MATLOCK.CA
94Articles
9Categories
2024-09-13Date
🚨
20 dollars exposes a huge flaw in Internet security: Cyber Security Today for Friday the 13th September, 2024Cyber Security Today: TfL Data Breach, Critical Vulnerabilities, and Insider Threats Join host Jim Love in 'Cyber Security Today' as we delve into the latest cyber security incidents and updates. Learn about Transport for London's data breach affecting thousands of customers, cri…
KEVCYBERSECURITYTODAY.LIBSYN.COM — 13 Sep 2024
🚨
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-8190 Ivanti Cloud Services Appliance OS Command Injection Vulnerability These types of vulnerabilities are frequent attack vectors for ma…
KEVCISA.GOV — Fri, 13 Sep 24 1
🚨
Ivanti Releases Security Update for Cloud Services ApplianceIvanti has released a security update addressing an OS command injection vulnerability (CVE-2024-8190) affecting Ivanti Cloud Services Appliance (CSA) 4.6 (all versions before patch 519). A cyber threat actor could exploit this vulnerability to take control of an affected system.…
KEVCISA.GOV — Fri, 13 Sep 24 1
πŸ›
Chromium: CVE-2024-8636 Heap buffer overflow in Skia
MSRC.MICROSOFT.COM — 13 Sep 2024
πŸ›
Chromium: CVE-2024-8639 Use after free in Autofill
MSRC.MICROSOFT.COM — 13 Sep 2024
πŸ›
Chromium: CVE-2024-8638 Type Confusion in V8
MSRC.MICROSOFT.COM — 13 Sep 2024
πŸ›
Chromium: CVE-2024-8637 Use after free in Media Router
MSRC.MICROSOFT.COM — 13 Sep 2024
πŸ›
Docker Desktop Vulnerabilities Let Attackers Execute Remote Code
GBHACKERS.COM — 13 Sep 2024
πŸ›
Hackers Exploiting Apache OFBiz RCE Vulnerability in the Wild
KEVGBHACKERS.COM — 13 Sep 2024
πŸ›
Beware Of Weaponized Excel Document That Delivers Fileless Remcos RAT
GBHACKERS.COM — 13 Sep 2024
πŸ›
Citrix Workspace App Vulnerable to Privilege Escalation Attacks
GBHACKERS.COM — 13 Sep 2024
πŸ›
Adobe Completes Fix for Reader Bug with Known PoC Exploit
HELPNETSECURITY.COM — 13 Sep 2024
πŸ›
Progress WhatsUp Gold Exploited Just Hours After PoC Release for Critical Flaw
THEHACKERNEWS.COM — 13 Sep 2024
πŸ›
Two Critical RCE Flaws Discovered in Docker Desktop
SECURITYONLINE.INFO — 13 Sep 2024
πŸ›
Update: Hackers Target Apache OFBiz RCE Flaw CVE-2024-45195 After PoC Exploit Released
SECURITYONLINE.INFO — 13 Sep 2024
πŸ›
SolarWinds Reveals RCE Flaw in Access Rights Manager
SECURITYONLINE.INFO — 13 Sep 2024
πŸ›
Critical Severity Flaw Exposes Siemens Industrial Systems
SECURITYONLINE.INFO — 13 Sep 2024
πŸ›
Apple Vision Pro Vulnerability Exposed Virtual Keyboard Inputs to Attackers
THEHACKERNEWS.COM — 13 Sep 2024
πŸ›
Newly patched Ivanti CSA flaw under active exploitation
KEVCSOONLINE.COM — 13 Sep 2024
⚠️
The US is Preparing Criminal Charges in Iran Hack Targeting Trump, AP Sources Say
SECURITYWEEK.COM — 13 Sep 2024
⚠️
Too many companies use non-enterprise grade remote access tools in their OT networks, says Claroty
CSOONLINE.COM — 13 Sep 2024
⚠️
Mastercard acquires Recorded Future: How will threat intelligence transform the payments industry?
CSOONLINE.COM — 13 Sep 2024
⚠️
New Linux Malware Campaign Exploits Oracle Weblogic to Mine Cryptocurrency
THEHACKERNEWS.COM — 13 Sep 2024
⚠️
GitLab Updates Resolve Critical Pipeline Execution Vulnerability
SECURITYWEEK.COM — 13 Sep 2024
⚠️
Aflac’s shift to passkeys brings big business benefits
CSOONLINE.COM — 13 Sep 2024
⚠️
Understanding and Mitigating the Risks of Email Forwarding
CSOONLINE.COM — 13 Sep 2024
⚠️
TrickMo Android Trojan Exploits Accessibility Services for On-Device Banking Fraud
THEHACKERNEWS.COM — 13 Sep 2024
⚠️
Fortinet confirms a breach that likely leaked 440 GB of customer data
CSOONLINE.COM — 13 Sep 2024
⚠️
Chinese-speaking Hackers Linked to DragonRank SEO Manipulator Service
TALOSINTELLIGENCE.COM — 13 Sep 2024
⚠️
In Other News: Possible Adobe Reader Zero-Day, Hijacking Mobi TLD, WhatsApp View Once Exploit
SECURITYWEEK.COM — 13 Sep 2024
⚠️
Apple Patches Vision Pro Vulnerability to Prevent GAZEploit Attacks
SECURITYWEEK.COM — 13 Sep 2024
⚠️
CISA Releases Analysis of FY23 Risk and Vulnerability Assessments
CISA.GOV — Fri, 13 Sep 24 1
⚠️
Fake Recruiter Coding Tests Target Developers With Malicious Python Packages
REVERSINGLABS.COM — 13 Sep 2024
⚠️
Fortinet confirms customer data breach
TECHCRUNCH.COM — 13 Sep 2024
⚠️
New cryptomining campaign infects WebLogic servers with Hadooken malware
CSOONLINE.COM — 13 Sep 2024
⚠️
Cybersecurity at the speed of Formula One - Darren Guccione, Harry Wilson - ESW #375
YOUTUBE.COM — 2024-09-13
⚠️
Cybersecurity has too many distractions and can the White House fix BGP? - ESW #375
YOUTUBE.COM — 2024-09-13
⚠️
New Office of the CISO Paper: Organizing Security for Digital Transformation
MEDIUM.COM — 13 Sep 2024
⚠️
Ivanti warns high severity CSA flaw is now exploited in attacks
KEVBLEEPINGCOMPUTER.COM — 13 Sep 2024
⚠️
Remote Access Tool Sprawl Increases OT Risks
DATABREACHTODAY.CO.UK — 2024-09-13
⚠️
Apple Suddenly Drops NSO Group Spyware Lawsuit
SECURITYWEEK.COM — 13 Sep 2024
⚠️
TfL requires in-person password resets for 30,000 employees after hack
BLEEPINGCOMPUTER.COM — 13 Sep 2024
⚠️
CosmicBeetle joins the ranks of RansomHub affiliates – Week in security with Tony Anscombe
WELIVESECURITY.COM — 13 Sep 2024
⚠️
A new path for Kyber on the web
SECURITY.GOOGLEBLOG.COM — 2024-09-13
πŸ“’
Microsoft Edge security advisory (AV24-519)
CYBER.GC.CA — 2024-09-13
πŸ“’
SolarWinds security advisory (AV24-520)
CYBER.GC.CA — 2024-09-13
πŸ“’
US Sanctions Russian Media for Secretly Funding Ukraine War
DATABREACHTODAY.CO.UK — 2024-09-13
πŸ“’
Irish Data Protection Commission Probes Google's AI Model
DATABREACHTODAY.CO.UK — 2024-09-13
πŸ”₯
Fortinet Confirms Data Breach Following Hacker’s Claim of 440GB Data Theft
GBHACKERS.COM — 13 Sep 2024
πŸ”₯
Fortinet Data Breach Impacts Customer Information
SECURITYWEEK.COM — 13 Sep 2024
πŸ”₯
New Linux Malware "Hadooken' Targets Oracle WebLogic Applications
AQUASEC.COM — 13 Sep 2024
πŸ”₯
New β€˜Hadooken’ Linux Malware Targets WebLogic Servers
SECURITYWEEK.COM — 13 Sep 2024
πŸ”₯
UK Teen Arrested Over Transport for London Hack
SECURITYWEEK.COM — 13 Sep 2024
πŸ”₯
Hacker Tricks ChatGPT to Get Details for Making Homemade Bombs
GBHACKERS.COM — 13 Sep 2024
πŸ”₯
Say Goodbye to Phishing: Must-Haves to Eliminate Credential Theft
THEHACKERNEWS.COM — 13 Sep 2024
πŸ”₯
The Dark Nexus Between Harm Groups and β€˜The Com’
KREBSONSECURITY.COM — 13 Sep 2024
πŸ”₯
17-Year-Old Arrested in Connection with Cyber Attack Affecting Transport for London
THEHACKERNEWS.COM — 13 Sep 2024
πŸ”₯
Is Paying Hackers Funding Terrorism?πŸ”₯
YOUTUBE.COM — 2024-09-13
πŸ”₯
RansomHub claims Kawasaki cyberattack, threatens to leak stolen data
BLEEPINGCOMPUTER.COM — 13 Sep 2024
πŸ”₯
Chinese-Speaking Hackers Manipulate SEO Rankings Globally
DATABREACHTODAY.CO.UK — 2024-09-13
πŸ”₯
23andMe to pay $30 million in genetics data breach settlement
BLEEPINGCOMPUTER.COM — 13 Sep 2024
πŸ”₯
Port of Seattle hit by Rhysida ransomware in August attack
BLEEPINGCOMPUTER.COM — 13 Sep 2024
πŸ•΅οΈ
ISC Stormcast For Friday, September 13th, 2024 https://isc.sans.edu/podcastdetail/9136, (Fri, Sep 13th)
ISC.SANS.EDU — 13 Sep 2024
πŸ•΅οΈ
SquareX, Awarded Rising Star Category in CybersecAsia Readers’ Choice Awards 2024
GBHACKERS.COM — 13 Sep 2024
πŸ•΅οΈ
1.3 Million Android TV Boxes Infected by Vo1d Malware
SECURITYWEEK.COM — 13 Sep 2024
πŸ•΅οΈ
House Report Shows Chinese Cranes a Security Risk to US Ports
SECURITYWEEK.COM — 13 Sep 2024
πŸ•΅οΈ
UK Data Centers Gain Critical Infrastructure Status, Raising Green Belt Controversy
SECURITYWEEK.COM — 13 Sep 2024
πŸ•΅οΈ
Iranian APT Hackers Target Iraqi Government in New Espionage Campaign
THERECORD.MEDIA — 13 Sep 2024
πŸ•΅οΈ
What can businesses learn from the rise of cyber espionage?
SECURITYINTELLIGENCE.COM — 13 Sep 2024
πŸ•΅οΈ
Attackers Using HTTP Response Headers to Redirect Victims to Phishing Pages
KNOWBE4.COM — 13 Sep 2024
πŸ•΅οΈ
Kali Linux 2024.3 Released With New Hacking Tools
GBHACKERS.COM — 13 Sep 2024
πŸ•΅οΈ
Off-Topic Friday
INFOSEC.PUB — 13 Sep 2024
πŸ•΅οΈ
North Korean hackers target Python devs with malware disguised as coding tests β€” hack has been underway for a year
TOMSHARDWARE.COM — 13 Sep 2024
πŸ•΅οΈ
Black Hat/DEF CON 2024: Latest Insights on Security and AI
DATABREACHTODAY.CO.UK — 2024-09-13
πŸ•΅οΈ
Oktane 2024 and the Current State of Identity Security - Harish Peri - ESW #375
YOUTUBE.COM — 2024-09-13
πŸ•΅οΈ
My TedXBillings Talk
SCHNEIER.COM — 2024-09-13
πŸ•΅οΈ
Li-On, Lazarus, Whatsup, Scattered Spider, Hadooken, Dead People, Aaran Leyland... - SWN #413
YOUTUBE.COM — 2024-09-13
πŸ•΅οΈ
Post-CrowdStrike Fallout: Microsoft Redesigning EDR Vendor Access to Windows Kernel
SECURITYWEEK.COM — 13 Sep 2024
πŸ•΅οΈ
ISMG Editors: Will Microsoft Rethink Windows Security?
DATABREACHTODAY.CO.UK — 2024-09-13
πŸ•΅οΈ
Friday Squid Blogging: Squid as a Legislative Negotiating Tactic
SCHNEIER.COM — 2024-09-13
πŸ•΅οΈ
Strider Secures $55M to Fuel AI Growth and Global Expansion
DATABREACHTODAY.CO.UK — 2024-09-13
πŸ•΅οΈ
1.3 million Android-based TV boxes backdoored; researchers still don’t know how
ARSTECHNICA.COM — 13 Sep 2024
🌐
New Hadooken Linux Malware Targets WebLogic Servers
PACKETSTORMSECURITY.COM — 13 Sep 2024
🌐
New Linux malware Hadooken targets Oracle WebLogic servers
BLEEPINGCOMPUTER.COM — 13 Sep 2024
πŸŽ™οΈ
Transatlantic Cable podcast episode 363 | Kaspersky official blog
KASPERSKY.COM — 13 Sep 2024
πŸ“‘
Finding Honeypot Data Clusters Using DBSCAN: Part 2, (Fri, Sep 13th)
ISC.SANS.EDU — 13 Sep 2024
πŸ“‘
Old WHOIS Domain Could Have Issued Fraudulent TLS/SSL Certs
PACKETSTORMSECURITY.COM — 13 Sep 2024
πŸ“‘
20 Gigs Of Data Supposedly Stolen From Capgemini
PACKETSTORMSECURITY.COM — 13 Sep 2024
πŸ“‘
Fortinet Admits Miscreant Got Hold Of Customer Data In The Cloud
PACKETSTORMSECURITY.COM — 13 Sep 2024
πŸ“‘
Cambodian Senator Sanctioned By US Over Cyber Scam Camps
PACKETSTORMSECURITY.COM — 13 Sep 2024
πŸ“‘
Apple Patches Vision Pro Vuln To Prevent GAZEploit Attacks
PACKETSTORMSECURITY.COM — 13 Sep 2024
πŸ“‘
Live Webinar | All the Ways the Internet is Surveilling You
DATABREACHTODAY.CO.UK — 2024-09-13
πŸ“‘
The Secrets to Safeguarding Your Digital Identity!
YOUTUBE.COM — 2024-09-13
πŸ“‘
Eliminating the Need for Stored Credentials in Healthcare
DATABREACHTODAY.CO.UK — 2024-09-13