🚨 CISA KEV 2[−]
10 Oct KEVCISA Added Fortinet & Ivanti Vulnerabilities that Exploited in the WildThe Cybersecurity and Infrastructure Security Agency (CISA) has recently updated its Known Exploited Vulnerabilities Catalog, adding critical vulnerabilities from Fortinet and Ivanti. These vulnerabilities are actively exploited in the wild, posing significant risks to organizati…GBHACKERS.COM
🐛 COMMON VULNERABILITIES AND EXPOSURES 9[−]
10 OctFirefox Zero-Day Under Attack: Update Your Browser ImmediatelyMozilla has revealed that a critical security flaw impacting Firefox and Firefox Extended Support Release (ESR) has come under active exploitation in the wild. The vulnerability, tracked as CVE-2024-9680, has been described as a use-after-free bug in the Animation timeline compon…THEHACKERNEWS.COM
10 OctHartkodierte Zugangsdaten in Solarwinds-SoftwareUniversity of College | shutterstock.com Hartkodierte Zugangsdaten im Quellcode der Asset-Management- und IT-Ticketing-Software “Web Help Desk” haben den IT-Dienstleister Solarwinds dazu veranlasst, einen Hotfix zu veröffentlichen . Nicht-autorisierte Angreifer, die diese Schwach…CSOONLINE.COM
10 Oct KEVCISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security PatchesThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added a critical security flaw impacting Fortinet products to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2024-23113 (CVS…THEHACKERNEWS.COM
10 OctMultiple VMware NSX Vulnerabilities Let Attackers Gain Root AccessVMware has disclosed multiple vulnerabilities in its NSX product line that could potentially allow attackers to gain root access. The vulnerabilities, identified as CVE-2024-38818, CVE-2024-38817, and CVE-2024-38815, affect both VMware NSX and VMware Cloud Foundation. According t…GBHACKERS.COM
10 OctHackers Exploiting Zero-day Flaw in Qualcomm Chips to Attack Android UsersHackers exploit a zero-day vulnerability found in Qualcomm chipsets, potentially affecting millions worldwide. The flaw, identified as CVE-2024-43047, is a use-after-free vulnerability resulting from memory corruption in the DSP Services while maintaining memory maps of HLOS memo…GBHACKERS.COM
10 OctExperts Warn of Critical Unpatched Vulnerability in Linear eMerge E3 SystemsCybersecurity security researchers are warning about an unpatched vulnerability in Nice Linear eMerge E3 access controller systems that could allow for the execution of arbitrary operating system (OS) commands. The flaw, assigned the CVE identifier CVE-2024-9441, carries a CVSS s…THEHACKERNEWS.COM
10 Oct KEVMozilla Warns Of Firefox Zero-Day Actively Exploited In Cyber AttacksA critical use-after-free vulnerability affecting Firefox and Firefox Extended Support Release (ESR) is being actively exploited in cyberattacks. With a CVSS base score of 9.8, the flaw is identified as Use-after-free in the Animation timeline component tracked as CVE-2024-9680 r…GBHACKERS.COM
10 OctChromium: CVE-2024-9603 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.MSRC.MICROSOFT.COM
10 OctChromium: CVE-2024-9602 Type Confusion in V8This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024 ) for more information.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 27[−]
10 OctCybersecurity bill could make ransomware payment reporting mandatoryThe Australian Federal Government has introduced the Cyber Security Bill 2024 to Parliament proposing the country’s first standalone cybersecurity Act. The simplified outline of the Act proposes the following: This Act provides for mandatory security standards for certain product…CSOONLINE.COM
10 OctEncryption backdoor debates rage across the planet, promising a difficult 2025 for CISOsCompliance rules requiring encryption backdoors — not just for attachments, but for text; not just for communications apps, but mobile devices, clouds, and SaaS apps — are being hotly debated in just about corner of the planet. Although much of the compliance community is focused…CSOONLINE.COM
10 OctWhat’s old is new again: AI is bringing XSS vulnerabilities back to the spotlightThe US Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) issued a Secure by Design alert in September urging tech manufacturers to remove cross-site scripting vulnerabilities (XSS), which have long plagued security professionals…CSOONLINE.COM
10 OctTop 6 IDS/IPS tools — plus 4 open-source alternativesIntrusion detection and prevention systems (IDPS) Detecting and preventing network intrusions used to be the bread and butter of IT security. But over the past few years, analysts and defenders have seen a slow but steady transition from these products. They have become a compone…CSOONLINE.COM
10 OctCyber insurance explained: Costs, terms, how to know it’s right for your businessWhat is cyber insurance? Cyber insurance, also known as cyber risk insurance or cyber liability insurance coverage (CLIC), is an insurance policy that helps cover costs associated with data breaches or cyberattacks. Cyber insurance mitigates the risk exposure of a business by off…CSOONLINE.COM
10 OctCybercriminals Use Unicode to Hide Mongolian Skimmer in E-Commerce PlatformsCybersecurity researchers have shed light on a new digital skimmer campaign that leverages Unicode obfuscation techniques to conceal a skimmer dubbed Mongolian Skimmer. "At first glance, the thing that stood out was the script's obfuscation, which seemed a bit bizarre because of …THEHACKERNEWS.COM
10 OctStar Health Insurance CISO sold customer data, hacker claimsJust when it seemed like the dust was beginning to settle, the Star Health data breach took a dramatic and shocking turn. According to claims from the hacker behind the breach, Amarjeet Khanuja, the Chief Information Security Officer (CISO) of Star Health and Allied Insurance, al…CSOONLINE.COM
10 OctFoxit PDF Reader Vulnerability Let Attackers Execute Arbitary CodeResearchers recently disclosed six new security vulnerabilities across various software, as one critical vulnerability was found in Foxit PDF Reader, a widely used alternative to Adobe Acrobat. Given the memory corruption vulnerability, attackers could execute arbitrary cod…GBHACKERS.COM
10 Oct6 Simple Steps to Eliminate SOC Analyst BurnoutThe current SOC model relies on a scarce resource: human analysts. These professionals are expensive, in high demand, and increasingly difficult to retain. Their work is not only highly technical and high-risk, but also soul-crushingly repetitive, dealing with a constant flood of…THEHACKERNEWS.COM
10 OctRisk, reward and reality: Has enterprise perception of the public cloud changed?Public clouds now form the bulk of enterprise IT environments. According to 2024 Statista data, 73% of enterprises use a hybrid cloud model, 14% use multiple public clouds and 10% use a single public cloud solution. Multiple and single private clouds make up the remaining 3%. Wit…SECURITYINTELLIGENCE.COM
10 OctSpyCloud Embeds Identity Analytics in Cybercrime Investigations Solution to Accelerate Insider and Supply Chain Risk Analysis & Threat Actor AttributionIDLink, SpyCloud’s new automated digital identity correlation capability, is now core to its industry-leading Investigations solution used by CTI teams, security operations, fraud and risk prevention analysts, and law enforcement globally SpyCloud , the leader in Identity Threat …CSOONLINE.COM
10 OctBest Practices to Configure BIG-IP LTM Systems to Encrypt HTTP Persistence CookiesCISA has observed cyber threat actors leveraging unencrypted persistent cookies managed by the F5 BIG-IP Local Traffic Manager (LTM) module to enumerate other non-internet facing devices on the network. F5 BIG-IP is a suite of hardware and software solutions designed to…CISA.GOV
10 OctSpyCloud Embeds Identity Analytics in Cybercrime Investigations Solution to Accelerate Insider and Supply Chain Risk Analysis & Threat Actor AttributionIDLink, SpyCloud’s new automated digital identity correlation capability, is now core to its industry-leading Investigations solution used by CTI teams, security operations, fraud and risk prevention analysts, and law enforcement globally SpyCloud, the leader in Identity Threat P…GBHACKERS.COM
10 OctMicrosoft Outlook bug blocks email logins, causes app crashesMicrosoft is investigating an Outlook bug causing desktop app crashes, high system resource usage, and preventing users from logging into their accounts. [...]BLEEPINGCOMPUTER.COM
10 OctCISA Releases Twenty-One Industrial Control Systems AdvisoriesCISA released twenty-one Industrial Control Systems (ICS) advisories on October 10, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-284-01 Siemens SIMATIC S7-1500 and S7-1200 CPUs ICSA-24-284-…CISA.GOV
10 OctThe Code of Honor: Embracing Ethics in Cybersecurity - Ed Skoudis - PSW #846"Code of Honor: Embracing Ethics in Cybersecurity" by Ed Skoudis is a book that explores the ethical challenges faced by cybersecurity professionals in today's digital landscape. The book delves into the complex moral dilemmas that arise in the field of cybersecurity, offering gu…YOUTUBE.COM
10 OctUsing Chrome's accessibility APIs to find security bugsPosted by Adrian Taylor, Security Engineer, Chrome Chrome’s user interface (UI) code is complex, and sometimes has bugs. Are those bugs security bugs? Specifically, if a user’s clicks and actions result in memory corruption, is that something that an attacker can exploit to harm …SECURITY.GOOGLEBLOG.COM
10 OctFidelity Investments says data breach affects over 77,000 peopleFidelity Investments, a Boston-based multinational financial services company, disclosed that the personal information of over 77,000 customers was exposed after its systems were breached in August. [...]BLEEPINGCOMPUTER.COM
10 OctA Vulnerability in Mozilla Firefox Could Allow for Arbitrary Code ExecutionA vulnerability has been discovered in Mozilla Firefox which could allow for arbitrary code execution. Mozilla Firefox is a web browser used to access the Internet. Successful exploitation could allow for arbitrary code execution. Depending on the privileges associated with the u…CISECURITY.ORG
10 OctAttackers are using QR codes sneakily crafted in ASCII and blob URLs in phishing emailsAttackers are always looking for new ways to bypass email security filters and get their malicious URLs in front of victims. One increasingly popular method involves sending emails that include QR codes that direct users to rogue sites when scanned — and now researchers have foun…CSOONLINE.COM
10 OctHackerangriff auf Automobilzulieferer OptibeltOptibelt fertigt Antriebsriemen für die Automobilbranche, Verpackungsindustrie und Logistik. Die Cyberattacke könnte massive Folgen haben. Optibelt Der Produzent von Antriebsriemen Optibelt kämpft laut Medienberichten aktuell mit einem großangelegten Cyberangriff. Wie das Unterne…CSOONLINE.COM
10 OctWas ist Cyber Threat Intelligence?Lesen Sie, worauf es bei der Implementierung von Cyber Threat Intelligence ankommt. Excelworld – shutterstock.com In einer digitalen Welt, in der Cyberangriffe immer raffinierter und häufiger werden, ist es unerlässlich, Bedrohungen frühzeitig zu erkennen und darauf zu reagieren.…CSOONLINE.COM
10 OctRansomware-Tool killt EDR-SoftwareDas Ransomware-Toolkit Poortry wurde mit neuen Funktionen ausgestattet, um sich der Erkennung zu entziehen. Es hat sich zu einer Art Rootkit entwickelt. Lerbank-bbk22 – shutterstock.com Sophos-Forscher stellten kürzlich fest, dass das Ransomware-Toolset namens Poortry (oder Burnt…CSOONLINE.COM
10 OctAkira and Fog ransomware now exploit critical Veeam RCE flawRansomware gangs now exploit a critical security vulnerability that lets attackers gain remote code execution (RCE) on vulnerable Veeam Backup & Replication (VBR) servers. [...]BLEEPINGCOMPUTER.COM
10 OctEuropean Council Adopts Cyber Resilience ActAct Imposes Mandatory Patching for IoT Devices The European Council adopted Thursday security-by-design regulation that makes patching and vulnerability updates mandatory for connected devices. The regulation will ensure that "products with digital components are made secure thro…DATABREACHTODAY.CO.UK
📋 SECURITY BULLETINS 3[−]
10 OctGitLab warns of critical arbitrary branch pipeline execution flawGitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. [...]BLEEPINGCOMPUTER.COM
10 OctThe Saga Continues - PSW #846Get ready for a wild ride in this week's podcast episode, where we dive into the latest security shenanigans! * Default Credentials Gone Wild: We’ll kick things off with a look at how default credential scanners are like that friend who shows up to the party but never brings snac…YOUTUBE.COM
10 OctBreach Roundup: Gobal Signal Exchange to Curb Online FraudAlso: A Fidelity Breach, Mamba Phishing This week, the Global Signal Exchange hopes to dent online crime, a Fidelity data breach, phishing platform targets Microsoft 365 users, October Patch Tuesday, Pavel Durov said he's always cooperated with police, Highline Public Schools and…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 10[−]
10 OctCISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patchessubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2024/10/cisa-warns-of-critical-fortinet-flaw-as.htmlSH.ITJUST.WORKS
10 OctRelyance lands $32M to help companies comply with data regulationsAs the demand for AI surges, AI vendors are devoting greater bandwidth to data security issues. Not only are they being compelled to comply with emerging data privacy regulations (e.g. the EU Data Act), but they’re finding themselves under the microscope of clients skeptica…TECHCRUNCH.COM
10 OctJoin Ars in DC for infrastructure, cocktails, and spycraft on October 29On the discussion agenda: Privacy, compliance, and making infrastructure smarter.ARSTECHNICA.COM
10 Oct5 Tipps für mehr Sicherheit im KI-ZeitalterUm auch in Zeiten von generativer KI für Sicherheit im Unternehmen zu sorgen, sollten CISOs folgende Voraussetzungen schaffen. VRVIRUS – shutterstock.com Studien zeigen, dass die Anzahl der Ransomware-Angriffe seit der Einführung von ChatGPT um 76 Prozent gestiegen ist. Besonders…CSOONLINE.COM
10 OctRelyance AI Raises $32M to Take on AI Governance ChallengesThomvest Ventures Leads Series B Funding to Support Privacy and Security Compliance Relyance AI raised $32 million in Series B funding to grow its data governance platform. The funds will be used to scale operations, enhance real-time data visibility, and support enterprises in c…DATABREACHTODAY.CO.UK
10 OctSSA Struggling to Modernize Fraud Prevention Tech, GAO WarnsGAO: SSA Fails to Meet Industry and Federal Electronic Verification System Goals The Social Security Administration is facing criticism for failing to update its fraud prevention technology, leaving financial institutions and federal authorities at risk of missing synthetic ident…DATABREACHTODAY.CO.UK
10 OctMitsubishi Chemical wird erpresstMitsubishi Chemical wurde vermutlich gehackt. IgorGolovniov – shutterstock.com Laut einem Darknet-Post ist es der Erpresserbande Everest gelungen, sich in die Systeme des japanischen Chemiekonzerns Mitsubishi Chemical zu hacken. Demnach wurden dabei sechs Terabyte an Unternehmens…CSOONLINE.COM
10 OctOperation Cronos Is Disrupting LockBit, Says UK OfficialImpact is "What We Would Have Hoped For, Says NCSC CTO Ollie Whitehouse A British cybersecurity official touted Operation Cronos, an international operation against LockBit, saying multiple strikes aimed at the ransomware-as-a-service have disrupted its ability to recruit hackers…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 14[−]
10 OctThe Internet Archive slammed by DDoS attack and data breachThe Internet Archive, the nonprofit organization that digitizes and archives materials like web pages, came under attack Wednesday. Several users – including over at The Verge – confronted a pop-up when visiting the site, reading, “Have you ever felt like the Internet Archive run…TECHCRUNCH.COM
10 OctMarriott Pays $52M to Settle US States' Breach LitigationWorld's Biggest Hotel Chain Also Settles with Federal Trade Commission The world's largest hotel chain agreed Wednesday to pay $52 million and submit to 20 years of third-party monitoring of its cybersecurity program to settle a rash of data breaches affecting millions of guests.…DATABREACHTODAY.CO.UK
10 OctInternet Archive hacked, data breach impacts 31 million userssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/internet-archive-hacked-data-breach-impacts-31-million-users/SH.ITJUST.WORKS
10 OctFidelity says data breach exposed personal data of 77,000 customersFidelity Investments, one of the world’s largest asset managers, has confirmed that 77,000 customers had personal information compromised during an August data breach. The Boston, Mass.-based investment firm said in a filing with Maine’s attorney general on Wednesday that a…TECHCRUNCH.COM
10 OctThe Top 10 Countries Most Targeted by Cyberattackssubmitted by kid to cybersecurity 1 points | 0 comments https://blogs.blackberry.com/en/2023/02/top-10-countries-most-targeted-by-cyberattacks-2023-report Here are the most attacked countries in cyberspace, overall, based on the volume of attacks. United States South Korea Japan …SH.ITJUST.WORKS
10 OctJuniper extends security platform to streamline threat detection, incident responseJuniper Networks is working to integrate more of its security services under one AI-centric roof. The vendor’s new Secure AI-Native Edge offering and cloud-based Security Assurance service are designed to deliver a cohesive view of network health, performance, and security metric…NETWORKWORLD.COM
10 OctRansomware attack leaks social security numbers of over 230,000 Comcast customersFinancial Business and Consumer Solutions (FBCS), a debt collection agency previously used by Comcast, was the subject of a ransomware attack in February 2024, which had a database of names, addresses, social security numbers, dates of birth, and Comcast account details exposed. …BITDEFENDER.COM
10 OctAbusix and Red Sift Form New Partnership, Leveraging Automation to Mitigate Cyber AttacksThe agreement has marked over 600,000 fraudulent domains for takedown in just two months through automated defense and proactive prevention. Abusix and Red Sift to hold exclusive webinar sharing insights on transforming cyber attack mitigation. Abusix, an organization specializin…GBHACKERS.COM
10 OctInternet Archive Data Breach Exposes 31 Million AccountsNonprofit Digital Archive Also Suffers Denial-of-Service Attacks, Defacement The nonprofit Internet Archive has been hit by hackers, who stole usernames and for 31 million accounts, including email addresses and bcrypt-hashed passwords. In recent days, the digital archive has als…DATABREACHTODAY.CO.UK
10 OctUnderground ransomware claims attack on Casio, leaks stolen dataThe Underground ransomware gang has claimed responsibility for an October 5 attack on Japanese tech giant Casio, which caused system disruptions and impacted some of the firm's services. [...]BLEEPINGCOMPUTER.COM
10 OctMarriott settles with FTC, to pay $52 million over data breachesMarriott International and its subsidiary Starwood Hotels will pay $52 million and create a comprehensive information security program as part of settlements for data breaches that impacted over 344 million customers. [...]BLEEPINGCOMPUTER.COM
10 OctCyberangriff bei Dick’s Sporting GoodsDick’s Sporting Goods betreibt in den Vereinigten Staaten über 850 Filialen und beschäftigt mehr als 55.000 Mitarbeiter. Der Umsatz der Einzelhandelskette lag im Jahr 2023 bei rund 13 Milliarden Dollar. Tada Images | shutterstock.com Im Rahmen eines Berichts an die US-Börsenaufsi…CSOONLINE.COM
10 OctNew York State Enacts New Cyber Requirements for HospitalsIncludes 72-Hour Incident Reporting Mandate That Went into Effect on Oct. 2 General hospitals in New York State must now report cyber incidents to state regulators within 72 hours under new cybersecurity requirements that went into effect on Oct. 2. The hospitals have until next …DATABREACHTODAY.CO.UK
10 OctNeue Ransomware zielt auf ESXi-ServerDie neue Ransomware-Gruppe Cicada3301 weist Ähnlichkeiten zur AlphV-Bande auf. Truesec Forscher von Trusec sind kürzlich auf eine neue Ransomware-as-a-Service-Gruppe mit dem Namen Cicada3301 gestoßen. Die Bande bietet ihren Partnern eine Plattform für zweifache Erpressung, die so…CSOONLINE.COM
🕵️ THREAT INTELLIGENCE 17[−]
10 OctISC Stormcast For Thursday, October 10th, 2024 https://isc.sans.edu/podcastdetail/9174, (Thu, Oct 10th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
10 OctGPTHoney: A new class of honeypot [Guest Diary], (Thu, Oct 10th)[This is a Guest Diary by Christopher Schroeder, an ISC intern as part of the SANS.edu BACS program]
ISC.SANS.EDU
10 OctCrowdstrike wehrt sich gegen Action1-GerüchteCrowdstrike und Action1 würden grundsätzlich gut zusammenpassen. Nach den neuesten Kommunikationseskapaden wird das aber wohl nichts mehr. Anton Vierietin | shutterstock.com Anfang August 2024 tauchten erste Presseberichte über eine mögliche Übernahme des Patch-Management-Anbiete…CSOONLINE.COM
10 OctEDR und XDR bleiben wichtigEDR- und XDR-Systeme bieten umfassende Sicherheit und Transparenz für alle Endpunkte und Netzwerke in Ihrer IT-Infrastruktur. ArtemisDiana – shutterstock.com Die jüngsten Diskussionen um Crowdstrike und ähnliche Anbieter haben die Aufmerksamkeit auf Endpoint Detection and Respons…CSOONLINE.COM
10 OctKnox Native macht Samsung-Geräte Behörden-sicherSamsung Knox Native ist jetzt hierzulande erhältlich. Es soll die mobile Kommunikation sicherer machen. PeopleImages.com – Yuri A – shutterstock.com Mit Samsung Knox Native offeriert der koreanische Hersteller nun hierzulande eine Lösung, die für Behörden und Unternehmen die mobi…CSOONLINE.COM
10 OctWireshark 4.4.1 Released, What’s new!Wireshark, the world’s leading network protocol analyzer, has just released version 4.4.1, bringing a host of bug fixes and updates to enhance user experience and functionality. Hosted by the Wireshark Foundation, this tool is indispensable for troubleshooting, analysis, developm…GBHACKERS.COM
10 OctDeebot Robot Vacuums Are Using Photos and Audio to Train Their AIAn Australian news agency is reporting that robot vacuum cleaners from the Chinese company Deebot are surreptitiously taking photos and recording audio, and sending that data back to the vendor to train their AIs. Ecovacs’s privacy policy— available elsewhere in the a…SCHNEIER.COM
10 OctHackers Hide Remcos RAT in GitHub Repository Commentssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/vulnerabilities-threats/hackers-hide-remcos-rat-github-commentsSH.ITJUST.WORKS
10 OctMultiple VMware NSX Vulnerabilities Let Attackers Gain Root Accesssubmitted by kid to cybersecurity 1 points | 0 comments https://gbhackers.com/multiple-vmware-nsx-vulnerabilities/SH.ITJUST.WORKS
10 OctHow CKW Is Building a Smart Energy GridCKW's Yann Gosteli on Optimizing Communication Networks With Future-Proof Tech Swiss utility giant Centralschweizerische Kraftwerke has transformed its legacy operational communication network with a hybrid multiservice platform. Yann Gosteli, head of secondary systems at CKW, sh…DATABREACHTODAY.CO.UK
10 OctCryptohack Roundup: Australia Nabs Crypto in Ghost TakedownAlso: Taiwan AML Rules, IcomTech Sentencing This week, Australia seized crypto from alleged Ghost mastermind, Taiwan drafts new AML rules, IcomTech founder sentenced, U.S. looks to recover stolen crypto, EigenLayer's erroneous fund transfer, FTX's bankruptcy plan approved, Bitfin…DATABREACHTODAY.CO.UK
10 OctUS, UK warn of Russian APT29 hackers targeting Zimbra, TeamCity serversU.S. and U.K. cyber agencies warned today that APT29 hackers linked to Russia's Foreign Intelligence Service (SVR) target vulnerable Zimbra and JetBrains TeamCity servers "at a mass scale." [...]BLEEPINGCOMPUTER.COM
10 OctMicrosoft Sway für Quishing-Angriffe missbrauchtHacker versuchen per Quishing, also dem Phishing via QR-Codes, die Zugangsdaten von Microsoft-Usern abzugreifen. Tomas Knopp – shutterstock.com Security-Forscher von Netskope Threat Labs haben eine großangelegte Phishing-Kampagne entdeckt, die auf Microsoft-Anwender zielt. Die An…CSOONLINE.COM
10 OctDatenleck bei IT-Dienstleister SybitDer IT-Dienstleister Sybit warnt seine Kunden vor Phishing-Mails, die im Namen eines Mitarbeiters verschickt wurden. BritCats Studio – shutterstock.com In einer Rundmail informiert der IT-Dienstleister Sybit seine Kunden aktuell über eine Datenschutzverletzung. Demnach wurde das …CSOONLINE.COM
10 OctWertachkliniken von Hackern lahmgelegtDie Wertachkliniken Schwabmünchen und Bobingen kämpfen aktuell mit einem IT-Ausfall. Ursache ist ein Hackerangriff. Wertachkliniken Medienberichten zufolge haben Hacker am vergangenen Wochenende die IT-Systeme der Wertachkliniken in Bobingen und Schwabmünchen lahmgelegt. Demnach …CSOONLINE.COM
10 OctNews alert: SpyCloud accelerates supply chain risk analysis with new ‘IDLink’ correlation capabilityAustin, TX, Oct. 10th, 2024, CyberNewswire — SpyCloud, the leader in Identity Threat Protection, announced that its SaaS Investigations solution has been enhanced with identity analytics that illuminate the scope of digital identities and accelerate successful outcomes of c…LASTWATCHDOG.COM
10 OctCyber Signals Issue 8 | Education under siege: How cybercriminals target our schoolsThis edition of Cyber Signals delves into the cybersecurity challenges facing classrooms and campuses, highlighting the critical need for robust defenses and proactive measures. From personal devices to virtual classes and research stored in the cloud, the digital footprint of s…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
10 OctOpenAI Blocks 20 Global Malicious Campaigns Using AI for Cybercrime and DisinformationOpenAI on Wednesday said it has disrupted more than 20 operations and deceptive networks across the world that attempted to use its platform for malicious purposes since the start of the year. This activity encompassed debugging malware, writing articles for websites, generating …THEHACKERNEWS.COM
📡 INFOSEC NEWS 6[−]
10 OctBypass Apache Superset restrictions to perform SQL injectionsThe following article explains how during an audit we took a look at Apache Superset and found bypasses (by reading the PostgreSQL documentation) for the security measures implemented.QUARKSLAB.COM
10 OctUkraine arrests rogue VPN operator providing access to RunetUkraine's cyber police have arrested a 28-year-old man who operated a massive virtual private network (VPN) service, allowing people from within the country to access the Russian internet (Runet). [...]BLEEPINGCOMPUTER.COM
10 OctTelekopye transitions to targeting tourists via hotel booking scamESET Research shares new findings about Telekopye, a scam toolkit used to defraud people on online marketplaces, and newly on accommodation booking platformsWELIVESECURITY.COM