Critical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution
https://securityonline.info/critical-kibana-flaws-cve-2024-37288-cve-2024-37285-expose-systems-to-arbitrary-code-execution/
https://securityonline.info/critical-kibana-flaws-cve-2024-37288-cve-2024-37285-expose-systems-to-arbitrary-code-execution/
Daily CyberSecurity
Critical Kibana Flaws (CVE-2024-37288, CVE-2024-37285) Expose Systems to Arbitrary Code Execution
URGENT: Critical security advisory for Kibana users. Update to version 8.15.1 now to mitigate vulnerabilities CVE-2024-37288 and CVE-2024-37285.
Progress Software fixed a maximum severity flaw in LoadMaster
https://securityaffairs.com/168192/uncategorized/progress-software-emergency-loadmaster-flaw.html
https://securityaffairs.com/168192/uncategorized/progress-software-emergency-loadmaster-flaw.html
Security Affairs
Progress Software fixed a maximum severity flaw in LoadMaster
Progress Software released an emergency to address a maximum severity vulnerability in its LoadMaster products.
DeadPotato – Harnessing Advanced System Tools For Security And Administration
https://kalilinuxtutorials.com/deadpotato/
https://kalilinuxtutorials.com/deadpotato/
Kali Linux Tutorials
DeadPotato - Harnessing Advanced System Tools For Security
The latest iteration of the versatile security tool designed for network administrators and cybersecurity professionals. This version adds new
Wazuh v4.9.0 – Comprehensive Overview Of Latest Enhancements And Fixes
https://kalilinuxtutorials.com/wazuh-v4-9-0/
https://kalilinuxtutorials.com/wazuh-v4-9-0/
Kali Linux Tutorials
Wazuh v4.9.0 - Comprehensive Overview Of Latest
Its latest enhancements and fixes that fortify cybersecurity measures. This version introduces significant improvements across its Manager
GOAD – A Comprehensive Guide To The Ultimate Active Directory Pentest Lab
https://kalilinuxtutorials.com/goad/
https://kalilinuxtutorials.com/goad/
Kali Linux Tutorials
GOAD - A Comprehensive Guide To The Ultimate Active Directory
GOAD is a pentest active directory LAB project. The purpose of this lab is to give pentesters a vulnerable Active directory environment
Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401
https://securityaffairs.com/168197/malware/geoserver-geotools-flaw-cve-2024-36401-malware.html
https://securityaffairs.com/168197/malware/geoserver-geotools-flaw-cve-2024-36401-malware.html
Security Affairs
Multiple malware families delivered exploiting GeoServer GeoTools flaw CVE-2024-36401
Multiple threat actors actively exploited the recently disclosed OSGeo GeoServer GeoTools flaw CVE-2024-36401 in malware-based campaigns.
ECS Logs Collector – Essential Tool For Amazon ECS Troubleshooting
https://kalilinuxtutorials.com/ecs-logs-collector/
https://kalilinuxtutorials.com/ecs-logs-collector/
Kali Linux Tutorials
ECS Logs Collector - Essential Tool For Amazon ECS
This project was created to collect Amazon ECS log files and Operating System log files for troubleshooting Amazon ECS customer support cases.
Loki: a new private agent for the popular Mythic framework
https://securelist.com/loki-agent-for-mythic/113596/
https://securelist.com/loki-agent-for-mythic/113596/
TIDRONE APT targets drone manufacturers in Taiwan
https://securityaffairs.com/168210/apt/tidrone-targets-organizations-taiwan.html
https://securityaffairs.com/168210/apt/tidrone-targets-organizations-taiwan.html
Security Affairs
TIDRONE APT targets drone manufacturers in Taiwan
A previously undocumented threat actor tracked TIDRONE targets organizations in military and satellite industries in Taiwan.
Leveraging eBPF For Advanced Kubernetes Monitoring
https://kalilinuxtutorials.com/leveraging-ebpf-for-advanced-kubernetes-monitoring/
https://kalilinuxtutorials.com/leveraging-ebpf-for-advanced-kubernetes-monitoring/
Kali Linux Tutorials
Leveraging eBPF For Advanced Kubernetes Monitoring
eBPF, or Extended Berkeley Packet Filter, is a technology that lets programs run in the Linux kernel. It was first made for filtering network
9th September – Threat Intelligence Report
https://research.checkpoint.com/2024/9th-september-threat-intelligence-report/
https://research.checkpoint.com/2024/9th-september-threat-intelligence-report/
Check Point Research
9th September – Threat Intelligence Report - Check Point Research
For the latest discoveries in cyber research for the week of 9th September, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES The German air traffic control agency, Deutsche Flugsicherung, has confirmed a cyberattack that impacted…
How to defend against brute force and password spray attacks
https://www.bleepingcomputer.com/news/security/how-to-defend-against-brute-force-and-password-spray-attacks/
https://www.bleepingcomputer.com/news/security/how-to-defend-against-brute-force-and-password-spray-attacks/
BleepingComputer
How to defend against brute force and password spray attacks
While not very sophisticated, brute force password attacks pose a significant threat to an organization's security. Learn more from Specops Software about these types of attacks and how to defend against them.
Akira Ransomware Actively Exploiting SonicWall firewall RCE Vulnerability
https://gbhackers.com/akira-sonicwall-exploits/
https://gbhackers.com/akira-sonicwall-exploits/
GBHackers Security | #1 Globally Trusted Cyber Security News Platform
Akira Ransomware Actively Exploiting SonicWall firewall RCE Vulnerability
SonicWall disclosed a critical remote code execution vulnerability (CVE-2024-40766) in SonicOS on August 22nd, 2024. While no active
Predator spyware operation is back with a new infrastructure
https://securityaffairs.com/168222/intelligence/predator-spyware-new-infrastructure.html
https://securityaffairs.com/168222/intelligence/predator-spyware-new-infrastructure.html
Security Affairs
Predator spyware operation is back with a new infrastructure
A new cluster of activity linked to Predator spyware using a new infrastructure was spotted following sanctions against Intellexa Consortium
Payment gateway data breach affects 1.7 million credit card owners
https://www.bleepingcomputer.com/news/security/payment-gateway-data-breach-affects-17-million-credit-card-owners/
https://www.bleepingcomputer.com/news/security/payment-gateway-data-breach-affects-17-million-credit-card-owners/
BleepingComputer
Payment gateway data breach affects 1.7 million credit card owners
Payment gateway provider Slim CD has disclosed a data breach that compromised credit card and personal data belonging to almost 1.7 million individuals.
Russian, Kazakhstani men living in Miami indicted over cybercrime training service
https://cyberscoop.com/russian-kazakhstani-men-living-in-miami-indicted-over-cybercrime-training-service/
https://cyberscoop.com/russian-kazakhstani-men-living-in-miami-indicted-over-cybercrime-training-service/
CyberScoop
Russian, Kazakhstani men living in Miami indicted over cybercrime training service
The pair stand accused of administering WWH Club, a major Russian-language cybercrime marketplace.
Meta fixes easily bypassed WhatsApp ‘View Once’ privacy feature
https://www.bleepingcomputer.com/news/security/meta-fixes-easily-bypassed-whatsapp-view-once-privacy-feature/
https://www.bleepingcomputer.com/news/security/meta-fixes-easily-bypassed-whatsapp-view-once-privacy-feature/
BleepingComputer
Meta fixes easily bypassed WhatsApp ‘View Once’ privacy feature
A privacy flaw in WhatsApp, an instant messenger with over 2 billion users worldwide, is being exploited by attackers to bypass the app's "View once" feature and view messages again.
WhatsApp Flaw Allows Bypassing the ‘View Once’ Media Privacy Feature
https://restoreprivacy.com/whatsapp-flaw-allows-bypassing-the-view-once-media-privacy-feature/
https://restoreprivacy.com/whatsapp-flaw-allows-bypassing-the-view-once-media-privacy-feature/
CyberInsider
WhatsApp Flaw Allows Bypassing the 'View Once' Media Privacy Feature
Researchers have uncovered a privacy flaw in WhatsApp's “View Once” feature, designed to enhance user privacy by allowing media to be viewed once before disappearing. The flaw enables attackers to easily bypass this restriction, rendering the privacy protection…
Highline Public Schools closes schools following cyberattack
https://www.bleepingcomputer.com/news/security/highline-public-schools-closes-schools-following-cyberattack/
https://www.bleepingcomputer.com/news/security/highline-public-schools-closes-schools-following-cyberattack/
BleepingComputer
Highline Public Schools closes schools following cyberattack
Highline Public Schools, a K-12 district in Washington state, has shut down all schools and canceled school activities after its technology systems were compromised in a cyberattack.
Chinese hackers use new data theft malware in govt attacks
https://www.bleepingcomputer.com/news/security/chinese-hackers-use-new-data-theft-malware-in-govt-attacks/
https://www.bleepingcomputer.com/news/security/chinese-hackers-use-new-data-theft-malware-in-govt-attacks/
BleepingComputer
Chinese hackers use new data theft malware in govt attacks
New attacks attributed to China-based cyber espionage group Mustang Panda show that the threat actor switched to new strategies and malware called FDMTP and PTSOCKET to download payloads and steal information from breached networks.