117Articles
10Categories
2024-09-17Date
🚨 CISA KEV 1[−]
17 Sep KEVCISA Adds Four Known Exploited Vulnerabilities to CatalogCISA has added four new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2014-0497 Adobe Flash Player Integer Underflow Vulnerability CVE-2013-0643  Adobe Flash Player Incorrect Default Permissions Vulnerabi…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 9[−]
17 SepSolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE AttacksSolarWinds has released fixes to address two security flaws in its Access Rights Manager (ARM) software, including a critical vulnerability that could result in remote code execution. The vulnerability, tracked as CVE-2024-28991, is rated 9.0 out of a maximum of 10.0 on the CVSS …THEHACKERNEWS.COM
17 SepSpring Framework Path Traversal Vulnerability Threatens MillionsA critical security flaw, CVE-2024-38816, in the widely used Spring Framework poses a significant threat to millions of Java applications globally. This vulnerability allows hackers to access sensitive server files through path traversal.SECURITYONLINE.INFO
17 SepCISA Warns of Windows MSHTML & Progress WhatsUp Gold Flaw Exploited WidelyThe Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent warning regarding two critical vulnerabilities affecting Microsoft Windows MSHTML and Progress WhatsUp Gold. These vulnerabilities, identified as CVE-2024-43461 and CVE-2024-6670, are reportedly bein…GBHACKERS.COM
17 SepMicrosoft re-categorizes fixed Trident bug as zero dayA recently patched Windows MSHTML (Trident) Platform Spoofing Vulnerability had zero day exploitations since before July 2024, in conjunction with another MSHTML spoofing bug, according to Microsoft. Fixed in this month’s Patch Tuesday update, CVE-2024-43461 is a critical (CVSS 8…CSOONLINE.COM
17 Sep KEVCVE backlog update: The NVD struggles as attackers change tacticsIn February, the number of vulnerabilities processed and enriched by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) started to slow. By May, 93.4% of new vulnerabilities and 50.8% of known exploited vulnerabilities were still waiti…SECURITYINTELLIGENCE.COM
17 SepZero-Click Calendar Invite: Critical macOS Vulnerability Chain UncoveredThe vulnerability, tracked as CVE-2022-46723, enables attackers to manipulate files within the macOS Calendar app environment and execute remote code during system upgrades.SECURITYONLINE.INFO
17 SepCritical Vulnerability in AutoGPT Puts Over 166,000 Projects at RiskA critical vulnerability, CVE-2024-6091 (CVSS 9. 8), has been found in AutoGPT, a popular AI tool with over 166,000 projects at risk. The flaw allows for OS Command Injection, potentially enabling unauthorized actions.SECURITYONLINE.INFO
17 SepCVE-2024-38183 GroupMe Elevation of Privilege VulnerabilityAn improper access control vulnerability in [GroupMe](https://groupme.com/) allows an a unauthenticated attacker to elevate privileges over a network by convincing a user to click on a malicious link.MSRC.MICROSOFT.COM
17 SepCVE-2024-43460 Dynamics 365 Business Central Elevation of Privilege VulnerabilityImproper authorization in Dynamics 365 Business Central resulted in a vulnerability that allows an authenticated attacker to elevate privileges over a network.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 35[−]
17 Sep KEVPreparing for the next big cyber threatIn an increasingly uncertain world, with internal risks and external social, economic and geopolitical threats to organizational development and automation looming overhead, CSOs have been adopting strategies to be prepared for operating in uncertain times. Ransomware, data breac…CSOONLINE.COM
17 SepEntro Security Labs Releases Non-Human Identities Research Security AdvisoryAnalysis of millions of real-world NHI secrets by Entro Security Labs reveals widespread, significant risks, emphasizes need for improved Secrets Management security practices Entro Security , pioneer of the award-winning Non-Human Identity (NHI) and Secrets Management platform, …CSOONLINE.COM
17 SepAI-SPM buyer’s guide: 9 security posture management tools to protect your AI infrastructureWidespread adoption of generative AI across businesses has increased the need for contingencies, including AI security software. It is a tall order because AI’s reach into an organization’s infrastructure and data is enormous, meaning that there is a broad spectrum of protective …CSOONLINE.COM
17 SepWoo Skimmer Uses Style Tags and Image Extension to Steal Card DetailsA recent WooCommerce skimming attack used a creative method to steal credit card details by hiding malicious code within style tags and embedding a fake payment overlay in an image file disguised as a favicon.SUCURI.NET
17 Sep'Void Banshee' Exploits Second Microsoft Zero-Daysubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/application-security/void-banshee-exploits-second-microsoft-zero-dayDARKREADING.COM
17 SepDoJ: Chinese Man Used Spear-Phishing to Obtain Software From NASA, MilitaryChinese national Song Wu allegedly sent spear-phishing emails to NASA, Air Force, Navy, Army, and FAA employees. The post DoJ: Chinese Man Used Spear-Phishing to Obtain Software From NASA, Military appeared first on SecurityWeek .SECURITYWEEK.COM
17 Sep KEVRecent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware AttacksTwo recently patched Progress Software WhatsUp Gold vulnerabilities may have been exploited in the wild, possibly in ransomware attacks. The post Recent WhatsUp Gold Vulnerabilities Possibly Exploited in Ransomware Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepRansomware whistleblower: Columbus could have avoided its mistakesA ransomware attack on Columbus, Ohio, has drawn international attention and condemnation for how city leaders mismanaged their response to the incident. First, the mayor’s office erroneously downplayed the nature and impact of what it initially called a system “abnormality.” The…CSOONLINE.COM
17 SepHackers Exploiting Selenium Grid Tool To Deploy Exploit Kit & ProxyjackerTwo campaigns targeting Selenium Grid’s default lack of authentication are underway, as threat actors are exploiting this vulnerability to deploy malicious payloads, including exploit kits, cryptominers, and proxyjackers. Selenium Grid’s widespread use among developer…GBHACKERS.COM
17 SepPython Developers Targeted with Malware During Fake Job InterviewsInteresting social engineering attack: luring potential job applicants with fake recruiting pitches, trying to convince them to download malware. From a news article These particular attacks from North Korean state-funded hacking team Lazarus Group are new, but the overall malwar…SCHNEIER.COM
17 SepApple Vision Pro Vulnerability Exposed Virtual Keyboard Inputs to AttackersApple Vision Pro suffered from a vulnerability known as GAZEploit that could allow attackers to infer data entered on the device's virtual keyboard by analyzing the eye movements of the virtual avatar.THEHACKERNEWS.COM
17 SepResearchers Seize Part of Internet Infrastructure by Exploiting an Expired WHOIS DomainResearchers exploited an expired WHOIS domain, discovering that major organizations and Certificate Authorities unknowingly queried their WHOIS server, risking mis-issued TLS/SSL certificates and potential malicious exploitation.DARKREADING.COM
17 SepEuropean digital identity: this is how the EU’s big bet is evolvingImagine you’ve just arrived at your vacation destination. You have to pick up the rental car at the office and from there head to the hotel to check in. Maybe you go to the pharmacy first, because you have a bit of an allergy and it’s better to anticipate buying your medication. …CSOONLINE.COM
17 SepD-Link Fixes Critical RCE, Hardcoded Credential Flaws in WiFi 6 RoutersD-Link has addressed critical vulnerabilities in three popular WiFi 6 router models, fixing issues that could allow remote attackers to run arbitrary code or access devices with hardcoded credentials.BLEEPINGCOMPUTER.COM
17 SepTrends and Dangers in Open-Source Software DependenciesA report by Endor Labs highlighted that, despite high remediation costs for dependency risks, function-level reachability analysis offers the best value for addressing vulnerabilities in open-source software.HELPNETSECURITY.COM
17 SepDependency Confusion Could Have Led to RCE in Google Cloud PlatformTenable shares details on a dependency confusion attack that led to the execution of code on Google’s internal servers. The post Dependency Confusion Could Have Led to RCE in Google Cloud Platform appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepPKfail Secure Boot bypass remains a significant risk two months laterRoughly nine percent of tested firmware images use non-production cryptographic keys that are publicly known or leaked in data breaches, leaving many Secure Boot devices vulnerable to UEFI bootkit malware attacks. [...]BLEEPINGCOMPUTER.COM
17 SepCISA and FBI Release Secure by Design Alert on Eliminating Cross-Site Scripting VulnerabilitiesToday, CISA and FBI released a Secure by Design Alert, Eliminating Cross-Site Scripting Vulnerabilities , as a part of our ongoing effort to reduce the prevalence of vulnerability classes at scale. Vulnerabilities like cross-site scripting (XSS) continue to appear in software, en…CISA.GOV
17 SepNavigating the future of OT securityOperational technology (OT) infrastructure is facing an unprecedented wave of cyberattacks, with a reported 73% surge in incidents, according to the Fortinet 2024 State of Operational Technology and Cybersecurity Report . OT organizations responsible for critical infrastructure a…CSOONLINE.COM
17 SepThe vCISO’s role in Incident Response Accountability - William Klusovsky - CSP #192Let’s talk about the vCISO’s approach to Incident Response advisory with clients; particularly small and medium sized businesses (SMB). How can your cyber liability insurance support your organization outside of when an incident occurs? We will discuss strategies SMBs can take to…YOUTUBE.COM
17 SepSupply Chain Attack on Google Cloud Composer Could Have Resulted in Remote Code ExecutionGoogle has addressed a critical security flaw in Google Cloud Platform (GCP) Composer that could have allowed remote code execution via a supply chain attack known as dependency confusion.TENABLE.COM
17 SepCISA Releases Three Industrial Control Systems AdvisoriesCISA released three Industrial Control Systems (ICS) advisories on September 17, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-261-01 Siemens SIMATIC S7-200 SMART Devices ICSA-24-261-02 Mill…CISA.GOV
17 SepRemotely Exploding PagersWow . It seems they all exploded simultaneously, which means they were triggered. Were they each tampered with physically, or did someone figure out how to trigger a thermal runaway remotely? Malicious code update, or natural vulnerability? I have no idea, but I expect we will al…SCHNEIER.COM
17 Sep KEVUpdate: PoC Exploit Released for Windows Hyper-V Zero-Day VulnerabilityThis critical flaw, actively exploited in the wild, allows attackers to elevate privileges to SYSTEM level, posing a significant risk to organizations using Microsoft's Hyper-V virtualization technology.SECURITYONLINE.INFO
17 SepExploiting Chamilo during a Red Team engagementThe following blogpost explains how during a Red Team engagement we were able to identify several vulnerabilities including Remote Code Executions in the latest version of Chamilo .QUARKSLAB.COM
17 SepBringing Secure Coding Concepts to Developers - Dustin Lehr - ASW #299When a conference positioned as a day of security for developers has to be canceled due to lack of interest from developers, it's important to understand why there was so little interest and why appsec should reconsider its approach to awareness. Dustin Lehr discusses how appsec …YOUTUBE.COM
17 SepVMware Patches Remote Code Execution Flaw Found in Chinese Hacking ContestVMware warned that an attacker with network access could send a specially crafted packet to execute remote code. CVSS severity score 9.8/10. The post VMware Patches Remote Code Execution Flaw Found in Chinese Hacking Contest appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepConstruction firms breached in brute force attacks on accounting softwareHackers are brute-forcing passwords for highly privileged accounts on exposed Foundation accounting servers, widely used in the construction industry, to breach corporate networks. [...]BLEEPINGCOMPUTER.COM
17 SepExploding Hezbollah Pagers Not Likely a Cybersecurity AttackCybersecurity Experts Say Operatives Probably Intercepted Physical Supply Chain It doesn't appear to be a cyberattack, security experts said of the hundreds of pagers that blew up Tuesday across Lebanon, an apparent salvo against Hezbollah militants by the Israeli government. "Th…DATABREACHTODAY.CO.UK
17 SepBroadcom fixes critical RCE bug in VMware vCenter ServerBroadcom has fixed a critical VMware vCenter Server vulnerability that attackers can exploit to gain remote code execution on unpatched servers via a network packet. [...]BLEEPINGCOMPUTER.COM
17 SepMicrosoft fixes Authenticator design flaw after eight years overwriting accountsHaving ignored user complaints about a security design flaw within Microsoft Authenticator for eight years, Microsoft confirmed in an email to CSO on Tuesday that it has finally corrected the issue. CSO Online reported details about the flaw last month. At issue was an oversight …CSOONLINE.COM
17 SepCan CISA’s Federal Cybersecurity Alignment Plan Really Work?Experts Warn Federal Cyber Strategies Increasingly Lack Accompanying Resources The U.S. Cybersecurity and Infrastructure Security Agency has released a new plan to further align federal cybersecurity operations that experts say will likely face significant implementation roadbloc…DATABREACHTODAY.CO.UK
17 SepUK Orgs Tout Government Help in Ransomware IncidentsFormer Royal Mail and Manchester University CISOs Talk Ransomware Response Timely notification of ransomware incidents to British law enforcement agencies played a crucial role in understanding the threats and in developing mitigation strategies, the former security heads of Roya…DATABREACHTODAY.CO.UK
17 SepZero-Click RCE Bug in macOS Calendar Exposes iCloud Datasubmitted by kid to cybersecurity 3 points | 0 comments https://www.darkreading.com/vulnerabilities-threats/zero-click-rce-bug-macos-calendar-exposes-icloud-dataDARKREADING.COM
17 SepESET Research Podcast: EvilVideoESET researchers discuss how they uncovered a zero-day Telegram for Android exploit that allowed attackers to send malicious files posing as videosWELIVESECURITY.COM
📋 SECURITY BULLETINS 1[−]
17 SepWarning to ServiceNow admins: Block publicly available KB articlesMany organizations using ServiceNow are inadvertently exposing sensitive personal and corporate data through misconfigured Knowledge Base (KB) articles created by employees, says a security provider. ServiceNow is a cloud-based platform for automatic workflows. It’s often used by…CSOONLINE.COM
📢 SECURITY ADVISORIES 6[−]
17 SepChinese Hackers Charged for Multi-Year Spear-Phishing AttacksSong Wu, a Chinese national, has been indicted on charges of wire fraud and aggravated identity theft. The charges stem from his alleged involvement in a sophisticated spear-phishing campaign targeting sensitive U.S. research and technology. This case highlights ongoing concerns …GBHACKERS.COM
17 SepScattered Spider Ensnares Cloud Admins Using Social Engineering TechniquesScattered Spider uses social engineering techniques to target high-privileged accounts like IT service desk administrators, compromising cloud services and launching ransomware attacks.DARKREADING.COM
17 SepChrome Switching to NIST-Approved ML-KEM Quantum EncryptionGoogle is updating Chrome's post-quantum cryptography to defend against quantum computer attacks. The new encryption system, ML-KEM, replaces Kyber for enhanced security.BLEEPINGCOMPUTER.COM
17 SepCISA urges software devs to weed out XSS vulnerabilitiesCISA and the FBI urged tech companies to review their software and eliminate cross-site scripting (XSS) vulnerabilities before shipping. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 13[−]
17 SepTicketmaster boss who repeatedly hacked rival firm sentencedA former boss of Ticketmaster has been sentenced after pleading guilty to illegally accessing computer servers of a rival company and stealing sensitive business information. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
17 Sep23:59, Time to Exfiltrate!, (Tue, Sep 17th)Last week, I posted a diary about suspicious Python modules. One of them was Firebase [ 1 ], the cloud service provided by Google[ 2 ]. Firebase services abused by attackers is not new, usually, it's used to host malicious files that will be available to d…ISC.SANS.EDU
17 SepKey Russian Hacker Group Attacking Users With .NET Built RansomwareThe Russian ransomware group Key Group, active since early 2023, is targeting organizations globally, as their modus operandi involves encrypting files and stealing data before demanding ransom via Telegram. The group utilizes the .NET-based Chaos ransomware builder to create the…GBHACKERS.COM
17 SepUK Labels Data Centers as Critical National InfrastructureThe UK government has classified data centers as critical national infrastructure, recognizing their importance for society's functioning. The move aims to protect sensitive user data from cyberattacks.GOVINFOSECURITY.COM
17 SepKransom Ransomware Disguised as a Game Through DLL Side-LoadingThe ransomware, disguised within the game, relies on a DLL file that contains the encrypted code for the attack. By using a trusted certificate, Kransom can bypass traditional security measures, posing a serious threat to users.HACKREAD.COM
17 SepRecord $65m Settlement for Hacked Patient PhotosOn September 11, 2024, Saltz Mongeluzzi Bendesky announced it had reached a settlement with LVHN, now owned by Jefferson Health, for a compensation fee of $65m – a record for a hacking-related court case.INFOSECURITY-MAGAZINE.COM
17 Sep17-Year-Old Arrested in Connection with Cyber Attack Affecting Transport for LondonA 17-year-old male from Walsall was arrested in connection with a cyberattack on Transport for London (TfL) on September 1. The U.K. National Crime Agency (NCA) confirmed that the teenager was detained on suspicion of Computer Misuse Act offenses.THEHACKERNEWS.COM
17 SepBlackCloak Raises $17 Million to Protect Executives, High-Profile IndividualsBlackCloak has raised $17 million in Series B funding to protect high-profile individuals from sophisticated cyberattacks. The post BlackCloak Raises $17 Million to Protect Executives, High-Profile Individuals appeared first on SecurityWeek .SECURITYWEEK.COM
17 Sep23andMe Pledges $30 Million to the 6.4 Million People Affected by Data Breach23andMe has pledged $30 million to compensate the 6.4 million people affected by a data breach in October 2023. The breach occurred when a hacker used stolen credentials to access a significant amount of account information, including health data.THERECORD.MEDIA
17 SepRansomware gangs now abuse Microsoft Azure tool for data theftRansomware gangs like BianLian and Rhysida increasingly use Microsoft's Azure Storage Explorer and AzCopy to steal data from breached networks and store it in Azure Blob storage. [...]BLEEPINGCOMPUTER.COM
17 SepAT&T pays $13 million FCC settlement over 2023 data breachThe Federal Communications Commission (FCC) has reached a $13 million settlement with AT&T to resolve a probe into whether the telecom giant failed to protect customer data after a vendor's cloud environment was breached three years ago. [...]BLEEPINGCOMPUTER.COM
17 SepTemu denies breach after hacker claims theft of 87 million data recordsTemu denies it was hacked or suffered a data breach after a threat actor claimed to be selling a stolen database containing 87 million records of customer information. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 25[−]
17 SepISC Stormcast For Tuesday, September 17th, 2024 https://isc.sans.edu/podcastdetail/9140, (Tue, Sep 17th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
17 SepWill potential security gaps derail Microsoft’s Copilot?Microsoft has bet big on Copilot , the generative AI (genAI) assistant it’s integrating into nearly its entire product line, notably Microsoft 365 . The company believes businesses of all sizes will buy into the productivity gains the tool might deliver — and in so doing, deliver…COMPUTERWORLD.COM
17 SepCreating An AI Honeypot To Engage With Attackers SophisticatedlyHoneypots, decoy systems, detect and analyze malicious activity by coming in various forms and can be deployed on cloud platforms to provide insights into attacker behavior, enhancing security. The study proposes to create an interactive honeypot system using a Large Language Mod…GBHACKERS.COM
17 SepNorth Korean Hackers Attacking LinkedIn Users to Deliver RustDoor MalwareNorth Korean hackers have been identified as targeting LinkedIn users to deliver sophisticated malware known as RustDoor. This cyber threat underscores the evolving tactics of state-sponsored hacking groups, mainly from North Korea, which have increasingly turned to social engine…GBHACKERS.COM
17 SepIpset Hash is full, cannot add more elementssubmitted by melroy to secops 4 points | 0 comments https://kbin.melroy.org/media/a4/c4/a4c410ef2cac8eb2e7767a044d59d783592fb4ecfe82101d34ce0dc741236f93.jpg My ipset hash is full!? I’m using Ubuntu Server and I created a separate fail2ban jail that uses “iptables-ipset-proto6-all…KBIN.MELROY.ORG
17 SepApple Drops Spyware Case Against NSO Group, Citing Risk of Threat Intelligence ExposureApple has filed a motion to "voluntarily" dismiss its lawsuit against commercial spyware vendor NSO Group, citing a shifting risk landscape that could lead to exposure of critical "threat intelligence" information.THEHACKERNEWS.COM
17 SepHydden Raises $4.4M in Seed Funding for Identity Security PlatformHydden has raised $4.4 million in seed funding for a solution designed to provide deep visibility into identities, accounts and privileges. The post Hydden Raises $4.4M in Seed Funding for Identity Security Platform appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepElement Security Emerges From Stealth With CTEM Solution, $5M in FundingIsraeli startup Element Security has emerged from stealth with $5 million in funding and a Continuous Threat Exposure Management (CTEM) solution. The post Element Security Emerges From Stealth With CTEM Solution, $5M in Funding appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepCyberheistNews Vol 14 #38 [CODE RED] A Must-See New Webinar: How To Block North Korean InfiltratorsPhishing Attack Takes a Two-Step Approach to Leverage Legitimate Sites and Evade Detection. [4-Minute Survey] Share Your Thoughts on AI in InfoSec With Me? Email not displaying? | View Knowbe4 Blog CyberheistNews Vol 14 #38  |  September 17th, 2024 [CODE RED] A Must-See…KNOWBE4.COM
17 SepOver 1,000 ServiceNow instances found leaking corporate KB dataOver 1,000 misconfigured ServiceNow enterprise instances were found exposing Knowledge Base (KB) articles that contained sensitive corporate information to external users and potential threat actors. [...]BLEEPINGCOMPUTER.COM
17 SepCost of Cybercrime Estimated 15.6 Trillion in 2029Statista projects that the total cost of cybercrime will increase from $6.4 trillion between 2024 and 2029, reaching a staggering $15.63 trillion by the end of this period. KNOWBE4.COM
17 SepSoftware Security Firm RunSafe Raises $12 Million in Series B FundingRunSafe Security has raised $12 million in a Series B funding round for a solution designed to help companies develop secure software. The post Software Security Firm RunSafe Raises $12 Million in Series B Funding appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepThe AI Threat: Deepfake or Deep Fake? Unraveling the True Security RisksWhen it comes to adversarial use of AI, the real question is whether the AI threat is a deep fake, or whether the deepfake is the AI threat. The post The AI Threat: Deepfake or Deep Fake? Unraveling the True Security Risks appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepD-Link Patches Critical Router VulnerabilitiesD-Link has released patches for critical vulnerabilities that could allow attackers to execute arbitrary code and commands on routers. The post D-Link Patches Critical Router Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepNorth Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor MalwareNorth Korean hackers are using RustDoor malware to target cryptocurrency users on LinkedIn, posing as recruiters for legitimate decentralized finance (DeFi) companies like STON.fi.THEHACKERNEWS.COM
17 SepC/side Raises $6 Million to Secure the Browser Supply ChainC/side has raised $6 million in a seed-stage funding round to help organizations protect against malicious browser third-party scripts. The post C/side Raises $6 Million to Secure the Browser Supply Chain appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepHezbollah Members Among Hundreds Wounded after Pagers Explode in Lebanon and Syria, Officials SayA Hezbollah official speculated that malware may have caused the pagers to heat up and explode. The post Hezbollah Members Among Hundreds Wounded after Pagers Explode in Lebanon and Syria, Officials Say appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepIntezer Raises $33M to Extend AI-Powered SOC PlatformIntezer is looking to tap into booming market for AI-powered tooling to address the severe shortage of skilled cybersecurity professionals. The post Intezer Raises $33M to Extend AI-Powered SOC Platform appeared first on SecurityWeek .SECURITYWEEK.COM
17 SepBack to the office, Void Banshee, ServiceNow, Taiwan, Dlink, C++, Aaran Leyland... - SWN #414Back to the office serfs, Void Banshee, ServiceNow, Taiwan, Dlink, C++, Aaran Leyland, and more on this Edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-414YOUTUBE.COM
17 SepA TLD Takeover, An LLM CTF, A Firmware Flaw, 6 Truths of Cyber Risk - ASW #299A takeover of the MOBI TLD for $20, configuring an LLM for a CTF, firmware flaw in an SSD, Microsoft talks kernel resilience, six truths of cyber risk quantification, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekl…YOUTUBE.COM
17 SepBlackCloak Raises $17M to Boost Cybersecurity for ExecutivesNew Funding Will Help BlackCloak Improve Protection Against Rising Cyberthreats BlackCloak’s $17 million Series B funding round will help the company triple its engineering and product teams, enhancing cybersecurity for executives and high-net-worth individuals. The funding will …DATABREACHTODAY.CO.UK
17 SepHundreds of Pagers Exploded in Lebanon and Syria in a Deadly Attack. Here’s What We Know.Very small explosive devices may have been built into the pagers prior to their delivery to Hezbollah, and then all remotely triggered simultaneously. The post Hundreds of Pagers Exploded in Lebanon and Syria in a Deadly Attack. Here’s What We Know. appeared first on SecurityWeek…SECURITYWEEK.COM
17 SepApple Moves to Dismiss Suit Against Spyware Firm NSO GroupiPhone Maker Seeks Voluntary Dismissal, Citing Concerns Over Sensitive Data Leaking Apple has filed a motion to dismiss its lawsuit against NSO Group, citing concerns over the potential exposure of sensitive threat intelligence information. The tech giant believes continuing the …DATABREACHTODAY.CO.UK
17 SepRemote attack on pagers used by Hezbollah caused 9 deaths and thousands of injuriessubmitted by kid to cybersecurity 2 points | 0 comments https://securityaffairs.com/168521/intelligence/remote-attack-on-pagers-used-by-hezbollah.htmlSECURITYAFFAIRS.COM
🌐 CYBER THREAT LANDSCAPE 7[−]
17 SepBinance Warns of Rising Clipper Malware Attacks Targeting Cryptocurrency UsersCryptocurrency exchange Binance is warning of an "ongoing" global threat that's targeting cryptocurrency users with clipper malware with the goal of facilitating financial fraud. Clipper malware, also called ClipBankers, is a type of malware that Microsoft calls cryware, which co…THEHACKERNEWS.COM
17 SepMalware Campaign Locks Browser in Kiosk Mode to Steal Google CredentialsThe campaign specifically targets Google's login page and prevents users from closing the window or using certain keyboard keys to escape. Once users enter and save their credentials to unlock the computer, the StealC malware steals the credentials.BLEEPINGCOMPUTER.COM
17 SepU.S. Treasury Sanctions Executives Linked to Intellexa Predator Spyware OperationThe U.S. Department of Treasury has imposed fresh sanctions against five executives and one entity with ties to the Intellexa Consortium for their role in the development, operation, and distribution of a commercial spyware called Predator. "The United States will not tolerate th…THEHACKERNEWS.COM
17 SepRising Clipper Malware Attacks Target Cryptocurrency UsersThe malicious software called ClipBankers can monitor clipboard activity and replace cryptocurrency addresses with those controlled by attackers, diverting digital asset transfers to rogue wallets.THEHACKERNEWS.COM
17 SepUS Hits Intellexa Spyware Maker With More SanctionsThe US has imposed further sanctions on Intellexa, the maker of the Predator spyware, targeting individuals and entities associated with the company due to its opaque corporate structure designed to evade accountability.THERECORD.MEDIA
🎙️ PODCASTS 1[−]
17 SepThe AI Fix #16: GPT-4o1, AI time travelers, and where’s my driverless car?In episode 16 of The AI Fix, Mark and Graham meet GPT-4o1 and ask if it knows how many cousins Alice’s sister has, a top cop wants AI injected into his colleagues "like heroin", Mark finds an AI that might actually be able to help with that, and our hosts start a conspiracy theor…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 19[−]
17 SepHow Google and Yahoo’s shift to stricter email standards proved a windfall for this Armenian startupEasyDMARC, a B2B SaaS startup out of Armenia that aims to simplify email security and authentication, said it has raised $20 million in a Series A round. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
17 SepStealthy Fileless Attack Targets Attendees Of Upcoming US-Taiwan Defense Industry EventThe attack involves a malicious ZIP archive pretending to be a PDF registration form, dropping an executable into the startup folder to establish persistence on the system.CYBLE.COM
17 SepHow to Investigate ChatGPT activity in Google WorkspaceSince launching ChatGPT in 2022, OpenAI has defied expectations with a steady stream of product announcements and enhancements. One such announcement came on May 16, 2024, and for most consumers, it probably felt innocuous. Titled “Improvements to data analysis in ChatGPT,” …THEHACKERNEWS.COM
17 SepMetabase Q Raises $11M in Series A Extension FundingMetabase Q, an IT cybersecurity management company based in San Francisco, has raised $11M in its Series A extension funding. Backers include SYN Ventures and John Watters.FINSMES.COM
17 SepThe Dark Nexus Between Harm Groups and ‘The Com’ – Krebs on SecurityWestern cybercriminals in online groups, like Scattered Spider, target vulnerable teens, pushing them towards harm and violence. The Com, a cybercriminal network, fosters extortion and violence among its members.KREBSONSECURITY.COM
17 SepStrider Secures $55M to Fuel AI Growth and Global ExpansionStrider Technologies has secured $55 million in Series C funding to bolster its artificial intelligence research, expand into the government sector, and support global growth.BANKINFOSECURITY.COM
17 SepRussia’s RT News Agency Has ‘Cyber Operational Capabilities,’ Assists in Military Procurement, State Department SaysRussia's RT news agency is involved in covert cyber operations to assist in military procurement and spread propaganda globally, according to the U.S. State Department. It has a cyber unit with operational capabilities linked to Russian intelligence.THERECORD.MEDIA
17 SepHacker Tricked ChatGPT Into Providing Detailed Instructions to Make a Homemade BombA hacker tricked ChatGPT into providing detailed instructions on how to make homemade bombs by bypassing safety guidelines. The hacker used a 'jailbreaking' technique, posing the request as part of a fictional game, to deceive the system.SECURITYAFFAIRS.COM
17 SepGoogle Chrome Switches to ML-KEM for Post-Quantum Cryptography DefenseGoogle has announced that it will be switching from KYBER to ML-KEM in its Chrome web browser as part of its ongoing efforts to defend against the risk posed by cryptographically relevant quantum computers (CRQCs). "Chrome will offer a key share prediction for hybrid ML-KEM (code…THEHACKERNEWS.COM
17 SepMeta to Train AI Models Using Public U.K. Facebook and Instagram PostsMeta has announced that it will begin training its artificial intelligence (AI) systems using public content shared by adult users across Facebook and Instagram in the U.K. in the coming months. "This means that our generative AI models will reflect British culture, history, and …THEHACKERNEWS.COM
17 SepThe cybersecurity labor gap now stands at 4M+ open jobs. Intezer has raised $33M for AI tools to plug itWhen it comes to talent shortages in tech, cybersecurity is one of the biggest and most urgent that needs filling. Malicious attacks are on the rise, and the techniques being used to worm into networks are also scaling up. Yet the World Economic Forum recently found that there ar…TECHCRUNCH.COM
17 SepCisco’s second layoff of 2024 affects thousands of employeesCisco's executives made tens of millions in compensation, while cutting thousands of jobs in two separate rounds of layoffs. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
17 SepEchoStrike: Generate Undetectable Reverse Shells, Perform Process InjectionEchoStrike features an interactive Python wizard for easy customization, various persistence techniques, binary padding for evasion, AES payload encryption, and dynamic binary download.HELPNETSECURITY.COM
17 Sepriverside darren guccione on f1 and brand alignment with wi enterprise securityIn this short, we dive into an exciting partnership with Keeper Security & Williams Formula 1, a team that truly represents the pinnacle of technology and innovation. 🏎️💨 Discover how their shared vision for innovation and victory drives them forward and why they are beyond thril…YOUTUBE.COM
17 SepCloudflare outage cuts off access to websites in some regionsA rolling Cloudflare outage is impacting access to web sites worldwide, including BleepingComputer, with sites working in some regions and not others. [...]BLEEPINGCOMPUTER.COM
17 SepDiscord launches end-to-end encrypted voice and video chatsDiscord will now offer audio and video calls that even the company won't be able to listen in on. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM