86Articles
9Categories
2024-10-29Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
29 OctChatGPT-4o Guardrail Jailbreak: Hex Encoding for Writing CVE Exploitssubmitted by kid to cybersecurity 3 points | 0 comments https://0din.ai/blog/chatgpt-4o-guardrail-jailbreak-hex-encoding-for-writing-cve-exploitsSH.ITJUST.WORKS
29 OctHackers Use Fog Ransomware To Attack SonicWall VPNs And Breach Corporate NetworksRecent cyberattacks involving Akira and Fog threat actors have targeted various industries, exploiting a vulnerability (CVE-2024-40766) in SonicWall SSL VPN devices, where these attacks, initiated early in the kill chain, leverage malicious VPN logins from VPS-hosted IP addresses…GBHACKERS.COM
⚠️ VULNERABILITY DISCLOSURE 26[−]
29 OctNew Research Reveals Spectre Vulnerability Persists in Latest AMD and Intel ProcessorsMore than six years after the Spectre security flaw impacting modern CPU processors came to light, new research has found that the latest AMD and Intel processors are still susceptible to speculative execution attacks. The attack, disclosed by ETH Zürich researchers Johannes Wikn…THEHACKERNEWS.COM
29 OctSecurity outsourcing on the rise as CISOs seek cyber reliefSecurity software and services spending is growing faster than staffing budgets, recasting security leaders in the role of quantity surveyors rather than builders of enterprise security . Gartner predicts that security services spending will increase 15.8% to reach $86.1 billion …CSOONLINE.COM
29 OctNew ChatGPT-4o Jailbreak Technique Enabling to Write Exploit CodesResearcher Marco Figueroa has uncovered a method to bypass the built-in safeguards of ChatGPT-4o and similar AI models, enabling them to generate exploit code. This discovery highlights a significant vulnerability in AI security measures, prompting urgent discussions about the fu…GBHACKERS.COM
29 OctClickFix Malware Infect Website Visitors Via Hacked WordPress WebsitesResearchers have identified a new variant of the ClickFix fake browser update malware distributed through malicious WordPress plugins. These plugins, disguised as legitimate tools, inject malicious JavaScript code into compromised websites, tricking users into installing malware.…GBHACKERS.COM
29 OctFirst ChatGPT Jailbreak Disclosed via Mozilla’s New AI Bug Bounty ProgramThe details of a new ChatGPT jailbreak have been disclosed through Mozilla’s 0Din gen-AI bug bounty program. The post First ChatGPT Jailbreak Disclosed via Mozilla’s New AI Bug Bounty Program appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctSMB Force-Authentication Vulnerability Impacts All OPA Versions For WindowsOpen Policy Agent (OPA) recently patched a critical vulnerability that could have exposed NTLM credentials of the OPA server’s local user account to remote attackers, which was present in both the OPA CLI and Go SDK.  By exploiting this flaw, attackers could have compr…GBHACKERS.COM
29 OctHardcoded Creds in Popular Apps Put Millions of Android and iOS Users at RiskRecent analysis has revealed a concerning trend in mobile app security: Many popular apps store hardcoded and unencrypted cloud service credentials directly within their codebases.  It poses a significant security risk as anyone accessing the app’s binary or source cod…GBHACKERS.COM
29 Oct5 cybersecurity issues at stake in next week’s US electionAs the US heads into a historic election, with a deadlocked electorate facing a choice between two radically different presidential candidates, several cybersecurity matters could be determined by who wins the contest on Nov. 5. Democratic Vice President Kamala Harris and Republi…CSOONLINE.COM
29 OctLaw Enforcement Deanonymizes Tor UsersThe German police have successfully deanonymized at least four Tor users. It appears they watch known Tor relays and known suspects, and use timing analysis to figure out who is using what relay. Tor has written about this. Hacker News thread .SCHNEIER.COM
29 OctDutch Police Disrupt Major Info Stealers RedLine and MetaStealer in Operation MagnusThe Dutch National Police, along with international partners, have announced the disruption of the infrastructure powering two information stealers tracked as RedLine and MetaStealer. The takedown, which took place on October 28, 2024, is the result of an international law enforc…THEHACKERNEWS.COM
29 OctNew Windows Downgrade Attack Let Hackers Downgrade Patched Systems To ExploitsThe researcher discovered a vulnerability in the Windows Update process that allowed them to downgrade critical system components, including DLLs, drivers, and the NT kernel. This enabled the attacker to bypass security measures like Secure Boot and expose previously patched vuln…GBHACKERS.COM
29 OctResearchers Uncover Vulnerabilities in Open-Source AI and ML ModelsA little over three dozen security vulnerabilities have been disclosed in various open-source artificial intelligence (AI) and machine learning (ML) models, some of which could lead to remote code execution and information theft. The flaws, identified in tools like ChuanhuChatGPT…THEHACKERNEWS.COM
29 OctRedLine and Meta Infostealers Disrupted by Law EnforcementAuthorities announce server shutdowns, domain seizures, and arrests in RedLine and Meta infostealers takedown operation. The post RedLine and Meta Infostealers Disrupted by Law Enforcement appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctProtecting Identity of AI Agents & Standardizing Identity Security for SaaS Apps - Shi... - ASW #305Generative AI has been the talk of the technology industry for the past 18+ months. Companies are seeing its value, so generative AI budgets are growing. With more and more AI agents expected in the coming years, it’s essential that we are securing how consumers interact with gen…YOUTUBE.COM
29 OctHow important is your relationship with your tool vendors? - Jacob Lorz - CSP #198Let's talk about how important having a customer success manager, or equivalent, to assist you with your tool integration can make the difference between resource fatigue and success. On top of having solid relationships with our tool vendors, long time CISO Jake Lorz, shares wit…YOUTUBE.COM
29 OctCrooks are Sending Halloween-Themed Phishing EmailsHalloween-themed spam and phishing emails have surged over the past two months, with a significant increase beginning in October, according to researchers at Bitdefender.KNOWBE4.COM
29 OctCISA Releases Three Industrial Control Systems AdvisoriesCISA released three Industrial Control Systems (ICS) advisories on October 29, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-303-01 Siemens InterMesh Subscriber Devices ICSA-24-303-02 Solar-…CISA.GOV
29 OctApple Releases Security Updates for Multiple ProductsApple released security updates to address vulnerabilities in multiple Apple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system.   CISA encourages users and administrators to review the following advisories and ap…CISA.GOV
29 OctQNAP fixes NAS backup software zero-day exploited at Pwn2OwnQNAP has fixed a critical zero-day vulnerability exploited by security researchers on Thursday to hack a TS-464 NAS device during the Pwn2Own Ireland 2024 competition. [...]BLEEPINGCOMPUTER.COM
29 OctMassive PSAUX ransomware attack targets 22,000 CyberPanel instancesOver 22,000 CyberPanel instances exposed online to a critical remote code execution (RCE) vulnerability were mass-targeted in a PSAUX ransomware attack that took almost all instances offline. [...]BLEEPINGCOMPUTER.COM
29 OctJCDC’s Industry-Government Collaboration Speeds Mitigation of CrowdStrike IT OutageCISA, through the Joint Cyber Defense Collaborative (JCDC), enabled swift, coordinated response and information sharing in the wake of a significant IT outage caused by a CrowdStrike software update. This outage, which impacted government, critical infrastructure, and industry ac…CISA.GOV
29 OctNew Windows Themes zero-day gets free, unofficial patchesFree unofficial patches are now available for a new Windows Themes zero-day vulnerability that allows attackers to steal a target's NTLM credentials remotely. [...]BLEEPINGCOMPUTER.COM
29 OctLawsuits Accuse LinkedIn of Tracking Users' Health InfoClass Action Suits Target Tools Used to Track Medical Appointments on Websites LinkedIn is facing several proposed class action lawsuits filed in recent weeks in California alleging that the company is "intercepting" users' sensitive information related to appointments booked on …DATABREACHTODAY.CO.UK
29 Oct2024 Startup Battlefield Top 20 Finalists: ForceFieldMARQ protects company, community & country data with tamper-proof badges. Patent-pending APIs defend against deepfake scams, fraud & breaches. Subscribe for more on YouTube: https://tcrn.ch/youtube Follow TechCrunch on Instagram: http://tcrn.ch/instagram TikTok: https://t…TECHCRUNCH.COM
29 OctMultiple Vulnerabilities in Siemens InterMesh Subscriber Devices Could Allow for Remote Code ExecutionMultiple vulnerabilities have been discovered in Siemens InterMesh Subscriber Devices, the most severe of which could allow for remote code execution. InterMesh leverages mesh radio technology and hardened alarm monitoring panels to create a private, self-healing network that del…CISECURITY.ORG
29 OctDon't become a statistic: Tips to help keep your personal data off the dark webYou may not always stop your personal information from ending up in the internet’s dark recesses, but you can take steps to protect yourself from criminals looking to exploit itWELIVESECURITY.COM
📋 SECURITY BULLETINS 1[−]
29 OctApple Patches Over 70 Vulnerabilities Across iOS, macOS, Other ProductsApple has released security updates for iOS 18 and macOS Sequoia 15 to address dozens of vulnerabilities. The post Apple Patches Over 70 Vulnerabilities Across iOS, macOS, Other Products appeared first on SecurityWeek .SECURITYWEEK.COM
📢 SECURITY ADVISORIES 8[−]
29 OctGuest Essay: API security-related exposures rose steeply across all industries in Q3 2024Application Programming Interfaces (APIs) have become the backbone of modern enterprises, facilitating seamless communication between both internal systems and external partners. Related: Biden-Harris administration opens Supply Chain Resilience Center As organizations increasing…LASTWATCHDOG.COM
29 OctAtende refused to pay the ransom, and now pays the price“The fight against cybercrime will be successful if criminals become convinced that the only consequence of their actions can be punishment and not profiting from crime,” reads the notice on the website of Polish IT services provider Atende. “We did not succumb to the blackmail o…CSOONLINE.COM
29 OctRussian charged by U.S. for creating RedLine infostealer malwareThe United States announced charges today against Maxim Rudometov, a Russian national, for being the suspected developer and administrator of the RedLine malware operation, one of the most prolific infostealers over the past few years. [...]BLEEPINGCOMPUTER.COM
29 OctSecuriti to help businesses build secure, compliant Gen AI with a new toolCybersecurity solutions provider Securiti has rolled out a new tool, Gencore AI, to help enterprises build generative AI systems, co-pilots, and AI agents. The solution, according to Securiti, borrows its homegrown data security and compliance capabilities to deliver a generative…CSOONLINE.COM
29 OctRussian Indicted by US for Developing Redline InfostealerUnsealed Complaint Charges Maxim Rudometov With Developing and Selling Malware An international crackdown against two prominent strains of information-stealing malware continues, as the U.S. government unsealed an indictment charging Russian national Maxim Rudometov with being a …DATABREACHTODAY.CO.UK
29 OctPrivate Firm Accessed Italian Govt Database: ProsecutorsForeign Minister Tajani Condemns Conspiracy as 'Threat to Democracy' The foreign minister of Italy condemned Monday as a threat to democracy the private investigation firm that prosecutors in Milan say illegally accessed government databases for years to assemble illicit dossiers…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 9[−]
29 OctFree, France’s second largest ISP, confirms data breach after leaksubmitted by kid to cybersecurity 3 points | 0 comments https://www.bleepingcomputer.com/news/security/free-frances-second-largest-isp-confirms-data-breach-after-leak/SH.ITJUST.WORKS
29 OctWhy safeguarding sensitive data is so crucialA data breach at virtual medical provider Confidant Health lays bare the vast difference between personally identifiable information (PII) on the one hand and sensitive data on the other. The story began when security researcher Jeremiah Fowler discovered an unsecured database co…SECURITYINTELLIGENCE.COM
29 OctMoneyGram replaces CEO weeks after massive customer data breachThe CEO's removal comes soon after the company confirmed it had lost an unspecified amount of personal customer information in an earlier September cyberattack. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
29 Oct75% of Organizations Have Experienced a Deepfake-Related AttackAs generative AI evolves and becomes a mainstream part of cyber attacks, new data reveals that deepfakes are leading the way.KNOWBE4.COM
29 OctPlayBoy-Bande brüstet sich mit DIHK-DatenDie Ransomware-Gruppe PlayBoy ist bisher noch relativ unbekannt in der Security-Szene. Hat die Bande tatsächlich Daten bei der DIHK gestohlen? DC Studio – Shutterstock.com Die Ransomware-Szene hat offenbar Zuwachs bekommen. Eine bisher unbekannte Gruppe namens PlayBoy hat kürzlic…CSOONLINE.COM
29 OctBlack Basta attacks via MS Teams chatsThe notorious Black Basta ransomware group is targeting organizations around the world. The gang was previously known for first bombarding its victims with spam emails. The hackers then pretended to be IT support to gain access to systems. This method has now apparently been furt…CSOONLINE.COM
29 OctYou’re going to get hacked. But here’s how to avoid a cybersecurity disasterCyberattacks are inevitable, but disasters are avoidable.Listen as experienced security defenders Heather Gantt-Evans, CISO of Marqeta, and Darren Gruber, MongoDB’s Technical Advisor in the Office of Security and Trust, discuss what you need to know to get ahead of cyberatt…TECHCRUNCH.COM
29 OctGenerative AI in Cybersecurity: A Mixed BagForrester Analyst Allie Mellen on Misaligned Expectations and Future Trends Generative AI has shown some value in cybersecurity, but it hasn’t met early hopes for handling complex incident responses or providing precise recommendations. Analyst Allie Mellen discusses where AI fel…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 26[−]
29 OctArmis Raises $200M at $4.2B Valuation, Eyes IPOArmis raised an additional $200 million in funding at valuation of $4.2 billion as the company aims for an IPO. The post Armis Raises $200M at $4.2B Valuation, Eyes IPO appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctISC Stormcast For Tuesday, October 29th, 2024 https://isc.sans.edu/podcastdetail/9200, (Tue, Oct 29th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
29 OctAnti-Mitarbeiterbindung: Was toxische CISOs anrichtenToxische Führung kennt viele Ausformungen und kann drastische Konsequenzen nach sich ziehen – speziell im IT-Security-Umfeld. Foto: CNGPICTURES | shutterstock.com Für Keith, einen erfahrenen Cybersecurity-Profi aus New York City in seinen 40ern, gab es mehr als einen Grund, seine…CSOONLINE.COM
29 OctNintendo Warns of Phishing Attack Mimics Company Email AddressNintendo has cautioned its users about a sophisticated phishing attack that involves emails mimicking official Nintendo communication. These emails, appearing to come from addresses, are being sent by third parties and are not legitimate communications from the company. Details o…GBHACKERS.COM
29 OctChinese Hackers Use CloudScout Toolset to Steal Session Cookies from Cloud Servicessubmitted by AmbiguousProps to cybersecurity 1 points | 0 comments https://thehackernews.com/2024/10/chinese-hackers-use-cloudscout-toolset.htmlSH.ITJUST.WORKS
29 OctU.S. Government Issues New TLP Guidance for Cross-Sector Threat Intelligence SharingThe U.S. government (USG) has issued new guidance governing the use of the Traffic Light Protocol (TLP) to handle the threat intelligence information shared between the private sector, individual researchers, and Federal Departments and Agencies. "The USG follows TLP markings on …THEHACKERNEWS.COM
29 OctLatrodectus Employs New anti-Debugging And Sandbox Evasion TechniquesLatrodectus, a new malware loader, has rapidly evolved since its discovery, potentially replacing IcedID. It includes a command to download IcedID and has undergone multiple iterations, likely to evade detection. Extracting configurations from these versions is crucial for effect…GBHACKERS.COM
29 OctCan MDM software be used to spy on employee ?submitted by BlueMagma to cybersecurity 1 points | 0 comments My employer had us install a software called “fleet osquery”, they said it’s a first step toward inventory management of all the devices for IT. I guess it also adds a layer of safety by making sure nobody installs any…SH.ITJUST.WORKS
29 OctCanada Says Chinese Reconnaissance Scans Targeting Government OrganizationsCanada says multiple government and critical infrastructure organizations have been targeted in Chinese reconnaissance scans. The post Canada Says Chinese Reconnaissance Scans Targeting Government Organizations appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctHow to Improve the Security of AI-Assisted Software DevelopmentCISOs need an AI visibility and KPI plan that supports a “just right” balance to enable optimal security and productivity outcomes. The post How to Improve the Security of AI-Assisted Software Development appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctChinese Hackers Scanning Canadian IT Systems for VulnerabilitiesThe Canadian Centre for Cyber Security (Cyber Centre), a Communications Security Establishment Canada (CSE) division, has warned Canadian organizations about an ongoing cyber threat. The Cyber Centre reports that a sophisticated state-sponsored threat actor from the People’s Repu…GBHACKERS.COM
29 OctRedLine and META Infostealers Infrastructure Seized by AuthoritiesAn international coalition led by the U.S. Department of Justice has dismantled the infrastructure behind the notorious RedLine and META infostealers. These malware variants have plagued millions of computers worldwide, stealing sensitive information and facilitating further cybe…GBHACKERS.COM
29 OctWindows 'Downdate' Attack Makes Patched PCs Vulnerablesubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/application-security/windows-downdate-attack-patched-pcs-vulnerable-stateSH.ITJUST.WORKS
29 OctNew tool bypasses Google Chrome’s new cookie encryption systemsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/new-tool-bypasses-google-chromes-new-cookie-encryption-system/SH.ITJUST.WORKS
29 OctCanadian Organizations Targeted by Chinese State-Sponsored Scanningsubmitted by kid to cybersecurity 2 points | 0 comments https://securityonline.info/canadian-organizations-targeted-by-chinese-state-sponsored-scanning/SH.ITJUST.WORKS
29 OctMacron's bodyguards show his location by sharing Strava datasubmitted by kid to cybersecurity 4 points | 1 comments https://www.theregister.com/2024/10/29/macron_location_strava/SH.ITJUST.WORKS
29 OctZenity Raises $38 Million to Secure Agentic AIAgentic AI security startup Zenity has raised $38 million in a Series B funding round led by Third Point Ventures and DTCP. The post Zenity Raises $38 Million to Secure Agentic AI appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctFitness App Strava Gives Away Location of Biden, Trump and other Leaders, French Newspaper SaysLe Monde found that some U.S. Secret Service agents use the Strava fitness app, including in recent weeks after two assassination attempts on Trump. The post Fitness App Strava Gives Away Location of Biden, Trump and other Leaders, French Newspaper Says appeared first on Security…SECURITYWEEK.COM
29 OctNotorious WrnRAT Delivered Mimic As Gambling GamesWrnRAT is a new malware attack that cybercriminals have deployed by using popular gambling games like Badugi, Go-Stop, and Hold’em to disguise itself as a malicious program. The attackers created a fraudulent gambling website that, when accessed, prompts users to download a…GBHACKERS.COM
29 OctMaking TLS More Secure, Lessons from IPv6, LLMs Finding Vulns - ASW #305Better TLS implementations with Rust, fuzzing, and managing certs, appsec lessons from the everlasting transition to IPv6, LLMs for finding vulns (and whether fuzzing is better), and more! Also check out this presentation from BSides Knoxville that we talked about briefly, https:…YOUTUBE.COM
29 OctProofpoint to Acquire Data Security Posture Management Firm NormalyzeEnterprise cybersecurity giant Proofpoint is acquiring data security posture management (DSPM) company Normalyze. The post Proofpoint to Acquire Data Security Posture Management Firm Normalyze appeared first on SecurityWeek .SECURITYWEEK.COM
29 OctAI Boom Set to Dump a Mountain of E-WasteE-waste From Gen AI Hardware May Equal 2.5M Tons Per Year by 2030 The technology powering chatbots could increase electronic trash by a thousand times by the end of the decade, warn researchers. The researchers from the Cambridge University and the Chinese Academy of Sciences sug…DATABREACHTODAY.CO.UK
29 OctProofpoint Expands Data Security With Normalyze AcquisitionNormalyze’s AI-Powered DSPM Technology Boosts Proofpoint’s Data Visibility, Control Proofpoint will acquire DSPM startup Normalyze to strengthen its data security offerings across cloud, SaaS and hybrid environments. The company aims to give security teams enhanced visibility, co…DATABREACHTODAY.CO.UK
29 OctElection Threats Escalating as US Voters Flock to the PollsForeign Influence Campaigns Intensify as Experts Tout Election Security Upgrades More than 50 million votes have already been cast in the 2024 United States presidential elections, but new reports indicate the cyber and physical threats continue to escalate - with potential impli…DATABREACHTODAY.CO.UK
29 OctUK Depends on Foreign Investment for AI, Hindering ScaleScaling Business Often a Challenge in the Country, Experts Told Lawmakers Dependence on foreign capital in the United Kingdom for investments into artificial intelligence will stymie British technological progress, a parliamentary committee heard Tuesday. An absence of capital ma…DATABREACHTODAY.CO.UK
29 OctMidnight Blizzard conducts large-scale spear-phishing campaign using RDP filesSince October 22, 2024, Microsoft Threat Intelligence has observed Russian threat actor Midnight Blizzard sending a series of highly targeted spear-phishing emails to individuals in government, academia, defense, non-governmental organizations, and other sectors. This activity is…MICROSOFT.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
29 OctHow a series of opsec failures led US authorities to the alleged developer of the Redline password-stealing malwareProsecutors allege that Redline infected millions of computers around the world since 2020, including several hundred machines at the U.S. Dept. of Defense. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
🎙️ PODCASTS 1[−]
29 OctThe AI Fix #22: Probing AI tongues and ASCII smuggling attacksIn episode 22 of "The AI Fix", our hosts encounter a bowl of buttermilk king crab ice cream prepared by a baby hippo, a TV station finds an even better way to generate programme ideas than using a tank full of manatees, and Elon Musk does the world's most expensive Blade Runner c…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 11[−]
29 OctA Sherlock Holmes Approach to Cybersecurity: Eliminate the Impossible with Exposure ValidationSherlock Holmes is famous for his incredible ability to sort through mounds of information; he removes the irrelevant and exposes the hidden truth. His philosophy is plain yet brilliant: “When you have eliminated the impossible, whatever remains, however improbable, must be the t…THEHACKERNEWS.COM
29 OctCyber Security ReadinessCYBER.GC.CA
29 OctThe Failure That Started The InternetPACKETSTORMSECURITY.COM
29 OctWhy Humans Take Risks When They Feel Safe 😱Ever wondered why people seem to take bigger risks when they feel safe? It’s called the Peltzmann Effect! Dr. Dustin Sachs explains how our brains are wired to take on more danger when we believe there's a safety net, like a harness or a helmet. But here’s the twist: that same mi…YOUTUBE.COM
29 OctWhy Exposed Assets Are a Hacker’s Dream! 🌐🚫Ever wonder what makes some online assets a hacker’s first target? It’s not just about how “important” they are—it’s about whether they’re exposed to the internet with vulnerabilities like an outdated SSH version. When something as critical as security is on the line, every exter…YOUTUBE.COM