π Mandos Encrypted File System Unattended Reboot Utility 1.8.17 π
π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote or unattended reboots. The computers run a small client program in the initial RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key that is unique to each client. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system.π Read more.
π Via "Packet Storm - Tools"
----------
ποΈ Seen on @cibsecurity
packetstorm.news
Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories, and Whitepapers
ποΈ Ivanti Warns of Active Exploitation of Newly Patched Cloud Appliance Vulnerability ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Ivanti has revealed that a newly patched security flaw in its Cloud Service Appliance CSA has come under active exploitation in the wild. The highseverity vulnerability in question is CVE20248190 CVSS score 7.2, which allows remote code execution under certain circumstances. "An OS command injection vulnerability in Ivanti Cloud Services Appliance versions 4.6 Patch 518 and before allows.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π CosmicBeetle joins the ranks of RansomHub affiliates β Week in security with Tony Anscombe π
π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
ESET research also finds that CosmicBeetle attempts to exploit the notoriety of the LockBit ransomware gang to advance its own ends.π Read more.
π Via "ESET - WeLiveSecurity"
----------
ποΈ Seen on @cibsecurity
Welivesecurity
CosmicBeetle joins the ranks of RansomHub affiliates β Week in security with Tony Anscombe
ESET research also finds that CosmicBeetle attempts to exploit the notoriety of the LockBit ransomware gang to advance its own ends
β€1
ποΈ Cybercriminals Exploit HTTP Headers for Credential Theft via Large-Scale Phishing Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have warned of ongoing phishing campaigns that abuse refresh entries in HTTP headers to deliver spoofed email login pages that are designed to harvest users' credentials. "Unlike other phishing webpage distribution behavior through HTML content, these attacks use the response header sent by a server, which occurs before the processing of the HTML content," Palo Alto.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π2
π UK Hosts International Cyber Skills Conference π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Nations participating in the event include the US, Canada, EU countries, India, Japan, Singapore, Ghana and Oman.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
UK Hosts International Cyber Skills Conference
Nations participating in the event include the US, Canada, EU countries, India, Japan, Singapore, Ghana and Oman
π1
π¦
GitLab Community and Enterprise Editions Receive New Updates to Mitigate Severe Security Risks π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
GitLab has rolled out essential patch updates for both its Community Edition CE and Enterprise Edition EE, targeting multiple security vulnerabilities and system bugs. These critical updates are crucial for addressing highseverity issues that could jeopardize the security and functionality of GitLab environments. The new releasesversions 17.3.2, 17.2.5, and 17.1.7introduce a range of fixes and improvements designed to counteract various vulnerabilities. Users operating on the affected versions are urged to promptly upgrade their GitLab instances to protect against these vulnerabilities. Cybles latest security advisory provides an indepth examination of recent critical patches released by various vendors, with a particular focus on vulnerabilities addressed in GitLab. As a comp...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
GitLab Editions Get Updates To Mitigate Security Risks
GitLab releases critical updates for versions 17.3.2, 17.2.5, and 17.1.7 to address severe vulnerabilities. Upgrade now to enhance security!
ποΈ Apple Drops Spyware Case Against NSO Group, Citing Risk of Threat Intelligence Exposure ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Apple has filed a motion to "voluntarily" dismiss its lawsuit against commercial spyware vendor NSO Group, citing a shifting risk landscape that could lead to exposure of critical "threat intelligence" information. The development was first reported by The Washington Post on Friday. The iPhone maker said its efforts, coupled with those of others in the industry and national governments to tackle.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π 23andMe Agrees to $30m Data Breach Settlement π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Underfire DNA testing firm 23andMe will pay 30m to settle class action lawsuit.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
23andMe Agrees to $30m Data Breach Settlement
Under-fire DNA testing firm 23andMe will pay $30m to settle class action lawsuit
π Meta Goes Ahead With Controversial AI Training in UK π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Meta has unpaused a project to train AI on Facebook and Instagram posts, despite privacy concerns.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Meta Goes Ahead With Controversial AI Training in UK
Meta has unpaused a project to train AI on Facebook and Instagram posts, despite privacy concerns
π¦Ώ Cloud Access Security Broker Policy π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
The rise in cloud adoption has made it imperative for more businesses to rely on cloud providers to store, access, and manage their data and applications. While running applications and services in the cloud offers muchneeded flexibility and scalability, it also introduces new security challenges. The purpose of this Cloud Access Security Broker Policy, created ...π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Cloud Access Security Broker Policy | TechRepublic
The rise in cloud adoption has made it imperative for more businesses to rely on cloud providers to store, access, and manage their data and applications.
π1
π’ UK convenes international talks on cyber security π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Discussions will focus on the cyber security skills gap and international professional standards within the industry.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
UK convenes international talks on cyber security
Discussions will focus on the cyber security skills gap and international professional standards within the industry
π’ T-Mobileβs VM logs allegedly leaked in 20 GB Capgemini data breach π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The attacker claims to have stolen databases, source code, credentials, private keys, as well as log files generated by virtual machines belonging to TMobile.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
T-Mobileβs VM logs allegedly leaked in 20 GB Capgemini data breach
The attacker claims to have stolen databases, source code, credentials, private keys, as well as log files generated by virtual machines belonging to T-Mobile
π’ Meta will go ahead with plans to use UK data for AI training π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
The company says it's satisfied demands from the ICO, though the UK's regulator will continue to monitor the situation.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
ITPro
Meta will go ahead with plans to use UK data for AI training
The company says it's satisfied demands from the ICO, though the UK's regulator will continue to monitor the situation
π΅οΈββοΈ Cybersecurity & the 2024 US Elections π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
While the 2024 election may see various cyber threats, existing security measures and coordination across all levels of government aim to minimize their impact.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
Cybersecurity & the 2024 US Elections
While the 2024 election may see various cyber threats, existing security measures and coordination across all levels of government aim to minimize their impact.
ποΈ Google Fixes GCP Composer Flaw That Could've Led to Remote Code Execution ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
A nowpatched critical security flaw impacting Google Cloud Platform GCP Composer could have been exploited to achieve remote code execution on cloud servers by means of a supply chain attack technique called dependency confusion. The vulnerability has been codenamed CloudImposer by Tenable Research. "The vulnerability could have allowed an attacker to hijack an internal software dependency.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers are continuing to warn about North Korean threat actors' attempts to target prospective victims on LinkedIn to deliver malware called RustDoor. The latest advisory comes from Jamf Threat Labs, which said it spotted an attack attempt in which a user was contacted on the professional social network by claiming to be a recruiter for a legitimate decentralized.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ From Breach to Recovery: Designing an Identity-Focused Incident Response Playbook ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Imagine this... You arrive at work to a chaotic scene. Systems are down, panic is in the air. The culprit? Not a rogue virus, but a compromised identity. The attacker is inside your walls, masquerading as a trusted user. This isn't a horror movie, it's the new reality of cybercrime. The question is, are you prepared? Traditional incident response plans are like old maps in a new world. They.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π1
ποΈ Master Your PCI DSS v4 Compliance with Innovative Smart Approvals ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The PCI DSS landscape is evolving rapidly. With the Q1 2025 deadline looming ever larger, businesses are scrambling to meet the stringent new requirements of PCI DSS v4.0. Two sections in particular, 6.4.3 and 11.6.1, are troublesome as they demand that organizations rigorously monitor and manage payment page scripts and use a robust change detection mechanism. With the deadline fast approaching.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Advanced Phishing Attacks Put X Accounts at Risk π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
SIM swapping and adversaryinthemiddle can bypass security for accounts on X formerly Twitter.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Advanced Phishing Attacks Put X Accounts at Risk
SIM swapping and βadversary-in-the-middleβ can bypass security for accounts on X (formerly Twitter)
π Apple to Drop Spyware Lawsuit Over Security Concerns π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Apple filed a motion to drop its lawsuit against NSO Group, fears key elements of its cyber defensive measures could be revealed to other spyware vendors.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Apple to Drop Spyware Lawsuit Over Security Concerns
Apple filed a motion to drop its lawsuit against NSO Group, fears key elements of its cyber defensive measures could be revealed to other spyware vendors
π¦
CISA Adds Ivanti Cloud Services Appliance Vulnerability to Known Exploited Vulnerabilities Catalog (CVE-2024-8190) π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Overview The Cybersecurity and Infrastructure Security Agency CISA has recently included a security flaw in Ivanti Cloud Services Appliance CSA in its Known Exploited Vulnerabilities KEV catalog. This newly cataloged vulnerability, identified as CVE20248190, involves an OS command injection that poses a serious risk to affected systems. The vulnerability in question affects the Ivanti Cloud Services Appliance CSA version 4.6, specifically in all versions before Patch 519. It allows remote authenticated attackers with administrative privileges to execute arbitrary commands. This OS command injection flaw poses a risk as it can potentially lead to full system compromise. The vulnerability was assigned a CVSS score of 7.2, indicating a high severity level. Users of Ivanti CSA 4...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
CISA Adds Ivanti CSA Vulnerability (CVE-2024-8190) To KEV
Ivanti CSA vulnerability CVE-2024-8190 added to CISA KEV catalog; urgent patch to CSA 5.0 recommended for high-risk OS command injection flaw.