matlock.ca // THREAT INTELLIGENCE

101Articles

9Categories

2024-09-18Date

🚨

CISA Adds Five Known Exploited Vulnerabilities to CatalogCISA has added five new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-27348 Apache HugeGraph-Server Improper Access Control Vulnerability CVE-2020-0618 Microsoft SQL Server Reporting Services Remote Code …

KEVCISA.GOV — Wed, 18 Sep 24 1

🐛

Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution

THEHACKERNEWS.COM — 18 Sep 2024

🐛

VMware vCenter Server Vulnerability Let Attackers Escalate Privileges

GBHACKERS.COM — 18 Sep 2024

🐛

Critical Flaws Found in VICIdial Contact Center Suite, PoC Published

SECURITYONLINE.INFO — 18 Sep 2024

🐛

Vulnerabilities in Cellular Packet Cores Part IV: Authentication

TRENDMICRO.COM — 18 Sep 2024

🐛

Red Hat OpenShift Receives Patches for Two Critical Flaws

SECURITYONLINE.INFO — 18 Sep 2024

🐛

Microsoft Windows Kernel Vulnerability Exploited in the Wild

KEVGBHACKERS.COM — 18 Sep 2024

🐛

LibreOffice Repair Mode Vulnerability Let Attackers Mark the Document as Not Valid

GBHACKERS.COM — 18 Sep 2024

⚠️

Cybersecurity vet Madison Horn makes her bid for US Congress

CSOONLINE.COM — 18 Sep 2024

⚠️

From Dreams to Reality: The Magic of 3D Printing, with Elle Hunt

TROYHUNT.COM — 18 Sep 2024

⚠️

RCE Flaw in Google Cloud Affected Millions of Servers

DARKREADING.COM — 18 Sep 2024

⚠️

Data Theft Risk in Salesforce by Manipulating Public Links

VARONIS.COM — 18 Sep 2024

⚠️

Russian Security Firm Doctor Web Hacked

SECURITYWEEK.COM — 18 Sep 2024

⚠️

Personhood: Cybersecurity’s next great authentication battle as AI improves

CSOONLINE.COM — 18 Sep 2024

⚠️

Australian cops bust underworld app through compromised software updates

CSOONLINE.COM — 18 Sep 2024

⚠️

Chrome 129 Patches High-Severity Vulnerability in V8 Engine

SECURITYWEEK.COM — 18 Sep 2024

⚠️

SpyCloud Unveils Massive Scale of Identity Exposure Due to Infostealers, Highlighting Need for Advanced Cybersecurity Measures

CSOONLINE.COM — 18 Sep 2024

⚠️

Exploiting Windows MiniFilter to Bypass EDR Protection

GBHACKERS.COM — 18 Sep 2024

⚠️

How cybersecurity red teams can boost backup protections

NETWORKWORLD.COM — 18 Sep 2024

⚠️

Chinese Engineer Charged in U.S. for Years-Long Cyber Espionage Targeting NASA and Military

THEHACKERNEWS.COM — 18 Sep 2024

⚠️

Apple Releases Security Updates for Multiple Products

CISA.GOV — Wed, 18 Sep 24 1

⚠️

Russian security firm Dr.Web disconnects all servers after breach

BLEEPINGCOMPUTER.COM — 18 Sep 2024

⚠️

News alert: INE Security’s cybersecurity training service earns 2024 SC Excellence Award

LASTWATCHDOG.COM — 18 Sep 2024

⚠️

News alert: SpyCloud study reveals ‘infostealer’ malware can be a precursor to a ransomware attack

LASTWATCHDOG.COM — 18 Sep 2024

⚠️

GitLab releases fix for critical SAML authentication bypass flaw

BLEEPINGCOMPUTER.COM — 18 Sep 2024

⚠️

Australian Police Arrest Alleged Head of Ghost Encrypted App

DATABREACHTODAY.CO.UK — 2024-09-18

⚠️

Europol takes down "Ghost" encrypted messaging platform used for crime

BLEEPINGCOMPUTER.COM — 18 Sep 2024

⚠️

Discord rolls out end-to-end encryption for audio, video calls

BLEEPINGCOMPUTER.COM — 18 Sep 2024

📋

Microsoft may have revealed Windows 11 24H2 is coming this month

BLEEPINGCOMPUTER.COM — 18 Sep 2024

📢

Valid Accounts Remain Top Access Point for Critical Infrastructure Attacks, Officials Say

CYBERSECURITYDIVE.COM — 18 Sep 2024

📢

Construction Companies Potentially Vulnerable Through Accounting Software

THERECORD.MEDIA — 18 Sep 2024

📢

CISA Urges Software Developers to Weed Out XSS Vulnerabilities

BLEEPINGCOMPUTER.COM — 18 Sep 2024

📢

CISA, FBI Urge Organizations to Eliminate XSS Vulnerabilities

SECURITYWEEK.COM — 18 Sep 2024

📢

Cybersecurity risks in healthcare are an ongoing crisis

SECURITYINTELLIGENCE.COM — 18 Sep 2024

📢

Atlassian security advisory (AV24-527)

CYBER.GC.CA — 2024-09-18

📢

VMware security advisory (AV24-528)

CYBER.GC.CA — 2024-09-18

📢

GitLab security advisory (AV24-529)

CYBER.GC.CA — 2024-09-18

📢

Google Chrome security advisory (AV24-530)

CYBER.GC.CA — 2024-09-18

📢

How Ransomware Could Sink the Maritime Industry 🛑

YOUTUBE.COM — 2024-09-18

📢

Do boards understand their new role in cybersecurity?

CIO.COM — 18 Sep 2024

📢

HPE security advisory (AV24-531)

CYBER.GC.CA — 2024-09-18

📢

Drupal security advisory (AV24-532)

CYBER.GC.CA — 2024-09-18

📢

California Enacts Laws to Combat Election, Media Deepfakes

DATABREACHTODAY.CO.UK — 2024-09-18

📢

Joint ODNI, FBI, and CISA Statement

CISA.GOV — Wed, 18 Sep 24 1

🔥

London Transport requires in person password validation for 30,000 employees, Cyber Security Today for Wednesday, September 18, 2024

CYBERSECURITYTODAY.LIBSYN.COM — 18 Sep 2024

🔥

Threat Actor Allegedly Selling Bharat Petroleum Database

GBHACKERS.COM — 18 Sep 2024

🔥

SANS Releases Guide to Address Rise in Attacks on Manufacturing and Industrial Control Systems

KNOWBE4.COM — 18 Sep 2024

🔥

AT&T to Pay $13 Million in Settlement Over 2023 Data Breach

SECURITYWEEK.COM — 18 Sep 2024

🔥

AT&T Fined $13 Million For Data Breach

PACKETSTORMSECURITY.COM — 18 Sep 2024

🔥

Ransomware Groups Abusing Azure Storage Explorer For Stealing Data

GBHACKERS.COM — 18 Sep 2024

🔥

U.S. government ‘took control’ of a botnet run by Chinese government hackers, says FBI director

TECHCRUNCH.COM — 18 Sep 2024

🔥

SpyCloud Unveils Massive Scale of Identity Exposure Due to Infostealers, Highlighting Need for Advanced Cybersecurity Measures

GBHACKERS.COM — 18 Sep 2024

🔥

Use the STAR Method for Your Cybersecurity Job Interview

DATABREACHTODAY.CO.UK — 2024-09-18

🔥

X hacking spree fuels "$HACKED" crypto token pump-and-dump

BLEEPINGCOMPUTER.COM — 18 Sep 2024

🔥

Microsoft: Vanilla Tempest hit healthcare with INC ransomware

BLEEPINGCOMPUTER.COM — 18 Sep 2024

🔥

Microsoft: Vanilla Tempest hackers hit healthcare with INC ransomware

BLEEPINGCOMPUTER.COM — 18 Sep 2024

🔥

How Mega Attacks Are Spotlighting Critical 3rd-Party Risks

DATABREACHTODAY.CO.UK — 2024-09-18

🔥

Smashing Security podcast #385: TFL security derailed, and is Trump the king of crypto?

GRAHAMCLULEY.COM — 18 Sep 2024

🔥

How comprehensive security simplifies the defense of your digital estate

MICROSOFT.COM — 18 Sep 2024

🔥

Understanding cyber-incident disclosure

WELIVESECURITY.COM — 18 Sep 2024

🕵️

ISC Stormcast For Wednesday, September 18th, 2024 https://isc.sans.edu/podcastdetail/9142, (Wed, Sep 18th)

ISC.SANS.EDU — 18 Sep 2024

🕵️

Chrome 129 Released with Fix for Multiple Security Vulnerabilities

GBHACKERS.COM — 18 Sep 2024

🕵️

Ukraine, Gaza Wars Inspire DDoS Surge Against Finservs

DARKREADING.COM — 18 Sep 2024

🕵️

Python Infostealer Patching Windows Exodus App, (Wed, Sep 18th)

ISC.SANS.EDU — 18 Sep 2024

🕵️

North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware

THEHACKERNEWS.COM — 18 Sep 2024

🕵️

Discord Announces End-to-End Encryption for Audio & Video Chats

GBHACKERS.COM — 18 Sep 2024

🕵️

North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware

THEHACKERNEWS.COM — 18 Sep 2024

🕵️

North Korean Hackers Target Software Developers With Phony Coding Tests

KNOWBE4.COM — 18 Sep 2024

🕵️

UNC2970 Hackers Attacking Job Seekers Using Weaponized PDF Reader

GBHACKERS.COM — 18 Sep 2024

🕵️

INE Security Wins 2024 SC Excellence Award

GBHACKERS.COM — 18 Sep 2024

🕵️

Australian Police Infiltrate Encrypted Messaging App Ghost and Arrest Dozens

SECURITYWEEK.COM — 18 Sep 2024

🕵️

A Must See for KnowBe4 Customers and Partners: Geoff White to Keynote KB4-CON EMEA 2024

KNOWBE4.COM — 18 Sep 2024

🕵️

News alert: Evergy selects OneLayer to manage, secure its private cellular OT assets

LASTWATCHDOG.COM — 18 Sep 2024

🕵️

Threat Actors Target Accounting Software Used by Construction Contractors

SECURITYWEEK.COM — 18 Sep 2024

🕵️

North Korean Hackers Lure Critical Infrastructure Employees With Fake Jobs

SECURITYWEEK.COM — 18 Sep 2024

🕵️

4 Top Security Automation Use Cases: A Detailed Guide

BLEEPINGCOMPUTER.COM — 18 Sep 2024

🕵️

Chinese botnet infects 260,000 SOHO routers, IP cameras with malware

BLEEPINGCOMPUTER.COM — 18 Sep 2024

🕵️

New "Raptor Train" IoT Botnet Compromises Over 200,000 Devices Worldwide

THEHACKERNEWS.COM — 18 Sep 2024

🕵️

Chinese Spies Built Massive Botnet of IoT Devices to Target US, Taiwan Military

SECURITYWEEK.COM — 18 Sep 2024

🕵️

The Inside Man Biggest Fan Contest is Heating Up

KNOWBE4.COM — 18 Sep 2024

🕵️

U.S. Government Indicts Chinese National For Alleged Spear Phishing Attacks

KNOWBE4.COM — 18 Sep 2024

🕵️

Intezer's $33M Series C Funding to Fuel AI, Customer Support

DATABREACHTODAY.CO.UK — 2024-09-18

🕵️

News are reporting a new attack in Lebanon where devices caught fire and exploded, from radio to cars. Share the info you have

SH.ITJUST.WORKS — 18 Sep 2024

🕵️

Beware the Great AI Bubble Popping

DATABREACHTODAY.CO.UK — 2024-09-18

🕵️

Swiss Post to Strengthen Cybersecurity With Open Systems Buy

DATABREACHTODAY.CO.UK — 2024-09-18

🌐

US Indicts Chinese National for Phishing for NASA Tech

BANKINFOSECURITY.COM — 18 Sep 2024

🌐

Apple Suddenly Drops NSO Group Spyware Lawsuit

PACKETSTORMSECURITY.COM — 18 Sep 2024

🌐

11 Dead, Thousands Injured In Explosive Supply Chain Attack On Hezbollah Pagers

PACKETSTORMSECURITY.COM — 18 Sep 2024

📡

GSMA Plans End-to-End Encryption for Cross-Platform RCS Messaging

THEHACKERNEWS.COM — 18 Sep 2024

📡

Advanced Phishing Attacks Put X Accounts at Risk

INFOSECURITY-MAGAZINE.COM — 18 Sep 2024

📡

Chrome Introduces One-Time Permissions and Enhanced Safety Check for Safer Browsing

THEHACKERNEWS.COM — 18 Sep 2024

📡

SambaSpy, a new RAT | Kaspersky official blog

KASPERSKY.COM — 18 Sep 2024

📡

Why Pay A Pentester?

THEHACKERNEWS.COM — 18 Sep 2024

📡

CloudImposer Attack Targets Google Cloud Services

PACKETSTORMSECURITY.COM — 18 Sep 2024

📡

WhatsApp View Once Fix Gets Defeated In Less Than A Week

PACKETSTORMSECURITY.COM — 18 Sep 2024

📡

Cops Across The World Arrest 51 In Orchestrated Takedown Of Ghost Crime Platform

PACKETSTORMSECURITY.COM — 18 Sep 2024

📡

Scam ‘Funeral Streaming’ Groups Thrive on Facebook

KREBSONSECURITY.COM — 18 Sep 2024

📡

Behind the Scenes of a Race Team: The Highs and Lows!

YOUTUBE.COM — 2024-09-18

📡

Apple pulls iPadOS 18 update bricking M4 iPad Pro devices

BLEEPINGCOMPUTER.COM — 18 Sep 2024

📡

Pip Dreams And Security Schemes: Chaos In Your Configuration Files

PACKETSTORMSECURITY.COM — 18 Sep 2024

📡

Over 1,000 Companies EXPOSED! Sensitive Data Leaked 😱

YOUTUBE.COM — 2024-09-18