MATLOCK.CA
126Articles
10Categories
2024-09-19Date
๐Ÿšจ
The Known Exploited Vulnerability catalogue, aka the KEV - Tod Beardsley - PSW #843Gain insights into the CISA KEV straight from one of the folks at CISA, Tod Beardsley, in this episode of Below the Surface. Learn how KEV was created, where the data comes from, and how you should use it in your environment. This segment is sponsored by Eclypsium. Visit https://โ€ฆ
KEVYOUTUBE.COM — 2024-09-19
๐Ÿšจ
Ivanti Releases Admin Bypass Security Update for Cloud Services ApplianceIvanti has released a security update to address an admin bypass vulnerability ( CVE-2024-8963 ) affecting Ivanti Cloud Services Appliance (CSA) version 4.6.  A cyber threat actor could exploit this vulnerability in conjunction with CVE-2024-8190 โ€“detailed in a Sept. 13 Ivanโ€ฆ
KEVCISA.GOV — Thu, 19 Sep 24 1
๐Ÿšจ
CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-8963 Ivanti Cloud Services Appliance (CSA) Path Traversal Vulnerability These types of vulnerabilities are frequent attack vectors for maโ€ฆ
KEVCISA.GOV — 19 Sep 2024
๐Ÿ›
GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions
THEHACKERNEWS.COM — 19 Sep 2024
๐Ÿ›
GitLab Releases Critical Security Patch for CVE-2024-45409 (CVSS 10) Vulnerability
SECURITYONLINE.INFO — 19 Sep 2024
๐Ÿ›
Update: PoC Exploit Released for Unauthenticated RCE in Veeam Backup & Replication
SECURITYONLINE.INFO — 19 Sep 2024
๐Ÿ›
Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution
THEHACKERNEWS.COM — 19 Sep 2024
๐Ÿ›
Microsoft Confirms CVE-2024-37985 as Zero-Day Bug in Windows
SECURITYONLINE.INFO — 19 Sep 2024
๐Ÿ›
PoC Exploit Released for CVE-2024-7965 Zero-Day Chrome Vulnerability
GBHACKERS.COM — 19 Sep 2024
๐Ÿ›
CISA: Oracle Vulnerabilities From โ€˜Miracle Exploitโ€™ Targeted in Attacks
KEVSECURITYWEEK.COM — 19 Sep 2024
๐Ÿ›
CVE-2024-38016 Microsoft Office Visio Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
CVE-2024-38221 Microsoft Edge (Chromium-based) Spoofing Vulnerability
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
Chromium: CVE-2024-8904 Type Confusion in V8
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
Chromium: CVE-2024-8908 Inappropriate implementation in Autofill
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
Chromium: CVE-2024-8909 Inappropriate implementation in UI
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
Chromium: CVE-2024-8905 Inappropriate implementation in V8
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
Chromium: CVE-2024-8907 Insufficient data validation in Omnibox
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
Chromium: CVE-2024-8906 Incorrect security UI in Downloads
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
CVE-2024-43496 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
CVE-2024-43489 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
MSRC.MICROSOFT.COM — 19 Sep 2024
๐Ÿ›
CVE-2024-38207 Microsoft Edge (HTML-based) Memory Corruption Vulnerability
MSRC.MICROSOFT.COM — 19 Sep 2024
โš ๏ธ
Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APAC
TRENDMICRO.COM — 19 Sep 2024
โš ๏ธ
Cyber Attack on Dr.Web Forces Servers Disconnection
GBHACKERS.COM — 19 Sep 2024
โš ๏ธ
Authorities Seized Ghost Communication Platform Used by Cyber Criminals
GBHACKERS.COM — 19 Sep 2024
โš ๏ธ
Ransomware Gangs Now Abuse Microsoft Azure Tool for Data Theft
BLEEPINGCOMPUTER.COM — 19 Sep 2024
โš ๏ธ
GitLab Patches Critical Authentication Bypass Vulnerability
SECURITYWEEK.COM — 19 Sep 2024
โš ๏ธ
Companies skip security hardening in rush to adopt AI
CSOONLINE.COM — 19 Sep 2024
โš ๏ธ
Update: PKfail Secure Boot Bypass Remains a Significant Risk Two Months Later
BLEEPINGCOMPUTER.COM — 19 Sep 2024
โš ๏ธ
Clever 'GitHub Scanner' campaign abusing repos to push malware
BLEEPINGCOMPUTER.COM — 19 Sep 2024
โš ๏ธ
Microsoft warns of ransomware attacks on US healthcare
CSOONLINE.COM — 19 Sep 2024
โš ๏ธ
Healthcare's Diagnosis is Critical: The Cure is Cybersecurity Hygiene
THEHACKERNEWS.COM — 19 Sep 2024
โš ๏ธ
CISA Warns of Actively Exploited Adobe Flash Player Vulnerabilities
KEVSECURITYONLINE.INFO — 19 Sep 2024
โš ๏ธ
Earth Baxia Uses Spear-Phishing and GeoServer Exploit to Target APAC Region
TRENDMICRO.COM — 19 Sep 2024
โš ๏ธ
Recent WhatsUp Gold Vulnerabilities Possibly Exploited In Ransomware Attacks
PACKETSTORMSECURITY.COM — 19 Sep 2024
โš ๏ธ
Need better network performance? Adopt better secure networking strategies
CSOONLINE.COM — 19 Sep 2024
โš ๏ธ
Tor Claims Network is Safe Following Enforcement Infiltration to Expose Criminals
GBHACKERS.COM — 19 Sep 2024
โš ๏ธ
CISA Releases Six Industrial Control Systems Advisories
CISA.GOV — Thu, 19 Sep 24 1
โš ๏ธ
New TeamTNT Cryptojacking Campaign Targets CentOS Servers with Rootkit
THEHACKERNEWS.COM — 19 Sep 2024
โš ๏ธ
FBI Shuts Down Chinese Botnet
SCHNEIER.COM — 2024-09-19
โš ๏ธ
Police dismantles phone unlocking ring linked to 483,000 victims
BLEEPINGCOMPUTER.COM — 19 Sep 2024
โš ๏ธ
Germany seizes 47 crypto exchanges used by ransomware gangs
BLEEPINGCOMPUTER.COM — 19 Sep 2024
โš ๏ธ
VMware Releases Security Advisory for VMware Cloud Foundation and vCenter Server
CISA.GOV — Thu, 19 Sep 24 1
โš ๏ธ
Exploding Pagers - PSW #843
YOUTUBE.COM — 2024-09-19
โš ๏ธ
Hackers Exploit Default Credentials in FOUNDATION Software to Breach Construction Firms
THEHACKERNEWS.COM — 19 Sep 2024
โš ๏ธ
News alert: Aembitโ€™s 2024 survey report highlights major gaps in securing โ€˜Non-Human Identitiesโ€™
LASTWATCHDOG.COM — 19 Sep 2024
โš ๏ธ
Cryptohack Roundup: Delta Prime, Ethena Exploits
DATABREACHTODAY.CO.UK — 2024-09-19
โš ๏ธ
Ivanti warns of another critical CSA flaw exploited in attacks
BLEEPINGCOMPUTER.COM — 19 Sep 2024
โš ๏ธ
Tor says itโ€™s "still safe" amid reports of police deanonymizing users
BLEEPINGCOMPUTER.COM — 19 Sep 2024
โš ๏ธ
Reveal of Chinese-controlled botnet is another warning to CISOs to keep up with asset and patch management
CSOONLINE.COM — 19 Sep 2024
โš ๏ธ
Raptor Train Botnet Infects 260,000 Devices Globally
DATABREACHTODAY.CO.UK — 2024-09-19
โš ๏ธ
Breach Roundup: Cyberwar Is Too Hot for Insurers
DATABREACHTODAY.CO.UK — 2024-09-19
โš ๏ธ
Tor Says Platform Is Safe After German Police Interception
DATABREACHTODAY.CO.UK — 2024-09-19
โš ๏ธ
CISA warns of actively exploited Apache HugeGraph-Server bug
KEVBLEEPINGCOMPUTER.COM — 19 Sep 2024
๐Ÿ“‹
Atlassian Patches Vulnerabilities in Bamboo, Bitbucket, Confluence, Crowd
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ“‹
Appleโ€™s new macOS Sequoia update breaks cybersecurity tools, experts say
TECHCRUNCH.COM — 19 Sep 2024
๐Ÿ“ข
Deepfakes break through as business threat
KEVCSOONLINE.COM — 19 Sep 2024
๐Ÿ“ข
CISA chief AI officer follow-up: Current state of the role (and where itโ€™s heading)
SECURITYINTELLIGENCE.COM — 19 Sep 2024
๐Ÿ“ข
CISA Releases Cyber Defense Alignment Plan for Federal Agencies
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ“ข
Managing Cybersecurity and Privacy Risks in the Age of Artificial Intelligence: Launching a New Program at NIST
NIST.GOV — 19 Sep 2024
๐Ÿ”ฅ
Craig Newmark pledges $100M to fight hacking by foreign governments
TECHCRUNCH.COM — 19 Sep 2024
๐Ÿ”ฅ
US Disrupts โ€˜Raptor Trainโ€™ Botnet of Chinese APT Flax Typhoon
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ”ฅ
Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector
THEHACKERNEWS.COM — 19 Sep 2024
๐Ÿ”ฅ
Snowflake Moves to MFA, 14-Character Passwords
BANKINFOSECURITY.COM — 19 Sep 2024
๐Ÿ”ฅ
Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector
THEHACKERNEWS.COM — 19 Sep 2024
๐Ÿ”ฅ
Picus Security, founded by Turkish 3 mathematicians, raises $45M after simulating 1B cyberattacks
TECHCRUNCH.COM — 19 Sep 2024
๐Ÿ”ฅ
Microsoft: US Healthcare Sector Targeted by INC Ransomware Affiliate
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ”ฅ
Hackers Demand $6 Million for Files Stolen From Seattle Airport Operator in Cyberattack
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ”ฅ
Chinese spies spent 4 months in aerospace firmโ€™s server
THEREGISTER.COM — 19 Sep 2024
๐Ÿ”ฅ
'SambaSpy' RAT's Multiple Features Pack Hefty Punch
DARKREADING.COM — 19 Sep 2024
๐Ÿ”ฅ
British MPs And International Organizations Hacked On X
PACKETSTORMSECURITY.COM — 19 Sep 2024
๐Ÿ”ฅ
Threat Actor Allegedly Claims Breach of Federal Bank Customer Data
GBHACKERS.COM — 19 Sep 2024
๐Ÿ”ฅ
Researchers Detailed Raptor Train Botnet That 60,000+ Compromised Devices
GBHACKERS.COM — 19 Sep 2024
๐Ÿ”ฅ
Hackers Using Supershell Malware To Attack Linux SSH Servers
GBHACKERS.COM — 19 Sep 2024
๐Ÿ”ฅ
Wherever There's Ransomware, There's Service Account Compromise. Are You Protected?
THEHACKERNEWS.COM — 19 Sep 2024
๐Ÿ”ฅ
HuntStand - 2,795,947 breached accounts
HAVEIBEENPWNED.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Time-to-Live Analysis of DShield Data with Vega-Lite, (Wed, Sep 18th)
ISC.SANS.EDU — 19 Sep 2024
๐Ÿ•ต๏ธ
ISC Stormcast For Thursday, September 19th, 2024 https://isc.sans.edu/podcastdetail/9144, (Thu, Sep 19th)
ISC.SANS.EDU — 19 Sep 2024
๐Ÿ•ต๏ธ
Security Validation Firm Picusย Security Raises $45 Million
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Cybersecurity Awareness: Reflecting on 20 Years of Defense Evolution and Preparing for Future Threats
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Aembit Unveils 2024 Survey Report Highlighting Major Gaps in Securing Non-Human Identities
GBHACKERS.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Beyond Analyst Reports: KnowBe4's Undeniable Leadership in Human Risk Management
KNOWBE4.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Webdav Malicious File Hosting Powering Stealthy Malware Attacks
GBHACKERS.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
New Brazilian-Linked SambaSpy Malware Targets Italian Users via Phishing Emails
THEHACKERNEWS.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Should CIOs and CISOs Wear One Hat?
DATABREACHTODAY.CO.UK — 2024-09-19
๐Ÿ•ต๏ธ
Iranian Hackers Tried but Failed to Interest Bidenโ€™s Campaign in Stolen Trump Info, FBI Says
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Opnova Banks Seed Capital to Tackle Security, IT Automation
SECURITYWEEK.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Cyber Insurers Are Intensely Scrutinizing Healthcare Clients
DATABREACHTODAY.CO.UK — 2024-09-19
๐Ÿ•ต๏ธ
Threat Actors Forcing victims Into Entering Login Credentials For Stealing
GBHACKERS.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
SambaSpy Using Weaponized PDF Files to Attack Windows Users
GBHACKERS.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
How Mastercard Benefits From the $2.65B Recorded Future Deal
DATABREACHTODAY.CO.UK — 2024-09-19
๐Ÿ•ต๏ธ
Social media companies engaged in 'vast surveillance,' FTC finds, calling status quo 'unacceptable'
NBCNEWS.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
US FTC Reveals Social Media and Streaming's Vast Surveillance
DATABREACHTODAY.CO.UK — 2024-09-19
๐Ÿ•ต๏ธ
Fake Job Lures Target Employees of Aerospace, Energy Firms
DATABREACHTODAY.CO.UK — 2024-09-19
๐Ÿ•ต๏ธ
Microsoft: Russian Cyber Proxies Targeting Harris Campaign
DATABREACHTODAY.CO.UK — 2024-09-19
๐Ÿ•ต๏ธ
The Hidden AI Risk Lurking In Your Business
PALOALTONETWORKS.COM — 19 Sep 2024
๐Ÿ•ต๏ธ
Picus Security Receives $45M to Enhance Exposure Management
DATABREACHTODAY.CO.UK — 2024-09-19
๐Ÿ•ต๏ธ
Join us at Microsoft Ignite 2024 and learn to build a security-first culture with AI
MICROSOFT.COM — 19 Sep 2024
๐ŸŒ
BlackCloak Raises $17M to Boost Cybersecurity for Executives
BANKINFOSECURITY.COM — 19 Sep 2024
๐ŸŒ
FBI Boss Says China Burned Down 260,000 Device Botnet When Confronted By Feds
PACKETSTORMSECURITY.COM — 19 Sep 2024
๐ŸŒ
UK Activists Targeted With Pegasus Spyware Ask Police To Charge NSO Group
PACKETSTORMSECURITY.COM — 19 Sep 2024
๐ŸŒ
What's Next for Secure Communication After Exploding Pagers?
DATABREACHTODAY.CO.UK — 2024-09-19
๐ŸŒ
This Windows PowerShell Phish Has Scary Potential
KREBSONSECURITY.COM — 19 Sep 2024
๐ŸŒ
A Single IP is Scanning Intensely, and Yields a List of Malware Loaders
F5.COM — 19 Sep 2024
๐ŸŒ
A Single IP is Scanning Intensely, and Yields a List of Malware Loaders
F5.COM — 19 Sep 2024
๐ŸŽ™๏ธ
Influencing the influencers | Unlocked 403 cybersecurity podcast (ep. 6)
WELIVESECURITY.COM — 19 Sep 2024
๐Ÿ“ก
RunSafe Security Raises $12M to Drive Global Expansion and Product Development
SILICONANGLE.COM — 19 Sep 2024
๐Ÿ“ก
Marko Polo Cybercrime Gang Targets Cryptocurrency Users, Influencers With Scams
THERECORD.MEDIA — 19 Sep 2024
๐Ÿ“ก
Hackers Demand $6 Million From Seattle Airport Operators
PACKETSTORMSECURITY.COM — 19 Sep 2024
๐Ÿ“ก
14 Dead As Hezbollah Walkie Talkies Explode In Second, Deadlier Attack
PACKETSTORMSECURITY.COM — 19 Sep 2024
๐Ÿ“ก
Tor Insists Its Network Is Safe After Conviction Of CSAM Dark Web Admin
PACKETSTORMSECURITY.COM — 19 Sep 2024
๐Ÿ“ก
Russian Troll Farms Turn Up Heat On Presidential Candidates
PACKETSTORMSECURITY.COM — 19 Sep 2024
๐Ÿ“ก
Mysterious "LOVE" packet storms flood the internet since 2020
BLEEPINGCOMPUTER.COM — 19 Sep 2024
๐Ÿ“ก
Mastering Communication: The Secret to Success in Life & Business!
YOUTUBE.COM — 2024-09-19
๐Ÿ“ก
Identifying Rogue AI
TRENDMICRO.COM — 19 Sep 2024
๐Ÿ“ก
How to reduce cyber risk during employee onboarding
BLEEPINGCOMPUTER.COM — 19 Sep 2024
๐Ÿ“ก
Google rolls out automatic passkey syncing via Password Manager
TECHCRUNCH.COM — 19 Sep 2024
๐Ÿ“ก
Spearphishing tricks in mass emails | Kaspersky official blog
KASPERSKY.COM — 19 Sep 2024
๐Ÿ“ก
Crypto Fraud EXPOSED: $5.6 Billion Vanished in 2023!
YOUTUBE.COM — 2024-09-19
๐Ÿ“ก
FTC exposes massive surveillance of kids, teens by social media giants
BLEEPINGCOMPUTER.COM — 19 Sep 2024
๐Ÿ“ก
Google Password Manager now automatically syncs your passkeys
BLEEPINGCOMPUTER.COM — 19 Sep 2024
๐Ÿ“ก
Unexplained โ€˜Noise Stormsโ€™ flood the Internet, puzzle experts
BLEEPINGCOMPUTER.COM — 19 Sep 2024
๐Ÿ“ก
Social Media Users Lack Control Over Data Used By AI, US FTC Says
PACKETSTORMSECURITY.COM — 19 Sep 2024
๐Ÿ“ก
Microsoft Edge will flag extensions causing performance issues
BLEEPINGCOMPUTER.COM — 19 Sep 2024
๐Ÿ“ก
Fake GitHub Site Targeting Developers, (Thu, Sep 19th)
ISC.SANS.EDU — 19 Sep 2024
๐Ÿ“ก
Chipmaker Qualcomm lays off hundreds of workers in San Diego
TECHCRUNCH.COM — 19 Sep 2024
๐Ÿ“ก
Suspects behind $230 million cryptocurrency theft arrested in Miami
BLEEPINGCOMPUTER.COM — 19 Sep 2024