π¦Ώ Does a VPN Slow Down Your Internet Speed? π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Can a VPN slow down your internet? Find out how VPNs can impact your internet speed with our article.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Does a VPN Slow Down Your Internet Speed?
Can a VPN slow down your internet? Find out how VPNs can impact your internet speed with our article.
ποΈ Researchers Uncover 11 Security Flaws in GE HealthCare Ultrasound Machines ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Security researchers have disclosed almost a dozen security flaws impacting the GE HealthCare Vivid Ultrasound product family that could be exploited by malicious actors to tamper with patient data and even install ransomware under certain circumstances. "The impacts enabled by these flaws are manifold from the implant of ransomware on the ultrasound machine to the access and manipulation of.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ Patch Now: Another Google Zero-Day Under Exploit in the Wild π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Google has rolled an emergency patch for CVE20244947, the third Chrome zeroday it's addressed in the past week.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Patch Now: Another Google Zero-Day Under Exploit in the Wild
Google has rolled an emergency patch for CVE-2024-4947, the third Chrome zero-day it's addressed in the past week.
π CISO Confidence in AI Security Grows as GenAI Adoption Rises π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Nearly six out of ten surveyed ClubCISO members are confident AI is used securely in their organizations.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
CISO Confidence in AI Security Grows as GenAI Adoption Rises
Nearly six out of ten surveyed ClubCISO members are confident AI is used securely in their organizations
π΅οΈββοΈ FCC Reveals 'Royal Tiger' Robocall Campaign π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
In a firstever move, the commission's enforcement bureau has high hopes that official classification will allow law enforcement partners to better combat these kinds of threats.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
FCC Reveals 'Royal Tiger' Robocall Campaign
In a first-ever move, the commission's enforcement bureau has high hopes that official classification will allow law enforcement partners to better combat these kinds of threats.
π΅οΈββοΈ The Fall of the National Vulnerability Database π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Since its inception, three key factors have affected the NVD's ability to classify security concerns and what we're experiencing now is the result.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
The Fall of the National Vulnerability Database
Since its inception, three key factors have affected the NVD's ability to classify security concerns β and what we're experiencing now is the result.
π΅οΈββοΈ Windows Quick Assist Anchors Black Basta Ransomware Gambit π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
When abused by threat actors with sophisticated socialengineering chops, remoteaccess tools demand that enterprises remain sharp in both defense strategy and employeeawareness training.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Windows Quick Assist Anchors Black Basta Ransomware Gambit
When abused by threat actors with sophisticated social-engineering chops, remote-access tools demand that enterprises remain sharp in both defense strategy and employee-awareness training.
π¦Ώ Ciscoβs Splunk Acquisition Should Help Security Pros See Threats Sooner in Australia and New Zealand π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Ciscos Splunk acquisition was finalised in March 2024. Splunks Craig Bates says the combined offering could enhance observability and put data to work for security professionals in an age of AI threat defence.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Ciscoβs Splunk Acquisition Should Help Security Pros See Threats Sooner in Australia and New Zealand
Enhanced observability and unified data could make Ciscoβs Splunk acquisition an asset to cyber security pros in Australia and New Zealand, according to Splunkβs Craig Bates.
π Wireshark Analyzer 4.2.5 π
π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
Wireshark is a GTKbased network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercialquality analyzer for Unix and Win32 and to give Wireshark features that are missing from closedsource sniffers. This is the source code release.π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
Packetstormsecurity
Wireshark Analyzer 4.2.5 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π Packet Fence 13.2.0 π
π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
PacketFence is a network access control NAC system. It is actively maintained and has been deployed in numerous largescale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NACoriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registrationbased and scheduled vulnerability scans.π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
Packetstormsecurity
Packet Fence 13.2.0 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
π SIPPTS 4.0 π
π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
Sippts is a set of tools to audit VoIP servers and devices using SIP protocol. It is programmed in Python script and it allows us to check the security of a VoIP server using SIP protocol, over UDP, TCP and TLS protocols.π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
Packetstormsecurity
SIPPTS 4.0 β Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
ποΈ North Korean Hackers Exploit Facebook Messenger in Targeted Malware Campaign ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The North Korealinked Kimsuky hacking group has been attributed to a new social engineering attack that employs fictitious Facebook accounts to targets via Messenger and ultimately delivers malware. "The threat actor created a Facebook account with a fake identity disguised as a public official working in the North Korean human rights field," South Korean cybersecurity company Genians.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π½ Artificial Intelligence Threatens Global Employment π½
π Read more.
π Via "BE3SEC"
----------
ποΈ Seen on @cibsecurity
The International Monetary Fund IMF Managing Director, Kristalina Georgieva, has sounded the alarm about the potentially disruptive impact of artificial intelligence AI on the global workforce. Speaking at a conference in London, Georgieva predicted a coming tsunami of job losses, driven by the rapid advancement of AI technologies. Georgievas warning.π Read more.
π Via "BE3SEC"
----------
ποΈ Seen on @cibsecurity
Be4Sec
Artificial Intelligence Threatens Global Employment
The International Monetary Fund (IMF) Managing Director, Kristalina Georgieva, has sounded the alarm about the potentially disruptive impact of artificial intelligence (AI) on the global workforce.β¦
π 53,000 Employees' Social Security Numbers Exposed in Nissan Data Breach π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Car manufacturer Nissan revealed that over 53,000 of its North America employees had their social security numbers accessed by a ransomware attacker.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
53,000 Employees' Social Security Numbers Exposed in Nissan Data Breach
Car manufacturer Nissan revealed that over 53,000 of its North America employees had their social security numbers accessed by a ransomware attacker
π SugarGh0st RAT Variant Used in Targeted AI Industry Attacks π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Proofpoint said the attackers modified registry key names for persistence.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
SugarGh0st RAT Variant Used in Targeted AI Industry Attacks
Proofpoint said the attackers modified registry key names for persistence
π1
π Windows Quick Assist Exploited in Ransomware Attacks π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Microsoft warned Storm1811 started vishing attacks in April to gain access to target devices.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Windows Quick Assist Exploited in Ransomware Attacks
Microsoft warned Storm-1811 started vishing attacks in April to gain access to target devices
π1
π¦
New Antidot Android Banking Trojan Masquerading as Fake Google Play Updates π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Key Takeaways A new Android Banking Trojan, Antidot, masquerading as a Google Play update application, displays fake Google Play update pages in multiple languages, indicating a wide range of targets. Antidot incorporates a range of malicious features, including overlay attacks and keylogging, allowing it to compromise devices and harvest sensitive information. Antidot maintains communication with its Command and Control CC server through WebSocket, enabling realtime, bidirectional interaction for executing commands. The malware executes a wide range of commands received from the CC server, including collecting SMS messages, initiating USSD requests, and even remotely controlling device features such as the camera and screen lock. Antidot implemented VNC using MediaPr...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
New Antidot Trojan Disguised As Fake Google Play Updates
Discover the 'Antidot' Android Banking Trojan: a fake Google Play update that steals credentials using overlay attacks and remote control techniques.
ποΈ New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Researchers have discovered a new security vulnerability stemming from a design flaw in the IEEE 802.11 WiFi standard that tricks victims into connecting to a less secure wireless network and eavesdrop on their network traffic. The SSID Confusion attack, tracked as CVE202352424, impacts all operating systems and WiFi clients, including home and mesh networks that are based on.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ Asian Threat Actors Use New Techniques to Attack Familiar Targets π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Generative AI and software supply chain attacks are being exploited to disrupt, manipulate, and steal.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Asian Threat Actors Use New Techniques to Attack Familiar Targets
Generative AI and software supply chain attacks are being exploited to disrupt, manipulate, and steal.
π΅οΈββοΈ GE Ultrasound Gear Riddled With Bugs, Open to Ransomware & Data Theft π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Thankfully, GE ultrasounds aren't Internetfacing. Exploiting most of the bugs to cause serious damage to patients would require physical device access.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
GE Ultrasound Gear Riddled With Bugs, Open to Ransomware & Data Theft
Thankfully, GE ultrasounds aren't Internet-facing. Exploiting most of the bugs to cause serious damage to patients would require physical device access.
π΅οΈββοΈ Santander Falls Victim to Data Breach Involving Third-Party Provider π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The company reports that customers based in Chile, Spain, and Uruguay were the primary victims of the breach, alongside some former employees of the global bank.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Santander Falls Victim to Data Breach Involving Third-Party Provider
The company reports that customers based in Chile, Spain, and Uruguay were the primary victims of the breach, alongside some former employees of the global bank.