🛡 Cybersecurity & Privacy 🛡 - News

Android Users Hit with ‘Undeletable’ Adware

Researchers say that 14.8 percent of Android users who were targeted with mobile malware or adware last year were left with undeletable files.

166 views21:09

🕴 North Korea's Lazarus Group Diversifies Into Card Skimming 🕴

Since at least May 2019, the state-sponsored threat actor has stolen card data from dozens of retailers, including major US firms.

📖 Read

via "Dark Reading: ".

North Korea's Lazarus Group Diversifies Into Card Skimming

Since at least May 2019, the state-sponsored threat actor has stolen card data from dozens of retailers, including major US firms.

150 views21:34

🕴 Attackers Scan for Vulnerable BIG-IP Devices After Flaw Disclosure 🕴

The US Cybersecurity and Infrastructure Security Agency encourages organizations to patch a critical flaw in the BIG-IP family of application delivery controllers, as firms find evidence that attackers are scanning for the critical vulnerability.

📖 Read

via "Dark Reading: ".

Attackers Scan for Vulnerable BIG-IP Devices After Flaw Disclosure

The US Cybersecurity and Infrastructure Security Agency encourages organizations to patch a critical flaw in the BIG-IP family of application delivery controllers, as firms find evidence that attackers are scanning for the critical vulnerability.

163 views21:34

🔐 How to ensure the integrity of your encrypted drive while it's hibernating in macOS 🔐

Enabling full-disk encryption to keep documents secure is highly recommended. By default, macOS does not maintain integrity while hibernating. But there's a fix for that.

📖 Read

via "Security on TechRepublic".

How to ensure the integrity of your encrypted drive while it's hibernating in macOS

Enabling full-disk encryption to keep documents secure is highly recommended. By default, macOS does not maintain integrity while hibernating. But there's a fix for that.

154 views21:49

Sifter 7.8 ≈ Packet Storm

🛠 Sifter 7.8 🛠

Sifter is a osint, recon, and vulnerability scanner. It combines a plethora of tools within different module sets in order to quickly perform recon tasks, check network firewalling, enumerate remote and local hosts, and scan for the blue vulnerabilities within Microsoft systems and if unpatched, exploits them.

📖 Go!

via "Security Tool Files ≈ Packet Storm".

Packetstormsecurity

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

159 views21:53

Mandos Encrypted File System Unattended Reboot Utility 1.8.12 ≈ Packet Storm

🛠 Mandos Encrypted File System Unattended Reboot Utility 1.8.12 🛠

The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.

📖 Go!

via "Security Tool Files ≈ Packet Storm".

Packetstormsecurity

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

204 views21:53

🕴 BEC Busts Take Down Multimillion-Dollar Operations 🕴

The two extraditions of business email compromise attackers indicate a step forward for international law enforcement collaboration.

📖 Read

via "Dark Reading: ".

BEC Busts Take Down Multimillion-Dollar Operations

The two extraditions of business email compromise attackers indicate a step forward for international law enforcement collaboration.

220 views22:34

ATENTION‼ New - CVE-2020-15096

In Electron before versions 6.1.1, 7.2.4, 8.2.4, and 9.0.0-beta21, there is a context isolation bypass, meaning that code running in the main world context in the renderer can reach into the isolated Electron context and perform privileged actions. Apps using "contextIsolation" are affected. There are no app-side workarounds, you must update your Electron version to be protected. This is fixed in versions 6.1.1, 7.2.4, 8.2.4, and 9.0.0-beta21.

📖 Read

via "National Vulnerability Database".

215 views05:55

Flashy Nigerian Instagram star extradited to US to face BEC charges

⚠ Flashy Nigerian Instagram star extradited to US to face BEC charges ⚠

It's a short jump from a Rolls Royce ride to extradition from the UAE. Goodbye, Dubai, goodbye, Palazzo Versace, hello, Chicago jail cell.

📖 Read

via "Naked Security".

Naked Security

It’s a short jump from a Rolls Royce ride to extradition from the UAE. Goodbye, Dubai, goodbye, Palazzo Versace, hello, Chicago jail cell.

214 views09:33

❌ First-Ever Russian BEC Gang, Cosmic Lynx, Uncovered ❌

Researchers warn that Cosmic Lynx targets firms that don't use DMARC and uses a "mergers and acquisitions" pretext that can lead to large sums of money being stolen.

📖 Read

via "Threatpost".

First-Ever Russian BEC Gang, Cosmic Lynx, Uncovered

Researchers warn that Cosmic Lynx targets firms that don't use DMARC and uses a "mergers and acquisitions" pretext that can lead to large sums of money being stolen.

209 views11:09

❌ Credit-Card Skimmer Has Unlikely Target: Microsoft ASP.NET Sites ❌

A campaign discovered by Malwarebytes Labs in mid-April has lifted credentials from a number of e-commerce portals.

📖 Read

via "Threatpost".

Credit-Card Skimmer Has Unlikely Target: Microsoft ASP.NET Sites

A campaign discovered by Malwarebytes Labs in mid-April has lifted credentials from a number of e-commerce portals.

182 views14:09

Company web names hijacked via outdated cloud DNS records

⚠ Company web names hijacked via outdated cloud DNS records ⚠

Why hack into a server when you can just send vistors to a fake alternative instead?

📖 Read

via "Naked Security".

Naked Security

Why hack into a server when you can just send vistors to a fake alternative instead?

191 views14:33

🕴 Applying the 80-20 Rule to Cybersecurity 🕴

How security teams can achieve 80% of the benefit for 20% of the work.

📖 Read

via "Dark Reading: ".

Applying the 80-20 Rule to Cybersecurity

How security teams can achieve 80% of the benefit for 20% of the work.

164 views14:34

🔐 Remote workers aren't taking security seriously. Now that has to change 🔐

IT teams help can mitigate the risks of shadow IT by being more flexible and adapting to the needs of remote workers, according to a new study.

📖 Read

via "Security on TechRepublic".

Remote workers aren't taking security seriously. Now that has to change

IT teams can help mitigate the risks of shadow IT by being more flexible and adapting to the needs of remote workers, according to a new study.

176 views14:49

❌ Citrix Bugs Allow Unauthenticated Code Injection, Data Theft ❌

Admins should patch their Citrix ADC and Gateway installs immediately.

📖 Read

via "Threatpost".

Citrix Bugs Allow Unauthenticated Code Injection, Data Theft

Admins should patch their Citrix ADC and Gateway installs immediately.

183 views15:09

🔐 65% of organizations saw at least 3 OT system intrusions within the past year 🔐

As OT tech becomes more advanced, so do the cybersecurity concerns surrounding it, Fortinet found.

📖 Read

via "Security on TechRepublic".

65% of organizations saw at least 3 OT system intrusions within the past year

As OT tech becomes more advanced, so do the cybersecurity concerns surrounding it, Fortinet found.

145 views16:49

🔐 Bitdefender unveils Human Risk Analytics to protect against human error 🔐

Part of the company's GravityZone product, the new feature analyzes user mistakes and errors to help track and mitigate them.

📖 Read

via "Security on TechRepublic".

Bitdefender unveils Human Risk Analytics to protect against human error

Part of the company's GravityZone product, the new feature analyzes user mistakes and errors to help track and mitigate them.

136 views16:49

GRR 3.4.2.0 ≈ Packet Storm

🛠 GRR 3.4.2.0 🛠

GRR Rapid Response is an incident response framework focused on remote live forensics. The goal of GRR is to support forensics and investigations in a fast, scalable manner to allow analysts to quickly triage attacks and perform analysis remotely. GRR consists of 2 parts: client and server. GRR client is deployed on systems that one might want to investigate. On every such system, once deployed, GRR client periodically polls GRR frontend servers for work. "Work" means running a specific action: downloading file, listing a directory, etc. GRR server infrastructure consists of several components (frontends, workers, UI servers) and provides web-based graphical user interface and an API endpoint that allows analysts to schedule actions on clients and view and process collected data.

📖 Go!

via "Security Tool Files ≈ Packet Storm".

Packetstormsecurity

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

121 views16:53

ATENTION‼ New - CVE-2020-15037

NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Reports-Devices.php page st[] parameter.

📖 Read

via "National Vulnerability Database".

106 views16:55

ATENTION‼ New - CVE-2020-15036

NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Linked.php dv parameter.

📖 Read

via "National Vulnerability Database".

103 views16:55