75Articles
7Categories
2025-01-17Date
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
17 JanAWS Warns of Multiple Vulnerabilities in Amazon WorkSpaces, Amazon AppStream 2.0, & Amazon DCVAmazon Web Services (AWS) has issued a critical security advisory highlighting vulnerabilities in specific versions of its native clients for Amazon WorkSpaces, Amazon AppStream 2.0, and Amazon NICE DCV. Identified as CVE-2025-0500 and CVE-2025-0501, these vulnerabilities present…GBHACKERS.COM
17 JanPoC Exploit Released for Ivanti Connect Secure RCE VulnerabilityA serious security flaw has been identified in Ivanti Connect Secure, designated as CVE-2025-0282, which enables remote unauthenticated attackers to execute arbitrary code. As of January 8, 2025, Ivanti has acknowledged the existence of this stack-based buffer overflow vulnerabil…GBHACKERS.COM
17 Jan KEVCISA Warns of Aviatrix Controllers OS Command Injection Vulnerability Exploited in WildThe Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding a significant OS command injection vulnerability in Aviatrix Controllers, identified as CVE-2024-50603. This vulnerability poses a serious risk, as it allows unauthenticated attacker…GBHACKERS.COM
17 JanPoor patching regime is opening businesses to serious problemsVulnerability remediation is taking a severe hit as security teams are faced with fatigue from a growing number of publicly disclosed vulnerabilities. According to an analysis by S&P Global Ratings, a joint division of S&P Global and the cyber risk analytics company Guide…CSOONLINE.COM
⚠️ VULNERABILITY DISCLOSURE 20[−]
17 JanHackers Target Microsoft 365 With Hight Speed Attack: Cyber Security Today for January 17, 2025Cybersecurity Today: High-Speed Go Library Exploits & Major Data Breaches In today's episode, host Jim Love covers recent cybersecurity threats including the exploitation of a high-speed Go library to target Microsoft 365 accounts, North Korea's Lazarus Group's new tactics to lur…CYBERSECURITYTODAY.LIBSYN.COM
17 JanMicrosoft starts force upgrading Windows 11 22H2, 23H3 devices​Microsoft has started the forced rollout of Windows 11 24H2 to eligible, non-managed systems running the Home and Pro editions of Windows 11 22H2 and 23H2. [...]BLEEPINGCOMPUTER.COM
17 JanGoogle Releases Open Source Library for Software Composition AnalysisGoogle releases OSV-SCALIBR, an open source library for software composition analysis and file system scanning. The post Google Releases Open Source Library for Software Composition Analysis appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanCritical Flaws in WGS-804HPT Switches Enable RCE and Network ExploitationCybersecurity researchers have disclosed three security flaws in Planet Technology's WGS-804HPT industrial switches that could be chained to achieve pre-authentication remote code execution on susceptible devices. "These switches are widely used in building and home automation sy…THEHACKERNEWS.COM
17 JanPython-Based Bots Exploiting PHP Servers Fuel Gambling Platform ProliferationCybersecurity researchers have exposed a new campaign that targets web servers running PHP-based applications to promote gambling platforms in Indonesia. "Over the past two months, a significant volume of attacks from Python-based bots has been observed, suggesting a coordinated …THEHACKERNEWS.COM
17 JanU.S. Sanctions North Korean IT Worker Network Supporting WMD ProgramsThe U.S. Treasury Department's Office of Foreign Assets Control (OFAC) sanctioned two individuals and four entities for their alleged involvement in illicit revenue generation schemes for the Democratic People's Republic of Korea (DPRK) by dispatching IT workers around the world …THEHACKERNEWS.COM
17 Jan KEVCISA and FBI Release Updated Guidance on Product Security Bad PracticesIn partnership with the Federal Bureau of Investigation (FBI), CISA released an update to joint guidance Product Security Bad Practices in furtherance of CISA’s Secure by Design initiative. This updated guidance incorporates public comments CISA received in response to a Request …CISA.GOV
17 JanA Brief Guide for Dealing with ‘Humanless SOC’ Idiotsimage by Meta.AI lampooning humanless SOC My former “colleagues” have written several serious pieces of research about why a SOC without humans will never happen (“ Predict 2025: There Will Never Be an Autonomous SOC ”, “ The “Autonomous SOC” Is A Pipe Dream ”, “ Stop Trying To T…MEDIUM.COM
17 JanEffective Security Awareness Training Really Does Reduce Data BreachesSocial engineering and phishing are involved in 70% - 90% of data breaches . No other root cause of malicious hacking (e.g., unpatched software and firmware, eavesdropping, cryptography attacks, physical theft, etc.) comes close.KNOWBE4.COM
17 JanBrad Pitt Romance Scams Pushed By AI-Enabled DeepfakesI have helped people detect romance scams for decades. It is still very common for romance scammers to leverage both pictures of celebrities and pictures of innocent, everyday people as part of these scams. KNOWBE4.COM
17 JanBug Bounty Bonanza: $40,000 Reward for Escalating Limited Path Traversal to RCEAs a dedicated bug bounty hunter with an enviable track record on BugCrowd, Abdullah Nawaf, Full full-time bug Bounty Hunter, thrives on the thrill of discovery and the challenge of finding high-impact vulnerabilities. Recently, alongside his colleague Orwa Atyat, they achieved a…GBHACKERS.COM
17 JanIoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.TRENDMICRO.COM
17 JanUS hits back against China’s Salt Typhoon groupThe US is hitting back against the threat group, dubbed Salt Typhoon by Microsoft, which is allegedly behind recent cyber attacks against American telecommunications providers , as part of a wider campaign against Chinese-based hacking. On Friday the Department of the Treasury’s …CSOONLINE.COM
17 JanDORA-Umsetzung hält Banken-CISOs auf TrabFinanzunternehmen müssen seit heute die neuen Regeln der EU-Verordnung DORA anwenden. Doch viele kämpfen noch immer mit der Umsetzung. SkazovD – Shutterstock.com Ab heute am 17. Januar 2025 sind alle EU-Finanzinstitute verpflichtet, den Digital Operational Resilience Act ( DORA )…CSOONLINE.COM
17 JanEU’s DORA could further strain cybersecurity skills gapEfforts spent in achieving compliance with the EU’s Digital Operational Resilience Act (DORA) are likely to pile further pressure on the already strained cybersecurity skills market. DORA , which comes into full effect today, aims to improve the cybersecurity and operational resi…CSOONLINE.COM
17 JanWas ist ein Payload?Ähnlich wie damals die griechischen Soldaten, die im Inneren des trojanischen Pferdes auf den passenden Zeitpunkt lauerten, werden Payloads zum Beispiel in vermeintlich harmlosen Dateianhängen versteckt und starten ihren Angriff oftmals durch einen Trigger zu einem späteren Zeitp…CSOONLINE.COM
17 JanMillions of tunneling hosts are vulnerable to spoofing, DDoS attacks, say researchersThere are more than 4 million vulnerable hosts on the internet that accept unauthenticated traffic, say Belgian researchers, who warn that, unless action is taken by CISOs and network product manufacturers, those hosts can be abused as one-way proxies, enabling an adversary to sp…CSOONLINE.COM
17 JanOpen Telemetry for Beginners: Start Here!Are you curious about Open Telemetry but don’t know where to start? This video is your beginner-friendly guide! Learn why fresh eyes are so valuable for contributing to the docs and how it’s one of the easiest ways to break into the world of open source tech. 🚀 Dive into insights…YOUTUBE.COM
17 JanStopping The Bad Things - PSW #857Rob from ThreatLocker comes on the show to talk about how we can disrupt attacker techniques, including Zero Trust, privilege escalation, LOLbins, and evil virtualization. In the news we talk about security appliances and vulnerabilities, rsync vulnerabilities, Shmoocon, hacking …YOUTUBE.COM
17 JanMSSqlPwner: Open-source tool for pentesting MSSQL serverssubmitted by kid to cybersecurity 16 points | 1 comments https://www.helpnetsecurity.com/2025/01/17/mssqlpwner-open-source-pentesting-mssql-servers/SH.ITJUST.WORKS
📢 SECURITY ADVISORIES 6[−]
17 JanUS Government Agencies Call for Closing the Software Understanding GapCISA and other agencies call to action for the US government to take steps to close the software understanding gap. The post US Government Agencies Call for Closing the Software Understanding Gap appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanIndustry Reactions to Biden’s Cybersecurity Executive Order: Feedback FridayIndustry professionals comment on the Biden administration’s new executive order on cybersecurity. The post Industry Reactions to Biden’s Cybersecurity Executive Order: Feedback Friday appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanEuropean Privacy Group Sues TikTok and AliExpress for Illicit Data Transfers to ChinaAustrian privacy non-profit None of Your Business (noyb) has filed complaints accusing companies like TikTok, AliExpress, SHEIN, Temu, WeChat, and Xiaomi of violating data protection regulations in the European Union by unlawfully transferring users' data to China. The advocacy g…THEHACKERNEWS.COM
17 JanYour KnowBe4 Compliance Plus Fresh Content Updates from December 2024Check out the December updates in Compliance Plus so you can stay on top of featured compliance training content.KNOWBE4.COM
17 JanCISA Releases Guidelines For Closing Software Understanding GapThe Cybersecurity and Infrastructure Security Agency (CISA) has released a pivotal report calling for urgent action to address the “software understanding gap.” This comprehensive document highlights the significant disparity between the rapid advancement in software production a…GBHACKERS.COM
17 JanGUEST ESSAY: President Biden’s cybersecurity executive order is an issue of national securityPresident Biden’s detailed executive order relating to cybersecurity is great to see. Biden’s order reflects the importance of cybersecurity at the highest levels – it is an issue of national security and should be treated as such. One of the … (more…) The post GUEST ESSAY:…LASTWATCHDOG.COM
🔥 INCIDENT REPORTING 13[−]
17 JanOtelier data breach exposes info, hotel reservations of millionsHotel management platform Otelier suffered a data breach after threat actors breached its Amazon S3 cloud storage to steal millions of guests' personal information and reservations for well-known hotel brands like Marriott, Hilton, and Hyatt. [...]BLEEPINGCOMPUTER.COM
17 JanUS sanctions Chinese firm, hacker behind telecom and Treasury hacksThe U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) has sanctioned Yin Kecheng, a Shanghai-based hacker for his role in the recent Treasury breach and a company associated with the Salt Typhoon threat group. [...]BLEEPINGCOMPUTER.COM
17 JanFCC orders telecoms to secure their networks after Salt Tyhpoon hacksThe Federal Communications Commission (FCC) has ordered U.S. telecommunications carriers to secure their networks following last year's Salt Typhoon security breaches. [...]BLEEPINGCOMPUTER.COM
17 JanWolf Haldenstein Data Breach Impacts 3.4 Million PeopleLaw firm Wolf Haldenstein Adler Freeman & Herz LLP says more than 3.4 million people were impacted by a December 2023 data breach. The post Wolf Haldenstein Data Breach Impacts 3.4 Million People appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanHow to Bring Zero Trust to Wi-Fi Security with a Cloud-based Captive Portal?Recent data breaches have highlighted the critical need to improve guest Wi-Fi infrastructure security in modern business environments. Organizations face increasing pressure to protect their networks while providing convenient access to visitors, contractors, temporary staff, an…THEHACKERNEWS.COM
17 JanRansomware Gangs Claimed More Than 5,000 Attacks in 2024Ransomware groups claimed responsibility for 5,461 attacks in 2024, with 1,204 of these attacks being publicly confirmed by victim organizations, according to Comparitech’s latest Ransomware Roundup report.KNOWBE4.COM
17 JanTreasury sanctions Salt Typhoon hacking group behind breaches of major US telecom firmsThe US government has also sanctioned the hacker responsible for December's US Treasury hack © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
17 JanMalware stole internal PowerSchool passwords from engineer’s hacked computerThe theft of a PowerSchool engineer's passwords prior to the breach raises further doubts about the company's security practices. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
17 JanMSI - 249,990 breached accountsIn July 2024, MSI inadvertently exposed hundreds of thousands of customer records related to RMA claims that were subsequently found to be publicly accessible . The data included 250k unique email addresses alongside names, phone numbers, physical addresses and warranty claims. W…HAVEIBEENPWNED.COM
17 JanMalware stole internal PowerSchool passwords from engineer's hacked computersubmitted by neme to cybersecurity 19 points | 1 comments https://techcrunch.com/2025/01/17/malware-stole-internal-powerschool-passwords-from-engineers-hacked-computer/SH.ITJUST.WORKS
17 JanWolf Haldenstein law firm says 3.5 million impacted by data breachsubmitted by kid to cybersecurity 15 points | 1 comments https://www.bleepingcomputer.com/news/security/wolf-haldenstein-law-firm-says-35-million-impacted-by-data-breach/SH.ITJUST.WORKS
17 JanThe $10 Cyber Threat Responsible for the Biggest Breaches of 2024submitted by kid to cybersecurity 7 points | 0 comments https://thehackernews.com/2025/01/the-10-cyber-threat-responsible-for.htmlSH.ITJUST.WORKS
17 JanChinese hackers accessed Yellen's computer in US Treasury breach, Bloomberg News reportssubmitted by kid to cybersecurity 35 points | 0 comments https://www.reuters.com/technology/cybersecurity/chinese-hackers-accessed-yellens-computer-us-treasury-breach-bloomberg-news-2025-01-17/SH.ITJUST.WORKS
🕵️ THREAT INTELLIGENCE 23[−]
17 JanFriday Squid Blogging: Opioid Alternatives from Squid ResearchIs there nothing that squid research can’t solve? “If you’re working with an organism like squid that can edit genetic information way better than any other organism, then it makes sense that that might be useful for a therapeutic application like deadening pain…SCHNEIER.COM
17 JanIn Other News: Lawsuits and Settlements, CrowdStrike Phish, MITRE’s D3FEND 1.0Noteworthy stories that might have slipped under the radar: several multi-million dollar settlements, CrowdStrike-themed phishing emails, and MITRE launches D3FEND 1.0. The post In Other News: Lawsuits and Settlements, CrowdStrike Phish, MITRE’s D3FEND 1.0 appeared first on…SECURITYWEEK.COM
17 JanUS Announces Sanctions Against North Korean Fake IT Worker NetworkThe US Treasury has sanctioned two individuals and four entities involved in the North Korean fake IT worker scheme. The post US Announces Sanctions Against North Korean Fake IT Worker Network appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanVulnerabilities in SimpleHelp Remote Access Software May Lead to System CompromiseThree vulnerabilities in SimpleHelp could allow attackers to compromise the remote access software’s server and the client machine. The post Vulnerabilities in SimpleHelp Remote Access Software May Lead to System Compromise appeared first on SecurityWeek .SECURITYWEEK.COM
17 JanLeveraging Honeypot Data for Offensive Security Operations [Guest Diary], (Fri, Jan 17th)[This is a Guest Diary by Alex Sanders, an ISC intern as part of the SANS.edu BACS program] ISC.SANS.EDU
17 JanISC Stormcast For Friday, January 17th, 2025 https://isc.sans.edu/podcastdetail/9284, (Fri, Jan 17th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
17 JanFlowerStorm PaaS Platform Attacking Microsoft Users With Fake Login PagesRockstar2FA is a PaaS kit that mimics the legitimate credential-request behavior of cloud/SaaS platforms. Phishing campaigns are delivered via Telegram and use unique URLs to route users to credential-capturing counterfeit login pages.  These pages masquerade as popular serv…GBHACKERS.COM
17 JanNew Tool Unveiled to Scan Hacking Content on TelegramA Russian software developer, aided by the National Technology Initiative, has introduced a groundbreaking AI module designed to monitor and analyze content on Telegram. Known as the Apparatus Sapiens AI module, this innovative tool can search through both open and closed chats, …GBHACKERS.COM
17 JanLet’s Encrypt Unveils Six-Day Certificate and IP Address Options for 2025Let’s Encrypt has announced plans to introduce six-day certificate options and support for IP address certificates in 2025. This initiative is part of the organization’s ongoing commitment to fortify the Web Public Key Infrastructure (PKI), making secure connections more ac…GBHACKERS.COM
17 JanBitMEX Fined $100 Million for Violating Bank Secrecy ActIn a significant legal development, HDR Global Trading Ltd., operating under the name BitMEX, has been fined $100 million for violating the Bank Secrecy Act. Attorney for the United States, Matthew Podolsky, announced the sentencing on January 17, 2025, highlighting the company&#…GBHACKERS.COM
17 JanHow to calculate your AI-powered cybersecurity’s ROIImagine this scenario: A sophisticated, malicious phishing campaign targets a large financial institution. The attackers use emails generated by artificial intelligence (AI) that closely mimic the company’s internal communications. The emails contain malicious links designe…SECURITYINTELLIGENCE.COM
17 JanSecuring DOT InfrastructureThe nature of ITS networks, IT-OT convergence, limited physical security controls, and interconnected IoT devices vulnerabilities pose challenges. The post Securing DOT Infrastructure appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
17 JanAIs in Love, UEFI, Fortinet, Godaddy, Juggalos, Aaran Leyland, and More. - SWN #443AIs in Love, UEFI, Fortinet, Godaddy, Juggalos, Aaran Leyland, and More. In this edition of the Security Weekly News. Visit https://www.securityweekly.com/swn for all the latest episodes! Show Notes: https://securityweekly.com/swn-443YOUTUBE.COM
17 JanCybernotessubmitted by Wolfie to cybersecurity 9 points | 0 comments https://cybernotes.xyz/ Sharing a website for those who are interested in red teaming and hacking. Could be some useful techniques added to your own penetration testing.SH.ITJUST.WORKS
17 JaniPhone USB-C is hackable, but users don't need to worry yetsubmitted by kid to cybersecurity 44 points | 13 comments https://www.techspot.com/news/106346-iphone-usb-c-hackable-but-users-dont-need.htmlSH.ITJUST.WORKS
17 JanAWS Warns of Multiple Vulnerabilities in Amazon WorkSpaces, Amazon AppStream 2.0, & Amazon DCVsubmitted by kid to cybersecurity 11 points | 0 comments https://gbhackers.com/aws-warns-of-multiple-vulnerabilities/SH.ITJUST.WORKS
17 JanFCC Adopts Cybersecurity Rules in Wake of Salt Typhoonsubmitted by kid to cybersecurity 18 points | 1 comments https://broadbandbreakfast.com/fcc-adopts-cybersecurity-rules-in-wake-of-salt-typhoon/SH.ITJUST.WORKS
17 JanTop 10 web hacking techniques of 2024: nominations opensubmitted by M33 to cybersecurity 11 points | 1 comments https://portswigger.net/research/top-10-web-hacking-techniques-of-2024-nominations-open On Portswigger’s website: Nominations are now open for the top 10 new web hacking techniques of 2024!SH.ITJUST.WORKS
17 JanSneaky 2FA: exposing a new AiTM Phishing-as-a-Servicesubmitted by kid to cybersecurity 15 points | 0 comments https://blog.sekoia.io/sneaky-2fa-exposing-a-new-aitm-phishing-as-a-service/SH.ITJUST.WORKS
17 JanNSA Warns iPhone And Android Users—Disable Location Trackingsubmitted by kid to cybersecurity 128 points | 50 comments https://www.forbes.com/sites/zakdoffman/2025/01/16/nsa-warns-iphone-and-android-users-disable-location-tracking/SH.ITJUST.WORKS
17 JanFBI warns agents of call log thefts by hackers, Bloomberg News reportssubmitted by kid to cybersecurity 38 points | 4 comments https://www.reuters.com/technology/cybersecurity/fbi-warns-agents-call-log-thefts-by-hackers-bloomberg-news-reports-2025-01-16/SH.ITJUST.WORKS
17 JanBypassing disk encryption on systems with automatic TPM2unlocksubmitted by exu to cybersecurity 18 points | 2 comments https://oddlama.org/blog/bypassing-disk-encryption-with-tpm2-unlock/ Note this post evaluates Linux systems. Microsoft presumably has a different, hopefully better, implementation.SH.ITJUST.WORKS
🌐 CYBER THREAT LANDSCAPE 1[−]
17 JanMalicious PyPi package steals Discord auth tokens from devsA malicious package named 'pycord-self' on the Python package index (PyPI) targets Discord developers to steal authentication tokens and plant a backdoor for remote control over the system. [...]BLEEPINGCOMPUTER.COM
📡 INFOSEC NEWS 8[−]
17 JanSocial Engineering to Disable iMessage ProtectionsI am always interested in new phishing tricks, and watching them spread across the ecosystem. A few days ago I started getting phishing SMS messages with a new twist. They were standard messages about delayed packages or somesuch, with the goal of getting me to click on a link an…SCHNEIER.COM
17 JanFTC cracks down on Genshin Impact gacha loot box practicesGenshin Impact developer Cognosphere (aka Hoyoverse) has agreed to a $20 million settlement with the U.S. Federal Trade Commission (FTC) over its gacha loot box monetization and is now banned from selling them to teens under the age of sixteen without parental consent. [...]BLEEPINGCOMPUTER.COM
17 JanMicrosoft fixes Office 365 apps crashing on Windows Server systems​Microsoft has fixed a known issue that caused Microsoft 365 applications and Classic Outlook to crash on Windows Server 2016 or Windows Server 2019 systems. [...]BLEEPINGCOMPUTER.COM
17 JanNew 'Sneaky 2FA' Phishing Kit Targets Microsoft 365 Accounts with 2FA Code BypassCybersecurity researchers have detailed a new adversary-in-the-middle (AitM) phishing kit that's capable of Microsoft 365 accounts with an aim to steal credentials and two-factor authentication (2FA) codes since at least October 2024. The nascent phishing kit has been dubbed Snea…THEHACKERNEWS.COM
17 JanNo, Brad Pitt isn’t in love with youNo, Brad Pitt isn't in love with you. A French woman was duped into believing a hospitalised Brad Pitt had fallen in love with her. The scammers even faked a "breaking news" report announcing the revelation of Brad's new love... Read more in my article on the Hot for Security blo…BITDEFENDER.COM
17 JanHype and confusion surrounding quantum computers in cryptographyWho claimed quantum supremacy and decryption on quantum computers?KASPERSKY.COM
17 JanMartial Arts Lesson: Pain = Motivation! 💥Getting punched in the face might sound like a nightmare, but in martial arts, it's a wake-up call! 🥋 Learn why taking a hit can be the ultimate motivator and how it turned a painful moment into a life lesson. 💪😤 #MartialArtsMotivation #KarateFails #MotivationalShorts #SelfImprov…YOUTUBE.COM
17 JanFrom Fortran to GCC: A Coder's First Love!How have programming compilers evolved over the years? Dive into the fascinating journey from the early days of Fortran to the powerhouse that is GCC today! 🚀 From feeding paper tapes to running multiple languages, this coder's nostalgic trip will give you major #CodingNoir vibes…YOUTUBE.COM