115Articles
8Categories
2024-09-04Date
🚨 CISA KEV 1[−]
4 Sep KEVRussian Military Cyber Actors Target US and Global Critical InfrastructureSummary The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and National Security Agency (NSA) assess that cyber actors affiliated with the Russian General Staff Main Intelligence Directorate (GRU) 161st Specialist Training Center (…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 10[−]
4 Sep KEVGoogle Patches Actively Exploited Android 0-day Privilege Escalation VulnerabilityGoogle has released a patch addressing a critical zero-day vulnerability that has been actively exploited. This vulnerability, CVE-2024-32896, is a privilege escalation flaw within the Android Framework component. The patch, part of the Android Security Bulletin for September 202…GBHACKERS.COM
4 SepPoC Exploit Released For 0-Day Windows Kernel Privilege Escalation VulnerabilityMicrosoft released several patches for multiple vulnerabilities during the Patch Tuesday for August 2024. One of the vulnerabilities listed by Microsoft was the CVE-2024-38106. This vulnerability is associated with Windows Kernel Privilege Escalation affecting multiple Microsoft …GBHACKERS.COM
4 SepZyxel Warns of Critical OS Command Injection Flaw in RoutersThe flaw, known as CVE-2024-7261, has a CVSS v3 score of 9.8, enabling hackers to execute arbitrary commands on the host operating system by manipulating user-supplied data.BLEEPINGCOMPUTER.COM
4 SepDebian Patches Two Dovecot VulnerabilitiesDebian has patched two critical vulnerabilities in the Dovecot mail server, identified as CVE-2024-23184 and CVE-2024-23185, which could lead to denial-of-service attacks.TUXCARE.COM
4 SepZyxel Patches Critical OS Command Injection Flaw in Access Points and RoutersZyxel has released software updates to address a critical security flaw impacting certain access point (AP) and security router versions that could result in the execution of unauthorized commands. Tracked as CVE-2024-7261 (CVSS score: 9.8), the vulnerability has been described a…THEHACKERNEWS.COM
4 Sep KEVGoogle Confirms CVE-2024-32896 Exploited in the Wild, Releases Android Security PatchGoogle has released its monthly security updates for the Android operating system to address a known security flaw that it said has come under active exploitation in the wild. The high-severity vulnerability, tracked as CVE-2024-32896 (CVSS score: 7.8), relates to a case of privi…THEHACKERNEWS.COM
4 Sep KEVGoogle backports fix for Pixel EoP flaw to other Android devicesGoogle has released the September 2024 Android security updates to fix 34 vulnerabilities, including CVE-2024-32896, an actively exploited elevation of privilege flaw that was previously fixed on Pixel devices. [...]BLEEPINGCOMPUTER.COM
4 SepVMware Fixed a Code Execution Flaw in Fusion HypervisorVMware has patched a high-severity code execution flaw in its Fusion hypervisor. The vulnerability, tracked as CVE-2024-38811, is caused by an insecure environment variable.SECURITYAFFAIRS.COM
4 SepVMWare releases Fusion vulnerability with 8.8 ratingsubmitted by IllNess to securitynews 2 points | 1 comments https://cyberscoop.com/vmware-vulnerability-fushion-cve-2024-38811/INFOSEC.PUB
4 SepAttackers are exploiting vulnerabilities at a record pace—here’s what to do about it“Another day, another vulnerability” is a familiar refrain among security teams worldwide. One of the most intriguing findings from our latest Fortinet Global Threat Landscape Report is that attackers are exploiting vulnerabilities faster than ever before. This average time-to-ex…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 25[−]
4 Sep KEV6 things hackers know that they don’t want security pros to know that they knowSecurity professionals have good insights into the technical tactics, techniques, and procedures (TTPs) that threat actors use to launch cyberattacks. They are likewise well-versed in key defensive strategies, such as prioritizing patching based on risk and implementing a zero-tr…CSOONLINE.COM
4 SepD-Link Says it is Not Fixing Four RCE Flaws in DIR-846W RoutersD-Link has announced that it will not be fixing four critical remote code execution (RCE) vulnerabilities in its DIR-846W routers due to the products no longer being supported.BLEEPINGCOMPUTER.COM
4 SepAndroid’s September 2024 Update Patches Exploited VulnerabilityGoogle has released Android security updates to patch an exploited local privilege escalation vulnerability. The post Android’s September 2024 Update Patches Exploited Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
4 SepWhite House Calls Attention to ‘Hard Problem’ of Securing Internet Traffic RoutingThe White House advised network operators to implement Resource Public Key Infrastructure (RPKI) to enhance security, which involves digital certificates managed by Regional Internet Registries.THERECORD.MEDIA
4 SepBuilding a Culture of Email Security AwarenessHuman error remains a significant risk for organizations when it comes to cyber threats. In fact, according to Proofpoint’s 2024 Voice of the CISO report , 74% of CISOs view human error as their organization’s biggest cyber vulnerability. However, 86% of CISOs believe employees u…CSOONLINE.COM
4 SepD-Link Warns of Code Execution Flaws in Discontinued Router ModelD-Link warns of multiple remote code execution vulnerabilities impacting its discontinued DIR-846 router model. The post D-Link Warns of Code Execution Flaws in Discontinued Router Model appeared first on SecurityWeek .SECURITYWEEK.COM
4 SepVerkada to Pay $2.95 Million for Alleged CAN-SPAM Act ViolationsHackers exploited a vulnerability in Verkada's customer support server, gaining access to the Command platform and extracting video footage and customer data. Another incident involved a hacker installing the Mirai botnet on Verkada's network server.BLEEPINGCOMPUTER.COM
4 SepToddyCat APT Abuses SMB, Exploits IKEEXT A Exchange RCE To Deploy ICMP BackdoorToddyCat is an APT group that has been active since December 2020, and primarily it targets the government and military entities in Europe and Asia.  The group is known for its sophisticated cyber-espionage tactics and has been involved in multiple high-profile attacks. Cybe…GBHACKERS.COM
4 SepSecurity Flaw Allows Attackers to Clone YubiKeys by Extract Private KeySecure elements consist mainly of tiny microcontrollers, which provide service by generating and storing secrets and performing cryptographic operations. Thomas Roche of NinjaLab finds a major security flaw in the crypto library of Infineon Technologies affecting a diverse range …GBHACKERS.COM
4 SepCrypto Vulnerability Allows Cloning of YubiKey Security KeysYubiKey security keys can be cloned via a side-channel attack that leverages a vulnerability in a cryptographic library. The post Crypto Vulnerability Allows Cloning of YubiKey Security Keys appeared first on SecurityWeek .SECURITYWEEK.COM
4 Sep KEVHackers Hijack 22,000 Removed PyPI Packages, Spreading Malicious Code to DevelopersA new supply chain attack technique targeting the Python Package Index (PyPI) registry has been exploited in the wild in an attempt to infiltrate downstream organizations. It has been codenamed Revival Hijack by software supply chain security firm JFrog, which said the attack met…THEHACKERNEWS.COM
4 SepThousands of abandoned PyPI projects could be hijacked: ReportA vulnerability in abandoned Python open source repository projects could allow over 20,000 packages of code to be hijacked to spread malware in supply chain attacks. The warning for developers to be careful using the Python Package Index comes from researchers at JFrog, who disc…CSOONLINE.COM
4 SepAudit of Operator FabricQuarkslab was mandated by the Open Source Technology Improvement Fund, Inc. to proceed with the security assessment of the Operator Fabric project. The purpose of this assessment is to deliver an expert opinion of the security level reached by the application at a specific moment…QUARKSLAB.COM
4 SepThreat Actors Increasingly Exploit Deepfakes for Social EngineeringThe availability of deepfake technology has given threat actors a valuable tool for social engineering attacks, according to researchers at BlackBerry.KNOWBE4.COM
4 SepScans for Moodle Learning Platform Following Recent Update, (Wed, Sep 4th)On August 10th, the popular learning platform "Moodle" released an update fixing &#x25&#x3b;&#x25&#x3b;cve:2024-43425&#x25&#x3b;&#x25&#x3b;. RedTeam Pentesting …ISC.SANS.EDU
4 SepDeploying Rust in Existing Firmware CodebasesPosted by Ivan Lozano and Dominik Maier, Android Team Android's use of safe-by-design principles drives our adoption of memory-safe languages like Rust, making exploitation of the OS increasingly difficult with every release. To provide a secure foundation, we’re extending harden…SECURITY.GOOGLEBLOG.COM
4 SepCisco warns of backdoor admin account in Smart Licensing UtilityCisco has removed a backdoor account in the Cisco Smart Licensing Utility (CSLU) that can be used to log into unpatched systems with administrative privileges. [...]BLEEPINGCOMPUTER.COM
4 SepWhat asset management (ITAM) looks like outside cybersecurity - Jeremy Boerger - ESW #374The top priority on the [CIS Critical Security Controls](https://www.cisecurity.org/controls/cis-controls-list) list has never changed: _inventory and control of enterprise assets_. Yet it remains one of the most challenging controls to implement, much less master. The refrain, "…YOUTUBE.COM
4 SepDutch regulator fines Clearview €30 million… or moreThe Dutch Data Protection Authority, Autoriteit Persoonsgegevens, is the latest European regulator to crack down on American face-recognition firm Clearview AI, levying a €30.5 million (US$33.8 million) fine that is likely to grow to €35.5 million due to additional penalties for …CSOONLINE.COM
4 Sep‘Unusual’ Voldemort cyberespionage attack impersonates tax authoritiesResearchers have identified an attack that impersonates tax authorities from several countries to compromise organizations and deploy a custom backdoor program dubbed Voldemort. While the campaign uses tactics seen in financially motivated cybercrime attacks, the researchers beli…CSOONLINE.COM
4 SepCisco fixes root escalation vulnerability with public exploit codeCisco has fixed a command injection vulnerability in the Identity Services Engine (ISE) with public exploit code that lets attackers escalate privileges to root on vulnerable systems. [...]BLEEPINGCOMPUTER.COM
4 SepUS Targets Russian Media and Hackers Over Election MeddlingDOJ Seizes Internet Domains, Announces Sanctions Against Russian Media Executives The United States on Wednesday accused Russia of carrying out a sustained campaign to influence the 2024 presidential election and announced a series of sanctions and law enforcement actions that ta…DATABREACHTODAY.CO.UK
4 Sep KEVNew AlphV-like ransomware targets VMware ESXi serversResearchers at Trusec recently discovered a new ransomware-as-a-service group called Cicada3301. The gang provides its affiliates with a dual extortion platform that includes both a ransomware and a data leakage side. According to the research report , Cicada3301 first appeared i…CSOONLINE.COM
4 SepNews alert: INE Security releases a strategies guide for cyber threat preparedness, response capabilitiesCary, NC, Sept. 4, 2024, CyberNewsWire — In a proactive response to the rapidly evolving landscape of cyber threats, INE Security , a global leader in cybersecurity and network training, today unveiled a crucial initiative aimed at fortifying corporate defenses … (mor…LASTWATCHDOG.COM
4 SepSmashing Security podcast #383: The Godfather club, and AirTags to the rescueThere's a whole new dating scam that could mean you end up out of pocket (or beaten up) after a first date with a glamorous admirer, and a woman in Los Alamos uses an Air Tag to entrap a thief. Plus - don't miss our featured interview with Maya Irvine of Sysdig. All this, and a v…GRAHAMCLULEY.COM
📢 SECURITY ADVISORIES 7[−]
4 SepClearview AI Faces €30.5M Fine for Building Illegal Facial Recognition DatabaseThe Dutch Data Protection Authority (Dutch DPA) has imposed a fine of €30.5 million ($33.7 million) against facial recognition firm Clearview AI for violating the General Data Protection Regulation (GDPR) in the European Union (E.U.) by building an "illegal database with billions…THEHACKERNEWS.COM
4 SepLearning, Sharing, and Exploring with NIST’s New Human-Centered Cybersecurity Community of InterestHuman-centered cybersecurity (also known as ‘usable security’) involves the social, organizational, and technological influences on people’s understanding of and interactions with cybersecurity. By taking a human-centered cybersecurity (HCC) approach, we can both improve people's…NIST.GOV
4 SepHHS Drops Appeal of Hospital Web Tracking DecisionThe Biden administration has dropped its appeal of a court decision that rejected new regulations restricting hospitals' use of web-tracking tools. A Texas judge ruled the administration's efforts illegal in June.THERECORD.MEDIA
4 SepCriminal IP Secures PCI DSS v4.0 Certification, Enhancing Payment Security with Top-Level ComplianceAI SPERA, a leading Cyber Threat Intelligence (CTI) company, has achieved PCI DSS v4.0 certification for its flagship search engine solution, Criminal IP. This accomplishment builds on last year’s attainment of PCI DSS v3.2.1 (Payment Card Industry Data Security Standard) c…GBHACKERS.COM
4 SepTelegram Removes Deepfake Videos at South Korea's BehestSocial Media Platform Deleted 25 Videos South Korean Government Said Showed Crimes Telegram deleted 25 videos the South Korean Communications Standards Commission said depicted sex crimes, and regulators reported that site administrators pledged a "relationship of trust." The age…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 15[−]
4 SepFBI Warns that North Korean Hackers Aggressively Attacking Employees of Crypto CompaniesThe FBI has issued a stark warning to cryptocurrency companies, highlighting increased sophisticated cyberattacks orchestrated by North Korean hackers. These attacks, primarily targeting employees within the decentralized finance (DeFi) and cryptocurrency sectors, are part of a b…GBHACKERS.COM
4 SepHalliburton Confirms that Hackers Stolen Data in Cyber AttackHalliburton Company has confirmed that a cyber attack led to unauthorized access and data theft from its systems. The incident, which came to light on August 21, 2024, has prompted the company to initiate a comprehensive cybersecurity response plan. Immediate Response and Investi…GBHACKERS.COM
4 SepSecurity Researcher Sued for Disproving Government StatementsThis story seems straightforward. A city is the victim of a ransomware attack. They repeatedly lie to the media about the severity of the breach. A security researcher repeatedly proves their statements to be lies. The city gets mad and sues the researcher. Let’s hope the j…SCHNEIER.COM
4 SepSwan Bitcoin Alerts Users of Phishing Emails Carrying Fake Data Breach NoticeSwan Bitcoin CEO Cory Klippsten has warned users about phishing emails targeting the platform's users. The scam involves fake "Data Breach Notice" emails, possibly linked to the Klaviyo and HubSpot data breaches in 2022.THECYBEREXPRESS.COM
4 SepRecord breaking Ransomware attacks on Schools and Colleges in 2023submitted by kid to cybersecurity 1 points | 0 comments https://www.cybersecurity-insiders.com/record-breaking-ransomware-attacks-on-schools-and-colleges-in-2023/CYBERSECURITY-INSIDERS.COM
4 SepWarning: New Emansrepo Malware Uses HTML Files to Target Windows UsersEmansrepo, a Python infostealer, is distributed via phishing emails containing fake purchase orders and invoices, where the attacker initially sent a phishing email with an HTML file redirecting to the Emansrepo download link. In recent months, the attack flow has become more com…GBHACKERS.COM
4 SepHow Ransomware Groups Weaponize Stolen DataRansomware groups are increasingly weaponizing stolen data to pressure victims into paying. They analyze data to maximize damage and create opportunities for extortion, targeting business leaders and employees for blame.BANKINFOSECURITY.COM
4 SepRansomware Gangs Pummel Southeast AsiaAccording to telemetry data from Trend Micro, Ransomware attacks in Southeast Asia are on the rise in 2024, with major incidents in countries like Thailand, Japan, South Korea, Singapore, Taiwan, and Indonesia.DARKREADING.COM
4 SepEmansrepo Stealer: Multi-Vector Attack ChainsThe Python-based infostealer collects user information, text files, PDF files, browser data, crypto wallets, game platforms, browser extensions, and cookies. The stolen data is sent via email to the attacker.FORTINET.COM
4 SepRansomware Crisis Deepens as Attacks and Payouts RiseThe ransomware crisis is escalating, with a surge in attacks and payouts. New ransomware groups like PLAY and Medusa have led a wave of attacks in the second quarter, following the takedown of LockBit and BlackCat.HELPNETSECURITY.COM
4 SepLondon Tube Riders Reporting Payment Difficulties After HackTransport for London on Monday Confirmed a Cybersecurity 'Incident' The transit authority serving metro London experienced a cyberattack that has led to subway riders experiencing problems with contactless payments for at least a second day. Transport for London said late Monday …DATABREACHTODAY.CO.UK
4 SepUS Government Isn’t Ready for Cyber Chaos in the Food and Agriculture SectorThe industry remains largely unscathed by cyber threats, but recent events like the JBS ransomware attack highlight vulnerabilities. The sector's increased automation makes it a target for hackers, posing risks to the US food supply.THERECORD.MEDIA
4 SepSpecialize in Securing Critical InfrastructureHow You Can Help Secure the Nation's Backbone From Cyberattacks Critical infrastructure encompasses the essential services and assets vital to the functioning of society and the economy. Specializing in security in this field requires a deep understanding of the challenges and th…DATABREACHTODAY.CO.UK
4 SepMicrochip Technology confirms data was stolen in cyberattackAmerican semiconductor supplier Microchip Technology Incorporated has confirmed that employee information was stolen from systems compromised in an August cyberattack, which was later claimed by the Play ransomware gang. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 29[−]
4 SepBlackwired Launches ThirdWatch℠, A Paradigm Shift in CybersecurityBlackwired, the leading cyber observatory for disruptive cybersecurity technologies, has announced the launch of ThirdWatch℠, a groundbreaking solution to identify direct threats facing an organization and its Third Parties. ThirdWatch℠ is a subject-directed monitoring platform t…GBHACKERS.COM
4 SepFTC: Over $110 million lost to Bitcoin ATM scams in 2023submitted by IllNess to securitynews 1 points | 0 comments https://www.bleepingcomputer.com/news/security/ftc-americans-lost-over-110-million-to-bitcoin-atm-scams-in-2023/ The U.S. Federal Trade Commission (FTC) has reported a massive increase in losses to Bitcoin ATM scams, near…INFOSEC.PUB
4 SepISC Stormcast For Wednesday, September 4th, 2024 https://isc.sans.edu/podcastdetail/9124, (Wed, Sep 4th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
4 SepWhite House Outlines Plan for Addressing BGP VulnerabilitiesThe White House has released a roadmap for addressing internet routing (BGP) security issues, mainly through RPKI adoption. The post White House Outlines Plan for Addressing BGP Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
4 SepWhite House publishes latest plan to protect a key component of the internet: BGPsubmitted by kid to cybersecurity 1 points | 0 comments https://cyberscoop.com/white-house-publishes-latest-plan-to-protect-a-key-component-of-the-internet/CYBERSCOOP.COM
4 SepZyxel Patches Critical Vulnerabilities in Networking DevicesZyxel has released patches for multiple vulnerabilities in its networking devices, including a critical flaw impacting access points and security routers. The post Zyxel Patches Critical Vulnerabilities in Networking Devices appeared first on SecurityWeek .SECURITYWEEK.COM
4 SepINE Security Announces 5 Practical Steps to Elevate Cyber Defense StrategiesIn a proactive response to the rapidly evolving landscape of cyber threats, INE Security, a global leader in cybersecurity and network training, today unveiled a crucial initiative aimed at fortifying corporate defenses against digital dangers. The newly launched guide, “5 Practi…GBHACKERS.COM
4 SepCrush It, Don’t Get Crushed — Combat SOC Analyst Burnout with AIAI is reshaping SOC analyst roles. We address the critical issue of burnout and discuss practical advice for thriving in a SOC analyst career. The post Crush It, Don’t Get Crushed — Combat SOC Analyst Burnout with AI appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
4 SepHackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attacksubmitted by IllNess to securitynews 1 points | 0 comments https://thehackernews.com/2024/09/hackers-use-fake-globalprotect-vpn.html The malvertising activity, observed in June 2024, is a departure from previously observed tactics wherein the malware has been propagated via tradi…INFOSEC.PUB
4 SepRevival Hijack supply-chain attack threatens 22,000 PyPI packagesThreat actors are utilizing an attack called "Revival Hijack," where they register new PyPi projects using the names of previously deleted packages to conduct supply chain attacks. [...]BLEEPINGCOMPUTER.COM
4 SepFBI: North Korea Aggressively Hacking Cryptocurrency FirmsThe FBI warns of North Korean threat actors conducting social engineering campaigns targeting employees in the cryptocurrency industry. The post FBI: North Korea Aggressively Hacking Cryptocurrency Firms appeared first on SecurityWeek .SECURITYWEEK.COM
4 SepCriminal IP Earns PCI DSS v4.0 Certification for Top-Level SecurityAI Spera has achieved PCI DSS v4.0 certification for its threat intel search engine solution, Criminal IP. Learn more from the Criminal IP cyber threat intelligence search engine. [...]BLEEPINGCOMPUTER.COM
4 Sep[Security Masterminds Podcast] The Human Side of Cybersecurity: Bridging the Gap with Empathy and StrategyIn cybersecurity, technology often takes center stage. From the latest AI-driven defenses to sophisticated encryption techniques, it's easy to overlook the most crucial element: the human factor.KNOWBE4.COM
4 SepAembit Named Finalist in Best Identity Management Solution for 2024 SC AwardsThe Company’s Workload IAM Platform Was Also Shortlisted for Best Authentication Technology, as Non-Human Identity Security Gains Urgency Aembit, the leading non-human identity and access management (IAM) company, has been recognized as a 2024 SC Award finalist in the Trust…GBHACKERS.COM
4 SepSanity check: Yubikeys and password sharessubmitted by Telorand to cybersecurity 1 points | 0 comments I’ve been thinking about getting a couple of Yubikeys for a partner and myself, but we share certain accounts. While I would love to have the Yubikey 5 that can store TOTP, that seems like it could be problematic for sh…SH.ITJUST.WORKS
4 SepNorth Korean Hackers Targets Job Seekers with Fake FreeConference AppNorth Korean threat actors have leveraged a fake Windows video conferencing application impersonating FreeConference.com to backdoor developer systems as part of an ongoing financially-driven campaign dubbed Contagious Interview. The new attack wave, spotted by Singaporean compan…THEHACKERNEWS.COM
4 SepMicrosoft Tackling Windows Logfile Flaws With New HMAC-Based Security MitigationMicrosoft is experimenting with a major new security mitigation to block attacks targeting flaws in the Windows Common Log File System (CLFS). The post Microsoft Tackling Windows Logfile Flaws With New HMAC-Based Security Mitigation appeared first on SecurityWeek .SECURITYWEEK.COM
4 SepNew Eucleak attack lets threat actors clone YubiKey FIDO keysA new "EUCLEAK" flaw found in FIDO devices using the Infineon SLE78 security microcontroller, like Yubico's YubiKey 5 Series, allows attackers to extract Elliptic Curve Digital Signature Algorithm (ECDSA) secret keys and clone the FIDO device. [...]BLEEPINGCOMPUTER.COM
4 SepDDoS Attacks Hit France Over Telegram's Pavel Durov Arrestsubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/ddos-attacks-france-telegrams-pavel-durov-arrest/HACKREAD.COM
4 SepNews alert: Blackwired launches ‘ThirdWatch?’ — an advanced third-party risk management platformSingapore, Sept. 4, 2024, CyberNewsWire — Blackwired , the leading cyber observatory for disruptive cybersecurity technologies, has announced the launch of ThirdWatch?, a groundbreaking solution to identify direct threats facing an organization and its Third Parties. ThirdW…LASTWATCHDOG.COM
4 SepNews alert: AI SPERA wins PCI DSS certification for its search engine solution ‘Criminal IP’Torrance, Calif., Sept. 4, 2024, CyberNewsWire — AI SPERA , a leading Cyber Threat Intelligence (CTI) company, has achieved PCI DSS v4.0 certification for its flagship search engine solution, Criminal IP. This accomplishment builds on last year’s attainment of PCI …LASTWATCHDOG.COM
4 SepAI Is Changing the Face of Fraud - And Fraud FightingBanks Using AI to Spot Fraud, Create Synthetic Data for Better Predictive Analytics While the criminals may have an advantage in the AI race, banks and other financial services firms are responding with heightened awareness and vigilance, and a growing number of organizations are…DATABREACHTODAY.CO.UK
4 SepHacker Heroes - Mark Loveless - PSW VaultExploring the Hacking Landscape with Mark Loveless, AKA SimpleNomad Dive into the intricate world of cybersecurity with our featured guest, Mark Loveless, widely known by his handle SimpleNomad. With a rich history in the realm of information security, Mark is a seasoned professi…YOUTUBE.COM
4 SepFederal CIO Says Agencies on Track for Zero Trust MilestonesTop Government Agencies 'All in the High 90% Range' for Completion, Says Martorana Federal Chief Information Officer Clare Martorana told the Billington CyberSecurity Summit on Wednesday that the 24 CFO Act Agencies are on track to meet the Sept. 30 deadline given in the federal …DATABREACHTODAY.CO.UK
4 SepRed team tool ‘MacroPack’ abused in attacks to deploy Brute RatelThe MacroPack framework, initially designed for Red Team exercises, is being abused by threat actors to deploy malicious payloads, including Havoc, Brute Ratel, and PhatomCore. [...]BLEEPINGCOMPUTER.COM
4 SepDutch Agency Fines Clearview AI 30M Euros for Data Scraping5th Nation to Investigate Software Firm Imposes Largest GDPR Penalty, Bans Use The Dutch data regulator is the latest agency to fine artificial intelligence company Clearview AI over its facial data harvesting and other privacy violations of GDPR rules, joining regulatory agencie…DATABREACHTODAY.CO.UK
4 SepNSA Eyes Global Partnerships to Combat Chinese CyberthreatsUS National Security Agency Says It Has More Than 1,000 New Cybersecurity Alliances The United States National Security Agency is banking on recently developed partnerships with leading technology firms around the world and foreign partners to combat the growing cybersecurity ris…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 5[−]
4 SepHackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware AttackA new malware campaign is spoofing Palo Alto Networks' GlobalProtect VPN software to deliver a variant of the WikiLoader (aka WailingCrab) loader by means of a search engine optimization (SEO) campaign. The malvertising activity, observed in June 2024, is a departure from previou…THEHACKERNEWS.COM
4 SepEarth Lusca Uses KTLVdoor Backdoor for Multiplatform IntrusionWhile monitoring Earth Lusca, we discovered the threat group’s use of KTLVdoor, a highly obfuscated multiplatform backdoor, as part of a large-scale attack campaign.TRENDMICRO.COM
4 SepSpoofed GlobalProtect Used to Deliver Unique WikiLoader VariantA new malware campaign is spoofing Palo Alto Networks' GlobalProtect VPN software to deliver a variant of the WikiLoader (aka WailingCrab) loader by means of a search engine optimization (SEO) campaign.UNIT42.PALOALTONETWORKS.COM
4 SepEarth Lusca Uses KTLVdoor Backdoor for Multiplatform IntrusionThe highly obfuscated KTLVdoor malware has versions for both Microsoft Windows and Linux, allowing attackers to perform tasks like file manipulation, command execution, and remote port scanning.TRENDMICRO.COM
4 SepIs Your SIEM Ready for the AI Era? Essential Insights and PreparationsA head-spinning series of acquisitions and mergers is transforming the security information and event management (SIEM) market. Behind this market shakeup is the ongoing technological shift from traditional, manually intensive SIEM solutions to AI-driven security analytics.DATABREACHTODAY.CO.UK
📡 INFOSEC NEWS 23[−]
4 SepKeeping up With Automated Threats is Becoming HarderAutomated threats are increasingly difficult to keep up with, with 98% of organizations attacked by bots experiencing revenue loss, according to Kasada. Web scraping and account fraud are the primary threats causing revenue losses.HELPNETSECURITY.COM
4 SepFTC: Over $110 Million Lost to Bitcoin ATM Scams in 2023The most common scams involve government impersonation, business impersonation, and tech support, where scammers persuade victims to withdraw cash from their bank accounts and deposit it into Bitcoin ATMs.BLEEPINGCOMPUTER.COM
4 SepThe New Effective Way to Prevent Account TakeoversAccount takeover attacks have emerged as one of the most persistent and damaging threats to cloud-based SaaS environments. Yet despite significant investments in traditional security measures, many organizations continue to struggle with preventing these attacks. A new report, "W…THEHACKERNEWS.COM
4 SepThree UK Men Convicted of Running Website Behind Fraud Calls During COVID-19 LockdownThe mastermind behind the operation, Callum Picari, along with his accomplices Vijayasidhurshan Vijayanathan and Aza Siddeeque, were arrested by National Crime Agency (NCA) officers in March 2021.THERECORD.MEDIA
4 SepSextortion Scams Now Include Photos of Your HomeA new twist on the old sextortion scam involves sending personalized emails with webcam footage of individuals and a photo of their home, obtained from online mapping applications.KREBSONSECURITY.COM
4 SepDamn Vulnerable UEFI: Simulate Real-world Firmware AttacksDVUEFI was created to assist ethical hackers, security researchers, and firmware enthusiasts in beginning their journey into UEFI firmware security by providing examples to explore potential vulnerabilities.HELPNETSECURITY.COM
4 SepStop Scanning Random QR CodesPACKETSTORMSECURITY.COM
4 SepComplying with PCI DSS Requirements by 2025The latest version 4.0.1 of the Payment Card Industry Data Security Standard (PCI DSS) has introduced key changes to address the evolving digital landscape. While some requirements are already in effect, others will come into play by April 2025.HELPNETSECURITY.COM
4 SepHackers inject malicious JS in Cisco store to steal credit cards, credentialsCisco's site for selling company-themed merchandise is currently offline and under maintenance due to hackers compromising it with JavaScript code that steals sensitive customer details provided at checkout. [...]BLEEPINGCOMPUTER.COM
4 SepDutch Privacy Watchdog Fines Clearview AI $34 Million for ‘Illegal’ Database of FacesThe Dutch Data Protection Authority (Dutch DPA) fined Clearview AI $34 million for the illegal creation of a facial image database. If Clearview AI does not comply, an additional fine of up to $5.5 million will be imposed.THERECORD.MEDIA
4 SepQuantum-resistant encryption and compatibility issues | Kaspersky official blogApplications and libraries supporting post-quantum cryptography in 2024KASPERSKY.COM
4 SepTravelers Targeted in New Booking.com Phishing ScamThe attack involves compromising hotel managers' accounts to access customer reservation systems, ultimately tricking hotel guests via the Booking.com app. The scheme utilizes a fake domain to deceive users and harvest sensitive data.SECURITYONLINE.INFO
4 SepInitial Access Brokers Target $2bn Revenue CompaniesInitial Access Brokers (IABs) are now targeting companies with revenues reaching $2 billion, particularly in the US and business services sector, according to new research from Cyberint.INFOSECURITY-MAGAZINE.COM
4 SepX is hiring staff for security and safety after two years of layoffsThe hiring effort comes after X, formerly known as Twitter, laid off 80% of its trust and safety staff since Musk's takeover. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
4 SepUS cracks down on Russian disinformation before 2024 electionThe FBI seized 32 web domains used by the Doppelgänger Russian-linked influence operation network in a disinformation campaign targeting the American public ahead of this year's presidential election. [...]BLEEPINGCOMPUTER.COM
4 SepOswal: AI, Platformization Key to Network Security EvolutionUnifying fragmented network security technology under a single platform allows for consistent policy application across on-premises, cloud and hybrid environments, said Palo Alto Networks' Anand Oswal. Having a consistent policy framework simplifies management and improves securi…DATABREACHTODAY.CO.UK
4 SepThe key considerations for cyber insurance: A pragmatic approachWould a more robust cybersecurity posture impact premium costs? Does the policy offer legal cover? These are some of the questions organizations should consider when reviewing their cyber insurance optionsWELIVESECURITY.COM