πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.8K subscribers
89.8K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
🧠 How generative AI Is expanding the insider threat attack surface 🧠

As the adoption of generative AI GenAI soars, so too does the risk of insider threats. This puts even more pressure on businesses to rethink security and confidentiality policies. In just a few years, artificial intelligence AI has radically changed the world of work. 61 of knowledge workers now use GenAI tools particularly OpenAIs The post How generative AI Is expanding the insider threat attack surface appeared first on Security Intelligence.

πŸ“– Read more.

πŸ”— Via "Security Intelligence"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Chinese Hackers Deploy SpiceRAT and SugarGh0st in Global Espionage Campaign πŸ–‹οΈ

A previously undocumented Chinesespeaking threat actor codenamed SneakyChef has been linked to an espionage campaign primarily targeting government entities across Asia and EMEA Europe, Middle East, and Africa with SugarGh0st malware since at least August 2023. "SneakyChef uses lures that are scanned documents of government agencies, most of which are related to various countries' Ministries.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Military-themed Email Scam Spreads Malware to Infect Pakistani Users πŸ–‹οΈ

Cybersecurity researchers have shed light on a new phishing campaign that has been identified as targeting people in Pakistan using a custom backdoor. Dubbed PHANTOMSPIKE by Securonix, the unknown threat actors behind the activity have leveraged militaryrelated phishing documents to activate the infection sequence. "While there are many methods used today to deploy malware, the threat actors.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ How to Use Tines's SOC Automation Capability Matrix πŸ–‹οΈ

Created by John Tuckner and the team at automation and AIpowered workflow platform Tines, the SOC Automation Capability Matrix SOC ACM is a set of techniques designed to help security operations teams understand their automation capabilities and respond more effectively to incidents.  A customizable, vendoragnostic tool featuring lists of automation opportunities, it's.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Oyster Backdoor Spreading via Trojanized Popular Software Downloads πŸ–‹οΈ

A malvertising campaign is leveraging trojanized installers for popular software such as Google Chrome and Microsoft Teams to drop a backdoor called Oyster aka Broomstick and CleanUpLoader. That's according to findings from Rapid7, which identified lookalike websites hosting the malicious payloads that users are redirected to after searching for them on search engines like Google and Bing. The.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ SolarWinds Serv-U Vulnerability Under Active Attack - Patch Immediately πŸ–‹οΈ

A recently patched highseverity flaw impacting SolarWinds ServU file transfer software is being actively exploited by malicious actors in the wild. The vulnerability, tracked as CVE202428995 CVSS score 8.6, concerns a directory transversal bug that could allow attackers to read sensitive files on the host machine. Affecting all versions of the software prior to and including ServU 15.4.2.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ U.S. Bans Kaspersky Software, Citing National Security Risks πŸ–‹οΈ

The U.S. Department of Commerce's Bureau of Industry and Security BIS on Thursday announced a "first of its kind" ban that prohibits Kaspersky Lab's U.S. subsidiary from directly or indirectly offering its security software in the country. The blockade also extends to the cybersecurity company's affiliates, subsidiaries and parent companies, the department said, adding the action is based on.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸš€ My health information has been stolen. Now what? πŸš€

As health data continues to be a prized target for hackers, here's how to minimize the fallout from a breach impacting your own health records.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Chemical Facilities Warned of Possible Data Exfiltration Following CISA Breach πŸ“”

CISA has informed chemical facilities that its Chemical Security Assessment Tool CSAT was infiltrated by a malicious actor, and potentially exfiltrated sensitive data.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” US Bans Kaspersky Over Alleged Kremlin Links πŸ“”

Kaspersky poses an undue or unacceptable risk to national security, according to the US Commerce Departments Bureau of Industry and Security.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Synnovis Attackers Publish NHS Patient Data Online πŸ“”

Ransomware group Qilin has reportedly published nearly 400GB of data stolen following the attack on NHS provider Synnovis in early June.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Zero-Day Exploits Cheat Sheet: Definition, Examples & How It Works 🦿

Zeroday exploits use unknown vulnerabilities to infiltrate PCs, networks, mobile phones and IoT devices. For unprepared security teams, these exploits bring financial consequences and longterm risks.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Multifactor Authentication Is Not Enough to Protect Cloud Data πŸ•΅οΈβ€β™‚οΈ

Ticketmaster, Santander Bank, and other large firms suffer data leaks from a large cloudbased service, underscoring that companies need to pay attention to authentication.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘1
πŸ•΅οΈβ€β™‚οΈ Kaspersky's US Customers Face Tight Deadline Following Govt. Ban πŸ•΅οΈβ€β™‚οΈ

After Sept. 29, 2024, organizations and individuals that continue using the vendor's products will no longer receive any updates or support.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ€”1
πŸ•΅οΈβ€β™‚οΈ 'SneakyChef' APT Slices Up Foreign Affairs With SugarGh0st πŸ•΅οΈβ€β™‚οΈ

Government ministries keep falling victim to relatively standardfare cyberespionage attacks, like this latest campaign with hazy Chinese links.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ CISO Corner: Critical Infrastructure Misinformation; France's Atos Bid πŸ•΅οΈβ€β™‚οΈ

Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included Inside China's civilian hacker army outer space threats and NIST 2.0 Framework secrets for success.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Legal Defense Fund Covers Crypto Research πŸ•΅οΈβ€β™‚οΈ

The nonprofit Security Alliance is providing funds to protect security researchers who illegally access crypto assets with the aim of improving security.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Australian Organizations are Fascinated With Copilot for Microsoft 365, But Will They Avoid The β€œGotchas”? 🦿

According to Gartner, there are gotchas that can impede an organizations ability to embrace Copilot. Heres what enterprises interested in implementing Copilot should keep in mind.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
❀1
🦿 Gartner: 3 Actions to Achieve Cybersecurity Consolidation 🦿

In this TechRepublic exclusive, Gartner VP Analyst Dionisio Zumerle shares three leadership strategies for achieving cybersecurity platform consolidation.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor πŸ–‹οΈ

Russian organizations have been targeted by a cybercrime gang called ExCobalt using a previously unknown Golangbased backdoor known as GoRed. "ExCobalt focuses on cyber espionage and includes several members active since at least 2016 and presumably once part of the notorious Cobalt Gang," Positive Technologies researchers Vladislav Lunin and Alexander Badayev said in a technical report.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Warning: New Adware Campaign Targets Meta Quest App Seekers πŸ–‹οΈ

A new campaign is tricking users searching for the Meta Quest formerly Oculus application for Windows into downloading a new adware family called AdsExhaust. "The adware is capable of exfiltrating screenshots from infected devices and interacting with browsers using simulated keystrokes," cybersecurity firm eSentire said in an analysis, adding it identified the activity earlier this month. ".

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity