108Articles
9Categories
2024-08-22Date
🚨 CISA KEV 1[−]
22 Aug KEVHow do we patch the right things? - PSW #840Every week here on the show we talk about vulnerabilities and exploits. Typically we recommend that organizations remediate these vulnerabilities in some way. But how? And more importantly, which ones? Some tools we have to help us are actually not all that helpful at time, such …YOUTUBE.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 35[−]
22 Aug KEVGoogle Fixes High-Severity Chrome Flaw Actively Exploited in the WildGoogle has rolled out security fixes to address a high-severity security flaw in its Chrome browser that it said has come under active exploitation in the wild. Tracked as CVE-2024-7971, the vulnerability has been described as a type confusion bug in the V8 JavaScript and WebAsse…THEHACKERNEWS.COM
22 AugGitHub Patches Critical Security Flaw in Enterprise Server Granting Admin PrivilegesGitHub has released fixes to address a set of three security flaws impacting its Enterprise Server product, including one critical bug that could be abused to gain site administrator privileges. The most severe of the shortcomings has been assigned the CVE identifier CVE-2024-680…THEHACKERNEWS.COM
22 Aug KEVCritical Flaw in LiteSpeed Cache Plugin Actively Exploited: Over 30,000 Attacks Blocked in 24 HoursThe widely used LiteSpeed Cache plugin for WordPress is being actively exploited through a critical security vulnerability, CVE-2024-28000, with over 30,000 attack attempts blocked in just 24 hours.SECURITYONLINE.INFO
22 AugGoogle Fixes Ninth Chrome Zero-Day Exploited in Attacks This YearGoogle released an emergency security update to fix the ninth zero-day vulnerability exploited in attacks this year. The vulnerability, known as CVE-2024-7971, involves a type confusion weakness in Chrome's V8 JavaScript engine.BLEEPINGCOMPUTER.COM
22 AugIngress-NGINX Annotation Validation Bypass Flaw (CVE-2024-7646) Allows Command InjectionThe vulnerability allows attackers to inject malicious content into annotations, leading to arbitrary command injection and potential access to controller credentials, enabling full access to cluster secrets.ARMOSEC.IO
22 AugCVE-2024-7272: Critical Heap Overflow Vulnerability Discovered in FFmpeg, PoC Publishedsubmitted by kid to cybersecurity 1 points | 0 comments https://securityonline.info/cve-2024-7272-critical-heap-overflow-vulnerability-discovered-in-ffmpeg-poc-published/SECURITYONLINE.INFO
22 AugChinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System ControlDetails have emerged about a China-nexus threat group's exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-day to seize control of the appliance and evade detection. The activity, attributed to Velvet Ant, was observed early this year and …THEHACKERNEWS.COM
22 AugChromium: CVE-2024-7967 Heap buffer overflow in FontsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7969 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7966 Out of bounds memory access in SkiaThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7971 Type confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information. Google is aware that an exploit for CVE-2024-7971 exists in…MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7965 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7968 Use after free in AutofillThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7964 Use after free in PasswordsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7980 Insufficient data validation in InstallerThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-8034 Inappropriate implementation in Custom TabsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-8033 Inappropriate implementation in WebApp InstallsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7981 Inappropriate implementation in ViewsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-8035 Inappropriate implementation in ExtensionsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugCVE-2024-43477 Entra ID Elevation of Privilege VulnerabilityImproper access control in Decentralized Identity Services allows an unathenticated attacker to disable Verifiable ID's on another tenant.MSRC.MICROSOFT.COM
22 AugCVE-2024-38208 Microsoft Edge for Android Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7975 Inappropriate implementation in PermissionsThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7976 Inappropriate implementation in FedCMThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7973 Heap buffer overflow in PDFiumThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7979 Insufficient data validation in InstallerThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7972 Inappropriate implementation in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7978 Insufficient policy enforcement in Data TransferThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7977 Insufficient data validation in InstallerThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugChromium: CVE-2024-7974 Insufficient data validation in V8 APIThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
22 AugCritical Flaw in LiteSpeed Cache WordPress Plugin Exposes Millions of Websites to AttackThe Researcher team has identified and patched a critical privilege escalation vulnerability in the LiteSpeed Cache plugin. This plugin, installed on over 5 million WordPress sites, was susceptible to attacks that could allow unauthenticated users to gain administrative access. T…GBHACKERS.COM
22 AugScanning for CVE-2017-9841 Drops PrecipitouslyLast issue, we observed huge amounts of scanning for the rather old CVE-2017-9841, an RCE in PHPUnit. This time it’s fallen off nearly as sharply. We look into why!F5.COM
22 AugScanning for CVE-2017-9841 Drops PrecipitouslyLast issue, we observed huge amounts of scanning for the rather old CVE-2017-9841, an RCE in PHPUnit. This time it’s fallen off nearly as sharply. We look into why!F5.COM
⚠️ VULNERABILITY DISCLOSURE 28[−]
22 AugNew Malware PG_MEM Targets PostgreSQL Databases for Crypto MiningCybersecurity researchers have unpacked a new malware strain dubbed PG_MEM that's designed to mine cryptocurrency after brute-forcing their way into PostgreSQL database instances. "Brute-force attacks on Postgres involve repeatedly attempting to guess the database credentials unt…THEHACKERNEWS.COM
22 AugCritical Flaw in WordPress LiteSpeed Cache Plugin Allows Hackers Admin AccessCybersecurity researchers have disclosed a critical security flaw in the LiteSpeed Cache plugin for WordPress that could permit unauthenticated users to gain administrator privileges. "The plugin suffers from an unauthenticated privilege escalation vulnerability which allows any …THEHACKERNEWS.COM
22 Aug3 key strategies for mitigating non-human identity risksThe exponential growth of non-human identities (NHI) — service accounts, system accounts, IAM roles, API keys, tokens, secrets, and other forms of credentials not associated with human users — has created a surge in their inclusion in security incidents and data breaches. Here ar…CSOONLINE.COM
22 AugHow MFA gets hacked — and strategies to prevent itThe security benefits of multifactor authentication (MFA) are well-known, yet MFA continues to be poorly, sporadically, and inconsistently implemented, vexing business security managers and their users. Often, MFA users have an extra workflow burden with the additional factors, o…CSOONLINE.COM
22 AugExploitation Expected for Flaw in Caching Plugin Installed on 5M WordPress SitesA critical vulnerability in the Litespeed Cache WordPress plugin can allow attackers to hack websites by creating an admin user. The post Exploitation Expected for Flaw in Caching Plugin Installed on 5M WordPress Sites appeared first on SecurityWeek .SECURITYWEEK.COM
22 Aug KEVGoogle Patches Sixth Exploited Chrome Zero-Day of 2024Chrome 128 was released in the stable channel with patches for 38 vulnerabilities, including a V8 JavaScript engine flaw exploited in the wild. The post Google Patches Sixth Exploited Chrome Zero-Day of 2024 appeared first on SecurityWeek .SECURITYWEEK.COM
22 AugCISA Warns of Exploited Vulnerabilities Impacting Dahua ProductsCISA warns that attackers are exploiting two critical-severity authentication bypass vulnerabilities impacting multiple Dahua products. The post CISA Warns of Exploited Vulnerabilities Impacting Dahua Products appeared first on SecurityWeek .SECURITYWEEK.COM
22 AugCisco Patches High-Severity Vulnerability Reported by NSAA high-severity vulnerability in Cisco Unified CM and Unified CM SME could allow attackers to cause a denial-of-service (DoS) condition. The post Cisco Patches High-Severity Vulnerability Reported by NSA appeared first on SecurityWeek .SECURITYWEEK.COM
22 AugExperts disclosed a critical information-disclosure flaw in Microsoft Copilot Studiosubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/167353/security/copilot-studio-vulnerability.htmlSECURITYAFFAIRS.COM
22 AugMan who hacked Hawaii state registry to forge his own death certificate sentenced to 81 monthssubmitted by c0mmando to netsec 1 points | 0 comments https://therecord.media/man-who-hacked-state-registry-to-forge-death-certificate-sentenced A Kentucky man who hacked into a state registry and faked his own death to avoid paying child support was sentenced on Monday to 81 mon…LINKS.HACKLIBERTY.ORG
22 AugTop US oilfield firm Halliburton hit by cyberattack, source sayssubmitted by borari to cybersecurity 2 points | 0 comments https://www.reuters.com/technology/cybersecurity/top-us-oilfield-firm-halliburton-hit-by-cyberattack-2024-08-21/ HOUSTON, Aug 21 (Reuters) - U.S. oilfield services firm Halliburton (HAL.N), opens new tab on Wednesday was …REUTERS.COM
22 AugBackground-check giant confirms security incident leaked millions of SSNssubmitted by c0mmando to netsec 1 points | 0 comments https://web.archive.org/web/20240822135059/https://therecord.media/social-security-numbers-leak-national-public-data One of the largest companies that conducts background checks confirmed that it is the source of a data breach…LINKS.HACKLIBERTY.ORG
22 AugCISA Releases Five Industrial Control Systems AdvisoriesCISA released five Industrial Control Systems (ICS) advisories on August 22, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-235-01 Rockwell Automation Emulate3D ICSA-24-235-02 Rockwell Automa…CISA.GOV
22 AugSolarWinds fixes hardcoded credentials flaw in Web Help DeskSolarWinds has released a hotfix for a critical Web Help Desk vulnerability that allows attackers to log into unpatched systems using hardcoded credentials. [...]BLEEPINGCOMPUTER.COM
22 AugNew 'ALBeast' Vulnerability Exposes Weakness in AWS Application Load BalancerAs many as 15,000 applications using Amazon Web Services' (AWS) Application Load Balancer (ALB) for authentication are potentially susceptible to a configuration-based issue that could expose them to sidestep access controls and compromise applications. That's according to findin…THEHACKERNEWS.COM
22 AugRoast the security of my appsubmitted by positive_intentions to cybersecurity 2 points | 0 comments im aiming to make a chat app secure as theorhetically possible as a webapp. for transparency its open source. id like the user experience to be as close to possible to a regular chat app. its important to not…INFOSEC.PUB
22 AugOil Services Giant Halliburton Disrupted by Hack AttackCompany Reportedly Instructs Staff to Not Connect to Internal IT Systems Oil services giant Halliburton is reportedly dealing with a disruption tied to a Wednesday hack attack, after which the Houston-based firm advised employees to not connect to any internal IT resources - a si…DATABREACHTODAY.CO.UK
22 AugTwo Years On, Log4Shell Vulnerability Still Being Exploited to Deploy MalwareMore than two years after the Log4j crisis, organizations are still being hit by crypto-currency miners and backdoor scripts. The post Two Years On, Log4Shell Vulnerability Still Being Exploited to Deploy Malware appeared first on SecurityWeek .SECURITYWEEK.COM
22 AugIncident Response by the NumbersUnit 42 helped hundreds of clients assess, respond and recover from attacks, collecting data and compiling our 2024 Incident Response Report. The post Incident Response by the Numbers appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
22 AugChina-Linked ‘Velvet Ant’ Hackers Exploited Zero-Day to Deploy Malware on Cisco Nexus SwitchesHackers gained access to the switch using valid administrator credentials, and then ‘jailbroke’ from the application level into the OS level. The post China-Linked ‘Velvet Ant’ Hackers Exploited Zero-Day to Deploy Malware on Cisco Nexus Switches appeared first on SecurityWe…SECURITYWEEK.COM
22 AugVulnerabilities, Vulnerabilities Everywhere - PSW #840This week: YAVD: Yet Another Vulnerable Driver, why bring your own when one already exists, backdoors in MIFARE Classic, wireless hacking tips, AMD sinkclose vulnerability will keep running, you down with SLDP yea you know me, Phrack!, IoTGoats, Pixel vulnerabilities, leaking var…YOUTUBE.COM
22 AugHardcoded Credential Vulnerability Found in SolarWinds Web Help DeskSolarWinds has issued patches to address a new security flaw in its Web Help Desk (WHD) software that could allow remote unauthenticated users to gain unauthorized access to susceptible instances. "The SolarWinds Web Help Desk (WHD) software is affected by a hardcoded credential …THEHACKERNEWS.COM
22 AugOil Giant Halliburton Confirms Cyber Incident, Details ScarceUS oil giant Halliburton confirmed its computer systems were hit by a cyberattack that affected operations at its Houston offices. The post Oil Giant Halliburton Confirms Cyber Incident, Details Scarce appeared first on SecurityWeek .SECURITYWEEK.COM
22 AugNews alert: INE Security launches initiatives in support of aspiring cybersecurity professionalsCary, NC, Aug. 22, 2024, CyberNewsWire — INE Security , a global cybersecurity training and certification provider, recently launched initiatives with several higher education institutions in an ongoing campaign to invest in the education of aspiring cybersecurity professio…LASTWATCHDOG.COM
22 AugHackers are exploiting critical bug in LiteSpeed Cache pluginHackers have already started to exploit the critical severity vulnerability that affects LiteSpeed Cache, a WordPress plugin used for accelerating response times, a day after technical details become public. [...]BLEEPINGCOMPUTER.COM
22 AugPG_MEM – A Malware Hide in Postgres Processes to Steal DataCybersecurity researchers at Aqua Nautilus have uncovered a new malware named PG_MEM that targets PostgreSQL databases. This sophisticated malware employs brute force attacks to gain access, hides within legitimate PostgreSQL processes, and ultimately steals data while mining cry…GBHACKERS.COM
22 AugLog4j Vulnerability Exploited Again To Deploy Crypto-Mining MalwareRecent attacks exploit the Log4j vulnerability (Log4Shell) by sending obfuscated LDAP requests to trigger malicious script execution, which establishes persistence, gathers system information, and exfiltrates data. To maintain control, multiple backdoors and encrypted communicati…GBHACKERS.COM
22 AugDevelopers Beware! Fake Job Offers from Legitimate Github AddressA new phishing campaign is targeting developers by exploiting GitHub’s legitimate infrastructure. This sophisticated attack involves fake job offers sent from genuine GitHub email addresses, posing a threat to corporate information security, especially for developers with a…GBHACKERS.COM
📋 SECURITY BULLETINS 2[−]
22 AugMicrosoft confirms August updates break Linux boot in dual-boot systemsMicrosoft has confirmed the August 2024 Windows security updates are causing Linux booting issues on dual-boot systems with Secure Boot enabled. [...]BLEEPINGCOMPUTER.COM
22 AugMicrosoft: August updates cause Windows Server boot issues, freezesMicrosoft has confirmed and fixed a known issue causing performance issues, boot problems, and freezes on Windows Server 2019 systems after installing the August 2024 security updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 4[−]
🔥 INCIDENT REPORTING 13[−]
22 AugHow Trend Micro Managed Detection and Response Pressed Pause on a Play Ransomware AttackUsing the Trend Micro Vision One platform, our MDR team was able to quickly identify and contain a Play ransomware intrusion attempt.TRENDMICRO.COM
22 AugQilin ransomware caught stealing credentials stored in Google ChromeFamiliar ransomware develops an appetite for passwords to third-party sitesSOPHOS.COM
22 AugOver 100,000 Oregon Zoo visitors warned that their payment card details were stolen in security breachCybercriminals have succeeded in stealing the payment card information from over 110,000 animal lovers over several months after meddling with Oregon Zoo's online ticket payment system. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
22 AugHacker leaks upcoming episodes of Netflix shows online following security breachA production partner of Netflix has suffered a serious security breach which has resulted in yet-to-be-released episodes of popular shows to be leaked online. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
22 AugU.S. charges Karakurt extortion gang’s “cold case” negotiatorA member of the Russian Karakurt ransomware group has been charged in the U.S. for money laundering, wire fraud, and extortion crimes. [...]BLEEPINGCOMPUTER.COM
22 Aug‘Styx Stealer’ malware developer accidentally exposes personal info to researchers in ‘critical opsec error’submitted by c0mmando to netsec 1 points | 0 comments https://web.archive.org/web/20240822135118/https://therecord.media/styx-stealer-malware-developer-opsec-error-exposes-personal-info A suspected developer of a new malware strain called Styx Stealer made a “significant operatio…LINKS.HACKLIBERTY.ORG
22 AugFlightAware admits passwords, SSNs exposed for over 3 yearssubmitted by c0mmando to netsec 1 points | 0 comments https://web.archive.org/web/20240820231604/https://www.theregister.com/2024/08/20/flightaware_data_exposure/ Popular flight-tracking app FlightAware has admitted that it was exposing a bunch of users’ data for more than three …LINKS.HACKLIBERTY.ORG
22 AugUnderstanding the ‘Morphology’ of Ransomware: A Deeper DiveRansomware isn't just about malware. It's about brands, trust, and the shifting allegiances of cybercriminals. The post Understanding the ‘Morphology’ of Ransomware: A Deeper Dive appeared first on SecurityWeek .SECURITYWEEK.COM
22 AugCryptohack Roundup: Investors Sue BinanceAlso: Malicious Chrome Extension; Mango Markets-SEC Settlement This week, Binance, ASX and Google sued; Solana users targeted; McDonalds' X account hacked; Mango Markets and SEC settled; China updated AML law; sentencing in the HTSB case; arrest in the BitConnect case; Australia …DATABREACHTODAY.CO.UK
22 AugBreach Roundup: Microsoft Fixed Copilot Studio FlawAlso: Microsoft Recall; Microchip Technology Attack; FCC Fine for Deepfake Audio This week, a flaw was found in Microsoft Copilot's Studio, Microsoft announced rollout of the Recall feature, Microchip Technology was hit by a cyberattack, FlightAware data was exposed, Equiniti and…DATABREACHTODAY.CO.UK
22 AugUS Authorities Warn Health Sector of Everest Gang ThreatsGroup Claims a NY Surgical Center and a Nevada Medical Center Among Recent Victims U.S. authorities are warning healthcare sector entities of incidents involving Everest, a Russian-speaking ransomware group and initial access broker, which claims to have stolen sensitive patient …DATABREACHTODAY.CO.UK
22 AugISMG Editors: Social Engineering, Election Defense in AI EraAlso: Dangers of Malicious Code Embedded in ML Models; Is Ransomware in Decline? AI's influence on social engineering and election security has become a focal point at Black Hat. ISMG editors discuss how advanced technologies are making it easier to manipulate people and compromi…DATABREACHTODAY.CO.UK
22 AugQilin ransomware now steals credentials from Chrome browsersThe Qilin ransomware group has been using a new tactic and deploys a custom stealer to steal account credentials stored in Google Chrome browser. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 8[−]
22 AugISC Stormcast For Thursday, August 22nd, 2024 https://isc.sans.edu/podcastdetail/9108, (Thu, Aug 22nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
22 AugAtlassian Patches Vulnerabilities in Bamboo, Confluence, Crowd, JiraAtlassian has released patches for nine high-severity vulnerabilities in Bamboo, Confluence, Crowd, and Jira products. The post Atlassian Patches Vulnerabilities in Bamboo, Confluence, Crowd, Jira appeared first on SecurityWeek .SECURITYWEEK.COM
22 AugCrowdStrike Hits Back at Action1 Following $1 Billion Acquisition RumorsCrowdStrike has denied having any significant acquisition talks with patch management firm Action1 following rumors of a $1 billion deal. The post CrowdStrike Hits Back at Action1 Following $1 Billion Acquisition Rumors appeared first on SecurityWeek .SECURITYWEEK.COM
22 AugGlobal Cyber Agencies Unveil New Logging StandardsLogging Best Practices Guidance Aims to Enhance Global Detection and Response The Australian Signals Directorate's Australian Cyber Security Center released joint guidance with a cohort of international cyber agencies that aims to provide baseline standards for event logging and …DATABREACHTODAY.CO.UK
22 AugNorth Korean Hackers Pivot Away From Public CloudKimsuky, or a Related Group, Deploys XenoRAT Variant A North Korean hacking team hastily pivoted from using publicly available cloud computing storage to its own infrastructure after security researchers unmasked a malware campaign. The group shifted from using cloud service incl…DATABREACHTODAY.CO.UK
22 AugMicrosoft AI Tour: Hear the latest product innovations to elevate your security strategyThe Microsoft AI Tour is coming to a city near you. Join a free, one-day tour event to learn how we are making AI deployment more secure. The post Microsoft AI Tour: Hear the latest product innovations to elevate your security strategy appeared first on Microsoft Security Blog .MICROSOFT.COM
22 AugINE Security Launches Initiatives to Invest in the Education of Aspiring Cybersecurity ProfessionalsINE Security, a global cybersecurity training and certification provider, recently launched initiatives with several higher education institutions in an ongoing campaign to invest in the education of aspiring cybersecurity professionals. “There is a critical skills gap in the ind…GBHACKERS.COM
22 AugINE Security Alert: The Steep Cost of Neglecting Cybersecurity TrainingIn modern business, cybersecurity is not merely a technical concern but a crucial financial safeguard. With cyber threats growing in sophistication and frequency, the financial implications of neglecting cybersecurity training are severe and multifaceted. INE Security, a global l…GBHACKERS.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
22 AugNew NGate Android malware uses NFC chip to steal credit card dataA new Android malware named NGate can steal money from payment cards by relaying to an attacker's device the data read by the near-field communication (NFC) chip. [...]BLEEPINGCOMPUTER.COM
22 AugHardware Backdoor Discovered in RFID Cards Used in Hotels and Offices WorldwideCybersecurity researchers have uncovered a hardware backdoor within a particular model of MIFARE Classic contactless cards that could allow authentication with an unknown key and open hotel rooms and office doors. The attacks have been demonstrated against FM11RF08S, a new varian…THEHACKERNEWS.COM
22 AugNGate Android malware relays NFC traffic to steal cashAndroid malware discovered by ESET Research relays NFC data from victims’ payment cards, via victims’ mobile phones, to the device of a perpetrator waiting at an ATMWELIVESECURITY.COM
📡 INFOSEC NEWS 14[−]
22 AugMegaMedusa, RipperSec’s Public Web DDoS Attack ToolRipperSec, a pro-Palestinian hacktivist group based in Malaysia, has released MegaMedusa, a publicly available Web DDoS attack tool that simplifies launching large-scale DDoS attacks.RADWARE.COM
22 AugThe Facts About Continuous Penetration Testing and Why It’s ImportantWhat is Continuous Attack Surface Penetration Testing or CASPT? Continuous Penetration Testing or Continuous Attack Surface Penetration Testing (CASPT) is an advanced security practice that involves the continuous, automated, and ongoing penetration testing services of an organiz…THEHACKERNEWS.COM
22 AugImprovements to our SIEM in Q2 2024 | Kaspersky official blogDetection of techniques for disabling or modifying a local firewall, and other enhancements to the Kaspersky Unified Monitoring and Analysis Platform SIEMKASPERSKY.COM
22 AugEcovacs says it will fix bugs that can be abused to spy on robot ownersAfter saying users "do not need to worry excessively" about a series of security flaws, Ecovacs said it will — in fact — roll out fixes. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
22 AugOpenAI Scans for Honeypots. Artificially Malicious? Action Abuse?, (Thu, Aug 22nd)For a whille now, I have seen scans that contain the pattern "%%target%%" in the URL. For example, today this particular URL is popular: ISC.SANS.EDU
22 AugConfidence in GenAI: The Zero Trust ApproachEnterprises have gone all-in on GenAI, but the more they depend on AI models, the more risks they face. Trend Vision One™ – Zero Trust Secure Access (ZTSA) – AI Service Access bridges the gap between access control and GenAI services to protect the user journey.TRENDMICRO.COM
22 AugSecuring the Power of AI, Wherever You Need ItExplore how generative AI is transforming cybersecurity and enterprise resilienceTRENDMICRO.COM