πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.7K subscribers
89.7K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
πŸ¦… Increase in the exploitation of Microsoft SmartScreen vulnerability CVE-2024-21412 πŸ¦…

Key Takeaways  Cyble Research and Intelligence Labs CRIL recently came across an active campaign exploiting the Microsoft SmartScreen vulnerability CVE202421412.   The ongoing campaign targets multiple regions, including Spain, the US, and Australia.  It employs lures related to healthcare insurance schemes, transportation notices, and taxrelated communications to deceive individuals and organizations into downloading malicious payloads onto their machines.  The infection starts with a spam email containing a link that redirects users to a WebDAV share using a search protocol, deceiving them into executing a malicious internet shortcut file, exploiting CVE202421412.  The threat actors TAs conducted a multistage attack utilizing legitimate tools such as forfiles.exe,...

πŸ“– Read more.

πŸ”— Via "CYBLE"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Euro Vishing Fraudsters Add Physical Intimidation to Arsenal πŸ•΅οΈβ€β™‚οΈ

The persistent threat of social engineering tactics sees cybercriminals blending technology with human manipulation to exploit individuals.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Hackers stole OpenAI product secrets in 2023 data breach – reports πŸ“’

While OpenAI hasn't confirmed the breach, there are concerns that its systems could be vulnerable to nationstate hackers.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘4πŸ”₯1
🦿 10 Security Tips for Business Travellers This Summer 🦿

Travelling for work can open employees up to a new host of security threats, including insecure WiFi networks, infected public charging ports and Bluetooth attacks.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Microsoft warns 'Skeleton Key' can crack popular AI models for dangerous outputs πŸ“’

Microsoft says threat actors can bypass guardrails built into some of the most popular LLMs using this simple technique.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ The hackers behind the Indonesian data center attack just handed over a decryption key for free – and they even apologized πŸ“’

The threat actors behind a ransomware attack that crippled public services across Indonesia has handed over the decryption key for free.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ β€œA treasure trove for adversaries”: 10 billion stolen passwords have been shared online in the biggest data leak of all time πŸ“’

A new recordbreaking password leak saw over 10 billion credentials posted to an underground hacking forum last week.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘1
πŸ•΅οΈβ€β™‚οΈ 5 Ways to Run Security as a Meritocracy πŸ•΅οΈβ€β™‚οΈ

Actions speak louder than words. Here are five tips for encouraging a security culture based on achievements.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘1
πŸ•΅οΈβ€β™‚οΈ Deconstructing Security Assumptions to Ensure Future Resilience πŸ•΅οΈβ€β™‚οΈ

By breaking down fundamental assumptions, we can proactively plan for, and begin to achieve, future resilience.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Industrial Cyber Security Basics Can Help Protect APAC Operational Technology Operators: Dragos 🦿

Operational technology users face challenges including communication between process engineering and cyber security teams, a growth in malware and ransomware, and insiders making basic technology mistakes.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Cybersecurity Glossary Pack 🦿

Save 17 and enhance your cybersecurity knowledge. The combined value of the four PDFs is 56, but this pack is priced at 39. It doesnt matter whether your organization is a huge multinational business enterprise or a oneperson operation, cybersecurity will be an important issue. With this TechRepublic Premium pack, readers can get four cybersecurity ...

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ New APT Group "CloudSorcerer" Targets Russian Government Entities πŸ–‹οΈ

A previously undocumented advanced persistent threat APT group dubbed CloudSorcerer has been observed targeting Russian government entities by leveraging cloud services for commandandcontrol C2 and data exfiltration. Cybersecurity firm Kaspersky, which discovered the activity in May 2024, the tradecraft adopted by the threat actor bears similarities with that of CloudWizard, but pointed.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Dark Web Malware Logs Expose 3,300 Users Linked to Child Abuse Sites πŸ–‹οΈ

An analysis of informationstealing malware logs published on the dark web has led to the discovery of thousands of consumers of child sexual abuse material CSAM, indicating how such information could be used to combat serious crimes. "Approximately 3,300 unique users were found with accounts on known CSAM sources," Recorded Future said in a proofofconcept PoC report published last week. ".

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ New Ransomware-as-a-Service 'Eldorado' Targets Windows and Linux Systems πŸ–‹οΈ

An emerging ransomwareasaservice RaaS operation called Eldorado comes with locker variants to encrypt files on Windows and Linux systems. Eldorado first appeared on March 16, 2024, when an advertisement for the affiliate program was posted on the ransomware forum RAMP, Singaporeheadquartered GroupIB said. The cybersecurity firm, which infiltrated the ransomware group, noted that its.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ 5 Key Questions CISOs Must Ask Themselves About Their Cybersecurity Strategy πŸ–‹οΈ

Events like the recent massive CDK ransomware attack which shuttered car dealerships across the U.S. in late June 2024 barely raise public eyebrows anymore.  Yet businesses, and the people that lead them, are justifiably jittery. Every CISO knows that cybersecurity is an increasingly hot topic for executives and board members alike. And when the inevitable CISOBoard briefing rolls.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Experts Warn of Mekotio Banking Trojan Targeting Latin American Countries πŸ–‹οΈ

Financial institutions in Latin America are being threatened by a banking trojan called Mekotio aka Melcoz. That's according to findings from Trend Micro, which said it recently observed a surge in cyber attacks distributing the Windows malware. Mekotio, known to be actively put to use since 2015, is known to target Latin American countries like Brazil, Chile, Mexico, Spain, Peru, and Portugal.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Critical Unpatched Flaws Disclosed in Popular Gogs Open-Source Git Service πŸ–‹οΈ

Four unpatched security flaws, including three critical ones, have been disclosed in the Gogs opensource, selfhosted Git service that could enable an authenticated attacker to breach susceptible instances, steal or wipe source code, and even plant backdoors. The vulnerabilities, according to SonarSource researchers Thomas Chauchefoin and Paul Gerste, are listed below CVE202439930 CVSS.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Apple Removes VPN Apps from Russian App Store Amid Government Pressure πŸ–‹οΈ

Apple removed a number of virtual private network VPN apps in Russia from its App Store on July 4, 2024, following a request by Russia's state communications watchdog Roskomnadzor, Russian news media reported. This includes the mobile apps of 25 VPN service providers, including ProtonVPN, Red Shield VPN, NordVPN and Le VPN, according to MediaZona. It's worth noting that NordVPN previously shut.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” New APT CloudSorcerer Malware Hits Russian Targets πŸ“”

The malware issues commands via a hardcoded charcode table and Microsoft COM object interfaces.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Mekotio Trojan Targets Latin American Banking Credentials πŸ“”

Trend Micro said the trojan has been observed masquerading as communications from tax agencies.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Cisco Warns regreSSHion Vulnerability Impacts Multiple Products πŸ“”

Cisco has told customers that 42 of its products are impacted by the OpenSSH regreSSHion vulnerability, with a further 51 products being investigated.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity