49Articles
8Categories
2024-09-02Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 1[−]
2 Sep KEVNorth Korean hackers actively exploited a critical Chromium zero-dayA zero-day flaw in open source browser, Chromium, which was patched recently , was exploited by a financially motivated North Korean threat actor, Citrine Sleet, to deliver the FudModule rootkit. The vulnerability, tracked as CVE-2024-7971 , is a type confusion flaw in the V8 Jav…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 12[−]
2 SepMalicious npm Packages Mimicking 'noblox.js' Compromise Roblox Developers’ SystemsRoblox developers are the target of a persistent campaign that seeks to compromise systems through bogus npm packages, once again underscoring how threat actors continue to exploit the trust in the open-source ecosystem to deliver malware. "By mimicking the popular 'noblox.js' li…THEHACKERNEWS.COM
2 SepRansomware recovery: 8 steps to successfully restore from backupAccording to a Sophos survey of 5,000 IT and cybersecurity leaders released in April, 59% of organizations have been hit by a ransomware attack in 2023, from which 56% paid a ransom to get their data back. And the amounts paid were not trivial. In 63% of cases the ransom demand w…CSOONLINE.COM
2 SepState-Backed Attackers and Commercial Surveillance Vendors Repeatedly Use the Same ExploitsRussian hackers exploited vulnerabilities in Safari and Chrome to launch cyberattacks from November 2023 to July 2024. They used a watering hole attack on Mongolian government websites to infect mobile users with malware, stealing information.BLOG.GOOGLE
2 SepWebinar: Learn to Boost Cybersecurity with AI-Powered Vulnerability ManagementThe world of cybersecurity is in a constant state of flux. New vulnerabilities emerge daily, and attackers are becoming more sophisticated. In this high-stakes game, security leaders need every advantage they can get. That's where Artificial Intelligence (AI) comes in. AI isn't j…THEHACKERNEWS.COM
2 SepSQL Injection Attack on Airport SecurityInteresting vulnerability : …a special lane at airport security called Known Crewmember (KCM). KCM is a TSA program that allows pilots and flight attendants to bypass security screening, even when flying on domestic personal trips. The KCM process is fairly simple: the empl…SCHNEIER.COM
2 SepSinon: Open-Source Automatic Generative Burn-in for Windows Deception HostsSinon is an open-source tool designed to automate the burn-in process of Windows-based deception hosts. It simplifies the orchestration of deception hosts at scale by incorporating generative capabilities to introduce diversity and randomness.HELPNETSECURITY.COM
2 SepClose the Security Theater: Enter Resilience - Kelly Shortridge - ASW VaultCheck out this interview from the ASW Vault, hand picked by main host Mike Shema! This segment was originally published on May 9, 2023. What does software resilience mean? Why is status quo application security unfit for the modern era of software? How can we move from security t…YOUTUBE.COM
2 SepInside CISA's Unprecedented Election Security MissionCISA 'Committing More Resources Than Ever Before' to Election Infrastructure The Cybersecurity and Infrastructure Security Agency told Information Security Media Group it is in the process of carrying out its most expansive national effort to secure election infrastructure across…DATABREACHTODAY.CO.UK
2 SepBusiness services giant CBIZ discloses customer data breachCBIZ Benefits & Insurance Services (CBIZ) has disclosed a data breach that involves unauthorized access of client information stored in specific databases. [...]BLEEPINGCOMPUTER.COM
2 SepNorth Korean Hackers Tied to Exploits of Chromium Zero-DayCryptocurrency Users Targeted in Latest Campaign Involving FudModule Rootkit A hacking group tied to North Korea exploited a zero-day vulnerability in the open source Google Chromium web browser to try and steal cryptocurrency, Microsoft said. The attack campaign is the latest to…DATABREACHTODAY.CO.UK
2 SepOwners of 1-Time Passcode Theft Service Plead GuiltyThree men in the United Kingdom have pleaded guilty to operating otp[.]agency, a once popular online service that helped attackers intercept the one-time passcodes (OTPs) that many websites require as a second authentication factor in addition to passwords. Launched in November 2…KREBSONSECURITY.COM
📋 SECURITY BULLETINS 1[−]
2 SepCrowdStrike faces onslaught of legal action from faulty software updateEven before Delta came forward, shareholders were looking for their pound of flesh, filing a class action lawsuit against CrowdStrike. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
📢 SECURITY ADVISORIES 3[−]
2 SepNext-Generation Attacks, Same Targets - How to Protect Your Users' IdentitiesThe FBI and CISA Issue Joint Advisory on New Threats and How to Stop Ransomware Note: on August 29, the FBI and CISA issued a joint advisory as part of their ongoing #StopRansomware effort to help organizations protect against ransomware. The latest advisory, AA24-242A, describes…THEHACKERNEWS.COM
2 SepCISA Launches Cyber Incident Reporting Portal To Streamline Breach DisclosureThe CISA has launched a cyber incident reporting portal to make breach disclosure easier. It allows organizations to report cyberattacks, vulnerabilities, and data breaches voluntarily.CYBERSECURITYDIVE.COM
2 SepNIST Releases New Draft of Digital Identity Proofing GuidelinesThe new draft of NIST's digital identity proofing guidelines includes updates to accommodate passkeys and mobile driver's licenses, as well as options for identification without using biometrics like facial recognition.NEXTGOV.COM
🔥 INCIDENT REPORTING 10[−]
2 SepOceanLotus APT Group Targeting Vietnamese Human Rights DefendersThe attackers use spear-phishing lures and watering hole campaigns to infiltrate networks and collect sensitive data. Huntress identified four compromised hosts in recent attacks, linking them to Cobalt Strike Beacons and encrypted DLL payloads.HUNTRESS.COM
2 SepCyber Threats That Shaped the First Half of 2024According to a report by Critical Start Cyber Research Unit, the manufacturing industry was the top target for cyber threats in H1 2024, professional services saw a 15% increase in attacks, and healthcare experienced a 180% surge in incidents.HELPNETSECURITY.COM
2 SepNorth Korean Cyberattacks Persist: Developers Targeted via npm PackagesThe campaign, known as "Contagious Interview," tricks developers into downloading fake npm packages or installers. The attackers deploy a Python payload named InvisibleFerret to steal data from cryptocurrency wallets.SECURITYONLINE.INFO
2 SepA New Variant of Cicada Ransomware Targets VMware ESXi SystemsThe group behind Cicada3301 has been recruiting affiliates on cybercrime forums since June. It is speculated that Cicada3301 could be related to the now-defunct ALPHV group, as both ransomware share similarities.SECURITYAFFAIRS.COM
2 SepDurex India data breach leaks sensitive details of customerssubmitted by kid to cybersecurity 1 points | 0 comments https://www.cybersecurity-insiders.com/durex-data-breach-leaks-sensitive-details-of-customers/CYBERSECURITY-INSIDERS.COM
2 SepA Macro Look at the Most Pressing Cybersecurity RisksA Forescout report highlighted a 43% increase in published vulnerabilities, with 23,668 reported in H1 2024. Ransomware attacks also rose by 6%, totaling 3,085 incidents, with the U.S. being the most targeted country.HELPNETSECURITY.COM
2 SepRansomHub Ransomware Group Targets 210 Victims Across Critical SectorsThreat actors linked to the RansomHub ransomware group encrypted and exfiltrated data from at least 210 victims since its inception in February 2024, the U.S. government said. The victims span various sectors, including water and wastewater, information technology, government ser…THEHACKERNEWS.COM
2 SepVerkada to pay $2.95M for security failures leading to breachesThe Federal Trade Commission (FTC) proposes a $2.95 million penalty on security camera vendor Verkada for multiple security failures that enabled hackers to access live video feeds from 150,000 internet-connected cameras. [...]BLEEPINGCOMPUTER.COM
2 SepTransport for London discloses ongoing “cyber security incident”Transport for London (TfL), the city's transport authority, is investigating an ongoing cyberattack that has yet to impact its services. [...]BLEEPINGCOMPUTER.COM
2 SepTransport for London cyberattack?submitted by dch82 to cybersecurity 1 points | 0 comments https://lemmy.zip/pictrs/image/d5b87b64-1f89-4d7e-8f05-32d210e62adb.webp Link goes to tfl.gov.uk/campaign/cyber-security-incident?cid=e… Got this email today. It seems someone is getting fired in the IT department…LEMMY.ZIP
🕵️ THREAT INTELLIGENCE 10[−]
2 SepFake Palo Alto GlobalProtect Tool Used as Lure to Backdoor EnterprisesA fake Palo Alto GlobalProtect VPN access tool is being used as bait by threat actors targeting Middle Eastern organizations. The malware, disguised as a legitimate tool, can steal data and execute remote commands to infiltrate networks further.BLEEPINGCOMPUTER.COM
2 SepSafeTech Labs Takes Aim at $52B Digital Legacy Industry with World’s First Fully Comprehensive Digital Legacy SolutionThe company’s new product covers every base for digital legacies, resulting in the industry’s first truly comprehensive product. SafeTech Labs, a company specializing in pioneering blockchain development and technology, announced today that its releasing Inheriti® 2.0, which enab…GBHACKERS.COM
2 SepBrazil Suspends Access to Elon Musk's X, Including via VPNsSupreme Court Set to Review Ban, After X Failed to Appoint a Legal Representative Brazil has begun blocking domestic access to social platform X - including criminalizing access by Brazilians who might use a VPN - after the company failed to comply with court orders tied to comba…DATABREACHTODAY.CO.UK
2 SepBSides Budapest 2024submitted by ashar to security_cpe 3 points | 0 comments https://infosec.pub/pictrs/image/714b4635-0025-451e-a9c1-9ee5e0a8fbf5.png Schedule PlaylistINFOSEC.PUB
2 SepTROOPERS IT Security Conference 2024submitted by ashar to security_cpe 1 points | 0 comments TROOPERS IT Security Conference 2024 Playlist AgendaINFOSEC.PUB
2 SepLeadership Lessons from the First 100 Episodes of CISO Stories - Todd Fitzgerald - BSW VaultCheck out this episode from the BSW Vault, hand picked by main host Matt Alderman! This episode was initially published on November 29, 2022. Todd Fitzgerald, author of CISO Compass and host of CISO Stories, joins BSW to share his top leadership lessons from the first 100 episode…YOUTUBE.COM
2 Sep.NET-based Snake Keylogger Attack Windows Using Weaponized Excel Documentssubmitted by kid to cybersecurity 1 points | 0 comments https://gbhacke1.txpro1.fcomet.com/net-based-snake-keylogger-attack/GBHACKE1.TXPRO1.FCOMET.COM
2 SepIf you had to access an unfamiliar flash drive (or other data storage), what safety precautions would you take?submitted by ALostInquirer to cybersecurity 1 points | 0 comments The safest option is obvious, don’t try to access its contents, but if you absolutely had to, what steps would you take to minimize/contain any potential harm to your device/network?SH.ITJUST.WORKS
2 SepProtected OOXML Text Documents, (Mon, Sep 2nd)Just like " Protected OOXML Spreadsheets ", Word documents can also be protected: ISC.SANS.EDU
2 SepSafeTech Labs Takes Aim at $52B Digital Legacy Industry with World’s First Fully Comprehensive Digital Legacy SolutionThe company’s new product covers every base for digital legacies, resulting in the industry’s first truly comprehensive product. SafeTech Labs, a company specializing in pioneering blockchain development and technology, announced today that its releasing Inheriti® 2.0, which enab…GBHACKERS.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
2 SepGreenCharlie Infrastructure Targeting US Political Entities with Advanced Phishing and MalwareGreenCharlie attackers use dynamic DNS providers to register domains for phishing attacks, with deceptive themes like cloud services and document visualization to trick victims into revealing sensitive information or downloading malware payloads.RECORDEDFUTURE.COM
📡 INFOSEC NEWS 11[−]
2 SepIT worker charged over $750,000 cyber extortion plot against former employerA former IT engineer is facing federal charges in the United States after his former employer found it had been locked out of its computer systems and received a demand for $750,000. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
2 SepMyths and superstitions in the digital world | Kaspersky official blogEven in 2024, the world is rife with digital paranoia and superstition. Find out if your smartphone really is spying on you, and why incognito mode doesn’t make you invisible.KASPERSKY.COM
2 SepUniqkey Raises $5.92M in FundingBackers included BackingMinds, in combination with industry veterans such as Jesper Zerlang (ex-CEO of Logpoint), Lars Ankjer, Otto Krabbe, Rolf Bladt, and several angels and key employees.FINSMES.COM
2 SepAdmins of MFA bypass service plead guilty to fraudThree men have pleaded guilty to running OTP.Agency, an online platform that provided social engineering help to obtain one-time passcodes from customers of various banks and services in the U.K. [...]BLEEPINGCOMPUTER.COM
2 SepAdmins of MFA bypass service plead guilty to fraudThree men have pleaded guilty to running OTP.Agency, an online platform that provided social engineering help to obtain one-time passcodes from customers of various banks and services in the U.K. [...]BLEEPINGCOMPUTER.COM
2 SepIndustry Moves for the week of September 2, 2024 - SecurityWeekExplore industry moves and significant changes in the industry for the week of September 2, 2024. Stay updated with the latest industry trends and shifts.SECURITYWEEK.COM
2 SepVerkada to pay $2.95 million for alleged CAN-SPAM Act violationsThe Federal Trade Commission (FTC) requires security camera vendor Verkada to create a comprehensive information security program as part of a settlement after multiple security failures enabled hackers to access live video feeds from internet-connected cameras. [...]BLEEPINGCOMPUTER.COM