πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.7K subscribers
89.8K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
πŸ•΅οΈβ€β™‚οΈ 'CloudSorcerer' Leverages Cloud Services in Cyber-Espionage Campaign πŸ•΅οΈβ€β™‚οΈ

The newly discovered APT's main weapon is a malware tool that can change behavior depending on the process in which it is running.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 OpenAI Secrets Stolen in 2023 After Internal Forum Was Hacked 🦿

Last year, hackers breached an online forum used by OpenAI employees and stole confidential information about the firms AI systems.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Cybersecurity Agencies Warn of China-linked APT40's Rapid Exploit Adaptation πŸ–‹οΈ

Cybersecurity agencies from Australia, Canada, Germany, Japan, New Zealand, South Korea, the U.K., and the U.S. have released a joint advisory about a Chinalinked cyber espionage group called APT40, warning about its ability to coopt exploits for newly disclosed security flaws within hours or days of public release. "APT40 has previously targeted organizations in various countries, including.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Trojanized jQuery Packages Found on npm, GitHub, and jsDelivr Code Repositories πŸ–‹οΈ

Unknown threat actors have been found propagating trojanized versions of jQuery on npm, GitHub, and jsDelivr in what appears to be an instance of a "complex and persistent" supply chain attack. "This attack stands out due to the high variability across packages," Phylum said in an analysis published last week. "The attacker has cleverly hidden the malware in the seldomused 'end' function of.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Just a Fifth of Manufacturers Have Strongest Anti-Phishing Protection πŸ“”

Study confirms most manufacturers with DMARC dont have it configured to most secure policy.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Ticketmaster Extortion Continues, Threat Actor Claims New Ticket Leak πŸ“”

Tickets to Foo Fighters, Aerosmith, Pink and Usher gigs have been leaked by a threat actor trying to extort Ticketmaster.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ¦… Regional Transport Office themed phishing campaign targets Android users in India πŸ¦…

Key Takeaways  Cyble Research Intelligence Labs has observed a recent surge in phishing campaigns targeting banking users in India.  Cybercriminals have shifted their focus from SMS to WhatsApp for distributing phishing messages, expanding themes from credit card rewards and KYC updates to utility bills and government schemes.  The admin panel hosted on the Command and Control server mentioned the APK support via WhatsApp, suggesting the use of MalwareasaServiceMaaS.  Recent malware strains lack launcher activities, making them stealthier as the app icon does not appear on the app drawer.  In this analysis, were investigating a new campaign impersonating the Regional Transport Office RTO. This campaign uses fake APKs to lure victims into installing malware and focu...

πŸ“– Read more.

πŸ”— Via "CYBLE"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ Peloton faces lawsuit amid claims it allowed marketing firm to train AI on user chat data πŸ“’

Peloton is accused of allowing marketing firm Drift to read and process data without user consent.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Develop Valuable Security and Risk Management Skills for Just $30 Through 7/21 🦿

With cyberthreats and cyberattacks always on the rise, developing security and risk management skills could be one of the best moves for your business or career.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Nearly 10 Billion Passwords Leaked in Biggest Compilation of All Time 🦿

Nearly 10 billion passwords have been leaked on a popular hacking forum, according to Cybernews.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 The 6 Best Governance, Risk & Compliance (GRC) Tools for 2024 🦿

Compare the best governance, risk and compliance tools 2024 has to offer. Discover the best GRC solution for your business's needs.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Hackers Exploiting Jenkins Script Console for Cryptocurrency Mining Attacks πŸ–‹οΈ

Cybersecurity researchers have found that it's possible for attackers to weaponize improperly configured Jenkins Script Console instances to further criminal activities such as cryptocurrency mining. "Misconfigurations such as improperly set up authentication mechanisms expose the 'script' endpoint to attackers," Trend Micro's Shubham Singh and Sunil Bharti said in a technical writeup.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ HUMINT: Diving Deep into the Dark Web πŸ–‹οΈ

Clear Web vs. Deep Web vs. Dark Web Threat intelligence professionals divide the internet into three main components Clear Web Web assets that can be viewed through public search engines, including media, blogs, and other pages and sites. Deep Web Websites and forums that are unindexed by search engines. For example, webmail, online banking, corporate intranets, walled gardens, etc. Some.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ GuardZoo Malware Targets Over 450 Middle Eastern Military Personnel πŸ–‹οΈ

Military personnel from Middle East countries are the target of an ongoing surveillanceware operation that delivers an Android datagathering tool called GuardZoo. The campaign, believed to have commenced as early as October 2019, has been attributed to a Houthialigned threat actor based on the application lures, commandandcontrol C2 server logs, targeting footprint, and the attack.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Chinese State Actor APT40 Exploits N-Day Vulnerabilities β€œWithin Hours” πŸ“”

A joint government advisory warned that the Chinese statesponsored actor APT40 is capable of immediately exploiting newly public vulnerabilities in widely used software.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Avast Provides DoNex Ransomware Decryptor to Victims πŸ“”

Researchers at Avast found a flaw in the cryptographic schema of the DoNex ransomware and have been sending out decryptor keys to victims since March 2024.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ CISA Takedown of Ivanti Systems Is a Wake-up Call πŸ•΅οΈβ€β™‚οΈ

The exploitation of vulnerabilities in Ivanti's software underscores the need for robust cybersecurity measures and proactive response strategies to mitigate risks and protect critical assets.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
🧠 A decade of global cyberattacks, and where they left us 🧠

The cyberattack landscape has seen monumental shifts and enormous growth in the past decade or so. I spoke to Michelle Alvarez, XForce Strategic Threat Analysis Manager at IBM, who told me that the most visible change in cybersecurity can be summed up in one word scale. A decade ago, megabreaches were relatively rare, but now The post A decade of global cyberattacks, and where they left us appeared first on Security Intelligence.

πŸ“– Read more.

πŸ”— Via "Security Intelligence"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ RADIUS Protocol Vulnerability Exposes Networks to MitM Attacks πŸ–‹οΈ

Cybersecurity researchers have discovered a security vulnerability in the RADIUS network authentication protocol called BlastRADIUS that could be exploited by an attacker to stage Malloryinthemiddle MitM attacks and bypass integrity checks under certain circumstances. "The RADIUS protocol allows certain AccessRequest messages to have no integrity or authentication checks," InkBridge.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“” Eldorado Ransomware Strikes Windows and Linux Networks πŸ“”

GroupIB also revealed the ransomware uses Chacha20 and RSAOAEP for encryption.

πŸ“– Read more.

πŸ”— Via "Infosecurity Magazine"

----------
πŸ‘οΈ Seen on @cibsecurity
🌊 Stop Security Incidents in Their Tracks: Your Customizable IR Plan Template 🌊

Introduction Having a comprehensive Incident Response Plan in place is no longer a luxury but a necessity. With the increasing frequency and severity of cyber attacks, you need to be prepared to respond quickly and effectively to minimize the impact of a breach. Thats why weve created a customizable template based on our experience and The post Stop Security Incidents in Their Tracks Your Customizable IR Plan Template appeared first on UnderDefense.

πŸ“– Read more.

πŸ”— Via "UnderDefense"

----------
πŸ‘οΈ Seen on @cibsecurity