matlock.ca // THREAT INTELLIGENCE — 2024-09-03

97Articles

9Categories

2024-09-03Date

🚨

CISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2021-20123 Draytek VigorConnect Path Traversal Vulnerability CVE-2021-20124 Draytek VigorConnect Path Traversal Vulnerability CVE-20…

KEVCISA.GOV — Tue, 03 Sep 24 1

🐛

North Korea-linked APT Citrine Sleet Exploit Chrome Zero-Day to Deliver FudModule Rootkit

SECURITYAFFAIRS.COM — 03 Sep 2024

🐛

Head Mare Hacktivist Group Exploit WinRAR Vulnerability To Encrypt Windows And Linux

GBHACKERS.COM — 03 Sep 2024

🐛

North Korean Hackers Actively Exploiting Chromium RCE Zero-Day In The Wild

GBHACKERS.COM — 03 Sep 2024

🐛

Hacktivists Exploits WinRAR Vulnerability in Attacks Against Russia and Belarus

THEHACKERNEWS.COM — 03 Sep 2024

⚠️

New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access

THEHACKERNEWS.COM — 03 Sep 2024

⚠️

149: Mini-Stories: Vol 3

PLAY.PRX.ORG — 03 Sep 2024

⚠️

How to ensure cybersecurity strategies align with the company’s risk tolerance

CSOONLINE.COM — 03 Sep 2024

⚠️

Operation DevilTiger, APT Hackers 0-Day Exploitation Tactics Exposed

GBHACKERS.COM — 03 Sep 2024

⚠️

Critical Atlassian Vulnerability Exploited To Connect Servers In Mining Networks

GBHACKERS.COM — 03 Sep 2024

⚠️

BlackByte Hackers Exploiting VMware ESXi Auth Bypass Vulnerability

GBHACKERS.COM — 03 Sep 2024

⚠️

CloudSOC – An OpenSource Project for SOC & Security Analysts

GBHACKERS.COM — 03 Sep 2024

⚠️

Chrome Vulnerability Let Attackers Execute Arbitrary Code Remotely

GBHACKERS.COM — 03 Sep 2024

⚠️

Cloud providers must own up to their part in the current state of insecurity

CSOONLINE.COM — 03 Sep 2024

⚠️

Researchers Find SQL Injection Flaw to Bypass Airport TSA Security Checks

BLEEPINGCOMPUTER.COM — 03 Sep 2024

⚠️

City of Columbus Sues Researcher Who Disclosed Impact of Ransomware Attack

SECURITYWEEK.COM — 03 Sep 2024

⚠️

RCE Vulnerability in D-Link WAP Let Attackers Gain Remote Access

GBHACKERS.COM — 03 Sep 2024

⚠️

Cost of a data breach: Cost savings with law enforcement involvement

SECURITYINTELLIGENCE.COM — 03 Sep 2024

⚠️

CISA Releases One Industrial Control Systems Advisory

CISA.GOV — Tue, 03 Sep 24 1

⚠️

New Rust-Based Ransomware Cicada3301 Targets Windows and Linux Systems

THEHACKERNEWS.COM — 03 Sep 2024

⚠️

D-Link says it is not fixing four RCE flaws in DIR-846W routers

BLEEPINGCOMPUTER.COM — 03 Sep 2024

⚠️

VMware Patches High-Severity Code Execution Flaw in Fusion

SECURITYWEEK.COM — 03 Sep 2024

⚠️

3 Men Plead Guilty to Running Service That Bypasses MFA

DATABREACHTODAY.CO.UK — 2024-09-03

⚠️

D-Link says it is not fixing four RCE flaws in DIR-846W routers

INFOSEC.PUB — 3 Sep 2024

⚠️

Zyxel warns of critical OS command injection flaw in routers

BLEEPINGCOMPUTER.COM — 03 Sep 2024

⚠️

Infineon's Cryptographic Library Suffers From An ECDSA Private Key Recovery Vulnerability

PACKETSTORMSECURITY.COM — 03 Sep 2024

⚠️

Quantifying Risks to Make the Right Cybersecurity Investments

DATABREACHTODAY.CO.UK — 2024-09-03

⚠️

New HackerOne CEO Kara Sprague to Expand Beyond Bug Bounties

DATABREACHTODAY.CO.UK — 2024-09-03

📢

Ransomhub Attacked 210 Victims Since Feb 2024, CISA Released Advisory For Defenders

GBHACKERS.COM — 03 Sep 2024

📢

Your KnowBe4 Compliance Plus Fresh Content Updates from August 2024

KNOWBE4.COM — 03 Sep 2024

📢

[Control systems] CISA ICS security advisories (AV24-491)

CYBER.GC.CA — 2024-09-03

📢

Ubuntu security advisory (AV24-490)

CYBER.GC.CA — 2024-09-03

📢

Dell security advisory (AV24-488)

CYBER.GC.CA — 2024-09-03

📢

IBM security advisory (AV24-489)

CYBER.GC.CA — 2024-09-03

📢

Mozilla security advisory (AV24-493)

CYBER.GC.CA — 2024-09-03

📢

HPE security advisory (AV24-495)

CYBER.GC.CA — 2024-09-03

📢

VMware security advisory (AV24-494)

CYBER.GC.CA — 2024-09-03

📢

Red Hat security advisory (AV24-492)

CYBER.GC.CA — 2024-09-03

📢

Android security advisory – September 2024 Monthly Rollup (AV24-496)

CYBER.GC.CA — 2024-09-03

🔥

Major Data Breaches: Toronto Schools, TDECU, and Columbus Hacked: Cyber Security Today for Tuesday, September 3rd, 2024

CYBERSECURITYTODAY.LIBSYN.COM — 03 Sep 2024

🔥

Blooms Today - 3,184,010 breached accounts

HAVEIBEENPWNED.COM — 03 Sep 2024

🔥

Novel Attack on Windows Spotted in Chinese Phishing Campaign

THEREGISTER.COM — 03 Sep 2024

🔥

Rocinante Trojan Poses as Banking Apps to Steal Sensitive Data from Brazilian Android Users

THEHACKERNEWS.COM — 03 Sep 2024

🔥

Verkada Pay $2.95 Million Failed To Secure Data Lead To Massive Breach

GBHACKERS.COM — 03 Sep 2024

🔥

Researchers Link ManticoraLoader Malware to Ares Malware Developer

THECYBEREXPRESS.COM — 03 Sep 2024

🔥

Halliburton confirms data stolen in recent cyberattack

BLEEPINGCOMPUTER.COM — 03 Sep 2024

🔥

Halliburton confirms data was stolen in ongoing cyberattack

TECHCRUNCH.COM — 03 Sep 2024

🔥

Transport For London Confirms Cyberattack

PACKETSTORMSECURITY.COM — 03 Sep 2024

🔥

Halliburton Says Hackers Removed Data In Cyberattack

PACKETSTORMSECURITY.COM — 03 Sep 2024

🔥

Todd’s Moving On after 185+ Episodes - Future CISO Vision - Todd Fitzgerald - CSP #190

YOUTUBE.COM — 2024-09-03

🔥

New Rust-Based Ransomware Cicada3301 Targets Windows and Linux Systems

INFOSEC.PUB — 3 Sep 2024

🔥

Halliburton Confirms Data Stolen in Cyberattack

SECURITYWEEK.COM — 03 Sep 2024

🔥

Radiology IT Vendor Hack Hits 4 Practices, 411,000 People

DATABREACHTODAY.CO.UK — 2024-09-03

🔥

Halliburton Says Hackers Stole Data

DATABREACHTODAY.CO.UK — 2024-09-03

🕵️

ISC Stormcast For Tuesday, September 3rd, 2024 https://isc.sans.edu/podcastdetail/9122, (Tue, Sep 3rd)

ISC.SANS.EDU — 03 Sep 2024

🕵️

Chrome 128 Updates Patch High-Severity Vulnerabilities

SECURITYWEEK.COM — 03 Sep 2024

🕵️

Operation Oxidovy, Threat Actors Targeting Government And Military Officials

GBHACKERS.COM — 03 Sep 2024

🕵️

Iranian Hackers Using Multi-Stage Malware To Attack Govt And Defense Sectors Via LinkedIn

GBHACKERS.COM — 03 Sep 2024

🕵️

Researchers Detailed Russian Hacktivist/State Hackers Tactics

GBHACKERS.COM — 03 Sep 2024

🕵️

Beware Of New Phishing Attack That Mimics ScreenConnect And Zoom

GBHACKERS.COM — 03 Sep 2024

🕵️

New Custom Malware “Tickler” Attack Satellite Devices

GBHACKERS.COM — 03 Sep 2024

🕵️

New ManticoraLoader – Malware Attacking Citrix Users To Steal Data

GBHACKERS.COM — 03 Sep 2024

🕵️

Intel Responds to SGX Hacking Research

SECURITYWEEK.COM — 03 Sep 2024

🕵️

Hacker Leaks Data of 390 Million Users from VK, a Russian Social Network

HACKREAD.COM — 3 Sep 2024

🕵️

Verkada to Pay $2.95 Million Over FTC Probe Into Security Camera Hacking

SECURITYWEEK.COM — 03 Sep 2024

🕵️

NASA Focuses on Cybersecurity of Its Mission-Critical Software

DARKREADING.COM — 3 Sep 2024

🕵️

New Fury Stealer Attacking Victims to Steal Login Passwords

GBHACKERS.COM — 03 Sep 2024

🕵️

CISO Conversations: Jaya Baloo From Rapid7 and Jonathan Trull From Qualys

SECURITYWEEK.COM — 03 Sep 2024

🕵️

Clearview AI Fined $33.7 Million by Dutch Data Protection Watchdog Over ‘Illegal Database’ of Faces

SECURITYWEEK.COM — 03 Sep 2024

🕵️

Sextortion Scams Now Include Photos of Your Home

KREBSONSECURITY.COM — 03 Sep 2024

🕵️

List of Old NSA Training Videos

SCHNEIER.COM — 2024-09-03

🕵️

Encryption - SWN Vault

YOUTUBE.COM — 2024-09-03

🕵️

Evolving NPM Package Campaign Targets Roblox Devs, For Years

DARKREADING.COM — 3 Sep 2024

🕵️

Verkada Agrees to $2.95M Civil Penalty With US FTC

DATABREACHTODAY.CO.UK — 2024-09-03

🕵️

Cyber A.I. Group Announces Global Presentation

GBHACKERS.COM — 03 Sep 2024

🕵️

FBI warns crypto firms of aggressive social engineering attacks

BLEEPINGCOMPUTER.COM — 03 Sep 2024

🕵️

New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access

INFOSEC.PUB — 3 Sep 2024

🕵️

FBI: North Korea Aggressively Targeting Crypto Industry with Well-Disguised Social Engineering Attacks

IC3.GOV — 3 Sep 2024

🕵️

Organizations in the Middle East Targeted By Malware Impersonating Palo Alto GlobalProtect VPN

KNOWBE4.COM — 03 Sep 2024

🕵️

Major Scam Operation Uses Deepfake Videos

KNOWBE4.COM — 03 Sep 2024

🕵️

YubiKeys are vulnerable to cloning attacks thanks to newly discovered side channel

ARSTECHNICA.COM — 3 Sep 2024

🕵️

US NTIA Probes Data Center Security Risks

DATABREACHTODAY.CO.UK — 2024-09-03

🕵️

ONCD Unveils BGP Security Road Map Amid Rising Threats

DATABREACHTODAY.CO.UK — 2024-09-03

🌐

Roblox Developers Under Attack by New Malicious NPM Campaign

TECHRADAR.COM — 03 Sep 2024

🎙️

Transatlantic Cable podcast episode 361 | Kaspersky official blog

KASPERSKY.COM — 03 Sep 2024

🎙️

The AI Fix #14: There are two Rs in “strawberry”, and an AI makes unsmellable smells

GRAHAMCLULEY.COM — 03 Sep 2024

📡

Ex-Engineer Charged in Missouri for Failed $750,000 Bitcoin Extortion Attempt

THEHACKERNEWS.COM — 03 Sep 2024

📡

Secrets Exposed: Why Your CISO Should Worry About Slack

THEHACKERNEWS.COM — 03 Sep 2024

📡

Canonical Addresses Critical Linux Kernel AWS Vulnerabilities with New Patches

THECYBEREXPRESS.COM — 03 Sep 2024

📡

Intel Responds To SGX Hacking Research

PACKETSTORMSECURITY.COM — 03 Sep 2024

📡

Hacker Leaks Data Of 390 Million Users From VK, A Russian Social Network

PACKETSTORMSECURITY.COM — 03 Sep 2024

📡

How to export notes from Notion and make an offline backup of your data | Kaspersky official blog

KASPERSKY.COM — 03 Sep 2024

📡

Clearview AI fined €30.5 million for unlawful data collection

BLEEPINGCOMPUTER.COM — 03 Sep 2024

📡

New Windows PowerToy launches, repositions apps to saved layouts

BLEEPINGCOMPUTER.COM — 03 Sep 2024

📡

FTC: Over $110 million lost to Bitcoin ATM scams in 2023

BLEEPINGCOMPUTER.COM — 03 Sep 2024

📡

How AI Goes Rogue

TRENDMICRO.COM — 03 Sep 2024

📡

In plain sight: Malicious ads hiding in search results

WELIVESECURITY.COM — 03 Sep 2024