🚨 CISA KEV 1[−]
22 Jan KEVCISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service ApplicationsCISA, in partnership with the Federal Bureau of Investigation (FBI), released Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications . This advisory was crafted in response to active exploitation of vulnerabilities— CVE-2024-8963 , an administrative bypass vul…CISA.GOV
🐛 COMMON VULNERABILITIES AND EXPOSURES 3[−]
22 JanOracle Releases January 2025 Patch to Address 318 Flaws Across Major ProductsOracle is urging customers to apply its January 2025 Critical Patch Update (CPU) to address 318 new security vulnerabilities spanning its products and services. The most severe of the flaws is a bug in the Oracle Agile Product Lifecycle Management (PLM) Framework (CVE-2025-21556,…THEHACKERNEWS.COM
22 JanTrump disbands Cyber Safety Review Board, Salt Typhoon inquiry in limboThe administration of US President Donald Trump has dismissed all members of its Cyber Safety Review Board (CSRB), including those investigating the China-linked hacking group Salt Typhoon . Other groups affected by a general clear-out include the AI Safety and Security Board and…CSOONLINE.COM
22 JanCVE-2025-0411 – vulnerability in 7-Zip | Kaspersky official blogA vulnerability CVE-2025-0411 in the 7-Zip file archiver allows bypassing the Mark-of-the-Web (MOTW) mechanism.KASPERSKY.COM
⚠️ VULNERABILITY DISCLOSURE 13[−]
22 JanCritical zero-days impact premium WordPress real estate pluginsThe RealHome theme and the Easy Real Estate plugins for WordPress are vulnerable to two critical severity flaws that allow unauthenticated users to gain administrative privileges. [...]BLEEPINGCOMPUTER.COM
22 JanMasterCard DNS Error Went Unnoticed for YearsThe payment card giant MasterCard just fixed a glaring error in its domain name server settings that could have allowed anyone to intercept or divert Internet traffic for the company by registering an unused domain name. The misconfiguration persisted for nearly five years until …KREBSONSECURITY.COM
22 JanHackers Exploit Zero-Day in cnPilot Routers to Deploy AIRASHI DDoS BotnetThreat actors are exploiting an unspecified zero-day vulnerability in Cambium Networks cnPilot routers to deploy a variant of the AISURU botnet called AIRASHI to carry out distributed denial-of-service (DDoS) attacks. According to QiAnXin XLab, the attacks have leveraged the secu…THEHACKERNEWS.COM
22 JanGoogle Cloud Security Threat Horizons Report #11 Is Out!This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our next Threat Horizons Report, #11 ( full version ) that we just released ( the official blog for #1 report , my unofficial blogs for #2 , #3 , #4 , #5 , #…MEDIUM.COM
22 JanFrame & Optic - 15,678 breached accountsIn January 2025, the eyewear seller Frame & Optic suffered a data breach . The incident exposed almost 16k unique email addresses along with names, phone numbers and geolocation data including country, state and postcode. The data was provided to HIBP by a source who requested it…HAVEIBEENPWNED.COM
22 JanWelhof - 107,292 breached accountsIn late 2023, the Dutch appliance store Welhof suffered a data breach . The incident exposed over 100k unique email addresses along with names, physical addresses and the value of purchases made. The data was provided to HIBP by a source who requested it be attributed to "oa…HAVEIBEENPWNED.COM
22 Jan25 on 2025: APAC security thought leaders share their predictions and aspirationsAs threat actors and security teams harness the growing potential of artificial intelligence (AI), who will prevail? From generative AI (GenAI) to agentic AI, we look through the lens of 25 of Asia-Pacific’s thought leaders in security – and dive into their predictions and goals …CSOONLINE.COM
22 JanSpooks of the internet came alive this HalloweenHalloween 2024 made history with a massive spike in distributed denial of service (DDoS) attacks, with one particular assault reaching over 5 Terabits-per-second (Tbps) worth of phony traffic. In its quarterly analysis of DDoS attacks , Cloudflare reported a surge in hyper-volume…CSOONLINE.COM
22 JanA New Era of Protection — Multicloud SecurityPalo Alto Networks Prisma Cloud demonstrates how effective multicloud security hinges on achieving complete visibility across all deployed cloud resources. The post A New Era of Protection — Multicloud Security appeared first on Palo Alto Networks Blog .PALOALTONETWORKS.COM
22 JanThe Future Of The CISO - Part 1 - Jess Burn, Jeff Pollard - BSW #379Becoming a CISO is a lofty goal for many security and risk pros, and the role brings new sets of challenges. CISOs who accept the wrong opportunities will be forced to conform, rather than excel, and take on outsized liability for the scope of responsibilities. Jeff Pollard, Vice…YOUTUBE.COM
22 JanHackers exploit 16 zero-days on first day of Pwn2Own Automotive 2025submitted by IllNess to securitynews 22 points | 0 comments https://www.bleepingcomputer.com/news/security/hackers-exploit-16-zero-days-on-first-day-of-pwn2own-automotive-2025/INFOSEC.PUB
22 JanMirai Variant Murdoc Botnet Exploits AVTECH IP Cameras and Huawei Routerssubmitted by IllNess to securitynews 4 points | 0 comments https://thehackernews.com/2025/01/murdocbotnet-found-exploiting-avtech-ip.html To safeguard against such attacks, it’s advised to monitor suspicious processes, events, and network traffic spawned by the execution of any u…INFOSEC.PUB
22 Jan KEVAnother Critical Microsoft Patch: Cyber Security Today for Wednesday, January 22, 2024Critical Cybersecurity Updates: Avery Data Breach, Hamilton Ransomware Attack, and Microsoft Outlook Patch In this episode of Cybersecurity Today, host Jim Love covers significant cybersecurity incidents and updates. Avery experiences a massive data breach affecting 61,000 custom…CYBERSECURITYTODAY.LIBSYN.COM
📢 SECURITY ADVISORIES 2[−]
22 JanTrump administration fires members of cybersecurity review board in ‘horribly shortsighted’ decisionThe Department of Homeland security told members of the Cyber Safety Review Board that their membership was terminated. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
22 JanRisky Business #776 -- Trump will flex American cyber musclesRisky Business returns for its 19th year! Patrick Gray and Adam Boileau discuss the week’s cybersecurity news and there is a whole bunch of it. They discuss: The incoming Trump administration guts the CSRB Biden’s last cyber Executive Order has sensible things in it China’s breac…RISKY.BIZ
🔥 INCIDENT REPORTING 7[−]
22 JanRussian Spear-Phishing Campaign Targets WhatsApp AccountsThe Russian threat actor “Star Blizzard” has launched a spear-phishing campaign attempting to compromise WhatsApp accounts, according to researchers at Microsoft. The operation targets individuals who are involved in providing assistance to Ukraine.KNOWBE4.COM
22 JanConduent confirms outage was due to a cybersecurity incidentU.S. government contractor Conduent, which provides technology to support services such as child support and food assistance, has confirmed that a recent outage was caused by a cybersecurity incident. Conduent confirmed the disruption, which left some U.S. residents without…TECHCRUNCH.COM
22 JanWhat PowerSchool isn’t saying about its ‘massive’ student data breachThe hack has the potential to be one of the biggest of the year, but the edtech giant is refusing to answer important questions © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
22 JanHalf a million hotel guests at risk after hackers accessed sensitive dataThe personal information of almost half a million people is now in the hands of hackers after a security breach of a company used by some of the world's best known hotel brands. Read more in my article on the Hot for Security blog.BITDEFENDER.COM
22 Jan45 Schulen von Cyberangriff betroffenBei einer Cyberattacke auf einen IT-Dienstleister wurden mehrere Schulserver verschlüsselt. Elena Uve – Shutterstock.com Die Kreisverwaltung Germersheim teilte kürzlich mit, dass neun Schulen im Landkreis Opfer eines Hackerangriffs geworden sind. „Betroffen sind die Server des ex…CSOONLINE.COM
22 Jan2024 Cloud Threat Landscape Report: How does cloud security fail?Organizations often set up security rules to help reduce cybersecurity vulnerabilities and risks. The 2024 Cost of a Data Breach Report discovered that 40% of all data breaches involved data distributed across multiple environments, meaning that these best-laid plans often fail i…SECURITYINTELLIGENCE.COM
22 Jan13,000 MikroTik Routers Hijacked by Botnet for Malspam and Cyberattackssubmitted by IllNess to securitynews 15 points | 1 comments https://thehackernews.com/2025/01/13000-mikrotik-routers-hijacked-by.htmlINFOSEC.PUB
🕵️ THREAT INTELLIGENCE 13[−]
22 JanPlushDaemon APT Targets South Korean VPN Provider in Supply Chain AttackA previously undocumented China-aligned advanced persistent threat (APT) group named PlushDaemon has been linked to a supply chain attack targeting a South Korean virtual private network (VPN) provider in 2023, according to new findings from ESET. "The attackers replaced the legi…THEHACKERNEWS.COM
22 JanISC Stormcast For Thursday, January 23rd, 2025 https://isc.sans.edu/podcastdetail/9292, (Wed, Jan 22nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
22 JanISC Stormcast For Wednesday, January 22nd, 2025 https://isc.sans.edu/podcastdetail/9290, (Wed, Jan 22nd)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
22 Jan4 Ways to Mature Your Human Risk Management ProgramHuman risk management (HRM) is now the primary approach to addressing the ongoing need for strong security cultures in organizations of all sizes. HRM focuses on more than just security awareness training (SAT) delivered at regular intervals. The goal is a positive security cultu…KNOWBE4.COM
22 JanMalvertising Campaign Abuses Google Ads to Target AdvertisersResearchers at Malwarebytes are tracking a major malvertising campaign that’s abusing Google Ads to target individuals and businesses interested in advertising.KNOWBE4.COM
22 JanThe Future Of The CISO - Part 2 - Jess Burn, Jeff Pollard - BSW #379Jeff Pollard, Vice-President, Principal Analyst on the Security and Risk Team, and Jess Burn, Principal Analyst, both from Forrester Research join Business Security Weekly to discuss the second part of The Future Of The CISO report. What if you don't like the future of the CISO r…YOUTUBE.COM
22 JanOracle Releases January 2025 Patch to Address 318 Flaws Across Major Productssubmitted by IllNess to securitynews 3 points | 1 comments https://thehackernews.com/2025/01/oracle-releases-january-2025-patch-to.htmlINFOSEC.PUB
22 JanFake Homebrew Google ads target Mac users with malwaresubmitted by IllNess to securitynews 8 points | 1 comments https://www.bleepingcomputer.com/news/security/fake-homebrew-google-ads-target-mac-users-with-malware/ “Mac Homebrew Project Leader here. This seems taken down now,” tweeted McQuaid.INFOSEC.PUB
22 JanMasterCard DNS Error Went Unnoticed for Yearssubmitted by cm0002 to cybersecurity 15 points | 0 comments https://krebsonsecurity.com/2025/01/mastercard-dns-error-went-unnoticed-for-years/INFOSEC.PUB
22 JanMicrosoft research finds Microsoft AI products may never be securesubmitted by MajorHavoc to cybersecurity 48 points | 2 comments https://pivot-to-ai.com/2025/01/17/microsoft-research-finds-microsoft-ai-products-may-never-be-secure/ My commentary: An AI that can be trusted with sensitive information remains a tantalizing but unattainable “holy …INFOSEC.PUB
22 JanWhat are You Working on Wednesdaysubmitted by shellsharks to cybersecurity 6 points | 5 comments Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.INFOSEC.PUB
22 JanPumakit – A Sophisticated Linux Rootkit Attack Critical Infrastructuresubmitted by cm0002 to cybersecurity 12 points | 0 comments https://cybersecuritynews.com/pumakit-linux-rootkit/INFOSEC.PUB
22 JanPlushDaemon compromises supply chain of Korean VPN serviceESET researchers have discovered a supply-chain attack against a VPN provider in South Korea by a new China-aligned APT group we have named PlushDaemonWELIVESECURITY.COM
🌐 CYBER THREAT LANDSCAPE 2[−]
22 JanMirai Botnet Launches Record 5.6 Tbps DDoS Attack with 13,000+ IoT DevicesWeb infrastructure and security company Cloudflare on Tuesday said it detected and blocked a 5.6 Terabit per second (Tbps) distributed denial-of-service (DDoS) attack, the largest ever attack to be reported to date. The UDP protocol-based attack took place on October 29, 2024, ta…THEHACKERNEWS.COM
22 JanMac Users, Think You're Safe? Think Again!Think your Mac is unhackable? Think again. With over 100 million users worldwide, macOS has become a prime target for cybercriminals. Security researchers reveal the shocking truth about the Banshee Stealer malware—a sneaky threat that's been silently stealing your credentials an…YOUTUBE.COM
🎙️ PODCASTS 1[−]
22 Jan20 Years, 3 Hours, 1 Change: The New Podcast FormatAfter 20 years of sticking to a 3-hour format, this iconic podcast made a bold change, cutting down to 2 hours. Why? With countless other podcasts popping up, they decided to focus on what matters most: delivering quality security news and fewer, high-impact interviews. This new …YOUTUBE.COM
📡 INFOSEC NEWS 8[−]
22 JanCloudflare CDN flaw leaks user location data, even through secure chat appsA security researcher discovered a flaw in Cloudflare's content delivery network (CDN), which could expose a person's general location by simply sending them an image on platforms like Signal and Discord. [...]BLEEPINGCOMPUTER.COM
22 JanDiscover Hidden Browsing Threats: Free Risk Assessment for GenAI, Identity, Web, and SaaS RisksAs GenAI tools and SaaS platforms become a staple component in the employee toolkit, the risks associated with data exposure, identity vulnerabilities, and unmonitored browsing behavior have skyrocketed. Forward-thinking security teams are looking for security controls and strate…THEHACKERNEWS.COM
22 JanPresident Trump Pardons Silk Road Creator Ross Ulbricht After 11 Years in PrisonU.S. President Donald Trump on Tuesday granted a "full and unconditional pardon" to Ross Ulbricht, the creator of the infamous Silk Road drug marketplace, after spending more than 11 years behind bars. "I just called the mother of Ross William Ulbricht to let her know that in hon…THEHACKERNEWS.COM
22 JanCatching CARP: Fishing for Firewall States in PFSync Traffic, (Wed, Jan 22nd)Legend has it that in the Middle Ages, monchs raised carp to be as "round" as possible. The reason was that during Lent, one could only eat as much as fit on a plate, and the round shape of a carp gave them the most "fish per plate". But we are not here to exchange recipes. I wan…ISC.SANS.EDU
22 JanInvisible Prompt Injection: A Threat to AI SecurityThis article explains the invisible prompt injection, including how it works, an attack scenario, and how users can protect themselves.TRENDMICRO.COM
22 JanSneaky Log: Phishing Like You’ve Never Seen!Hackers have upped their game with Sneaky Log, the phishing-as-a-service kit that’s tricking even the savviest internet users. This sophisticated scam pre-fills your email address on fake login pages, making it look eerily legit. Paired with blurred-out Microsoft backgrounds, it’…YOUTUBE.COM
22 JanLLMs in Bug Bounties: A Double-Edged Sword ⚔️Can AI actually help in bug bounties, or is it creating more problems than it solves? Dive into how LLMs are being used in application security and why they might be costing triage teams precious time. From automated scanners to convincing but misleading reports, here's what ever…YOUTUBE.COM
22 JanPasskeys vs. Passwords: Which Is Safer? 🔐Are passwords still the best way to keep your online accounts safe? Think again! 🔐 Discover why passkeys are the future of online security. Learn how they work, why they’re more secure, and how they can protect you from hackers. Don’t miss this game-changing tech upgrade that cou…YOUTUBE.COM