βοΈ Microsoft: Happy 2025. Hereβs 161 Security Updates βοΈ
π Read more.
π Via "Krebs on Security"
----------
ποΈ Seen on @cibsecurity
Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three "zeroday" weaknesses that are already under active attack. Redmond's inaugural Patch Tuesday of 2025 bundles more fixes than the company has shipped in one go since 2017.π Read more.
π Via "Krebs on Security"
----------
ποΈ Seen on @cibsecurity
Krebs on Security
Microsoft: Happy 2025. Hereβs 161 Security Updates
Microsoft today unleashed updates to plug a whopping 161 security vulnerabilities in Windows and related software, including three "zero-day" weaknesses that are already under active attack. Redmond's inaugural Patch Tuesday of 2025 bundles more fixes thanβ¦
π΅οΈββοΈ As Tensions Mount With China, Taiwan Sees Surge in Cyberattacks π΅οΈββοΈ
π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
In 2024, the Taiwanese government saw the daily average of attempted attacks by China double to 2.4 million, with a focus on government targets and telecommunications firms.π Read more.
π Via "Dark Reading"
----------
ποΈ Seen on @cibsecurity
Darkreading
As Tensions Mount With China, Taiwan Sees Surge in Attacks
In 2024, the Taiwanese government saw the daily average of attempted attacks by China double to 2.4 million, with a focus on government targets and telecommunications firms.
ποΈ 3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Microsoft kicked off 2025 with a new set of patches for a total of 161 security vulnerabilities across its software portfolio, including three zerodays that have been actively exploited in attacks. Of the 161 flaws, 11 are rated Critical, and 149 are rated Important in severity. One other flaw, a nonMicrosoft CVE related to a Windows Secure Boot bypass CVE20247344, has not been assigned.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ Critical SimpleHelp Flaws Allow File Theft, Privilege Escalation, and RCE Attacks ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have disclosed multiple security flaws in SimpleHelp remote access software that could lead to information disclosure, privilege escalation, and remote code execution. Horizon3.ai researcher Naveen Sunkavally, in a technical report detailing the findings, said the "vulnerabilities are trivial to reverse and exploit." The list of identified flaws is as follows .π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ FBI Deletes PlugX Malware from 4,250 Hacked Computers in Multi-Month Operation ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
The U.S. Department of Justice DoJ on Tuesday disclosed that a courtauthorized operation allowed the Federal Bureau of Investigation FBI to delete PlugX malware from over 4,250 infected computers as part of a "multimonth law enforcement operation." PlugX, also known as Korplug, is a remote access trojan RAT widely used by threat actors associated with the People's Republic of China PRC.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π¦
Australia Launches βCountering Foreign Interferenceβ Initiative to Safeguard Sovereignty and Democracy π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Overview Foreign interference poses a persistent and evolving threat to Australias sovereignty, democracy, and national interests. Recognizing the critical importance of addressing these risks, the Australian Government has launched the Countering Foreign Interference in Australia Working Together Towards a More Secure Australia initiative. This comprehensive strategy outlines measures to identify, mitigate, and prevent foreign interference while empowering individuals and organizations to protect themselves. Defining Foreign Interference Foreign interference encompasses activities conducted on behalf of foreign powers that pose threats to individuals, infrastructure, or institutions. Unlike foreign influence, which operates transparently, foreign interference relies on cl...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
π Secureworks Exposes North Korean Links to Fraudulent Crowdfunding π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Secureworks Counter Threat Unit CTU has identified links between North Korean IT workers and fraudulent crowdfunding activities, with the group known as Nickle Tapestry orchestrating scams to support North Korean interests.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Secureworks Exposes North Korean Links to Fraudulent Crowdfunding
Secureworks Counter Threat Unit (CTU) has identified links between North Korean IT workers and fraudulent crowdfunding activities, with the group known as Nickle Tapestry orchestrating scams to support North Korean interests
π Microsoft Patches Eight Zero-Days to Start the Year π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Patch Tuesday saw Microsoft fix eight zerodays, three of which are being actively exploited.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Microsoft Patches Eight Zero-Days to Start the Year
Patch Tuesday saw Microsoft fix eight zero-days, three of which are being actively exploited
π Fortinet Confirms Critical Zero-Day Vulnerability in Firewalls π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The security provider published mitigation measures to prevent exploitation.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Fortinet Confirms Critical Zero-Day Vulnerability in Firewalls
The security provider published mitigation measures to prevent exploitation
π’ Vulnerability management complexity is leaving enterprises at serious risk π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Fragmented data and siloed processes mean remediation is taking too long.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Vulnerability management complexity is leaving enterprises at serious risk
Fragmented data and siloed processes mean remediation is taking too long
π’ Hackers are turning Amazon S3 bucket encryption against customers in new ransomware campaign β and theyβve already claimed two victims π’
π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
Attackers are using AWS serverside encryption to conduct ransomware attacks.π Read more.
π Via "ITPro"
----------
ποΈ Seen on @cibsecurity
IT Pro
Hackers are turning Amazon S3 bucket encryption against customers in new ransomware campaign β and theyβve already claimed twoβ¦
Attackers are using AWSβ server-side encryption to conduct ransomware attacks
π€1
π§ ISC2 Cybersecurity Workforce Study: Shortage of AI skilled workers π§
π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
AI has made an impact everywhere else across the tech world, so it should surprise no one that the 2024 ISC2 Cybersecurity Workforce Study saw artificial intelligence AI jump into the top five list of security skills. Its not just the need for workers with securityrelated AI skills. The Workforce Study also takes a deep The post ISC2 Cybersecurity Workforce Study Shortage of AI skilled workers appeared first on Security Intelligence.π Read more.
π Via "Security Intelligence"
----------
ποΈ Seen on @cibsecurity
Security Intelligence
ISC2 Cybersecurity Workforce Study: Shortage of AI skilled workers
AI has jumped into the top five list of cybersecurity skills, according to the 2024 ISC2 Cybersecurity Workforce Study. How will that affect the skills gap?
ποΈ Google Cloud Researchers Uncover Flaws in Rsync File Synchronization Tool ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
As many as six security vulnerabilities have been disclosed in the popular Rsync filesynchronizing tool for Unix systems, some of which could be exploited to execute arbitrary code on a client. "Attackers can take control of a malicious server and readwrite arbitrary files of any connected client," the CERT Coordination Center CERTCC said in an advisory. "Sensitive data, such as SSH keys,.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
ποΈ The High-Stakes Disconnect For ICS/OT Security ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Why does ICSOT need specific controls and its own cybersecurity budget today? Because treating ICSOT security with an IT security playbook isnt just ineffectiveits high risk. In the rapidly evolving domain of cybersecurity, the specific challenges and needs for Industrial Control Systems ICS and Operational Technology OT security distinctly stand out from traditional IT security. ICSOT.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
π Multi-Cloud Adoption Surges Amid Rising Security Concerns π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
A new report from Fortinet reveals increased adoption of multicloud strategies and hybrid implementations combining onpremises and public cloud infrastructure.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Multi-Cloud Adoption Surges Amid Rising Security Concerns
A new report from Fortinet reveals increased adoption of multi-cloud strategies and hybrid implementations combining on-premises and public cloud infrastructure
π Chinese PlugX Malware Deleted in Global Law Enforcement Operation π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
The FBI deleted Chinese PlugX malware from thousands of devices in the US, using a technique developed by French cybersecurity firm Sekoia.io.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Chinese PlugX Malware Deleted in Global Law Enforcement Operation
The FBI deleted Chinese PlugX malware from thousands of devices in the US, using a technique developed by French cybersecurity firm Sekoia.io
π Illicit Crypto-Inflows Set to Top $51bn in a Year π
π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Chainalysis estimates threat actors made at least 51bn through crypto crime in 2024.π Read more.
π Via "Infosecurity Magazine"
----------
ποΈ Seen on @cibsecurity
Infosecurity Magazine
Illicit Crypto-Inflows Set to Top $51bn in a Year
Chainalysis estimates threat actors made at least $51bn through crypto crime in 2024
π¦
Fortinetβs Authentication Bypass Zero-Day: Mitigation Strategies and IoCs for Enhanced Security π¦
π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Overview Fortinet has disclosed a critical authentication bypass vulnerability affecting FortiOS and FortiProxy systems, identified as CVE202455591. With a CVSS score of 9.6, this vulnerability allows unauthenticated attackers to execute unauthorized code or commands, granting them superadmin privileges. The exploitation of this vulnerability has already been observed in the wild, stressing the urgency for affected organizations to act immediately. Key Details Vulnerability Summary CVE202455591 arises from a flaw in the Node.js websocket module, specifically within FortiOS and FortiProxy, where an alternate path or channel can bypass authentication mechanisms CWE288. This allows remote attackers to gain administrative access and compromise device configurations. Affe...π Read more.
π Via "CYBLE"
----------
ποΈ Seen on @cibsecurity
Cyble
Fortinet Patches Authentication Bypass Zero-Day
Fortinet has disclosed a critical authentication bypass vulnerability affecting FortiOS and FortiProxy systems. Identified as CVE-2024-55591, bug grants βsuper-adminβ privileges.
π¦Ώ Enhancing Health Care Cybersecurity: Bridging HIPAA Gaps with Innovation π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
The proposed HIPAA Security Rule introduces mandatory measures to prevent malicious cyberattacks in health care.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
Enhancing Health Care Cybersecurity: Bridging HIPAA Gaps with Innovation
The proposed HIPAA Security Rule introduces mandatory measures that reflect the growing sophistication of cyber threats in health care.
π¦Ώ CyberGhost VPN Review (2025): Features, Pricing, and Security π¦Ώ
π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
In this comprehensive review of CyberGhost VPN, we cover its features, pricing, security, and overall performance. Find out if this is the right VPN for you.π Read more.
π Via "Tech Republic"
----------
ποΈ Seen on @cibsecurity
TechRepublic
CyberGhost VPN Review (2025): Features, Pricing, and Security
Is CyberGhost VPN truly fast, secure, and great for streaming? Explore its performance, privacy features, and streaming compatibility in our review.
ποΈ North Korean IT Worker Fraud Linked to 2016 Crowdfunding Scam and Fake Domains ποΈ
π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity
Cybersecurity researchers have identified infrastructure links between the North Korean threat actors behind the fraudulent IT worker schemes and a 2016 crowdfunding scam. The new evidence suggests that Pyongyangbased threamoret groups may have pulled off illicit moneymaking scams that predate the use of IT workers, SecureWorks Counter Threat Unit CTU said in a report shared with The Hacker.π Read more.
π Via "The Hacker News"
----------
ποΈ Seen on @cibsecurity