44Articles
7Categories
2025-01-24Date
🚨 CISA KEV 2[−]
24 Jan KEVCISA Adds Five-Year-Old jQuery XSS Flaw to Exploited Vulnerabilities ListThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday placed a now-patched security flaw impacting the popular jQuery JavaScript library to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The medium-severity vuln…THEHACKERNEWS.COM
24 Jan KEVU.S. CISA adds JQuery flaw to its Known Exploited Vulnerabilities catalogsubmitted by kid to cybersecurity 4 points | 0 comments https://securityaffairs.com/173388/uncategorized/u-s-cisa-adds-jquery-flaw-known-exploited-vulnerabilities-catalog.htmlSH.ITJUST.WORKS
🐛 COMMON VULNERABILITIES AND EXPOSURES 4[−]
24 Jan KEVCISA Warns of Old jQuery Vulnerability Linked to Chinese APTCISA has added the JQuery flaw CVE-2020-11023, previously linked to APT1, to its Known Exploited Vulnerabilities (KEV) catalog. The post CISA Warns of Old jQuery Vulnerability Linked to Chinese APT appeared first on SecurityWeek .SECURITYWEEK.COM
24 Jan370+ Ivanti Connect Secure Exploited Using 0-Day VulnerabilityA major cybersecurity incident has come to light, with more than 370 Ivanti Connect Secure (ICS) devices reportedly compromised through the exploitation of a zero-day vulnerability, CVE-2025-0282. This alarming development, revealed by the shadowserver.org security analysts, high…GBHACKERS.COM
24 JanSonicWall’s Secure Mobile Access appliance faces zero-day attacksA critical bug in SonicWall’s remote access gateway, Secure Mobile Access (SMA1000), is likely being used in zero-day attacks, allowing remote code execution (RCE) by unauthenticated actors. The issue, tracked as CVE-2025-23006, has received a critical rating of CVSS 9.8/10 for i…CSOONLINE.COM
24 JanCVE-2025-21262 Microsoft Edge (Chromium-based) Spoofing VulnerabilityInformation published.MSRC.MICROSOFT.COM
⚠️ VULNERABILITY DISCLOSURE 12[−]
24 JanHackers Earn $886,000 at Pwn2Own Automotive 2025 for Charger, OS, Infotainment ExploitsPwn2Own Automotive 2025 has come to an end and participants have earned a total of $886,000 for exploits targeting EV chargers and infotainment systems. The post Hackers Earn $886,000 at Pwn2Own Automotive 2025 for Charger, OS, Infotainment Exploits appeared first on SecurityWeek…SECURITYWEEK.COM
24 JanAndroid's New Identity Check Feature Locks Device Settings Outside Trusted LocationsGoogle has launched a new feature called Identity Check for supported Android devices that locks sensitive settings behind biometric authentication when outside of trusted locations. "When you turn on Identity Check, your device will require explicit biometric authentication to a…THEHACKERNEWS.COM
24 JanAndroid Kisok Tablets Vulnerability Let Attackers Control AC & LightsA startling security flaw found in Android-based kiosk tablets at luxury hotels has exposed a grave vulnerability, potentially allowing attackers to control air conditioning, lighting, and other room functions remotely. The investigation, highlighted by security researchers at LA…GBHACKERS.COM
24 JanJuniper Routers Exploited via Magic Packet Vulnerability to Deploy Custom BackdoorA sophisticated cyber campaign dubbed “J-magic” has been discovered targeting enterprise-grade Juniper routers with a backdoor attack that leverages a passive monitoring agent. The operation, first detected in September 2023, employs a variant of the cd00r backdoor th…GBHACKERS.COM
24 JanSalt Typhoon Hacked Nine U.S. Telecoms, Tactics and Techniques RevealedSalt Typhoon, a state-sponsored Advanced Persistent Threat (APT) group linked to the People’s Republic of China (PRC), has executed one of the most sophisticated cyber-espionage campaigns in recent history. The group targeted at least nine U.S.-based telecommunications comp…GBHACKERS.COM
24 JanUS indicts five individuals in crackdown on North Korea’s illicit IT workforceThe multi-year scheme saw the defendants generate hundreds of thousands in revenue. © 2024 TechCrunch. All rights reserved. For personal use only.TECHCRUNCH.COM
24 JanTricking the bad guys: realism and robustness are crucial to deception operationsLongtime cybersecurity practitioners might recall the early guidance manuals published by the National Security Agency (NSA) in the 1980s and 1990s known as the “ Rainbow Series ,” so named because each book had a different-colored cover. Among these was the book “Understanding C…CSOONLINE.COM
24 JanGDPR fines hit €1.2 billion in 2024 on 8.3% more breach reportsCorporation violations of GDPR rules resulted in total fines of €1.2 billion in 2024, according to a report from international law firm DLA Piper. This sum represents a 33% decrease compared to 2023, breaking a seven-year run of increasing fines year over year. One reason for the…CSOONLINE.COM
24 JanAMD’s unpatched chip microcode glitch may require extreme measures by CISOsDue to a partner disclosure, AMD has found itself in the unenviable position of having to confirm the existence of a major cybersecurity problem in its chip microcode before it could post a fix. But that headache is mild compared to those of their customers’ CISOs. Microcode ofte…CSOONLINE.COM
24 JanOnly 7 percent of organizations recover data after paying a ransom in malware attackssubmitted by kid to cybersecurity 20 points | 0 comments https://www.cybersecurity-insiders.com/only-7-percent-of-organizations-recover-data-after-paying-a-ransom-in-malware-attacks/SH.ITJUST.WORKS
24 JanFBI: North Korean IT workers steal source code to extort employerssubmitted by kid to cybersecurity 6 points | 0 comments https://www.bleepingcomputer.com/news/security/fbi-north-korean-it-workers-steal-source-code-to-extort-employers/SH.ITJUST.WORKS
24 JanAkira Ransomware: A Shifting Force in the RaaS Domainsubmitted by kid to cybersecurity 3 points | 0 comments https://www.bitdefender.com/en-us/blog/businessinsights/akira-ransomware-a-shifting-force-in-the-raas-domainSH.ITJUST.WORKS
📢 SECURITY ADVISORIES 3[−]
24 JanCISA Releases Six ICS Advisories Details Security IssuesThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued six Industrial Control Systems (ICS) advisories addressing vulnerabilities in a range of critical systems. These advisories aim to inform organizations about risks that could lead to unauthorized access, syst…GBHACKERS.COM
24 JanPayPal Fined $2 Million Fine For Violating Cybersecurity RegulationsThe New York State Department of Financial Services (NYDFS) has imposed a $2 million penalty on PayPal, Inc. for breaches of the state’s stringent cybersecurity regulations. The fine marks a significant move in ensuring accountability for financial institutions handling sensitive…GBHACKERS.COM
24 JanPayPal Fined $2 Million Fine For Violating Cybersecurity Regulationssubmitted by kid to cybersecurity 9 points | 0 comments https://gbhackers.com/paypal-fined-2-million/SH.ITJUST.WORKS
🔥 INCIDENT REPORTING 11[−]
24 JanMillions Impacted by PowerSchool Data BreachFour decades of student and educator information was stolen from PowerSchool – tens of millions are potentially affected. The post Millions Impacted by PowerSchool Data Breach appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanHellCat and Morpheus Ransomware Share Identical Payloads for AttacksThe cybersecurity landscape witnessed a surge in ransomware activity during the latter half of 2024 and into early 2025, with the emergence of operations like HellCat and Morpheus. Alongside their rise, notable groups such as FunkSec, Nitrogen, and Termite gained traction, while …GBHACKERS.COM
24 JanBASHE Ransomware Allegedly Leaked ICICI Bank Customers DataA major cyber threat looms over Indian financial giant ICICI Bank as the notorious BASHE ransomware group, also known as Eraleign (APT73), claims responsibility for a significant data breach. The group has allegedly obtained sensitive customer information and set a ransom deadlin…GBHACKERS.COM
24 JanBe careful what you say about data leaks in Turkey, new law could mean prison for reporting hacksThe Turkish government is proposing a controversial new cybersecurity law that could make it a criminal act to report on data breaches. But might it stifle journalism and free speech? Read more in my article on the Tripwire State of Security blog.TRIPWIRE.COM
24 JanGrohe AG von Ransomware-Attacke betroffenDie Ransomware-Bande Ransomhub will 100 Gigabyte Daten von der Grohe AG erbeutet haben. CeltStudio – Shutterstock.com Die Grohe AG zählt zu den bekanntesten deutschen Herstellern von Armaturen und Sanitärprodukten. Die berüchtigte Ransomware-Bande Ransomhub listet das Unternehmen…CSOONLINE.COM
24 JanPrävention gegen Black BastaEin lückenloser Grundschutz ist im Kampf gegen Ransomware die halbe Miete. ImageFlow – Shutterstock.com Seit ihrem ersten Auftreten im Jahr 2022 müssen sich immer mehr Unternehmen mit den aggressiven Angriffsmethoden der Black-Basta-Gruppe auseinandersetzen. Ihre Angriffe zielen …CSOONLINE.COM
24 JanTurkey | New Law Could Mean Prison for Reporting Data Leakssubmitted by BrikoX to cybersecurity 1 points | 0 comments https://www.tripwire.com/state-of-security/new-law-could-mean-prison-reporting-data-leaks Discover how Turkey’s proposed cybersecurity law could stifle journalism, penalize reporting on data breaches, and impact cybersecu…SH.ITJUST.WORKS
24 Jan84% of Healthcare Organizations Spotted a Cyberattack in the Late Yearsubmitted by kid to cybersecurity 4 points | 0 comments https://www.darkreading.com/threat-intelligence/84-of-healthcare-organizations-spotted-a-cyberattack-in-the-late-yearSH.ITJUST.WORKS
24 JanESXi Ransomware Attacks: Stealthy Persistence through SSH Tunnelingsubmitted by kid to cybersecurity 6 points | 0 comments https://www.sygnia.co/blog/esxi-ransomware-ssh-tunneling-defense-strategies/SH.ITJUST.WORKS
24 JanDoD defense contractor Stark AeroSpace potentially breached by INC ransomwaresubmitted by kid to cybersecurity 4 points | 1 comments https://cybernews.com/security/stark-aerospace-inc-ransomware-attack-weapons-defense-contractor/SH.ITJUST.WORKS
24 JanStolen Credentials From Leading Cyber Security Vendors Selling For $10: Cyber Security Today, Friday, Jan 24, 2025Cybersecurity Today: Stolen Credentials, Firewall Leaks, and Energy Sector Risks In this episode of Cybersecurity Today, host Jim Love discusses the alarming sale of thousands of credentials from leading cybersecurity vendors on the dark web, a massive leak of FortiGate firewall …CYBERSECURITYTODAY.LIBSYN.COM
🕵️ THREAT INTELLIGENCE 10[−]
24 JanUS Charges Five People Over North Korean IT Worker SchemeThe US has announced charges against five individuals involved in a fake IT workers scheme to funnel funds to North Korea. The post US Charges Five People Over North Korean IT Worker Scheme appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanCyber Insights 2025: Social Engineering Gets AI WingsBusiness resilience must be the ultimate purpose of all the security controls and processes we employ, because we will never conclusively defeat or protect ourselves from social engineering. The post Cyber Insights 2025: Social Engineering Gets AI Wings appeared first on Security…SECURITYWEEK.COM
24 JanPalo Alto Networks Addresses Impact of BIOS, Bootloader Vulnerabilities on Its FirewallsEclypsium warns that Palo Alto Networks firewalls are impacted by BIOS and bootloader flaws, but the vendor says users should not be concerned. The post Palo Alto Networks Addresses Impact of BIOS, Bootloader Vulnerabilities on Its Firewalls appeared first on SecurityWeek .SECURITYWEEK.COM
24 JanDoJ Indicts 5 Individuals for $866K North Korean IT Worker Scheme ViolationsThe U.S. Department of Justice (DoJ) on Thursday indicted two North Korean nationals, a Mexican national, and two of its own citizens for their alleged involvement in the ongoing fraudulent information technology (IT) worker scheme that seeks to generate revenue for the Democrati…THEHACKERNEWS.COM
24 JanISC Stormcast For Friday, January 24th, 2025 https://isc.sans.edu/podcastdetail/9294, (Fri, Jan 24th)(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.ISC.SANS.EDU
24 JanBeware of Fake Captcha Verifications Spreading Lumma MalwareIn January, Netskope Threat Labs uncovered a sophisticated global malware campaign leveraging fake CAPTCHA pages to deliver the Lumma Stealer malware. Lumma, a malware-as-a-service (MaaS) tool that has been active since at least 2022, is designed to steal sensitive information fr…GBHACKERS.COM
24 JanKEYPLUG Infrastructure Exposed: Server Configurations and TLS Certificates RevealedIn a recent technical investigation, researchers uncovered critical insights into the infrastructure linked to a suspected Chinese state-backed cyber actor referred to as “RedGolf.” The group, also known as APT41, BARIUM, or Earth Baku, gained attention following a re…GBHACKERS.COM
24 JanAIDS vaccine non-profit suffers hacker attacksubmitted by kid to cybersecurity 14 points | 2 comments https://cybernews.com/news/aids-vaccine-non-profit-hacker-attack/SH.ITJUST.WORKS
24 JanHundreds of fake Reddit sites push Lumma Stealer malwaresubmitted by kid to cybersecurity 9 points | 0 comments https://www.bleepingcomputer.com/news/security/hundreds-of-fake-reddit-sites-push-lumma-stealer-malware/SH.ITJUST.WORKS
24 JanEntire Georgian country population exposed in a massive data leaksubmitted by kid to cybersecurity 5 points | 0 comments https://cybernews.com/security/entire-georgian-country-population-exposed/SH.ITJUST.WORKS
📡 INFOSEC NEWS 2[−]
24 Jan2025 State of SaaS Backup and Recovery ReportThe modern workplace has undergone a seismic transformation over recent years, with hybrid work becoming the norm and businesses rapidly adopting cloud-based Software-as-a-Service (SaaS) applications to facilitate it. SaaS applications like Microsoft 365 and Google Workspace have…THEHACKERNEWS.COM
24 Jan[Guest Diary] How Access Brokers Maintain Persistence, (Fri, Jan 24th)[This is a Guest Diary by Joseph Flint, an ISC intern as part of the SANS.edu BACS [1] program] ISC.SANS.EDU