81Articles
8Categories
2024-11-27Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
27 NovNVIDIA UFM Vulnerability Leads to Privilege Escalation & Data TamperingNVIDIA has released a critical security update addressing a significant vulnerability in its Unified Fabric Manager (UFM) products. This flaw, identified as CVE-2024-0130, poses a high-severity risk to users, with a CVSS v3.1 base score of 8.8. The vulnerability could allow attac…GBHACKERS.COM
27 Nov KEVProjectSend Authentication Vulnerability Exploited in the WildProjectSend, an open-source file-sharing web application, has become a target of active exploitation following the recent assignment of CVE-2024-11680 on November 25, 2024. Despite the availability of a patch for more than a year, adoption rates remain alarmingly low, leaving man…GBHACKERS.COM
27 NovRussian APT RomCom combines Firefox and Windows zero-day flaws in drive-by exploitA Russia-aligned group that engages in both cybercrime and cyberespionage operations used a zero-click exploit chain last month that combined previously unknown and unpatched vulnerabilities in Firefox and Windows. The campaign, whose goal was to deploy the group’s RomCom backdoo…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 30[−]
27 NovMatrix Botnet Exploits IoT Devices in Widespread DDoS Botnet CampaignA threat actor named Matrix has been linked to a widespread distributed denial-of-service (DoD) campaign that leverages vulnerabilities and misconfigurations in Internet of Things (IoT) devices to co-opt them into a disruptive botnet. "This operation serves as a comprehensive one…THEHACKERNEWS.COM
27 NovCybersecurity’s oversimplification problem: Seeing AI as a replacement for human agencyThere’s a philosophical concept called the Great Man Theory that suggests history is all about how significant individuals act as centers of gravity for society as a whole — think Alexander the Great, Napoleon Bonaparte, Queen Elizabeth I, or the founding fathers of the American …CSOONLINE.COM
27 NovCritical Gitlab Vulnerability Let Attackers Escalate PrivilegesGitLab, a widely used platform for DevOps lifecycle management, has released critical security updates for its Community Edition (CE) and Enterprise Edition (EE). The updates address multiple vulnerabilities, including a high-severity issue that could allow attackers to escalate …GBHACKERS.COM
27 NovStarbucks Issues Manual Pay To Employees During Ransomware Attack: Cyber Security Today for Wednesday, November 27th, 2024Retailers Face AI Bot Attacks, Avast Exploit, and Starbucks Ransomware Challenges In this episode of 'Cybersecurity Today,' host Jim Love covers the latest cyber threats impacting retailers, including AI-powered bot attacks and ransomware incidents. Discover how hackers are explo…CYBERSECURITYTODAY.LIBSYN.COM
27 NovINTERPOL Busts African Cybercrime: 1,006 Arrests, 134,089 Malicious Networks DismantledAn INTERPOL-led operation has led to the arrest of 1,006 suspects across 19 African countries and the takedown of 134,089 malicious infrastructures and networks as part of a coordinated effort to disrupt cybercrime in the continent. Dubbed Serengeti, the law enforcement exercise …THEHACKERNEWS.COM
27 NovRussian APT Chained Firefox and Windows Zero-Days Against US and European TargetsThe Russia-linked RomCom APT has been observed chaining two zero-days in Firefox and Windows for backdoor delivery. The post Russian APT Chained Firefox and Windows Zero-Days Against US and European Targets appeared first on SecurityWeek .SECURITYWEEK.COM
27 NovNew VPN Attack Demonstrated Against Palo Alto Networks, SonicWall ProductsPalo Alto Networks and SonicWall VPNs affected by vulnerabilities allowing remote code execution and privilege escalation. The post New VPN Attack Demonstrated Against Palo Alto Networks, SonicWall Products appeared first on SecurityWeek .SECURITYWEEK.COM
27 Nov KEVProjectSend Vulnerability Exploited in the WildVulnCheck warns of widespread exploitation of a year-and-a-half-old ProjectSend vulnerability for which multiple public exploits exist. The post ProjectSend Vulnerability Exploited in the Wild appeared first on SecurityWeek .SECURITYWEEK.COM
27 NovAPT-C-60 Exploits WPS Office Vulnerability to Deploy SpyGlace BackdoorThe threat actor known as APT-C-60 has been linked to a cyber attack targeting an unnamed organization in Japan that used a job application-themed lure to deliver the SpyGlace backdoor. That's according to findings from JPCERT/CC, which said the intrusion leveraged legitimate ser…THEHACKERNEWS.COM
27 NovSource Code of $3,000-a-Month macOS Malware ‘Banshee Stealer’ LeakedThe Banshee Stealer macOS malware operation, which emerged earlier this year, was reportedly shut down following a source code leak. The post Source Code of $3,000-a-Month macOS Malware ‘Banshee Stealer’ Leaked appeared first on SecurityWeek .SECURITYWEEK.COM
27 NovResearchers Discover "Bootkitty" – First UEFI Bootkit Targeting Linux KernelsCybersecurity researchers have shed light on what has been described as the first Unified Extensible Firmware Interface (UEFI) bootkit designed for Linux systems. Dubbed Bootkitty by its creators who go by the name BlackCat, the bootkit is assessed to be a proof-of-concept (PoC) …THEHACKERNEWS.COM
27 NovKostenlose KI-Apps als KöderHacker tarnen ihre Malware inzwischen auch als kostenlose KI-Apps. Who is Danny – Shutterstock.com Kostenfreie Apps haben schon immer Mitarbeiter angelockt, die damit ihre Arbeit erleichtern möchten. Wenn man jedoch heutzutage das Wort „kostenlos“ mit „KI“ kombiniert, ist der Köd…CSOONLINE.COM
27 NovWhat makes a trailblazer? Inspired by John Mulaney’s Dreamforce roastWhen you bring a comedian to offer a keynote address, you need to expect the unexpected. But it is a good bet that no one in the crowd at Salesforce’s Dreamforce conference expected John Mulaney to tell a crowd of thousands of tech trailblazers that they were, in fact, not …SECURITYINTELLIGENCE.COM
27 NovPolice bust pirate streaming service making €250 million per monthAn international law enforcement operation has dismantled a pirate streaming service that served over 22 million users worldwide and made €250 million ($263M) per month. [...]BLEEPINGCOMPUTER.COM
27 NovLazarus Hackers Exploits macOS Extended Attributes To Evade DetectionThe xattr command in Unix-like systems allows for the embedding of hidden metadata within files, similar to Windows ADS, known as Rustyattr, which is being exploited by threat actors like Lazarus Group to stealthily conceal malicious payloads within seemingly benign files. The La…GBHACKERS.COM
27 NovGaming Engines: An Undetected Playground for Malware Loaderssubmitted by Joker to cybersecurity 1 points | 0 comments https://research.checkpoint.com/2024/gaming-engines-an-undetected-playground-for-malware-loaders/ Key Points > - Check Point Research discovered a new technique taking advantage of Godot Engine, a popular open-source ga…INFOSEC.PUB
27 Nov KEVProjectSend Vulnerability Exploited In The WildPACKETSTORMSECURITY.COM
27 NovSource Code Of macOS Banshee Stealer LeakedPACKETSTORMSECURITY.COM
27 NovCritical Flaw in ProjectSend Under Active Exploitation Against Public-Facing ServersA critical security flaw impacting the ProjectSend open-source file-sharing application has likely come under active exploitation in the wild, according to findings from VulnCheck. The vulnerability, originally patched over a year-and-a-half ago as part of a commit pushed in May …THEHACKERNEWS.COM
27 NovWhy the MITRE ATT&CK Evaluation Is Essential for Security LeadersIn today’s dynamic threat landscape, security leaders are under constant pressure to make informed choices about which solutions and strategies they employ to protect their organizations. The “MITRE Engenuity ATT&CK Evaluations: Enterprise” stands out as an essential res…GBHACKERS.COM
27 NovFortinet Zero-Day: The Shocking Truth Revealed! 🔒 #ZeroDayHackers have exploited a critical zero-day vulnerability in Fortinet’s VPN software, and the results are chilling. This attack allows them to dump credentials straight from memory, leaving users completely exposed. If you’re using Fortinet’s FortiClient on Windows, this is a wake…YOUTUBE.COM
27 NovNearly Every Hacker Believes AI Tools Have Created a New Attack VectorA new survey of hackers shows that AI is not only empowering hackers to be more effective, but that AI itself is “ripe for exploitation.”KNOWBE4.COM
27 NovBlack Friday Gets a Fakeover: Fake Stores Spike 110% by Using LLMs this Holiday Shopping Seasonsubmitted by Joker to cybersecurity 1 points | 0 comments https://www.netcraft.com/blog/2024-llm-powered-fake-online-shopping-site-surge/ This article explores Netcraft’s research into the global growth of fake stores, including activity that makes use of the e-commerce platform …INFOSEC.PUB
27 NovA 9.3 Risk Level?! Palo Alto Sounds the Alarm🚨 Palo Alto has issued a CRITICAL warning about a security flaw rated 9.3 on the CVSS scale! This vulnerability could allow an authentication bypass on PAN-OS appliances, putting devices at serious risk. When even the vendor says, “This is bad,” you know it’s time to act. Learn w…YOUTUBE.COM
27 NovBusKill Dead Man Switch now available in a brick-and-mortar in The Netherlands 🧱🛡️submitted by buskill to cybersecurity 2 points | 0 comments https://www.buskill.in/netherlands-novacustom 🇳🇱 Nederlandse versie van dit artikel 🇫🇷 Version française de cet article 🇩🇪 Deutsche Version dieses Artikels We’re happy to announce that BusKill cables can now be purchased…SH.ITJUST.WORKS
27 NovBusKill Dead Man Switch now available in a brick-and-mortar in The Netherlands 🧱🛡️submitted by buskill to cybersecurity 1 points | 0 comments https://www.buskill.in/netherlands-novacustom 🇳🇱 Nederlandse versie van dit artikel 🇫🇷 Version française de cet article 🇩🇪 Deutsche Version dieses Artikels We’re happy to announce that BusKill cables can now be purchased…INFOSEC.PUB
27 NovScript Kiddie 'Matrix' Builds Massive BotnetLikely Russian Hacker Exploits IoT Vulnerabilities, Many Known for Years An apparent Russian script kiddie is converting widespread security gaps into powerful botnets capable of launching global-scale distributed denial-of-service attacks. A threat actor with the online moniker …DATABREACHTODAY.CO.UK
27 NovHackers exploit ProjectSend flaw to backdoor exposed serversThreat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote access to servers. [...]BLEEPINGCOMPUTER.COM
27 NovHackers abuse popular Godot game engine to infect thousands of PCs​Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and infect over 17,000 systems in just three months. [...]BLEEPINGCOMPUTER.COM
📋 SECURITY BULLETINS 2[−]
27 NovFirefox 133.0 Released with Multiple Security Updates – What’s New!Mozilla has officially launched Firefox 133.0, offering enhanced features, significant performance improvements, and critical security fixes. This latest release enhances privacy, developer tools, and enterprise functionality while introducing several new features and updates. He…GBHACKERS.COM
27 NovMicrosoft re-releases Exchange updates after fixing mail delivery​Microsoft has re-released the November 2024 security updates for Exchange Server after pulling them earlier this month due to email delivery issues on servers using custom mail flow rules. [...]BLEEPINGCOMPUTER.COM
📢 SECURITY ADVISORIES 6[−]
27 NovCyberbedrohungen erkennen und reagieren: Was NDR, EDR und XDR unterscheidetMit Hilfe von NDR, EDR und XDR können Unternehmen Cyberbedrohungen in ihrem Netzwerk aufspüren. Foto: alphaspirit.it – shutterstock.com Die ständig wachsende Zahl von Abkürzungen in der IT-Sicherheit macht es schwierig, den Überblick zu behalten und einzelne Technologien zu vergl…CSOONLINE.COM
27 NovBipartisan Legislation Seeks Stronger Healthcare CybersecurityUS senators introduce new legislation to protect health data and strengthen the cybersecurity of the country’s healthcare sector. The post Bipartisan Legislation Seeks Stronger Healthcare Cybersecurity appeared first on SecurityWeek .SECURITYWEEK.COM
27 NovCISA Strongly Recommends Phishing-Resistant MFAWe are excited to see the Cybersecurity Infrastructure Security Agency (CISA) and outgoing Director Jen Easterly strongly recommend PHISHING-RESISTANT multi-factor authentication (MFA).KNOWBE4.COM
27 NovNew EU Tech Commissioner to Focus on Tech SovereigntyHenna Virkkunen Vows to Boost European innovation, Cut Regulations Newly-designed European Union tech commissioner Henna Virkkunen will lead efforts to establish Europe's tech sovereignty, said European Commission President Ursula von der Leyen, who will start a second term on De…DATABREACHTODAY.CO.UK
27 NovBug causes Cloudflare to lose customer logsA Wednesday blog post from Cloudflare revealed that a software bug resulted in the loss of about 55% of the logs that would have been sent to customers over a 3.5-hour period on 14 November. The company explained that every part of its global network of services generates event l…CSOONLINE.COM
🔥 INCIDENT REPORTING 11[−]
27 NovJunior School Student Indicted for Infecting Computers With MalwareFukui Prefectural Police have indicted a 15-year-old junior high school student from Saitama Prefecture for allegedly creating and distributing malware. The young suspect, who was only 14 at the time of the incidents, faces charges under Japan’s Unauthorized Access Preventi…GBHACKERS.COM
27 NovA US soldier is suspected of being behind the massive Snowflake data leakOne of the hackers who masterminded the Snowflake credential leak that led to the threat actors stealing data from and extorting at least 165 companies , including 560 million Ticketmaster and 110 AT&T customers, could be a US soldier, according to cybersecurity journalist Br…CSOONLINE.COM
27 NovPatients sent home after cyberattack hits UK hospitalssubmitted by kid to cybersecurity 4 points | 0 comments https://cybernews.com/news/wirral-nhs-trust-hospitals-cyberattack/SH.ITJUST.WORKS
27 NovLatest Multi-Stage Attack Scenarios with Real-World ExamplesMulti-stage cyber attacks, characterized by their complex execution chains, are designed to avoid detection and trick victims into a false sense of security. Knowing how they operate is the first step to building a solid defense strategy against them. Let's examine real-world exa…THEHACKERNEWS.COM
27 NovChinese hackers breached T-Mobile's routers to scope out networkT-Mobile says the Chinese "Salt Typhoon" hackers who recently compromised its systems as part of a series of telecom breaches first hacked into some of its routers to explore ways to navigate laterally through the network. [...]BLEEPINGCOMPUTER.COM
27 NovZello asks users to reset passwords after security incidentZello is warning customers to reset their passwords if their account was created before November 2nd in what appears to be another security breach. [...]BLEEPINGCOMPUTER.COM
27 NovT-Mobile Disputes Claims of Chinese Hack on Customer DataT-Mobile Blocks Hackers But Warns Other U.S. Networks May Be Compromised T-Mobile disputed claims Wednesday that Chinese state-sponsored hackers breached its systems and stole customer data, warning that some U.S. communications networks may still be compromised and detailing how…DATABREACHTODAY.CO.UK
27 NovHacker Heroes - Aaron Turner - PSW VaultIn this Hacker Heroes episode, we sit down with Aaron Turner, a highly respected figure in the realm of cybersecurity. With a career spanning decades, Aaron has established himself as a thought leader and authority on various aspects of information security. As a seasoned cyberse…YOUTUBE.COM
27 NovRisky Business #772 -- Salt Typhoon is truly a national security disasterOn this week’s show, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: A ransomware attack has crippled US supply chain software provider Blue Yonder Russian spies hack nearby wifi to get to their targets, but that doesn’t seem surprising? Salt Typho…RISKY.BIZ
🕵️ THREAT INTELLIGENCE 14[−]
27 NovISC Stormcast For Wednesday, November 27th, 2024 https://isc.sans.edu/podcastdetail/9234, (Wed, Nov 27th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
27 NovPSLoramyra: Technical Analysis of Fileless Malware Loadersubmitted by Joker to cybersecurity 1 points | 0 comments https://any.run/cybersecurity-blog/psloramyra-malware-technical-analysis/ In this article, we’ll explore a malicious loader known as PSLoramyra. This advanced malware leverages PowerShell, VBS, and BAT scripts to inject ma…INFOSEC.PUB
27 NovSANS ISC Internship Setup: AWS DShield Sensor + DShield SIEM [Guest Diary], (Tue, Nov 26th)[This is a Guest Diary by John Paul Zaguirre , an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
27 NovNSO Group Spies on People on Behalf of GovernmentsThe Israeli company NSO Group sells Pegasus spyware to countries around the world (including countries like Saudi Arabia, UAE, India, Mexico, Morocco and Rwanda). We assumed that those countries use the spyware themselves. Now we’ve learned that that’s not true: that …SCHNEIER.COM
27 NovPhilippine Entrepreneur Combines Blockchain Innovation with Environmental Conservation through Ora Coin FoundationCebu-based entrepreneur Brian Christopher Aguilar has emerged as a notable figure in the cryptocurrency sector, leveraging blockchain technology to support environmental sustainability. As the founder of Ora Coin Foundation, Brian has turned his humble beginnings into a remarkabl…GBHACKERS.COM
27 NovGood Projects for People Getting Started in Cybersecsubmitted by gwilikers to cybersecurity 2 points | 0 comments I’m looking at getting started in cybersecurity. I’m hoping to pass the CompTIA Security+ this month. Are there any projects that I could work on to improve my résumé?SH.ITJUST.WORKS
27 NovBootkitty: Analyzing the first UEFI bootkit for Linuxsubmitted by Joker to cybersecurity 1 points | 0 comments https://www.welivesecurity.com/en/eset-research/bootkitty-analyzing-first-uefi-bootkit-linux/ ESET researchers analyze the first UEFI bootkit designed for Linux systemsINFOSEC.PUB
27 Nov75% of Black Friday Spam Emails Are ScamsThree out of four Black Friday-themed spam emails are scams, according to researchers at Bitdefender. Most of these scams are targeting users in the US and Europe.KNOWBE4.COM
27 NovESET Flags Prototype UEFI Bootkit Targeting LinuxESET warns of a new reality: “UEFI bootkits are no longer confined to Windows systems alone.” The post ESET Flags Prototype UEFI Bootkit Targeting Linux appeared first on SecurityWeek .SECURITYWEEK.COM
27 NovMalicious Loan Apps Target Android Users in Africa, South America and AsiaResearchers at McAfee warn of a surge in malicious loan apps targeting Android users across South America, Southern Asia, and Africa.KNOWBE4.COM
27 NovData broker leaves 600K+ sensitive files exposed onlinesubmitted by PhilipTheBucket to cybersecurity 1 points | 0 comments https://go.theregister.com/feed/www.theregister.com/2024/11/27/600k_sensitive_files_exposed/SH.ITJUST.WORKS
27 NovUS Appeals Court Reverses Tornado Cash SanctionsDepartment of Treasury Overstepped its Authority, Fifth Circuit Rules A U.S. federal appeals court ruled U.S. Department of Treasury exceeded its authority by sanctioning Tornado Cash, a cryptocurrency mixing service used by North Korean hackers to launder more than $455 million.…DATABREACHTODAY.CO.UK
27 NovResearchers Discover "Bootkitty" – First UEFI Bootkit Targeting Linux Kernelssubmitted by kid to cybersecurity 3 points | 0 comments https://thehackernews.com/2024/11/researchers-discover-bootkitty-first.htmlSH.ITJUST.WORKS
27 NovBootkitty marks a new chapter in the evolution of UEFI threatsESET researchers make a discovery that signals a shift on the UEFI threat landscape and underscores the need for vigilance against future threatsWELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
27 NovResearchers discover first UEFI bootkit malware for LinuxThe first UEFI bootkit specifically targeting Linux systems has been discovered, marking a shift in stealthy and hard-to-remove bootkit threats that previously focused on Windows. [...]BLEEPINGCOMPUTER.COM
27 NovWhen Hackers Meet Tractors: Surprising Roles in IoT SecurityHow to Find a Career in Industrial IoT - on the Factory Floor or in the Cornfield Cybersecurity once conjured images of IT departments, server rooms and corporate firewalls. Today, it extends far beyond these traditional domains, becoming essential in fields like manufacturing, a…DATABREACHTODAY.CO.UK
📡 INFOSEC NEWS 13[−]
27 NovHacker in Snowflake Extortions May Be a U.S. SoldierTwo men have been arrested for allegedly stealing data from and extorting dozens of companies that used the cloud data storage company Snowflake, but a third suspect -- a prolific hacker known as Kiberphant0m -- remains at large and continues to publicly extort victims. However, …KREBSONSECURITY.COM
27 NovThe Black Friday 2024 Cybersecurity, IT, VPN, & Antivirus DealsBlack Friday 2024 is almost here, and great deals are already live in computer security, software, online courses, system admin services, antivirus, and VPN software. These promotions offer deep discounts from various companies and are only available for a limited time. [...]BLEEPINGCOMPUTER.COM
27 NovCloudflare says it lost 55% of logs pushed to customers for 3.5 hoursInternet security giant Cloudflare announced that it lost 55% of all logs pushed to customers over a 3.5-hour period due to a bug in the log collection service on November 14, 2024. [...]BLEEPINGCOMPUTER.COM
27 NovThe Android Split: Google's Boldest Fight Yet!Google might be facing its biggest challenge yet! The government is pushing to break up Android’s operating system from Google’s other products like Search and the Play Store, claiming it’s all part of a monopoly. But is this truly about fairness, or is Big Tech just too powerful…YOUTUBE.COM
27 NovMicrosoft says it's not using your Word, Excel data for AI training​Microsoft has denied claims that it uses Microsoft 365 apps (including Word, Excel, and PowerPoint) to collect data to train the company's artificial intelligence (AI) models. [...]BLEEPINGCOMPUTER.COM
27 NovT-Mobile says telco hackers had ‘no access’ to customer call and text message logsThe phone giant said hackers did not access the contents or logs of customer phone calls or text messages, during an industry-wide attack on phone and internet companies. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
27 NovInvestigators think a Chinese ship purposefully cut critical data cablesEuropean investigators believe that a Chinese commercial ship purposefully dragged its anchor in order to slash through two critical data cables. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
27 NovBootkitty: Analyzing the first UEFI bootkit for LinuxESET researchers analyze the first UEFI bootkit designed for Linux systemsWELIVESECURITY.COM