matlock.ca // THREAT INTELLIGENCE

110Articles

9Categories

2024-12-04Date

🚨

CISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-51378 CyberPanel Incorrect Default Permissions Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyb…

KEVCISA.GOV — Wed, 04 Dec 24 1

🐛

Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console

THEHACKERNEWS.COM — 04 Dec 2024

🐛

Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access

THEHACKERNEWS.COM — 04 Dec 2024

🐛

MobSF XSS Vulnerability Let Attackers Inject Malicious Scripts

GBHACKERS.COM — 04 Dec 2024

🐛

Veeam issues patch for critical RCE bug

CSOONLINE.COM — 04 Dec 2024

⚠️

BreakingWAF: Widespread WAF Bypass Impacts Nearly 40% of Fortune 100 companies

SH.ITJUST.WORKS — 4 Dec 2024

⚠️

Security-KPIs und -KRIs: So messen Sie Cybersicherheit

CSOONLINE.COM — 04 Dec 2024

⚠️

CISA Releases Advisory to Monitor Networks to Detect Malicious Cyber Actors

GBHACKERS.COM — 04 Dec 2024

⚠️

Joint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom Networks

THEHACKERNEWS.COM — 04 Dec 2024

⚠️

Talent overlooked: embracing neurodiversity in cybersecurity

CSOONLINE.COM — 04 Dec 2024

⚠️

Hackers Move From Data Theft To Complete Destruction: Cyber Security Today For Wednesday, December 4, 2024

CYBERSECURITYTODAY.LIBSYN.COM — 04 Dec 2024

⚠️

Progress WhatsUp Gold RCE Vulnerability – PoC Exploit Released

GBHACKERS.COM — 04 Dec 2024

⚠️

Google Chrome Security Update, Patch for High-severity Vulnerability

GBHACKERS.COM — 04 Dec 2024

⚠️

63% of companies plan to pass data breach costs to customers

CSOONLINE.COM — 04 Dec 2024

⚠️

Law Enforcement Read Criminals’ Messages After Hacking Matrix Service

SECURITYWEEK.COM — 04 Dec 2024

⚠️

How to Plan a New (and Improved!) Password Policy for Real-World Security Challenges

THEHACKERNEWS.COM — 04 Dec 2024

⚠️

10/10 directory traversal bug hits SailPoint's IdentityIQ

SH.ITJUST.WORKS — 4 Dec 2024

⚠️

CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks

SECURITYWEEK.COM — 04 Dec 2024

⚠️

Erstes Linux-UEFI-Bootkit ist Studentenprojekt

CSOONLINE.COM — 04 Dec 2024

⚠️

Russland knöpft sich Exil-Wodka vor

CSOONLINE.COM — 04 Dec 2024

⚠️

Linux Foundation report highlights the true state of open-source libraries in production apps

TECHCRUNCH.COM — 04 Dec 2024

⚠️

Cloud threat report: Possible trend in cloud credential “oversaturation”

SECURITYINTELLIGENCE.COM — 04 Dec 2024

⚠️

Neue AWS-KI-Rezepte gegen Cloud-Bedrohungen

CSOONLINE.COM — 04 Dec 2024

⚠️

Japan warns of IO-Data zero-day router flaws exploited in attacks

BLEEPINGCOMPUTER.COM — 04 Dec 2024

⚠️

Hackers Exploit Docker Remote API Servers To Inject Gafgyt Malware

GBHACKERS.COM — 04 Dec 2024

⚠️

Cloudflare Developer Domains Abused For Cyber Attacks

GBHACKERS.COM — 04 Dec 2024

⚠️

Security teams should act now to counter Chinese threat, says CISA

CSOONLINE.COM — 04 Dec 2024

⚠️

Russia-Linked Turla Exploits Pakistani Hackers' Servers to Target Afghan and Indian Entities

THEHACKERNEWS.COM — 04 Dec 2024

⚠️

CISA Releases New Public Version of CDM Data Model Document

CISA.GOV — Wed, 04 Dec 24 1

⚠️

Veeam Warns of Critical Vulnerability in Service Provider Console

SECURITYWEEK.COM — 04 Dec 2024

⚠️

Deloitte UK Hacked – Brain Cipher Group Claim to Have Stolen 1 TB of Data

GBHACKERS.COM — 04 Dec 2024

⚠️

UK disrupts Russian money laundering networks used by ransomware

BLEEPINGCOMPUTER.COM — 04 Dec 2024

⚠️

Fortinet offers integrated cloud app security service

NETWORKWORLD.COM — 04 Dec 2024

⚠️

European law enforcement breaks high-end encryption app used by suspects

CSOONLINE.COM — 04 Dec 2024

📋

Android’s December 2024 Security Update Patches 14 Vulnerabilities

SECURITYWEEK.COM — 04 Dec 2024

📢

“Crimenetwork” ausgehoben

CSOONLINE.COM — 04 Dec 2024

📢

CISA Releases Advisory to Monitor Networks to Detect Malicious Cyber Actors

SH.ITJUST.WORKS — 4 Dec 2024

📢

Google Chrome security advisory (AV24-691)

CYBER.GC.CA — 2024-12-04

📢

Veeam security advisory (AV24-692)

CYBER.GC.CA — 2024-12-04

📢

Six password takeaways from the updated NIST cybersecurity framework

BLEEPINGCOMPUTER.COM — 04 Dec 2024

📢

Largest German Crime Marketplace Taken Down, Administrator Arrested

SECURITYWEEK.COM — 04 Dec 2024

📢

Spy v Spy: Russian APT Turla Caught Stealing from Pakistani APT

SECURITYWEEK.COM — 04 Dec 2024

📢

Police Shutter Largest German-Speaking Criminal Marketplace

DATABREACHTODAY.CO.UK — 2024-12-04

📢

Frequent freeloader part I: Secret Blizzard compromising Storm-0156 infrastructure for espionage

MICROSOFT.COM — 04 Dec 2024

🔥

Welcoming the Armenian Government to Have I Been Pwned

TROYHUNT.COM — 04 Dec 2024

🔥

Vodka maker Stoli files for bankruptcy in US after ransomware attack

SH.ITJUST.WORKS — 4 Dec 2024

🔥

Tuskira unifies and optimizes disparate cybersecurity tools

TECHCRUNCH.COM — 04 Dec 2024

🔥

U.S. Offered $10M for Hacker Just Arrested by Russia

KREBSONSECURITY.COM — 04 Dec 2024

🔥

The Road to Agentic AI: Exposed Foundations

TRENDMICRO.COM — 04 Dec 2024

🔥

Ransomware hackers target NHS hospitals with new cyberattacks

TECHCRUNCH.COM — 04 Dec 2024

🔥

Ransomware-hit vodka maker Stoli files for bankruptcy in the United States

EXPONENTIAL-E.COM — 04 Dec 2024

🔥

Russian hackers hijack Pakistani hackers' servers for their own attacks

BLEEPINGCOMPUTER.COM — 04 Dec 2024

🔥

Sensitive Data at Risk – Here's How! ⚠️

YOUTUBE.COM — 2024-12-04

🔥

Solana Web3.js library backdoored to steal secret, private keys

BLEEPINGCOMPUTER.COM — 04 Dec 2024

🔥

NHS Ransomware Attack: Russian INC Ransom Gang Steals Patient Data

SH.ITJUST.WORKS — 4 Dec 2024

🔥

BT unit took servers offline after Black Basta ransomware breach

BLEEPINGCOMPUTER.COM — 04 Dec 2024

🔥

BT unit took servers offline after Black Basta ransomware breach

SH.ITJUST.WORKS — 4 Dec 2024

🔥

Deloitte UK Hacked - Brain Cipher Group Claim to Have Stolen 1 TB of Data

SH.ITJUST.WORKS — 4 Dec 2024

🔥

AI in Cybersecurity: Insights from Palo Alto Networks Unit 42®

DATABREACHTODAY.CO.UK — 2024-12-04

🔥

Russian Money Laundering Services Busted in UK-Led Operation

DATABREACHTODAY.CO.UK — 2024-12-04

🔥

White House: Salt Typhoon hacked telcos in dozens of countries

BLEEPINGCOMPUTER.COM — 04 Dec 2024

🔥

Russian hackers hijack Pakistani hackers' servers for their own attacks

BLEEPINGCOMPUTER.COM — 04 Dec 2024

🕵️

ISC Stormcast For Wednesday, December 4th, 2024 https://isc.sans.edu/podcastdetail/9240, (Wed, Dec 4th)

ISC.SANS.EDU — 04 Dec 2024

🕵️

Data Analysis: The Unsung Hero of Cybersecurity Expertise [Guest Diary], (Wed, Dec 4th)

ISC.SANS.EDU — 04 Dec 2024

🕵️

GUEST ESSAY: The key role static code analyzers play in detecting coding errors, eliminating flaws

LASTWATCHDOG.COM — 04 Dec 2024

🕵️

European Police Disrupt Matrix Encrypted Service

DATABREACHTODAY.CO.UK — 2024-12-04

🕵️

Solana Web3.js Library Backdoored in Supply Chain Attack

SECURITYWEEK.COM — 04 Dec 2024

🕵️

AI and the 2024 Elections

SCHNEIER.COM — 2024-12-04

🕵️

Researchers Uncover Backdoor in Solana's Popular Web3.js npm Library

SH.ITJUST.WORKS — 4 Dec 2024

🕵️

Cloudflare’s developer domains increasingly abused by threat actors

SH.ITJUST.WORKS — 4 Dec 2024

🕵️

Spotting the Charlatans: Red Flags for Enterprise Security Teams

SECURITYWEEK.COM — 04 Dec 2024

🕵️

Virtual Event Today: Cyber AI & Automation Summit

SECURITYWEEK.COM — 04 Dec 2024

🕵️

Government Guidance on Chinese Telco Hacking Highlights Threat to Cisco Devices

SECURITYWEEK.COM — 04 Dec 2024

🕵️

New TLDs Such as .shop, .top and .xyz Leveraged by Phishers

GBHACKERS.COM — 04 Dec 2024

🕵️

Tuskira Scores $28.5M for AI-Powered Security Mesh

SECURITYWEEK.COM — 04 Dec 2024

🕵️

What are You Working on Wednesday

INFOSEC.PUB — 4 Dec 2024

🕵️

iVerify Mobile Threat Investigation Uncovers New Pegasus Samples

INFOSEC.PUB — 4 Dec 2024

🕵️

New TLDs Such as .shop, .top and .xyz Leveraged by Phishers

SH.ITJUST.WORKS — 4 Dec 2024

🕵️

Regulator Accuses AI Video Firm of Deceptive Marketing

DATABREACHTODAY.CO.UK — 2024-12-04

🕵️

Weaponized Word Documents Attacking Windows Users to Deliver NetSupport & BurnsRAT

GBHACKERS.COM — 04 Dec 2024

🕵️

BSidesPDX 2024

INFOSEC.PUB — 4 Dec 2024

🕵️

News alert: Green Raven study shows cybersecurity to be a black hole in more ways than just budget

LASTWATCHDOG.COM — 04 Dec 2024

🕵️

Snowblind: The Invisible Hand of Secret Blizzard

INFOSEC.PUB — 4 Dec 2024

🕵️

Russian hackers hijack Pakistani hackers' servers for their own attacks

SH.ITJUST.WORKS — 4 Dec 2024

🕵️

Bug Bounties: Bringing Hackers and Manufacturers Together

DATABREACHTODAY.CO.UK — 2024-12-04

🕵️

Nikesh Arora on Mad Money

PALOALTONETWORKS.COM — 04 Dec 2024

🕵️

US FTC Cracks Down GeoLocation Data Brokers

DATABREACHTODAY.CO.UK — 2024-12-04

🕵️

NetSupport RAT and RMS in malicious emails

INFOSEC.PUB — 4 Dec 2024

🕵️

Experts Warn DHS Surveillance Tech Lacks Privacy Protections

DATABREACHTODAY.CO.UK — 2024-12-04

🕵️

Explore new Microsoft Entra capabilities at Gartner Identity & Access Management Summit 2024

MICROSOFT.COM — 04 Dec 2024

🕵️

Risky Business #773 -- Cybercriminals are dropping like flies in Russia

RISKY.BIZ — 04 Dec 2024

🌐

Researchers Uncover Backdoor in Solana's Popular Web3.js npm Library

THEHACKERNEWS.COM — 04 Dec 2024

🌐

Tech support scams leverage Google ads again and again, fleecing unsuspecting internet users

TRIPWIRE.COM — 04 Dec 2024

🌐

Business leaders among Pegasus spyware victims, says security firm

TECHCRUNCH.COM — 04 Dec 2024

🌐

New DroidBot Android banking malware spreads across Europe

BLEEPINGCOMPUTER.COM — 04 Dec 2024

🌐

New DroidBot Android malware targets 77 banking, crypto apps

BLEEPINGCOMPUTER.COM — 04 Dec 2024

📡

Hackers Use Corrupted ZIPs and Office Docs to Evade Antivirus and Email Defenses

THEHACKERNEWS.COM — 04 Dec 2024

📡

Redefining IT Infrastructure with Secure, Scalable Hybrid Cloud Implementation

DATABREACHTODAY.CO.UK — 2024-12-04

📡

Europol Dismantles Criminal Messaging Service MATRIX in Major Global Takedown

THEHACKERNEWS.COM — 04 Dec 2024

📡

7 PAM Best Practices to Secure Hybrid and Multi-Cloud Environments

THEHACKERNEWS.COM — 04 Dec 2024

📡

Upgrade your Sophos Firewall to v21 today

SOPHOS.COM — 04 Dec 2024

📡

UnitedHealthcare CEO Brian Thompson shot and killed in New York

TECHCRUNCH.COM — 04 Dec 2024

📡

AI ‘Magic’? More Like a Disaster Waiting to Happen!

YOUTUBE.COM — 2024-12-04

📡

Senators say U.S. military is failing to secure its phones from foreign spies

TECHCRUNCH.COM — 04 Dec 2024

📡

FBI shares tips on how to tackle AI-powered fraud schemes

BLEEPINGCOMPUTER.COM — 04 Dec 2024

📡

How Hackers Can Manipulate AI to Affect Health App Accuracy

DATABREACHTODAY.CO.UK — 2024-12-04

📡

World Wide Work: Landing a Cybersecurity Career Overseas

DATABREACHTODAY.CO.UK — 2024-12-04

📡

OpenAI inks deal to upgrade Anduril’s anti-drone tech

TECHCRUNCH.COM — 04 Dec 2024

📡

Microsoft says having a TPM is "non-negotiable" for Windows 11

BLEEPINGCOMPUTER.COM — 04 Dec 2024

📡

AI chatbot startup WotNot leaks 346,000 files, including passports and medical records

BITDEFENDER.COM — 04 Dec 2024