βAkira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766)
https://securityonline.info/akira-ransomware-exploits-sonicwall-sslvpn-flaw-cve-2024-40766/
https://securityonline.info/akira-ransomware-exploits-sonicwall-sslvpn-flaw-cve-2024-40766/
Daily CyberSecurity
Akira Ransomware Exploits SonicWall SSLVPN Flaw (CVE-2024-40766)
Learn about the active exploitation of a critical vulnerability in SonicWall devices by the notorious Akira ransomware affiliates.
βBlindEagle APT Targets Colombian Insurance with BlotchyQuasar RAT
https://securityonline.info/blindeagle-apt-targets-colombian-insurance-with-blotchyquasar-rat/
https://securityonline.info/blindeagle-apt-targets-colombian-insurance-with-blotchyquasar-rat/
Daily CyberSecurity
BlindEagle APT Targets Colombian Insurance with BlotchyQuasar RAT
BlindEagle APT group targets Colombian insurance sector with BlotchyQuasar RAT. Discover how this remote access trojan is compromising systems and monitoring banking activities.
βPoC Exploit Releases for Windows Elevation of Privilege Vulnerability CVE-2024-26230
https://securityonline.info/poc-exploit-releases-for-windows-elevation-of-privilege-vulnerability-cve-2024-26230/
https://securityonline.info/poc-exploit-releases-for-windows-elevation-of-privilege-vulnerability-cve-2024-26230/
Daily CyberSecurity
PoC Exploit Releases for Windows Elevation of Privilege Vulnerability CVE-2024-26230
Get insights into the technical details and PoC exploit of the serious elevation of privilege vulnerability (CVE-2024-26230) in Windows Telephony service
βHAProxy Vulnerability CVE-2024-45506 Under Active Exploit: Urgent Patching Required
https://securityonline.info/haproxy-vulnerability-cve-2024-45506-under-active-exploit-urgent-patching-required/
https://securityonline.info/haproxy-vulnerability-cve-2024-45506-under-active-exploit-urgent-patching-required/
Cybersecurity News
HAProxy Vulnerability CVE-2024-45506 Under Active Exploit: Urgent Patching Required
Stay informed about the latest security vulnerability: CVE-2024-45506 impacting popular load balancing and proxy software HAProxy.
βCritical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution
https://securityonline.info/critical-kibana-flaws-cve-2024-37288-cve-2024-37285-expose-systems-to-arbitrary-code-execution/
https://securityonline.info/critical-kibana-flaws-cve-2024-37288-cve-2024-37285-expose-systems-to-arbitrary-code-execution/
Daily CyberSecurity
Critical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution
URGENT: Critical security advisory for Kibana users. Update to version 8.15.1 now to mitigate vulnerabilities CVE-2024-37288 and CVE-2024-37285.
βProgress Software fixed a maximum severity flaw in LoadMaster
https://securityaffairs.com/168192/uncategorized/progress-software-emergency-loadmaster-flaw.html
https://securityaffairs.com/168192/uncategorized/progress-software-emergency-loadmaster-flaw.html
Security Affairs
Progress Software fixed a maximum severity flaw in LoadMaster
Progress Software released an emergency to address a maximum severity vulnerability in its LoadMaster products.
βDeadPotato β Harnessing Advanced System Tools For Security And Administration
https://kalilinuxtutorials.com/deadpotato/
https://kalilinuxtutorials.com/deadpotato/
Kali Linux Tutorials
DeadPotato - Harnessing Advanced System Tools For Security
The latest iteration of the versatile security tool designed for network administrators and cybersecurity professionals. This version adds new
βWazuh v4.9.0 β Comprehensive Overview Of Latest Enhancements And Fixes
https://kalilinuxtutorials.com/wazuh-v4-9-0/
https://kalilinuxtutorials.com/wazuh-v4-9-0/
Kali Linux Tutorials
Wazuh v4.9.0 - Comprehensive Overview Of Latest
Its latest enhancements and fixes that fortify cybersecurity measures. This version introduces significant improvements across its Manager
βGOAD β A Comprehensive Guide To The Ultimate Active Directory Pentest Lab
https://kalilinuxtutorials.com/goad/
https://kalilinuxtutorials.com/goad/
Kali Linux Tutorials
GOAD - A Comprehensive Guide To The Ultimate Active Directory
GOAD is a pentest active directory LAB project. The purpose of this lab is to give pentesters a vulnerable Active directory environment
βMultiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401
https://securityaffairs.com/168197/malware/geoserver-geotools-flaw-cve-2024-36401-malware.html
https://securityaffairs.com/168197/malware/geoserver-geotools-flaw-cve-2024-36401-malware.html
Security Affairs
Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401
Multiple threat actors actively exploited the recently disclosed OSGeo GeoServer GeoTools flaw CVE-2024-36401 in malware-based campaigns.
βECS Logs Collector β Essential Tool For Amazon ECS Troubleshooting
https://kalilinuxtutorials.com/ecs-logs-collector/
https://kalilinuxtutorials.com/ecs-logs-collector/
Kali Linux Tutorials
ECS Logs Collector - Essential Tool For Amazon ECS
This project was created to collect Amazon ECS log files and Operating System log files for troubleshooting Amazon ECS customer support cases.
βLoki: a new private agent for the popular Mythic framework
https://securelist.com/loki-agent-for-mythic/113596/
https://securelist.com/loki-agent-for-mythic/113596/
βTIDRONE APT targets drone manufacturers in Taiwan
https://securityaffairs.com/168210/apt/tidrone-targets-organizations-taiwan.html
https://securityaffairs.com/168210/apt/tidrone-targets-organizations-taiwan.html
Security Affairs
TIDRONE APT targets drone manufacturers in Taiwan
A previously undocumented threat actor tracked TIDRONE targets organizations in military and satellite industries in Taiwan.
βLeveraging eBPF For Advanced Kubernetes Monitoring
https://kalilinuxtutorials.com/leveraging-ebpf-for-advanced-kubernetes-monitoring/
https://kalilinuxtutorials.com/leveraging-ebpf-for-advanced-kubernetes-monitoring/
Kali Linux Tutorials
Leveraging eBPF For Advanced Kubernetes Monitoring
eBPF, or Extended Berkeley Packet Filter, is a technology that lets programs run in the Linux kernel. It was first made for filtering network
β9th September β Threat Intelligence Report
https://research.checkpoint.com/2024/9th-september-threat-intelligence-report/
https://research.checkpoint.com/2024/9th-september-threat-intelligence-report/
Check Point Research
9th September β Threat Intelligence Report - Check Point Research
For the latest discoveries in cyber research for the week of 9th September, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The German air traffic control agency, Deutsche Flugsicherung, has confirmed a cyberattack that impactedβ¦
βHow to defend against brute force and password spray attacks
https://www.bleepingcomputer.com/news/security/how-to-defend-against-brute-force-and-password-spray-attacks/
https://www.bleepingcomputer.com/news/security/how-to-defend-against-brute-force-and-password-spray-attacks/
BleepingComputer
How to defend against brute force and password spray attacks
While not very sophisticated, brute force password attacks pose a significant threat to an organization's security. Learn more from Specops Software about these types of attacks and how to defend against them.
βAkira Ransomware Actively Exploiting SonicWall firewall RCE Vulnerability
https://gbhackers.com/akira-sonicwall-exploits/
https://gbhackers.com/akira-sonicwall-exploits/
GBHackers Security | #1 Globally Trusted Cyber Security News Platform
Akira Ransomware Actively Exploiting SonicWall firewall RCE Vulnerability
SonicWall disclosed a critical remote code execution vulnerability (CVE-2024-40766) in SonicOS on August 22nd, 2024. While no active
βPredator spyware operation is back with a new infrastructure
https://securityaffairs.com/168222/intelligence/predator-spyware-new-infrastructure.html
https://securityaffairs.com/168222/intelligence/predator-spyware-new-infrastructure.html
Security Affairs
Predator spyware operation is back with a new infrastructure
A new cluster of activity linked to Predator spyware using a new infrastructure was spotted following sanctions against Intellexa Consortium
βPayment gateway data breach affects 1.7 million credit card owners
https://www.bleepingcomputer.com/news/security/payment-gateway-data-breach-affects-17-million-credit-card-owners/
https://www.bleepingcomputer.com/news/security/payment-gateway-data-breach-affects-17-million-credit-card-owners/
BleepingComputer
Payment gateway data breach affects 1.7 million credit card owners
Payment gateway provider Slim CD has disclosed a data breach that compromised credit card and personal data belonging to almost 1.7 million individuals.
βRussian, Kazakhstani men living in Miami indicted over cybercrime training service
https://cyberscoop.com/russian-kazakhstani-men-living-in-miami-indicted-over-cybercrime-training-service/
https://cyberscoop.com/russian-kazakhstani-men-living-in-miami-indicted-over-cybercrime-training-service/
CyberScoop
Russian, Kazakhstani men living in Miami indicted over cybercrime training service
The pair stand accused of administering WWH Club, a major Russian-language cybercrime marketplace.