83Articles
8Categories
2024-11-05Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
5 Nov KEVGoogle Warns of Actively Exploited CVE-2024-43093 Vulnerability in Android SystemGoogle has warned that a security flaw impacting its Android operating system has come under active exploitation in the wild. The vulnerability, tracked as CVE-2024-43093, has been described as a privilege escalation flaw in the Android Framework component that could result in un…THEHACKERNEWS.COM
5 NovSynology Urges Patch for Critical Zero-Click RCE Flaw Affecting Millions of NAS DevicesTaiwanese network-attached storage (NAS) appliance maker Synology has addressed a critical security flaw impacting DiskStation and BeePhotos that could lead to remote code execution. Tracked as CVE-2024-10443 and dubbed RISK:STATION by Midnight Blue, the zero-day flaw was demonst…THEHACKERNEWS.COM
5 NovAndroid flaw may be under limited, targeted exploitationsubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/170581/uncategorized/cve-2024-43093-android-flaw-actively-exploited.htmlSH.ITJUST.WORKS
5 NovFBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber IntrusionsThe U.S. Federal Bureau of Investigation (FBI) has sought assistance from the public in connection with an investigation involving the breach of edge devices and computer networks belonging to companies and government entities. "An Advanced Persistent Threat group allegedly creat…THEHACKERNEWS.COM
⚠️ VULNERABILITY DISCLOSURE 25[−]
5 NovThreat Actor IntelBroker Claims Leak of Nokia’s Source CodeThe threat actor known as IntelBroker, in collaboration with EnergyWeaponUser, has claimed responsibility for a significant data breach involving Nokia’s proprietary source code. The news, which has sent ripples through the tech industry, was shared on social media, highlighting …GBHACKERS.COM
5 NovCanadian Suspect Arrested Over Snowflake Data Breach and Extortion AttacksCanadian law enforcement authorities have arrested an individual who is suspected to have conducted a series of hacks stemming from the breach of cloud data warehousing platform Snowflake earlier this year. The individual in question, Alexander "Connor" Moucka (aka Judische and W…THEHACKERNEWS.COM
5 NovOkta’s ‘secure by design’ pledge suffers a buggy setbackWith over 200 software vendors pledged to CISA’s “secure by design” principles and a number of them having already submitted their commitment progress reports, a few unfortunate goofs show that some are more committed than others. The day before it published its progress report, …CSOONLINE.COM
5 Nov10 ways hackers will use machine learning to launch attacksMachine learning and artificial intelligence (AI) are becoming core technologies for threat detection and response tools. The ability to learn on the fly and automatically adapt to changing cyberthreats gives cybersecurity teams an advantage. According to a survey conducted by Sa…CSOONLINE.COM
5 NovGoogle Patched 40 Security Vulnerabilities Along With Two Zero-DaysGoogle has released a batch of security updates addressing 40 vulnerabilities, two of which are critical zero-day exploits. As reported in the November 2024 Android Security Bulletin, these updates are crucial for maintaining the integrity and safety of Android devices worldwide.…GBHACKERS.COM
5 Nov151: Chris RockChris Rock is known for being a security researcher. But he’s also a black hat incident responder. He tells us about a job he did in the middle east. https://x.com/chrisrockhacker Sponsors Support for this show comes from Varonis. Do you wonder what your company’s ransomware blas…DARKNETDIARIES.COM
5 NovVMware’s AI query tool could be best for junior threat team members, say analystsDon’t expect the earth to move when Broadcom’s VMware launches its new AI query tool for the vDefend platform early next year, says an industry analyst. “They seem to be making pragmatic promises,” Fernando Montenegro of Omdia said of the announcement Tuesday at VMware Explore Ba…CSOONLINE.COM
5 NovHackers Created 100+ Fake Web Stores To Steal Millions Of Dollars From CustomersThe Phish, ‘n’ Ships fraud operation leverages, compromised websites to redirect users to fake online stores, which, optimized for search engine visibility, trick victims into providing credit card details to third-party payment processors, resulting in financial loss…GBHACKERS.COM
5 NovGoogle Researchers Claim First Vulnerability Found Using AIsubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/google-first-vulnerability-found/SH.ITJUST.WORKS
5 NovCybercriminals Exploit DocuSign APIs to Send Fake Invoicessubmitted by kid to cybersecurity 1 points | 0 comments https://www.infosecurity-magazine.com/news/cybercriminals-exploit-docusign/SH.ITJUST.WORKS
5 NovClickFix Exploits GMeet & Zoom Pages to Deliver Sophisticated MalwareA new tactic, “ClickFix,” has emerged. It exploits fake Google Meet and Zoom pages to deliver sophisticated malware. The Sekoia Threat Detection & Research (TDR) team monitors this social engineering strategy closely. It represents a significant evolution in how t…GBHACKERS.COM
5 NovGoogle Patches Two Android Vulnerabilities Exploited in Targeted AttacksGoogle warns of the limited, targeted exploitation of two vulnerabilities resolved with the latest Android security update. The post Google Patches Two Android Vulnerabilities Exploited in Targeted Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
5 NovResearcher Discloses 36 Vulnerabilities Found in IBM Security Verify AccessAttackers could have exploited IBM Security Verify Access vulnerabilities to compromise the entire authentication infrastructure. The post Researcher Discloses 36 Vulnerabilities Found in IBM Security Verify Access appeared first on SecurityWeek .SECURITYWEEK.COM
5 NovAIs Discovering VulnerabilitiesI’ve been writing about the possibility of AIs automatically discovering code vulnerabilities since at least 2018. This is an ongoing area of research: AIs doing source code scanning, AIs finding zero-days in the wild, and everything in between. The AIs aren’t very go…SCHNEIER.COM
5 Nov KEVGoogle fixes two Android zero-days used in targeted attacksGoogle fixed two actively exploited Android zero-day flaws as part of its November security updates, addressing a total of 51 vulnerabilities. [...]BLEEPINGCOMPUTER.COM
5 NovBug bounties, vulnerability disclosure, PTaaS, fractional pentesting - Grant McCracken - ASW #306After spending a decade working for appsec vendors, Grant McKracken wanted to give something back. He saw a gap in the market for free or low-cost services for smaller organizations that have real appsec needs, but not a lot of means to pay for it. He founded DarkHorse, who offer…YOUTUBE.COM
5 NovIntrusion Prevention Systems: Budget Burners or Lifesavers?They say intrusion prevention systems (IPS) are supposed to stop every cyber exploit out there... but is that really the case? 🤔 In reality, most exploits aren’t even running over the wire, leaving your IPS sitting idle, burning up your budget for no reason. 💸 If you’ve ever wond…YOUTUBE.COM
5 NovInterpol disrupts cybercrime activity on 22,000 IP addresses, arrests 41Interpol announced it arrested 41 individuals and taken down 1,037 servers and infrastructure running on 22,000 IP addresses facilitating cybercrime in an international law enforcement action titled Operation Synergia II. [...]BLEEPINGCOMPUTER.COM
5 Nov[Last Chance] KB4-CON APJ Cybersecurity Event is in 10 DaysTick tock, the countdown is on! KB4-CON APJ starts in just 10 days, and you still have time to register!KNOWBE4.COM
5 NovAttackers Abuse Eventbrite to Send Phishing EmailsAttackers are abusing Eventbrite’s scheduling platform to send phishing emails, according to researchers at Perception Point. These attacks increased by 900% between July and October 2024.KNOWBE4.COM
5 NovGoogle AI Agent Finds Zero-Day in Popular Database EngineNow-Fixed Flaw Is Big Sleep's First Real-World Bug Find, Say Researchers Google's "highly experimental" artificial intelligence agent Big Sleep has autonomously discovered an exploitable memory flaw in popular open-source database engine SQLite. The researchers detail how the AI …DATABREACHTODAY.CO.UK
5 NovSource code alleged to be Nokia’s is for sale onlineSource code and other data purportedly stolen from Nokia is up for sale on BreachForum. On Monday, BreachForum user IntelBroker made a post on the underground forum, seen by CSOonline, offering to sell the information to top-level BreachForum members or high-reputation individual…CSOONLINE.COM
5 NovDennis Kirk - 1,356,026 breached accountsIn October 2024, almost 20GB of data containing 1.3M unique email addresses from motorcycle supplies store Dennis Kirk was circulated. Dating back to September 2021, the data also contained purchases from the online store along with customer names, phone numbers and postcodes. De…HAVEIBEENPWNED.COM
📢 SECURITY ADVISORIES 7[−]
5 Nov24% of CISOs actively looking to leave their jobsNearly one in four enterprise security execs from the US and the UK are “looking to leave their roles,” according to a recent report by BlackFog Research. “The combination of emerging threats, funding difficulties and personal liability is increasingly convincing security leaders…CSOONLINE.COM
5 NovHacker mit guten Absichten sollen straffrei bleibenHacker müssen drei Voraussetzungen erfüllen, damit ihr Verhalten als nicht strafbar gilt. Virojt Changyencham – Shutterstock.com Wer IT-Sicherheitslücken aufspüren und schließen will, soll dafür keine Strafe riskieren. Dies sicherzustellen ist Ziel eines Entwurfs für eine Reform …CSOONLINE.COM
5 NovCanadian Cops Bust Suspected Hacker Tied to Snowflake HitsHacking Suspect Tied to Theft of Data From AT&T, TicketMaster, Santander and Others Canadian authorities arrested a suspected extortionist tied to the hacking theft of terabytes of data from clients of cloud-based data warehousing platform Snowflake. Charges against the suspe…DATABREACHTODAY.CO.UK
5 NovPros and Cons of Anti-Scam Rules in UK, Australia, Singapore3 Countries Taking Different Approaches to Accountability and Victim Compensation Governments globally are intensifying anti-scam measures, introducing new guidelines to banks, telecom providers and other key sectors to bolster security controls and mitigate fraud risks for consu…DATABREACHTODAY.CO.UK
5 NovAtos Sells Off A Unit as Lawmakers Ponder NationalizationFrench Ministry Says Talks Are Ongoing to Acquire Cybersecurity Unit French IT consultancy Atos on Tuesday announced the sale of a power grid consulting and engineer services unit days after some French lawmakers pushed for nationalizing the beleaguered company. The French govern…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 14[−]
5 NovAltenen - 1,267,701 breached accountsIn June 2022, the malicious "carding" (referring to credit card fraud) website Altenen suffered a data breach that was later redistributed as part of a larger corpus of data . The data included 1.3M unique email addresses, usernames, bcrypt password hashes and cryptocur…HAVEIBEENPWNED.COM
5 NovSchneider Electric Launches Probe After Hackers Claim Theft of User DataHackers claim to have stolen sensitive information, including user data, after breaching Schneider Electric’s Jira system. The post Schneider Electric Launches Probe After Hackers Claim Theft of User Data appeared first on SecurityWeek .SECURITYWEEK.COM
5 NovHackers Using AV/EDR Bypass Tool From Cybercrime Forums To Bypass EndpointsResearchers uncovered two previously unknown endpoints with older Cortex XDR agents that used to test an AV/EDR bypass tool were compromised, granting unauthorized access. The threat actor utilized a bypass tool, likely purchased from cybercrime forums, to compromise the system. …GBHACKERS.COM
5 NovAPT36 Hackers Attacking Windows Deevices With ElizaRATAPT36, a sophisticated threat actor, has been actively targeting Indian entities with advanced malware like ElizaRAT, which is designed for espionage. It leverages cloud-based services for covert communication and data exfiltration. Recent campaigns have seen significant enhancem…GBHACKERS.COM
5 NovA Massive Hacking Toolkit From "You Dun" Threat Group Developed To Lauch Massive Cyber Attacksubmitted by kid to cybersecurity 1 points | 0 comments https://gbhackers.com/you-dun-hacking-toolkit-attack/SH.ITJUST.WORKS
5 NovNew Android Banking Malware 'ToxicPanda' Targets Users with Fraudulent Money TransfersOver 1,500 Android devices have been infected by a new strain of Android banking malware called ToxicPanda that allows threat actors to conduct fraudulent banking transactions. "ToxicPanda's main goal is to initiate money transfers from compromised devices via account takeover (A…THEHACKERNEWS.COM
5 NovSkills shortage directly tied to financial loss in data breachesThe cybersecurity skills gap continues to widen, with serious consequences for organizations worldwide. According to IBM’s 2024 Cost Of A Data Breach Report, more than half of breached organizations now face severe security staffing shortages, a whopping 26.2% increase…SECURITYINTELLIGENCE.COM
5 NovSchneider Electric wieder von Ransomware-Attacke getroffenHackern ist es erneut gelungen, Daten von Schneider Electric zu stehlen. Casimiro PT – Shutterstock.com Die Ransomware-Bande Hellcat behauptet, in das Jira-System von Scheider Electric eingedrungen zu sein und mehr als 40 Gigabyte Daten gestohlen zu haben. Darunter sollen sich Pr…CSOONLINE.COM
5 NovTop Three Ways Organizations Were Unprepared for Cyberattacks in 20232024 Incident Response report reveals top three ways organizations were unprepared for cyberattacks, and the need to prioritize security fundamentals. The post Top Three Ways Organizations Were Unprepared for Cyberattacks in 2023 appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
5 NovCanadian authorities say they arrested hacker linked to Snowflake data breachesAlexander Moucka was arrested in October in Canada. Moucka is suspected of being linked to the series of Snowflake data breaches this year. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
5 NovThe Right CISO, with a New Security Leadership Style, to Safeguard Your Business - BSW #371In the leadership and communications segment, How to Find the Right CISO, New Security Leadership Style Needed for Stressed Workers, Combatting Human Error: How To Safeguard Your Business Against Costly Data Breaches, and more! Visit https://www.securityweekly.com/bsw for all the…YOUTUBE.COM
5 NovGoogle Cloud to make multi-factor authentication mandatory in 2025The move to enable the MFA security feature comes hot on the heels of major data breaches at cloud giants, like Snowflake. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
5 NovBlackBasta Ransomware Gang Uses New Social Engineering Tactics To Target Corporate NetworksReliaQuest warns that the BlackBasta ransomware gang is using new social engineering tactics to obtain initial access within corporate networks.KNOWBE4.COM
🕵️ THREAT INTELLIGENCE 18[−]
5 NovHundreds of code libraries posted to NPM try to install malware on dev machinessubmitted by neme to cybersecurity 2 points | 0 comments https://arstechnica.com/security/2024/11/javascript-developers-targeted-by-hundreds-of-malicious-code-libraries/SH.ITJUST.WORKS
5 NovISC Stormcast For Tuesday, November 5th, 2024 https://isc.sans.edu/podcastdetail/9208, (Tue, Nov 5th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
5 NovPython RAT with a Nice Screensharing Feature, (Tue, Nov 5th)While hunting, I found another interesting Python RAT in the wild. This is not brand new because the script was released two years ago&#;x26;#;x5b; 1 &#;x26;#;x5d;. The script I found is based on the same tool and still has …ISC.SANS.EDU
5 NovMalware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packagessubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2024/11/malware-campaign-uses-ethereum-smart.htmlSH.ITJUST.WORKS
5 NovCrooks bank on Microsoft's search engine to phish customerssubmitted by kid to cybersecurity 4 points | 0 comments https://www.malwarebytes.com/blog/scams/2024/11/crooks-bank-on-microsofts-search-engine-to-phish-customersSH.ITJUST.WORKS
5 NovStealthy Process Injection: New Kernel Callback Table Technique Exposedsubmitted by kid to cybersecurity 2 points | 0 comments https://securityonline.info/stealthy-process-injection-new-kernel-callback-table-technique-exposed/SH.ITJUST.WORKS
5 NovWindows infected with backdoored Linux VMs in new phishing attackssubmitted by kid to cybersecurity 4 points | 0 comments https://www.bleepingcomputer.com/news/security/windows-infected-with-backdoored-linux-vms-in-new-phishing-attacks/SH.ITJUST.WORKS
5 NovCybersecurity M&A Roundup: 37 Deals Announced in October 2024Roundup of the thirty-seven cybersecurity-related merger and acquisition (M&A) deals announced in October 2024. The post Cybersecurity M&A Roundup: 37 Deals Announced in October 2024 appeared first on SecurityWeek .SECURITYWEEK.COM
5 NovDocuSign Abused to Deliver Fake InvoicesCybercriminals are abusing DocuSign APIs to send bogus email messages that bypass protections such as spam and phishing filters. The post DocuSign Abused to Deliver Fake Invoices appeared first on SecurityWeek .SECURITYWEEK.COM
5 NovSuspected Snowflake Hacker Arrested in CanadaCanadian authorities have arrested Alexander ‘Connor’ Moucka, suspected of hacking multiple Snowflake accounts earlier this year. The post Suspected Snowflake Hacker Arrested in Canada appeared first on SecurityWeek .SECURITYWEEK.COM
5 NovHave you ever had a pen tester own your network? - Julian Austin - CSP #199Guessing the answer is yes. Well, let's talk about some of the simple ways you can avoid account compromises by strengthening your identity security through MFA, least privilege, account reviews, and all the things! This segment is sponsored by CyberArk. Visit https://cisostories…YOUTUBE.COM
5 NovPlanning A Merger Or Acquisition? Ask These Five Cyber Questions First - Craig Davies - BSW #371Merger and acquisition (M&A) activity in finally starting to pick up. Although the allure of financial gains and market expansion drives these deals, the digital age demands a rigorous assessment of cybersecurity risks accompanying such mergers. Unanticipated cyber issues, li…YOUTUBE.COM
5 NovTotal Recall? LLM finds bug in SQLite, C++ safety failures, zero time for zero privs - ASW #306Microsoft delays Recall AGAIN, Project Zero uses an LLM to find a bugger underflow in SQLite, the scourge of infostealer malware, zero standing privileges is easy if you have unlimited time (but no one does), reverse engineering Nintendo's Alarmo and RedBox's... boxes. Bonus: the…YOUTUBE.COM
5 NovCould New Cyber Regs Be in the Future for Clinicians?Medicare 2025 Pay Rule for Physicians Hints of Possible New Cyber Expectations Federal regulators are again signaling that stronger cybersecurity practices could be tied to financial incentives for doctor offices that participate in Medicare. The regulatory lever may be the Cente…DATABREACHTODAY.CO.UK
5 NovNew Bolster CEO Discusses AI-Driven Fraud and Data SecurityCEO Rod Schultz Aims to Bridge External, Internal Data Challenges, Eyes CISO Bonds New Bolster CEO Rod Schultz shares his priorities in combating AI-based fraud, underscoring the potential of internal data security solutions. Schultz sees Bolster’s established brand protection to…DATABREACHTODAY.CO.UK
5 NovRussian Fake News and Bomb Threats Target Election Day VotesRussian Threats Aim to Disrupt Nationwide Voting as Americans Flock to the Polls U.S. intelligence agencies warned that Russian interference efforts are escalating on Election Day as millions of Americans cast their ballots nationwide. The Cybersecurity and Infrastructure Securit…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 3[−]
5 NovMalware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat PackagesAn ongoing campaign is targeting npm developers with hundreds of typosquat versions of their legitimate counterparts in an attempt to trick them into running cross-platform malware. The attack is notable for utilizing Ethereum smart contracts for command-and-control (C2) server a…THEHACKERNEWS.COM
5 NovSecurity and privacy settings in ASICS Runkeeper | Kaspersky official blogHow to configure privacy in the ASICS Runkeeper app to prevent your personal data from accidentally leaking.KASPERSKY.COM
🎙️ PODCASTS 2[−]
5 NovThe AI Fix #23: Murder most weird, and why 9.11 is bigger than 9.9In episode 23 of The AI Fix, an AI finds a new way to make life difficult for women in STEM, Graham reveals his brilliant idea for treating any medical emergency, a beloved chat show host returns from the grave, and our hosts learn that computer viruses were almost called compute…GRAHAMCLULEY.COM
5 NovWhat the Chainsmokers bring to the cap table for cybersecurity startup ChainguardFor this week’s episode of Found we’re taking you backstage at TechCrunch Disrupt 2024. Becca Szkutak had the chance to talk with Dan Lorenc, the CEO and co-founder of cybersecurity startup Chainguard, following their conversation on stage with prominent investors, The Chai…TECHCRUNCH.COM
📡 INFOSEC NEWS 10[−]
5 NovLeveraging Wazuh for Zero Trust securityZero Trust security changes how organizations handle security by doing away with implicit trust while continuously analyzing and validating access requests. Contrary to perimeter-based security, users within an environment are not automatically trusted upon gaining access. Zero T…THEHACKERNEWS.COM
5 NovDocuSign Abused To Deliver Fake InvoicesPACKETSTORMSECURITY.COM
5 NovSuspect behind Snowflake data-theft attacks arrested in CanadaCanadian authorities have arrested a man suspected of having stolen the data of hundreds of millions after targeting over 165 organizations, all of them customers of cloud storage company Snowflake. [...]BLEEPINGCOMPUTER.COM
5 NovUS warns of last-minute Iranian and Russian election influence opsThe U.S. Cybersecurity & Infrastructure Security Agency is warning about last-minute influence operations conducted by Iranian and Russian actors to undermine the public trust in the integrity and fairness of the upcoming presidential election. [...]BLEEPINGCOMPUTER.COM
5 NovCanadian Man Arrested in Snowflake Data ExtortionsA 26-year-old man in Ontario, Canada has been arrested for allegedly stealing data from and extorting more than 160 companies that used the cloud data service Snowflake. On October 30, Canadian authorities arrested Alexander Moucka, a.k.a. Connor Riley Moucka of Kitchener, Ontari…KREBSONSECURITY.COM
5 NovGoogle Cloud to make MFA mandatory by the end of 2025Google has announced that multi-factor authentication (MFA) will be mandatory on all Cloud accounts by the end of 2025 to enhance security. [...]BLEEPINGCOMPUTER.COM
5 NovMozilla Foundation lays off 30% staff, drops advocacy divisionThis is the second layoff at Mozilla this year, the first affecting dozens of staff on the side of the organization that builds the popular Firefox browser. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
5 Nov9 benefits of AI-driven SIEM for boosting security9 benefits of AI-driven SIEM for boosting securityDATABREACHTODAY.CO.UK