62Articles
7Categories
2024-10-14Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 6[−]
14 OctCritical Veeam Vulnerability Exploited to Spread Akira and Fog RansomwareThreat actors are actively attempting to exploit a now-patched security flaw in Veeam Backup & Replication to deploy Akira and Fog ransomware. Cybersecurity vendor Sophos said it has been tracking a series of attacks in the past month leveraging compromised VPN credentials an…THEHACKERNEWS.COM
14 OctMalicious open-source software packages have exploded in 2024Malware is infiltrating the open-source software development ecosystem at an alarming rate, according to a new report from software supply chain management firm Sonatype. The company has tracked over 500,000 new malicious packages since November 2023 across the popular Java, Java…CSOONLINE.COM
14 Oct KEVIranian hackers use Windows holes to attack critical Gulf and Emirates systemsAn Iran-linked cyber espionage group has been, in recent months, conducting cyberattacks in the United Arab Emirates (UAE) and the Gulf region exploiting a privilege escalation flaw in Windows systems. The hacker group APT34 also tracked as OilRig and Earth Simnavaz, is primarily…CSOONLINE.COM
14 OctPerfectl MalwarePerfectl in an impressive piece of malware: The malware has been circulating since at least 2021. It gets installed by exploiting more than 20,000 common misconfigurations, a capability that may make millions of machines connected to the Internet potential targets, researchers fr…SCHNEIER.COM
14 Octpac4j Java Framework Vulnerable to RCE AttacksA critical security vulnerability has been discovered in the popular Java framework pac4j. The vulnerability specifically affects versions before 4.0 of the pac4j-core module. This vulnerability, identified as CVE-2023-25581, exposes systems to potential remote code execution (RC…GBHACKERS.COM
14 OctOilRig Hackers Exploiting Microsoft Exchange Server To Steal Login DetailsEarth Simnavaz, an Iranian state-sponsored cyber espionage group, has recently intensified its attacks on critical infrastructure in the UAE and wider Gulf region.  The group employs sophisticated techniques to gain unauthorized access and exfiltrate sensitive data, such as …GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 20[−]
14 OctWeekly Update 421Presently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. It wasn't easy talking about the Muah.AI data breach. It's not just the rampant child sexual abuse material throughout the system (or at least requests for …TROYHUNT.COM
14 OctZendesk Email Spoofing Flaw Let Attackers Access Support TicketsA security vulnerability in Zendesk, a widely used customer service tool, has been uncovered. This flaw allowed attackers to access support tickets from any company using Zendesk, posing significant risks to sensitive information. Zendesk initially dismissed the vulnerability, wh…GBHACKERS.COM
14 OctWhat’s next for the CISO role?As executive vice president and CISO, Jerry Geisler is a top-level executive at Walmart. That rank, along with continued investment in the cybersecurity program, reflects his company’s commitment “to being a cyber secure company,” he says. What’s more, it highlights the continuin…CSOONLINE.COM
14 OctOpen source package entry points could be used for command jacking: ReportOpen source application packages, including those in Python and JavaScript, have a vulnerability in their entry points that could be used by threat actors to execute malicious code to steal data, plant malware, and more. This warning to developers and infosec leaders comes in a r…CSOONLINE.COM
14 OctIranian hackers now exploit Windows flaw to elevate privilegessubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/oilrig-hackers-now-exploit-windows-flaw-to-elevate-privileges/SH.ITJUST.WORKS
14 OctNation-State Attackers Exploiting Ivanti CSA Flaws for Network InfiltrationA suspected nation-state adversary has been observed weaponizing three security flaws in Ivanti Cloud Service Appliance (CSA) a zero-day to perform a series of malicious actions. That's according to findings from Fortinet FortiGuard Labs, which said the vulnerabilities were abuse…THEHACKERNEWS.COM
14 OctSupply Chain Attacks Exploit Entry Points in Python, npm, and Open-Source EcosystemsCybersecurity researchers have found that entry points could be abused across multiple programming ecosystems like PyPI, npm, Ruby Gems, NuGet, Dart Pub, and Rust Crates to stage software supply chain attacks. "Attackers can leverage these entry points to execute malicious code w…THEHACKERNEWS.COM
14 OctTHN Cybersecurity Recap: Top Threats, Tools and Trends (Oct 7 - Oct 13)Hey there, it's your weekly dose of "what the heck is going on in cybersecurity land" – and trust me, you NEED to be in the loop this time. We've got everything from zero-day exploits and AI gone rogue to the FBI playing crypto kingpin – it's full of stuff they don't 🤫 want you t…THEHACKERNEWS.COM
14 Oct"Operation Kaerb" Takes Down Sophisticated Phishing-as-a-Service Platform “iServer”A partnering of European and Latin American law enforcement agencies took down the group behind the mobile phone credential theft of 483,000 victims.KNOWBE4.COM
14 OctGryphon Healthcare, Tri-City Medical Center Disclose Significant Data BreachesGryphon Healthcare and Tri-City Medical Center have disclosed data breaches collectively impacting over 500,000 individuals. The post Gryphon Healthcare, Tri-City Medical Center Disclose Significant Data Breaches appeared first on SecurityWeek .SECURITYWEEK.COM
14 OctChinese State Hackers Main Suspect in Recent Ivanti CSA Zero-Day AttacksFortinet believes state-sponsored threat actors are behind the recent attacks involving exploitation of Ivanti CSA zero-days. The post Chinese State Hackers Main Suspect in Recent Ivanti CSA Zero-Day Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
14 OctIranian Cyberspies Exploiting Recent Windows Kernel VulnerabilityThe Iran-linked APT OilRig has intensified cyber operations against the United Arab Emirates and the broader Gulf region. The post Iranian Cyberspies Exploiting Recent Windows Kernel Vulnerability appeared first on SecurityWeek .SECURITYWEEK.COM
14 OctRecent Firefox Zero-Day Exploited Against Tor Browser UsersTor browser version 13.5.7 is rolling out with patches for an exploited zero-day vulnerability recently addressed in Firefox. The post Recent Firefox Zero-Day Exploited Against Tor Browser Users appeared first on SecurityWeek .SECURITYWEEK.COM
14 OctBSides Oslo 2024submitted by ashar to security_cpe 1 points | 0 comments https://bsidesoslo.no/assets/images/BSides_Oslo_Splash.png BSides Oslo 2024 Schedule of Talks BSides Oslo 2024 Recorded LivestreamINFOSEC.PUB
14 OctMeet SmartRisk Agent™: Unlock Your New Human Risk ManagementDepending on who you ask, between 70 and 90 percent of cyber risk has human error as the root cause. That's why Human Risk Management (HRM) is so important. And here is the next major advance in HRM. We're thrilled to announce the second version of our risk score architecture. It…KNOWBE4.COM
14 OctPokemon dev Game Freak confirms breach after stolen data leaks onlineJapanese video game developer Game Freak has confirmed it suffered a cyberattack in August after source code and game designs for unpublished games were leaked online. [...]BLEEPINGCOMPUTER.COM
14 OctAuthorities warn of global cyber campaign by Russian intelligenceThe British cyber security agency National Cyber ​​Security Center (NCSC) warns that the Russian foreign intelligence service, Sluzhba Vneshney Razvedki (SVR), is conducting a global campaign exploiting known vulnerabilities to infiltrate networks. The goal of the campaign is bel…CSOONLINE.COM
14 OctJetpack fixes critical information disclosure flaw existing since 2016WordPress plugin Jetpack released a critical security update earlier today, addressing a vulnerability that allowed a logged-in user to access forms submitted by other visitors to the site. [...]BLEEPINGCOMPUTER.COM
14 OctMultiple Vulnerabilities in Palo Alto Network’s Expedition Could Allow for Arbitrary Code ExecutionMultiple Vulnerabilities in Palo Alto Network’s Expedition have been discovered, the most severe of which could allow for arbitrary code execution on Palo Alto Firewalls. Palo Alto Network’s Expedition is a migration tool designed to help organizations move configurations from ot…CISECURITY.ORG
📢 SECURITY ADVISORIES 3[−]
14 OctGUEST ESSAY: Achieving end-to-end data security with the right ‘fully homomorphic encryption’Everyone knows the cost and frequency of data breaches are rising. The question is, do you know if your data is truly secure? I have news for you. It’s not. Related: The Biden-Harris push for supply chain resilience. Why? Many … (more…) The post GUEST ESSAY: Achieving end-t…LASTWATCHDOG.COM
14 OctAmerica First Policy Institute, a Group Advising Trump, Says Its Systems Were BreachedA group helping to lay the groundwork for a future Donald Trump administration said its computer systems were breached. The post America First Policy Institute, a Group Advising Trump, Says Its Systems Were Breached appeared first on SecurityWeek .SECURITYWEEK.COM
14 OctMost EU Nations to Miss Upcoming NIS2 DeadlineOnly Six Nations Have Incorporated NIS2 Into National Statute Most European countries are set to miss a trading bloc deadline for implementing a key cybersecurity regulation that requires measures such as mandatory security auditing for essential services such as hospitals and ba…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 13[−]
14 OctBeware of Fake AI Scam calls that Takeover your Gmail AccountScammers use sophisticated AI technology to impersonate tech giants like Google, aiming to take over unsuspecting users’ Gmail accounts. A recent incident highlights these fraudsters’ cunning tactics, underscoring the need for heightened vigilance. The Initial Contact…GBHACKERS.COM
14 OctChinese researchers break RSA encryption with a quantum computerIn a potentially alarming development for global cybersecurity, Chinese researchers have unveiled a method using D-Wave’s quantum annealing systems to crack classic encryption, potentially accelerating the timeline for when quantum computers could pose a real threat to widely use…CSOONLINE.COM
14 OctSextortion Scammers Attempt to Hit “Close to Home”We live in a world where, despite the sharing of information online, we feel like those interactions will never reach home.  But a new scam –   covered on WTSP Tampa Bay’s Channel 10 news   – demonstrates how scammers will use personal details to throw the victim i…KNOWBE4.COM
14 OctCasio Confirms Data Breach as Ransomware Group Leaks FilesCasio has shared more information on the recent cyberattack, for which a ransomware group has now taken credit. The post Casio Confirms Data Breach as Ransomware Group Leaks Files appeared first on SecurityWeek .SECURITYWEEK.COM
14 OctCasio confirms customer data compromised in ransomware attackA ransomware and extortion racket called Underground has claimed responsibility for the breach on its dark web leak site, which TechCrunch has seen. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
14 OctNational Public Data, the hacked data broker that lost millions of Social Security numbers and more, files for bankruptcyThe data broker who lost one of the biggest databases of Social Security numbers in a data breach earlier this year, files for bankruptcy protection. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
14 OctConfusedPilot Attack Can Manipulate RAG-Based AI Systemssubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/confusedpilot-attack-manipulate-rag-based-ai-systemsSH.ITJUST.WORKS
14 OctCongress Seeks Urgent Action After Chinese Telecom HackLawmakers Demand Answers, Security Overhaul After Chinese Hack of Telecom Networks Congress is demanding answers from AT&T, Verizon, and Lumen after reports revealed that Chinese hackers breached U.S. telecom infrastructure, targeting systems linked to court-authorized wireta…DATABREACHTODAY.CO.UK
14 OctOil and Gas Firms Aware of Cyber RisksSector Uses Multifactor, Eschews Cloud, Can't Afford Cyber Insurance The oil and gas industry has high levels of cyber awareness and low levels of cyber insurance, says a sectoral assessment from credit rating agency Moody's. The sector has experienced a clutch of high-profile at…DATABREACHTODAY.CO.UK
14 OctRevenue Cycle Vendor Notifying 400,000 Patients of HackTexas-Based Gryphon Healthcare Says an Unnamed Third Party Was at Center of Breach A Texas-based revenue cycle management firm is notifying about 400,000 individuals of a hacking incident it says originated with another third party. The incident is among a growing list of major b…DATABREACHTODAY.CO.UK
14 OctCisco investigates breach after stolen data for sale on hacking forumCisco has confirmed to BleepingComputer that it is investigating recent claims that it suffered a breach after a threat actor began selling allegedly stolen data on a hacking forum. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 12[−]
14 OctISC Stormcast For Monday, October 14th, 2024 https://isc.sans.edu/podcastdetail/9178, (Mon, Oct 14th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
14 Oct18 Individuals Charged for Widespread Manipulation Cryptocurrency Markets18 individuals and entities have been charged with widespread fraud and manipulation within the cryptocurrency markets. The charges, unsealed in Boston, target leaders of four cryptocurrency companies, four financial services firms known as “market makers,” and variou…GBHACKERS.COM
14 OctWater Makara Uses Obfuscated JavaScript in Spear Phishing Campaign, Targets Brazil With Astaroth MalwareTrend Micro researchers have uncovered a surge of malicious activities involving a threat actor group that we track as Water Makara. This group is targeting enterprises in Brazil, deploying banking malware using obfuscated JavaScript to slip past security defenses.TRENDMICRO.COM
14 OctFBI Creates Fake Cryptocurrency to Expose Widespread Crypto Market Manipulationsubmitted by kid to cybersecurity 3 points | 0 comments https://thehackernews.com/2024/10/fbi-creates-fake-cryptocurrency-to.htmlSH.ITJUST.WORKS
14 OctWatch Now: Zero Trust Strategies Summit – All Sessions Available on DemandWith all sessions now available on demand, the online summit is laser focused on helping organizations to level up their Identity and Zero Trust security strategies. The post Watch Now: Zero Trust Strategies Summit – All Sessions Available on Demand appeared first on Securi…SECURITYWEEK.COM
14 OctJuniper Networks Patches Dozens of VulnerabilitiesJuniper Networks has announced patches for dozens of vulnerabilities in Junos OS, Junos OS Evolved, and third-party components. The post Juniper Networks Patches Dozens of Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
14 OctCoreWarrior Malware Attacking Windows Machines From Dozens Of IP AddressResearchers recently analyzed a CoreWarrior malware sample, which spreads aggressively by creating numerous copies and connecting to various IP addresses. It establishes multiple backdoor connections and monitors user activity through Windows UI element hooks, which poses a signi…GBHACKERS.COM
14 OctTrickMo Malware Targets Android Devices to Steal Unlock Patterns and PINsThe recent discovery of the TrickMo Banking Trojan variant by Cleafy has prompted further investigation, where researchers have identified 40 variants, 16 droppers, and 22 active Command and Control servers associated with this threat.  These variants employ advanced techniq…GBHACKERS.COM
14 OctUpcoming Speaking EngagementsThis is a current list of where and when I am scheduled to speak: I’m speaking at SOSS Fusion 2024 in Atlanta, Georgia, USA. The event will be held on October 22 and 23, 2024, and my talk is at 9:15 AM ET on October 22, 2024. The list is maintained on this page .SCHNEIER.COM
14 OctLLMs Fail Middle School Word Problems, Say Apple ResearchersAI Mimics Reasoning Without Understanding, Struggles With Irrelevant Data Cutting-edge large language models would fail eighth grade math, say artificial intelligence researchers at Apple - likely because AI is mimicking the process of reasoning rather than actually engaging in i…DATABREACHTODAY.CO.UK
14 OctNew FASTCash malware Linux variant helps steal money from ATMsNorth Korean hackers are using a new Linux variant of the FASTCash malware to infect the payment switch systems of financial institutions and perform unauthorized cash withdrawals. [...]BLEEPINGCOMPUTER.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
14 OctTrickMo malware steals Android PINs using fake lock screenForty new variants of the TrickMo Android banking trojan have been identified in the wild, linked to 16 droppers and 22 distinct command and control (C2) infrastructures, with new features designed to steal Android PINs. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 7[−]
14 OctPhishing Page Delivered Through a Blob URL, (Mon, Oct 14th)I receive a lot of spam in my catch-all mailboxes. If most of them are not interesting, some still attract my attention. Especially the one that I&#;x26;#;39;ll describe in this diary. The scenario is classic, an important document is pending delivery …ISC.SANS.EDU
14 OctSophos Firewall zero-touch deploymentDeploy the new 2nd Gen XGS Series desktops with zero touch.SOPHOS.COM
14 OctDocusign-themed phishing emails | Kaspersky official blogFake Docusign emails want you to enter your work account credentials to sign a documentKASPERSKY.COM
14 Oct5 Steps to Boost Detection and Response in a Multi-Layered CloudThe link between detection and response (DR) practices and cloud security has historically been weak. As global organizations increasingly adopt cloud environments, security strategies have largely focused on "shift-left" practices—securing code, ensuring proper cloud posture, an…THEHACKERNEWS.COM
14 OctIndustry Moves for the week of October 14, 2024 - SecurityWeekExplore industry moves and significant changes in the industry for the week of October 14, 2024. Stay updated with the latest industry trends and shifts.SECURITYWEEK.COM
14 OctAspiring digital defender? Explore cybersecurity internships, scholarships and apprenticeshipsThe world needs more cybersecurity professionals – here are three great ways to give you an ‘in’ to the ever-growing and rewarding security industryWELIVESECURITY.COM