13Articles
6Categories
2024-08-17Date
⚠️ VULNERABILITY DISCLOSURE 2[−]
17 AugWhy Training is Critical to Implementing Cisco HyperShieldThe imminent release of Cisco HyperShield this month marks a pivotal evolution in the cybersecurity landscape. As an “AI-native” security architecture, HyperShield promises to redefine traditional security protocols through its automated proactive cybersecurity measures and AI-dr…CSOONLINE.COM
17 AugCyber Security Today - Week In Review: The challenge of Deep Fakes and moreIn this special edition of Cybersecurity Today, your deepfake host Jim Love dives into the world of cybersecurity with new guests Marcel Gagné, an open-source guru, and Andréanne Bergeron, the director of research at GoSecure. The panel, including regular David Shipley, discusses…CYBERSECURITYTODAY.LIBSYN.COM
📢 SECURITY ADVISORIES 1[−]
17 AugCISA Warns Critical Vulnerabilities in Vonets WiFi Bridge Devices, No Patch AvailableThese vulnerabilities could allow attackers to execute arbitrary code, disclose sensitive information, or disrupt device functionality, posing a significant threat to industrial and commercial networks relying on these devices.SECURITYONLINE.INFO
🔥 INCIDENT REPORTING 2[−]
17 AugHow the ransomware attack at Change Healthcare went down: A timelineA hack on UnitedHealth-owned tech giant Change Healthcare likely stands as one of the biggest data breaches of U.S. medical data in history. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
17 AugNew Mad Liberator gang uses fake Windows update screen to hide data theftA new data extortion group tracked as Mad Liberator is targeting AnyDesk users and runs a fake Microsoft Windows update screen to distract while exfiltrating data from the target device. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 1[−]
17 AugNews alert: Implementing AI-powered ‘Cisco HyperShield’ requires proper cybersecurity trainingCary, NC, Aug. 16, 2024, CyberNewsWire — The imminent release of Cisco HyperShield this month marks a pivotal evolution in the cybersecurity landscape. As an “AI-native” security architecture, HyperShield promises to redefine traditional security protocols throu…LASTWATCHDOG.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
17 AugA Deep Dive Into a New ValleyRAT Campaign Targeting Chinese SpeakersThe malware masquerades as legitimate applications like Microsoft Office and creates an empty file to lure users. It also checks for virtual machines and uses sleep obfuscation to evade memory scanners.FORTINET.COM
17 AugGoogle Pixel Devices Shipped with Vulnerable App, Leaving Millions at RiskGoogle Pixel devices shipped globally since September 2017 were found to contain a pre-installed app called Showcase.apk, leaving them vulnerable to potential attacks and malware infections.THEHACKERNEWS.COM
17 AugAzure domains and Google abused to spread disinformation and malwareA clever disinformation campaign engages several Microsoft Azure and OVH cloud subdomains as well as Google search to promote malware and spam sites. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 4[−]
17 AugPrestaShop GTAG Websocket SkimmerA recent investigation uncovered a credit card skimmer using a web socket connection to steal credit card details from an infected PrestaShop website. Attackers use web sockets for obfuscation, making it difficult to analyze traffic.SUCURI.NET
17 AugServer-Side Template Injection: Transforming Web Applications from Assets to Liabilities - Check Point ResearchServer-Side Template Injection (SSTI) vulnerabilities are a growing concern in web applications, allowing attackers to inject malicious code into templates and gain control over servers.RESEARCH.CHECKPOINT.COM
17 AugOpenAI Blocks Iranian Influence Operation Using ChatGPT for U.S. Election PropagandaOpenAI on Friday said it banned a set of accounts linked to what it said was an Iranian covert influence operation that leveraged ChatGPT to generate content that, among other things, focused on the upcoming U.S. presidential election. "This week we identified and took down a clu…THEHACKERNEWS.COM
17 AugDozens of Google Products Targeted by Scammers via Malicious Search AdsScammers have been targeting dozens of Google products through malicious search ads. They impersonated Google's product line and used Looker Studio to lock up Windows and Mac users' browsers.MALWAREBYTES.COM