matlock.ca // THREAT INTELLIGENCE — 2024-09-24

85Articles

10Categories

2024-09-24Date

🚨

CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-7593 Ivanti Virtual Traffic Manager Authentication Bypass Vulnerability These types of vulnerabilities are frequent attack vectors for ma…

KEVCISA.GOV — Tue, 24 Sep 24 1

🐛

Researcher Details Cisco Smart Licensing that Lets Attacker Control Device

GBHACKERS.COM — 24 Sep 2024

🐛

Exploitation of RAISECOM Gateway Devices Vulnerability CVE-2024-7120, (Tue, Sep 24th)

ISC.SANS.EDU — 24 Sep 2024

🐛

Google & Arm - Raising The Bar on GPU Security

SECURITY.GOOGLEBLOG.COM — 2024-09-24

⚠️

Meet MathPrompt, a way threat actors can break AI safety controls

CSOONLINE.COM — 24 Sep 2024

⚠️

Telegram Agrees to Share User Data With Authorities for Criminal Investigations

THEHACKERNEWS.COM — 24 Sep 2024

⚠️

Cyber insurance price hikes stabilize as insurers expect more from CISOs

CSOONLINE.COM — 24 Sep 2024

⚠️

INCIBE demonstrates value of ransomware simulation

CSOONLINE.COM — 24 Sep 2024

⚠️

Critical Flaw in Microchip ASF Exposes IoT Devices to Remote Code Execution Risk

SH.ITJUST.WORKS — 24 Sep 2024

⚠️

Users Quick to Remove UltraAV After Silent Transition From Kaspersky Antivirus

SECURITYWEEK.COM — 24 Sep 2024

⚠️

Kaspersky’s US customers receive ‘UltraAV’ swap, raising red flags

CSOONLINE.COM — 24 Sep 2024

⚠️

US to ban connected vehicle tech from China, Russia due to national security risks

CSOONLINE.COM — 24 Sep 2024

⚠️

Unpatched Vulnerabilities Expose Riello UPSs to Hacking: Security Firm

SECURITYWEEK.COM — 24 Sep 2024

⚠️

Critical Vulnerabilities In Microchip ASF, MediaTek Expose RCE Risks

PACKETSTORMSECURITY.COM — 24 Sep 2024

⚠️

U.S. Proposes Ban on Connected Vehicles Using Chinese and Russian Tech

THEHACKERNEWS.COM — 24 Sep 2024

⚠️

Generative AI Security: Getting ready for Salesforce Einstein Copilot

BLEEPINGCOMPUTER.COM — 24 Sep 2024

⚠️

CISA Releases Eight Industrial Control Systems Advisories

CISA.GOV — Tue, 24 Sep 24 1

⚠️

McAfee Discovers New Phishing Campaign Targeting GitHub Users

KNOWBE4.COM — 24 Sep 2024

⚠️

crypto-condor: a test suite for cryptographic primitives

QUARKSLAB.COM — 2024-09-24

⚠️

GUEST ESSAY: Massive NPD breach tells us its high time to replace SSNs as an authenticator

LASTWATCHDOG.COM — 24 Sep 2024

⚠️

Critical Ivanti vTM auth bypass bug now exploited in attacks

KEVBLEEPINGCOMPUTER.COM — 24 Sep 2024

⚠️

AI-Generated Malware Found in the Wild

SECURITYWEEK.COM — 24 Sep 2024

⚠️

Vulnerable APIs and Bot Attacks: Two Interconnected, Growing Security Threats - David ... - ASW #300

YOUTUBE.COM — 2024-09-24

⚠️

Kansas water plant cyberattack forces switch to manual operations

BLEEPINGCOMPUTER.COM — 24 Sep 2024

⚠️

Kansas water plant cyberattack forces switch to manual operations

SH.ITJUST.WORKS — 24 Sep 2024

⚠️

Evolved Exploits Call for AI-Driven ASRM + XDR

TRENDMICRO.COM — 24 Sep 2024

📋

Kaspersky Exits U.S., Automatically Replaces Software With UltraAV, Raising Concerns

THEHACKERNEWS.COM — 24 Sep 2024

📢

Sweden accuses Iran of SMS revenge hack

CSOONLINE.COM — 24 Sep 2024

📢

Google Chrome security advisory (AV24-539)

CYBER.GC.CA — 2024-09-24

📢

China Accuses Taiwan of Waging Cyberwarfare

DATABREACHTODAY.CO.UK — 2024-09-24

🔥

MC2 Data leak Exposes 100 million+ US Citizens Data

GBHACKERS.COM — 24 Sep 2024

🔥

Deloitte Says No Threat to Sensitive Data After Hacker Claims Server Breach

SECURITYWEEK.COM — 24 Sep 2024

🔥

Kansas Water Facility Switches to Manual Operations Following Cyberattack

SECURITYWEEK.COM — 24 Sep 2024

🔥

Discover Latest Ransomware Tactics and Zero Trust Strategies in This Expert Webinar

THEHACKERNEWS.COM — 24 Sep 2024

🔥

The SSPM Justification Kit

THEHACKERNEWS.COM — 24 Sep 2024

🔥

Torq, which automates cybersecurity workflows, raises $70M in new capital

TECHCRUNCH.COM — 24 Sep 2024

🔥

MoneyGram confirms a cyberattack is behind dayslong outage

BLEEPINGCOMPUTER.COM — 24 Sep 2024

🔥

SANS Institute: Top 5 dangerous cyberattack techniques in 2024

SECURITYINTELLIGENCE.COM — 24 Sep 2024

🔥

Cyberattack Causes MoneyGram Service Outage

SECURITYWEEK.COM — 24 Sep 2024

🔥

MoneyGram blames ‘cybersecurity issue’ for ongoing days-long outage

TECHCRUNCH.COM — 24 Sep 2024

🔥

Cyberattack Causes MoneyGram Service Outage

PACKETSTORMSECURITY.COM — 24 Sep 2024

🔥

Tried and True. Going back to basics with Incident Response - Levone Campbell - CSP #193

YOUTUBE.COM — 2024-09-24

🔥

Warnings after new Valencia ransomware group strikes businesses and leaks data

TRIPWIRE.COM — 24 Sep 2024

🔥

U.S. govt agency CMS says data breach impacted 3.1 million people

BLEEPINGCOMPUTER.COM — 24 Sep 2024

🔥

23andMe to Pay $30M for Credential Stuffing Hack Settlement

DATABREACHTODAY.CO.UK — 2024-09-24

🔥

CrowdStrike Overhauls Testing and Rollout Procedures to Avoid System Crashes

SECURITYWEEK.COM — 24 Sep 2024

🔥

FBI, US Homeland Security Investigate Water Facility Cyberattack

DATABREACHTODAY.CO.UK — 2024-09-24

🔥

AutoCanada says ransomware attack "may" impact employee data

BLEEPINGCOMPUTER.COM — 24 Sep 2024

🕵️

ISC Stormcast For Tuesday, September 24th, 2024 https://isc.sans.edu/podcastdetail/9150, (Tue, Sep 24th)

ISC.SANS.EDU — 24 Sep 2024

🕵️

Kaspersky deletes itself, installs UltraAV antivirus without warning

SH.ITJUST.WORKS — 24 Sep 2024

🕵️

Hacker Leaks 12,000 Alleged Twilio Call Records with Audio Recordings

SH.ITJUST.WORKS — 24 Sep 2024

🕵️

Researcher Details Cisco Smart Licensing that Lets Attacker Control Device

SH.ITJUST.WORKS — 24 Sep 2024

🕵️

WPA3 upgrade module using a small SBC?

SH.ITJUST.WORKS — 24 Sep 2024

🕵️

CyberheistNews Vol 14 #39 [EYE OPENER] Beyond Analysts: The Undeniable Leadership We Have in HRM

KNOWBE4.COM — 24 Sep 2024

🕵️

US Disrupts Raptor Train Botnet Of Chinese APT Flax Typhoon

PACKETSTORMSECURITY.COM — 24 Sep 2024

🕵️

Forrester Names Palo Alto Networks a Leader in Attack Surface Management

PALOALTONETWORKS.COM — 24 Sep 2024

🕵️

Startup Torq Secures $70M to Advance Hyperautomation with AI

DATABREACHTODAY.CO.UK — 2024-09-24

🕵️

Microsoft Names Deputy CISOs, Governance Council to Manage Security Push

SECURITYWEEK.COM — 24 Sep 2024

🕵️

Iranian APT Operating as Initial Access Provider to Networks in the Middle East

SECURITYWEEK.COM — 24 Sep 2024

🕵️

Will AI Hallucinations Get Worse?

DATABREACHTODAY.CO.UK — 2024-09-24

🕵️

Automatic Tank Gauges Used in Critical Infrastructure Plagued by Critical Vulnerabilities

SECURITYWEEK.COM — 24 Sep 2024

🕵️

Fuzzing for Vulns, GitLab Auth Bypass, JPEG Vulns, Programming Language Ranks - ASW #300

YOUTUBE.COM — 2024-09-24

🕵️

Octo2 Malware Masquerades as Popular Apps

DATABREACHTODAY.CO.UK — 2024-09-24

🕵️

CrowdStrike Blames 'Confluence of Factors' for Global Outage

DATABREACHTODAY.CO.UK — 2024-09-24

🕵️

C3pbot, Kaspersky, Octo2 , Honkai: Star Rail, ServiceNow, LinkedIn... - SWN #416

YOUTUBE.COM — 2024-09-24

🕵️

Robert Herjavec Passes Cyderes CEO Role to Chris Schueler

DATABREACHTODAY.CO.UK — 2024-09-24

🕵️

Microsoft Trustworthy AI: Unlocking human potential starts with trust

BLOGS.MICROSOFT.COM — 24 Sep 2024

🌐

New Octo2 Android Banking Trojan Emerges with Device Takeover Capabilities

THEHACKERNEWS.COM — 24 Sep 2024

🌐

Israel’s Pager Attacks and Supply Chain Vulnerabilities

SCHNEIER.COM — 2024-09-24

🌐

Citing security fears, Ukraine bans Telegram on government and military devices

BITDEFENDER.COM — 24 Sep 2024

🌐

New Octo Android malware version impersonates NordVPN, Google Chrome

BLEEPINGCOMPUTER.COM — 24 Sep 2024

🌐

Israel's Pager Attacks and Supply Chain Vulnerabilities

PACKETSTORMSECURITY.COM — 24 Sep 2024

🌐

11 Million Devices Infected With Botnet Malware Hosted In Google Play

PACKETSTORMSECURITY.COM — 24 Sep 2024

🌐

Necro Android Malware Found in Popular Camera and Browser Apps on Play Store

THEHACKERNEWS.COM — 24 Sep 2024

🌐

Hackers deploy AI-written malware in targeted attacks

BLEEPINGCOMPUTER.COM — 24 Sep 2024

🌐

Infostealer malware bypasses Chrome’s new cookie-theft defenses

BLEEPINGCOMPUTER.COM — 24 Sep 2024

🌐

Redefining the Supply Chain in the Post-AI Era

DATABREACHTODAY.CO.UK — 2024-09-24

🎙️

The AI Fix #17: Why AI is an AWFUL writer and LinkedIn’s outrageous land grab

GRAHAMCLULEY.COM — 24 Sep 2024

📡

Two men arrested one month after $230 million of cryptocurrency stolen from a single victim

BITDEFENDER.COM — 24 Sep 2024

📡

Telegram Will Now Hand Over IP Addresses, Phone Numbers Of Suspects To Cops

PACKETSTORMSECURITY.COM — 24 Sep 2024

📡

Is technology amplifying threats in relationships? | Kaspersky official blog

KASPERSKY.COM — 24 Sep 2024

📡

Download our AI security posture management (AI-SPM) enterprise buyer’s guide

US.RESOURCES.CSOONLINE.COM — 24 Sep 2024

📡

How Do You NOT Know About Rick Rolling?!

YOUTUBE.COM — 2024-09-24

📡

Windows 10 KB5043131 update released with 9 changes and fixes

BLEEPINGCOMPUTER.COM — 24 Sep 2024

📡

Time to engage: How parents can help keep their children safe on Snapchat

WELIVESECURITY.COM — 24 Sep 2024