125Articles
8Categories
2024-12-11Date
🚨 CISA KEV 1[−]
11 Dec KEVU.S. CISA adds Microsoft Windows CLFS driver flaw to its Known Exploited Vulnerabilities catalogsubmitted by kid to cybersecurity 1 points | 0 comments https://securityaffairs.com/171851/hacking/u-s-cisa-adds-microsoft-windows-clfs-driver-flaw-to-its-known-exploited-vulnerabilities-catalog.htmlSH.ITJUST.WORKS
🐛 COMMON VULNERABILITIES AND EXPOSURES 10[−]
11 DecPatch Tuesday, December 2024 EditionMicrosoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in active attacks. The zero-day seeing exploitation involves CVE-2024-49138, a security weakness in the Windows Common……KREBSONSECURITY.COM
11 DecIvanti Issues Critical Security Updates for CSA and Connect Secure VulnerabilitiesIvanti has released security updates to address multiple critical flaws in its Cloud Services Application (CSA) and Connect Secure products that could lead to privilege escalation and code execution. The list of vulnerabilities is as follows - CVE-2024-11639 (CVSS score: 10.0) - …THEHACKERNEWS.COM
11 DecVulnerability Symbiosis: vSphere?s CVE-2024-38812 and CVE-2024-38813 [Guest Diary], (Wed, Dec 11th)[This is a Guest Diary by Jean-Luc Hurier, an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
11 DecUS sanctions Chinese cybersecurity firm over global malware campaignThe US government has imposed sanctions on Chinese cybersecurity firm Sichuan Silence Information Technology and one of its employees, Guan Tianfeng, for their alleged involvement in a 2020 global cyberattack that exploited zero day vulnerabilities in firewalls. The actions were …CSOONLINE.COM
11 DecWPForms Vulnerability Let Users Issues Subscription PaymentsA critical security vulnerability, tracked as CVE-2024-11205, was recently discovered in the popular WordPress plugin, WPForms, which boasts over 6 million active installations globally. This flaw, identified by researcher villu164 through the Wordfence Bug Bounty Program, allows…GBHACKERS.COM
11 DecIvanti CSA Vulnerabilities Let Attackers Gain Admin AccessIvanti has issued critical software updates to address several severe vulnerabilities in its Cloud Services Application (CSA). These vulnerabilities tracked as CVE-2024-11639, CVE-2024-11772, and CVE-2024-11773, affect CSA versions 5.0.2 and earlier. Without mitigation, these fla…GBHACKERS.COM
11 DecResearcher Details CVE-2024-44131 - A Critical TCC Bypass in macOS and iOSsubmitted by kid to cybersecurity 1 points | 1 comments https://securityonline.info/researcher-details-cve-2024-44131-a-critical-tcc-bypass-in-macos-and-ios/SH.ITJUST.WORKS
11 DecGoogle Chrome Patches High-Severity Vulnerabilities - CVE-2024-12381 & CVE-2024-12382submitted by kid to cybersecurity 1 points | 0 comments https://securityonline.info/google-chrome-patches-high-severity-vulnerabilities-cve-2024-12381-cve-2024-12382/SH.ITJUST.WORKS
11 DecWindows RDP Service Flaw let Hackers Execute Remote CodeA critical security vulnerability (CVE-2024-49115) in Windows Remote Desktop Services (RDS) has been disclosed, potentially allowing hackers to execute arbitrary remote code via the network. The flaw, assigned the highest severity classification, was officially confirmed by Micro…GBHACKERS.COM
11 DecMicrosoft secretly stopped actors from snooping on your MFA codesMicrosoft may have silently fixed a problem with its MFA implementation that attackers could have used to gain access to Outlook, OneDrive, Teams, and Azure accounts without any user interaction. AuthQuake, as the cybersecurity firm Oasis calls it, was a configuration oversight t…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 31[−]
11 DecISO und ISMS: Darum gehen Security-Zertifizierungen schiefMit einer ISO 27001-Zertifizierung weisen Unternehmen nach, dass sie ein wirksames Informationssicherheits-Managementsystems (ISMS) betreiben. Lesen Sie, weshalb der Zertifizierungsprozess häufig schief geht. Foto: mentalmind – shutterstock.com ISO-Zertifizierungen, aber auch die…CSOONLINE.COM
11 DecBug bounty programs can deliver significant benefits, but only if you’re readyBug bounty programs, which offer financial incentives to outside security researchers to find software vulnerabilities, seem like a 21st-century phenomenon, but according to bug bounty platform provider HackerOne, the first bug bounty program dates back to 1983. That year, a comp…CSOONLINE.COM
11 DecSalt Typhoon poses a serious supply chain risk to most organizationsIn the late spring of 2024, the US Federal Bureau of Investigation (FBI) began investigating reports of malicious activities targeting multiple US telecommunications companies. The agency determined that Chinese-affiliated actors had stolen many communications records related to …CSOONLINE.COM
11 DecU.S. Charges Chinese Hacker for Exploiting Zero-Day in 81,000 Sophos FirewallsThe U.S. government on Tuesday unsealed charges against a Chinese national for allegedly breaking into thousands of Sophos firewall devices globally in 2020. Guan Tianfeng (aka gbigmao and gxiaomao), who is said to have worked at Sichuan Silence Information Technology Company, Li…THEHACKERNEWS.COM
11 Dec KEVMicrosoft Fixes 72 Flaws, Including Patch for Actively Exploited CLFS VulnerabilityMicrosoft closed out its Patch Tuesday updates for 2024 with fixes for a total of 72 security flaws spanning its software portfolio, including one that it said has been exploited in the wild. Of the 72 flaws, 17 are rated Critical, 54 are rated Important, and one is rated Moderat…THEHACKERNEWS.COM
11 DecFrom PoC to Attacker Interest in Hours: Real-Time Insights into Mitel MiCollab Vulnerabilitiessubmitted by Joker to cybersecurity 1 points | 0 comments https://www.greynoise.io/blog/from-poc-to-attacker-interest-in-hours-real-time-insights-into-mitel-micollab-vulnerabilitiesINFOSEC.PUB
11 DecSilent Push Unwraps the AIZ—Aggressive Inventory Zombies—Retail & Crypto Phishing Network Campaignsubmitted by Joker to cybersecurity 1 points | 0 comments https://www.silentpush.com/blog/aiz-retail-crypto-phishing/? Key Findings > Silent Push Threat Analysts have been tracking a threat actor’s activity throughout 2024 that has been noticeably ramping up over the past few …INFOSEC.PUB
11 DecDell Warns of Critical Code Execution Vulnerability in Power Managersubmitted by kid to cybersecurity 2 points | 0 comments https://gbhackers.com/dell-warns-critical-code-execution-vulnerability/SH.ITJUST.WORKS
11 DecChinese EagleMsgSpy Spyware Found Exploiting Mobile Devices Since 2017Cybersecurity researchers have discovered a novel surveillance program that's suspected to be used by Chinese police departments as a lawful intercept tool to gather a wide range of information from mobile devices. The Android tool, codenamed EagleMsgSpy by Lookout, has been oper…THEHACKERNEWS.COM
11 DecCleo Vulnerability Exploitation Linked to Termite Ransomware GroupExploitation of a vulnerability affecting Cleo file transfer tools has been linked to the new Termite ransomware group. The post Cleo Vulnerability Exploitation Linked to Termite Ransomware Group appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecLaw enforcement shuts down 27 DDoS booters ahead of annual Christmas attackssubmitted by Joker to cybersecurity 1 points | 0 comments https://www.europol.europa.eu/media-press/newsroom/news/law-enforcement-shuts-down-27-ddos-booters-ahead-of-annual-christmas-attacksINFOSEC.PUB
11 DecFYI OpenCVE 2.0 Opensource Vulnerability Management Platform is outsubmitted by M33 to cybersecurity 1 points | 0 comments https://www.opencve.io/ cross post from : lemmy.sdf.org/post/26290623 OpenCVE 2.0 Opensource Vulnerability Management Platform is out 😸 www.opencve.io github.com/opencve/opencve/releases/tag/v2.0.0 #cybersecurity #cve #cvss …SH.ITJUST.WORKS
11 DecMicrosoft MFA AuthQuake Flaw Enabled Unlimited Brute-Force Attempts Without AlertsCybersecurity researchers have flagged a "critical" security vulnerability in Microsoft's multi-factor authentication (MFA) implementation that allows an attacker to trivially sidestep the protection and gain unauthorized access to a victim's account. "The bypass was simple: it t…THEHACKERNEWS.COM
11 DecResearchers uncover Chinese spyware used to target Android devicesThe spyware, called EagleMsgSpy, has been used by Chinese law enforcement, according to cybersecurity firm Lookout. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
11 DecNew Malware Technique Could Exploit Windows UI Framework to Evade EDR ToolsA newly devised technique leverages a Windows accessibility framework called UI Automation (UIA) to perform a wide range of malicious activities without tipping off endpoint detection and response (EDR) solutions. "To exploit this technique, a user must be convinced to run a prog…THEHACKERNEWS.COM
11 DecUS Charged Chinese Hackers for Exploiting Thousands of FirewallThe US Treasury Department’s Office of Foreign Assets Control (OFAC) has sanctioned Sichuan Silence Information Technology Company and its employee Guan Tianfeng for their involvement in the April 2020 global firewall compromise, which targeted numerous US critical infrastr…GBHACKERS.COM
11 DecKrispy Kreme discloses cyberattack that is disrupting online ordersDoughnut multinational Krispy Kreme disclosed a cyberattack that disrupted certain operations, including online ordering in the United States. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
11 DecOperation PowerOFF shuts down 27 DDoS-for-hire platformsLaw enforcement agencies from 15 countries have taken 27 DDoS-for-hire services offline, also known as "booters" or "stressers," arrested three administrators, and identified 300 customers of the platforms. [...]BLEEPINGCOMPUTER.COM
11 DecLookout Discovers New Chinese Surveillance Tool Used by Public Securitysubmitted by Joker to cybersecurity 1 points | 0 comments https://www.lookout.com/threat-intelligence/article/eaglemsgspy-chinese-android-surveillanceware EagleMsgSpy is a lawful intercept surveillance tool developed by a Chinese software development company with use by public se…INFOSEC.PUB
11 DecNew Malware Technique Could Exploit Windows UI Framework to Evade EDR Toolssubmitted by kid to cybersecurity 1 points | 0 comments https://thehackernews.com/2024/12/new-malware-technique-could-exploit.htmlSH.ITJUST.WORKS
11 DecOasis Security Research Team Discovers Microsoft Azure MFA Bypasssubmitted by Joker to cybersecurity 1 points | 0 comments https://www.oasis.security/resources/blog/oasis-security-research-team-discovers-microsoft-azure-mfa-bypassINFOSEC.PUB
11 DecCardiac surgery device manufacturer falls prey to ransomwareThe healthcare industry has been increasingly in the crosshairs of cyberattackers this year, with ransomware near the top of the sector’s biggest cyber threats . Hackers are attacking IT systems and personal data , among other things, with the aim of manipulation or theft. But it…CSOONLINE.COM
11 DecMultiple Vulnerabilities in Ivanti Cloud Services Application (CSA) Could Allow for Remote Code ExecutionMultiple vulnerabilities have been discovered in Ivanti Cloud Services Application (CSA), the most severe of which could allow for remote code execution. Ivanti Endpoint Manager is a client-based unified endpoint management software. Successful exploitation of the most severe of …CISECURITY.ORG
11 DecThe imperative for governments to leverage genAI in cyber defenseIn an era where cyber threats are evolving at an unprecedented pace, the need for robust cyber defense mechanisms has never been more critical. Sixty-two percent of all cyberattacks focus on public sector organizations directly and indirectly. Nation-state actors, equipped with g…CSOONLINE.COM
11 DecApple Updates Everything (iOS, iPadOS, macOS, watchOS, tvOS, visionOS), (Wed, Dec 11th)Apple today released patches for all of its operating systems. The updates address 46 different vulnerabilities. Many of the vulnerabilities affect more than one operating system. None of the vulnerabilities are labeled as being already exploited. ISC.SANS.EDU
11 DecNew EagleMsgSpy Android spyware used by Chinese police, researchers sayA previously undocumented Android spyware called 'EagleMsgSpy' has been discovered and is believed to be used by law enforcement agencies in China to monitor mobile devices. [...]BLEEPINGCOMPUTER.COM
11 DecRansomware Hackers Exploiting Cleo Software Zero-DayAttackers Target Managed File Transfer Software Vulnerabilities File transfer software made by Cleo Communications is under active attack and a patch meant to stymie hackers doesn't fix the flaw, say security researchers from Huntress. Hackers exploit an arbitrary file-write vuln…DATABREACHTODAY.CO.UK
11 DecHunk Companion WordPress plugin exploited to install vulnerable pluginsHackers are exploiting a critical vulnerability in the "Hunk Companion" plugin to install and activate other plugins with exploitable flaws directly from the WordPress.org repository. [...]BLEEPINGCOMPUTER.COM
11 DecRisky Business #774 -- Cleo file transfer appliances under widespread attackOn this week’s show, Patrick Gray and Adam Boileau discuss the week’s cybersecurity news, including: Cleo file transfer products have a remote code exec, here we go again! Snowflake phases out password-based auth Chinese Sophos-exploit-dev company gets sanctioned Romania’s electi…RISKY.BIZ
📋 SECURITY BULLETINS 5[−]
11 DecChrome Security Update, Patch For Multiple VulnerabilitiesGoogle has released a new update on the Stable channel for its Chrome browser, addressing a series of security vulnerabilities. The update has been rolled out as version 131.0.6778.139/.140 for Windows and Mac, and 131.0.6778.139 for Linux. Users can expect the patch to become av…GBHACKERS.COM
11 DecDecember Patch Tuesday arrives bearing 71 giftsSeventeen Critical-severity CVEs ready to deck your halls; also, new blog guidance for Windows Server adminsSOPHOS.COM
11 DecICS Patch Tuesday: Security Advisories Released by Siemens, Schneider, CISA, OthersDecember 2024 ICS Patch Tuesday brings advisories from CISA, as well as several major industrial automation companies. The post ICS Patch Tuesday: Security Advisories Released by Siemens, Schneider, CISA, Others appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecIs it a bad idea to go on with a pixel 4a?submitted by MTK to cybersecurity 3 points | 0 comments Hi, I have a pixel 4a that I love and works great (with CalyxOS) I bought it when it came out and I really don’t want a new phone, but… Security updates from google stopped for the 4a about a year and a bit ago, and for the …SH.ITJUST.WORKS
11 DecApple Pushes Major iOS, macOS Security UpdatesCupertino ships iOS 18.2 and macOS Sequoia 15.2 patches to fix data leakage, sandbox escapes and code exection vulnerabilities. The post Apple Pushes Major iOS, macOS Security Updates appeared first on SecurityWeek .SECURITYWEEK.COM
📢 SECURITY ADVISORIES 15[−]
11 DecDisclosure Rules Lead To Less Disclosure: Cyber Security Today for Wednesday, December 11, 2024SEC Cyber Disclosure Rules, Deloitte Hack Denial, and Critical Microsoft & SAP Patches | Cybersecurity Today In this episode of Cybersecurity Today, host Jim Love delves into the ongoing confusion and compliance struggles faced by companies one year after the SEC's cyber disclosu…CYBERSECURITYTODAY.LIBSYN.COM
11 DecFinancial Sector Turning to Multi-Cloud StrategiesReport: Financial Orgs Shift to Multi-Cloud to Address Cyberthreats and Regulation Financial institutions are increasingly adopting multi-cloud strategies to mitigate rising cyber risks and comply with complex regulations, according to a new report. Although the move enhances fle…DATABREACHTODAY.CO.UK
11 DecRumänien kommt digital weiterhin nicht zur RuheNehmen die Russen Rache an Rumänien für die gescheiterte Wahl „ihres“ Kandidaten? structuresxx – shutterstock.com Zuerst wurde die rumänischen Präsidentschaftswahlen annulliert , nachdem sie durch eine mutmaßlich russisch gesteuerte TikTok-Kampagne beeinflusst wurden. Jetzt wurde…CSOONLINE.COM
11 DecResearchers Uncover Espionage Tactics of China-Based APT Groups in Southeast AsiaA suspected China-based threat actor has been linked to a series of cyber attacks targeting high-profile organizations in Southeast Asia since at least October 2023. The espionage campaign targeted organizations in various sectors spanning government ministries in two different c…THEHACKERNEWS.COM
11 DecAPT-C-60 Hackers Penetrate Org’s Network Using a Weapanized Google Drive linkThe Japan Computer Emergency Response Team Coordination Center (JPCERT/CC) has confirmed an advanced cyber attack against organizations in Japan, believed to have been conducted by the cyber espionage group APT-C-60. The attackers used phishing techniques, masquerading as a job a…GBHACKERS.COM
11 DecClearinghouse Pays $250K Settlement in Web Exposure BreachInmediata Health Group Has Paid $2.7M in Fines, Civil Claims for 2019 HIPAA Breach A breach that exposed the personal information of nearly 1.6 million patients of a Puerto Rico-based clearinghouse has led to a $250,000 financial settlement with federal regulations for multiple H…DATABREACHTODAY.CO.UK
11 DecAI Meets Fraud Prevention in LexisNexis-IDVerse AcquisitionLexisNexis Combines AI-Driven Document Authentication With Its Fraud Solutions To counter AI-driven fraud, LexisNexis acquired IDVerse, a London-based startup focused on document authentication and regulatory compliance. This acquisition aims to seamlessly integrate advanced tool…DATABREACHTODAY.CO.UK
🔥 INCIDENT REPORTING 14[−]
11 DecHoliday Season Cyber Threats (Part 2): Ransomware, Gift Cards, and Point-of-Sale breachessubmitted by Joker to cybersecurity 1 points | 0 comments https://intel471.com/blog/holiday-season-cyber-threats-part-2-ransomware-gift-cards-and-point-of-sale-breachesINFOSEC.PUB
11 Dec446,000 Impacted by Center for Vein Restoration Data BreachCenter for Vein Restoration discloses data breach impacting the personal, medical, and financial information of 446,000 individuals. The post 446,000 Impacted by Center for Vein Restoration Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecHersteller von Geräten für die Herzchirurgie angegriffenCyberkriminelle üben immer häufiger Druck auf den Gesundheitssektor aus – sei es durch den Diebstahl von Daten oder Angriffe auf Zulieferer. Germany only – metamorworks/shutterstock.com Der Schutz der KRITIS wird in Deutschland seit Jahren gefordert und gefördert, macht dabei abe…CSOONLINE.COM
11 DecOn holiday: Most important policies for reduced staffOn Christmas Eve, 2023, the Ohio State Lottery had to shut down some of its systems because of a cyberattack. Around the same time, the Dark Web had a “Leaksmas” event, where cyber criminals shared stolen information for free as a holiday gift. In fact, the month of D…SECURITYINTELLIGENCE.COM
11 DecKrispy Kreme cyberattack impacts online orders and operationsUS doughnut chain Krispy Kreme suffered a cyberattack in November that impacted portions of its business operations, including placing online orders. [...]BLEEPINGCOMPUTER.COM
11 DecReserachers Uncovered Zloader DNS Tunneling Tactics For Stealthy C2 CommunicationZloader, a sophisticated Trojan, has recently evolved with features that enhance its stealth and destructive potential, as the latest version, 2.9.4.0, introduces a custom DNS tunnel for covert C2 communications, bypassing traditional network security measures.  An interacti…GBHACKERS.COM
11 DecLynx ransomware behind Electrica energy supplier cyberattack​The Romanian National Cybersecurity Directorate (DNSC) says the Lynx ransomware gang breached Electrica Group, one of the largest electricity suppliers in the country. [...]BLEEPINGCOMPUTER.COM
11 DecKrispy Kreme Discovers Cybersecurity HolePublicly Traded Firm Discloses 'Material' Incident to US Federal Regulators Fried dough lovers beware: doughnut juggernaut Krispy Kreme told U.S. federal regulators Wednesday it will have ongoing operational difficulties due to a cybersecurity incident. Shops are open and consume…DATABREACHTODAY.CO.UK
11 DecManufacturing vs. U.S. SLED: Cybersecurity Showdown!Manufacturing struggles, but U.S. SLED is leading the charge in cybersecurity maturity! 🌐 From a global survey of companies with 500+ employees, only 35% had an incident response plan—shocking, right? Learn why U.S. SLED is outperforming and what it means for your cybersecurity s…YOUTUBE.COM
11 DecNo Doughnuts Today? Cyberattack Puts Krispy Kreme in a Sticky SituationThe doughnut and coffeehouse chain confirmed a cyberattack took out parts of its online ordering system in parts of the United States. The post No Doughnuts Today? Cyberattack Puts Krispy Kreme in a Sticky Situation appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecChinese APT Groups Targets European IT CompaniesEvidence Mounts for Chinese Hacking 'Quartermaster' A probable Chinese nation-state threat actor compromised Visual Studio Code and Microsoft Azure cloud infrastructure to target Western technology firms for espionage, security firms Tinexta Cyber and SentinelLabs said. The compa…DATABREACHTODAY.CO.UK
11 DecResearchers Crack Microsoft Azure MFA in an Hoursubmitted by BrikoX to cybersecurity 1 points | 0 comments https://www.darkreading.com/cyberattacks-data-breaches/researchers-crack-microsoft-azure-mfa-hour A critical flaw in the company’s rate limit for failed sign-in attempts allowed unauthorized access to a user account, incl…SH.ITJUST.WORKS
11 DecSymmetrical Cryptography Pioneer Targets Post-Quantum Erasubmitted by BrikoX to cybersecurity 1 points | 0 comments https://www.darkreading.com/cyber-risk/symmetrical-cryptography-post-quantum-era Researchers at Cavero have created a correlating numbers mechanism, adding a layer of privacy that even threat actors can’t gain enough info…SH.ITJUST.WORKS
11 DecMicrosoft Defender XDR demonstrates 100% detection coverage across all cyberattack stages in the 2024 MITRE ATT&CK® Evaluations: Enterprise​​For the sixth year in a row, Microsoft Defender XDR demonstrated industry-leading extended detection and response (XDR) capabilities in the independent MITRE ATT&CK® Evaluations: Enterprise. The cyberattack used during the detection test highlights the importance of a unifie…MICROSOFT.COM
🕵️ THREAT INTELLIGENCE 40[−]
11 DecISC Stormcast For Wednesday, December 11th, 2024 https://isc.sans.edu/podcastdetail/9250, (Wed, Dec 11th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
11 DecOperation Digital Eye | Chinese APT Compromises Critical Digital Infrastructure via Visual Studio Code Tunnelssubmitted by Joker to cybersecurity 1 points | 0 comments https://www.sentinelone.com/labs/operation-digital-eye-chinese-apt-compromises-critical-digital-infrastructure-via-visual-studio-code-tunnels/INFOSEC.PUB
11 DecUS Charges, Sanctions Chinese Man Accused of Sophos Firewall HackingThe US government announced charges, sanctions and a reward for Guan Tianfeng, a Chinese national accused of involvement in Sophos firewall hacks. The post US Charges, Sanctions Chinese Man Accused of Sophos Firewall Hacking appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecIvanti Patches Critical Flaws in Connect Secure, Cloud Services ApplicationIvanti has released patches for critical vulnerabilities in Cloud Services Application, Connect Secure, and Policy Secure. The post Ivanti Patches Critical Flaws in Connect Secure, Cloud Services Application appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecOperation Digital Eye | Chinese APT Compromises Critical Digital Infrastructure via Visual Studio Code Tunnelssubmitted by kid to cybersecurity 1 points | 0 comments https://www.sentinelone.com/labs/operation-digital-eye-chinese-apt-compromises-critical-digital-infrastructure-via-visual-studio-code-tunnels/SH.ITJUST.WORKS
11 DecMeeten Malware: A Cross-Platform Threat to Crypto Wallets on macOS and Windowssubmitted by kid to cybersecurity 1 points | 0 comments https://www.cadosecurity.com/blog/meeten-malware-threatSH.ITJUST.WORKS
11 DecBlack Basta Gang Uses MS Teams, Email Bombing to Spread Malwaresubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/black-basta-gang-ms-teams-email-bombing-malware/SH.ITJUST.WORKS
11 DecMitigating NTLM Relay Attacks by Default | MSRC Blog | Microsoft Security Response Centersubmitted by kid to cybersecurity 1 points | 0 comments https://msrc.microsoft.com/blog/2024/12/mitigating-ntlm-relay-attacks-by-default/SH.ITJUST.WORKS
11 DecJailbreaking LLM-Controlled RobotsSurprising no one, it’s easy to trick an LLM-controlled robot into ignoring its safety instructions.SCHNEIER.COM
11 DecGoogle’s Willow Chip Signals the Urgency of Post-Quantum Cryptography MigrationGoogle’s Willow quantum chip marks a transformative moment in quantum computing development. The post Google’s Willow Chip Signals the Urgency of Post-Quantum Cryptography Migration appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecAtlassian, Splunk Patch High-Severity VulnerabilitiesAtlassian and Splunk on Tuesday announced patches for over two dozen vulnerabilities, including high-severity flaws. The post Atlassian, Splunk Patch High-Severity Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecAnalysis of Nova: A Snake Keylogger Forksubmitted by Joker to cybersecurity 1 points | 0 comments https://any.run/cybersecurity-blog/nova-keylogger-malware-analysis/ In this malware analysis report, we will delve into Nova, a newly discovered fork of the Snake Keylogger family. This variant has been observed employing …INFOSEC.PUB
11 DecWindows RDP Service Flaw let Hackers Execute Remote Codesubmitted by kid to cybersecurity 1 points | 0 comments https://gbhackers.com/windows-rdp-service-flaw/SH.ITJUST.WORKS
11 DecZLoader Malware Returns With DNS Tunneling to Stealthily Mask C2 CommsCybersecurity researchers have discovered a new version of the ZLoader malware that employs a Domain Name System (DNS) tunnel for command-and-control (C2) communications, indicating that the threat actors are continuing to refine the tool after resurfacing a year ago. "Zloader 2.…THEHACKERNEWS.COM
11 DecGoogle Pays $55,000 for High-Severity Chrome Browser BugGoogle pushes out major Chrome browser updates to fix multiple serious security defects. The post Google Pays $55,000 for High-Severity Chrome Browser Bug appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecNearly Half a Billion Emails in 2024 Were MaliciousA new report from Hornetsecurity has found that 427.8 million emails received by businesses in 2024 contained malicious content.KNOWBE4.COM
11 DecFrom Silos to Synergy: Gen AI Aligns IT and Security TeamsDruva CTO Stephen Manley on AI's Role in Modern Data Security Historically, IT and security teams have operated in silos, creating gaps in knowledge and response. Gen AI bridges this gap through natural language interfaces, enabling better communication and understanding between …DATABREACHTODAY.CO.UK
11 DecBadRAM Attack Uses $10 Equipment to Break AMD Processor ProtectionsAcademic researchers devise BadRAM, a new attack that uses $10 equipment to break AMD’s latest trusted execution environment protections. The post BadRAM Attack Uses $10 Equipment to Break AMD Processor Protections appeared first on SecurityWeek .SECURITYWEEK.COM
11 DecHackers Deploy Weaponized LNK Files for Malicious Payload DeliveryResearchers reported a phishing attack on December 4th, 2024, where malicious emails purportedly from the Ukrainian Union of Industrialists and Entrepreneurs were distributed, inviting recipients to a NATO standardization conference.  The emails aimed to compromise systems b…GBHACKERS.COM
11 DecNews alert: DMD Diamond invites developers to participate in open beta for its v4 blockchainVienna, Austria, Dec. 11, 2024, CyberNewswire — DMD Diamond , one of the oldest blockchain projects in the space, has announced the start of Open Beta for the DMD Diamond v4 blockchain. Established in 2013, DMD Diamond is recognized as … (more…) The post News alert: D…LASTWATCHDOG.COM
11 DecCortex XDR Delivers Unmatched 100% Detection in MITRE ATT&CK Round 6Cortex XDR achieves 100% technique-level detection in the 2024 MITRE ATT&CK evaluation. The post Cortex XDR Delivers Unmatched 100% Detection in MITRE ATT&CK Round 6 appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
11 DecEvil ISPs, Deloitte, YOLO11, Microsoft, Gift Cards, Navix, Telegram, Josh Marpet... - SWN #436Evil ISPs, Deloitte, YOLO11, Microsoft, Gift Cards, Navix, Horror, Telegram, Josh Marpet and more on the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-436YOUTUBE.COM
11 DecLikely China-based Attackers Target High-profile Organizations in Southeast Asiasubmitted by Joker to cybersecurity 0 points | 0 comments https://www.security.com/threat-intelligence/china-southeast-asia-espionage Espionage campaign targeted organizations in various sectors, including government, aviation, telecommunications, and more.INFOSEC.PUB
11 DecAuthQuake Flaw Allowed MFA Bypass Across Azure, Office 365 Accountssubmitted by kid to cybersecurity 1 points | 0 comments https://hackread.com/authquake-flaw-mfa-bypass-azure-office-365-accounts/SH.ITJUST.WORKS
11 DecWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 2 points | 0 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
11 DecTrust Hijacked: The Subtle Art of Phishing Through Familiar Facadessubmitted by Joker to cybersecurity 2 points | 0 comments https://www.group-ib.com/blog/trust-hijacked/INFOSEC.PUB
11 DecOperation PowerOFF shuts down 27 DDoS-for-hire platformssubmitted by kid to cybersecurity 2 points | 0 comments https://www.bleepingcomputer.com/news/security/operation-poweroff-shuts-down-27-ddos-for-hire-platforms/SH.ITJUST.WORKS
11 DecSecret Blizzard Deploys Kazuar Backdoor in Ukraine Using Amadey Malware-as-a-ServiceThe Russian nation-state actor tracked as Secret Blizzard has been observed leveraging malware associated with other threat actors to deploy a known backdoor called Kazuar on target devices located in Ukraine. The new findings come from the Microsoft threat intelligence team, whi…THEHACKERNEWS.COM
11 DecCybercriminals Impersonate Dubai Police to Defraud Consumers in the UAE - Smishing Triad in Actionsubmitted by Joker to cybersecurity 1 points | 0 comments https://www.resecurity.com/blog/article/cybercriminals-impersonate-dubai-police-to-defraud-consumers-in-the-uae-smishing-triad-in-actionINFOSEC.PUB
11 DecResecurity introduces Government Security Operations Center (GSOC) at NATO Edge 2024Resecurity, a global leader in cybersecurity solutions, unveiled its advanced Government Security Operations Center (GSOC) during NATO Edge 2024, the NATO Communications and Information Agency’s flagship conference. The solution is also specifically tailored for MSSPs that protec…GBHACKERS.COM
11 DecDMD Diamond Launches Open Beta for v4 Blockchain Ahead of 2025 MainnetDMD Diamond – one of the oldest blockchain projects in the space has announced the start of Open Beta for the DMD Diamond v4 blockchain. Established in 2013, DMD Diamond is recognized as a decentralized, community-driven initiative. The v4 blockchain introduces a host …GBHACKERS.COM
11 DecTeaching an Old Framework New Tricks: The Dangers of Windows UI Automationsubmitted by Joker to cybersecurity 1 points | 0 comments https://www.akamai.com/blog/security-research/2024-december-windows-ui-automation-attack-technique-evades-edrINFOSEC.PUB
11 DecRussian Turla hackers hit Starlink-connected devices in UkraineRussian cyber-espionage group Turla, aka "Secret Blizzard," is utilizing other threat actors' infrastructure to target Ukrainian military devices connected via Starlink. [...]BLEEPINGCOMPUTER.COM
11 DecFrequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack Ukrainesubmitted by Joker to cybersecurity 1 points | 0 comments https://www.microsoft.com/en-us/security/blog/2024/12/11/frequent-freeloader-part-ii-russian-actor-secret-blizzard-using-tools-of-other-groups-to-attack-ukraine/INFOSEC.PUB
11 DecBlack Hat Europe: Chaos Puts Cybersecurity in the Hot SeatAccelerationism Drives Questions of Control for Cybersecurity and the Internet With everything in the world lately seeming to reach end states faster - sometimes referred to as the "super cycle" or accelerationism - cybersecurity professionals must help their organizations "organ…DATABREACHTODAY.CO.UK
11 DecPredictive AI and the Future of Fleet MaintenanceSarvant Singh of Penske Transportation Solutions on AI-Powered Fleet Optimization Predictive AI solutions can now anticipate maintenance needs before issues arise, enabling fleet operators to schedule timely repairs and prevent disruptions, said Sarvant Singh, vice president, dat…DATABREACHTODAY.CO.UK
11 DecRussian cyber spies hide behind other hackers to target UkraineRussian cyber-espionage group Turla, aka "Secret Blizzard," is utilizing other threat actors' infrastructure to target Ukrainian military devices connected via Starlink. [...]BLEEPINGCOMPUTER.COM
11 DecUS Defense Bill Includes Major Focus on Tech, AI and CyberDefense Bill Targets Key Investments in AI, Cybersecurity and Quantum Technologies An $895 billion National Defense Authorization Act features key provisions for significant investments in artificial intelligence, cybersecurity and quantum technology, including initiatives aimed …DATABREACHTODAY.CO.UK
11 DecCheap Phone Scanner Shows Lots Of People Are Still Being Targeted By NSO Group Spywaresubmitted by PhilipTheBucket to cybersecurity 2 points | 0 comments https://www.techdirt.com/2024/12/11/cheap-phone-scanner-shows-lots-of-people-are-still-being-targeted-by-nso-group-spyware/SH.ITJUST.WORKS
11 DecFrequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack UkraineSince January 2024, Microsoft has observed Secret Blizzard using the tools or infrastructure of other threat groups to attack targets in Ukraine and download its custom backdoors Tavdig and KazuarV2. The post Frequent freeloader part II: Russian actor Secret Blizzard using tools …MICROSOFT.COM
📡 INFOSEC NEWS 9[−]
11 DecKeeping it real: Sophos and the 2024 MITRE ATT&CK Evaluations: EnterpriseSophos X-Ops looks at the realism of this year’s MITRE ATT&CK EvaluationsSOPHOS.COM
11 DecEnron’s Bold Move: Crypto & Energy SustainabilityEnron is making headlines again! 🌍💡 But this time, they’re claiming to tackle the global energy crisis with a crypto coin?! 🤔 In this short, we dive into their bold claims and ask the big questions: Can crypto and energy sustainability really go hand in hand, or is this just anot…YOUTUBE.COM
11 DecRussian government spies targeted Ukraine using tools developed by cybercriminalsResearchers say a hacking group linked to the FSB used tools developed by a cybercrime group to target Ukraine's Army and Border Guard. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
11 DecWhy Most People FAIL at Attack Surface Management!Why are so many people failing at attack surface management? 🤔 In this short, Paul and Ken dive into what’s missing in most organizations' strategies and why it's not just about monitoring — it’s about action. From scanning for vulnerabilities to creating robust processes, discov…YOUTUBE.COM
11 DecFacebook, Instagram, WhatsApp hit by massive worldwide outageFacebook, Instagram, Threads, and WhatsApp suffered a massive worldwide Wednesday afternoon, with services impacted in varying degrees based on user's region. [...]BLEEPINGCOMPUTER.COM
11 DecMicrosoft lifts Windows 11 24H2 block on PCs with USB scannersMicrosoft has lifted a compatibility block preventing Windows 11 24H2 upgrades after fixing a bug causing USB connection issues to some scanners. [...]BLEEPINGCOMPUTER.COM
11 DecHow Cryptocurrency Turns to Cash in Russian BanksA financial firm registered in Canada has emerged as the payment processor for dozens of Russian cryptocurrency exchanges and websites hawking cybercrime services aimed at Russian-speaking customers, new research finds. Meanwhile, an investigation into the Vancouver street addres…KREBSONSECURITY.COM
11 DecCynet Delivers 100% Protection and 100% Detection Visibility in the 2024 MITRE ATT&CK EvaluationThe 2024 MITRE ATT&CK Evaluation results are now available with Cynet achieving 100% Visibility and 100% Protection in the 2024 evaluation. Learn more from Cynet about what these results mean. [...]BLEEPINGCOMPUTER.COM
11 DecCybersecurity Gadgets to Hack Your Holiday Gift ListTech and Training Ideas to Help Cyber Professionals Advance Their Skills If you're a cybersecurity professional trying to come up with ideas for your holiday wish list (or maybe you’re a loved one trying to pick out the perfect gift), look no further! Here are some top picks that…DATABREACHTODAY.CO.UK