matlock.ca // THREAT INTELLIGENCE — 2024-09-05

94Articles

10Categories

2024-09-05Date

🚨

DrayTek Vulnerabilities Added to CISA KEV Catalog Exploited in Global CampaignTwo DrayTek vulnerabilities added by CISA to its KEV catalog have been exploited by multiple threat groups to steal data from organizations worldwide. The post DrayTek Vulnerabilities Added to CISA KEV Catalog Exploited in Global Campaign appeared first on SecurityWeek .

KEVSECURITYWEEK.COM — 05 Sep 2024

🐛

Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks

THEHACKERNEWS.COM — 05 Sep 2024

🐛

CISA Warns of Three Actively Exploited Vulnerabilities That Demand Immediate Attention

KEVSECURITYONLINE.INFO — 05 Sep 2024

🐛

Google Fixed Actively Exploited Android Privilege Escalation Flaw (CVE-2024-32896)

KEVSECURITYAFFAIRS.COM — 05 Sep 2024

🐛

Cisco Warns of Backdoor Admin Account in Smart Licensing Utility

BLEEPINGCOMPUTER.COM — 05 Sep 2024

🐛

Veeam Releases Security Updates to Fix 18 Flaws, Including 5 Critical Issues

THEHACKERNEWS.COM — 05 Sep 2024

⚠️

Hackers are cloning YubiKeys via new side-channel exploit

CSOONLINE.COM — 05 Sep 2024

⚠️

"Active Listening" software reportedly used to listen in on smart phone conversations. Cyber Security Today for Thursday, September 5, 2024

CYBERSECURITYTODAY.LIBSYN.COM — 05 Sep 2024

⚠️

No evidence that TP-Link routers are a Chinese security threat

CSOONLINE.COM — 05 Sep 2024

⚠️

Cisco Smart Licensing Utility Vulnerability Let Attackers Gain Admin Control

GBHACKERS.COM — 05 Sep 2024

⚠️

Veeam Backup & Replication Vulnerabilities Let Attackers Execute Remote Code

GBHACKERS.COM — 05 Sep 2024

⚠️

RomCom Group’s Underground Ransomware Exploits Microsoft Zero-Day Flaw

SECURITYONLINE.INFO — 05 Sep 2024

⚠️

New report shows ongoing gender pay gap in cybersecurity

SECURITYINTELLIGENCE.COM — 05 Sep 2024

⚠️

CISO budget survey: Modest increases in 2024

CSOONLINE.COM — 05 Sep 2024

⚠️

Veeam warns of critical RCE flaw in Backup & Replication software

BLEEPINGCOMPUTER.COM — 05 Sep 2024

⚠️

Phishing is Still the Top Initial Access Vector

KNOWBE4.COM — 05 Sep 2024

⚠️

CISA Releases Four Industrial Control Systems Advisories

CISA.GOV — Thu, 05 Sep 24 1

⚠️

Cisco Fixes Root Escalation Vulnerability With Public Exploit Code

KEVBLEEPINGCOMPUTER.COM — 05 Sep 2024

⚠️

GitHub Actions typosquatting: A high-impact supply chain attack-in-waiting

CSOONLINE.COM — 05 Sep 2024

⚠️

Russian military hackers linked to critical infrastructure attacks

BLEEPINGCOMPUTER.COM — 05 Sep 2024

⚠️

LiteSpeed Cache bug exposes 6 million WordPress sites to takeover attacks

BLEEPINGCOMPUTER.COM — 05 Sep 2024

⚠️

How to Make the World Quantum Safe - Vadim Lyubashevsky - ESW Vault

YOUTUBE.COM — 2024-09-05

⚠️

Breach Roundup: YubiKey 5 Is Vulnerable to Cloning

DATABREACHTODAY.CO.UK — 2024-09-05

⚠️

Multiple Vulnerabilities in Veeam Products Could Allow for Remote Code Execution

CISECURITY.ORG — 05 Sep 2024

⚠️

Boost security and control at every stage of the cloud application lifecycle

CSOONLINE.COM — 05 Sep 2024

⚠️

Apache fixes critical OFBiz remote code execution vulnerability

BLEEPINGCOMPUTER.COM — 05 Sep 2024

⚠️

Kaspersky US Customers Migrate to Pango's UltraAV After Ban

DATABREACHTODAY.CO.UK — 2024-09-05

⚠️

US charges 5 Russian spies for Ukraine, NATO cyberattacks

CSOONLINE.COM — 05 Sep 2024

⚠️

Enrichment Data: Keeping it Fresh, (Fri, Sep 6th)

ISC.SANS.EDU — 05 Sep 2024

📋

Tor Browser 13.5.3 Released, What’s New?

GBHACKERS.COM — 05 Sep 2024

📢

NIST Cybersecurity Framework (CSF) and CTEM – Better Together

THEHACKERNEWS.COM — 05 Sep 2024

📢

Abusix Launches Guardian: Cutting-Edge Security Platform for Email and Network Providers

GBHACKERS.COM — 05 Sep 2024

📢

Veeam security advisory (AV24-499)

CYBER.GC.CA — 2024-09-05

📢

Litespeed Cache Flaw Exposes Millions of WordPress Sites to Takeover Attacks

SECURITYONLINE.INFO — 05 Sep 2024

📢

FBI, CISA, NSA, and US and International Partners Release Advisory on Russian Military Cyber Actors Targeting US and Global Critical Infrastructure

CISA.GOV — Thu, 05 Sep 24 1

🔥

Planned Parenthood confirms cyberattack as RansomHub claims breach

BLEEPINGCOMPUTER.COM — 05 Sep 2024

🔥

New Cross-Platform Malware KTLVdoor Discovered in Attack on Chinese Trading Firm

THEHACKERNEWS.COM — 05 Sep 2024

🔥

The SEC’s 2023 final rules on cybersecurity disclosures

SOPHOS.COM — 05 Sep 2024

🔥

Microchip Technology Confirms Personal Information Stolen in Ransomware Attack

SECURITYWEEK.COM — 05 Sep 2024

🔥

Lazarus Hackers Attacking Job-Seekers to Deliver Javascript Malware

GBHACKERS.COM — 05 Sep 2024

🔥

Notorious Mallox Ransomware Evolved From Private Ransomware to RaaS

GBHACKERS.COM — 05 Sep 2024

🔥

Colorado Tops List Of Cyberattacks Per Capita In The US

PACKETSTORMSECURITY.COM — 05 Sep 2024

🔥

Cicada ransomware – what you need to know

TRIPWIRE.COM — 05 Sep 2024

🔥

Banks Brace for DORA Cybersecurity Deadline on Jan. 17

DATABREACHTODAY.CO.UK — 2024-09-05

🔥

Ransomware Gang Claims Cyberattack on Planned Parenthood

SECURITYWEEK.COM — 05 Sep 2024

🕵️

Attack Surface [Guest Diary], (Wed, Sep 4th)

ISC.SANS.EDU — 05 Sep 2024

🕵️

ISC Stormcast For Thursday, September 5th, 2024 https://isc.sans.edu/podcastdetail/9126, (Thu, Sep 5th)

ISC.SANS.EDU — 05 Sep 2024

🕵️

Malware Attackers Using MacroPack to Deliver Havoc, Brute Ratel, and PhantomCore

THEHACKERNEWS.COM — 05 Sep 2024

🕵️

Threat Actors Using MacroPack to Deploy Brute Ratel, Havoc, and PhantomCore Payloads

TALOSINTELLIGENCE.COM — 05 Sep 2024

🕵️

FBI Warns Crypto Firms of Aggressive Social Engineering Attacks

BLEEPINGCOMPUTER.COM — 05 Sep 2024

🕵️

Where's a good place to look for entry-level GRC jobs?

SH.ITJUST.WORKS — 5 Sep 2024

🕵️

US Targets Russian Election Influence Operation With Charges, Sanctions, Domain Seizures

SECURITYWEEK.COM — 05 Sep 2024

🕵️

Growth of Web3 Fuled New Opportunities for Threat Actors to Attack Finance Sectors

GBHACKERS.COM — 05 Sep 2024

🕵️

Fake OnlyFans cybercrime tool infects hackers with malware

BLEEPINGCOMPUTER.COM — 05 Sep 2024

🕵️

Long Analysis of the M-209

SCHNEIER.COM — 2024-09-05

🕵️

Two Nigerians Sentenced to Prison in US for BEC Fraud

SECURITYWEEK.COM — 05 Sep 2024

🕵️

How Do You Know When AI is Powerful Enough to be Dangerous? Regulators Try to Do the Math

SECURITYWEEK.COM — 05 Sep 2024

🕵️

Iran pays millions to stop data leak related to banks

CYBERSECURITY-INSIDERS.COM — 5 Sep 2024

🕵️

Palo Alto closes IBM QRadar SaaS buy, extends security partnership

NETWORKWORLD.COM — 05 Sep 2024

🕵️

White House brands BGP routing a ‘national security concern’ as it unveils reform roadmap

NETWORKWORLD.COM — 05 Sep 2024

🕵️

Cisco Patches Critical Vulnerabilities in Smart Licensing Utility

SECURITYWEEK.COM — 05 Sep 2024

🕵️

Earth Lusca Using Multiplatform Backdoor to Attack Windows & Linux Machines

GBHACKERS.COM — 05 Sep 2024

🕵️

The AI Wild West: Unraveling the Security and Privacy Risks of GenAI Apps

SECURITYWEEK.COM — 05 Sep 2024

🕵️

Acuvity Raises $9 Million Seed Funding for Gen-AI Governance and In-house Development

SECURITYWEEK.COM — 05 Sep 2024

🕵️

North Korean Hackers Target Job Seekers With Fake App

PACKETSTORMSECURITY.COM — 05 Sep 2024

🕵️

Hacker trap: Fake OnlyFans tool backstabs cybercriminals, steals passwords

BLEEPINGCOMPUTER.COM — 05 Sep 2024

🕵️

Manufacturing Sector Is the Latest Target of Advanced Credential Harvesting Attacks

KNOWBE4.COM — 05 Sep 2024

🕵️

Zyxel warns of vulnerabilities in a wide range of its products

ARSTECHNICA.COM — 5 Sep 2024

🕵️

Cryptohack Roundup: Focus on Pig Butchering

DATABREACHTODAY.CO.UK — 2024-09-05

🕵️

Chinese-Speaking Hacker Group Targets Human Rights Studies in Middle East

THEHACKERNEWS.COM — 05 Sep 2024

🕵️

Russian GRU Unit Tied to Assassinations Linked to Global Cyber Sabotage and Espionage

SECURITYWEEK.COM — 05 Sep 2024

🕵️

Russian GRU Unit Tied to Assassinations Now Linked to Global Cyber Sabotage and Espionage

SECURITYWEEK.COM — 05 Sep 2024

🕵️

Former OpenAI Scientist's Startup Raises $1B Seed Funding

KEVDATABREACHTODAY.CO.UK — 2024-09-05

🕵️

US Broadens Indictments Against Russian Intelligence Hackers

DATABREACHTODAY.CO.UK — 2024-09-05

🕵️

RansomHub Claims Theft of Montana Planned Parenthood Data

DATABREACHTODAY.CO.UK — 2024-09-05

🕵️

FEMA Has Begun Deploying Cyber Advisers to Disaster Zones

DATABREACHTODAY.CO.UK — 2024-09-05

🌐

Banking Trojans: Mekotio Looks to Expand Targets, BBTok Abuses Utility Command

TRENDMICRO.COM — 05 Sep 2024

🌐

Russian military cyber actors target U.S. and global critical infrastructure

CYBER.GC.CA — 2024-09-05

🌐

US charges five Russian military hackers with targeting Ukraine’s government with destructive malware

TECHCRUNCH.COM — 05 Sep 2024

🎙️

Transatlantic Cable podcast episode 362 | Kaspersky official blog

KASPERSKY.COM — 05 Sep 2024

🎙️

ESET Research Podcast: HotPage

WELIVESECURITY.COM — 05 Sep 2024

📡

How to Identify and Stop Scrapers

F5.COM — 05 Sep 2024

📡

Revival Hijack Attack Puts 22,000 PyPI Packages at Risk of Hijack

JFROG.COM — 05 Sep 2024

📡

U.S. Seizes 32 Pro-Russian Propaganda Domains in Major Disinformation Crackdown

THEHACKERNEWS.COM — 05 Sep 2024

📡

EUCLEAK Attack Allows Yubico Security Keys to be Cloned

HELPNETSECURITY.COM — 05 Sep 2024

📡

Cisco Patches Critical Vulns In Smart Licensing Utility

PACKETSTORMSECURITY.COM — 05 Sep 2024

📡

US Targets Election Influence Operation With Charges, Sanctions, Domain Seizures

PACKETSTORMSECURITY.COM — 05 Sep 2024

📡

Ukrainian Drones Now Spray Thermite Streams Right Into Russian Trenches

PACKETSTORMSECURITY.COM — 05 Sep 2024

📡

Security Boom Is Over, With Over 1/3 Of CISOs Reporting Flat Or Falling Budgets

PACKETSTORMSECURITY.COM — 05 Sep 2024

📡

Musician charged with $10M streaming royalties fraud using AI and bots

BLEEPINGCOMPUTER.COM — 05 Sep 2024

📡

Intricate Babylon RAT Campaign Targets Malaysian Politicians, Government

CYBLE.COM — 05 Sep 2024

📡

Microsoft removes revenge porn from Bing search using new tool

BLEEPINGCOMPUTER.COM — 05 Sep 2024

📡

How to Identify and Stop Scrapers

F5.COM — 05 Sep 2024

📡

How to Identify and Stop Scrapers

F5.COM — 05 Sep 2024