πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.9K subscribers
89.8K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
πŸ•΅οΈβ€β™‚οΈ Critical ConnectWise RMM Bug Poised for Exploitation Avalanche πŸ•΅οΈβ€β™‚οΈ

Two days after disclosure, most instances of the remote desktop tool remain unpatched, while cyberattackers have started inthewild exploitation and researchers warn it could get ugly, fast.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ El Al Flight Crew Suffers Midflight Communication Disruption πŸ•΅οΈβ€β™‚οΈ

Though the incident took place over a known Houthi area, some say this incident was at the hands of a Somali group, based on frequent communication disruptions in the country.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ 'VoltSchemer' Hack Allows Wireless Charger Takeovers πŸ•΅οΈβ€β™‚οΈ

Researchers tested their theory on nine chargers, each different and available to consumers, and found them all vulnerable to their attacks.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ 'Lucifer' Botnet Turns Up the Heat on Apache Hadoop Servers πŸ•΅οΈβ€β™‚οΈ

More than 3,000 unique attacks hitting Hadoop and Druid honeypots in just the past month indicate an attacker testing phase, portending fire and brimstone to come.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ U.S. Offers $15 Million Bounty to Hunt Down LockBit Ransomware Leaders πŸ–‹οΈ

The U.S. State Department has announced monetary rewards of up to 15 million for information that could lead to the identification of key leaders within the LockBit ransomware group and the arrest of any individual participating in the operation. "Since January 2020, LockBit actors have executed over 2,000 attacks against victims in the United States, and around the world, causing costly.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Ransomware Warning as CVSS 10.0 ScreenConnect Bug is Exploited πŸ“”

Researchers warn of a ransomware freeforall after ScreenConnect vulnerability is exploited.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Chinese Duo Found Guilty of $3m Apple Fraud Plot πŸ“”

Two Maryland residents have been convicted of a multimilliondollar fraud scheme against Apple.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Kyndryl and Veeam unveil new global strategic alliance πŸ“’

New cyber resiliency services aim to help enterprise customers drive business continuity and reduce operational costs.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Cybercriminals Weaponizing Open-Source SSH-Snake Tool for Network Attacks πŸ–‹οΈ

A recently opensourced network mapping tool called SSHSnake has been repurposed by threat actors to conduct malicious activities. "SSHSnake is a selfmodifying worm that leverages SSH credentials discovered on a compromised system to start spreading itself throughout the network," Sysdig researcher Miguel Hernndez said. "The worm automatically searches through known credential.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ A New Age of Hacktivism πŸ–‹οΈ

In the past 2 years, we have observed a significant surge in hacktivism activity due to ongoing wars and geopolitical conflicts in various regions. Since the war against Ukraine began, we have witnessed a notable mobilization of nonstate and statebacked actors alike, forming new groups or joining existing hacker collectives.  We understand hacktivism as a form of computer hacking that is.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Russian Government Software Backdoored to Deploy Konni RAT Malware πŸ–‹οΈ

An installer for a tool likely used by the Russian Consular Department of the Ministry of Foreign Affairs MID has been backdoored to deliver a remote access trojan called Konni RAT aka UpDog. The findings come from German cybersecurity company DCSO, which linked the activity as originating from the Democratic People's Republic of Korea DPRKnexus actors targeting Russia. The.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Ivanti Connect Secure flaws have been targeted 250,000 times a day since January - and hackers show no signs of stopping πŸ“’

A huge surge in attacks on Ivanti Connect Secure products has been recorded in recent weeks, and security experts are warning firms to remain vigilant.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Cybercriminals Weaponizing Open-Source SSH-Snake Tool for Network Attacks πŸ–‹οΈ

A recently opensourced network mapping tool called SSHSnake has been repurposed by threat actors to conduct malicious activities. "SSHSnake is a selfmodifying worm that leverages SSH credentials discovered on a compromised system to start spreading itself throughout the network," Sysdig researcher Miguel Hernndez said. "The worm automatically searches through known credential.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Cyber Pros Embrace AI, Over 80% Believe It Will Enhance Jobs πŸ“”

ISC2 found that 82 of cybersecurity professionals believe AI will improve the efficiency of their jobs.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Develop Advanced Cybersecurity Skills for Just $80 🦿

If youre ready to start moving up to higher positions in the lucrative cybersecurity field, this elearning bundle can help you pass certification exams.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
β™ŸοΈ New Leak Shows Business Side of China’s APT Menace β™ŸοΈ

A new data leak that appears to have come from one of China's top private cybersecurity firms provides a rare glimpse into the commercial side of China's many statesponsored hacking groups. Experts say the leak illustrates how Chinese government agencies increasingly are contracting out foreign espionage campaigns to the nation's burgeoning and highly competitive cybersecurity industry.

πŸ“– Read more.

πŸ”— Via "Krebs on Security"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Russian-Aligned Network DoppelgΓ€nger Targets German Elections πŸ“”

SentinelLabs and ClearSky said the group leverage a substantial network of social media accounts.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” OWASP Releases Security Checklist Generative AI Deployment πŸ“”

The OWASP Foundation provides new guidelines to deploy securebydesign LLM use cases.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
🧨 What is a VPN? How It Can Make Your Time Online More Private and Secure. 🧨

What is a VPN virtual private network? And how can it make your time online more secureand a little more... The post What is a VPN? How It Can Make Your Time Online More Private and Secure. appeared first on McAfee Blog.

πŸ“– Read more.

πŸ”— Via "McAfee"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Tenable: Cyber Security Pros Should Worry About State-Sponsored Cyber Attacks 🦿

The outing of Chinabacked threat actor Volt Typhoon and Microsofts compromise by Russiabacked Midnight Blizzard provide important cyber security strategy lessons for Australia, says Tenable.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Iran-Backed Charming Kitten Stages Fake Webinar Platform to Ensnare Targets πŸ•΅οΈβ€β™‚οΈ

The latest ploy by the APT also known as Charming Cypress targets policy experts in the Middle East, Europe, and the US.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity