βIntel officials expect more foreign influence efforts leading up to Election Day
https://cyberscoop.com/us-election-2024-information-operations-russia-china-iran-odni/
https://cyberscoop.com/us-election-2024-information-operations-russia-china-iran-odni/
CyberScoop
Intel officials expect more foreign influence efforts leading up to Election Day
U.S. officials said they expect Russia, Iran and China to increase the cadence of influence operations targeting voters over the final two months of this election cycle.
βTropic Trooper Expands Espionage to Middle East, Targets Human Rights Organizations
https://securityonline.info/tropic-trooper-expands-espionage-to-middle-east-targets-human-rights-organizations/
https://securityonline.info/tropic-trooper-expands-espionage-to-middle-east-targets-human-rights-organizations/
Cybersecurity News
Tropic Trooper Expands Espionage to Middle East, Targets Human Rights Organizations
Learn about Tropic Trooper, a cyber espionage group that has expanded its focus to the Middle East, targeting government entities.
βNetflix Phishing Scam: Even the Savviest Streamers Can Fall Victim
https://securityonline.info/netflix-phishing-scam-even-the-savviest-streamers-can-fall-victim/
https://securityonline.info/netflix-phishing-scam-even-the-savviest-streamers-can-fall-victim/
Cybersecurity News
Netflix Phishing Scam: Even the Savviest Streamers Can Fall Victim
Beware of Netflix phishing emails! Learn how cybercriminals impersonate Netflix to steal sensitive information and how to protect yourself.
βThe Supercar Phishing Kit: A Luxurious Trap for Your Microsoft 365 Credentials
https://securityonline.info/the-supercar-phishing-kit-a-luxurious-trap-for-your-microsoft-365-credentials/
https://securityonline.info/the-supercar-phishing-kit-a-luxurious-trap-for-your-microsoft-365-credentials/
Cybersecurity News
The Supercar Phishing Kit: A Luxurious Trap for Your Microsoft 365 Credentials
Uncover the sophistication of the Supercar Phishing Kit: a new level of phishing tactics targeting Microsoft 365 users.
βBabylon RAT Unleashed: Malaysian Politicians Under Cyber Siege
https://securityonline.info/babylon-rat-unleashed-malaysian-politicians-under-cyber-siege/
https://securityonline.info/babylon-rat-unleashed-malaysian-politicians-under-cyber-siege/
Cybersecurity News
Babylon RAT Unleashed: Malaysian Politicians Under Cyber Siege
Discover the powerful Babylon Remote Access Trojan (RAT) used in a cyber espionage campaign targeting political figures in Malaysia. Find out how it works and its impact.
βRed Hat Issues Critical Patch for Pulpcore Authentication Bypass Flaw (CVE-2024-7923)
https://securityonline.info/red-hat-issues-critical-patch-for-pulpcore-authentication-bypass-flaw-cve-2024-7923/
https://securityonline.info/red-hat-issues-critical-patch-for-pulpcore-authentication-bypass-flaw-cve-2024-7923/
Cybersecurity News
Red Hat Issues Critical Patch for Pulpcore Authentication Bypass Flaw (CVE-2024-7923)
Critical security advisory: Learn about CVE-2024-7923, an authentication bypass flaw in Red Hat Pulpcore affecting Satellite deployments.
βThreat Actors Exploit GeoServer Vulnerability CVE-2024-36401 to Launch Malware Campaigns
https://securityonline.info/threat-actors-exploit-geoserver-vulnerability-cve-2024-36401-to-launch-malware-campaigns/
https://securityonline.info/threat-actors-exploit-geoserver-vulnerability-cve-2024-36401-to-launch-malware-campaigns/
Cybersecurity News
Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401 to Launch Malware Campaigns
Stay informed about the latest cybersecurity threat: SideWalk malware targeting critical vulnerability in GeoServer.
βCVE-2024-45076 (CVSS 9.9): Critical Flaw in IBM webMethods Integration Demand Immediate Action
https://securityonline.info/cve-2024-45076-cvss-9-9-critical-flaw-in-ibm-webmethods-integration-demand-immediate-action/
https://securityonline.info/cve-2024-45076-cvss-9-9-critical-flaw-in-ibm-webmethods-integration-demand-immediate-action/
Cybersecurity News
CVE-2024-45076 (CVSS 9.9): Critical Flaw in IBM webMethods Integration Demand Immediate Action
Critical security advisory: IBM webMethods Integration Server vulnerabilities revealed. Learn about CVE-2024-45076 and CVE-2024-45075 and their potential impact.
βSonicWall warns that SonicOS bug exploited in attacks
https://securityaffairs.com/168112/hacking/sonicwall-sonicos-bug-exploited.html
https://securityaffairs.com/168112/hacking/sonicwall-sonicos-bug-exploited.html
Security Affairs
SonicWall warns that SonicOS bug exploited in attacks
Recently fixed access control SonicOS flaw, tracked as CVE-2024-40766, is potentially exploited in attacks in the wild, SonicWall warns.
βCar rental company Avis discloses a data breach
https://securityaffairs.com/168119/data-breach/car-rental-giant-avis-discloses-data-breach.html
https://securityaffairs.com/168119/data-breach/car-rental-giant-avis-discloses-data-breach.html
Security Affairs
Car rental company Avis discloses a data breach
Car rental giant Avis disclosed a data breach that impacted one of its business applications in August compromising customers' personal information.
βA flaw in WordPress LiteSpeed Cache Plugin allows account takeover
https://securityaffairs.com/168145/security/litespeed-cache-plugin-wordpress-flaw.html
https://securityaffairs.com/168145/security/litespeed-cache-plugin-wordpress-flaw.html
Security Affairs
A flaw in WordPress LiteSpeed Cache Plugin allows account takeover
A critical flaw in the LiteSpeed Cache plugin for WordPress could allow unauthenticated users to take control of arbitrary accounts.
π₯2π1
βU.S. CISA adds Draytek VigorConnect and Kingsoft WPS Office bugs to its Known Exploited Vulnerabilities catalog
https://securityaffairs.com/168153/security/cisa-draytek-vigorconnect-kingsoft-wps-office-bugs-known-exploited-vulnerabilities-catalog.html
https://securityaffairs.com/168153/security/cisa-draytek-vigorconnect-kingsoft-wps-office-bugs-known-exploited-vulnerabilities-catalog.html
Security Affairs
U.S. CISA adds Draytek VigorConnect and Kingsoft WPS Office bugs to its Known Exploited Vulnerabilities catalog
U.S. CISA adds Draytek VigorConnect and Kingsoft WPS Office bugs to its Known Exploited Vulnerabilities catalog.
βCybercriminals Target LatAm Banks: Mekotio, BBTok Lead the Charge
https://securityonline.info/cybercriminals-target-latam-banks-mekotio-bbtok-lead-the-charge/
https://securityonline.info/cybercriminals-target-latam-banks-mekotio-bbtok-lead-the-charge/
Cybersecurity News
Cybercriminals Target LatAm Banks: Mekotio, BBTok Lead the Charge
Learn about the latest phishing tactics in Latin America and the reappearance of Mekotio, BBTok, and Grandoreiro banking Trojans.
βUnmasking PackXOR: The FIN7 Packer Exposed
https://securityonline.info/unmasking-packxor-the-fin7-packer-exposed/
https://securityonline.info/unmasking-packxor-the-fin7-packer-exposed/
Cybersecurity News
Unmasking PackXOR: The FIN7 Packer Exposed
Explore the in-depth analysis of PackXOR, a private packer used by threat actors, including FIN7, to evade detection and carry out malicious activities.
βMindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections
https://securityonline.info/mindsdb-fixes-critical-cve-2024-24759-dns-rebinding-attack-bypasses-security-protections/
https://securityonline.info/mindsdb-fixes-critical-cve-2024-24759-dns-rebinding-attack-bypasses-security-protections/
Daily CyberSecurity
MindsDB Fixes Critical CVE-2024-24759: DNS Rebinding Attack Bypasses Security Protections
Learn how MindsDB, the open-source AI platform, patched a critical security vulnerability CVE-2024-24759, preventing potential attacks and ensuring user data safety.
βSecurity Affairs newsletter Round 488 by Pierluigi Paganini β INTERNATIONAL EDITION
https://securityaffairs.com/168159/breaking-news/security-affairs-newsletter-round-488-by-pierluigi-paganini-international-edition.html
https://securityaffairs.com/168159/breaking-news/security-affairs-newsletter-round-488-by-pierluigi-paganini-international-edition.html
Security Affairs
Security Affairs newsletter Round 488 by Pierluigi Paganini β INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
π1
βSECURITY AFFAIRS MALWARE NEWSLETTER β ROUND 10
https://securityaffairs.com/168168/malware/security-affairs-malware-newsletter-round-10.html
https://securityaffairs.com/168168/malware/security-affairs-malware-newsletter-round-10.html
Security Affairs
SECURITY AFFAIRS MALWARE NEWSLETTER β ROUND 10
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape.
π1
βFeds indicted two alleged administrators of WWH Club dark web marketplace
https://securityaffairs.com/168177/cyber-crime/feds-indicted-admins-wwh-club-marketplace.html
https://securityaffairs.com/168177/cyber-crime/feds-indicted-admins-wwh-club-marketplace.html
Security Affairs
Feds indicted two alleged administrators of WWH Club dark web marketplace
Russian And Kazakhstani men indicted for operating the Dark Web cybercriminals marketplace WWH Club and other crime forums and markets.
βBeware the Drive-By Download: LummaC2 Stealer and Malicious Chrome Extension Wreak Havoc
https://securityonline.info/beware-the-drive-by-download-lummac2-stealer-and-malicious-chrome-extension-wreak-havoc/
https://securityonline.info/beware-the-drive-by-download-lummac2-stealer-and-malicious-chrome-extension-wreak-havoc/
Daily CyberSecurity
Beware the Drive-By Download: LummaC2 Stealer and Malicious Chrome Extension Wreak Havoc
Stay informed about the latest malware threat: LummaC2 Stealer. Learn how this sophisticated campaign uses DLL side-loading to steal sensitive financial information.
βPredator Spyware Roars Back: New Infrastructure, Evasive Tactics
https://securityonline.info/predator-spyware-roars-back-new-infrastructure-evasive-tactics/
https://securityonline.info/predator-spyware-roars-back-new-infrastructure-evasive-tactics/
Daily CyberSecurity
Predator Spyware Roars Back: New Infrastructure, Evasive Tactics
Learn about the reengineered spyware delivery system of the Predator spyware and its impact on global surveillance.
βFog Ransomware Group Shifts Focus: Financial Sector Now in Crosshairs
https://securityonline.info/fog-ransomware-group-shifts-focus-financial-sector-now-in-crosshairs/
https://securityonline.info/fog-ransomware-group-shifts-focus-financial-sector-now-in-crosshairs/
Daily CyberSecurity
Fog Ransomware Group Shifts Focus: Financial Sector Now in Crosshairs
Learn how the Fog ransomware group is targeting the financial services industry and how one cybersecurity company successfully mitigated an attack.