🚨 CISA KEV 1[−]
23 Dec KEVCISA Adds One Known Exploited Vulnerability to CatalogCISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog , based on evidence of active exploitation. CVE-2021-44207 Acclaim Systems USAHERDS Use of Hard-Coded Credentials Vulnerability These types of vulnerabilities are frequent attack vecto…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
23 DecDigiEver IoT Devices Exploited To Deliver Mirai-based MalwareA new Mirai-based botnet, “Hail Cock Botnet,” has been exploiting vulnerable IoT devices, including DigiEver DVRs and TP-Link devices with CVE-2023-1389. The botnet, active since September 2024, leverages a variant of Mirai malware with enhanced encryption. A re…GBHACKERS.COM
23 Dec KEVTop 7 zero-day exploitation trends of 2024Zero-day vulnerabilities saw big growth once again in 2024. With no patch available, zero-day flaws give attackers a significant jump on cybersecurity defense teams, making them a critical weapon for attacking enterprise systems. But while all zero-days are essential for CISOs an…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 13[−]
23 DecApache fixes remote code execution bypass in Tomcat web serverApache has released a security update that addresses an important vulnerability in Tomcat web server that could lead to an attacker achieving remote code execution. [...]BLEEPINGCOMPUTER.COM
23 DecSophos Patches Critical Firewall VulnerabilitiesSophos has released patches for a critical-severity firewall vulnerability that could lead to remote code execution. The post Sophos Patches Critical Firewall Vulnerabilities appeared first on SecurityWeek .SECURITYWEEK.COM
23 DecU.S. Judge Rules Against NSO Group in WhatsApp Pegasus Spyware CaseMeta Platforms-owned WhatsApp scored a major legal victory in its fight against Israeli commercial spyware vendor NSO Group after a federal judge in the U.S. state of California ruled in favor of the messaging giant for exploiting a security vulnerability to deliver Pegasus. "The…THEHACKERNEWS.COM
23 DecHackers Exploiting PLC Controllers In US Water Management System To Gain Remote AccessA joint Cybersecurity Advisory (CSA) warns of ongoing exploitation attempts by Iranian Islamic Revolutionary Guard Corps (IRGC)-affiliated cyber actors using the online persona “CyberAv3ngers.” These actors are targeting and compromising Unitronics Vision Series…GBHACKERS.COM
23 DecNew Watering Hole Attack That Used Fake Adobe Flash Player Update To Deliver MalwareCybersecurity threats are increasingly targeting vulnerabilities in publicly exposed assets like VPNs and firewalls, exploited by various actors, including APT groups and ransomware gangs. While this focus is understandable, it’s crucial not to neglect traditional att…GBHACKERS.COM
23 DecNorth Korean Hackers Stolen $2.2 Billion from Crypto Platforms in 2024North Korean hackers are estimated to have stolen a staggering $2.2 billion in 2024, up 21% from 2023. With advanced tactics and increasing sophistication, the Democratic People’s Republic of Korea (DPRK) has positioned itself as a dominant force in crypto theft, targeting both d…GBHACKERS.COM
23 Dec4 Wege zu neuer CyberabwehrstärkeGenerative AI kann traditionellen Sicherheitsmaßnahmen neuen “Schwung” verleihen. Henri Studios | shutterstock.com Von Smartphones und Wearables über IoT-Geräte bis hin zu Cloud-Infrastrukturen – die Bandbreite und Komplexität unseres digitalen Ökosystems nimmt weiterhin in beisp…CSOONLINE.COM
23 DecThe Fraudster Glossarysubmitted by Joker to cybersecurity 6 points | 0 comments https://fraudsterglossary.com/ The purpose of The Fraudster Glossary (TFG) is to encourage more cybercrime researchers and law enforcement officers to go on offense against the criminals who use social media and messaging …INFOSEC.PUB
23 DecDigiEver Fix That IoT Thing!submitted by Joker to cybersecurity 2 points | 0 comments https://www.akamai.com/blog/security-research/digiever-fix-that-iot-thing Executive summary > - A vulnerability in DigiEver DS-2105 Pro DVRs is being exploited to spread malware. > - The Akamai Security Intelligence …INFOSEC.PUB
23 DecA Vulnerability in Apache Struts2 Could Allow for Remote Code ExecutionA vulnerability has been discovered in Apache Struts2, which could allow for remote code execution. Apache Struts2 is an open-source web application framework used for developing Java web applications. Successful exploitation of this vulnerability could allow for remote code exec…CISECURITY.ORG
23 DecAdobe warns of critical ColdFusion bug with PoC exploit codeAdobe has released out-of-band security updates to address a critical ColdFusion vulnerability with proof-of-concept exploit code. [...]BLEEPINGCOMPUTER.COM
23 DecUS court finds spyware maker NSO liable for WhatsApp hacksA U.S. federal judge has ruled that Israeli spyware maker NSO Group violated U.S. hacking laws by using WhatsApp zero-days to deploy Pegasus spyware on at least 1,400 devices. [...]BLEEPINGCOMPUTER.COM
23 DecHow Hackers Exploit UEFI Vulnerabilities 🛡️ #CyberAwareHow safe is your system firmware? Hackers are now exploiting vulnerabilities hidden deep in UEFI, the essential software connecting your hardware and operating system. From Intel’s development kits to customizations by Dell, HP, and Lenovo, no step in the supply chain is immune. …YOUTUBE.COM
📢 SECURITY ADVISORIES 5[−]
23 DecTop 10 Cybersecurity Trends to Expect in 2025The 2025 cybersecurity landscape is increasingly complex, driven by sophisticated cyber threats, increased regulation, and rapidly evolving technology. In 2025, organizations will be challenged with protecting sensitive information for their customers while continuing to provide …THEHACKERNEWS.COM
23 DecItaly Fines OpenAI €15 Million for ChatGPT GDPR Data Privacy ViolationsItaly's data protection authority has fined ChatGPT maker OpenAI a fine of €15 million ($15.66 million) over how the generative artificial intelligence application handles personal data. The fine comes nearly a year after the Garante found that ChatGPT processed users' informatio…THEHACKERNEWS.COM
🔥 INCIDENT REPORTING 15[−]
23 Dec5.6 Million Impacted by Ransomware Attack on Healthcare Giant AscensionAscension Health says the personal, medical, and payment information of 5.6 million people was stolen in a May 2024 ransomware attack. The post 5.6 Million Impacted by Ransomware Attack on Healthcare Giant Ascension appeared first on SecurityWeek .SECURITYWEEK.COM
23 DecLockBit Ransomware Developer Arrested in Israel at Request of USDual Russian and Israeli national has been arrested in Israel and will be extradited to the US to face charges related to LockBit ransomware development. The post LockBit Ransomware Developer Arrested in Israel at Request of US appeared first on SecurityWeek .SECURITYWEEK.COM
23 Dec⚡ THN Weekly Recap: Top Cybersecurity Threats, Tools and TipsThe online world never takes a break, and this week shows why. From ransomware creators being caught to hackers backed by governments trying new tricks, the message is clear: cybercriminals are always changing how they attack, and we need to keep up. Hackers are using everyday to…THEHACKERNEWS.COM
23 DecSkuld Malware Using Weaponized Windows Utilities Packages To Deliver MalwareResearchers discovered a malware campaign targeting the npm ecosystem, distributing the Skuld info stealer through malicious packages disguised as legitimate tools. The threat actor, “k303903,” compromised hundreds of machines before the packages were removed. Subsequ…GBHACKERS.COM
23 DecNew Python NodeStealer Attacking Facebook Business To Steal Login CredentialsNodeStealer, initially a JavaScript-based malware, has evolved into a more sophisticated Python-based threat that targets Facebook Ads Manager accounts, stealing sensitive financial and business data in addition to credit card details and browser information. The malware is…GBHACKERS.COM
23 Dec17M Patient Records Stolen in Ransomware Attack on Three California HospitalsA staggering 17 million patient records, containing sensitive personal and medical information, have been stolen in a devastating ransomware attack on PIH Health. The cyberattack, which began on December 1, has disrupted operations at three hospitals: PIH Health Downey Hospital, …GBHACKERS.COM
23 DecWhatsApp scores historic victory against NSO Group in long-running spyware hacking caseA US judge ruled that the Israeli spyware maker breached hacking laws by using WhatsApp to infect devices with Pegasus © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
23 DecSuspected LockBit dev faces extradition to the USsubmitted by PhilipTheBucket to cybersecurity 1 points | 0 comments https://go.theregister.com/feed/www.theregister.com/2024/12/23/lockbit_ransomware_dev_extradition/SH.ITJUST.WORKS
23 DecTop 5 Ransomware Attacks and Data Breaches of 2024 - Cybersecurity Insiderssubmitted by kid to cybersecurity 2 points | 0 comments https://www.cybersecurity-insiders.com/top-5-ransomware-attacks-and-data-breaches-of-2024SH.ITJUST.WORKS
23 DecNotLockBit: New Cross-Platform Ransomware Threatens Windows and macOSsubmitted by kid to cybersecurity 9 points | 0 comments https://securityonline.info/notlockbit-new-cross-platform-ransomware-threatens-windows-and-macos/SH.ITJUST.WORKS
23 DecUS hospital operator Ascension says 5.6 million affected in medical data breach in Maysubmitted by kid to cybersecurity 12 points | 1 comments https://www.reuters.com/technology/cybersecurity/us-hospital-operator-ascension-says-56-million-affected-medical-data-breach-may-2024-12-20/SH.ITJUST.WORKS
23 DecCriminal Complaint against LockBit Ransomware WriterThe Justice Department has published the criminal complaint against Dmitry Khoroshev, for building and maintaining the LockBit ransomware.SCHNEIER.COM
23 DecFTC orders Marriott and Starwood to implement strict data securityThe Federal Trade Commission (FTC) has ordered Marriott International and Starwood Hotels to define and implement a robust customer data security scheme following failures that led to massive data breaches. [...]BLEEPINGCOMPUTER.COM
23 DecRussia’s APT29 Launches Major Spear Phishing CampaignTrend Micro warns that the Russian state-sponsored threat actor Earth Koshchei (also known as “APT29” or “Cozy Bear”) is using spear phishing emails to trick victims into connecting to rogue Remote Desktop Protocol (RDP) relays.KNOWBE4.COM
23 DecHow Many Times Have YOU Been Hacked? 🤯How many times have you been hacked without even knowing it? In today’s digital world, breaches are almost inevitable. Cybersecurity experts warn that assuming you’re safe online is a dangerous myth. From foreign hackers to data-hungry corporations, your personal info is constant…YOUTUBE.COM
🕵️ THREAT INTELLIGENCE 13[−]
23 DecBeware Of Shadow AI – Shadow IT’s Less Well-Known BrotherWhile AI tools can enable employees to be innovative and productive, significant data privacy risks can stem from their usage. The post Beware Of Shadow AI – Shadow IT’s Less Well-Known Brother appeared first on SecurityWeek .SECURITYWEEK.COM
23 DecItaly’s Privacy Watchdog Fines OpenAI for ChatGPT’s Violations in Collecting Users Personal DataItaly’s data protection watchdog fined OpenAI 15 million euros ($15.6 million) after wrapping up a probe into collection of personal data. The post Italy’s Privacy Watchdog Fines OpenAI for ChatGPT’s Violations in Collecting Users Personal Data appeared first on Secur…SECURITYWEEK.COM
23 DecApple Complains Meta Requests Risk Privacy in Spat Over EU Efforts to Widen Access to iPhone TechApple complained that requests from Meta Platforms for access to its operating software threaten user privacy, in a spat fueled by the European Union’s intensifying efforts to get the iPhone maker to open up to products from tech rivals. The post Apple Complains Meta Requests Ris…SECURITYWEEK.COM
23 DecBellaCiao, A new .NET Malware With Advanced Sophisticated TechniquesAn investigation revealed an intrusion in Asia involving the BellaCiao .NET malware, as the initial sample (MD5 14f6c034af7322156e62a6c961106a8c) provided valuable insights into its version and development timeline. A second suspicious sample on the same machine, while exhi…GBHACKERS.COM
23 DecMalicious Apps On Amazon Appstore Records Screen And Interecpt OTP VerificationsA seemingly benign health app, “BMI CalculationVsn,” was found on the Amazon App Store, which secretly collected sensitive user data, including installed app package names and incoming SMS messages, posing a significant privacy threat. The BMI calculator app conceals …GBHACKERS.COM
23 DecLazarus Hackers Using New VNC Based Malware To Attack Organizations WorldwideThe Lazarus Group has recently employed a sophisticated attack, dubbed “Operation DreamJob,” to target employees in critical sectors like nuclear energy, which involves distributing malicious archive files disguised as legitimate job offers. Once executed, these…GBHACKERS.COM
23 DecMentorship Monday - Discussions for career and learning!submitted by shellsharks to cybersecurity 3 points | 0 comments Weekly thread for any and all career, learning and general guidance questions. Thinking of taking a training or going for a cert? Wondering how to level up your career? Wondering what NOT to do? Got other questions? …INFOSEC.PUB
23 DecLazarus Hackers Using New VNC Based Malware To Attack Organizations Worldwidesubmitted by kid to cybersecurity 7 points | 0 comments https://gbhackers.com/lazarus-vnc-attacks/SH.ITJUST.WORKS
23 DecBellaCiao, A new .NET Malware With Advanced Sophisticated Techniquessubmitted by kid to cybersecurity 8 points | 1 comments https://gbhackers.com/bellaciao-malware/SH.ITJUST.WORKS
23 DecNorth Korean hackers stole $1.3 billion worth of crypto this yearsubmitted by kid to cybersecurity 16 points | 1 comments https://www.bleepingcomputer.com/news/security/north-korean-hackers-stole-13-billion-worth-of-crypto-this-year/SH.ITJUST.WORKS
23 Dec"Get Beyond Security Awareness Training" Does Not Mean Forgetting About ItKnowBe4 is a big believer in focusing on decreasing human risk as the best way to decrease cybersecurity risk in most environments.KNOWBE4.COM
23 Dec2024 trends: Were they accurate?The new year always kicks off with a flood of prediction articles; then, 12 months later, our newsfeed is filled with wrap-up articles. But we are often left to wonder if experts got it right in January about how the year would unfold. As we close out 2024, let’s take a mom…SECURITYINTELLIGENCE.COM
23 DecSay Easy, Do Hard, Minimum Viable Security - Part 1 - Jon Fredrickson - BSW VaultCheck out this episode from the BSW Vault, hand picked by main host Matt Alderman! This segment was originally published on January 3, 2023. With the current macro economic head winds, 2023 budgets are either frozen or are flat. Where should CISOs focus these limited budgets to m…YOUTUBE.COM
🌐 CYBER THREAT LANDSCAPE 1[−]
23 DecAI Could Generate 10,000 Malware Variants, Evading Detection in 88% of CaseCybersecurity researchers have found that it's possible to use large language models (LLMs) to generate new variants of malicious JavaScript code at scale in a manner that can better evade detection. "Although LLMs struggle to create malware from scratch, criminals can easily use…THEHACKERNEWS.COM
📡 INFOSEC NEWS 9[−]
23 DecMicrosoft fixes bug behind random Office 365 deactivation errorsMicrosoft has rolled out a fix for a known issue that causes random "Product Deactivated" errors for customers using Microsoft 365 Office apps. [...]BLEEPINGCOMPUTER.COM
23 DecIndustry Moves for the week of December 23, 2024 - SecurityWeekExplore industry moves and significant changes in the industry for the week of December 23, 2024. Stay updated with the latest industry trends and shifts.SECURITYWEEK.COM
23 DecRockstar2FA Collapse Fuels Expansion of FlowerStorm Phishing-as-a-ServiceAn interruption to the phishing-as-a-service (PhaaS) toolkit called Rockstar 2FA has led to a rapid uptick in activity from another nascent offering named FlowerStorm. "It appears that the [Rockstar2FA] group running the service experienced at least a partial collapse of its infr…THEHACKERNEWS.COM
23 DecModiloader From Obfuscated Batch File, (Mon, Dec 23rd)My last investigation is a file called “Albertsons_payment.GZâ€, received via email. The file looks like an archive but is identified as a picture by TrID:
ISC.SANS.EDU
23 DecCrypto scam: seed phrases shared publicly | Kaspersky official blogScammers have devised a new scheme for morally dubious crypto owners.KASPERSKY.COM
23 DecPremium WPLMS WordPress plugins address seven critical flawsTwo WordPress plugins required by the premium WordPress WPLMS theme, which has over 28,000 sales, are vulnerable to more than a dozen critical-severity vulnerabilities. [...]BLEEPINGCOMPUTER.COM
23 Dec“Everything’s Fine” (While the Product is on Fire)Ever heard a CISO say, “Everything’s fine,” while the users are struggling with broken tools? 🔥 This short dives into the disconnect between leadership and hands-on teams in cybersecurity. From overly optimistic feedback to tools that barely work, we reveal the hidden chaos behin…YOUTUBE.COM
23 DecAI's Biggest Bottleneck Revealed! 💻AI is transforming the world, but did you know data transfer is its biggest challenge? With bandwidth getting crushed, companies are resorting to an old-school solution: hard drives! Learn how this surprising bottleneck is impacting AI training and why traditional tech might just…YOUTUBE.COM
23 DecChris Hadfield: The sky is falling – what to do about space junk? | Starmus HighlightsThe first Canadian to walk in space dives deep into the origins of space debris, how it’s become a growing problem, and how we can clean up the orbital messWELIVESECURITY.COM