73Articles
8Categories
2024-11-07Date
🚨 CISA KEV 1[−]
7 Nov KEVCISA Adds Four Known Exploited Vulnerabilities to CatalogCISA has added four new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-43093  Android Framework Privilege Escalation Vulnerability CVE-2024-51567 CyberPanel Incorrect Default Permissions Vulnerability…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 7[−]
7 NovCisco Flaw Let Attackers Run Command as Root UserA critical vulnerability has been discovered in Cisco Unified Industrial Wireless Software, which affects Cisco Ultra-Reliable Wireless Backhaul (URWB) Access Points. This flaw tracked as CVE-2024-20418 enables unauthenticated, remote attackers to perform command injection attack…GBHACKERS.COM
7 NovCisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless SystemsCisco has released security updates to address a maximum severity security flaw impacting Ultra-Reliable Wireless Backhaul (URWB) Access Points that could permit unauthenticated, remote attackers to run commands with elevated privileges. Tracked as CVE-2024-20418 (CVS score: 10.0…THEHACKERNEWS.COM
7 NovInfostealers are using BYOVD to steal critical system dataThreat actors are dropping a new info-stealer on Windows systems that uses the bring your own vulnerable driver ( BYOVD ) technique to extract victims’ browser data, software details, and credit card data, along with other system details. The global cybersecurity company Kaspersk…CSOONLINE.COM
7 NovCisco Desk Phone Series Vulnerability Lets Remote Attacker Access Sensitive InformationA significant vulnerability (CVE-2024-20445) has been discovered in Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 that could allow remote, unauthenticated attackers to access sensitive information. This vulnerability, classified under CWE-200 (…GBHACKERS.COM
7 NovChromium: CVE-2024-10827 Use after free in SerialThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
7 NovChromium: CVE-2024-10826 Use after free in Family ExperiencesThis CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see [Google Chrome Releases](https://chromereleases.googleblog.com/2024) for more information.MSRC.MICROSOFT.COM
7 NovCisco IoT wireless access points hit by severe command injection flawCisco’s Ultra-Reliable Wireless Backhaul (URWB) hardware has been hit with a hard-to-ignore flaw that could allow attackers to hijack the access points’ web interface using a crafted HTTP request. Identified as CVE-2024-20418 , Cisco said the issue affects three products : the Ca…NETWORKWORLD.COM
⚠️ VULNERABILITY DISCLOSURE 21[−]
7 NovFive-country attack on cybercrooks welcomed by security expertThe revelation this week that an international operation took down thousands of malicious IP addresses is good news, says a cybersecurity expert, but the better news is the arrest of 41 suspects. “Technology disruptions matter, because the alternative to not disrupting their envi…CSOONLINE.COM
7 NovTop 5 security mistakes software developers makeCreating and enforcing the best security practices for application development teams isn’t easy. Software developers don’t necessarily write their code with these in mind, and as the appdev landscape becomes more complex, securing apps becomes more of a challenge to handle cloud …CSOONLINE.COM
7 NovSteelFox and Rhadamanthys Malware Use Copyright Scams, Driver Exploits to Target VictimsAn ongoing phishing campaign is employing copyright infringement-related themes to trick victims into downloading a newer version of the Rhadamanthys information stealer since July 2024. Cybersecurity firm Check Point is tracking the large-scale campaign under the name CopyRh(igh…THEHACKERNEWS.COM
7 NovSubverting LLM CodersReally interesting research: “ An LLM-Assisted Easy-to-Trigger Backdoor Attack on Code Completion Models: Injecting Disguised Vulnerabilities against Strong Detection “: Abstract : Large Language Models (LLMs) have transformed code com- pletion tasks, providing contex…SCHNEIER.COM
7 NovCisco Patches Critical Vulnerability in Industrial Networking SolutionA critical vulnerability in Cisco Unified Industrial Wireless software could allow remote, unauthenticated attackers to inject commands with root privileges. The post Cisco Patches Critical Vulnerability in Industrial Networking Solution appeared first on SecurityWeek .SECURITYWEEK.COM
7 NovHPE warns of critical RCE flaws in Aruba Networking access pointsHewlett Packard Enterprise (HPE) released updates for Instant AOS-8 and AOS-10 software to address two critical vulnerabilities in Aruba Networking Access Points. [...]BLEEPINGCOMPUTER.COM
7 NovPrompt Injection Defenses Against LLM CyberattacksInteresting research: “ Hacking Back the AI-Hacker: Prompt Injection as a Defense Against LLM-driven Cyberattacks “: Large language models (LLMs) are increasingly being harnessed to automate cyberattacks, making sophisticated exploits more accessible and scalable. In …SCHNEIER.COM
7 NovWe're Not Saying "I told you so" - PSW #850In the news: Pacific Rim, Linux on Windows for attackers, one of the worst cases of a former employee's retaliation, Zery-Day FOMO, we predicted that, hacking for fun, working hard for no PoC, an LLM that discovers software vulnerabilities, absurd fines, long usernames and Okta, …YOUTUBE.COM
7 NovCryptohack Roundup: M2, Metawin ExploitsAlso: LottieFiles Attack, Craig Wright's Contempt of Court This week, Metawin hacks, LottieFiles attack, hackers used Ethereum smart contracts to target npm developers, Craig Wright faced contempt of court, Alameda sued KuCoin, Binance sought dismissal of a U.S. Securities and Ex…DATABREACHTODAY.CO.UK
7 NovCISA Releases Three Industrial Control Systems AdvisoriesCISA released three Industrial Control Systems (ICS) advisories on November 7, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-312-01 Beckhoff Automation TwinCAT Package Manager ICSA-24-312-02…CISA.GOV
7 NovHacker says they banned ‘thousands’ of Call of Duty gamers by abusing anti-cheat flawThe hacker, who goes by Vizor, tells TechCrunch that they exploited a bug in the popular game's anti-cheat software for months. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
7 NovGerman Law Could Protect Researchers Reporting Vulnssubmitted by BrikoX to cybersecurity 2 points | 0 comments https://www.darkreading.com/cybersecurity-operations/germany-law-protect-researchers-reporting-vulns The draft amendment also includes prison time for those who access systems to maliciously spy or intercept data.SH.ITJUST.WORKS
7 NovNokia says hackers leaked third-party app source codeNokia's investigation of recent claims of a data breach found that the source code leaked on a hacker forum belongs to a third party and company and customer data has not been impacted. [...]BLEEPINGCOMPUTER.COM
7 NovHackers increasingly use Winos4.0 post-exploitation kit in attackssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/hackers-increasingly-use-winos40-post-exploitation-kit-in-attacks/SH.ITJUST.WORKS
7 NovCISA warns of critical Palo Alto Networks bug exploited in attacksToday, CISA warned that attackers are exploiting a critical missing authentication vulnerability in Palo Alto Networks Expedition, a migration tool that can help convert firewall configuration from Checkpoint, Cisco, and other vendors to PAN-OS. [...]BLEEPINGCOMPUTER.COM
7 NovPhishing Campaign Impersonates OpenAI To Collect Financial DataCybercriminals are impersonating OpenAI in a widespread phishing campaign designed to trick users into handing over financial information. The emails inform users that a payment for their ChatGPT subscription was declined, inviting them to click a link in order to update their pa…KNOWBE4.COM
7 NovCombating Cybercrime: What to Expect From Trump Presidency?Close International Law Enforcement Collaboration Will Continue, Experts Forecast One post-election question pertaining to Donald Trump's upcoming presidency is how his administration will choose to combat cybercrime, and to what extent the White House will continue to take a lea…DATABREACHTODAY.CO.UK
7 NovWhy AI is the final missing piece of the CNAPP puzzleCloud security teams are facing a growing number of risks due to the complex and dynamic nature of cloud environments. Prioritizing and remediating these vulnerabilities and misconfigurations before threat actors can exploit them is a significant challenge given the sheer number …CSOONLINE.COM
7 NovBreach Roundup: Chinese Cyberespionage Using Open Source VPNAlso: Ransomware Hackers Demand Baguettes This week, Chinese spying, Italian hacking scandal, an FBI warning and Okta fixed a bug. Google mandated MFA, zero days in PTZOptics and a Mexican airport didn't pay ransom. Cybercriminals demanded baguettes, breach lettersin Ohio and Ger…DATABREACHTODAY.CO.UK
7 NovA Vulnerability in Android OS Could Allow for Remote Code ExecutionA vulnerability has been discovered in Android OS that could allow for remote code execution. Android is an operating system developed by Google for mobile devices, including, but not limited to, smartphones, tablets, and watches. Successful exploitation of this vulnerability cou…CISECURITY.ORG
7 NovHacker Claims to Leak Nokia Source CodeNoka 'Is Aware of Reports' Finnish telecommunications equipment manufacturer Nokia is investigating the alleged posting of source code data on a criminal hacking forum. A hacker going by the handle of "IntelBroker" on Thursday posted what he said is a trove of "Nokia related sour…DATABREACHTODAY.CO.UK
📢 SECURITY ADVISORIES 3[−]
7 NovCanada orders shutdown of TikTok offices over security risks (but won’t block app)With all eyes on how a new Trump administration in the U.S. will interface with China Tech in the years ahead, its neighbor to the north has levelled a blow to one of the biggest apps to come out of the country. Canada has ordered the closure of ByteDance’s operations in Ca…TECHCRUNCH.COM
🔥 INCIDENT REPORTING 8[−]
7 NovEarth 2 - 420,961 breached accountsIn October 2024, 421k unique email addresses from the virtual earth game Earth 2 were derived from embedded Gravatar images. Appearing alongside player usernames, the root cause was related to how Gravatar presents links to avatars as MD5 hashes within consuming services, a featu…HAVEIBEENPWNED.COM
7 NovMalicious PyPI Package ‘Fabrice’ Found Stealing AWS Keys from Thousands of DevelopersCybersecurity researchers have discovered a malicious package on the Python Package Index (PyPI) that has racked up thousands of downloads for over three years while stealthily exfiltrating developers' Amazon Web Services (AWS) credentials. The package in question is "fabrice," w…THEHACKERNEWS.COM
7 NovCyberattack on Microlise Disables Tracking in Prison Vans, Courier VehiclesVehicle tracking services for Serco, DHL, and other fleets were disrupted after Microlise fell victim to a cyberattack. The post Cyberattack on Microlise Disables Tracking in Prison Vans, Courier Vehicles appeared first on SecurityWeek .SECURITYWEEK.COM
7 NovInterpol nimmt 22.000 IP-Adressen vom NetzInterpol In einer konzentrierten Polizeiaktion hat Interpol zusammen mit mehreren privatwirtschaftlichen Partnern und Strafverfolgungsbehörden aus 95 Interpol-Mitgliedsländern der Cybercrime-Szene mal wieder einen großen Schlag versetzt. Wie die internationale Polizeibehörde mitt…CSOONLINE.COM
7 NovA Hacker's Guide to Password CrackingDefending your organization’s security is like fortifying a castle—you need to understand where attackers will strike and how they’ll try to breach your walls. And hackers are always searching for weaknesses, whether it’s a lax password policy or a forgotten backdoor. To build a …THEHACKERNEWS.COM
7 NovExploring DORA: How to manage ICT incidents and minimize cyber threat risksAs cybersecurity breaches continue to rise globally, institutions handling sensitive information are particularly vulnerable. In 2024, the average cost of a data breach in the financial sector reached $6.08 million, making it the second hardest hit after healthcare, according to …SECURITYINTELLIGENCE.COM
7 NovMicrosoft Reports 600 Million Cyberattacks per DayFindings From the Tech Giant's Defense Report 2024 Flag Expanding Threat Landscape Microsoft's latest Digital Defense Report exposed an increasingly complex cyber battlefield in which nation-state actors team up with cybercriminals to launch sophisticated attacks, while organizat…DATABREACHTODAY.CO.UK
7 NovLaw Firm Hack Compromises Health System's Patient DataDid Data Theft at Firm Also Affect Other Clients' Information? A hacking incident at Thompson Coburn, a national law firm based in Missouri, has affected an unspecified number of patients of a healthcare sector client, Presbyterian Healthcare Services in New Mexico. But a big una…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 23[−]
7 NovISC Stormcast For Thursday, November 7th, 2024 https://isc.sans.edu/podcastdetail/9212, (Thu, Nov 7th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
7 NovAndroid Banking Trojan ToxicPanda Targets EuropeToxicPanda is a China-linked Android banking trojan spotted targeting over a dozen banks in Europe and Latin America. The post Android Banking Trojan ToxicPanda Targets Europe appeared first on SecurityWeek .SECURITYWEEK.COM
7 NovSteam Account Checker Poisoned with Infostealer, (Thu, Nov 7th)I found an interesting script targeting Steam users. Steam[ 1 ] is a popular digital distribution platform for purchasing, downloading, and playing video games on personal computers. The script is called "steam-account-checker" and is available in Github[ 2 ].…ISC.SANS.EDU
7 Nov5 Most Common Malware Techniques in 2024Tactics, techniques, and procedures (TTPs) form the foundation of modern defense strategies. Unlike indicators of compromise (IOCs), TTPs are more stable, making them a reliable way to identify specific cyber threats. Here are some of the most commonly used techniques, according …THEHACKERNEWS.COM
7 NovCanada Orders TikTok’s Canadian Business to Be Dissolved but Won’t Block AppCanada won’t block access to TikTok but is ordering the dissolution of its Canadian business after a national security review. The post Canada Orders TikTok’s Canadian Business to Be Dissolved but Won’t Block App appeared first on SecurityWeek .SECURITYWEEK.COM
7 NovChina-Aligned MirrorFace Hackers Target EU Diplomats with World Expo 2025 BaitThe China-aligned threat actor known as MirrorFace has been observed targeting a diplomatic organization in the European Union, marking the first time the hacking crew has targeted an organization in the region. "During this attack, the threat actor used as a lure the upcoming Wo…THEHACKERNEWS.COM
7 NovNorth Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOSA threat actor with ties to the Democratic People's Republic of Korea (DPRK) has been observed targeting cryptocurrency-related businesses with a multi-stage malware capable of infecting Apple macOS devices. Cybersecurity company SentinelOne, which dubbed the campaign Hidden Risk…THEHACKERNEWS.COM
7 Nov‘SteelFox’ Miner and Information Stealer Bundle EmergesImpersonating legitimate software such as Foxit PDF Editor and AutoCAD, the SteelFox crimeware bundle steals user information. The post ‘SteelFox’ Miner and Information Stealer Bundle Emerges appeared first on SecurityWeek .SECURITYWEEK.COM
7 NovThe Deceptive Media Era: Moving Beyond "Real vs. Fake"As society grapples with the rapid advancement of AI and synthetic media, we've been asking the wrong question. The focus on whether content is "real or fake" misses the more crucial question: "Is this media deceptive?"KNOWBE4.COM
7 NovAttackers Abuse DocuSign to Send Phony InvoicesThreat actors are abusing DocuSign’s API to send phony invoices that appear “strikingly authentic,” according to researchers at Wallarm.KNOWBE4.COM
7 NovCISSP Practice Questionsubmitted by johnboscow to cybersecurity 2 points | 0 comments https://docs.google.com/forms/d/e/1FAIpQLScaepT3rk4aP_rDx0h0A3fEt9xJtS7EuUrAlNzKm9K-1tgjmQ/viewform?usp=sf_link I’m pleased to announce that on November 7th I pass the CISSP exam on the 1st attempt. This is good news …SH.ITJUST.WORKS
7 NovEmbed Security Raises $6 Million to Help Overworked AnalystsEmbed Security has raised $6 million in an early stage funding round led by Paladin Capital Group. The post Embed Security Raises $6 Million to Help Overworked Analysts appeared first on SecurityWeek .SECURITYWEEK.COM
7 NovStrata Cloud Manager: One Interface, Complete Network Security ControlStrata Cloud Manager offers AIOps, Digital Experience Management (DEM), and management capabilities in a single, cohesive interface. The post Strata Cloud Manager: One Interface, Complete Network Security Control appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
7 NovThe Biggest Inhibitor of Cybersecurity: The Human ElementEssential steps such as security awareness training, MFA, and Zero Trust identity management help organizations reduce the human element and stay ahead in the cybersecurity curve. The post The Biggest Inhibitor of Cybersecurity: The Human Element appeared first on SecurityWeek .SECURITYWEEK.COM
7 NovBeware malicious NPM packages, Checkmarx warnsApplication testing company Checkmarx has warned developers to be on the lookout for malicious NPM packages, after discovering a new attack that employs typosquatting to impersonate two popular packages. Part of a much larger campaign against NPM, in a new twist, the malicious pa…INFOWORLD.COM
7 NovCybersecurity For Schools - Kayne McGladrey - PSW #850We chatted with Kayne about education systems security, funding for cyber tools and services, and what the future of education might look like to fill more cyber roles. Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/ps…YOUTUBE.COM
7 NovAn encrypted and anti-forensic public web chat serversubmitted by Super_gamer46861 to cybersecurity 1 points | 0 comments https://lemmy.world/pictrs/image/132bb5ce-d4b0-4065-849f-21d638e2f6dc.png github.com/umutcamliyurt/AmnesichatSH.ITJUST.WORKS
7 NovAssessing Banking Product Risks to Improve KYC ProgramsTrapets CEO Gabriella Bussien on Why Banks Need to Fine-Tune, Automate KYC Processes KYC protocols traditionally focus on account-level verification, but examining KYC at the product level can help banks assess risk more accurately. Asking targeted questions based on product risk…DATABREACHTODAY.CO.UK
7 NovNorth Korean Hackers Target macOS Users with Fake Crypto PDFsNorth Korean cryptocurrency thieves caught targeting macOS with fake PDF applications, backdoors and new persistence tactics. The post North Korean Hackers Target macOS Users with Fake Crypto PDFs appeared first on SecurityWeek .SECURITYWEEK.COM
7 NovNorth Korean hackers use new macOS malware against crypto firmsNorth Korean threat actor BlueNoroff has been targeting crypto-related businesses with a new multi-stage malware for macOS systems. [...]BLEEPINGCOMPUTER.COM
7 NovMore value, less risk: How to implement generative AI across the organization securely and responsiblyThe technology landscape is undergoing a massive transformation, and AI is at the center of this change. The post More value, less risk: How to implement generative AI across the organization securely and responsibly appeared first on Microsoft Security Blog .MICROSOFT.COM
7 NovESET APT Activity Report Q2 2024–Q3 2024An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q2 2024 and Q3 2024WELIVESECURITY.COM
🎙️ PODCASTS 1[−]
7 NovSmashing Security podcast #392: Pasta spies and private eyes, and are you applying for a ghost job?A Facebook friend request leads to arrest, Twitter scams ride again via promoted ads, and adult websites expose their members. Oh, and Graham finds out what Rule 34 is. All this and more is discussed in the latest edition of the award-winning "Smashing Security" podcast by comput…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 9[−]
7 NovCanada Orders TikTok to Shut Down Canadian Operations Over Security ConcernsThe Canadian government on Wednesday ordered ByteDance-owned TikTok to dissolve its operations in the country, citing national security risks, but stopped short of instituting a ban on the popular video-sharing platform. "The decision was based on the information and evidence col…THEHACKERNEWS.COM
7 NovTor Browser and anonymity: what you need to know | Kaspersky official blogFind out if the Tor Browser can really ensure your anonymity.KASPERSKY.COM
7 NovCanada orders TikTok to shut down over national risk concernsThe Canadian government has ordered the dissolution of TikTok Technology Canada following a multi-step review that provided information and evidence of the social media company posing a national risk. [...]BLEEPINGCOMPUTER.COM
7 NovHow Encryption Keeps Bombs from Being Defused 😱Ever wonder why not just anyone can defuse a bomb? It’s all about encryption! Bomb detonators are encrypted, making it almost impossible to disarm without the secret key. But what kind of encryption are they using, and how do they ensure only the right people can access it? 🔐 Dis…YOUTUBE.COM