πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.8K subscribers
89.8K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
πŸ•΅οΈβ€β™‚οΈ AI Consortium Plans Toolkit to Rate AI Model Safety πŸ•΅οΈβ€β™‚οΈ

An AI consortium consisting of top tech companies will release a toolkit later this year for measuring the safety of generative AI models.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘1
πŸ•΅οΈβ€β™‚οΈ Security End-Run: 'AuKill' Shuts Down Windows-Reliant EDR Processes πŸ•΅οΈβ€β™‚οΈ

Russian threat actor FIN17 has shifted gears multiple times in recent years, focusing now on helping ransomware groups be even more covertly effective.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ IDF Has Rebuffed 3B Cyberattacks Since Oct. 7, Colonel Claims πŸ•΅οΈβ€β™‚οΈ

Israel's military computer systems have been under constant barrage in recent months.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Cloud Security, PowerShell Expertise Emerge as Key SOC Analyst Skills πŸ•΅οΈβ€β™‚οΈ

SOC analysts should also cultivate skills like incident handling and response, threat hunting, digital forensics, Python, and bash scripting.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Microsoft: Scattered Spider Widens Web With RansomHub & Qilin πŸ•΅οΈβ€β™‚οΈ

The gang already uses varied tools in its attacks, such as phishing, SIM swapping, and MFA fatigue.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Defending OT Requires Agility, Proactive Controls πŸ•΅οΈβ€β™‚οΈ

As attackers set their sights on infrastructure, security teams need to reduce risk levels without compromising operational agility.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Name That Toon: Near Miss πŸ•΅οΈβ€β™‚οΈ

Feeling creative? Submit your caption and our panel of experts will reward the winner with a 25 Amazon gift card.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Shadowroot Ransomware Lures Turkish Victims via Phishing Attacks πŸ•΅οΈβ€β™‚οΈ

The ransomware is rudimentary with basic functionalities, likely having been created by an inexperienced developer but it's effective at locking up files and sucking up memory capacity.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Void Banshee APT Exploits Microsoft Zero-Day in Spear-Phishing Attacks πŸ•΅οΈβ€β™‚οΈ

The threat group used CVE202438112 and a "zombie" version of IE to spread Atlantida Stealer through purported PDF versions of reference books.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ The Need to Recruit Cyber Talent in the Government πŸ•΅οΈβ€β™‚οΈ

Bad actors are launching unprecedented waves of attacks against government agencies and the federal government is woefully underprepared.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Singapore Banks Ditch One-Time Passwords πŸ•΅οΈβ€β™‚οΈ

Retail banks in the nationstate will eliminate the use of onetime passwords OTPs by bank customers in an effort to thwart phishing.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘1
πŸ•΅οΈβ€β™‚οΈ Cytactic Focuses on Stakeholder Communication to Boost Incident Response πŸ•΅οΈβ€β™‚οΈ

The new cybersecurity startup is focused on helping companies prepare and respond to a "cyber crisis" by consolidating the three Rs readiness, response, and recovery.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ 'Trial' DDoS Attacks on French Sites Portend Greater Olympics Threats πŸ•΅οΈβ€β™‚οΈ

Russian hacktivists claim DDoS attacks against basic tourist websites. Is it real, or just smoke and mirrors?.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ SEXi Ransomware Rebrands as 'APT Inc.,' Keeps Old Methods πŸ•΅οΈβ€β™‚οΈ

The cybercrime group demands ransoms of varying degrees, from thousands to even millions of dollars in some cases, 2 bitcoin per encrypted customer.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Oracle’s Java Changes Lead APAC Enterprises to Explore Alternatives Such As Azul 🦿

The benefits of using Java alternatives such as Azul might include cost optimisation, higher performance and vulnerability management.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Avast SecureLine VPN vs NordVPN (2024): Which VPN Is Better? 🦿

Which VPN is better, Avast SecureLine VPN or NordVPN? Use our guide to compare pricing, features, and more.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Apple iOS 18 Cheat Sheet: Release Date, RCS Integration and More 🦿

iOS 18 includes artificial intelligence features, new apps and much more. Learn how to install the iOS 18 beta.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 PureVPN vs NordVPN (2024): Which VPN Should You Choose? 🦿

While PureVPNs more affordable starting plan may be enticing, NordVPNs stronger security and broader server fleet makes the higher price tag worth the money.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ›  Faraday 5.4.0 πŸ› 

Faraday is a tool that introduces a new concept called IPE, or Integrated PenetrationTest Environment. It is a multiuser penetration test IDE designed for distribution, indexation and analysis of the generated data during the process of a security audit. The main purpose of Faraday is to reuse the available tools in the community to take advantage of them in a multiuser way.

πŸ“– Read more.

πŸ”— Via "Packet Storm - Tools"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ›  jSQL Injection 0.101 πŸ› 

jSQL Injection is a lightweight application used to find database information from a distant server. jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in various other distributions like Pentest Box, Parrot Security OS, ArchStrike and BlackArch Linux. This is the source code release.

πŸ“– Read more.

πŸ”— Via "Packet Storm - Tools"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ North Korean Hackers Update BeaverTail Malware to Target MacOS Users πŸ–‹οΈ

Cybersecurity researchers have discovered an updated variant of a known stealer malware that attackers affiliated with the Democratic People's Republic of Korea DPRK have delivered as part of prior cyber espionage campaigns targeting job seekers. The artifact in question is an Apple macOS disk image DMG file named "MiroTalk.dmg" that mimics the legitimate video call service of the same name,.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity