ποΈ Researchers Uncover TLS Bootstrap Attack on Azure Kubernetes Clusters ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have disclosed a security flaw impacting Microsoft Azure Kubernetes Services that, if successfully exploited, could allow an attacker to escalate their privileges and access credentials for services used by the cluster. "An attacker with command execution in a Pod running within an affected Azure Kubernetes Services cluster could download the configuration used to.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Iranian Cyber Group TA453 Targets Jewish Leader with New AnvilEcho Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Iranian statesponsored threat actors have been observed orchestrating spearphishing campaigns targeting a prominent Jewish figure starting in late July 2024 with the goal of delivering a new intelligencegathering tool called AnvilEcho. Enterprise security company Proofpoint is tracking the activity under the name TA453, which overlaps with activity tracked by the broader cybersecurity.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Blind Eagle Hackers Exploit Spear-Phishing to Deploy RATs in Latin America ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have shed light on a threat actor known as Blind Eagle that has persistently targeted entities and individuals in Colombia, Ecuador, Chile, Panama, and other Latin American nations. Targets of these attacks span several sectors, including governmental institutions, financial companies, energy and oil and gas companies. "Blind Eagle has demonstrated adaptability in.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Thousands of Oracle NetSuite Sites at Risk of Exposing Customer Information ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers are warning about the discovery of thousands of externallyfacing Oracle NetSuite ecommerce sites that have been found susceptible to leaking sensitive customer information. "A potential issue in NetSuite's SuiteCommerce platform could allow attackers to access sensitive data due to misconfigured access controls on custom record types CRTs," AppOmni's Aaron Costello.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ CISA Warns of Critical Jenkins Vulnerability Exploited in Ransomware Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The U.S. Cybersecurity and Infrastructure Security Agency CISA has added a critical security flaw impacting Jenkins to its Known Exploited Vulnerabilities KEV catalog, following its exploitation in ransomware attacks. The vulnerability, tracked as CVE202423897 CVSS score 9.8, is a path traversal flaw that could lead to code execution. "Jenkins Command Line Interface CLI contains a.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Vermin Cyber-Attacks Target Ukraine, Exploiting Kursk Battle π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Ukraine detected cyberattacks using malicious emails containing photos of alleged prisoners of war from the Kursk direction.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Vermin Cyber-Attacks Target Ukraine, Exploiting Kursk Battle
Ukraine detected cyber-attacks using malicious emails containing photos of alleged prisoners of war from the Kursk direction
π Iran Behind Trump Campaign Hack, US Government Confirms π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The ODNI, FBI and CISA confirmed Iran was behind a reported hack of a Trump campaign website as part of efforts to stoke discord and undermine the US elections.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Iran Behind Trump Campaign Hack, US Government Confirms
The ODNI, FBI and CISA confirmed Iran was behind a reported hack of a Trump campaign website as part of efforts to stoke discord and undermine the US elections
π Former Congressman Santos Admits Identity Theft and Fraud π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Former US Representative George Santos pleads guilty to multiple fraud and identity theft charges.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Former Congressman Santos Admits Identity Theft and Fraud
Former US Representative George Santos pleads guilty to multiple fraud and identity theft charges
π Jewish Home Lifecare Notifies 100,000 Victims of Ransomware Breach π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Healthcare organization Jewish Home Lifecare has revealed that a 2024 data breach hit over 100,000 customers.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Jewish Home Lifecare Notifies 100,000 Victims of Ransomware Breach
Healthcare organization Jewish Home Lifecare has revealed that a 2024 data breach hit over 100,000 customers
π¦Ώ Three-Quarters of Companies Retain An Increasing Amount of Sensitive Data, Report Finds π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
Perforce reveals that companies are struggling with increased sensitive data in nonproduction environments, leading to higher breach risks and compliance challenges.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Three-Quarters of Companies Retain An Increasing Amount of Sensitive Data, Report Finds
Perforce reveals that companies are struggling with increased sensitive data in non-production environments, leading to higher breach risks and compliance challenges.
β€1
π¦Ώ Most Ransomware Attacks Occur When Security Staff Are Asleep, Study Finds π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
ThreatDown 2024 Report Malwarebytes reveals ransomware trends, showing most attacks occur at night when security staff are off duty.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Most Ransomware Attacks Occur When Security Staff Are Asleep, Study Finds
ThreatDown 2024 Report: Malwarebytes reveals ransomware trends, showing most attacks occur at night when security staff are off duty.
π§ Cost of a data breach: The industrial sector π§
π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Industrial organizations recently received a report card on their performance regarding data breach costs. And theres plenty of room for improvement. According to the 2024 IBM Cost of a Data Breach CODB report, the average total cost of a data breach in the industrial sector was 5.56 million. This reflects an 18 increase for the The post Cost of a data breach The industrial sector appeared first on Security Intelligence.π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Security Intelligence
Cost of a data breach: The industrial sector
Data breach costs are on the rise for the industrial sector, reaching 13% more than the global average. How can this sector improve?
π¦
Cyble Recognized in Gartnerβs Report on Digital Risk Protection Services: Hype Cycle for Cyber-Risk Management, 2024. π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Gartner's Hype Cycle Report, published on July 22, 2024, identified Cyble as a sample vendor in Digital Risk Protection Services for Cyber Risk Management. The report emphasizes Cyberrisk management, which is now a top concern for executives and regulators. This provides a comprehensive overview of how different methods and techniques are being utilized to support governance, risk management, and compliance in todays fastevolving cyber landscape. Cyble is setting new benchmarks in Digital Risk Protection Services DRPS for Cyber Risk Management. Key Insights from Gartners July 2024 Hype Cycle Report The rapid adoption of AI in cybersecurity during 2023 and 2024 is seen as both a potential cybersecurity risk and a valuable tool for enhancing security practices. This perspect...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Cyble Recognized In Gartnerβs Report On Digital Risk Protection Services: Hype Cycle For Cyber-Risk Management, 2024. - Cyble
Gartner's Hype Cycle Report, published on July 22, 2024, identified Cyble as a sample vendor in Digital Risk Protection Services for Cyber Risk
π¦Ώ National Public Data Breach: Only 134 Million Unique Emails Leaked and Company Acknowledges Incident π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
In August, 2.7 billion records from National Public Data, including Social Security numbers, were leaked on a dark web forum.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
National Public Data Breach: Only 134 Million Unique Emails Leaked and Company Acknowledges Incident
On August 6, 2.7 billion records from National Public Data, including Social Security numbers, were leaked on a dark web forum.
π’ Hackers are flocking to a new SMS spam tool β βXeon Senderβ exploits cloud APIs and exposed credentials to supercharge phishing campaigns π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The Xeon Sender tool has been repurposed by numerous threat actor actors since its initial sighting in 2022.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Hackers are flocking to a new SMS spam tool β βXeon Senderβ exploits cloud APIs and exposed credentials to supercharge phishingβ¦
The Xeon Sender tool has been repurposed by numerous threat actor actors since its initial sighting in 2022
π’ How to implement identity and access management (IAM) effectively in your business π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
With pressure from the board and a new wave of threats, security leaders looking to implement IAM should start small and lean on the data.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
How to implement identity and access management (IAM) effectively in your business
With pressure from the board and a new wave of threats, security leaders looking to implement IAM should start small and lean on the data
π1
π New DNS-Based Backdoor Threat Discovered at Taiwanese University π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The Msupedge backdoor communicates with a commandandcontrol server by using DNS traffic.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
New DNS-Based Backdoor Threat Discovered at Taiwanese University
The Msupedge backdoor communicates with a command-and-control server by using DNS traffic
π Iranian Group TA453 Launches Phishing Attacks with BlackSmith π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
TA453, also known as Charming Kitten, launched a targeted phishing attack using PowerShell malware BlackSmith.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Iranian Group TA453 Launches Phishing Attacks with BlackSmith
TA453, also known as Charming Kitten, launched a targeted phishing attack using PowerShell malware BlackSmith
π¦
Widespread Cloud Exposure: Extortion Campaign Used Exposed AWS ENV Files to Target 110,000 Domains π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Key Takeaways A sophisticated cloud extortion campaign used misconfigured AWS .env files to target 110,000 domains, steal credentials and ransom cloud storage data. The threat actors obtained AWS Identity and Access Management IAM access keys by scanning for exposed .env files hosted on unsecured web applications. These environment variable files .env files define configuration variables within applications and platforms and often contain secrets. Cybles threat intelligence platform suggests that .env exposures PS1 may be more common than even this largescale attack suggests. The IAM credentials uncovered by the attackers had permissions to create new IAM roles and attach IAM policies to existing roles, which they used to create new IAM resources with unlimited access. Ove...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Cloud Extortion: Exposed ENV Files Used For AWS Theft
Discover how a cloud extortion campaign exploited misconfigured .env files across 110,000 domains to steal AWS credentials and ransom data
ποΈ Detecting AWS Account Compromise: Key Indicators in CloudTrail Logs for Stolen API Keys ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
As cloud infrastructure becomes the backbone of modern enterprises, ensuring the security of these environments is paramount. With AWS Amazon Web Services still being the dominant cloud it is important for any security professional to know where to look for signs of compromise. AWS CloudTrail stands out as an essential tool for tracking and logging API activity, providing a comprehensive.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Czech Mobile Users Targeted in New Banking Credential Theft Scheme ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Mobile users in the Czech Republic are the target of a novel phishing campaign that leverages a Progressive Web Application PWA in an attempt to steal their banking account credentials. The attacks have targeted the Czechbased eskoslovensk obchodn banka CSOB, as well as the Hungarian OTP Bank and the Georgian TBC Bank, according to Slovak cybersecurity company ESET. "The phishing.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity