π Advanced ValleyRAT Campaign Hits Windows Users in China π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Discovered by FortiGuard Labs, the ValleyRAT campaign targets Chinese Windows systems.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Advanced ValleyRAT Campaign Hits Windows Users in China
Discovered by FortiGuard Labs, the ValleyRAT campaign targets Chinese Windows systems
π Russia's FSB Behind Massive Phishing Espionage Campaign π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Citizen Lab attributed the campaign to Coldriver, a notorious FSB subordinate team, and Coldwastrel, a new, Russianaligned group.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Russia's FSB Behind Massive Phishing Espionage Campaign
Citizen Lab attributed the campaign to Coldriver, a notorious FSB subordinate team, and Coldwastrel, a new, Russian-aligned group
π Another Record Year For Ransomware Beckons as Crypto Profits Hit $460m π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Ransom payments in the first half of 2024 hit 460m, according to Chainalysis.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Another Record Year For Ransomware Beckons as Crypto Profits Hit $460m
Ransom payments in the first half of 2024 hit $460m, according to Chainalysis
π Google Warns of Iranian Cyber-Attacks on Presidential Campaigns π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Google has highlighted sophisticated spearphishing attacks by Iranian state actor APT42 targeting individuals associated with the US Presidential campaign.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Google Warns of Iranian Cyber-Attacks on Presidential Campaigns
Google has highlighted sophisticated spearphishing attacks by Iranian state actor APT42 targeting individuals associated with the US Presidential campaign
π SolarWinds Urges Upgrade After Revealing Critical RCE Bug π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
SolarWinds has discovered and fixed a critical remote code execution vulnerability in Web Help Desk.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
SolarWinds Urges Upgrade After Revealing Critical RCE Bug
SolarWinds has discovered and fixed a critical remote code execution vulnerability in Web Help Desk
π’ NetSuite vulnerability could leave thousands of websites exposed π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The issue stems from a misconfiguration of access controls in NetSuite's SuiteCommerce instances.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
NetSuite vulnerability could leave thousands of websites exposed
The issue stems from a misconfiguration of access controls in NetSuite's SuiteCommerce instances
βοΈ NationalPublicData.com Hack Exposes a Nationβs Data βοΈ
π Read more.
π Via "Krebs on Security"
----------
ποΈ Seen on @cibsecurity
A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a littleknown but aptlynamed consumer data broker called NationalPublicData.com. This post examines what we know about a breach that has exposed hundreds of millions of consumer records. We'll also take a closer look at the data broker that got hacked a background check company founded by an actor and retired sheriff's deputy from Florida.π Read more.
π Via "Krebs on Security"
----------
ποΈ Seen on @cibsecurity
Krebs on Security
NationalPublicData.com Hack Exposes a Nationβs Data
A great many readers this month reported receiving alerts that their Social Security Number, name, address and other personal information were exposed in a breach at a little-known but aptly-named consumer data broker called NationalPublicData.com. This postβ¦
π’ A flaw in Proofpointβs anti-phishing platform allowed a hacker to send millions of spam emails π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The attacker was able to manufacture fully authenticated spam emails addressed from Proofpoint customers.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
A flaw in Proofpointβs anti-phishing platform allowed a hacker to send millions of spam emails
The attacker was able to manufacture fully authenticated spam emails addressed from Proofpoint customers
π΅οΈββοΈ White House Pledges $10 Million for Open Source Initiative π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
The OpenSource Software Prevalence Initiative, announced at DEF CON, will examine how open source software is used in critical infrastructure.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
White House Pledges $10 Million for Open Source Initiative
The Open-Source Software Prevalence Initiative, announced at DEF CON, will examine how open source software is used in critical infrastructure.
π΅οΈββοΈ DARPA Announces AI Cyber Challenge Finalists π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Teams designed AI systems to secure open source infrastructure software to be used in industries like financial services, utilities, and healthcare. Each finalist was awarded a 2 million prize.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
DARPA Announces AI Cyber Challenge Finalists
Teams designed AI systems to secure open source infrastructure software to be used in industries like financial services, utilities, and healthcare. Each finalist was awarded a $2 million prize.
ποΈ Multi-Stage ValleyRAT Targets Chinese Users with Advanced Tactics ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Chinesespeaking users are the target of an ongoing campaign that distributes malware known as ValleyRAT. "ValleyRAT is a multistage malware that utilizes diverse techniques to monitor and control its victims and deploy arbitrary plugins to cause further damage," Fortinet FortiGuard Labs researchers Eduardo Altares and Joie Salvio said. "Another noteworthy characteristic of this malware is its.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ The Hidden Security Gaps in Your SaaS Apps: Are You Doing Due Diligence? ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
SaaS applications have become indispensable for organizations aiming to enhance productivity and streamline operations. However, the convenience and efficiency these applications offer come with inherent security risks, often leaving hidden gaps that can be exploited. Conducting thorough due diligence on SaaS apps is essential to identify and mitigate these risks, ensuring the protection of your.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ New Banshee Stealer Targets 100+ Browser Extensions on Apple macOS Systems ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have uncovered new stealer malware that's designed to specifically target Apple macOS systems. Dubbed Banshee Stealer, it's offered for sale in the cybercrime underground for a steep price of 3,000 a month and works across both x8664 and ARM64 architectures. "Banshee Stealer targets a wide range of browsers, cryptocurrency wallets, and around 100 browser.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Google Pixel Devices Shipped with Vulnerable App, Leaving Millions at Risk ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A large percentage of Google's own Pixel devices shipped globally since September 2017 included dormant software that could be used to stage nefarious attacks and deliver various kinds of malware. The issue manifests in the form of a preinstalled Android app called "Showcase.apk" that comes with excessive system privileges, including the ability to remotely execute code and install arbitrary.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Microsoft Mandates MFA for All Azure Sign-Ins π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Microsoft is mandating MFA for all Azure signins, with customers given 60day advance notices to start implementation.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Microsoft Mandates MFA for All Azure Sign-Ins
Microsoft is mandating MFA for all Azure sign-ins, with customers given 60-day advance notices to start implementation
π Florida-Based National Public Data Confirms Data Breach π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The US data broker did not address the threat actors claim that the breach concerns 2.9 billion records.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Florida-Based National Public Data Confirms Data Breach
The US data broker did not address the threat actorβs claim that the breach concerns 2.9 billion records
π Geopolitical Tensions Drive Explosion in DDoS Attacks π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Radware found that Web DDoS attacks rose by 265 in H1 2024, driven by hacktivist groups amid rising geopolitical tensions.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Geopolitical Tensions Drive Explosion in DDoS Attacks
Radware found that Web DDoS attacks rose by 265% in H1 2024, driven by hacktivist groups amid rising geopolitical tensions
π¦
World Agricultural Cycling Competition (WACC) Participants Targeted for Havoc C2 Dissemination π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Key Takeaways Cyble Research and Intelligence Labs CRIL recently identified a phishing site that closely mimics the official website of the World Agricultural Cycling Competition WACC. This deceptive site was crafted by a Threat Actor TA who replicated the legitimate WACC site with only minor modifications, making it challenging for unsuspecting visitors to differentiate between the two. The World Agricultural Cycling Competition is an event held in France that aims to bridge the gap between the agriculture and sports industries. The timing and context suggest that the TA is likely targeting stakeholders and participants within this specific region and sector, aiming to exploit the event's popularity and relevance. The phishing campaign was deliberately launched in July 2024,...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
WACC Participants Targeted For Havoc C2 Attack
Explore how Cyble uncovered a phishing site exploiting the World Agricultural Cycling Competition to distribute Havoc C2 malware
ποΈ Russian Hackers Using Fake Brand Sites to Spread DanaBot and StealC Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have shed light on a sophisticated information stealer campaign that impersonates legitimate brands to distribute malware like DanaBot and StealC. The activity cluster, orchestrated by Russianspeaking cybercriminals and collectively codenamed Tusk, is said to encompass several subcampaigns, leveraging the reputation of the platforms to trick users into downloading the.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π΅οΈββοΈ Why Are Organizations Losing the Ransomware Battle? π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Institutionalizing and sustaining fundamental cybersecurity practices requires a commitment to ongoing vigilance, active management, and a comprehensive understanding of evolving threats.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Dark Reading
Why Are Organizations Losing the Ransomware Battle?
Institutionalizing and sustaining fundamental cybersecurity practices requires a commitment to ongoing vigilance, active management, and a comprehensive understanding of evolving threats.
π US Bipartisan Committee Urges Investigation Into Chinese Wi-Fi Routers π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Two Congressmen fear that the Chinese government might use TPLink WiFi routers to deploy hacking and espionage campaigns in the US.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
US Bipartisan Committee Urges Investigation Into Chinese Wi-Fi Routers
Two Congressmen fear that the Chinese government might use TP-Link Wi-Fi routers to deploy hacking and espionage campaigns in the US