🚨 CISA KEV 1[−]
14 Sep KEVCyber Security Today Week in Review for September 14, 2024Cybersecurity Insights: Vulnerabilities, Insider Threats, and the Future of Online Safety In this weekend edition of Cybersecurity Today, host Jim Love is joined by regulars Terry Cutler of Cyology Labs and David Shipley of Beauceron Security, alongside special guest Laura Payne …CYBERSECURITYTODAY.LIBSYN.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 5[−]
14 SepIvanti Warns of Active Exploitation of Newly Patched Cloud Appliance VulnerabilityIvanti has revealed that a newly patched security flaw in its Cloud Service Appliance (CSA) has come under active exploitation in the wild. The high-severity vulnerability in question is CVE-2024-8190 (CVSS score: 7.2), which allows remote code execution under certain circumstanc…THEHACKERNEWS.COM
14 SepCitrix Workspace App Users Urged to Update Following Two Privilege Escalation FlawsUsers of Citrix Workspace App are advised to update due to two privilege escalation flaws. Cloud Software Group disclosed vulnerabilities (CVE-2024-7889 & CVE-2024-7890) in the Windows app, allowing attackers to gain high-level access.SECURITYONLINE.INFO
14 SepUpdate: Protecting Against RCE Attacks Abusing WhatsUp Gold VulnerabilitiesTrend Micro researchers uncovered remote code execution attacks targeting Progress Software's WhatsUp Gold using the vulnerabilities tracked as CVE-2024-6670 and CVE-2024-6671.TRENDMICRO.COM
14 SepHackers Have Sights Set on Four Microsoft Vulnerabilities, CISA WarnsFederal civilian agencies have until the end of the month to address these issues. The vulnerabilities are part of Microsoft's monthly security release, with CVE-2024-43491 considered the most concerning due to its severity score.THERECORD.MEDIA
14 SepFileless Remcos RAT Campaign Leverages CVE-2017-0199 FlawIn a newly uncovered advanced malware campaign, threat actors are using a complex, fileless approach to deliver the Remcos Remote Access Trojan (RAT), leveraging a benign-looking Excel document as the attack vector.SECURITYONLINE.INFO
⚠️ VULNERABILITY DISCLOSURE 3[−]
14 SepTrickMo Android Trojan Exploits Accessibility Services for On-Device Banking FraudCybersecurity researchers at Cleafy discovered a new variant of the TrickMo Android banking trojan that evades analysis and displays fake login screens to steal banking credentials.THEHACKERNEWS.COM
14 SepGitLab Warns of Critical Pipeline Execution VulnerabilityGitLab released updates covering versions 17.1.7, 17.2.5, and 17.3.2 for GitLab Community Edition (CE) and Enterprise Edition (EE), addressing a total of 18 security issues.BLEEPINGCOMPUTER.COM
14 SepWait… They Made It Easier and It's FREE?! 😱🔍 Ever wonder why some tech tools are free but still super complex? 🤯 Check out John Kinsella's brain-teasing journey with a mysterious free tool! 🛠️🤔 From head-scratching confusion to surprising generosity, discover why two guys decided to make life easier for everyone. Plus, Jo…YOUTUBE.COM
📢 SECURITY ADVISORIES 1[−]
14 SepFBI tells public to ignore false claims of hacked voter dataThe Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) are alerting the public of false claims that the U.S. voter registration data has been compromised in cyberattacks. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 1[−]
14 SepChinese-Made Port Cranes in US Included ‘Backdoor’ Modems, House Report SaysA recent congressional investigation revealed that Chinese-made port cranes in the United States contained hidden modems that could provide unauthorized access to the machines.THERECORD.MEDIA
🕵️ THREAT INTELLIGENCE 3[−]
14 SepTargeted Campaigns in Retail Sector Involve Domain Fraud, Brand Impersonation, and Ponzi SchemesThreat actors are actively engaging in domain fraud, brand impersonation, and Ponzi schemes targeting the retail sector, which plays a significant role in the global economy.DOMAINTOOLS.COM
14 SepUpcoming Speaking EngagementsThis is a current list of where and when I am scheduled to speak: I’m speaking at eCrime 2024 in Boston, Massachusetts, USA. The event runs from September 24 through 26, 2024, and my keynote is at 8:45 AM ET on the 24th. I’m briefly speaking at the EPIC Champion of Freedom Awards…SCHNEIER.COM
14 SepYARA 4.5.2 Release, (Sat, Sep 14th)YARA 4.5.2 was released with 3 small changes and 4 bugfixes.
ISC.SANS.EDU
🌐 CYBER THREAT LANDSCAPE 3[−]
14 SepNew Vo1d Malware Infects 1.3 Million Android Streaming BoxesThe Vo1d malware campaign targets specific Android firmware versions like Android 7.1.2 and Android 10.1. The malware modifies system files to launch itself on boot and persist on the device.BLEEPINGCOMPUTER.COM
14 SepNew Android Malware Ajina.Banker Steals 2FA Codes, Spreads via TelegramDiscovering the threat in May 2024, Group-IB highlighted that the malware is spread through Telegram channels disguised as legitimate banking and government service applications.HACKREAD.COM
14 SepMalware locks browser in kiosk mode to steal Google credentialsA malware campaign uses the unusual method of locking users in their browser's kiosk mode to annoy them into entering their Google credentials, which are then stolen by information-stealing malware. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 1[−]
14 SepThe Truth About AI Agents: Are They Safe?AI is evolving fast, but can we really trust these AI agents with our data and decisions? 🚨 In this short, we dive into the world of AI agents, exploring if they're just machines or something far more powerful. Are they safe, or could they become a bigger threat than we think? Wa…YOUTUBE.COM