πŸ›‘ Cybersecurity & Privacy πŸ›‘ - News
26.8K subscribers
89.8K links
πŸ—ž The finest daily news on cybersecurity and privacy.

πŸ”” Daily releases.

πŸ’» Is your online life secure?

πŸ“© lalilolalo.dev@gmail.com
Download Telegram
🌊 Windows 10 crashed with BSOD due to CrowdStrike’s Update: Here is How to Workaround 🌊

A recent update from cybersecurity company CrowdStrike has sparked a widespread crisis, causing Windows 10 systems to crash with a Blue Screen of Death BSOD. Known for their endpoint protection and threat intelligence services, CrowdStrike is actively working to fix the issue and assist users and organizations in restoring their systems. On July 15, CrowdStrike The post Windows 10 crashed with BSOD due to CrowdStrikes Update Here is How to Workaround appeared first on UnderDefense.

πŸ“– Read more.

πŸ”— Via "UnderDefense"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ 17-Year-Old Linked to Scattered Spider Cybercrime Syndicate Arrested in U.K. πŸ–‹οΈ

Law enforcement officials in the U.K. have arrested a 17yearold boy from Walsall who is suspected to be a member of the notorious Scattered Spider cybercrime syndicate. The arrest was made "in connection with a global cyber online crime group which has been targeting large organizations with ransomware and gaining access to computer networks," West Midlands police said. "The arrest is part of.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸš€ Beyond the blue screen of death: Why software updates matter πŸš€

The widespread IT outages triggered by a faulty CrowdStrike update have put software updates in the spotlight. Heres why you shouldnt dread them.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸš€ The complexities of cybersecurity update processes πŸš€

If a software update process fails, it can lead to catastrophic consequences, as seen today with widespread blue screens of death blamed on a bad update by CrowdStrike.

πŸ“– Read more.

πŸ”— Via "ESET - WeLiveSecurity"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ‘1
πŸ–‹οΈ Cybercriminals Exploit CrowdStrike Update Mishap to Distribute Remcos RAT Malware πŸ–‹οΈ

Cybersecurity firm CrowdStrike, which is facing the heat for causing worldwide IT disruptions by pushing out a flawed update to Windows devices, is now warning that threat actors are exploiting the situation to distribute Remcos RAT to its customers in Latin America under the guise of a providing a hotfix. The attack chains involve distributing a ZIP archive file named "crowdstrikehotfix.zip,".

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
❀1
πŸ¦… Threat Actors Exploit Recent CrowdStrike Outage to Ramp Up Suspicious Domain Creation πŸ¦…

On July 19th, 2024, CrowdStrike, a leading cybersecurity provider of advanced endpoint security detection and protection solutions, released a sensor configuration update to Windows systems. This update contained a logic error that resulted in system crashes and Blue Screen of Death BSOD incidents. The faulty software update caused widespread disruptions on Friday, affecting critical services in banks, airlines, hospitals, stock markets, and IT industries globally. On July 20th,2024, CrowdStrike released technical details explaining that a logic error in a channel file caused the BSOD. This buggy channel file was designed to detect newly observed malicious named pipes for identifying standard C2 Command and Control frameworks in cyberattacks. CrowdStrike also mentioned conducting a...

πŸ“– Read more.

πŸ”— Via "CYBLE"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ UK police arrest teen in connection with MGM Resorts hack πŸ“’

The unnamed teenager is believed to be part of the Scattered Spider gang, responsible for more than 100 attacks.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ AI will change the face of cyber security - here’s how businesses can prepare πŸ“’

AI promises to be a doubleedged sword, bringing new threats and new solutions to businesses.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ DDoS attacks have doubled so far in 2024 πŸ“’

Research on DDoS attacks from Imperva identified two new major application layer attack vectors, while DNS attacks have skyrocketed.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ“’ CISA breached a federal agency as part of its red team program β€” and nobody noticed for five months πŸ“’

A red team assessment performed by CISA on an unnamed federal agency found a series of critical security weaknesses.

πŸ“– Read more.

πŸ”— Via "ITPro"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Kaspersky Is an Unacceptable Risk Threatening the Nation's Cyber Defense πŸ•΅οΈβ€β™‚οΈ

As geopolitical tensions rise, foreign software presents a grave supply chain risk and an ideal attack vector for nationstate adversaries.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Chinese Forced-Labor Ring Sponsors Football Clubs, Hides Behind Stealth Tech πŸ•΅οΈβ€β™‚οΈ

An illegal gambling empire fueled by modernday slavery is being propped up by highprofile sponsorships and defended with sophisticated antidetection software.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Fallout From Faulty Friday CrowdStrike Update Persists πŸ•΅οΈβ€β™‚οΈ

Historic IT outage expected to spur regulatory scrutiny, soulsearching over "monoculture" of IT infrastructure and cyberattack threats.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ•΅οΈβ€β™‚οΈ Under-Resourced Maintainers Pose Risk to Africa's Open Source Push πŸ•΅οΈβ€β™‚οΈ

Many nations see open source software as a great equalizer, giving the Global South the tools necessary for sustainable development. But recent supply chain attacks highlight the need for security.

πŸ“– Read more.

πŸ”— Via "Dark Reading"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 CrowdStrike Outage Disrupts Microsoft Systems Worldwide 🦿

Airports and law enforcement agencies were among the organizations hit by the Blue Screen of Death. CrowdStrike said the error has been fixed.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Get a Lifetime Subscription of FastestVPN for just $40 🦿

In the market for a new VPN? The toprated FastestVPN has been reduced to just 39.99 for a lifetime subscription at TechRepublic Academy.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
🦿 Surfshark vs CyberGhost (2024): Which VPN Is Better? 🦿

Which VPN is better, Surfshark or CyberGhost? Compare these VPNs with our guide and find out which one is best for you.

πŸ“– Read more.

πŸ”— Via "Tech Republic"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ›  I2P 2.6.0 πŸ› 

I2P is an anonymizing network, offering a simple layer that identitysensitive applications can use to securely communicate. All data is wrapped with several layers of encryption, and the network is both distributed and dynamic, with no trusted parties. This is the source code release version.

πŸ“– Read more.

πŸ”— Via "Packet Storm - Tools"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ›  Logwatch 7.11 πŸ› 

Logwatch analyzes and reports on unix system logs. It is a customizable and pluggable log monitoring system which will go through the logs for a given period of time and make a customizable report. It should work right out of the package on most systems.

πŸ“– Read more.

πŸ”— Via "Packet Storm - Tools"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ Experts Uncover Chinese Cybercrime Network Behind Gambling and Human Trafficking πŸ–‹οΈ

The relationship between various TDSs and DNS associated with Vigorish Viper and the final landing experience for the user A Chinese organized crime syndicate with links to money laundering and human trafficking across Southeast Asia has been using an advanced "technology suite" that runs the whole cybercrime supply chain spectrum to spearhead its operations. Infoblox is tracking the proprietor.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity
πŸ–‹οΈ PINEAPPLE and FLUXROOT Hacker Groups Abuse Google Cloud for Credential Phishing πŸ–‹οΈ

A Latin America LATAMbased financially motivated actor codenamed FLUXROOT has been observed leveraging Google Cloud serverless projects to orchestrate credential phishing activity, highlighting the abuse of the cloud computing model for malicious purposes. "Serverless architectures are attractive to developers and enterprises for their flexibility, cost effectiveness, and ease of use," Google.

πŸ“– Read more.

πŸ”— Via "The Hacker News"

----------
πŸ‘οΈ Seen on @cibsecurity