🚨 CISA KEV 2[−]
27 Aug KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-38856 Apache OFBiz Incorrect Authorization Vulnerability These types of vulnerabilities are frequent attack vectors for malic…CISA.GOV
27 Aug KEVVersa Networks Releases Advisory for a Vulnerability in Versa Director, CVE-2024-39717Versa Networks has released an advisory for a vulnerability ( CVE-2024-39717 ) in Versa Director, a key component in managing SD-WAN networks, used by some Internet Service Providers (ISPs) and Managed Service Providers (MSPs). A cyber threat actor could exploit this vulnerabilit…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 10[−]
27 AugGoogle Warns of CVE-2024-7965 Chrome Security Flaw Under Active ExploitationGoogle has revealed that a security flaw that was patched as part of a security update rolled out last week to its Chrome browser has come under active exploitation in the wild. Tracked as CVE-2024-7965, the vulnerability has been described as an inappropriate implementation bug …THEHACKERNEWS.COM
27 AugVesra File Type Upload Vulnerability Lets Attackers Gain Sys-Admin Access from MSPA critical vulnerability has been identified in Versa Director, a vital component of the company’s SD-WAN solution. The vulnerability, officially designated as CVE-2024-39717, allows attackers to upload potentially malicious files, granting them system administrator access.…GBHACKERS.COM
27 AugCentreon Issues Critical Security Update to Fix SQL Injection Vulnerabilities That Threaten IT MonitoringThese vulnerabilities, known as CVE-2024-32501, CVE-2024-33852, CVE-2024-33853, CVE-2024-33854, CVE-2024-5725, and CVE-2024-39841, pose a significant risk to organizations relying on Centreon for IT infrastructure monitoring.SECURITYONLINE.INFO
27 Aug KEVNews Chrome 0-Day Vulnerability (CVE-2024-7965) Actively Exploited in the WildThe Chrome team announced that Chrome 128 has been promoted to the stable channel for Windows, Mac, and Linux. This update, Chrome 128.0.6613.84/.85, includes numerous fixes and improvements. However, a critical security vulnerability, CVE-2024-7965, has been discovered and activ…GBHACKERS.COM
27 AugUpdate: Researcher Publishes PoC Exploit for Zero-Click Windows RCE ThreatA security researcher has published a proof-of-concept exploit for a critical zero-click vulnerability, CVE-2024-38063, in Windows TCP/IP. This flaw allows remote code execution on Windows systems with IPv6 enabled, affecting millions of devices.SECURITYONLINE.INFO
27 Aug KEVGoogle says a critical Chrome bug was exploited after a patch was releasedGoogle is warning Chrome users of a critical vulnerability being actively exploited in the wild even after a patch was available. The vulnerability, tracked as CVE-2024-7965 , is an inappropriate implementation security flaw in the V8 JavaScript and WebAssembly engine that receiv…CSOONLINE.COM
27 AugAudit of Airswift's Supply Chain FinancingDrawing from our audit of Airswift's SCF , we discuss part of Soroban's security model and showcase common vulnerabilities. SCF, for "Supply Chain Financing", is the DeFi product developed by Airswift that "optimizes funds flow" between buyers and suppliers. It is developed on St…QUARKSLAB.COM
27 AugSonicWall Patches Critical Flaw Affecting its Firewalls (CVE-2024-40766)SonicWall has addressed a critical vulnerability (CVE-2024-40766) in its next-gen firewalls, which could be exploited by remote attackers to gain unauthorized access and potentially crash the devices.HELPNETSECURITY.COM
27 AugGoogle Tags a Tenth Chrome Zero-Day as Exploited This YearThe vulnerability, tracked as CVE-2024-7965 and reported by a security researcher known as TheDog, involved a bug in the compiler backend that could allow remote attackers to exploit heap corruption through a crafted HTML page.BLEEPINGCOMPUTER.COM
27 Aug KEVChina’s Volt Typhoon exploits Versa zero-day to hack US ISPs and IT firmsState-sponsored Chinese hackers exploited a zero-day vulnerability in Versa Director, a software platform for managing SD-WAN infrastructure used by internet service providers (ISPs) and managed service providers (MSPs). The group, known in the security industry as Volt Typhoon, …CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 24[−]
27 AugResearcher discovers exposed ServiceBridge databaseNon-password protected databases containing sensitive corporate and personal information continue to be created and left wide open on the internet. The latest example, with over 2TB of invoices and contracts from an American field service management provider, was discovered by cy…CSOONLINE.COM
27 AugMicrosoft Fixes ASCII Smuggling Flaw That Enabled Data Theft from Microsoft 365 CopilotDetails have emerged about a now-patched vulnerability in Microsoft 365 Copilot that could enable the theft of sensitive user information using a technique called ASCII smuggling. "ASCII Smuggling is a novel technique that uses special Unicode characters that mirror ASCII but are…THEHACKERNEWS.COM
27 Aug KEV10 top anti-phishing tools and servicesPhishing continues to be one of the primary attack mechanisms for bad actors with a variety of endgames in mind, in large part because phishing attacks are trivial to launch and difficult to fully protect against. Some phishing attacks target customers rather than employees, and …CSOONLINE.COM
27 AugCritical SSTI Flaw in WPML Plugin Exposes Millions of WordPress Sites to RCE AttacksThis vulnerability allows authorized users to inject and execute malicious code through the plugin's shortcode feature, potentially leading to data theft and website takeover.SECURITYONLINE.INFO
27 AugResearchers Discover Several Potential Attack Vectors in Bicycles With Shimano Di2 Wireless Gear-Shifting SystemResearchers found a vulnerability in the Shimano Di2 system’s proprietary protocol, making it susceptible to a replay attack. They demonstrated that an attacker could intercept and replay commands using off-the-shelf software-defined radio.THECYBEREXPRESS.COM
27 AugBug bounty programs take root in Russia — with possible far-reaching implicationsRussia’s 2022 invasion of Ukraine and subsequent international sanctions against Moscow and Minsk are having serious repercussions for the cybersecurity ecosystem in Russia. The withdrawal of Western IT companies, the exodus of Russian IT specialists, and the changed cyber threat…CSOONLINE.COM
27 Aug KEVGoogle Warns of Exploited Chrome VulnerabilityGoogle flags another high-severity vulnerability patched with the latest Chrome 128 release as exploited in the wild. The post Google Warns of Exploited Chrome Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
27 AugResearchers Discover Over 20 Supply Chain Vulnerabilities in MLOps PlatformsInherent vulnerabilities stem from the underlying formats and processes of the technology, allowing attackers to exploit features like automatic code execution in ML models and certain dataset formats.JFROG.COM
27 AugThe Changing Dynamics of Ransomware as Law Enforcement StrikesDespite law enforcement actions disrupting major ransomware operations, the long-term impact remains uncertain as groups adapt and evolve. Ransomware-as-a-Service (RaaS) collectives are facing growing competition to attract affiliates.HELPNETSECURITY.COM
27 AugRansomware Recovery Costs Have Doubled for State and Local GovernmentsThirty-four percent of state and local government entities were hit by ransomware in 2024, a new report from Sophos has found. While this is a decrease compared to the attack rate in 2023, the mean cost of recovery for these entities has more than doubled to $2.83 million.KNOWBE4.COM
27 AugMicrosoft Copilot Prompt Injection Vulnerability Let Hackers Exfiltrate Sensitive DataA security researcher revealed a critical vulnerability in Microsoft Copilot, a tool integrated into Microsoft 365, which allowed hackers to exfiltrate sensitive data. The exploit, disclosed to Microsoft Security Response Center (MSRC) earlier this year, combines several sophisti…GBHACKERS.COM
27 AugNuclei: Open-Source Vulnerability ScannerNuclei is an open-source vulnerability scanner known for its speed and customizable YAML-based templates. It offers flexibility in security checks by allowing customization of templates to send requests to multiple targets.HELPNETSECURITY.COM
27 AugChanging the Course of IoT's Future from Its Insecure Past - Paddy Harrington - ASW #297IoT devices are notorious for weak designs, insecure implementations, and a lifecycle that mostly ignores patching. We look at external factors that might lead to change, like the FCC's cybersecurity labeling for IoT. We explore the constraints that often influence poor security …YOUTUBE.COM
27 AugChinese Volt Typhoon hackers exploited Versa zero-day to breach ISPs, MSPsThe Chinese state-backed hacking group Volt Typhoon is behind attacks that exploited a zero-day flaw in Versa Director to upload a custom webshell to steal credentials and breach corporate networks. [...]BLEEPINGCOMPUTER.COM
27 AugChinese Volt Typhoon Exploits Versa Director Flaw, Targets U.S. and Global IT SectorsThe China-nexus cyber espionage group tracked as Volt Typhoon has been attributed with moderate confidence to the zero-day exploitation of a recently disclosed high-severity security flaw impacting Versa Director. The attacks targeted four U.S. victims and one non-U.S. victim in …THEHACKERNEWS.COM
27 AugChinese government hackers targeted U.S. internet providers with zero-day exploit, researchers sayA group of hackers linked to the Chinese government used a previously unknown vulnerability in software to target U.S. internet service providers, security researchers have found. The group known as Volt Typhoon was exploiting the zero-day flaw — meaning the software maker …TECHCRUNCH.COM
27 AugVulnerability Management: Tips and Techniques - John Kellerhals - CSP #189Vulnerabilities are the ‘front doors’ for attackers to infiltrate our systems and a key process organizations must get right into order to protect our systems and information assets. Join us as we discuss vulnerability management, identification of assets, prioritization, threat …YOUTUBE.COM
27 AugNew 0-Day Attacks Linked to China’s ‘Volt Typhoon’Malicious hackers are exploiting a zero-day vulnerability in Versa Director, a software product used by many Internet and IT service providers. Researchers believe the activity is linked to Volt Typhoon, a Chinese cyber espionage group focused on infiltrating critical U.S. networ…KREBSONSECURITY.COM
27 AugWPML Multilingual CMS Authenticated Contributor+ Remote Code Execution Via SSTIPACKETSTORMSECURITY.COM
27 AugCode Execution Vulnerability Found in WPML Plugin Installed on 1M WordPress SitesA critical vulnerability in the WPML WordPress plugin could allow a remote attacker to execute arbitrary code on the server. The post Code Execution Vulnerability Found in WPML Plugin Installed on 1M WordPress Sites appeared first on SecurityWeek .SECURITYWEEK.COM
27 AugThe Role of AI in Email Security: Beyond Phishing DetectionArtificial Intelligence (AI) has long been recognized for its role in detecting phishing attempts, but its capabilities extend far beyond that. With the rise of sophisticated cyber threats, AI has evolved to identify complex and subtle threats, predict attack patterns, and automa…CSOONLINE.COM
27 AugMGs, Free Speech, sedexp, Cthulhu, SeaTac, GrimResource, ServiceBridge, Josh Marpet.. - SWN #410MGs, Free Speech, sedexp, Cthulhu, SeaTac, GrimResource, ServiceBridge, the FBI, Josh Marpet, and more, on this Edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-410YOUTUBE.COM
27 AugChina's Volt Typhoon Exploits 0-day in Versa's SD-WAN Director Serverssubmitted by kid to cybersecurity 2 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/china-s-volt-typhoon-actively-exploiting-now-patched-0-day-in-versa-director-serversDARKREADING.COM
27 AugNot a SOC FAQ! This is SOC FMD!Somebody asked me this profound question that (a) I feel needs an answer and that (b) I’ve never answered in the past: If you run a SOC (or an equivalent D&R team), what things should you require (demand, request, ask, beg … depending on the balance of corporate power) of oth…MEDIUM.COM
📢 SECURITY ADVISORIES 5[−]
27 AugTelegram founder’s arrest raises anxiety about future of end-to-end encryptionDays on from the weekend arrest of Telegram founder and CEO Pavel Durov in France, the tech industry is still trying to make sense of what this event means for the future of app privacy. To Durov’s supporters, including a chorus of political opportunists, his arrest marks him out…CSOONLINE.COM
27 AugMcLaren Health: IT Operations Fully Back Online Post-AttackRestoration Completed Days Ahead of Schedule But Still a Lot of Catch-Up Work to Do McLaren Health says its IT systems are fully restored a few days earlier than expected, following an Aug. 6 ransomware attack that disrupted clinical and administrative operations at its 13 hospit…DATABREACHTODAY.CO.UK
27 AugWipro, AWS Team up to Address Compliance in the Cloud EraWipro's Siva Vrs on How AI Impacts Regulatory and Compliance Mandates Data integrity, collection, analytics - they all are essential for compliance reporting, and yet each remains a challenge for enterprises across business sectors. Siva Vrs of Wipro discusses the challenge of co…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 20[−]
27 AugTop-5 leaks of all time | Kaspersky official blogThe world’s biggest data breaches: when, where, how, victim-count — and how not to fall prey to the next one.KASPERSKY.COM
27 AugSeattle Airport Blames Outages on Possible CyberattackThe Port of Seattle, including the SEA Airport, is experiencing system outages likely caused by a cyberattack. The post Seattle Airport Blames Outages on Possible Cyberattack appeared first on SecurityWeek .SECURITYWEEK.COM
27 AugMcDonald’s Instagram Hacked by Crypto Scammers to Steal $700,000The scammers targeted both McDonald’s Instagram and a senior marketing director's Twitter account, leveraging the association between Grimace, McDonald’s iconic purple mascot, and the brand to add credibility to their scam.THECYBEREXPRESS.COM
27 AugCost of data breaches: The business case for security AI and automationAs Yogi Berra said, “It’s déjà vu all over again.” If the idea of the global average costs of data breaches rising year over year feels like more of the same, that’s because it is. Data protection solutions get better, but so do threat actors. Th…SECURITYINTELLIGENCE.COM
27 AugMicrosoft 365 Flags Emails with Images as Malware: A Growing Concern for UsersMicrosoft 365 users have reported a troubling issue in which email messages containing images are incorrectly flagged as malware and subsequently quarantined. This incident, identified as Issue ID: EX873252, has sparked widespread concern among businesses and individual users who…GBHACKERS.COM
27 AugMicrosoft Convenes Endpoint Security Firms Following CrowdStrike IncidentMicrosoft has called together cybersecurity firms and government representatives for its Windows Endpoint Security Ecosystem Summit. The post Microsoft Convenes Endpoint Security Firms Following CrowdStrike Incident appeared first on SecurityWeek .SECURITYWEEK.COM
27 AugPythonAnywhere Cloud Platform Abused for Hosting RansomwareResearchers found that attackers are leveraging PythonAnywhere cloud platform to host and distribute malicious files using Razr ransomware discreetly. The ransomware generates a unique machine ID, encryption key, and IV to begin operations.HACKREAD.COM
27 AugComplete Guide to Protecting Seven Attack VectorsThe quicker a cyberattack is identified, the less it costs. Jon Clay, VP of Threat Intelligence, reviews seven key initial attack vectors and provides proactive security tips to help you reduce cyber risk across the attack surface.TRENDMICRO.COM
27 AugRansomware Hackers Steal Medical Insurance Data of 1M PeopleYoung Consulting Says Health Data Exposed; Ransomware Group Leaked Stolen Data Young Consulting, which develops software for the stop-loss insurance market, is notifying 1 million individuals that their personal information was stolen earlier this year in a hack attack. The Black…DATABREACHTODAY.CO.UK
27 AugPark’N Fly notifies 1 million customers of data breachPark'N Fly is warning that a data breach exposed the personal and account information of 1 million customers in Canada after hackers breached its network. [...]BLEEPINGCOMPUTER.COM
27 AugAttack tool update impairs Windows computersAn EDR killer Sophos X-Ops has tracked for three years continues to bedevil organizations targeted by ransomware gangs.SOPHOS.COM
27 AugIndia's Critical Infrastructure Suffers Spike in CyberattacksIndia is experiencing a rise in cyberattacks on its critical infrastructure, particularly in the financial and government sectors, prompting the Reserve Bank of India to issue warnings about the need for enhanced cybersecurity measures.DARKREADING.COM
27 AugPatelco Breach Affected 726,000 Customers, EmployeesRansomware Attackers Had Access to Data for More Than a Month Hackers stole the data of more 700 million current and former customers and employees of Patelco Credit Union in a monthlong ransomware attack detected in June, the California financial institution said. Not all 726,00…DATABREACHTODAY.CO.UK
27 AugWindows Downdate tool lets you 'unpatch' Windows systemsSafeBreach security researcher Alon Leviev has released his Windows Downdate tool, which can be used for downgrade attacks that reintroduce old vulnerabilities in up-to-date Windows 10, Windows 11, and Windows Server systems. [...]BLEEPINGCOMPUTER.COM
27 AugLateral Movement: Clearest Sign of Unfolding Ransomware AttackLateral movement is a key indicator of ransomware attacks, with 44% of attacks being spotted during this phase, as reported by Barracuda Networks. Additionally, file modifications and off-pattern behavior were also significant triggers for detection.HELPNETSECURITY.COM
27 AugReport: A Third of Organizations Suffer SaaS Data Breaches Last YearAccording to AppOmni, one-third of organizations experienced SaaS data breaches last year due to a lack of visibility and control, as revealed by a survey of 644 enterprises globally.INFOSECURITY-MAGAZINE.COM
27 AugUS Marshals Service disputes ransomware gang's breach claimsThe U.S. Marshals Service (USMS) denies its systems were breached by the Hunters International ransomware gang after being listed as a new victim on the cybercrime group's leak site on Monday. [...]BLEEPINGCOMPUTER.COM
27 AugBlackSuit ransomware stole data of 950,000 from software vendorYoung Consulting is sending data breach notifications to 954,177 people who had their information exposed in a BlackSuit ransomware attack on April 10, 2024. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 21[−]
27 AugISC Stormcast For Tuesday, August 27th, 2024 https://isc.sans.edu/podcastdetail/9114, (Tue, Aug 27th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
27 AugIs wpa3 reccomended on a home network?submitted by yokonzo to cybersecurity 1 points | 0 comments It seems i have the option but i have a vague memory of someone telling me not to bother with it unless i had a good reasonSH.ITJUST.WORKS
27 AugHackers Claim to Have Stolen Top Secret Documents From the U.S. Marshals Servicesubmitted by 0x0 to cybersecurity 1 points | 0 comments https://gizmodo.com/hackers-claim-to-have-stolen-top-secret-documents-from-the-u-s-marshals-service-2000491162 (cross-post from programming.dev/post/18621331 )GIZMODO.COM
27 AugPidgin Users Beware! Malicious Plugin Discovered with KeyloggerThe plugin, which was added to Pidgin’s third-party plugins list on July 6th, was flagged by a user, 0xFFFC0000, on August 16th, who reported suspicious behavior, including the unauthorized capture and sharing of screenshots.SECURITYONLINE.INFO
27 AugIdentity of Notorious Hacker USDoD RevealedUSDoD, the hacker known for high-profile data leaks, is a man from Brazil, according to CrowdStrike and others. The post Identity of Notorious Hacker USDoD Revealed appeared first on SecurityWeek .SECURITYWEEK.COM
27 AugThe Present and Future of TV SurveillanceArs Technica has a good article on what’s happening in the world of television surveillance. More than even I realized.SCHNEIER.COM
27 AugMore Carrots and Fewer SticksThis blog was co-written by Perry Carpenter and Roger A. Grimes. As I sit in the 2024 Seattle Convene conference this week and listen to speaker after speaker talk about their successful security awareness training programs, one thing is perfectly clear. They all prefer carrots a…KNOWBE4.COM
27 AugCisco to Acquire AI Security Firm Robust IntelligenceCisco intends to acquire Robust Intelligence, a California-based company that specializes in securing AI applications. The post Cisco to Acquire AI Security Firm Robust Intelligence appeared first on SecurityWeek .SECURITYWEEK.COM
27 AugWhy Is Python so Popular to Infect Windows Hosts?, (Tue, Aug 27th)It has been a while since I started to track how Python is used in the Windows eco-system&#;x26;#;x5b; 1 &#;x26;#;x5d;. Almost every day I find new pieces of malicious Python scripts. The programming language itself is not m…ISC.SANS.EDU
27 AugNTLM Credential Theft Risk in Python Apps Threaten Windows Securitysubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/ntlm-credential-theft-python-apps-windows-security/HACKREAD.COM
27 AugHackers Use Rare Stealth Techniques to Down Asian Military, Gov't Orgssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/application-security/hackers-use-rare-stealth-techniques-to-down-asian-military-govt-orgsDARKREADING.COM
27 AugGroup Offers CAPTCHA-Solving Services to Cybercriminalssubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/captcha-solving-cybercriminals/INFOSECURITY-MAGAZINE.COM
27 AugCyberheistNews Vol 14 #35 [PROVED] Unsuspecting Call Recipients Are Super Vulnerable to AI VishingKNOWBE4.COM
27 AugWhen Convenience Costs: CISOs Struggle With SaaS Security OversightSaaS applications are so easy to use, the decision, and the deployment, is sometimes undertaken by the business unit user with little reference to, nor oversight from, the security team. The post When Convenience Costs: CISOs Struggle With SaaS Security Oversight appeared first o…SECURITYWEEK.COM
27 AugJoin SASE Converge — Where the Future of SASE Comes TogetherJoin us for SASE Converge 2024, a 2-hour immersive virtual experience, featuring thought leaders and technologists from across the globe. The post Join SASE Converge — Where the Future of SASE Comes Together appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
27 AugApache HTTPD Vulns, Hacking IoT Speakers, Use Cases for WASM, Slack AI Leak - ASW #297Research by Orange Tsai into Apache HTTPD's architecture reveals several vulns, NCC Group shows techniques for hacking IoT devices with Sonos speakers, finding use cases for WebAssembly, Slack's AI leaks data, DARPA wants a future of Rust, and more! Visit https://www.securityweek…YOUTUBE.COM
27 AugCribl Raises $319 Million at $3.5 Billion ValuationThe IT and data security firm raises $319 million in a Series E round led by Google Ventures and is now valued at $3.5 billion. The post Cribl Raises $319 Million at $3.5 Billion Valuation appeared first on SecurityWeek .SECURITYWEEK.COM
27 AugCan You Trust AI in Cybersecurity? 🤔 Edward Wu Breaks It Down!Why is AI in cybersecurity still facing skepticism? Edward Wu dives into the challenges of trusting AI as a security analyst and the difficulties of evaluating cybersecurity products like EDRs. Are tools like CrowdStrike really better than Defender or Sentinel One? Find out why i…YOUTUBE.COM
27 AugCribl Gets $319M on $3.5B Valuation to Boost Data ManagementGoogle Ventures Leads Round as Sales of Cribl's Vendor-Agnostic Data Tools Grow Cribl has completed a $319 million Series E funding round led by Google Ventures. The financing pushes the company’s valuation to $3.5 billion, with backing from prominent investors as Cribl's data en…DATABREACHTODAY.CO.UK
27 AugCheck Point to Buy External Risk Management Vendor CyberintAcquisition Will Enhance Security Operations, Expand Managed Threat Intel Solutions Check Point plans to purchase an external risk management vendor led by an Israeli intelligence veteran to boost its SOC and managed threat intelligence capabilities. The proposed acquisition of C…DATABREACHTODAY.CO.UK
27 AugTech Orgs: UN Cybercrime Treaty Will Worsen Global SecurityCybersecurity Tech Accord Urges Nations to Reject the Treaty A coalition of technology organizations says a draft United Nations cybercrime treaty would facilitate crime and is urging nations to reject the treaty. "The best option now is for a majority of the U.N.'s member states…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 3[−]
27 AugmacOS Version of HZ RAT Backdoor Targets Chinese Messaging App UsersUsers of Chinese instant messaging apps like DingTalk and WeChat are the target of an Apple macOS version of a backdoor named HZ RAT. The artifacts "almost exactly replicate the functionality of the Windows version of the backdoor and differ only in the payload, which is received…THEHACKERNEWS.COM
27 AugMalware infiltrates Pidgin messenger’s official plugin repositoryThe Pidgin messaging app removed the ScreenShareOTR plugin from its official third-party plugin list after it was discovered that it was used to install keyloggers, information stealers, and malware commonly used to gain initial access to corporate networks. [...]BLEEPINGCOMPUTER.COM
🎙️ PODCASTS 1[−]
27 AugThe AI Fix #13: ChatGPT runs for mayor, and should we stop killer robots?In episode 13 of "The AI Fix"", meat avatar Cluley learns that AI doesn't pose an existential threat to humanity and tells meat avatar Stockley how cybersex is about to get very, very weird. Our hosts also learn that men lie on their dating profiles, hear ChatGPT steal somebody's…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 20[−]
27 AugTech Support Scam Found Hijacking Microsoft Search Queries Through Google AdsTwo deceptive campaigns were identified recently using Google ads and Microsoft's infrastructure. The first scam involves a fake helpdesk page on Microsoft Learn whereas the second one hijacks Microsoft search queries through a Google ad.MALWAREBYTES.COM
27 AugZimbabwe Government Places Priority on Cybersecurity Training for Public ServantsOver 100 government officials recently completed a comprehensive cybersecurity training program, focusing on global cybersecurity trends, security standards, and data protection governance.THECYBEREXPRESS.COM
27 AugResearchers Warn of Text Scams That Send Drivers Fake Bills for Highway TollsCybercriminals are sending malicious SMS messages demanding payment for non-existent charges across Illinois, Florida, North Carolina, and Washington. These scams imitate state authorities and provide links to fake payment websites to steal data.THERECORD.MEDIA
27 AugUber Hit With $324m GDPR FineThe Dutch Data Protection Authority (AP) announced the €290m ($324m) fine yesterday, claiming that it stems from the same concerns that have led to years-long legal wranglings between the EU and US.INFOSECURITY-MAGAZINE.COM
27 AugCTEM in the Spotlight: How Gartner's New Categories Help to Manage ExposuresWant to know what’s the latest and greatest in SecOps for 2024? Gartner’s recently released Hype Cycle for Security Operations report takes important steps to organize and mature the domain of Continuous Threat Exposure Management, aka CTEM. Three categories within this domain ar…THEHACKERNEWS.COM
27 AugMicrosoft Sway abused in massive QR code phishing campaignA massive QR code phishing campaign abused Microsoft Sway, a cloud-based tool for creating online presentations, to host landing pages to trick Microsoft 365 users into handing over their credentials. [...]BLEEPINGCOMPUTER.COM
27 AugNASA IV&V Facility Expands Cybersecurity Work and Educational OutreachNASA's IV&V Facility is expanding its cybersecurity services to enhance the safety of its missions. This initiative includes incorporating cybersecurity assessments into their traditional roles of software examination.THECYBEREXPRESS.COM
27 AugHow to identify unknown assets while pen testingExternal Attack Surface Management (EASM) coupled with Penetration Testing as a Service (PTaaS) can help find those blind spots and hidden assets exposed on your network. Learn more from Outpost24 about how combining EASM and PTaaS can help reveal these hidden pitfalls. [...]BLEEPINGCOMPUTER.COM
27 AugIn a Kyiv Hangar, Ukraine Launches a Cyber Range for EveryoneThe project is led by Ukrainian cyber entrepreneur Yehor Aushev and is unique in that it is free and open to a wide range of citizens, including students, researchers, and state officials.THERECORD.MEDIA
27 AugTwo Strategies to Protect Your Business From the Next Large-Scale Tech FailureDiversifying suppliers and systems can help minimize risks, as shown by corporations that purchase networking equipment from multiple vendors to prevent total network failure in case of vendor issues.HELPNETSECURITY.COM
27 AugTop Universities to Battle in Cybersecurity at UNSW’s Upcoming Australian Cybersecurity GamesTop universities in Australia will compete in the Australian Cybersecurity Games at UNSW from September 2-30, 2024. This event, organized by SECedu, features cybersecurity experts collaborating with leading universities like UNSW.THECYBEREXPRESS.COM
27 AugThe U.S. military’s latest psyop? Advertising on TinderTinder removed the U.S. military ads, saying the campaign violated the company's policies. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
27 AugNew Cheana Stealer Threat Targets VPN Users Across Multiple Operating SystemsThis campaign is notable for its malicious apps for Windows, Linux, and macOS users. The attackers have created different versions of Cheana Stealer for each OS to widen their attack surface.THECYBEREXPRESS.COM
27 AugNotion exits Russia and will terminate accounts in SeptemberNotion has announced it will exit the Russian market and is terminating all workspaces and accounts identified linked to users in the country. [...]BLEEPINGCOMPUTER.COM
27 AugWindows 11 KB5041587 update adds sharing to Android devicesMicrosoft has released the optional KB5041587 preview cumulative update for Windows 11 23H2 and 22H2, which adds sharing to Android devices and fixes multiple File Explorer issues. [...]BLEEPINGCOMPUTER.COM
27 AugOld devices, new dangers: The risks of unsupported IoT techIn the digital graveyard, a new threat stirs: Out-of-support devices becoming thralls of malicious actorsWELIVESECURITY.COM