186Articles
9Categories
2024-08-13Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 92[−]
13 AugPostgreSQL Vulnerability Hackers Execute Arbitrary SQL FunctionsA critical vulnerability identified as CVE-2024-7348 has been discovered in PostgreSQL, enabling attackers to execute arbitrary SQL functions. This vulnerability in the pg_dump utility poses a significant security risk, especially when executed by superusers. CVE-2024-7348 –…GBHACKERS.COM
13 AugFreeBSD Releases Urgent Patch for High-Severity OpenSSH VulnerabilityFreeBSD has issued an urgent patch for a high-severity vulnerability in OpenSSH that could allow attackers to remotely execute arbitrary code with elevated privileges. The flaw, identified as CVE-2024-7589, has a CVSS score of 7.4 out of 10.THEHACKERNEWS.COM
13 AugCVE-2024-38108 Azure Stack Hub Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38161 Windows Mobile Broadband Driver Remote Code Execution VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2024, but the CVE was inadvertently omitted from the July 2024 Security Updates. This is an informational change only. Customers who have already installed the July 2024 updates do not need to tak…MSRC.MICROSOFT.COM
13 AugCVE-2024-38168 .NET and Visual Studio Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38172 Microsoft Excel Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38178 Scripting Engine Memory Corruption VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38184 Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2024, but the CVE was inadvertently omitted from the July 2024 Security Updates. This is an informational change only. Customers who have already installed the July 2024 updates do not need to tak…MSRC.MICROSOFT.COM
13 AugCVE-2024-38191 Kernel Streaming Service Driver Elevation of Privilege VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2024, but the CVE was inadvertently omitted from the July 2024 Security Updates. This is an informational change only. Customers who have already installed the July 2024 updates do not need to tak…MSRC.MICROSOFT.COM
13 AugCVE-2024-38197 Microsoft Teams for iOS Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38201 Azure Stack Hub Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38213 Windows Mark of the Web Security Feature Bypass VulnerabilityInformation published. This CVE was addressed by updates that were released in June 2024, but the CVE was inadvertently omitted from the June 2024 Security Updates. This is an informational change only. Customers who have already installed the June 2024 updates do not need to tak…MSRC.MICROSOFT.COM
13 AugCVE-2024-38063 Windows TCP/IP Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38106 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-29995 Windows Kerberos Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38117 NTFS Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38127 Windows Hyper-V Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38133 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38148 Windows Secure Channel Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38151 Windows Kernel Information Disclosure VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38152 Windows OLE Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38153 Windows Kernel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38157 Azure IoT SDK Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38158 Azure IoT SDK Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38165 Windows Compressed Folder Tampering VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2024, but the CVE was inadvertently omitted from the July 2024 Security Updates. This is an informational change only. Customers who have already installed the July 2024 updates do not need to tak…MSRC.MICROSOFT.COM
13 AugCVE-2024-38170 Microsoft Excel Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38173 Microsoft Outlook Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38177 Windows App Installer Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38185 Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2024, but the CVE was inadvertently omitted from the July 2024 Security Updates. This is an informational change only. Customers who have already installed the July 2024 updates do not need to tak…MSRC.MICROSOFT.COM
13 AugCVE-2024-38186 Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2024, but the CVE was inadvertently omitted from the July 2024 Security Updates. This is an informational change only. Customers who have already installed the July 2024 updates do not need to tak…MSRC.MICROSOFT.COM
13 AugCVE-2024-38187 Windows Kernel-Mode Driver Elevation of Privilege VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2024, but the CVE was inadvertently omitted from the July 2024 Security Updates. This is an informational change only. Customers who have already installed the July 2024 updates do not need to tak…MSRC.MICROSOFT.COM
13 AugCVE-2024-38189 Microsoft Project Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38195 Azure CycleCloud Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugCVE-2024-38109 Azure Health Bot Elevation of Privilege VulnerabilityAn authenticated attacker can exploit an Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Health Bot to elevate privileges over a network.MSRC.MICROSOFT.COM
13 AugCVE-2024-37968 Windows DNS Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
13 AugMicrosoft August 2024 Patch Tuesday, (Tue, Aug 13th)This month we got patches for 186 vulnerabilities. Of these, 9 are critical, and 9 are zero-days (3 previously disclosed, and 6 are already being exploited). The CVEs CVE-2024-38189 , CVE-2024-38178 , CVE-2024-38193 , CVE-2024-38106 , CVE-2024-38213 , and CVE-2024-381…ISC.SANS.EDU
13 Aug KEVMitre, Microsoft differ on how severe MS Office flaw really isThere is a distinct difference of opinion on the level of harm a newly revealed Microsoft Office vulnerability exposing NT Lan Manager (NTLM) hashes, being tracked as CVE-2024-38200, could potentially cause to organizations. The vulnerability affects multiple 32-bit and 64-bit ve…CSOONLINE.COM
13 AugIvanti Releases Security Updates for Avalanche, Neurons for ITSM, and Virtual Traffic ManagerIvanti released security updates to address multiple vulnerabilities in Ivanti Avalanche, Neurons for ITSM, and Virtual Traffic Manager (vTM).  A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. Ivanti advises users to red…CISA.GOV
13 Aug KEVMicrosoft patches six actively exploited vulnerabilitiesMicrosoft fixed 88 vulnerabilities on Tuesday as part of its monthly patching cycle. Six of those flaws were already being actively exploited in the wild before a patch was available and another four were publicly disclosed, putting the total number of zero-day vulnerabilities co…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 32[−]
13 AugCISOs face uncharted territory in preparing for AI security risksGenerative AI, which has the unique ability to create original content and actions, had its conceptual origins in 1906 when Russian mathematician Andrei Andreevich Markov created a stochastic model of probabilities known as the Markov chain. Markov’s ideas remained mainly theoret…CSOONLINE.COM
13 AugRadar/Dispossessor Ransomware Operation Disrupted by AuthoritiesLaw enforcement agencies in the US, Germany, and the UK have disrupted the Radar/Dispossessor ransomware infrastructure. The post Radar/Dispossessor Ransomware Operation Disrupted by Authorities appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugResearchers Uncover 10 Flaws in Google's File Transfer Tool Quick ShareThe flaws include denial-of-service issues, unauthorized file write bugs, directory traversal, and forced Wi-Fi connections. Google has released an update (v1.0.1724.0) to address these vulnerabilities and is tracking them under two CVE identifiers.THEHACKERNEWS.COM
13 AugAMD Says New Sinkclose CPU Vulnerability Only Affects ‘Seriously Breached Systems’Many AMD CPUs are affected by the new Sinkclose vulnerability, but the chipmaker noted that the flaw is not easy to exploit. The post AMD Says New Sinkclose CPU Vulnerability Only Affects ‘Seriously Breached Systems’ appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugOn the Voynich ManuscriptReally interesting article on the ancient-manuscript scholars who are applying their techniques to the Voynich Manuscript. No one has been able to understand the writing yet, but there are some new understandings: Davis presented her findings at the medieval-studies conference an…SCHNEIER.COM
13 AugScout Suite: Open-Source Cloud Security Auditing ToolScout Suite is an open-source cloud security auditing tool that assesses security in multi-cloud environments. By using cloud vendors' APIs, it gathers configuration data to identify risks efficiently.HELPNETSECURITY.COM
13 AugIndustrial Remote Access Tool Ewon Cosy+ Vulnerable to Root Access AttacksResearchers at SySS GmbH revealed that attackers could exploit vulnerabilities in Ewon Cosy+ to gain elevated access, decrypt encrypted data, and hijack VPN sessions, posing a significant threat to users and industrial infrastructure.THEHACKERNEWS.COM
13 Aug[FREE RESOURCE KIT] 2024 Cybersecurity Awareness Month Kit Now AvailableCyber risks abound, inside and out. Threats to your organization can come in many forms; from a suspicious email with a dodgy attachment to improperly stored sensitive information.KNOWBE4.COM
13 AugBucket Monopoly: Breaching AWS Accounts Through Shadow Resourcessubmitted by kid to cybersecurity 1 points | 0 comments https://www.aquasec.com/blog/bucket-monopoly-breaching-aws-accounts-through-shadow-resources/AQUASEC.COM
13 AugAttackers Abuse Google Drawings to Host Phishing PagesResearchers at Menlo Security warn that a phishing campaign is exploiting Google Drawings to evade security filters.KNOWBE4.COM
13 AugFBI strikes down rumored LockBit rebootThe criminal ransomware group Dispossessor, a suspected rebrand of LockBit, has been disrupted by an international law enforcement operation, according to the FBI. “On August 12, FBI Cleveland announced the disruption of ‘Radar/Dispossessor’ — the criminal ransomware group led by…CSOONLINE.COM
13 AugCryptoScam Strikes Misusing Trump & Musk InterviewScammers have exploited the popularity of former President Donald Trump and tech mogul Elon Musk to deceive unsuspecting victims. According to a recent tweet by Avast Threat Labs, the fraudulent scheme involved hijacking YouTube accounts to broadcast fake interviews, and within j…GBHACKERS.COM
13 AugHow to Prevent Your First AI Data BreachDon't let AI CoPilots be the source of your first data breach. Learn more from Varonis about the challengers of securing your data in the era of gen AI. [...]BLEEPINGCOMPUTER.COM
13 AugGhostWrite: New T-Head CPU Bugs Expose Devices to Unrestricted AttacksA team of researchers from the CISPA Helmholtz Center for Information Security in Germany has disclosed an architectural bug impacting Chinese chip company T-Head's XuanTie C910 and C920 RISC-V CPUs that could allow attackers to gain unrestricted access to susceptible devices. Th…THEHACKERNEWS.COM
13 AugResearchers Uncover Vulnerabilities in AI-Powered Azure Health Bot ServiceCybersecurity researchers have discovered two security flaws in Microsoft's Azure Health Bot Service that, if exploited, could permit a malicious actor to achieve lateral movement within customer environments and access sensitive patient data. The critical issues, now patched by …THEHACKERNEWS.COM
13 AugFocus, Breadth, or Depth: Reduce Vulnerabilities with Less $ - Julian Mihai - CSP #187Managing vulnerabilities is a large, complex problem that can't be completely fixed. And still, many cybersecurity organizations continue with a traditional approach that attempts to address all vulnerabilities, spreading staff too thin and increasing exploitation windows. With a…YOUTUBE.COM
13 AugReducing Supply Chain Risk & What’s lurking in your phone? - Danny Jenkins, Nikos Kiou... - ASW #295In complex software ecosystems, individual application risks are compounded. When it comes to mitigating supply chain risk, identifying backdoors or unintended vulnerabilities that can be exploited in your environment is just as critical as staying current with the latest hacking…YOUTUBE.COM
13 AugIvanti warns of critical vTM auth bypass with public exploit​Today, Ivanti urged customers to patch a critical authentication bypass vulnerability impacting Virtual Traffic Manager (vTM) appliances that can let attackers create rogue administrator accounts. [...]BLEEPINGCOMPUTER.COM
13 Aug3AM ransomware stole data of 464,000 Kootenai Health patientsKootenai Health has disclosed a data breach impacting over 464,000 patients after their personal information was stolen and leaked by the 3AM ransomware operation. [...]BLEEPINGCOMPUTER.COM
13 AugUS Unseals Charges Against Three Eastern Europeans Over Ransomware, MalvertisingMaksim Silnikau was extradited to the US to face charges for roles in the distribution of the Angler exploit kit, malware, and the Ransom Cartel ransomware. The post US Unseals Charges Against Three Eastern Europeans Over Ransomware, Malvertising appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugCISA Releases Ten Industrial Control Systems AdvisoriesCISA released ten Industrial Control Systems (ICS) advisories on August 13, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-226-01 AVEVA SuiteLink Server ICSA-24-226-02 Rockwell Automation AAD…CISA.GOV
13 AugChameleon Malware Poses as CRM AppResearchers at ThreatFabric warn that a phishing campaign is distributing the Chameleon Android malware by impersonating a Customer Relationship Management (CRM) app. The campaign is currently targeting users in Canada and Europe, but may expand to other regions.KNOWBE4.COM
13 Aug KEVMicrosoft August 2024 Patch Tuesday fixes 9 zero-days, 6 exploitedToday is Microsoft's August 2024 Patch Tuesday, which includes security updates for 89 flaws, including six actively exploited and three publicly disclosed zero-days. Microsoft is still working on an update for a tenth publicly disclosed zero-day. [...]BLEEPINGCOMPUTER.COM
13 AugMicrosoft Releases August 2024 Security UpdatesMicrosoft released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply necessary update…CISA.GOV
13 Aug KEVMicrosoft Warns of Six Windows Zero-Days Being Actively ExploitedMicrosoft's security response team pushed out documentation for almost 90 vulnerabilities across Windows and OS components and marked several flaws in the actively exploited category. The post Microsoft Warns of Six Windows Zero-Days Being Actively Exploited appeared first on Sec…SECURITYWEEK.COM
13 AugCritical Patches Issued for Microsoft Products, August 13, 2024Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
13 AugLDLC - 1,266,026 breached accountsIn March 2024, French retailer LDLC disclosed a data breach that impacted customers of their physical stores . The data was previously listed for sale on a popular hacking forum and contained 1.26M unique email addresses along with names, phone numbers and physical addresses.HAVEIBEENPWNED.COM
13 Aug KEVSix 0-Days Lead Microsoft’s August 2024 Patch PushMicrosoft today released updates to fix at least 90 security vulnerabilities in Windows and related software, including a whopping six zero-day flaws that are already being actively exploited by attackers.KREBSONSECURITY.COM
13 AugNew Windows SmartScreen bypass exploited as zero-day since MarchToday, Microsoft revealed that a Mark of the Web security bypass vulnerability exploited by attackers as a zero-day to bypass SmartScreen protection was patched during the June 2024 Patch Tuesday. [...]BLEEPINGCOMPUTER.COM
13 AugWhy scammers want your phone numberYour phone number is more than just a way to contact you – scammers can use it to target you with malicious messages and even exploit it to gain access to your bank account or steal corporate dataWELIVESECURITY.COM
13 AugPrivate AI For All: Our End-To-End Approach to AI Privacy on AndroidPosted by Dave Kleidermacher, VP Engineering, Android Security and Privacy, and Giles Hogben, Senior Director, Privacy Engineering, Android Your smartphone holds a lot of your personal information to help you get things done every day. On Android, we are seamlessly integrating th…SECURITY.GOOGLEBLOG.COM
13 AugPost-Quantum Cryptography: Standards and ProgressPosted by Royal Hansen, VP, Privacy, Safety and Security Engineering, Google, and Phil Venables, VP, TI Security & CISO, Google Cloud The National Institute of Standards and Technology (NIST) just released three finalized standards for post-quantum cryptography (PQC) covering pub…SECURITY.GOOGLEBLOG.COM
📋 SECURITY BULLETINS 4[−]
13 AugWindows 10 KB5041580 update released with 14 fixes, security updatesMicrosoft has released the KB5041580 cumulative update for Windows 10 22H2 and Windows 10 21H2, which includes 14 changes and fixes, including BitLocker fixes and important security updates. [...]BLEEPINGCOMPUTER.COM
13 AugAdobe Calls Attention to Massive Batch of Code Execution FlawsPatch Tuesday: Adobe patches 72 security vulnerabilities and warns that Windows and macOS users are at risk of code execution, memory leaks, and denial-of-service attacks. The post Adobe Calls Attention to Massive Batch of Code Execution Flaws appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugMicrosoft fixes issue that sent PCs into BitLocker recoveryMicrosoft has fixed a known issue causing some Windows devices to boot into BitLocker recovery after installing last month's Windows security updates. [...]BLEEPINGCOMPUTER.COM
13 AugWindows Server August updates fix Microsoft 365 Defender issueThe August 2024 Windows Server updates fix a known issue that breaks multiple Microsoft 365 Defender features after installing last month's security updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 11[−]
13 AugBlack Hat Fireside Chat: Here’s how ‘Active ASPM’ is helping to triage and remediate coding flawsApplication Security Posture Management ( ASPM ) arose a few years ago as a strategy to help software developers and security teams continually improve the security of business applications. Related: Addressing rising cyber compliance pressures At Black Hat USA 2024, … (mor…LASTWATCHDOG.COM
13 AugNIS2: A Catalyst for Cybersecurity Innovation or Just Another Box-Ticking Exercise?The Network and Information Security (NIS) 2 Directive is a major cybersecurity regulation in Europe, with EU Member States having until October 17, 2024, to comply with the increased security standards and reporting requirements.HELPNETSECURITY.COM
13 AugPost-Quantum Cryptography Standards Officially Announced by NIST – a History and ExplanationSecurityWeek speaks to Michael Osborne, CTO of IBM Quantum Safe, for a better understanding of the need for and principles of quantum safe cryptography. The post Post-Quantum Cryptography Standards Officially Announced by NIST – a History and Explanation appeared first on Securit…SECURITYWEEK.COM
13 AugNIST finally settles on quantum-safe crypto standardsAfter years of review, the National Institute of Standards and Technology officially picked the world’s first three post-quantum encryption algorithms as the basis for its post-quantum security strategy : ML-KEM, ML-DSA, and SLH-DSA. NIST first asked cryptographers to develop the…NETWORKWORLD.COM
🔥 INCIDENT REPORTING 18[−]
13 AugFBI Says It Is Investigating After Trump Campaign Said Sensitive Documents Were Hacked by IranThe FBI is investigating allegations that sensitive documents from Donald Trump’s presidential campaign were stolen in a cyber intrusion. The post FBI Says It Is Investigating After Trump Campaign Said Sensitive Documents Were Hacked by Iran appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugDeathGrip Ransomware Expanding Services Using RaaS ServiceA new Ransomware-as-a-Service (RaaS) platform known as DeathGrip has surfaced, offering sophisticated ransomware tools to aspiring cyber criminals. This service is being promoted through Telegram and various underground forums, providing a gateway for individuals with limited tec…GBHACKERS.COM
13 AugUN Approves Cybercrime Treaty Despite Major Tech, Privacy Concernssubmitted by BrikoX to cybersecurity 2 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/un-approves-cybercrime-treaty-despite-major-tech-privacy-concerns The treaty would allow any country to request technology firms to aid in cybercrime investigations a…DARKREADING.COM
13 AugFBI Shuts Down Dispossessor Ransomware Group's Servers Across U.S., U.K., and GermanyThe U.S. Federal Bureau of Investigation (FBI) on Monday announced the disruption of online infrastructure associated with a nascent ransomware group called Dispossessor (aka Radar). The effort saw the dismantling of three U.S. servers, three United Kingdom servers, 18 German ser…THEHACKERNEWS.COM
13 AugAuthorities Seized Dispossessor Ransomware ServersFBI Cleveland announced a significant victory against cybercrime by disrupting “Radar/Dispossessor,” a notorious ransomware group led by the online moniker “Brain.” This operation dismantled three servers in the United States, three in the United Kingdom, …GBHACKERS.COM
13 AugDon’t get Mad, get wiseThe “Mad Liberator” ransomware group leverages social-engineering moves to watch out forSOPHOS.COM
13 AugRansomware Hits Australian Gold Mining Firm Evolution MiningAustralian gold mining company Evolution Mining believes it was able to contain a ransomware attack targeting its IT systems last week. The post Ransomware Hits Australian Gold Mining Firm Evolution Mining appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugElon Musk Says Cyberattack Crashed Site Ahead of Trump Livestream InterviewElon Musk says a cyberattack impacted a livestream interview with US Presidential candidate Donald Trump on the X social media platform. The post Elon Musk Says Cyberattack Crashed Site Ahead of Trump Livestream Interview appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugWhy Hardsec Matters: From Protecting Critical Services to Enhancing ResilienceTraditionally, the focus has been on defending against digital threats such as malware, ransomware, and phishing attacks by detecting them and responding. However, as cyber threats become more sophisticated. There is a growing recognition of the importance of measures that stop n…THEHACKERNEWS.COM
13 AugReport: 74% of Ransomware Victims Were Attacked Multiple Times in a YearDespite implementing cybersecurity measures, many companies are paying multiple ransoms annually, with 78% of targeted organizations paying the ransom, according to a report by Semperis.HELPNETSECURITY.COM
13 AugDonald Trump interview with Elon Musk disrupted by DDoS Cyber Attacksubmitted by kid to cybersecurity -6 points | 2 comments https://www.cybersecurity-insiders.com/donald-trump-interview-with-elon-musk-disrupted-by-ddos-cyber-attack/CYBERSECURITY-INSIDERS.COM
13 AugCost of a data breach 2024: Financial industryAccording to the IBM Cost of a Data Breach 2024 report, the average global breach cost has reached $4.88 million — a significant increase over last year’s $4.45 million and the biggest jump since the pandemic. For financial industry enterprises, costs are even higher.…SECURITYINTELLIGENCE.COM
13 AugRansom Cartel, Reveton ransomware owner arrested, charged in USBelarusian-Ukrainian national Maksim Silnikau was arrested in Spain and extradited to the USA to face charges for creating the Ransom Cartel ransomware operation in 2021 and for running a malvertising operation from 2013 to 2022. [...]BLEEPINGCOMPUTER.COM
13 AugNigerian who hacked Texas retirement fund gets 12 years in prison42-year-old Nigerian national Bamidele Omotosho has been sentenced to 12 years and seven months in prison for his role in a series of cyber scams that resulted in millions of dollars in losses for U.S. citizens. [...]BLEEPINGCOMPUTER.COM
13 AugInside the "3 Billion People" National Public Data BreachPresently sponsored by: SentinelOne: Our agentless Offensive Security Engine automates red-teaming, without the false positives. This blog shows how. I decided to write this post because there's no concise way to explain the nuances of what's being described as one of t…TROYHUNT.COM
13 AugNational Public Data (unverified) - 133,957,569 breached accountsIn April 2024, a large trove of data made headlines as having exposed "3 billion people" due to a breach of the National Public Data background check service . The initial corpus of data released in the breach contained billions of rows of personal information, includin…HAVEIBEENPWNED.COM
13 AugChris Leong - 27,096 breached accountsIn August 2024, the website of Master Chris Leong "a leading Tit Tar practitioner in Malaysia" suffered a data breach . The incident exposed 27k unique email addresses along with names, physical addresses, dates of birth, genders, nationalities and in many cases, links …HAVEIBEENPWNED.COM
🕵️ THREAT INTELLIGENCE 13[−]
13 AugISC Stormcast For Tuesday, August 13th, 2024 https://isc.sans.edu/podcastdetail/9094, (Tue, Aug 13th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
13 AugUnmasking the Overlap Between Golddigger and Gigabud Android MalwareInitially discovered in January 2023 impersonating government entities, Gigabud and Golddigger malware campaigns have overlapped, suggesting the same threat actors behind both.CYBLE.COM
13 AugThreat Actors Hijacking Websites to Deliver .NET-Based MalwareCyber threat operation ClearFake distributes fake antivirus software to trick users into believing their systems are infected, leading to requests for payment or installation of more malware.CYBERSECURITYNEWS.COM
13 Aug35% of exposed API keys still active, posing major security riskssubmitted by kid to cybersecurity 3 points | 0 comments https://www.helpnetsecurity.com/2024/08/13/api-keys-secrets/HELPNETSECURITY.COM
13 AugReframing the ZTNA vs. SASE DebateWhile ZTNA can be deployed independently, it is an integral component of the SASE architecture as well. The post Reframing the ZTNA vs. SASE Debate appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugDARPA Aims to Ditch C Code, Move to Rustsubmitted by BrikoX to cybersecurity 2 points | 0 comments https://www.darkreading.com/application-security/darpa-aims-to-ditch-c-code-move-to-rust The Defense Advanced Research Projects Agency launches TRACTOR program to work with university and industry researchers on creating …DARKREADING.COM
13 AugWhen Appsec Needs to Start Small - Kalyani Pawar - ASW #295Startups and small orgs don't have the luxury of massive budgets and large teams. How do you choose an appsec approach that complements a startup's needs while keeping it secure. Kalyani Pawar shares her experience at different ends of an appsec maturity spectrum. Visit https://w…YOUTUBE.COM
13 AugSAP Patches Critical Vulnerabilities in BusinessObjects, Build AppsSAP has released 25 security notes on August 2024 Security Patch Day, including for critical vulnerabilities in BusinessObjects and Build Apps. The post SAP Patches Critical Vulnerabilities in BusinessObjects, Build Apps appeared first on SecurityWeek .SECURITYWEEK.COM
13 AugAI in Cybersecurity: Attackers vs. Defenders - The Future of LLMsGreg Notch discusses the evolving role of AI in cybersecurity, explaining how generative AI and large language models (LLMs) will initially favor attackers by generating phishing attempts, forging identities, and synthesizing undetectable attacks. However, in the long term, defen…YOUTUBE.COM
13 AugReflecting on KnowBe4's 5th Consecutive TrustRadius Tech Cares AwardFor the fifth year in a row, we've been honored with the TrustRadius Tech Cares Award ! This recognition is a testament to our unwavering commitment to corporate social responsibility (CSR) and the incredible efforts of our team.KNOWBE4.COM
13 AugSummer Lovin' or Summer Scammin'?Summer. The season of sun, sand, and romance scams. As the weather heats up, so does the activity of romance scammers, who prey on the vulnerabilities of those seeking love and companionship.KNOWBE4.COM
13 AugDEFCON Hijinx, AMD, Ukraine, FreeBSD, OpenVPN, the Pwnie Awards, Josh Marpet... - SWN #406DEFCON Hijinx, AMD, Ukraine, FreeBSD, OpenVPN, the Pwnie Awards, Josh Marpet, and more, on this Edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-406YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
13 AugUkraine Warns of New Phishing Campaign Targeting Government ComputersThe Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new phishing campaign that masquerades as the Security Service of Ukraine to distribute malware capable of remote desktop access. The agency is tracking the activity under the name UAC-0198. More than 100 c…THEHACKERNEWS.COM
13 AugBritain and France to Discuss Misuse of Commercial Cyber Intrusion ToolsThe UK and France will discuss the misuse of commercial cyber intrusion tools as part of the Pall Mall Process, aiming to address the irresponsible use of hacking tools like spyware.THERECORD.MEDIA
🎙️ PODCASTS 1[−]
13 AugThe AI Fix #11: AI gods, a robot dentist, and an angry humanIn episode 11 of The AI Fix, OpenAI battles a Shakespearean lawyer, Graham sings an uncanny bluegrass acrostic, Google drops the ball with a terrible AI ad, and Mark wonders why there's no sound on a video of an AI dentist. Graham finds religion with a little help from a man name…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 13[−]
13 AugRogue PyPI Library Solana Users, Steals Blockchain Wallet KeysThe malicious PyPI package, named "solana-py," had 1,122 downloads before being removed. It mimicked the legitimate "solana" package with version numbers 0.34.3, 0.34.4, and 0.34.5.THEHACKERNEWS.COM
13 AugFake X Content Warnings on Ukraine War, Earthquakes Used as ClickbaitScammers are using fake content warnings related to the Ukraine war and earthquakes to lure users into clicking on links that lead to adult sites, malicious browser extensions, and affiliate scams on X.BLEEPINGCOMPUTER.COM
13 AugNew Dark Skippy Attack Let Hackers Steal Secret Keys From Signing DevicesThe "Dark Skippy" method allows hackers to steal Bitcoin hardware wallet keys by embedding secret data into public Bitcoin transactions, which can then be used to extract a person's seed words.CYBERSECURITYNEWS.COM
13 AugKaspersky’s Safe Travel Guide | Kaspersky official blogTravel tips from Kaspersky experts.KASPERSKY.COM
13 AugMisconfigurations and IAM Weaknesses Top Cloud Security ConcernsWhile traditional cloud security issues associated with Cloud Service Providers (CSPs) are decreasing in significance, misconfigurations, IAM weaknesses, and API risks remain critical in cloud computing.HELPNETSECURITY.COM
13 AugUS appeals court rules geofence warrants are unconstitutionalThe U.S. Appeals Court for the Fifth Circuit said geofence search warrants are "categorically prohibited" under the Fourth Amendment. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
13 AugWindows 11 KB5041585 cumulative update released with fixes, new featuresMicrosoft has released the KB5041585 cumulative update for Windows 11 23H2, which includes many improvements and changes, including the ability to directly drag apps from the Pinned section of the Start menu and pin them to the taskbar. [...]BLEEPINGCOMPUTER.COM
13 AugDownload the network observability tools enterprise buyer’s guideFrom the editors of our sister publication Network World, this enterprise buyer’s guide helps network and security IT staff understand what network observability tools can do for their organizations and how to choose the right solution.US.RESOURCES.CSOONLINE.COM
13 AugGoogle: Gemini AI for Android processes sensitive data locallyGoogle says it is taking a privacy-minded approach to the integration of AI features like the Gemini assistant on Android devices, implementing end-to-end protection to secure data in transit while keeping the most sensitive data locally on the device. [...]BLEEPINGCOMPUTER.COM
13 AugCritical SAP flaw allows remote attackers to bypass authenticationSAP has released its security patch package for August 2024, addressing 17 vulnerabilities, including a critical authentication bypass that could allow remote attackers to fully compromise the system. [...]BLEEPINGCOMPUTER.COM
13 AugGoogle says it's focusing on privacy with Gemini AI on AndroidGoogle says it is taking a privacy-minded approach to the integration of AI features like the Gemini assistant on Android devices, implementing end-to-end protection to secure data in transit while keeping the most sensitive data locally on the device. [...]BLEEPINGCOMPUTER.COM