78Articles
10Categories
2024-11-25Date
🚨 CISA KEV 1[−]
25 Nov KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2023-28461 Array Networks AG and vxAG ArrayOS Improper Authentication Vulnerability These types of vulnerabilities are frequent attack vectors…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
25 Nov7-Zip RCE Vulnerability Let Attackers Execute Remote CodeA critical security vulnerability has been disclosed in the popular file archiving tool 7-Zip, allowing attackers to execute arbitrary code remotely. The flaw, identified as CVE-2024-11477, has been attributed to an integer underflow in the Zstandard decompression implementation,…GBHACKERS.COM
25 NovBotPoke Scanner Switches IPOur top talker changes up their infrastructure, and CVE-2023-1389 continues to hold the top spot.F5.COM
25 NovBotPoke Scanner Switches IPOur top talker changes up their infrastructure, and CVE-2023-1389 continues to hold the top spot.F5.COM
⚠️ VULNERABILITY DISCLOSURE 16[−]
25 NovWhat the cyber community should expect from the Trump transitionDonald Trump’s decisive win in this year’s presidential election promises to deliver radical changes to how the US government operates. Trump’s positions on a range of social, economic, and military issues, from immigration to human rights to the defense of Ukraine, represent sig…CSOONLINE.COM
25 NovTop challenges holding back CISOs’ agendasIn the past decade, every CISO knew the question awaiting them in the boardroom: Can we survive the next cyberattack? Now, as the turbulent 2024 draws to a close, the concerns have multiplied, says Don Gibson, the CISO at Kinly. Board members are often asking: Can we survive thes…CSOONLINE.COM
25 NovGoogle’s New Free Cybersecurity Certificate: Cyber Security Today for Monday, November 25, 2024Cybersecurity Today: Palo Alto Firewalls Breached, APT28's Wi-Fi Hack, Meta Fights Scams In today's episode, over 2,000 Palo Alto firewalls were hacked via patched zero-day vulnerabilities; a Russian group, APT28, exploited Wi-Fi networks in a novel 'Nearest Neighbor Attack' to b…CYBERSECURITYTODAY.LIBSYN.COM
25 NovVeritas Enterprise Vault Vulnerabilities Lets Attackers Execute Arbitrary Code RemotelyCritical security vulnerability has been identified in Veritas Enterprise Vault, a widely-used archiving and content management solution. The vulnerability, rated with a CVSS v3.1 Base Score of 9.8 (Critical), could allow attackers to execute arbitrary code on affected servers. T…GBHACKERS.COM
25 NovWeekly Update 427Presently sponsored by: 1Password Extended Access Management: Secure every sign-in for every app on every device. I was going to write about how much I've enjoyed "tinkering" with the HIBP API, but somehow, that term doesn't really seem appropriate any more fo…TROYHUNT.COM
25 NovMeta Removed 2 Million Account Linked to Malicious ActivitiesMeta has announced the removal of over 2 million accounts connected to malicious activities, including sophisticated fraud schemes such as “pig butchering.” This move is part of Meta’s ongoing effort to combat organized criminal networks that exploit social medi…GBHACKERS.COM
25 NovXSS Vulnerability in Bing.com Let Attackers Send Crafted Malicious RequestsA significant XSS vulnerability was recently uncovered in Microsoft’s Bing.com, potentially allowing attackers to execute malicious JavaScript and send crafted requests to interconnected Microsoft applications like Outlook, OneDrive, and Copilot. The exploit leveraged the trust p…GBHACKERS.COM
25 NovGame of Emperor: Unveiling Long Term Earth Estries Cyber Intrusionssubmitted by Joker to cybersecurity 1 points | 0 comments https://www.trendmicro.com/en_us/research/24/k/earth-estries.html Summary > - Earth Estries, a Chinese APT group, has primarily targeted critical sectors like telecommunications and government entities across the US, As…INFOSEC.PUB
25 NovCybersecurity Blind Spots in IaC and PaC Tools Expose Cloud Platforms to New AttacksCybersecurity researchers have disclosed two new attack techniques against infrastructure-as-code (IaC) and policy-as-code (PaC) tools like HashiCorp's Terraform and Open Policy Agent (OPA) that leverage dedicated, domain-specific languages (DSLs) to breach cloud platforms and ex…THEHACKERNEWS.COM
25 NovPerfctl Campaign Exploits Millions of Linux Servers for Crypto Mining and Proxyjackingsubmitted by Joker to cybersecurity 0 points | 0 comments https://socradar.io/perfctl-campaign-exploits-millions-of-linux-servers-for-crypto-mining-and-proxyjacking/ Linux servers, the backbone of countless organizations worldwide, have recently come under siege by a stealthy and…INFOSEC.PUB
25 NovStudy Finds 76% of Cybersecurity Professionals Believe AI Should Be Heavily Regulatedsubmitted by Mindwolf to cybersecurity 1 points | 0 comments https://www.darkreading.com/cloud-security/study-finds-76-of-cybersecurity-professionals-believe-ai-should-be-heavily-regulated As artificial intelligence (AI) continues to revolutionize industries, the cybersecurity fi…SH.ITJUST.WORKS
25 NovThreat Actors Exploit Google Docs And Weebly Services For Malware AttacksPhishing attackers used Google Docs to deliver malicious links, bypassing security measures and redirecting victims to fake login pages hosted on Weebly, targeting telecommunications and financial sectors in late October 2024. Financially motivated threat actors exploit Weebly…GBHACKERS.COM
25 NovRecent Zyxel Firewall Vulnerability Exploited in Ransomware AttacksA ransomware group has been observed exploiting a recently patched command injection vulnerability in Zyxel firewalls for initial access. The post Recent Zyxel Firewall Vulnerability Exploited in Ransomware Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
25 NovBigger and badder: how DDoS attack sizes have evolved over the last decadesubmitted by Joker to cybersecurity 1 points | 0 comments https://blog.cloudflare.com/bigger-and-badder-how-ddos-attack-sizes-have-evolved-over-the-last-decade/ Distributed Denial of Service (DDoS) attacks are cyberattacks that aim to overwhelm and disrupt online services, making…INFOSEC.PUB
25 NovBlack Basta Ransomware Group Retools for Strategic AttacksSocial Engineering Moves Mirror Nation-State Groups' Tactics, Researchers Say The Black Basta ransomware group has been refining its social engineering tactics to amass more victims despite escalating law enforcement disruptions, together with a shift to more "strategic, long-ter…DATABREACHTODAY.CO.UK
25 NovRussian Hackers Exploit WiFi in Sophisticated New Attack'Nearest Neighbor Attack' Bypasses Cyber Defenses by Breaching WiFi Networks A Russian cyberespionage group hacked a Washington, D.C.-based organization focused on Ukraine by deploying a new attack technique that exploits Wi-Fi connectivity, according to new research. The "neares…DATABREACHTODAY.CO.UK
📋 SECURITY BULLETINS 1[−]
25 NovQNAP addresses critical flaws across NAS, router softwareQNAP has released security bulletins over the weekend, which address multiple vulnerabilities, including three critical severity flaws that users should address as soon as possible. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 9[−]
25 NovResearchers Uncover Malware Using BYOVD to Bypass Antivirus ProtectionsCybersecurity researchers have uncovered a new malicious campaign that leverages a technique called Bring Your Own Vulnerable Driver (BYOVD) to disarm security protections and ultimately gain access to the infected system. "This malware takes a more sinister route: it drops a leg…THEHACKERNEWS.COM
25 NovSecurity Analysis of the MERGE Voting ProtocolInteresting analysis: An Internet Voting System Fatally Flawed in Creative New Ways . Abstract: The recently published “MERGE” protocol is designed to be used in the prototype CAC-vote system. The voting kiosk and protocol transmit votes over the internet and then tra…SCHNEIER.COM
25 NovPyPI Python Library "aiocpa" Found Exfiltrating Crypto Keys via Telegram BotThe administrators of the Python Package Index (PyPI) repository have quarantined the package "aiocpa" following a new update that included malicious code to exfiltrate private keys via Telegram. The package in question is described as a synchronous and asynchronous Crypto Pay AP…THEHACKERNEWS.COM
25 NovExperts Urge Sober Assessment of Russian HackingSpeech by UK Minister Pat McFadden Sparks Backlash A warning from a British government official over Russian cyberwar sparked backlash from cybersecurity specialists who urged a measured approach. Russian attacks could "turn the lights off for millions of people," said Pat McFadd…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 13[−]
25 NovMassive Credit Card Leak, Database of 1,221,551 Cards Circulating on Dark WebA massive data breach has sent shockwaves across the globe, as a database containing sensitive financial information for over 1.2 million credit cards has been leaked on the dark web. According to reports from cybersecurity watchers, the database was shared for free, making it ac…GBHACKERS.COM
25 NovRussian Cyberspies Hacked Building Across Street From Target for Wi-Fi AttackRussian cyberspy group APT28 conducted a Nearest Neighbor Attack, where it hacked into the building across the street from the victim for a Wi-Fi attack. The post Russian Cyberspies Hacked Building Across Street From Target for Wi-Fi Attack appeared first on SecurityWeek .SECURITYWEEK.COM
25 NovMicrolise Confirms Data Breach as Ransomware Group Steps ForwardThe SafePay ransomware group claims to have stolen over 1 terabyte of data from vehicle tracking solutions provider Microlise. The post Microlise Confirms Data Breach as Ransomware Group Steps Forward appeared first on SecurityWeek .SECURITYWEEK.COM
25 NovTHN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 18 - Nov 24)We hear terms like “state-sponsored attacks” and “critical vulnerabilities” all the time, but what’s really going on behind those words? This week’s cybersecurity news isn’t just about hackers and headlines—it’s about how digital risks shape our lives in ways we might not even re…THEHACKERNEWS.COM
25 NovCyberVolk | A Deep Dive into the Hacktivists, Tools and Ransomware Fueling Pro-Russian Cyber Attackssubmitted by Joker to cybersecurity 1 points | 0 comments https://www.sentinelone.com/labs/cybervolk-a-deep-dive-into-the-hacktivists-tools-and-ransomware-fueling-pro-russian-cyber-attacks/ Executive Summary > - CyberVolk/GLORIAMIST is a hacktivist collective originating in In…INFOSEC.PUB
25 NovVossko von Ransomware-Attacke getroffenDie Systeme des Lebensmittelproduzenten Vossko wurden von Hackern angegriffen. Vossko Nach eigenen Angaben hat Vossko am 14. November einen Cyberangriff erlitten. Die Täter hatten dabei die Systeme des Lebensmittelherstellers verschlüsselt. Die Produktion musste deshalb vorüberge…CSOONLINE.COM
25 NovHalcyon Raises $100 Million at $1 Billion ValuationSeries C Funding round brings the total amount raised by the ransomware protection firm to $190 million. The post Halcyon Raises $100 Million at $1 Billion Valuation appeared first on SecurityWeek .SECURITYWEEK.COM
25 NovFlipaClip animation app data breach exposes details of almost 900,000 usersFlipaclip, an animation creation app that is particularly popular with youngsters, has exposed the details of over 890,000 users. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
25 NovNew York Fines Geico, Travelers $11.3M for Data BreachesFines Tied to Wave of 2021 Driver's License Number Theft New York state authorities fined auto insurance giant Geico $9.75 million for failing to protect customers' driver's license numbers during a wave of cyber incidents in early 2021. Travelers will pay $1.55 million after hac…DATABREACHTODAY.CO.UK
25 NovDOJ: Man hacked networks to pitch cybersecurity servicesA Kansas City man has been indicted for allegedly hacking into computer networks and using this access to promote his cybersecurity services. [...]BLEEPINGCOMPUTER.COM
25 NovBlue Yonder ransomware attack disrupts grocery store supply chainSupply chain management firm Blue Yonder is warning that a ransomware attack caused significant disruption to its services, with the outages impacting grocery store chains in the UK. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 20[−]
25 NovMicrosoft shares latest intelligence on North Korean and Chinese threat actors at CYBERWARCONsubmitted by Joker to cybersecurity 1 points | 0 comments https://www.microsoft.com/en-us/security/blog/2024/11/22/microsoft-shares-latest-intelligence-on-north-korean-and-chinese-threat-actors-at-cyberwarcon/INFOSEC.PUB
25 NovGame of Emperor: Unveiling Long Term Earth Estries Cyber IntrusionsSince 2023, APT group Earth Estries has aggressively targeted key industries globally with sophisticated techniques and new backdoors, like GHOSTSPIDER and MASOL RAT, for prolonged espionage operations.TRENDMICRO.COM
25 NovUK seeks collaboration for security research lab to counter Russia and ‘new AI arms race’The U.K. is seeking collaboration for a new AI security research lab that’s designed to counter Russia and other hostile states in what it dubs the “new AI arms race.” While the U.K. government has launched numerous funding initiatives in the past to support cyb…TECHCRUNCH.COM
25 NovNorth Korea Deploying Fake IT Workers in China, Russia, Other CountriesThe North Korean fake IT workers have infiltrated businesses in China, Russia, and other countries aside from the US. The post North Korea Deploying Fake IT Workers in China, Russia, Other Countries appeared first on SecurityWeek .SECURITYWEEK.COM
25 NovChinese hackers preparing for conflict, US cyber official sayssubmitted by kid to cybersecurity 1 points | 0 comments https://www.reuters.com/technology/cybersecurity/chinese-hackers-preparing-conflict-says-us-cyber-official-2024-11-22/SH.ITJUST.WORKS
25 NovHackers abuse Avast anti-rootkit driver to disable defensessubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/hackers-abuse-avast-anti-rootkit-driver-to-disable-defenses/SH.ITJUST.WORKS
25 NovVisio Trust Raises $7 Million for Third-Party Risk Management PlatformSan Francisco-based third-party risk management provider Visio Trust has raised $7 million in venture funding. The post Visio Trust Raises $7 Million for Third-Party Risk Management Platform appeared first on SecurityWeek .SECURITYWEEK.COM
25 NovFinding vulnerabilities in ClipSp, the driver at the core of Windows’ Client License Platformsubmitted by Joker to cybersecurity 1 points | 0 comments https://blog.talosintelligence.com/finding-vulnerabilities-in-clipsp-the-driver-at-the-core-of-windows-client-license-platform/ ClipSP (clipsp.sys) is a Windows driver used to implement client licensing and system policies…INFOSEC.PUB
25 NovPython NodeStealer: Targeting Facebook Business Accounts to Harvest Login CredentialsThe Python-based NodeStealer, a sophisticated info-stealer, has evolved to target new information and employ advanced techniques, whereas recent variants focus on stealing Facebook Ads Manager budget details, potentially enabling malicious ad campaigns. Now they pilfer credit car…GBHACKERS.COM
25 NovUS National Security Officials Brief Telecom ExecutivesNational Security Officials Share Intelligence on a Cyberespionage Campaign The White House on Friday hosted U.S. telecommunications executives to review the country's cyber resilience posture and share intelligence pertaining to China's "significant cyberespionage campaign targe…DATABREACHTODAY.CO.UK
25 NovVulnerabilities Expose mySCADA myPRO Systems to Remote HackingCritical vulnerabilities patched by mySCADA in its myPRO HMI/SCADA product can allow remote and unauthenticated takeover of the system. The post Vulnerabilities Expose mySCADA myPRO Systems to Remote Hacking appeared first on SecurityWeek .SECURITYWEEK.COM
25 NovTesla, Druids, Salt Typhoon, North Korea, Amazon, Microsoft, Google, Joshua Marpet... - SWN #433Tesla, Druids, Salt Typhoon, North Korea, Amazon, Microsoft, Google, Joshua Marpet, and More, on this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-433YOUTUBE.COM
25 NovNotorious Ursnif Banking Trojan Uses Stealthy Memory Execution To Avoid Detectionsubmitted by Joker to cybersecurity 1 points | 0 comments https://cyble.com/blog/ursnif-trojan-hides-with-stealthy-tactics Key takeaways > - Cyble Research and Intelligence Labs (CRIL) has identified a malicious campaign likely targeting business professionals across the Unite…INFOSEC.PUB
25 NovPrivate videoconferencing ?submitted by Gordon_F to cybersecurity 1 points | 0 comments cross-posted from: lemmy.ml/post/22893407 Hi, I’m looking for a E2EE and decentralized (or self hosted) videoconferencing that would have the following feature video or voice-only call share screen files transfer (optio…SH.ITJUST.WORKS
25 NovSouth Asian hackers target Pakistani entities in new espionage campaignsubmitted by Joker to cybersecurity 1 points | 0 comments https://therecord.media/south-asian-hackers-target-pakistan-entities-in-espionage-campaign A threat actor known as Mysterious Elephant has been observed targeting Pakistani entities in a new espionage campaign.INFOSEC.PUB
25 NovStoked — Manifesting Innovation in Shared Threat IntelligenceExplore how skateboarding's collaborative spirit mirrors sharing threat intelligence in cybersecurity, fostering innovation and collective defense against emerging threats. The post Stoked — Manifesting Innovation in Shared Threat Intelligence appeared first on Palo Alto Networks…PALOALTONETWORKS.COM
25 Nov2nd Edition: How to Measure Anything in Cybersecurity Risk - Doug Hubbard - BSW VaultCheck out this episode from the BSW Vault, hand picked by main host Matt Alderman! This segment was originally published on Jan 24, 2023. Richard Seiersen and our guest, Doug Hubbard, are finishing the second edition of How to Measure Anything in Cybersecurity Risk. Doug is here …YOUTUBE.COM
25 NovMedical Specialty Groups: Why Cybercriminals are After ThemHacks on 2 Specialty Practices Are Latest on Increasingly Targeted Types of Groups An Illinois gastroenterology practice and a California pulmonary practice are among the latest medical specialty groups targeted by cybercriminals who claim to have their patients' sensitive health…DATABREACHTODAY.CO.UK
25 NovMysterious Elephant Using Hajj-Themed Bait in AttacksGroup Deploys Upgraded Malware Disguised as Microsoft File on Pilgrimage Goers A South Asian threat actor identified as Mysterious Elephant or APT-K-47 by Knownsec 404 researchers is using a Hajj-themed lure to trick victims into malicious payload disguised as a Windows file. The…DATABREACHTODAY.CO.UK
25 NovCrosspoint to Invest $5M in Each Innovation Sandbox FinalistMoney Aims to Simplify Fundraising for RSA Conference Innovation Sandbox Finalists Finalists selected for RSA Conference’s Innovation Sandbox competition will now each receive a $5 million investment from Crosspoint Capital. Managing Partner Hugh Thompson said this initiative ens…DATABREACHTODAY.CO.UK
🌐 CYBER THREAT LANDSCAPE 2[−]
25 NovFlying Under the Radar - Security Evasion TechniquesDive into the evolution of phishing and malware evasion techniques and understand how attackers are using increasingly sophisticated methods to bypass security measures. The Evolution of Phishing Attacks “I really like the saying that ‘This is out of scope’ said no hacker ever. W…THEHACKERNEWS.COM
25 NovSalt Typhoon hackers backdoor telcos with new GhostSpider malwareThe Chinese state-sponsored hacking group Salt Typhoon has been observed utilizing a new "GhostSpider" backdoor in attacks against telecommunication service providers. [...]BLEEPINGCOMPUTER.COM
🎙️ PODCASTS 1[−]
25 NovIs Working 16 Hours a Day the Only Way to Succeed?💼 Ever wondered if the 16-hour workday myth is real for startup founders? In this short, we dive into the hustle of building a company, finding the right team, and the toll it takes. 😓 Hear from experienced founders as they reveal the truth behind the long hours and if there's ev…YOUTUBE.COM
📡 INFOSEC NEWS 12[−]
25 NovIndustry Moves for the week of November 25, 2024 - SecurityWeekExplore industry moves and significant changes in the industry for the week of November 25, 2024. Stay updated with the latest industry trends and shifts.SECURITYWEEK.COM
25 NovBlack Friday 2024: how to safeguard your finances against scammers | Kaspersky official blogHow to avoid getting scammed on Black Friday.KASPERSKY.COM
25 NovThe strange case of disappearing Russian servers, (Mon, Nov 25th)Few months ago, I noticed that something strange was happening with the number of servers seen by Shodan in Russia... ISC.SANS.EDU
25 NovHow The ZX Spectrum Became A 1980s IconPACKETSTORMSECURITY.COM
25 NovGoogle's New Restore Credentials Tool Simplifies App Login After Android MigrationGoogle has introduced a new feature called Restore Credentials to help users restore their account access to third-party apps securely after migrating to a new Android device. Part of Android's Credential Manager API, the feature aims to reduce the hassle of re-entering the login…THEHACKERNEWS.COM
25 NovMicrosoft 365 outage impacts Exchange Online, Teams, SharepointMicrosoft is working on fixing an ongoing and widespread Microsoft 365 outage that is impacting multiple services and features, including Exchange Online, Microsoft Teams, and SharePoint Online. [...]BLEEPINGCOMPUTER.COM
25 NovEmbracing a Risk-Based Cybersecurity Approach With ASRMExplore how a risk-based cybersecurity approach is critical to proactively stopping dynamic, ever-evolving threatsTRENDMICRO.COM
25 NovMicrosoft blocks Windows 11 24H2 on some PCs with USB scannersMicrosoft now blocks the Windows 11 24H2 update on computers with standalone scanners, multi-function printers, fax machines, modems, and other network devices with eSCL protocol support. [...]BLEEPINGCOMPUTER.COM
25 NovAuthorities catch ‘SMS blaster’ gang that drove around Bangkok sending thousands of phishing messagesThai authorities said the crime gang sent around a million malicious SMS text messages to nearby residents over a three-day period in November. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
25 NovNew Windows 10 0x80073CFA fix requires installing WinAppSDK 3 timesMicrosoft has shared a new method to fix a bug preventing app uninstalls or updates on Windows 10 for those unwilling to deploy this month's preview update. [...]BLEEPINGCOMPUTER.COM