Apache fixed a new remote code execution flaw in Apache OFBiz
https://securityaffairs.com/168106/security/apache-ofbiz-rce-cve-2024-45195.html
https://securityaffairs.com/168106/security/apache-ofbiz-rce-cve-2024-45195.html
Security Affairs
Apache fixed a new remote code execution flaw in Apache OFBiz
Apache addressed a remote code execution vulnerability affecting the Apache OFBiz open-source enterprise resource planning (ERP) system.
SonicWall Confirms Critical CVE-2024-40766 Vulnerability Actively Exploited in the Wild
https://securityonline.info/sonicwall-confirms-critical-cve-2024-40766-vulnerability-actively-exploited-in-the-wild/
https://securityonline.info/sonicwall-confirms-critical-cve-2024-40766-vulnerability-actively-exploited-in-the-wild/
Cybersecurity News
SonicWall Confirms Critical CVE-2024-40766 Vulnerability Actively Exploited in the Wild
Stay informed about the active exploitation of CVE-2024-40766. Discover how this critical access control vulnerability in SonicOS can compromise your security.
How cybercriminals attack young gamers: the most common and dangerous scams | Kaspersky official blog
https://www.kaspersky.com/blog/how-scammers-attack-young-gamers-2024/52099/
https://www.kaspersky.com/blog/how-scammers-attack-young-gamers-2024/52099/
Kaspersky official blog
How cybercriminals attack young gamers: the most common and dangerous scams
Our new report investigates cyberthreats aimed at child gamers.
U.S. Offers $10 Million Reward for Information on GRU Hackers Targeting Critical Infrastructure
https://securityonline.info/u-s-offers-10-million-reward-for-information-on-gru-hackers-targeting-critical-infrastructure/
https://securityonline.info/u-s-offers-10-million-reward-for-information-on-gru-hackers-targeting-critical-infrastructure/
Cybersecurity News
U.S. Offers $10 Million Reward for Information on GRU Hackers Targeting Critical Infrastructure
$10 million reward for information on GRU hackers. Help identify the Russian military intelligence officers behind major cyberattacks.
Vulnerability in Tencent WeChat custom browser could lead to remote code execution
https://blog.talosintelligence.com/vulnerability-in-tencent-wechat-custom-browser-could-lead-to-remote-code-execution/
https://blog.talosintelligence.com/vulnerability-in-tencent-wechat-custom-browser-could-lead-to-remote-code-execution/
Cisco Talos Blog
Vulnerability in Tencent WeChat custom browser could lead to remote code execution
While this issue was disclosed and patched in the V8 engine in June 2023, the WeChat Webview component was not updated, and still remained vulnerable when Talos reported it to the vendor.
👍1
Critical Infrastructure and Ransomware
https://security.packt.com/critical-infrastructure-and-ransomware/
https://security.packt.com/critical-infrastructure-and-ransomware/
Packt SecPro
Critical Infrastructure and Ransomware - Packt SecPro
Critical infrastructure plays a vital role in our daily lives. It encompasses the essential systems and services that support the functioning of society. From power plants to water treatment facilities, critical infrastructure ensures that communities have…
The 2024 Threat Landscape State of Play
https://blog.talosintelligence.com/the-2024-threat-landscape-state-of-play/
https://blog.talosintelligence.com/the-2024-threat-landscape-state-of-play/
Cisco Talos Blog
The 2024 Threat Landscape State of Play
Talos' Nick Biasini discusses the biggest shifts and trends in the threat landscape so far. We also focus on one state sponsored actor that has been particularly active this year, and talk about why defenders need to be paying closer attention to infostealers.
Red Team vs. Blue Team: Strategies for Advanced Penetration Testing
https://medium.com/purple-team/red-team-vs-blue-team-strategies-for-advanced-penetration-testing-cc54d7c3e50a?source=rss----d208c28825c7---4
https://medium.com/purple-team/red-team-vs-blue-team-strategies-for-advanced-penetration-testing-cc54d7c3e50a?source=rss----d208c28825c7---4
Medium
Red Team vs. Blue Team: Strategies for Advanced Penetration Testing
As cybersecurity threats evolve in complexity and scale, the traditional approach to defending an organization’s digital assets has become…
SonicWall SSLVPN access control flaw is now exploited in attacks
https://www.bleepingcomputer.com/news/security/sonicwall-sslvpn-access-control-flaw-is-now-exploited-in-attacks/
https://www.bleepingcomputer.com/news/security/sonicwall-sslvpn-access-control-flaw-is-now-exploited-in-attacks/
BleepingComputer
SonicWall SSLVPN access control flaw is now exploited in attacks
SonicWall is warning that a recently fixed access control flaw tracked as CVE-2024-40766 in SonicOS is now "potentially" exploited in attacks, urging admins to apply patches as soon as possible.
👍1
SpyAgent Android malware steals your crypto recovery phrases from images
https://www.bleepingcomputer.com/news/security/spyagent-android-malware-steals-your-crypto-recovery-phrases-from-images/
https://www.bleepingcomputer.com/news/security/spyagent-android-malware-steals-your-crypto-recovery-phrases-from-images/
BleepingComputer
SpyAgent Android malware steals your crypto recovery phrases from images
A new Android malware named SpyAgent uses optical character recognition (OCR) technology to steal cryptocurrency wallet recovery phrases from screenshots stored on the mobile device.
Microsoft Office 2024 to disable ActiveX controls by default
https://www.bleepingcomputer.com/news/microsoft/microsoft-office-2024-to-disable-activex-controls-by-default/
https://www.bleepingcomputer.com/news/microsoft/microsoft-office-2024-to-disable-activex-controls-by-default/
BleepingComputer
Microsoft Office 2024 to disable ActiveX controls by default
After Office 2024 launches in October, Microsoft will disable ActiveX controls by default in Word, Excel, PowerPoint, and Visio client apps.
👍1
Major Iranian IT vendor paying large ransom to resolve recent cyberattack
https://cyberscoop.com/iranian-it-vendor-ransom-cyberattack-banks/
https://cyberscoop.com/iranian-it-vendor-ransom-cyberattack-banks/
CyberScoop
Major Iranian IT vendor paying large ransom to resolve recent cyberattack
The company, Tosan, which provides IT services to 45% of the country’s banks, has paid $561,000 worth of bitcoin so far.
Car rental giant Avis discloses data breach impacting customers
https://www.bleepingcomputer.com/news/security/car-rental-giant-avis-discloses-data-breach-impacting-customers/
https://www.bleepingcomputer.com/news/security/car-rental-giant-avis-discloses-data-breach-impacting-customers/
BleepingComputer
Car rental giant Avis data breach impacts over 299,000 customers
American car rental giant Avis disclosed a data breach after attackers breached one of its business applications last month and stole customer personal information.
Transport for London staff faces systems disruptions after cyberattack
https://www.bleepingcomputer.com/news/security/transport-for-london-staff-faces-systems-disruptions-after-cyberattack/
https://www.bleepingcomputer.com/news/security/transport-for-london-staff-faces-systems-disruptions-after-cyberattack/
BleepingComputer
Transport for London staff faces systems disruptions after cyberattack
Transport for London, the city's public transportation agency, revealed today that its staff has limited access to systems and email due to measures implemented in response to a Sunday cyberattack.
Intel officials expect more foreign influence efforts leading up to Election Day
https://cyberscoop.com/us-election-2024-information-operations-russia-china-iran-odni/
https://cyberscoop.com/us-election-2024-information-operations-russia-china-iran-odni/
CyberScoop
Intel officials expect more foreign influence efforts leading up to Election Day
U.S. officials said they expect Russia, Iran and China to increase the cadence of influence operations targeting voters over the final two months of this election cycle.
Tropic Trooper Expands Espionage to Middle East, Targets Human Rights Organizations
https://securityonline.info/tropic-trooper-expands-espionage-to-middle-east-targets-human-rights-organizations/
https://securityonline.info/tropic-trooper-expands-espionage-to-middle-east-targets-human-rights-organizations/
Cybersecurity News
Tropic Trooper Expands Espionage to Middle East, Targets Human Rights Organizations
Learn about Tropic Trooper, a cyber espionage group that has expanded its focus to the Middle East, targeting government entities.
Netflix Phishing Scam: Even the Savviest Streamers Can Fall Victim
https://securityonline.info/netflix-phishing-scam-even-the-savviest-streamers-can-fall-victim/
https://securityonline.info/netflix-phishing-scam-even-the-savviest-streamers-can-fall-victim/
Cybersecurity News
Netflix Phishing Scam: Even the Savviest Streamers Can Fall Victim
Beware of Netflix phishing emails! Learn how cybercriminals impersonate Netflix to steal sensitive information and how to protect yourself.
The Supercar Phishing Kit: A Luxurious Trap for Your Microsoft 365 Credentials
https://securityonline.info/the-supercar-phishing-kit-a-luxurious-trap-for-your-microsoft-365-credentials/
https://securityonline.info/the-supercar-phishing-kit-a-luxurious-trap-for-your-microsoft-365-credentials/
Cybersecurity News
The Supercar Phishing Kit: A Luxurious Trap for Your Microsoft 365 Credentials
Uncover the sophistication of the Supercar Phishing Kit: a new level of phishing tactics targeting Microsoft 365 users.
Babylon RAT Unleashed: Malaysian Politicians Under Cyber Siege
https://securityonline.info/babylon-rat-unleashed-malaysian-politicians-under-cyber-siege/
https://securityonline.info/babylon-rat-unleashed-malaysian-politicians-under-cyber-siege/
Cybersecurity News
Babylon RAT Unleashed: Malaysian Politicians Under Cyber Siege
Discover the powerful Babylon Remote Access Trojan (RAT) used in a cyber espionage campaign targeting political figures in Malaysia. Find out how it works and its impact.
Red Hat Issues Critical Patch for Pulpcore Authentication Bypass Flaw (CVE-2024-7923)
https://securityonline.info/red-hat-issues-critical-patch-for-pulpcore-authentication-bypass-flaw-cve-2024-7923/
https://securityonline.info/red-hat-issues-critical-patch-for-pulpcore-authentication-bypass-flaw-cve-2024-7923/
Cybersecurity News
Red Hat Issues Critical Patch for Pulpcore Authentication Bypass Flaw (CVE-2024-7923)
Critical security advisory: Learn about CVE-2024-7923, an authentication bypass flaw in Red Hat Pulpcore affecting Satellite deployments.
Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401 to Launch Malware Campaigns
https://securityonline.info/threat-actors-exploit-geoserver-vulnerability-cve-2024-36401-to-launch-malware-campaigns/
https://securityonline.info/threat-actors-exploit-geoserver-vulnerability-cve-2024-36401-to-launch-malware-campaigns/
Cybersecurity News
Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401 to Launch Malware Campaigns
Stay informed about the latest cybersecurity threat: SideWalk malware targeting critical vulnerability in GeoServer.