maltfield to cybersecurity 1 points | 0 comments https://tech.michaelaltfield.net/2024/08/04/3tofu/ 3TOFU: Verifying Unsigned Releases By Michael Altfield License: CC BY-SA 4.0 tech.michaelaltfield.net This article introduces the concept of "3TOFU" -- a har…TECH.MICHAELALTFIELD.NET
5 Aug332 Million Email Addresses Scraped from SOCRadar.io Dumped Onlinesubmitted by kid to cybersecurity 4 points | 0 comments https://hackread.com/332-million-email-addresses-scraped-from-socradar-io/ This incident, which is NOT a data breach , took place in July 2024. The announcement on cybercrime and hacker platform Breach Forums detailed that U…HACKREAD.COM
5 AugSupply Chain Security Harm Reduction with 3TOFUsubmitted by maltfield to netsec 1 points | 0 comments https://tech.michaelaltfield.net/2024/08/04/3tofu/ 3TOFU: Verifying Unsigned Releases By Michael Altfield License: CC BY-SA 4.0 tech.michaelaltfield.net This article introduces the concept of "3TOFU" -- a harm-reduc…LINKS.HACKLIBERTY.ORG
5 AugKeytronic reports losses of over $17 million after ransomware attackElectronic manufacturing services provider Keytronic has revealed that it suffered losses of over $17 million due to a May ransomware attack. [...]BLEEPINGCOMPUTER.COM
5 AugOrganizations Fail to Log 44% of Cyberattacks, Major Exposure Gaps RemainAccording to Picus Security, organizations are failing to detect 44% of cyberattacks, revealing major exposure gaps. 40% of environments tested allowed for attack paths leading to domain admin access.HELPNETSECURITY.COM
5 AugLow-Drama ‘Dark Angels’ Reap Record RansomsA ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. Security experts say the Dark Angels have been around since 2021, but the group doesn't g…KREBSONSECURITY.COM
5 AugRansomware gang targets IT workers with new SharpRhino malwareThe Hunters International ransomware group is targeting IT workers with a new C# remote access trojan (RAT) called SharpRhino to breach corporate networks. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 27[−]
5 AugISC Stormcast For Monday, August 5th, 2024 https://isc.sans.edu/podcastdetail/9082, (Mon, Aug 5th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
5 AugAuthorities Seized Cryptonator Site & Charged the AdminThe IRS-Criminal Investigation, the US Department of Justice (DOJ), and the Federal Bureau of Investigation (FBI), in partnership with the German Federal Criminal Police Office (BKA) and the Attorney General’s Office in Frankfurt, successfully seized the domain of the online cryp…GBHACKERS.COM
5 AugScript obfuscation using multiple instances of the same function, (Mon, Aug 5th)Threat actors like to make detection and analysis of any malicious code they create as difficult as possible – for obvious reasons. There are any number of techniques which they may employ in this area, nevertheless, the one approach, that is common to pretty…ISC.SANS.EDU
5 AugResearchers Details How Hackers Can Steal Passwords via HDMI CablesSecurity researchers have found a new way for hackers to steal sensitive information like passwords by eavesdropping on HDMI cables. This is a worrying development for computer users. Researchers at Universidad de la República in Uruguay discovered that hackers can use artificial…GBHACKERS.COM
5 AugSecurity+ SY0-701 Exam Cram Playlist - 2024 Editionsubmitted by ashar to security_cpe 1 points | 0 comments https://media.licdn.com/dms/image/C5603AQFt1hGP0L0Vkw/profile-displayphoto-shrink_100_100/0/1649030764576?e=1728518400&v=beta&t=VAjzatLaotS0IE5RuFjJsoTOXdEyB5UBABRUG829I8o Security+ SY0-701 Exam Cram Playlist - 2024…INFOSEC.PUB
5 AugJustice Department Sues TikTok, Accusing the Company of Illegally Collecting Children’s DataThe US Justice Department has sued TikTok, accusing the company of illegally collecting children’s data and violating an online privacy law. The post Justice Department Sues TikTok, Accusing the Company of Illegally Collecting Children’s Data appeared first on SecurityWeek …SECURITYWEEK.COM
5 AugFighting Ursa Luring Targets With Car for SaleAPT28, a Russia-linked threat actor (also known as Fighting Ursa, Fancy Bear, and Sofacy), has been identified in a campaign using a car sale phishing lure to deliver the HeadLace Windows backdoor to target diplomats since March 2024.UNIT42.PALOALTONETWORKS.COM
5 AugCritical Infrastructure Group Launches Effort to Aid Federal Agencies’ Cyber DefensesThe Center for Federal Civilian Executive Branch Resilience, launched by the Institute for Critical Infrastructure Technology, aims to enhance standards and procedures for protecting government agencies from cybercriminals and nation-state hackers.NEXTGOV.COM
5 AugRussian Threat Actors Hijacked Over 30,000 Domains in Sitting Ducks AttacksThis attack method takes advantage of vulnerabilities at the registrar level and lax ownership verification at DNS providers. Research has shown that over a million domains could be vulnerable to this type of attack daily.THEREGISTER.COM
5 AugUS Releases Russian Hackers and Spies as Part of Prisoner SwapThe United States, along with Germany and Slovenia, participated in a historic prisoner exchange with Russia, releasing hackers, spies, and an assassin. The swap took place at an airport in Ankara, Turkey.THERECORD.MEDIA
5 AugExodus Underground Market Place Emerging As A Heaven For CybercriminalsThe Exodus Market, a haven for exiled criminals, has grown to become a significant player in the black market economy. The user “ExodusMarket” originally announced Exodus Market for Logs on the Cracked forum on February 10, 2024, after it was formally launched at the …GBHACKERS.COM
5 AugNew Patent Application for Car-to-Car SurveillanceFord has a new patent application for a system where cars monitor each other’s speeds, and then report then to some central authority. Slashdot thread .SCHNEIER.COM
5 AugBeware Of Fake AI Editor Website That Steals Your Login CredentialsHackers often make use of fake AI editor websites for several illicit purposes with malicious intent.  Among their prime activities are deceiving users into providing personal information, downloading malware, making payments for fraudulent services, and many more. Recently,…GBHACKERS.COM
5 AugMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
5 AugChina's APT41 Targets Taiwan Research Institute for Cyber Espionagesubmitted by kid to cybersecurity 5 points | 0 comments https://www.darkreading.com/threat-intelligence/chinas-apt41-targets-taiwan-research-institute-for-cyber-espionageDARKREADING.COM
5 AugThreat Actor Allegedly Claims Leak of SisaCloud DatabaseA threat actor has reportedly claimed responsibility for leaking a database belonging to SisaCloud, Thailand’s School Information System Advance. This alarming news was first reported by DailyDarkWeb on their social media platform, X.com, raising significant concerns about …GBHACKERS.COM
5 AugNew LianSpy Attacking Android Users to Steal Sensitive DataCybersecurity experts have uncovered a sophisticated Android spyware, LianSpy, targeting users to steal sensitive data. This spyware employs advanced evasion techniques, making it a significant threat to Android device users worldwide. How LianSpy Operates LianSpy begins its oper…GBHACKERS.COM
5 AugResearchers Uncover Flaws in Windows Smart App Control and SmartScreenCybersecurity researchers have uncovered design weaknesses in Microsoft's Windows Smart App Control and SmartScreen that could enable threat actors to gain initial access to target environments without raising any warnings. Smart App Control (SAC) is a cloud-powered security feat…THEHACKERNEWS.COM
5 AugAI in the Enterprise: Cutting Through the Hype and Assessing Real RisksThe introduction of AI can bring benefits to the enterprise while not introducing additional risk that is beyond acceptable levels. The post AI in the Enterprise: Cutting Through the Hype and Assessing Real Risks appeared first on SecurityWeek .SECURITYWEEK.COM
5 AugChinese Hackers Deliver Malware via ISP-Level DNS PoisoningChinese group StormBamboo spotted delivering Windows and macOS malware by compromising an ISP and using DNS poisoning. The post Chinese Hackers Deliver Malware via ISP-Level DNS Poisoning appeared first on SecurityWeek .SECURITYWEEK.COM
5 AugFormer NSA Director Paul Nakasone Joins Ballistic Ventures as Strategic AdvisorNakasone will assess the firm’s investments and offer strategic support to portfolio companies in the fight against adversarial advances in the cyber domain. The post Former NSA Director Paul Nakasone Joins Ballistic Ventures as Strategic Advisor appeared first on SecurityWeek .SECURITYWEEK.COM
5 AugBlack Hat Fireside Chat: Token’s wearable MFA solution combines PKI, biometrics — in a ringLAS VEGAS — Humans, unsurprisingly, remain the weak link in cybersecurity. Related: Digital identity best practices We’re gullible – and we can’t get away from relying on usernames and passwords. Steady advances in software and hardware mechanisms to secure identities ̷…LASTWATCHDOG.COM
5 AugCreating a Big Security Culture With a Tiny ButtonWhen it comes to creating a strong cybersecurity culture, one of the most powerful tools we have at our disposal is the Phish Alert Button (PAB).KNOWBE4.COM
5 AugAWS Deploying ‘Mithra’ Neural Network to Predict and Block Malicious DomainsAWS says a massive neural network graph model with 3.5 billion nodes and 48 billion edges is speeding up the prediction and detection of malicious domains. The post AWS Deploying ‘Mithra’ Neural Network to Predict and Block Malicious Domains appeared first on Security…SECURITYWEEK.COM
5 AugSay Easy, Do Hard - Job Search Strategies for CISOs - Part 1 - Merlin Namuth, Brad Rager - BSW #359Inspired by my co-host Jason Albuquerque, this quarter's Say Easy, Do Hard segment is Job Search Strategies for CISOs. In part 1, we discuss the challenges facing the CISO role and it's hiring. As CISOs leave the role, the position is not necessarily being refilled. How will this…YOUTUBE.COM
5 AugSay Easy, Do Hard - Job Search Strategies for CISOs - Part 2 - Merlin Namuth, Brad Rager - BSW #359Inspired by my co-host Jason Albuquerque, this quarter's Say Easy, Do Hard segment is Job Search Strategies for CISOs. In part 2, Jason proposes we blow it all up, while Ben recommends a certification board for CISOs. We have no shortage of suggestions for how to fix the CISO hir…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 7[−]
5 AugNew Android Trojan "BlankBot" Targets Turkish Users' Financial DataCybersecurity researchers have discovered a new Android banking trojan called BlankBot targeting Turkish users with an aim to steal financial information. "BlankBot features a range of malicious capabilities, which include customer injections, keylogging, screen recording and it …THEHACKERNEWS.COM
5 AugNew LianSpy spyware targets Android smartphones | Kaspersky official blogKaspersky experts have discovered new mobile spyware, dubbed LianSpy, which attacks Android users.KASPERSKY.COM
5 AugTech Support Scam Ring Leader Gets Seven Years in Prison, $6M FineA tech support fraud leader was sentenced to seven years in prison for scamming over 6,500 victims and making $6 million. The operation targeted elderly victims in the U.S. and Canada by showing fake malware infections on their computers.BLEEPINGCOMPUTER.COM
5 AugAirlines are Flying Blind on Third-Party RisksAirlines are facing challenges with third-party risks in their supply chain. Recent revelations regarding risks in Boeing's supply chain have emphasized the importance of measuring and mitigating these risks, according to SecurityScorecard.HELPNETSECURITY.COM
5 AugOngoing DEV#POPPER Malware Campaign Expands TargetingThe attackers, posing as interviewers, urge candidates to download a ZIP file containing malware. The campaign has targeted victims in South Korea, North America, Europe, and the Middle East.SCMAGAZINE.COM
5 AugNew BlankBot Android Malware Targets Users' Banking DataBlankBot, which is still in development, has advanced features like screen recording, keylogging, and remote control, posing a significant threat due to its evasion techniques.CYBERINSIDER.COM
5 AugNew LianSpy malware hides by blocking Android security featureA previously undocumented Android malware named 'LightSpy' has been discovered targeting Russian users, posing on phones as an Alipay app or a system service to evade detection. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 19[−]
5 AugIndustry Moves for the week of August 5, 2024 - SecurityWeekExplore industry moves and significant changes in the industry for the week of August 5, 2024. Stay updated with the latest industry trends and shifts.SECURITYWEEK.COM
5 AugNew Discord DDoS Campaign Called Panamorfi Targets Vulnerable Jupyter NotebooksHackers are targeting misconfigured Jupyter Notebooks using a repurposed Minecraft DDoS tool known as mineping. The attack, dubbed Panamorfi, involves utilizing a Java tool to launch a TCP flood DDoS attack against vulnerable Jupyter Notebooks.AQUASEC.COM
5 AugFBI Warns of Scammers Posing as Crypto Exchange EmployeesThese fraudsters contact victims through phone calls or messages, posing as representatives of legitimate crypto exchanges, and create a sense of urgency by claiming security issues or hack attempts on the victims' accounts.BLEEPINGCOMPUTER.COM
5 AugCybersecurity Innovator Clutch Security Nets $8.5m in Funding Led by LightspeedTel Aviv-based cybersecurity firm, Clutch Security, has secured $8.5m in seed funding led by Lightspeed Venture Partners, Merlin Ventures, Cyber Club London, and other investors like Nir Polak, Shlomo Kramer, and Armon Dadgar.FINTECH.GLOBAL
5 AugProtect AI Raises $60M in Series B FinancingProtect AI, a Seattle-based AI and ML security company, raised $60M in Series B funding led by Evolution Equity Partners, with participation from 01 Advisors, StepStone Group, Samsung, and existing investors.FINSMES.COM
5 AugAWS launches Mithra to identify and mitigate malicious domains across its massive systemWhen a company is the size of Amazon, a lot of bad actors will come after it and its customers, which makes defending the network a monster job. Over the years Amazon has developed a number of strategies, from machine learning and monitoring tools to good old-fashioned phone call…TECHCRUNCH.COM
5 AugUpgrading your Sophos Firewall from XG to XGSGet unbeatable savings on your hardware and software purchase.SOPHOS.COM
5 AugCountdown is on: Last chance for discount registration at Mandiant’s mWISE 2024There is only a few days left to get $300 off the standard conference price at mWISE. Learn more from mWise 2024 about how to get the discount and the upcoming cybersecurity sessions. [...]BLEEPINGCOMPUTER.COM
5 AugWhite House Officials Meet with Allies, Industry on Connected Car RisksRepresentatives from various countries and the European Union participated in the meeting, addressing cybersecurity and data risks in connected vehicles. The meeting highlighted the importance of connected cars as a critical part of infrastructure.THERECORD.MEDIA
5 AugUS Sues TikTok for Violating Children Privacy Protection LawsThe lawsuit alleges that TikTok collected personal information from children under 13 without parental consent, failed to delete children-created accounts, and misled parents about data collection.BLEEPINGCOMPUTER.COM
5 AugIsraeli Hacktivist Group Claims it Took Down Iran’s InternetWeRedEvils announced their intention to target Iranian systems on Telegram, claiming their attack was successful in infiltrating Iran's computer systems, stealing data, and causing the outage.THEREGISTER.COM
5 AugMore Legal Records Stolen in 2023 Than Previous 5 Years CombinedThe sensitive nature of legal data makes law firms lucrative targets for hackers, who aim to access valuable information for specific purposes. Despite the costly demands, firms face the dilemma of paying the ransom or risking backlash from clients.DARKREADING.COM
5 AugMicrosoft Bounty Program Year in Review: $16.6M in RewardsWe are excited to announce that this year the Microsoft Bounty Program has awarded $16.6M in bounty awards to 343 security researchers from 55 countries, securing Microsoft customers in partnership with the Microsoft Security Response Center (MSRC). Each year we identify over a t…MSRC.MICROSOFT.COM
5 AugCrowdstrike: Delta Air Lines refused free help to resolve IT outageThe legal spars between Delta Air Lines and CrowdStrike are heating up, with the cybersecurity firm claiming that Delta's extended IT outage was caused by poor disaster recovery plans and the airline refusing to accept free onsite help in restoring Windows devices. [...]BLEEPINGCOMPUTER.COM
5 AugMicrosoft Azure outage takes down services across North America​Microsoft has mitigated an Azure outage that lasted more than two hours and took down multiple services for customers across North and Latin America. [...]BLEEPINGCOMPUTER.COM
5 AugMicrosoft Bounty Program Year in Review: $16.6M in RewardsWe are excited to announce that this year the Microsoft Bounty Program has awarded $16.6M in bounty awards to 343 security researchers from 55 countries, securing Microsoft customers in partnership with the Microsoft Security Response Center (MSRC). Each year we identify over a t…MSRC.MICROSOFT.COM