110Articles
9Categories
2024-12-04Date
🚨 CISA KEV 1[−]
4 Dec KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its  Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2024-51378 CyberPanel Incorrect Default Permissions Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyb…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
4 DecVeeam Issues Patch for Critical RCE Vulnerability in Service Provider ConsoleVeeam has released security updates to address a critical flaw impacting Service Provider Console (VSPC) that could pave the way for remote code execution on susceptible instances. The vulnerability, tracked as CVE-2024-42448, carries a CVSS score of 9.9 out of a maximum of 10.0.…THEHACKERNEWS.COM
4 DecCritical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized AccessA critical security vulnerability has been disclosed in SailPoint's IdentityIQ identity and access management (IAM) software that allows unauthorized access to content stored within the application directory. The flaw, tracked as CVE-2024-10905, has a CVSS score of 10.0, indicati…THEHACKERNEWS.COM
4 DecMobSF XSS Vulnerability Let Attackers Inject Malicious ScriptsA critical vulnerability has been identified in the Mobile Security Framework (MobSF) that allows attackers to inject malicious scripts into the system. This vulnerability, CVE-2024-53999 is a Stored Cross-Site Scripting (XSS) flaw found in the “Diff or Compare” funct…GBHACKERS.COM
4 DecVeeam issues patch for critical RCE bugVeeam is warning its customers of two vulnerabilities, of which one is a critical RCE bug, affecting the Service Provider Console (VSPC), a web-based management platform for managed service providers (MSPs). On Tuesday, the data protection and backup solutions provider that power…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 29[−]
4 DecBreakingWAF: Widespread WAF Bypass Impacts Nearly 40% of Fortune 100 companiessubmitted by kid to cybersecurity 1 points | 0 comments https://www.zafran.io/resources/breaking-wafSH.ITJUST.WORKS
4 DecSecurity-KPIs und -KRIs: So messen Sie CybersicherheitCybersicherheit zu messen, ist kein Kinderspiel. Foto: Ultraskrip – shutterstock.com Eine wichtige Säule jedes ausgereiften Cyberrisk-Programms ist die Fähigkeit, die Performance der IT-Security und registrierte Bedrohungen zu messen, zu analysieren und zu melden. Die Cybersecuri…CSOONLINE.COM
4 DecCISA Releases Advisory to Monitor Networks to Detect Malicious Cyber ActorsThe National Security Agency (NSA) has partnered with the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and other entities to release a critical advisory. This initiative comes in response to the exploitation of major global t…GBHACKERS.COM
4 DecJoint Advisory Warns of PRC-Backed Cyber Espionage Targeting Telecom NetworksA joint advisory issued by Australia, Canada, New Zealand, and the U.S. has warned of a broad cyber espionage campaign undertaken by People's Republic of China (PRC)-affiliated threat actors targeting telecommunications providers. "Identified exploitations or compromises associat…THEHACKERNEWS.COM
4 DecTalent overlooked: embracing neurodiversity in cybersecurityIn cybersecurity, diverse perspectives help in addressing complex, emerging threats. Increasingly, there’s a push to recognize that neurodiversity brings significant value to cybersecurity. However, neurodiverse people frequently face systemic barriers that hinder their success i…CSOONLINE.COM
4 DecHackers Move From Data Theft To Complete Destruction: Cyber Security Today For Wednesday, December 4, 2024Cybersecurity Today: From Data Theft to Total Destruction In today's episode, we cover the latest shifts in cybercrime as hackers move from data theft to complete system destruction, impacting businesses on a massive scale. We discuss Palo Alto Networks' insights on these damagin…CYBERSECURITYTODAY.LIBSYN.COM
4 DecProgress WhatsUp Gold RCE Vulnerability – PoC Exploit ReleasedA registry overwrite remote code execution (RCE) vulnerability has been identified in NmAPI.exe, part of the WhatsUp Gold network monitoring software. This vulnerability, present in versions before 24.0.1, allows an unauthenticated remote attacker to execute arbitrary code on aff…GBHACKERS.COM
4 DecGoogle Chrome Security Update, Patch for High-severity VulnerabilityGoogle has released a significant security update for its Chrome browser, aiming to address several vulnerabilities and enhance user safety. The Stable channel has been updated to version 131.0.6778.108/.109 for Windows, and Mac, and version 131.0.6778.108 for Linux. These update…GBHACKERS.COM
4 Dec63% of companies plan to pass data breach costs to customersConsumers may be more on the hook for paying for the rising costs of data breaches than they realize, as companies increasingly turn to price hikes as part of their post-breach cost-recovery strategies. According to a report from IBM earlier this year , nearly two-thirds of compa…CSOONLINE.COM
4 DecLaw Enforcement Read Criminals’ Messages After Hacking Matrix ServiceLaw enforcement has taken down yet another encrypted messaging service used by criminals, but not before spying on its users. The post Law Enforcement Read Criminals’ Messages After Hacking Matrix Service appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecHow to Plan a New (and Improved!) Password Policy for Real-World Security ChallengesMany organizations struggle with password policies that look strong on paper but fail in practice because they're too rigid to follow, too vague to enforce, or disconnected from real security needs. Some are so tedious and complex that employees post passwords on sticky notes und…THEHACKERNEWS.COM
4 Dec10/10 directory traversal bug hits SailPoint's IdentityIQsubmitted by kid to cybersecurity 1 points | 0 comments https://www.theregister.com/2024/12/03/sailpoint_identityiq_vulnerability/SH.ITJUST.WORKS
4 DecCISA Warns of Zyxel Firewall Vulnerability Exploited in AttacksA second vulnerability in Zyxel firewalls has been exploited in Helldown ransomware attacks over the past weeks. The post CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecErstes Linux-UEFI-Bootkit ist StudentenprojektBootkits sind kein Windows-exklusives “Feature” mehr. isarisphotography | shutterstock.com Forscher des Sicherheitsanbieters ESET hatten Ende November 2024 darüber berichtet , das erste UEFI-Bootkit für Linux-Systeme entdeckt zu haben. Bereits initial berichteten die ESET Researc…CSOONLINE.COM
4 DecRussland knöpft sich Exil-Wodka vorRussische Behörden und Hacker treiben Die unliebsame Exil-Firma in den Ruin. Alex Alaks/shutterstock.com Die US-Unternehmen der Stoli Group, zu denen unter anderem die Wodka-Marken Stoli und Elit gehören, hat Insolvenz angemeldet. Den Schritt begründete Chris Caldwell, CEO von St…CSOONLINE.COM
4 DecLinux Foundation report highlights the true state of open-source libraries in production appsThere are many metrics to track the prevalence of open-source components, such as GitHub stars and downloads, but they don’t paint the full picture of how they’re being used in production codebases. Census III of Free and Open Source Software: Application Libraries le…TECHCRUNCH.COM
4 DecCloud threat report: Possible trend in cloud credential “oversaturation”For years now, the dark web has built and maintained its own evolving economy, supported by the acquisition and sales of stolen data, user login credentials and business IP. But much like any market today, the dark web economy is subject to supply and demand. A recent X-Force Clo…SECURITYINTELLIGENCE.COM
4 DecNeue AWS-KI-Rezepte gegen Cloud-BedrohungenAmazon Web Services erweitert seine Cloud-Security-Angebote um KI- und ML-Funktionalitäten. Gorodenkoff / Shutterstock Wenn zunehmend komplexe Cloud-Umgebungen und wachsende Cyberbedrohungen zusammenkommen, sind Sicherheitsteams regelmäßig mit Problemen konfrontiert wie Security-…CSOONLINE.COM
4 DecJapan warns of IO-Data zero-day router flaws exploited in attacksJapan's CERT is warning that hackers are exploiting zero-day vulnerabilities in I-O Data router devices to modify device settings, execute commands, or even turn off the firewall. [...]BLEEPINGCOMPUTER.COM
4 DecHackers Exploit Docker Remote API Servers To Inject Gafgyt MalwareAttackers are exploiting publicly exposed Docker Remote API servers to deploy Gafgyt malware by creating a Docker container using a legitimate “alpine” image to deploy the malware and infect the victim system with Gafgyt botnet malware. It allows attackers to launch D…GBHACKERS.COM
4 DecCloudflare Developer Domains Abused For Cyber AttacksCloudflare Pages, a popular web deployment platform, is exploited by threat actors to host phishing sites, as attackers leverage Cloudflare’s trusted infrastructure, global CDN, and free hosting to quickly set up and deploy convincing phishing sites.  Automatic SSL/TLS…GBHACKERS.COM
4 DecSecurity teams should act now to counter Chinese threat, says CISASecurity teams and individuals across the US need to take immediate precautions to counter the surveillance threat posed by Chinese ‘Salt Typhoon’ hackers, who have burrowed deep into telecoms infrastructure, according to the US Cybersecurity and Infrastructure Security Agency (C…CSOONLINE.COM
4 DecRussia-Linked Turla Exploits Pakistani Hackers' Servers to Target Afghan and Indian EntitiesThe Russia-linked advanced persistent threat (APT) group known as Turla has been linked to a previously undocumented campaign that involved infiltrating the command-and-control (C2) servers of a Pakistan-based hacking group named Storm-0156 to conduct its own operations since 202…THEHACKERNEWS.COM
4 DecCISA Releases New Public Version of CDM Data Model DocumentToday, the Cybersecurity and Infrastructure Security Agency (CISA) released an updated public version of the Continuous Diagnostics and Mitigation (CDM) Data Model Document . Version 5.0.1 aligns with fiscal year 2023 Federal Information Security Modernization Act (FISMA) metrics…CISA.GOV
4 DecVeeam Warns of Critical Vulnerability in Service Provider ConsoleVeeam releases patches for two vulnerabilities in Service Provider Console, including a critical-severity remote code execution bug. The post Veeam Warns of Critical Vulnerability in Service Provider Console appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecDeloitte UK Hacked – Brain Cipher Group Claim to Have Stolen 1 TB of DataBrain Cipher has claimed to have breached Deloitte UK and exfiltrated over 1 terabyte of sensitive data. Emerging in June 2024, Brain Cipher has quickly established a reputation for its aggressive cyberattacks, with a notable incident involving According to statements released by…GBHACKERS.COM
4 DecUK disrupts Russian money laundering networks used by ransomware​A law enforcement operation led by the United Kingdom's National Crime Agency (NCA) has disrupted two Russian money laundering networks working with criminals worldwide, including ransomware gangs. [...]BLEEPINGCOMPUTER.COM
4 DecFortinet offers integrated cloud app security serviceFortinet has melded some of its previously available services into an integrated cloud package aimed at helping customers secure applications. The new service, FortiAppSec Cloud, brings web and API security, server load balancing, and threat analytics under a single console that …NETWORKWORLD.COM
4 DecEuropean law enforcement breaks high-end encryption app used by suspectsA group of European law enforcement agencies were able to crack a high-level encryption app that a group of suspects created to avoid law enforcement monitoring, according to a statement issued Tuesday by Europol. Europol, understandably, did not provide any specifics about how t…CSOONLINE.COM
📋 SECURITY BULLETINS 1[−]
4 DecAndroid’s December 2024 Security Update Patches 14 VulnerabilitiesGoogle has released patches for 14 high-severity vulnerabilities as part of Android’s December 2024 security update. The post Android’s December 2024 Security Update Patches 14 Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
📢 SECURITY ADVISORIES 9[−]
4 Dec“Crimenetwork” ausgehoben“Crimenetwork” war für die Betreiber über Jahre ein einträgliches Geschäft. Die finale Abrechnung übernehmen nun die Strafverfolgungsbehörden. Zubkov Igor | shutterstock.com Wie das Bundeskriminalamt in einer Pressemitteilung erklärt , haben Ermittler (unter anderem) in Kooperati…CSOONLINE.COM
4 DecCISA Releases Advisory to Monitor Networks to Detect Malicious Cyber Actorssubmitted by kid to cybersecurity 1 points | 0 comments https://gbhackers.com/cisa-releases-advisory-to-monitor-networks/SH.ITJUST.WORKS
4 DecSix password takeaways from the updated NIST cybersecurity frameworkUpdated NIST guidelines reject outdated password security practices in favor of more effective protections. Learn from Specops Software about 6 takeaways from NIST's new guidance that help create strong password policies. [...]BLEEPINGCOMPUTER.COM
4 DecLargest German Crime Marketplace Taken Down, Administrator ArrestedCrimenetwork, the largest German-speaking online crime marketplace, has been shut down and one of its admins has been arrested. The post Largest German Crime Marketplace Taken Down, Administrator Arrested appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecSpy v Spy: Russian APT Turla Caught Stealing from Pakistani APTRussia's Turla hackers hijacked 33 command servers operated by Pakistani hackers who had themselves breached Afghanistan and Indian targets. The post Spy v Spy: Russian APT Turla Caught Stealing from Pakistani APT appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecPolice Shutter Largest German-Speaking Criminal MarketplaceCrimenetwork Served as a Platform for Illegal Goods and Services German police arrested the suspected administrator of the largest German-speaking underground markets for illegal goods and services. Crimenetwork, online since 2012, was used to sell stolen data, drugs and forged d…DATABREACHTODAY.CO.UK
4 DecFrequent freeloader part I: Secret Blizzard compromising Storm-0156 infrastructure for espionageMicrosoft has observed Secret Blizzard compromising the infrastructure and backdoors of the Pakistan-based threat actor we track as Storm-0156 for espionage against the Afghanistan government and Indian Army targets. The post Frequent freeloader part I: Secret Blizzard compromisi…MICROSOFT.COM
🔥 INCIDENT REPORTING 18[−]
4 DecWelcoming the Armenian Government to Have I Been PwnedPresently sponsored by: Cyberattacks are guaranteed. Is your recovery? Protect your data in the cloud. Join Rubrik’s Cloud Resilience Summit. Today, we're happy to welcome the 37th government to have full and free access to domain searches of their gov domains in Have I Been…TROYHUNT.COM
4 DecVodka maker Stoli files for bankruptcy in US after ransomware attacksubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/vodka-maker-stoli-files-for-bankruptcy-in-us-after-ransomware-attack/SH.ITJUST.WORKS
4 DecTuskira unifies and optimizes disparate cybersecurity toolsCyberattacks are on the rise, and the victims are high-profile. According to a KPMG survey, close to half of companies with $1 billion or more in annual revenue recently suffered a security breach. Surprisingly, an overabundance of security tools may be contributing to the proble…TECHCRUNCH.COM
4 DecU.S. Offered $10M for Hacker Just Arrested by RussiaIn January 2022, KrebsOnSecurity identified a Russian man named Mikhail Matveev as "Wazawaka," a cybercriminal who was deeply involved in the formation and operation of multiple ransomware groups. The U.S. government indicted Matveev as a top ransomware purveyor a year later, off…KREBSONSECURITY.COM
4 DecThe Road to Agentic AI: Exposed FoundationsOur research into Retrieval Augmented Generation (RAG) systems uncovered at least 80 unprotected servers. We highlight this problem, which can lead to potential data loss and unauthorized access.TRENDMICRO.COM
4 DecRansomware hackers target NHS hospitals with new cyberattacksTwo NHS trusts in England have been hacked in recent weeks, the latest attacks to hit the national health service. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
4 DecRansomware-hit vodka maker Stoli files for bankruptcy in the United StatesStoli Group USA, the US subsidiary of vodka maker Stoli, has filed for bankruptcy – and a ransomware attack is at least partly to blame. The American branch of Stoli, which imports and distributes Stoli brands in the United States, as well as the Kentucky Owl bourbon brand it pur…EXPONENTIAL-E.COM
4 DecRussian hackers hijack Pakistani hackers' servers for their own attacksThe notorious Russian cyber-espionage group Turla is hacking other hackers, hijacking the Pakistani threat actor Storm-0156's infrastructure to launch their own covert attacks on already compromised networks. [...]BLEEPINGCOMPUTER.COM
4 DecSensitive Data at Risk – Here's How! ⚠️Hackers no longer need advanced coding skills to access sensitive information. Using simple tactics like credential stuffing and phishing, even entry-level attackers can breach SaaS supply chains and steal confidential data fast. Learn why these "skiddy" attacks are a growing thr…YOUTUBE.COM
4 DecSolana Web3.js library backdoored to steal secret, private keysThe legitimate Solana JavaScript SDK was temporarily compromised yesterday in a supply chain attack, with the library backdoored with malicious code to steal cryptocurrency private keys and drain wallets. [...]BLEEPINGCOMPUTER.COM
4 DecNHS Ransomware Attack: Russian INC Ransom Gang Steals Patient Datasubmitted by kid to cybersecurity 2 points | 0 comments https://hackread.com/nhs-ransomware-attack-russia-inc-ransom-steal-patient-data/SH.ITJUST.WORKS
4 DecBT unit took servers offline after Black Basta ransomware breachMultinational telecommunications giant BT Group (formerly British Telecom) has confirmed that its BT Conferencing business division shut down some of its servers following a Black Basta ransomware breach. [...]BLEEPINGCOMPUTER.COM
4 DecBT unit took servers offline after Black Basta ransomware breachsubmitted by kid to cybersecurity 1 points | 0 comments https://www.bleepingcomputer.com/news/security/bt-conferencing-division-took-servers-offline-after-black-basta-ransomware-attack/SH.ITJUST.WORKS
4 DecDeloitte UK Hacked - Brain Cipher Group Claim to Have Stolen 1 TB of Datasubmitted by kid to cybersecurity 3 points | 5 comments https://gbhackers.com/deloitte-uk-hacked/SH.ITJUST.WORKS
4 DecAI in Cybersecurity: Insights from Palo Alto Networks Unit 42®AI is reshaping the fight against digital threats. Learn how attackers are using AI to supercharge malware and social engineering—and how organizations can harness it to predict, detect, and stop cyberattacks in their tracks.DATABREACHTODAY.CO.UK
4 DecRussian Money Laundering Services Busted in UK-Led OperationFrench Police Reportedly Detain Accused Ryuk Money Launder Ekaterina Zhdanova An international investigation led by the United Kingdom busted Russian money cash-for-crypto laundering networks in an operation that's led to the arrest of 84 individuals and U.S. sanctions against ot…DATABREACHTODAY.CO.UK
4 DecWhite House: Salt Typhoon hacked telcos in dozens of countries​Chinese state hackers, known as Salt Typhoon, have breached telecommunications companies in dozens of countries, President Biden's deputy national security adviser Anne Neuberger said today. [...]BLEEPINGCOMPUTER.COM
4 DecRussian hackers hijack Pakistani hackers' servers for their own attacksThe notorious Russian cyber-espionage group Turla is hacking other hackers, hijacking the Pakistani threat actor Storm-0156's infrastructure to launch their own covert attacks on already compromised networks. [...]BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 29[−]
4 DecISC Stormcast For Wednesday, December 4th, 2024 https://isc.sans.edu/podcastdetail/9240, (Wed, Dec 4th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
4 DecData Analysis: The Unsung Hero of Cybersecurity Expertise [Guest Diary], (Wed, Dec 4th)[This is a Guest Diary by Robert Cao, an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
4 DecGUEST ESSAY: The key role static code analyzers play in detecting coding errors, eliminating flawsIn the modern world of software development, code quality is becoming a critical factor that determines a project success. Errors in code can entail severe consequences. Related: The convergence of network, application security For example, vulnerabilities in banking applications…LASTWATCHDOG.COM
4 DecEuropean Police Disrupt Matrix Encrypted ServicePlatform Used for Drugs, Arms Trafficking and Money Laundering French and Dutch police led the takedown of an encrypted messaging platform used in international drug and arms trafficking. Dutch police discovered the app, named Matrix, on the phone of a criminal convicted in 2021 …DATABREACHTODAY.CO.UK
4 DecSolana Web3.js Library Backdoored in Supply Chain AttackSupply chain attack leads to decentralized application developers downloading backdoored versions of the Solana Web3.js library. The post Solana Web3.js Library Backdoored in Supply Chain Attack appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecAI and the 2024 ElectionsIt’s been the biggest year for elections in human history: 2024 is a “ super-cycle ” year in which 3.7 billion eligible voters in 72 countries had the chance to go the polls. These are also the first AI elections , where many feared that deepfakes and artificial…SCHNEIER.COM
4 DecResearchers Uncover Backdoor in Solana's Popular Web3.js npm Librarysubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2024/12/researchers-uncover-backdoor-in-solanas.htmlSH.ITJUST.WORKS
4 DecCloudflare’s developer domains increasingly abused by threat actorssubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/cloudflares-developer-domains-increasingly-abused-by-threat-actors/SH.ITJUST.WORKS
4 DecSpotting the Charlatans: Red Flags for Enterprise Security TeamsEven with careful and deliberate hiring, enterprise security teams will find themselves with a charlatan from time to time. The post Spotting the Charlatans: Red Flags for Enterprise Security Teams appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecVirtual Event Today: Cyber AI & Automation SummitSecurityWeek’s Cyber AI & Automation Summit takes place on December 4th, as a fully immersive online experience. The post Virtual Event Today: Cyber AI & Automation Summit appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecGovernment Guidance on Chinese Telco Hacking Highlights Threat to Cisco DevicesGovernment agencies issue guidance on Chinese telecoms hacking as US officials say threat actors may have yet to be expelled. The post Government Guidance on Chinese Telco Hacking Highlights Threat to Cisco Devices appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecNew TLDs Such as .shop, .top and .xyz Leveraged by PhishersPhishing attacks have surged nearly 40% in the year ending August 2024, with a significant portion of this increase linked to new generic top-level domains (gTLDs) like .shop, .top, and .xyz. These domains, known for their minimal registration requirements and low costs, have bec…GBHACKERS.COM
4 DecTuskira Scores $28.5M for AI-Powered Security MeshTuskira is working on an AI-powered security mesh promising to integrate fragmented security tools and mitigate risk exposure in real time. The post Tuskira Scores $28.5M for AI-Powered Security Mesh appeared first on SecurityWeek .SECURITYWEEK.COM
4 DecWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 1 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
4 DeciVerify Mobile Threat Investigation Uncovers New Pegasus Samplessubmitted by Joker to cybersecurity 2 points | 0 comments https://iverify.io/blog/iverify-mobile-threat-investigation-uncovers-new-pegasus-samplesINFOSEC.PUB
4 DecNew TLDs Such as .shop, .top and .xyz Leveraged by Phisherssubmitted by kid to cybersecurity 1 points | 0 comments https://gbhackers.com/new-tlds-leveraged-by-phishers/SH.ITJUST.WORKS
4 DecRegulator Accuses AI Video Firm of Deceptive MarketingIntelliVision Settles With Federal Trade Commission Over Facial Recognition Claims Facial recognition software maker IntelliVision has reached a settlement with the U.S. Federal Trade Commission after the regulator accused the AI-powered software vendor of deceptive marketing cla…DATABREACHTODAY.CO.UK
4 DecWeaponized Word Documents Attacking Windows Users to Deliver NetSupport & BurnsRATThe threat actors distributed malicious JS scripts disguised as legitimate business documents, primarily in ZIP archives with names like “Purchase request” or “Request for quote.”  They enriched their phishing emails with authentic-looking documents l…GBHACKERS.COM
4 DecBSidesPDX 2024submitted by ashar to security_cpe 1 points | 0 comments https://bsidespdx.org/images/bsidesPDX_logo_2024_100.png BSidesPDX 2024 Schedule from the website BSidesPDX 2024 Playlist BSides Portland is a tax-exempt charitable 501©(3) organization founded with the mission to cultivate…INFOSEC.PUB
4 DecNews alert: Green Raven study shows cybersecurity to be a black hole in more ways than just budgetCheltenham, England, Dec. 4, 2024 –A majority of senior cybersecurity professionals at the UK’s largest organisations struggle with feelings of helplessness and professional despair, new research by Green Raven Limited indicates. These negative emotions result from practitioners’…LASTWATCHDOG.COM
4 DecSnowblind: The Invisible Hand of Secret Blizzardsubmitted by Joker to cybersecurity 1 points | 0 comments https://blog.lumen.com/snowblind-the-invisible-hand-of-secret-blizzard/?INFOSEC.PUB
4 DecRussian hackers hijack Pakistani hackers' servers for their own attackssubmitted by kid to cybersecurity 3 points | 0 comments https://www.bleepingcomputer.com/news/security/russian-turla-hackers-hijack-pakistani-apt-servers-for-cyber-espionage-attacks/SH.ITJUST.WORKS
4 DecBug Bounties: Bringing Hackers and Manufacturers TogetherResearcher Lennert Wouters on Benefits of Device Hacking Contests, Collaboration Lennert Wouters, a researcher at KU Leuven University in Belgium, has spent the past eight years studying embedded security, analyzing the vulnerabilities of everyday devices and commercial products.…DATABREACHTODAY.CO.UK
4 DecNikesh Arora on Mad MoneyPalo Alto Networks, led by Chairman and CEO Nikesh Arora, discussed robust cloud security market position and innovative strides on CNBC's 'Mad Money'. The post Nikesh Arora on Mad Money appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
4 DecUS FTC Cracks Down GeoLocation Data BrokersGravy Analytics and Mobilewalla Ordered to Implement Stronger Consent Measures Two data brokers pledged to stop using geolocation data gleaned from smartphones to sell services that provide a window to the intimate lives of Americans. "Surreptitious surveillance by data brokers u…DATABREACHTODAY.CO.UK
4 DecNetSupport RAT and RMS in malicious emailssubmitted by Joker to cybersecurity 2 points | 0 comments https://securelist.com/horns-n-hooves-campaign-delivering-netsupport-rat/114740/INFOSEC.PUB
4 DecExperts Warn DHS Surveillance Tech Lacks Privacy ProtectionsPrivacy Advocates Warn of Risks from Expanding DHS Use of AI and Facial Recognition The U.S. Department of Homeland Security is reportedly expanding its use of emerging surveillance tools, including drones and artificial intelligence, without proper safeguards as experts warn of …DATABREACHTODAY.CO.UK
4 DecExplore new Microsoft Entra capabilities at Gartner Identity & Access Management Summit 2024Join Microsoft Security at Gartner Identity & Access Management Summit 2024 to explore identity and network access innovations and connect with experts. The post Explore new Microsoft Entra capabilities at Gartner Identity & Access Management Summit 2024 appeared first o…MICROSOFT.COM
4 DecRisky Business #773 -- Cybercriminals are dropping like flies in RussiaOn this week’s show, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: The FTC decides its time to take another look at Microsoft Exxon’s opponents targeted by hackers Russian hackers keep getting sentenced and it confuses us The Feds recommend Signa…RISKY.BIZ
🌐 CYBER THREAT LANDSCAPE 5[−]
4 DecResearchers Uncover Backdoor in Solana's Popular Web3.js npm LibraryCybersecurity researchers are alerting to a software supply chain attack targeting the popular @solana/web3.js npm library that involved pushing two malicious versions capable of harvesting users' private keys with an aim to drain their cryptocurrency wallets. The attack has been…THEHACKERNEWS.COM
4 DecTech support scams leverage Google ads again and again, fleecing unsuspecting internet usersIt's not a new technique, but that doesn't mean that cybercriminals cannot make rich rewards from SEO poisoning. Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
4 DecBusiness leaders among Pegasus spyware victims, says security firmThe mobile security company said it detected Pegasus spyware attacks on seven iPhone owners, including government officials and a business leader. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
4 DecNew DroidBot Android banking malware spreads across EuropeA new Android banking malware named 'DroidBot' attempts to steal credentials for over 77 cryptocurrency exchanges and banking apps in the UK, Italy, France, Spain, and Portugal. [...]BLEEPINGCOMPUTER.COM
4 DecNew DroidBot Android malware targets 77 banking, crypto appsA new Android banking malware named 'DroidBot' attempts to steal credentials for over 77 cryptocurrency exchanges and banking apps in the UK, Italy, France, Spain, and Portugal. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 14[−]
4 DecHackers Use Corrupted ZIPs and Office Docs to Evade Antivirus and Email DefensesCybersecurity researchers have called attention to a novel phishing campaign that leverages corrupted Microsoft Office documents and ZIP archives as a way to bypass email defenses. "The ongoing attack evades #antivirus software, prevents uploads to sandboxes, and bypasses Outlook…THEHACKERNEWS.COM
4 DecEuropol Dismantles Criminal Messaging Service MATRIX in Major Global TakedownEuropol on Tuesday announced the takedown of an invite-only encrypted messaging service called MATRIX that's created by criminals for criminal purposes. The joint operation, conducted by French and Dutch authorities under the moniker Passionflower, comes in the aftermath of an in…THEHACKERNEWS.COM
4 Dec7 PAM Best Practices to Secure Hybrid and Multi-Cloud EnvironmentsAre you using the cloud or thinking about transitioning? Undoubtedly, multi-cloud and hybrid environments offer numerous benefits for organizations. However, the cloud's flexibility, scalability, and efficiency come with significant risk — an expanded attack surface. The decentra…THEHACKERNEWS.COM
4 DecUpgrade your Sophos Firewall to v21 todayGet the most from your Sophos Firewall.SOPHOS.COM
4 DecUnitedHealthcare CEO Brian Thompson shot and killed in New YorkBrian Thompson, the CEO of UnitedHealthcare, was fatally shot in Midtown Manhattan early Wednesday morning while walking toward the New York Hilton Midtown for his company’s annual investor conference. According to emerging media reports, Thompson was fired on from roughly 20 fee…TECHCRUNCH.COM
4 DecAI ‘Magic’? More Like a Disaster Waiting to Happen!AI might seem like magic, but is it really the solution to everything? In this short, Joshua Marpet breaks down the dangers of overusing AI without proper planning. From unmeasured societal impacts to business risks, he explains why sprinkling AI everywhere isn’t the fix-it-all w…YOUTUBE.COM
4 DecSenators say U.S. military is failing to secure its phones from foreign spiesSenators Ron Wyden and Eric Schmitt are demanding the Department of Defense to do more to secure its telecommunications. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
4 DecFBI shares tips on how to tackle AI-powered fraud schemesThe FBI warns that scammers are increasingly using artificial intelligence to improve the quality and effectiveness of their online fraud schemes, ranging from romance and investment scams to job hiring schemes. [...]BLEEPINGCOMPUTER.COM
4 DecHow Hackers Can Manipulate AI to Affect Health App AccuracyHackers can potentially use AI to manipulate data that's generated and shared by some health apps, diminishing the data's accuracy and integrity, said Sina Yazdanmehr and Lucian Ciobotaru of cybersecurity firm Aplite, describing a recent research project involving Google Health C…DATABREACHTODAY.CO.UK
4 DecWorld Wide Work: Landing a Cybersecurity Career OverseasTips for Finding and Getting Security Jobs in a Global Market Organizations ranging from multinational corporations to government agencies and international nonprofits require cybersecurity expertise. These roles often include exciting opportunities for travel or relocation, maki…DATABREACHTODAY.CO.UK
4 DecOpenAI inks deal to upgrade Anduril’s anti-drone techOpenAI plans to team up with Anduril, the defense startup, to supply its AI tech to systems the U.S. military uses to counter drone attacks. The Wall Street Journal reports that Anduril will incorporate OpenAI tech into software that assesses and tracks unmanned aircraft. Anduril…TECHCRUNCH.COM
4 DecMicrosoft says having a TPM is "non-negotiable" for Windows 11Microsoft made it abundantly clear this week that Windows 10 users won't be able to upgrade to Windows 11 unless their systems come with TPM 2.0 support, stating it's a "non-negotiable" requirement. [...]BLEEPINGCOMPUTER.COM
4 DecAI chatbot startup WotNot leaks 346,000 files, including passports and medical recordsWotnot, An Indian AI startup that helps businesses build custom chatbots, has leaked almost 350,000 sensitive files after the data was left unsecured on the web. Read more in my article on the Hot for Security blog.BITDEFENDER.COM