192Articles
10Categories
2024-09-10Date
🚨 CISA KEV 2[−]
10 Sep KEVU.S. CISA adds SonicWall SonicOS, ImageMagick and Linux Kernel bugs to its Known Exploited Vulnerabilities catalogsubmitted by kid to cybersecurity 2 points | 0 comments https://securityaffairs.com/168251/security/u-s-cisa-adds-sonicwall-sonicos-imagemagick-and-linux-kernel-bugs-to-its-known-exploited-vulnerabilities-catalog.htmlSECURITYAFFAIRS.COM
10 Sep KEVCISA Adds Four Known Exploited Vulnerabilities to CatalogCISA has added four new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-38226 Microsoft Publisher Security Feature Bypass Vulnerability CVE-2024-43491 Microsoft Windows Update Remote Code Execution Vulnerab…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 87[−]
10 SepMindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security ProtectionsMindsDB has fixed a critical security vulnerability, CVE-2024-24759, which could enable attackers to bypass security measures using DNS rebinding. This technique manipulates domain name resolution to bypass SSRF protection.SECURITYONLINE.INFO
10 SepPoC Exploit Releases for Windows Elevation of Privilege Vulnerability (CVE-2024-26230)A PoC exploit for an Elevation of Privilege vulnerability in Windows has been released by a security researcher. This exploit targets a flaw in the Windows Telephony service, allowing attackers to gain SYSTEM privileges on affected systems.SECURITYONLINE.INFO
10 Sep KEVCISA Issues Warning About Three Actively Exploited Vulnerabilities in the WildThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning about three critical vulnerabilities currently being exploited in the wild. These vulnerabilities affect a range of widely used software and systems, posing significant risks to organizations…GBHACKERS.COM
10 SepNew Chrome Zero-DayAccording to Microsoft researchers, North Korean hackers have been using a Chrome zero-day exploit to steal cryptocurrency.SCHNEIER.COM
10 SepCitrix Releases Security Updates for Citrix Workspace App for WindowsCitrix released security updates to address multiple vulnerabilities in the Citrix Workspace App for Windows. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.  CISA encourages users and administrators to review the follo…CISA.GOV
10 SepCVE-2020-17042 Windows Print Spooler Remote Code Execution VulnerabilityIn the Security Updates table, added Windows Server 2022 and Windows Server 2022 (Server Core installation) as these versions are affected by this vulnerability. Microsoft recommends that customers running any of these products install the updates to be fully protected from the v…MSRC.MICROSOFT.COM
10 SepIvanti Releases Security Updates for Endpoint Manager, Cloud Service Application, and Workspace ControlIvanti released security updates to address multiple vulnerabilities in Ivanti Endpoint Manager, Cloud Service Application 4.6, and Workspace Control. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.  CISA encourage…CISA.GOV
10 SepCVE-2024-38216 Azure Stack Hub Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38220 Azure Stack Hub Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38236 DHCP Server Service Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-43465 Microsoft Excel Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38014 Windows Installer Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38046 PowerShell Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38232 Windows Networking Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38233 Windows Networking Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38234 Windows Networking Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38235 Windows Hyper-V Denial of Service VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38239 Windows Kerberos Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38246 Win32k Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38248 Windows Storage Elevation of Privilege VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-21416 Windows TCP/IP Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-38045 Windows TCP/IP Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-43461 Windows MSHTML Platform Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-43469 Azure CycleCloud Remote Code Execution VulnerabilityInformation published.MSRC.MICROSOFT.COM
10 SepCVE-2024-43491 Microsoft Windows Update Remote Code Execution VulnerabilityMicrosoft is aware of a vulnerability in Servicing Stack that has rolled back the fixes for some vulnerabilities affecting Optional Components on Windows 10, version 1507 (initial version released July 2015). This means that an attacker could exploit these previously mitigated vu…MSRC.MICROSOFT.COM
10 SepCVE-2024-43495 Windows libarchive Remote Code Execution VulnerabilityInformation published. This CVE was addressed by updates that were released in July 2024, but the CVE was inadvertently omitted from the July 2024 Security Updates. This is an informational change only. Customers who have already installed the July 2024 updates do not need to tak…MSRC.MICROSOFT.COM
10 SepCVE-2024-38194 Azure Web Apps Elevation of Privilege VulnerabilityAn authenticated attacker can exploit an improper authorization vulnerability in Azure Web Apps to elevate privileges over a network.MSRC.MICROSOFT.COM
10 SepCisco Releases Security Updates for Cisco Smart Licensing UtilityCisco released security updates to address two vulnerabilities (CVE-2024-20439 and CVE-2024-20440) in Cisco Smart Licensing Utility. A cyber threat actor could exploit one of these vulnerabilities to take control of an affected system.  CISA encourages users and administrato…CISA.GOV
⚠️ VULNERABILITY DISCLOSURE 28[−]
10 SepWant to get ahead? Four activities that can enable a more proactive security regimeHockey legend Wayne Gretzky famously shared his secret to success on the ice: “I skate to where the puck is going to be, not where it has been.” Security teams would do well to embrace Gretzky’s forward-looking strategy in their own work; those who place emphasis on where their s…CSOONLINE.COM
10 SepCAMO Unveiled: How Cybercriminals Exploit Legitimate Software for Stealthy AttacksCAMO, short for Commercial Applications, Malicious Operations, showcases how cybercriminals are increasingly utilizing legitimate IT tools to evade security measures and conduct stealthy attacks.RELIAQUEST.COM
10 SepHigh School in London Forced to Sends Students Home Following Ransomware AttackCharles Darwin School in Biggin Hill, London, has been forced to close its doors following a sophisticated ransomware attack temporarily. The incident has left students and parents uncertain as the school works to restore its systems and secure sensitive data. The Cyber Attack: W…GBHACKERS.COM
10 Sep KEVWhatsApp’s “View Once” Feature Flaw Exploited in the WildThe Zengo X Research Team has uncovered a critical flaw in WhatsApp’s “View Once” feature, designed to enhance user privacy by allowing media to be viewed only once before disappearing. This flaw, now exploited in the wild, raises significant concerns about the …GBHACKERS.COM
10 SepChina-based cyber espionage campaign in SE Asia is expanding, says SophosCISOs in Southeast Asia should be on alert after the discovery that a suspected Chinese-based cyber espionage campaign that started last year is expanding its scope. The warning today comes from researchers at Sophos, in a new report on activity it dubs Operation Crimson Palace .…CSOONLINE.COM
10 SepThird-party risk management can learn a lot from the musk oxThird-party risk management is a significant CISO challenge with deep business consequences. When a key third-party supplier succumbs to cyberattack, operations can grind to a halt. In healthcare and financial services, third parties have been an attack vector of choice of late. …CSOONLINE.COM
10 SepNew PIXHELL Attack Exploits Screen Noise to Exfiltrates Data from Air-Gapped ComputersA new side-channel attack dubbed PIXHELL could be abused to target air-gapped computers by breaching the "audio gap" and exfiltrating sensitive information by taking advantage of the noise generated by the pixels on the screen. "Malware in the air-gap and audio-gap computers gene…THEHACKERNEWS.COM
10 SepUS targets advanced AI and cloud firms with new reporting proposalThe US Department of Commerce’s Bureau of Industry and Security (BIS) plans to introduce mandatory reporting requirements for developers of advanced AI models and cloud computing providers. The proposed rules would require companies to report on development activities, cybersecur…CIO.COM
10 SepChinese APT Group Abuses Visual Studio Code to Target Government in AsiaChinese APT group Stately Taurus exploited Visual Studio Code to target government entities in Southeast Asia for cyberespionage. They utilized the software's reverse shell feature to infiltrate networks, a technique first detected in 2023.UNIT42.PALOALTONETWORKS.COM
10 SepChatGPT 4 can exploit 87% of one-day vulnerabilities: Is it really that impressive?After reading about the recent cybersecurity research by Richard Fang, Rohan Bindu, Akul Gupta and Daniel Kang, I had questions. While initially impressed that ChatGPT 4 can exploit the vast majority of one-day vulnerabilities, I started thinking about what the results really mea…SECURITYINTELLIGENCE.COM
10 SepChinese Hackers Using Open Source Tools To Launch Cyber AttacksThree Chinese state-backed threat groups, APT10, GALLIUM, and Stately Taurus, have repeatedly employed a modified version of the open-source network scanning tool NBTscan over the past decade.  NBTscan, designed for network discovery and forensics, sends NetBIOS status queri…GBHACKERS.COM
10 SepCISA Releases Four Industrial Control Systems AdvisoriesCISA released four Industrial Control Systems (ICS) advisory on September 10, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-254-01 Viessmann Climate Solutions SE Vitogate 300 ICSA-24-254-02 …CISA.GOV
10 SepMicrosoft to start force-upgrading Windows 22H2 systems next monthMicrosoft announced that Windows 11 installs reaching the end of support next month, on October 8, will be force-upgraded to Windows 11 23H2. [...]BLEEPINGCOMPUTER.COM
10 SepAvis reports data breach affecting 300,000 customersCar rental company Avis has informed around 300,000 of its customers in the US that their personal data has been stolen in a cyberattack. The company detected unauthorized access to one of its business applications at the beginning of August. “After becoming aware of the incident…CSOONLINE.COM
10 Sep KEVMicrosoft September 2024 Patch Tuesday fixes 4 zero-days, 79 flawsToday is Microsoft's September 2024 Patch Tuesday, which includes security updates for 79 flaws, including four actively exploited and one publicly disclosed zero-days. [...]BLEEPINGCOMPUTER.COM
10 SepMicrosoft fixes Windows Smart App Control zero-day exploited since 2018​Microsoft has fixed a Windows Smart App Control and SmartScreen flaw that has been exploited in attacks as a zero-day since at least 2018. [...]BLEEPINGCOMPUTER.COM
10 SepMicrosoft September 2024 Patch Tuesday, (Tue, Sep 10th)Today, Microsoft released its scheduled September set of patches. This update addresses 79 different vulnerabilities. Seven of these vulnerabilities are rated critical. Four vulnerabilities are already being exploited and have been made public. ISC.SANS.EDU
10 SepMicrosoft Releases September 2024 Security UpdatesMicrosoft released security updates to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply necessary update…CISA.GOV
10 SepCritical Patches Issued for Microsoft Products, September 10, 2024Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged on user. Depending on the privileges associated with the user, an attacker could then install programs; view, change, o…CISECURITY.ORG
10 SepIvanti fixes maximum severity RCE bug in Endpoint Management softwareIvanti has fixed a maximum severity vulnerability in its Endpoint Management software (EPM) that can let unauthenticated attackers gain remote code execution on the core server. [...]BLEEPINGCOMPUTER.COM
10 SepANZ CIOs see cybersecurity as top priority for 2025Managing cybersecurity and other technology risks will be top of mind for CIOs in 2025 across Australia and New Zealand (ANZ), with 82% of 109 respondents saying it is a key priority for next year, according to Gartner. Increased executive and board scrutiny on technology investm…CSOONLINE.COM
10 SepCommerce Unveils 'Scale' Tool to Tackle Supply Chain RisksNew Tool Uses 40 Indicators to Provide In-Depth Diagnostic Analysis, Officials Say Commerce Secretary Gina Raimondo unveiled a new data tool Tuesday called Scale. It assesses a wide range of factors affecting supply chains to provide a detailed analysis of potential risks and cha…DATABREACHTODAY.CO.UK
10 SepUS quantum computing lead over China threatened by weakness in commercializationThe US leads the world in quantum computing research, but it will need more government investment to maintain its lead over China, an assessment by the Information Technology and Innovation Foundation (ITIF) has argued. Broadly, the ITIF’s latest report , the result of interviews…CSOONLINE.COM
10 SepMicrosoft Says Windows Update Zero-Day Being Exploited to Undo Security FixesPatch Tuesday: Microsoft raises an alarm for in-the-wild exploitation of a critical flaw in Windows Update. The post Microsoft Says Windows Update Zero-Day Being Exploited to Undo Security Fixes appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepUK ICO and NCA to Collaborate on Cyber Incident PreparednessAgencies Sign Agreement to Boost Cooperation, Share Cyberthreat Information The British data protection authority and national law enforcement agency signed onto a cyber risk information-swapping agreement. The National Crime Agency and the Information Commissioner's Office will …DATABREACHTODAY.CO.UK
10 Sep KEVBug Left Some Windows PCs Dangerously UnpatchedMicrosoft Corp. today released updates to fix at least 79 security vulnerabilities in its Windows operating systems and related software, including multiple flaws that are already showing up in active attacks. Microsoft also corrected a critical bug that has caused some Windows 1…KREBSONSECURITY.COM
10 SepRAM Signals Expose Air-Gapped Networks to AttacksRAM-Based Radio Signal Attack Allows Attackers to Exfiltrate Data A novel side-channel attack exploits radio signals emitted by random access memory in air-gapped computers, presenting a new threat to highly secure networks. One of the most effective ways to mitigate the risk is …DATABREACHTODAY.CO.UK
📋 SECURITY BULLETINS 4[−]
10 SepAdobe Patches Critical, Code Execution Flaws in Multiple ProductsPatch Tuesday: Adobe releases patches for 28 security vulnerabilities and warned of code execution risks on Windows and macOS platforms. The post Adobe Patches Critical, Code Execution Flaws in Multiple Products appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepWindows 10 KB5043064 update released with 6 fixes, security updatesMicrosoft has released the KB5043064 cumulative update for Windows 10 22H2 and Windows 10 21H2, which includes 6 changes and fixes, including a fix for Bluetooth devices that stop working due to a memory leak. [...]BLEEPINGCOMPUTER.COM
10 SepCrowdStrike Has Yet to See Any Customer Lawsuits Over Outage'We Don't Know How It's All Going to Shake Out,' Says CFO, 6 Weeks Post-Outage Cybersecurity firm CrowdStrike has yet to see any lawsuits get filed against it by customers, following its July 19 faulty software update crashing systems worldwide. Does that speak to the company hav…DATABREACHTODAY.CO.UK
10 SepMicrosoft fixes Windows Server performance issues from August updates​Microsoft says this month's Patch Tuesday cumulative updates also fix a known issue causing Windows Server 2019 boot problems, freezes, and performance issues after installing the August 2024 security updates. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 10[−]
10 SepResearchers Details Attacks On Air-Gaps Computers To Steal DataThe air-gap data protection method isolates local networks from the internet to mitigate cyber threats and protect sensitive data, which is commonly used by organizations dealing with confidential information such as personal, financial, medical, legal, and biometric data.  …GBHACKERS.COM
10 SepKimsuky-linked Hackers Use Similar Tactics to Attack Russia and South KoreaKnown as Konni, the threat actor uses similar tactics in both countries since at least 2021, targeting entities like the Russian Ministry of Foreign Affairs, the Russian Embassy in Indonesia, and South Korean businesses, including a tax law firm.THERECORD.MEDIA
10 SepCISA Flags ICS Bugs in Baxter, Mitsubishi ProductsCISA has identified vulnerabilities in industrial control system products from Baxter and Mitsubishi that are commonly used in healthcare and critical manufacturing sectors. Both the firms have released advisories with mitigation measures.DARKREADING.COM
10 SepPolish Government Disrupts Russian and Belarusian HacksPolish Deputy Prime Minister Says Russia Is Waging 'De Facto Cyberwar' The Polish government said Monday it faces an onslaught of cyberattacks from Russian and Belarusian security agencies intent on cyberespionage and blackmail. Poland is in the midst of a "de facto cyberwar," sa…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 19[−]
10 SepPoland’s Cybersecurity Experts Foil Russian and Belarussian AttacksPoland’s security officials said they have foiled cyberattacks and online blackmail attempts by groups acting for Russian and Belarusian services. The post Poland’s Cybersecurity Experts Foil Russian and Belarussian Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepSlim CD Data Breach Impacts 1.7 Million IndividualsSlim CD says the personal and credit card information of 1.7 million was compromised in a ten-month-long data breach. The post Slim CD Data Breach Impacts 1.7 Million Individuals appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepMustang Panda Deploys Advanced Malware to Spy on Asia-Pacific GovernmentsThe threat actor tracked as Mustang Panda has refined its malware arsenal to include new tools in order to facilitate data exfiltration and the deployment of next-stage payloads, according to new findings from Trend Micro. The cybersecurity firm, which is monitoring the activity …THEHACKERNEWS.COM
10 SepNoName ransomware gang deploying RansomHub malware in recent attacksThe NoName ransomware gang has been trying to build a reputation for more than three years targeting small and medium-sized businesses worldwide with its encryptors and may now be working as a RansomHub affiliate. [...]BLEEPINGCOMPUTER.COM
10 Sep'TIDrone' Cyberattackers Target Taiwan's Drone ManufacturersTIDrone, linked to Chinese-speaking groups, deploys advanced malware through ERP software or remote desktop tools. Trend Micro identified the threat actor as actively pursuing military and satellite industrial supply chains in Taiwan.DARKREADING.COM
10 SepShining a Light on Shadow Apps: The Invisible Gateway to SaaS Data BreachesShadow apps, a segment of Shadow IT, are SaaS applications purchased without the knowledge of the security team. While these applications may be legitimate, they operate within the blind spots of the corporate security team and expose the company to attackers.  Shadow apps m…THEHACKERNEWS.COM
10 SepWisconsin Insurer Discloses Data Breach Impacting 950,000 IndividualsWisconsin Physicians Service Insurance Corporation says the personal information of 950,000 people was stolen in the MOVEit hack last year. The post Wisconsin Insurer Discloses Data Breach Impacting 950,000 Individuals appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepExperts Identify 3 Chinese-Linked Clusters Behind Cyberattacks in Southeast AsiaA trio of threat activity clusters linked to China has been observed compromising more government organizations in Southeast Asia as part of a renewed state-sponsored operation codenamed Crimson Palace, indicating an expansion in the scope of the espionage effort. Cybersecurity f…THEHACKERNEWS.COM
10 SepUsing Time in Your Favor During a Ransomware AttackFor organizations to overcome ransomware attacks, buying time can change the balance of power and set you up for a more successful resolution. The post Using Time in Your Favor During a Ransomware Attack appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
10 SepPoland thwarted cyberattacks that were carried out by Russia and Belarussubmitted by kid to cybersecurity 2 points | 0 comments https://securityaffairs.com/168258/cyber-warfare-2/poland-thwarted-cyberattacks-russia-and-belarus.htmlSECURITYAFFAIRS.COM
10 SepPoland Dismantles Cyber Sabotage Group Linked to Russia, BelarusPoland has dismantled a cyber sabotage group with links to Russia and Belarus. The group attempted to disrupt the country through cyberattacks, extorting information from local government agencies and state companies related to security matters.THERECORD.MEDIA
10 SepCISO & Legal: Partnerships Needed - Joe Sullivan - CSP #191Listen to the importance of legal relationships and interaction with the CISO and security program. Jess and Joe talk about the need for legal to understand the security team's day to day and also what incident response means to your organization. Bringing your legal reps into th…YOUTUBE.COM
10 SepSmall Business, Big Threats: INE Security Launches Initiative to Train SMBs to Close a Critical Skills GapAs cyber threats grow, small to medium-sized businesses (SMBs) are disproportionately targeted. According to the recent Hiscox annual cyber readiness report, 41% of SMBs in the US fell victim to a cyberattack in 2023, a figure that has nearly doubled since 2021. INE Security, a g…GBHACKERS.COM
10 SepCosmicBeetle Deploys Custom ScRansom Ransomware, Partnering with RansomHubThe threat actor known as CosmicBeetle has debuted a new custom ransomware strain called ScRansom in attacks targeting small- and medium-sized businesses (SMBs) in Europe, Asia, Africa, and South America, while also likely working as an affiliate for RansomHub. "CosmicBeetle repl…THEHACKERNEWS.COM
10 SepRansomHub ransomware abuses Kaspersky TDSSKiller to disable EDR softwareThe RansomHub ransomware gang has been using TDSSKiller, a legitimate tool from Kaspersky, to disable endpoint detection and response (EDR) services on target systems. [...]BLEEPINGCOMPUTER.COM
10 SepLondon’s transit agency drops claim it has ‘no evidence’ of customer data theft after hackThe London transport authority removes a claim that said there was no evidence that customer data was compromised during a recent hack. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
10 SepNews alert: INE Security launches initiative to help SMBs foster a proactive cybersecurity cultureCary, NC, Sept. 10, 2024, CyberNewsWire — As cyber threats grow, small to medium-sized businesses (SMBs) are disproportionately targeted. According to the recent Hiscox annual cyber readiness report , 41% of SMBs in the US fell victim to a cyberattack … (more…) The po…LASTWATCHDOG.COM
10 SepCosmicBeetle steps up: Probation period at RansomHubCosmicBeetle, after improving its own ransomware, tries its luck as a RansomHub affiliateWELIVESECURITY.COM
🕵️ THREAT INTELLIGENCE 20[−]
10 SepISC Stormcast For Tuesday, September 10th, 2024 https://isc.sans.edu/podcastdetail/9132, (Tue, Sep 10th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
10 SepThreat Actors Allegedly Claiming Leak of Capgemini DataThreat actors have allegedly leaked sensitive data from Capgemini, a global leader in consulting, technology services, and digital transformation. The claims surfaced on the dark web, raising alarms about the potential impact on the company’s operations and client confident…GBHACKERS.COM
10 SepNorth Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job ScamsOnce installed, COVERTCATCH downloads a second-stage payload to compromise macOS systems. This tactic is part of various activity clusters, including Operation Dream Job and Contagious Interview.CLOUD.GOOGLE.COM
10 SepLazarus Group Targets Blockchain Pros with Fake Video Conferencing, Job ScamThe Lazarus Group, known for financially motivated cyber campaigns, is targeting blockchain professionals through fake job offers and fraudulent video conferencing applications.HACKREAD.COM
10 SepBeware Of Malicious Chrome Extension That Delivers Weaponized ZIP ArchiveIn August 2024, researchers detected a malicious Google Chrome browser infection that led to the distribution of LummaC2 stealer malware that utilized a drive-by download of a ZIP archive containing an MSI app packaging file, which, when executed, installed the malicious software…GBHACKERS.COM
10 SepCrimson Palace returns: New Tools, Tactics, and TargetsChinese cyberespionage campaign renews efforts in multiple organization in Southeast Asia, blending tactics and expanding effortsSOPHOS.COM
10 SepDarkhive Raises $21 Million for Drones, Secure Code Delivery SystemDrone maker Darkhive has raised $21 million in a round led by cybersecurity-focused venture capital firm Ten Eleven. The post Darkhive Raises $21 Million for Drones, Secure Code Delivery System appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepThe AI Convention: Lofty Goals, Legal Loopholes, and National Security CaveatsSigned on September 5, 2024, the AI Convention is a laudable intent but suffers from the usual exclusions and exemptions necessary to satisfy multiple nations. The post The AI Convention: Lofty Goals, Legal Loopholes, and National Security Caveats appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepChina-Linked Hackers Target Drone MakersA Chinese-speaking threat actor tracked as Tidrone has been targeting military and satellite industries in Taiwan. The post China-Linked Hackers Target Drone Makers appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepUpcoming Webinar On How To Avoid Hiring Nation-State Fake EmployeesIn July 2024, KnowBe4 revealed  that we had unknowingly hired a North Korean who was pretending to be someone else. We locked down the laptop that was sent to the fake employee within 25 minutes of receiving an alert that he was trying to do something suspicious, and at no t…KNOWBE4.COM
10 SepSeventh Sense Unveils Revolutionary Privacy-Preserving Face-Based Public Key Infrastructure and eID SolutionGroundbreaking technology integrates Post-Quantum Cryptography and SSL security for the next generation of Face-based eID solutions and Face-protected Digital Public Key Infrastructure (DPKI) Seventh Sense, a pioneer in advanced cybersecurity solutions, announces the launch of Se…GBHACKERS.COM
10 SepStudy Finds Excessive Use of Remote Access Tools in OT EnvironmentsThe excessive use of remote access tools in OT environments can increase the attack surface, complicate identity management, and hinder visibility. The post Study Finds Excessive Use of Remote Access Tools in OT Environments appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepP0 Security Banks $15M for Security Cloud AccessSan Francisco secure cloud access startup gets backing from SYN Ventures, Zscaler, and Lightspeed Venture Partners. The post P0 Security Banks $15M for Security Cloud Access appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepSAP Releases 16 New Security Notes on September 2024 Patch DaySAP has released patches for multiple missing authorization check and information disclosure vulnerabilities on its September 2024 Security Patch Day. The post SAP Releases 16 New Security Notes on September 2024 Patch Day appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepEpic AI Fails And What We Can Learn From ThemLarge language models (LLMs) are trained on vast amounts of data to learn patterns and recognize relationships in language usage. But they can’t discern fact from fiction. The post Epic AI Fails And What We Can Learn From Them appeared first on SecurityWeek .SECURITYWEEK.COM
10 SepPaying Down Tech Debt, Rust in Firmware, EUCLEAK, Deploying SSO - ASW #298Considerations in paying down tech debt, make Rust work on bare metal, ECDSA side-channel in Yubikeys, trade-offs in deploying SSO quickly, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-298YOUTUBE.COM
10 SepAI Trucks, Solid Concrete, Sonicwall, Progress, Rust, Apple, and more... - SWN #412AI Trucks, Solid Concrete, Sonicwall, Progress, Rust, Apple, and more, on this Edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-412YOUTUBE.COM
10 SepQuad7 Botnet Operators Expand Targets, Aim for StealthVPN Endpoints, Wireless Routers and Network-Attached Storage Devices Are Targets Operators behind a mysterious botnet named for a TCP routing port number are expanding the universe of targeted devices and taking steps to hide their infrastructure, warn Sekoia researchers. The 777…DATABREACHTODAY.CO.UK
10 SepNews alert: Seventh Sense unveils a revolutionary privacy solution — face-based PKI and ‘eID’Singapore, Sept. 10, 2024, CyberNewsWire — Seventh Sense , a pioneer in advanced cybersecurity solutions, announces the launch of SenseCrypt , a revolutionary new platform that sets a new standard in secure, privacy-preserving identity verification. SenseCrypt introduces a …LASTWATCHDOG.COM
🌐 CYBER THREAT LANDSCAPE 3[−]
10 SepSpyware Vendors' Nebulous Ecosystem Helps Them Evade SanctionsSpyware vendors have developed a complex ecosystem that enables them to evade sanctions effectively by utilizing a network of interconnected entities across various jurisdictions.INFOSECURITY-MAGAZINE.COM
10 SepCybercriminals Target Latin American Banks with Mekotio, BBTok, and Grandoreiro TrojansThese campaigns aim to steal sensitive banking credentials using innovative tactics, expanding beyond traditional regions like Brazil and Argentina to industries such as manufacturing, retail, and financial services.SECURITYONLINE.INFO
10 SepPredator Spyware Roars Back with New Infrastructure, Evasive TacticsResearchers have warned of the resurgence of Predator spyware, previously thought to be inactive due to sanctions and exposure, thanks to new infrastructure and evasive tactics.SECURITYONLINE.INFO
🎙️ PODCASTS 1[−]
10 SepThe AI Fix #15: AI robot butlers and gigawatt banana highwaysIn episode 15 of "The AI Fix", Graham learns there's one W in Mississippi, ChatGPT finds Mark's G-spot, nobody watches Megalopolis, Alexa is unmasked as a "commie operative", and our hosts learn that AI will soon need dedicated nuclear reactors. Graham introduces Mark to a forlor…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 18[−]
10 SepMusician Charged With $10M Streaming Royalties Fraud Using AI and BotsNorth Carolina musician Michael Smith has been indicted for allegedly scamming over $10 million in royalty payments from Spotify, Amazon Music, Apple Music, and YouTube Music through a massive streaming fraud scheme.BLEEPINGCOMPUTER.COM
10 SepHomeland Security Hopes to Scuttle Maritime Cyber-ThreatsThe U.S. Department of Homeland Security (DHS) has issued a request for information to assess the security of technology at ports in order to develop a Maritime Port Resiliency and Security Research Testbed.THEREGISTER.COM
10 SepMoody's Ratings: Cyber Insurance Competition Up, Prices DownMoody's Ratings reported that competition in the cyber insurance market is increasing, leading to a decrease in prices, with new players entering the market despite concerns about systemic risk.BANKINFOSECURITY.COM
10 SepKey Cyber Insurance Stakeholders Urge Government To Help Close $900B in Uncovered RiskMarsh McLennan and Zurich Insurance Group have issued a white paper highlighting the need for a public-private partnership to help close this significant coverage gap, which poses a threat to both businesses and the economy.CYBERSECURITYDIVE.COM
10 SepUnderground Demand for Malicious LLMs is RobustThe underground market for malicious large language models (LLMs) is thriving, according to researchers from Indiana University Bloomington. They found 212 malicious LLMs for sale from April through September 2024.BANKINFOSECURITY.COM
10 SepNavigating Endpoint Privilege Management: Insights for CISOs and AdminsUnderstanding endpoint privilege management is key to defending organizations from advanced attacks. Learn more from ThreatLocker on using endpoint privilege management to better secure your org's systems. [...]BLEEPINGCOMPUTER.COM
10 SepFlipper Zero releases Firmware 1.0 after three years of developmentAfter three years of development, the Flipper Zero team has announced the release of the first major firmware version for the portable, customizable digital hacking device. [...]BLEEPINGCOMPUTER.COM
10 SepWix.com to block Russian users starting September 12Wix.com has announced it will stop providing services to Russian users on September 12, 2024, with all accounts from Russia, including free and premium, to be blocked and their websites taken down. [...]BLEEPINGCOMPUTER.COM
10 SepWix to block Russian users starting September 12Wix.com has announced it will stop providing services to Russian users on September 12, 2024, with all accounts from Russia, including free and premium, to be blocked and their websites taken down. [...]BLEEPINGCOMPUTER.COM
10 SepHow to Harness the Power of GenAI and LLM ResponsiblyCustomer Roundtable - (APAC): Netskope Executive ExchangeDATABREACHTODAY.CO.UK
10 SepWindows 11 KB5043076 cumulative update released with 19 changesMicrosoft has released the mandatory Windows 11 23H2 KB5043076 cumulative update to fix security vulnerabilities and make 19 improvements. [...]BLEEPINGCOMPUTER.COM
10 SepSophos Firewall v21: Third-party threat feedsHow to make the most of the new features in Sophos Firewall v21SOPHOS.COM
10 SepNew PIXHELL acoustic attack leaks secrets from LCD screen noiseA novel acoustic attack named 'PIXHELL' can leak secrets from air-gapped and audio-gapped systems, and without requiring speakers, through the LCD monitors they connect to. [...]BLEEPINGCOMPUTER.COM