111Articles
11Categories
2024-11-21Date
🚨 CISA KEV 1[−]
21 Nov KEVCISA Adds Three Known Exploited Vulnerabilities to CatalogCISA has added three new vulnerabilities to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-44308  Apple Multiple Products Code Execution Vulnerability CVE-2024-44309  Apple Multiple Products Cross-Site Scripting (X…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
21 NovmacOS WorkflowKit Race Vulnerability Allows Malicious Apps to Intercept ShortcutsA race condition vulnerability in Apple’s WorkflowKit has been identified, allowing malicious applications to intercept and manipulate shortcuts on macOS systems. This vulnerability, cataloged as CVE-2024-27821, affects the shortcut extraction and generation processes withi…GBHACKERS.COM
21 NovExploitation Attempts Target Citrix Session Recording VulnerabilitiesExploitation attempts seen for two recently patched Citrix Session Recording vulnerabilities tracked as CVE-2024-8068 and CVE-2024-8069. The post Exploitation Attempts Target Citrix Session Recording Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
21 Nov2,000 Palo Alto Networks devices compromised in latest attackssubmitted by kid to cybersecurity 2 points | 0 comments https://www.helpnetsecurity.com/2024/11/21/palo-alto-firewalls-compromised-cve-2024-0012-cve-2024-9474/SH.ITJUST.WORKS
⚠️ VULNERABILITY DISCLOSURE 22[−]
21 NovBianLian group based in Russia, is moving from ransomware attacks to extortion.submitted by Joker to cybersecurity 1 points | 0 comments https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-136a BianLian group actors have affected organizations in multiple U.S. critical infrastructure sectors since June 2022. They have also targeted Australian cri…SH.ITJUST.WORKS
21 NovAct fast to snuff out employee curiosity over ‘free’ AI appsThe word “free” has always tempted employees who are looking for an app or template to make their work easier. These days, combine “free” with “AI” and the lure is almost irresistible. Since the release of ChatGPT in late 2022, free AI-themed apps have exploded. Unfortunately, so…CSOONLINE.COM
21 NovHelldown Ransomware Attacking VMware ESX And Linux ServersHelldown, a new ransomware group, actively exploits vulnerabilities to breach networks, as since August 2024, they have compromised 28 victims, leaking their data on a dedicated website. The ransomware group IS has updated its data leak site, removing three victims, possibly indi…GBHACKERS.COM
21 NovCloser to the Edge: Hyperscaling Have I Been Pwned with Cloudflare Workers and CachingPresently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. I've spent more than a decade now writing about how to make Have I Been Pwned (HIBP) fast . Really fast. Fast to the extent that sometimes, it was even too fast:…TROYHUNT.COM
21 NovGoogle's AI-Powered OSS-Fuzz Tool Finds 26 Vulnerabilities in Open-Source ProjectsGoogle has revealed that its AI-powered fuzzing tool, OSS-Fuzz, has been used to help identify 26 vulnerabilities in various open-source code repositories, including a medium-severity flaw in the OpenSSL cryptographic library. "These particular vulnerabilities represent a milesto…THEHACKERNEWS.COM
21 NovD-Link says replace vulnerable routers or risk pwnagesubmitted by cron to cybersecurity 1 points | 0 comments https://www.theregister.com/2024/11/20/dlink_rip_replace_router/ Owners of older models of D-Link VPN routers are being told to retire and replace their devices following the disclosure of a serious remote code execution (R…SH.ITJUST.WORKS
21 Nov KEVNorth Korean fake IT workers up the ante in targeting tech firmsNorth Korean fake IT worker scams are evolving to incorporate theft and extortion as more examples of targeting against technology and other companies emerge. The deception typically features North Korean operatives posing as legitimate IT professionals in attempts to gain employ…CSOONLINE.COM
21 Nov5 Hackers Charged for Attacking Companies via Phishing Text MessagesFederal authorities have unsealed charges against five individuals accused of orchestrating sophisticated phishing schemes that targeted employees of companies across the United States. The alleged hackers reportedly stole confidential company data and millions of dollars in cryp…GBHACKERS.COM
21 NovResearchers Detailed FrostyGoop Malware Attacking ICS DevicesFrostyGoop, a newly discovered OT-centric malware that exploited Modbus TCP to disrupt critical infrastructure in Ukraine, capable of both internal and external attacks, targets industrial control systems (ICS) devices. By sending malicious Modbus commands, FrostyGoop can cause p…GBHACKERS.COM
21 NovGhost Tap Attack, Hackers Stolen Credit Card Linked To Google Pay Or Apple PayThreat actors are exploiting a new cash-out tactic called “Ghost Tap” to siphon funds from stolen credit card details linked to mobile payment services like Google Pay or Apple Pay, which involves relaying NFC traffic, enabling unauthorized transactions without physic…GBHACKERS.COM
21 NovUS and UK Military Social Network "Forces Penpals" Exposes SSN, PII Datasubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/us-uk-military-forces-penpals-exposes-ssn-pii-data/SH.ITJUST.WORKS
21 NovFinastra investigates breach potentially affecting top global banksPopular financial software and services provider, Finastra, whose clientele includes 45 of the world’s top 50 banks, is reportedly warning these institutes of a potential breach affecting one of its internally hosted file transfer platforms. In an Incident Disclosure letter sent …CSOONLINE.COM
21 NovJob termination scam warns staff of phony Employment Tribunal decisionCreators of phishing messages usually want to create anxiety in their targets so they’ll unwittingly download malware. And nothing gets stomachs churning more than the possibility of losing your job. One of the latest examples of this was detected by Cloudflare, which issued a re…CSOONLINE.COM
21 NovFortinet VPN design flaw hides successful brute-force attacksA design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of compromised logins. [...]BLEEPINGCOMPUTER.COM
21 NovWiz acquires Dazz for $450M to expand its cybersecurity platformWiz, one of the most talked-about names in the world of cybersecurity, is making a significant acquisition to expand its product reach in cloud security, particularly with developers. It is buying Dazz, a specialist in security remediation and risk management. Sources tell us the…TECHCRUNCH.COM
21 NovPalo Alto Networks warns hackers are breaking into its customers’ firewalls — againHackers have compromised potentially thousands of Palo Alto customers by exploiting two new zero-day vulnerabilities © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
21 NovCISA Releases Seven Industrial Control Systems AdvisoriesCISA released seven Industrial Control Systems (ICS) advisories on November 21, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-24-326-01 Automated Logic WebCTRL Premium Server ICSA-24-326-02 OSC…CISA.GOV
21 NovWarning: Over 2,000 Palo Alto Networks Devices Hacked in Ongoing Attack CampaignAs many as 2,000 Palo Alto Networks devices are estimated to have been compromised as part of a campaign abusing the newly disclosed security flaws that have come under active exploitation in the wild. According to statistics shared by the Shadowserver Foundation, a majority of t…THEHACKERNEWS.COM
21 NovFortinet, Palo Alto, VMWare - PSW #852Fast cars kill people, Apple 0-Days, memory safety, poisoning the well, babble babble and malware that tries really hard to be stealthy, Palto Alto and Fortinet have some serious new vulnerabilities, open-source isn't free, but neither is commercial software, get on the TPM bus, …YOUTUBE.COM
21 NovOver 2,000 Palo Alto firewalls hacked using recently patched bugsHackers have already compromised thousands of Palo Alto Networks firewalls in attacks exploiting two recently patched zero-day vulnerability vulnerabilities. [...]BLEEPINGCOMPUTER.COM
21 NovRising ClickFix malware distribution trick puts PowerShell IT policies on noticeThreat groups are increasingly adopting a social engineering technique dubbed ClickFix to trick users into copying malicious PowerShell code and executing it themselves. Despite requiring more user interaction to succeed, the tactic has been adopted by several threat groups in re…CSOONLINE.COM
21 NovWiz Fortifies Application Security With $450M Dazz PurchaseBuy of Application Security Startup Enhances Code-to-Cloud Vulnerability Management Wiz acquired application security posture management startup Dazz for $450 million to provide enterprises with a unified code-to-cloud solution. CEO Merav Bahat highlights how this partnership wil…DATABREACHTODAY.CO.UK
📋 SECURITY BULLETINS 1[−]
21 NovHalo Security Launches Slack Integration for Real-Time Alerts on New Assets and VulnerabilitiesHalo Security, a leader in external attack surface management and penetration testing, has announced the launch of its new Slack® app, empowering cybersecurity teams to receive real-time alerts on newly discovered assets, vulnerabilities, and other essential security updates dire…GBHACKERS.COM
📢 SECURITY ADVISORIES 14[−]
21 NovUS Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s AI Policy Overshadows Their WorkTrump promised in his presidential campaign platform to “repeal Joe Biden’s dangerous Executive Order that hinders AI Innovation, and imposes Radical Leftwing ideas on the development of this technology.” The post US Gathers Allies to Talk AI Safety as Trump’s Vow to Undo Biden’s…SECURITYWEEK.COM
21 NovN-able Strengthens Cybersecurity Via $266M Adlumin PurchaseSecurity Operations Purchase Brings Cloud-Native XDR, MDR to IT Management Platform With Adlumin’s cloud-native XDR and MDR services, N-able consolidates its position as a leader in IT management. Buying the Washington D.C.-based security operations vendor for up to $266 million …DATABREACHTODAY.CO.UK
21 NovWhat CISOs need to know about the SEC’s breach disclosure rulesThe US Securities and Exchange Commission’s (SEC) breach disclosure rules have placed increased responsibility on the CISOs of publicly traded companies in the reporting of cybersecurity incidents and risks. The SEC’s latest disclosure rules , which went into effect in December 2…CSOONLINE.COM
21 Nov10 Most Impactful PAM Use Cases for Enhancing Organizational SecurityPrivileged access management (PAM) plays a pivotal role in building a strong security strategy. PAM empowers you to significantly reduce cybersecurity risks, gain tighter control over privileged access, achieve regulatory compliance, and reduce the burden on your IT team.  A…THEHACKERNEWS.COM
21 NovKicking-Off with a December 4th Workshop, NIST is Revisiting and Revising Foundational Cybersecurity Activities for IoT Device Manufacturers, NIST IR 8259!In May 2020, NIST published Foundational Cybersecurity Activities for IoT Device Manufacturers (NIST IR 8259), which describes recommended cybersecurity activities that manufacturers should consider performing before their IoT devices are sold to customers. These foundational cyb…NIST.GOV
21 NovCISA Releases Insights from Red Team Assessment of a U.S. Critical Infrastructure Sector OrganizationToday, CISA released Enhancing Cyber Resilience: Insights from CISA Red Team Assessment of a U.S. Critical Infrastructure Sector Organization in coordination with the assessed organization. This cybersecurity advisory details lessons learned and key findings from an assessment, i…CISA.GOV
21 NovUS seizes PopeyeTools cybercrime marketplace, charges administratorsThe U.S. has seized the cybercrime website 'PopeyeTools' and unsealed charges against three of its administrators, Abdul Ghaffar, Abdul Sami, and Javed Mirza, for selling stolen data. [...]BLEEPINGCOMPUTER.COM
21 NovJustice Department Seizes Cybercrime Website and Charges Its Administratorssubmitted by Joker to cybersecurity 1 points | 0 comments https://www.justice.gov/opa/pr/justice-department-seizes-cybercrime-website-and-charges-its-administrators The Justice Department today announced the seizure of PopeyeTools, an illicit website and marketplace dedicated to …INFOSEC.PUB
21 NovCryptohack Roundup: No Prison Time for FTX's Gary WangAlso: Bitfinex Launderer Razzlekhan Gets 18-Month Sentence This week, sentences in FTX, Bitfinex and Helix cases, a $25.5M Thala hack, the WazirX hack and South Korea probed UpBit. U.S. lawmakers want a crackdown on Tornado. U.S. Prosecutors may scale back crypto cases. BIT Minin…DATABREACHTODAY.CO.UK
21 NovCISA says BianLian ransomware now focuses only on data theftThe BianLian ransomware operation has shifted its tactics, becoming primarily a data theft extortion group, according to an updated advisory from the U.S. Cybersecurity & Infrastructure Security Agency, the FBI, and the Australian Cyber Security Centre. [...]BLEEPINGCOMPUTER.COM
21 NovCISA Red Team Finds Alarming Critical Infrastructure RisksRed Team Finds Vulnerabilities in Critical Infrastructure Org’s Security Framework The U.S., cyber defense agency is urging critical infrastructure operators to learn from the experience of a volunteer read teaming test and not rely too heavily on host-based endpoint detection an…DATABREACHTODAY.CO.UK
21 NovBritish Lawmakers Leery of Losing EU Adequacy StatusLawmakers Expressed Concerns Over Proposed Data Use and Access Bill British lawmakers sought assurances Tuesday from the U.K. government that proposed data use reform legislation will not cause the country to lose its data-sharing rights with the European Union. Lawmakers also wa…DATABREACHTODAY.CO.UK
21 NovHackers break into Andrew Tate’s online ‘university,’ steal user data and flood chats with emojisHackers have breached an online course founded by ostensible influencer and self-described misogynist Andrew Tate, leaking data on close to 800,000 users, including thousands of email addresses, and private user chat logs. The Daily Dot, which broke the news Thursday, reported th…TECHCRUNCH.COM
🔥 INCIDENT REPORTING 14[−]
21 NovTwo PyPi Malicious Package Mimic ChatGPT & Claude Steals Developers DataTwo malicious Python packages masquerading as tools for interacting with popular AI models ChatGPT and Claude were recently discovered on the Python Package Index (PyPI), the official repository for Python libraries. These packages reportedly remained undetected for over a year, …GBHACKERS.COM
21 Nov5 Scattered Spider Gang Members Indicted in Multi-Million Dollar Cybercrime SchemeFive alleged members of the infamous Scattered Spider cybercrime crew have been indicted in the U.S. for targeting employees of companies across the country using social engineering techniques to harvest credentials and using them to gain unauthorized access to sensitive data and…THEHACKERNEWS.COM
21 NovThe Philippine army is recruiting young tech civilians to fight cyber attackssubmitted by Joker to cybersecurity 1 points | 0 comments https://restofworld.org/2024/philippines-civilian-tech-cyber-attacks/ Cyber attacks hurt government, academic, and business establishments. The Philippine Army is recruiting civilians to help stem cyber threats. Young tech…INFOSEC.PUB
21 NovRansomware Gangs Evolve: They're Now Recruiting Penetration Testerssubmitted by kid to cybersecurity 1 points | 0 comments https://blog.knowbe4.com/ransomware-gangs-evolve-the-alarming-trend-of-recruiting-penetration-testersSH.ITJUST.WORKS
21 NovCyberattack at French hospital exposes health data of 750,000 patientssubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/cyberattack-at-french-hospital-exposes-health-data-of-750-000-patients/SH.ITJUST.WORKS
21 NovFinancial Software Firm Finastra Investigating Data BreachFinastra is investigating a data breach after a hacker claimed the theft of information from an internal file-transfer application. The post Financial Software Firm Finastra Investigating Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovMexico’s President Says Government Is Investigating Reported Ransomware Hack of Legal Affairs OfficeMexico’s president says the government is investigating a reported ransomware hack of the country's legal affairs office. The post Mexico’s President Says Government Is Investigating Reported Ransomware Hack of Legal Affairs Office appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovFinastra bestätigt DatendiebstahlDer Finanztech-Anbieter Finastra hat eingeräumt, dass Kundendaten gestohlen wurden. LCV -Shutterstock.com Wie Security-Experte Brian Krebs auf seiner Website berichtet, hat ein Cyberkrimineller in einem Hacker-Forum ein 400 Gigabyte schweres Datenpaket zum Verkauf angeboten, das …CSOONLINE.COM
21 NovUnveiling WolfsBane: Gelsemium’s Linux counterpart to Gelsevirinesubmitted by Joker to cybersecurity 1 points | 0 comments https://www.welivesecurity.com/en/eset-research/unveiling-wolfsbane-gelsemiums-linux-counterpart-to-gelsevirine/ ESET researchers have identified multiple samples of Linux backdoor, which we have named WolfsBane, that we a…INFOSEC.PUB
21 Nov2,000 Palo Alto Firewalls Compromised via New VulnerabilitiesThe number of internet-exposed Palo Alto firewalls is dropping, but 2,000 have been compromised, according to Shadowserver Foundation. The post 2,000 Palo Alto Firewalls Compromised via New Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovChinese APT Gelsemium Targets Linux Systems with New WolfsBane BackdoorThe China-aligned advanced persistent threat (APT) actor known as Gelsemium has been observed using a new Linux backdoor dubbed WolfsBane as part of cyber attacks likely targeting East and Southeast Asia. That's according to findings from cybersecurity firm ESET based on multiple…THEHACKERNEWS.COM
21 Nov750,000 patients’ medical records exposed after data breach at French hospitalA hacker calling themselves "nears" claims to have compromised the systems of multiple healthcare facilities across France, claiming to have gained access to the records of over 1.5 million people. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
21 NovHelldown Ransomware Attacking VMware ESX And Linux Serverssubmitted by kid to cybersecurity 2 points | 0 comments https://gbhackers.com/helldown-ransomware-vmware-linux/SH.ITJUST.WORKS
21 NovBreach Roundup: Russia Suspected of Severing Undersea CablesAlso: VPN Vulnerabilities Attract Hackers, Hackers Use Swiss Mail to Send Malware This week, Russia suspected in Balctic Sea cable sabotage, VPNs draw ransomware attackers and Swiss snail mail malware. An AI training company reported a cybertheft of $250,000 and a U.S. space firm…DATABREACHTODAY.CO.UK
🕵️ THREAT INTELLIGENCE 33[−]
21 NovWireshark 4.4.2 Released: What’s New!The Wireshark Foundation has officially announced the release of Wireshark 4.4.2, the latest version of the world’s most popular network protocol analyzer. Wireshark is wide use in troubleshooting, analysis, development, and educational purposes, Wireshark continues to be a vital…GBHACKERS.COM
21 NovIncrease In Phishing SVG Attachments, (Thu, Nov 21st)There is an increase in SVG attachments used in phishing emails ( Scalable Vector Graphics , an XML-based vector image format). ISC.SANS.EDU
21 NovNow BlueSky hit with crypto scams as it crosses 20 million usersAs users are flocking to BlueSky from social media platforms like X/Twitter, so are threat actors. BleepingComputer has spotted cryptocurrency scams popping up on BlueSky just as the decentralized microblogging service surpassed 20 million users this week. [...]BLEEPINGCOMPUTER.COM
21 NovISC Stormcast For Thursday, November 21st, 2024 https://isc.sans.edu/podcastdetail/9228, (Thu, Nov 21st)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
21 NovDPRK IT Workers | A Network of Active Front Companies and Their Links to Chinasubmitted by Joker to cybersecurity 1 points | 0 comments https://www.sentinelone.com/labs/dprk-it-workers-a-network-of-active-front-companies-and-their-links-to-china/ Executive Summary SentinelLabs has identified unique characteristics of multiple websites, now seized by the US…INFOSEC.PUB
21 NovAI – Implementing the Right Technology for the Right Use CaseJust like other technologies that have gone before, such as cloud and cybersecurity automation, right now AI lacks maturity. The post AI – Implementing the Right Technology for the Right Use Case appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovMITRE shares 2024's top 25 most dangerous software weaknessessubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/mitre-shares-2024s-top-25-most-dangerous-software-weaknesses/SH.ITJUST.WORKS
21 NovChina's Liminal Panda APT Attacks Telcos, Steals Datasubmitted by kid to cybersecurity 1 points | 0 comments https://www.darkreading.com/threat-intelligence/china-liminal-panda-telcos-phone-dataSH.ITJUST.WORKS
21 NovUbuntu affected by 10-year-old flaws in needrestart packagesubmitted by kid to cybersecurity 1 points | 0 comments https://www.scworld.com/news/ubuntu-affected-by-10-year-old-flaws-in-needrestart-packageSH.ITJUST.WORKS
21 NovSecret Service Tracking People’s Locations without WarrantThis feels important : The Secret Service has used a technology called Locate X which uses location data harvested from ordinary apps installed on phones. Because users agreed to an opaque terms of service page, the Secret Service believes it doesn’t need a warrant.SCHNEIER.COM
21 NovNorth Korean Front Companies Impersonate U.S. IT Firms to Fund Missile ProgramsThreat actors with ties to the Democratic People's Republic of Korea (DPRK) are impersonating U.S.-based software and technology consulting businesses in order to further their financial objectives as part of a broader information technology (IT) worker scheme. "Front companies, …THEHACKERNEWS.COM
21 NovUS Charges Five Alleged Scattered Spider MembersFive alleged members of the Scattered Spider cybercrime group were charged for phishing and stealing millions in cryptocurrency. The post US Charges Five Alleged Scattered Spider Members appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovRSA Conference Will Take Equity in ‘Innovation Sandbox’ Startup FinalistsThe owners of the RSA Conference will make a $5 million investment a prerequisite for all 10 finalists at next year’s Innovation Sandbox. The post RSA Conference Will Take Equity in ‘Innovation Sandbox’ Startup Finalists appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovMITRE Updates List of 25 Most Dangerous Software VulnerabilitiesMITRE has released an updated CWE Top 25 Most Dangerous Software Weaknesses list, with cross-site scripting (XSS) at the top. The post MITRE Updates List of 25 Most Dangerous Software Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovICS Security: 145,000 Systems Exposed to Web, Many Industrial Firms Hit by AttacksCensys and Kaspersky publish ICS security reports looking into exposure to attacks and actual attacks suffered by industrial organizations. The post ICS Security: 145,000 Systems Exposed to Web, Many Industrial Firms Hit by Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovAirplane cybersecurity: Past, present, futureWith most aviation processes now digitized, airlines and the aviation industry as a whole must prioritize cybersecurity. If a cyber criminal launches an attack that affects a system involved in aviation — either an airline’s system or a third-party vendor — the …SECURITYINTELLIGENCE.COM
21 NovUnit 42 Predicts the Year of Disruption and Other Top Threats in 2025As part of Palo Alto Networks 2025 predictions, read on to uncover Unit 42’s insights on what to expect in the coming year. The post Unit 42 Predicts the Year of Disruption and Other Top Threats in 2025 appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
21 NovFuture of Cybersecurity: Leadership Needed to Fully Define Quantum Threat Mitigation Strategysubmitted by Joker to cybersecurity 1 points | 0 comments https://www.gao.gov/products/gao-25-107703INFOSEC.PUB
21 NovFeds Indict 5 Suspects Tied to Scattered Spider CybercrimeFBI Ties Suspects to at Least 45 Attacks and Theft of Cryptocurrency Worth Millions The U.S. government on Wednesday unsealed criminal charges against five suspected members of the "loosely organized, financially motivated cybercriminal group" Scattered Spider. The suspects have …DATABREACHTODAY.CO.UK
21 NovAfter CrowdStrike Outage, Microsoft Debuts ‘Quick Machine Recovery’ ToolMicrosoft debuts Quick Machine Recovery tool to apply fixes even when machines are unable to boot, without needing physical access. The post After CrowdStrike Outage, Microsoft Debuts ‘Quick Machine Recovery’ Tool appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovBlack Friday Spam Report 2024: 3 in 4 Spam Emails Are Scams, Bitdefender Antispam Lab Warnssubmitted by Joker to cybersecurity 1 points | 0 comments https://www.bitdefender.com/en-gb/blog/hotforsecurity/black-friday-spam-report-2024INFOSEC.PUB
21 NovWiz Buys Dazz for $450 MillionDazz, based in Israel, raised about $110 million from prominent investors like Greylock, Cyberstarts, Insight Partners and Index Ventures. The post Wiz Buys Dazz for $450 Million appeared first on SecurityWeek .SECURITYWEEK.COM
21 NovFinancially Motivated Threat Actor Leveraged Google Docs and Weebly Services to Target Telecom and Financial Sectorssubmitted by Joker to cybersecurity 1 points | 0 comments https://blog.eclecticiq.com/financially-motivated-threat-actor-leveraged-google-docs-and-weebly-services-to-target-telecom-and-financial-sectors EclecticIQ analysts identified a phishing campaign in late October 2024 targe…INFOSEC.PUB
21 NovHardwear.io NL 2024submitted by ashar to security_cpe 2 points | 0 comments Hardwear.io NL 2024 playlist Hardwear.io NL 2024 schedule Learn from leading hardware security researchers & professionals and discuss the latest & most innovative research on attacking and defending hardware. Conne…INFOSEC.PUB
21 NovHardwear.io NL 2024submitted by ashar to security_cpe 2 points | 0 comments Hardwear.io NL 2024 playlist Hardwear.io NL 2024 schedule Learn from leading hardware security researchers & professionals and discuss the latest & most innovative research on attacking and defending hardware. Conne…INFOSEC.PUB
21 NovConfessions of a Cyber Criminal Stalker - Ken Westin - PSW #852Black Hats & White Collars: We know criminal hacking is big business because we've spied on them! Ken comes on the show to talk about chasing and stalking criminals, even if it means sacrificing some of your own personal safety. Visit https://www.securityweekly.com/psw for all th…YOUTUBE.COM
21 NovChinese APT Gelsemium Targets Linux Systems with New WolfsBane Backdoorsubmitted by kid to cybersecurity 2 points | 0 comments https://thehackernews.com/2024/11/chinese-apt-gelsemium-targets-linux.htmlSH.ITJUST.WORKS
21 Nov2024 CWE Top 25 Most Dangerous Software Weaknessessubmitted by Joker to cybersecurity 1 points | 0 comments https://cwe.mitre.org/top25/archive/2024/2024_cwe_top25.htmlINFOSEC.PUB
21 NovChinese hackers target Linux with new WolfsBane malwareA new Linux backdoor called 'WolfsBane' has been discovered, believed to be a port of Windows malware used by the Chinese 'Gelsemium' hacking group. [...]BLEEPINGCOMPUTER.COM
21 NovFraud Awareness WeekThe Association of Certified Fraud Examiners (ACFE) recently released a report Occupational Fraud 2024: A Report to the Nations , where they estimated that most organizations lose about 5% of their revenue each year due to fraud.KNOWBE4.COM
21 NovGAO: HHS Needs to Be a Better Leader in Health Sector CyberWatchdog Agency Report Points to Unimplemented Cyber Recommendations The U.S. Department of Health and Human Services needs to take important actions to do a better job of carrying out its duties as the lead federal agency responsible for strengthening cybersecurity in the health…DATABREACHTODAY.CO.UK
21 NovMicrosoft seizes 240 websites used by Egyptian phishing-as-a-service operation.submitted by Joker to cybersecurity 2 points | 0 comments https://blogs.microsoft.com/on-the-issues/2024/11/21/targeting-the-cybercrime-supply-chain/ Microsoft’s Digital Crimes Unit (DCU) has seized 240 fraudulent websites associated with an Egypt-based cybercrime facilitator. Ab…INFOSEC.PUB
🌐 CYBER THREAT LANDSCAPE 4[−]
21 NovNodeStealer Malware Targets Facebook Ad Accounts, Harvesting Credit Card DataThreat hunters are warning about an updated version of the Python-based NodeStealer that's now equipped to extract more information from victims' Facebook Ads Manager accounts and harvest credit card data stored in web browsers. "They collect budget details of Facebook Ads Manage…THEHACKERNEWS.COM
21 NovOver 145,000 Industrial Control Systems Across 175 Countries Found Exposed OnlineNew research has uncovered more than 145,000 internet-exposed Industrial Control Systems (ICS) across 175 countries, with the U.S. alone accounting for over one-third of the total exposures. The analysis, which comes from attack surface management company Censys, found that 38% o…THEHACKERNEWS.COM
21 NovPackages with infostealer found in PyPI repository | Kaspersky official blogKaspersky GReAT experts have found malicious packages for AI integration containing JarkaStealer malware in the PyPI repository.KASPERSKY.COM
21 NovUnveiling WolfsBane: Gelsemium’s Linux counterpart to GelsevirineESET researchers analyzed previously unknown Linux backdoors that are connected to known Windows malware used by the China-aligned Gelsemium group, and to Project WoodWELIVESECURITY.COM
📰 CYBERSECURITY BRIEFINGS 1[−]
21 NovFeds Charge Five Men in ‘Scattered Spider’ RoundupFederal prosecutors in Los Angeles this week unsealed criminal charges against five men alleged to be members of a hacking group responsible for dozens of cyber intrusions at major U.S. technology companies between 2021 and 2023, including LastPass, MailChimp, Okta, T-Mobile and …KREBSONSECURITY.COM
🎙️ PODCASTS 1[−]
21 NovSmashing Security podcast #394: Digital arrest scams and stream-jackingIn our latest episode we discuss how a woman hid under the bed after scammers told her she was under "digital arrest", how hackers are hijacking YouTube channels through malicious sponsorship deals, and how one phone company is turning the tables on fraudsters through deepfake AI…GRAHAMCLULEY.COM
📡 INFOSEC NEWS 17[−]
21 NovCyber Story Time: The Boy Who Cried "Secure!"As a relatively new security category, many security operators and executives I’ve met have asked us “What are these Automated Security Validation (ASV) tools?” We’ve covered that pretty extensively in the past, so today, instead of covering the “What is ASV?” I wanted to address…THEHACKERNEWS.COM
21 NovMicrosoft disrupts ONNX phishing-as-a-service infrastructure​Microsoft and the Justice Department have seized over 240 domains used by customers of ONNX, a phishing-as-a-service (PhaaS) platform, to target companies and individuals across the United States and worldwide since at least 2017. [...]BLEEPINGCOMPUTER.COM
21 NovThe Fragile Foundation of System Security... ExplainedSystem security is more fragile than you think! In this video, we dive deep into why backwards compatibility can break foundational systems and how EDR providers, including us, are navigating risky waters in kernel space. We’ll explore what makes these solutions fragile and why b…YOUTUBE.COM
21 NovStop Trusting Every App! What You Need to Know 🤯Did you know that every time you download an app and give it full access, you might be exposing yourself to major privacy risks? Apps can track your location, access data from other apps, and collect more than you'd expect. In this video, we break down why you should think twice …YOUTUBE.COM
21 NovWill Arrests Squash Scattered Spider's Cybercrime Assault?Members of Loosely Organized Group Recently Tied to Partnership With RansomHub Will the indictment of five alleged members of the loosely affiliated Scattered Spider cybercrime group disrupt its wider activities? The current count of known attacks tied to the group stands at over…DATABREACHTODAY.CO.UK
21 NovMicrosoft pulls WinAppSDK update breaking Windows 10 app uninstallsMicrosoft has confirmed that, since November 12, some Windows 10 users have been unable to update or uninstall packaged applications like Microsoft Teams. [...]BLEEPINGCOMPUTER.COM
21 NovSophos XDR: New generative AI functionality and case investigation enhancementsOperate confidently and make smart decisions fast with Sophos XDR.SOPHOS.COM
21 NovWindows 11 KB5046740 update released with 14 changes and fixes​Microsoft has released the November 2024 preview cumulative update for Windows 11 24H2, with 14 improvements and fixes for multiple issues, including some affecting File Explorer, the Clipboard history, and secondary displays. [...]BLEEPINGCOMPUTER.COM
21 NovBlack Friday Versus The BotsWhat can last year’s Black Friday shopping trends teach us about expected attacker behavior during the 2024 holiday shopping season?F5.COM
21 NovBlack Friday Versus The BotsWhat can last year’s Black Friday shopping trends teach us about expected attacker behavior during the 2024 holiday shopping season?F5.COM
21 NovBlack Friday Versus The BotsWhat can last year’s Black Friday shopping trends teach us about expected attacker behavior during the 2024 holiday shopping season?F5.COM