matlock.ca // THREAT INTELLIGENCE

111Articles

11Categories

2024-11-21Date

🚨

CISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-44308 Apple Multiple Products Code Execution Vulnerability CVE-2024-44309 Apple Multiple Products Cross-Site Scripting (X…

KEVCISA.GOV — Thu, 21 Nov 24 1

🐛

macOS WorkflowKit Race Vulnerability Allows Malicious Apps to Intercept Shortcuts

GBHACKERS.COM — 21 Nov 2024

🐛

Exploitation Attempts Target Citrix Session Recording Vulnerabilities

SECURITYWEEK.COM — 21 Nov 2024

🐛

2,000 Palo Alto Networks devices compromised in latest attacks

SH.ITJUST.WORKS — 21 Nov 2024

⚠️

BianLian group based in Russia, is moving from ransomware attacks to extortion.

SH.ITJUST.WORKS — 21 Nov 2024

⚠️

Act fast to snuff out employee curiosity over ‘free’ AI apps

CSOONLINE.COM — 21 Nov 2024

⚠️

Helldown Ransomware Attacking VMware ESX And Linux Servers

GBHACKERS.COM — 21 Nov 2024

⚠️

Closer to the Edge: Hyperscaling Have I Been Pwned with Cloudflare Workers and Caching

TROYHUNT.COM — 21 Nov 2024

⚠️

Google's AI-Powered OSS-Fuzz Tool Finds 26 Vulnerabilities in Open-Source Projects

THEHACKERNEWS.COM — 21 Nov 2024

⚠️

D-Link says replace vulnerable routers or risk pwnage

SH.ITJUST.WORKS — 21 Nov 2024

⚠️

North Korean fake IT workers up the ante in targeting tech firms

KEVCSOONLINE.COM — 21 Nov 2024

⚠️

5 Hackers Charged for Attacking Companies via Phishing Text Messages

GBHACKERS.COM — 21 Nov 2024

⚠️

Researchers Detailed FrostyGoop Malware Attacking ICS Devices

GBHACKERS.COM — 21 Nov 2024

⚠️

Ghost Tap Attack, Hackers Stolen Credit Card Linked To Google Pay Or Apple Pay

GBHACKERS.COM — 21 Nov 2024

⚠️

US and UK Military Social Network "Forces Penpals" Exposes SSN, PII Data

SH.ITJUST.WORKS — 21 Nov 2024

⚠️

Finastra investigates breach potentially affecting top global banks

CSOONLINE.COM — 21 Nov 2024

⚠️

Job termination scam warns staff of phony Employment Tribunal decision

CSOONLINE.COM — 21 Nov 2024

⚠️

Fortinet VPN design flaw hides successful brute-force attacks

BLEEPINGCOMPUTER.COM — 21 Nov 2024

⚠️

Wiz acquires Dazz for $450M to expand its cybersecurity platform

TECHCRUNCH.COM — 21 Nov 2024

⚠️

Palo Alto Networks warns hackers are breaking into its customers’ firewalls — again

TECHCRUNCH.COM — 21 Nov 2024

⚠️

CISA Releases Seven Industrial Control Systems Advisories

CISA.GOV — Thu, 21 Nov 24 1

⚠️

Warning: Over 2,000 Palo Alto Networks Devices Hacked in Ongoing Attack Campaign

THEHACKERNEWS.COM — 21 Nov 2024

⚠️

Fortinet, Palo Alto, VMWare - PSW #852

YOUTUBE.COM — 2024-11-21

⚠️

Over 2,000 Palo Alto firewalls hacked using recently patched bugs

BLEEPINGCOMPUTER.COM — 21 Nov 2024

⚠️

Rising ClickFix malware distribution trick puts PowerShell IT policies on notice

CSOONLINE.COM — 21 Nov 2024

⚠️

Wiz Fortifies Application Security With $450M Dazz Purchase

DATABREACHTODAY.CO.UK — 2024-11-21

📋

Halo Security Launches Slack Integration for Real-Time Alerts on New Assets and Vulnerabilities

GBHACKERS.COM — 21 Nov 2024

📢

US Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s AI Policy Overshadows Their Work

SECURITYWEEK.COM — 21 Nov 2024

📢

N-able Strengthens Cybersecurity Via $266M Adlumin Purchase

DATABREACHTODAY.CO.UK — 2024-11-21

📢

What CISOs need to know about the SEC’s breach disclosure rules

CSOONLINE.COM — 21 Nov 2024

📢

10 Most Impactful PAM Use Cases for Enhancing Organizational Security

THEHACKERNEWS.COM — 21 Nov 2024

📢

Kicking-Off with a December 4th Workshop, NIST is Revisiting and Revising Foundational Cybersecurity Activities for IoT Device Manufacturers, NIST IR 8259!

NIST.GOV — 21 Nov 2024

📢

CISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector Organization

CISA.GOV — Thu, 21 Nov 24 1

📢

US seizes PopeyeTools cybercrime marketplace, charges administrators

BLEEPINGCOMPUTER.COM — 21 Nov 2024

📢

FBI And CISA Warn Of Continued Cyberattacks On US Telecoms

PACKETSTORMSECURITY.COM — 21 Nov 2024

📢

Justice Department Seizes Cybercrime Website and Charges Its Administrators

INFOSEC.PUB — 21 Nov 2024

📢

Cryptohack Roundup: No Prison Time for FTX's Gary Wang

DATABREACHTODAY.CO.UK — 2024-11-21

📢

CISA says BianLian ransomware now focuses only on data theft

BLEEPINGCOMPUTER.COM — 21 Nov 2024

📢

CISA Red Team Finds Alarming Critical Infrastructure Risks

DATABREACHTODAY.CO.UK — 2024-11-21

📢

British Lawmakers Leery of Losing EU Adequacy Status

DATABREACHTODAY.CO.UK — 2024-11-21

📢

Hackers break into Andrew Tate’s online ‘university,’ steal user data and flood chats with emojis

TECHCRUNCH.COM — 21 Nov 2024

🔥

Two PyPi Malicious Package Mimic ChatGPT & Claude Steals Developers Data

GBHACKERS.COM — 21 Nov 2024

🔥

5 Scattered Spider Gang Members Indicted in Multi-Million Dollar Cybercrime Scheme

THEHACKERNEWS.COM — 21 Nov 2024

🔥

The Philippine army is recruiting young tech civilians to fight cyber attacks

INFOSEC.PUB — 21 Nov 2024

🔥

Ransomware Gangs Evolve: They're Now Recruiting Penetration Testers

SH.ITJUST.WORKS — 21 Nov 2024

🔥

Cyberattack at French hospital exposes health data of 750,000 patients

SH.ITJUST.WORKS — 21 Nov 2024

🔥

Financial Software Firm Finastra Investigating Data Breach

SECURITYWEEK.COM — 21 Nov 2024

🔥

Mexico’s President Says Government Is Investigating Reported Ransomware Hack of Legal Affairs Office

SECURITYWEEK.COM — 21 Nov 2024

🔥

Finastra bestätigt Datendiebstahl

CSOONLINE.COM — 21 Nov 2024

🔥

Unveiling WolfsBane: Gelsemium’s Linux counterpart to Gelsevirine

INFOSEC.PUB — 21 Nov 2024

🔥

2,000 Palo Alto Firewalls Compromised via New Vulnerabilities

SECURITYWEEK.COM — 21 Nov 2024

🔥

Chinese APT Gelsemium Targets Linux Systems with New WolfsBane Backdoor

THEHACKERNEWS.COM — 21 Nov 2024

🔥

750,000 patients’ medical records exposed after data breach at French hospital

TRIPWIRE.COM — 21 Nov 2024

🔥

Helldown Ransomware Attacking VMware ESX And Linux Servers

SH.ITJUST.WORKS — 21 Nov 2024

🔥

Breach Roundup: Russia Suspected of Severing Undersea Cables

DATABREACHTODAY.CO.UK — 2024-11-21

🕵️

Wireshark 4.4.2 Released: What’s New!

GBHACKERS.COM — 21 Nov 2024

🕵️

Increase In Phishing SVG Attachments, (Thu, Nov 21st)

ISC.SANS.EDU — 21 Nov 2024

🕵️

Now BlueSky hit with crypto scams as it crosses 20 million users

BLEEPINGCOMPUTER.COM — 21 Nov 2024

🕵️

ISC Stormcast For Thursday, November 21st, 2024 https://isc.sans.edu/podcastdetail/9228, (Thu, Nov 21st)

ISC.SANS.EDU — 21 Nov 2024

🕵️

DPRK IT Workers | A Network of Active Front Companies and Their Links to China

INFOSEC.PUB — 21 Nov 2024

🕵️

AI – Implementing the Right Technology for the Right Use Case

SECURITYWEEK.COM — 21 Nov 2024

🕵️

MITRE shares 2024's top 25 most dangerous software weaknesses

SH.ITJUST.WORKS — 21 Nov 2024

🕵️

China's Liminal Panda APT Attacks Telcos, Steals Data

SH.ITJUST.WORKS — 21 Nov 2024

🕵️

Ubuntu affected by 10-year-old flaws in needrestart package

SH.ITJUST.WORKS — 21 Nov 2024

🕵️

Secret Service Tracking People’s Locations without Warrant

SCHNEIER.COM — 2024-11-21

🕵️

North Korean Front Companies Impersonate U.S. IT Firms to Fund Missile Programs

THEHACKERNEWS.COM — 21 Nov 2024

🕵️

US Charges Five Alleged Scattered Spider Members

SECURITYWEEK.COM — 21 Nov 2024

🕵️

RSA Conference Will Take Equity in ‘Innovation Sandbox’ Startup Finalists

SECURITYWEEK.COM — 21 Nov 2024

🕵️

MITRE Updates List of 25 Most Dangerous Software Vulnerabilities

SECURITYWEEK.COM — 21 Nov 2024

🕵️

ICS Security: 145,000 Systems Exposed to Web, Many Industrial Firms Hit by Attacks

SECURITYWEEK.COM — 21 Nov 2024

🕵️

Airplane cybersecurity: Past, present, future

SECURITYINTELLIGENCE.COM — 21 Nov 2024

🕵️

Unit 42 Predicts the Year of Disruption and Other Top Threats in 2025

PALOALTONETWORKS.COM — 21 Nov 2024

🕵️

Future of Cybersecurity: Leadership Needed to Fully Define Quantum Threat Mitigation Strategy

INFOSEC.PUB — 21 Nov 2024

🕵️

Feds Indict 5 Suspects Tied to Scattered Spider Cybercrime

DATABREACHTODAY.CO.UK — 2024-11-21

🕵️

After CrowdStrike Outage, Microsoft Debuts ‘Quick Machine Recovery’ Tool

SECURITYWEEK.COM — 21 Nov 2024

🕵️

Black Friday Spam Report 2024: 3 in 4 Spam Emails Are Scams, Bitdefender Antispam Lab Warns

INFOSEC.PUB — 21 Nov 2024

🕵️

North Korean Hackers Behind 2019 $42 Million Ethereum Heist

PACKETSTORMSECURITY.COM — 21 Nov 2024

🕵️

Wiz Buys Dazz for $450 Million

SECURITYWEEK.COM — 21 Nov 2024

🕵️

Financially Motivated Threat Actor Leveraged Google Docs and Weebly Services to Target Telecom and Financial Sectors

INFOSEC.PUB — 21 Nov 2024

🕵️

Hardwear.io NL 2024

INFOSEC.PUB — 21 Nov 2024

🕵️

Hardwear.io NL 2024

INFOSEC.PUB — 21 Nov 2024

🕵️

Confessions of a Cyber Criminal Stalker - Ken Westin - PSW #852

YOUTUBE.COM — 2024-11-21

🕵️

Chinese APT Gelsemium Targets Linux Systems with New WolfsBane Backdoor

SH.ITJUST.WORKS — 21 Nov 2024

🕵️

2024 CWE Top 25 Most Dangerous Software Weaknesses

INFOSEC.PUB — 21 Nov 2024

🕵️

Chinese hackers target Linux with new WolfsBane malware

BLEEPINGCOMPUTER.COM — 21 Nov 2024

🕵️

Fraud Awareness Week

KNOWBE4.COM — 21 Nov 2024

🕵️

GAO: HHS Needs to Be a Better Leader in Health Sector Cyber

DATABREACHTODAY.CO.UK — 2024-11-21

🕵️

Microsoft seizes 240 websites used by Egyptian phishing-as-a-service operation.

INFOSEC.PUB — 21 Nov 2024

🌐

NodeStealer Malware Targets Facebook Ad Accounts, Harvesting Credit Card Data

THEHACKERNEWS.COM — 21 Nov 2024

🌐

Over 145,000 Industrial Control Systems Across 175 Countries Found Exposed Online

THEHACKERNEWS.COM — 21 Nov 2024

🌐

Packages with infostealer found in PyPI repository | Kaspersky official blog

KASPERSKY.COM — 21 Nov 2024

🌐

Unveiling WolfsBane: Gelsemium’s Linux counterpart to Gelsevirine

WELIVESECURITY.COM — 21 Nov 2024

📰

Feds Charge Five Men in ‘Scattered Spider’ Roundup

KREBSONSECURITY.COM — 21 Nov 2024

🎙️

Smashing Security podcast #394: Digital arrest scams and stream-jacking

GRAHAMCLULEY.COM — 21 Nov 2024

📡

Cyber Story Time: The Boy Who Cried "Secure!"

THEHACKERNEWS.COM — 21 Nov 2024

📡

Russian Women Stepping Up For Cybercrime Outfits

PACKETSTORMSECURITY.COM — 21 Nov 2024

📡

Five Scattered Spider Suspects Indicted For Phishing And Heists

PACKETSTORMSECURITY.COM — 21 Nov 2024

📡

Put Your Username And Passwords In Your Will, Advises Japan's Government

PACKETSTORMSECURITY.COM — 21 Nov 2024

📡

Ubuntu Affected By 10-Year-Old Flaws In needrestart Package

PACKETSTORMSECURITY.COM — 21 Nov 2024

📡

MITRE Updates List Of 25 Most Dangerous Software Vulnerabilities

PACKETSTORMSECURITY.COM — 21 Nov 2024

📡

Microsoft disrupts ONNX phishing-as-a-service infrastructure

BLEEPINGCOMPUTER.COM — 21 Nov 2024

📡

The Fragile Foundation of System Security... Explained

YOUTUBE.COM — 2024-11-21

📡

Stop Trusting Every App! What You Need to Know 🤯

YOUTUBE.COM — 2024-11-21

📡

Will Arrests Squash Scattered Spider's Cybercrime Assault?

DATABREACHTODAY.CO.UK — 2024-11-21

📡

Microsoft pulls WinAppSDK update breaking Windows 10 app uninstalls

BLEEPINGCOMPUTER.COM — 21 Nov 2024

📡

Sophos XDR: New generative AI functionality and case investigation enhancements

SOPHOS.COM — 21 Nov 2024

📡

House Standing Committee on Procedure and House Affairs (PROC): June 6, 2024

CYBER.GC.CA — 2024-11-21

📡

Windows 11 KB5046740 update released with 14 changes and fixes

BLEEPINGCOMPUTER.COM — 21 Nov 2024

📡

Black Friday Versus The Bots

F5.COM — 21 Nov 2024

📡

Black Friday Versus The Bots

F5.COM — 21 Nov 2024

📡

Black Friday Versus The Bots

F5.COM — 21 Nov 2024