๐๏ธ TikTok Goes Dark in the U.S. as Federal Ban Takes Effect January 19, 2025 ๐๏ธ
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
Popular videosharing social network TikTok has officially gone dark in the United States, 2025, as a federal ban on the app comes into effect on January 19, 2025. "We regret that a U.S. law banning TikTok will take effect on January 19 and force us to make our services temporarily unavailable," the company said in a popup message. "We're working to restore our service in the U.S. as soon as.๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐3
๐๏ธ Hackers Deploy Malicious npm Packages to Steal Solana Wallet Keys via Gmail SMTP ๐๏ธ
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
Cybersecurity researchers have identified three sets of malicious packages across the npm and Python Package Index PyPI repository that come with capabilities to steal data and even delete sensitive data from infected systems. The list of identified packages is below asyncmutexmutex, a typosquat of asyncmute npm dexscreener, which masquerades as a library for accessing liquidity pool.๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐1
๐ Data on Half a Million Hotel Guests Exposed After Otelier Breach ๐
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
At least half a million accounts have been compromised after a breach at hotel management software firm Otelier.๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
Infosecurity Magazine
Data on Half a Million Hotel Guests Exposed After Otelier Breach
At least half a million accounts have been compromised after a breach at hotel management software firm Otelier
๐ Former CIA Analyst Pleads Guilty to Sharing Top Secret Files ๐
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
CIA analysts Asif William Rahman has pleaded guilty to sharing classified documents about an Israeli attack.๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
Infosecurity Magazine
Former CIA Analyst Pleads Guilty to Sharing Top Secret Files
CIA analysts Asif William Rahman has pleaded guilty to sharing classified documents about an Israeli attack
๐ข FCC orders telcos to sharpen up security after Salt Typhoon chaos ๐ข
๐ Read more.
๐ Via "ITPro"
----------
๐๏ธ Seen on @cibsecurity
The move follows a devastating attack on US telecoms infrastructure.๐ Read more.
๐ Via "ITPro"
----------
๐๏ธ Seen on @cibsecurity
ITPro
FCC orders telcos to sharpen up security after Salt Typhoon chaos
The move follows a devastating attack on US telecoms infrastructure
๐๏ธ โก THN Weekly Recap: Top Cybersecurity Threats, Tools and Tips [20 January] ๐๏ธ
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
As the digital world becomes more complicated, the lines between national security and cybersecurity are starting to fade. Recent cyber sanctions and intelligence moves show a reality where malware and fake news are used as tools in global politics. Every cyberattack now seems to have deeper political consequences. Governments are facing new, unpredictable threats that can't be fought with.๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ Product Walkthrough: How Satori Secures Sensitive Data From Production to AI ๐๏ธ
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
Every week seems to bring news of another data breach, and its no surprise why securing sensitive data has become harder than ever. And its not just because companies are dealing with orders of magnitude more data. Data flows and user roles are constantly shifting, and data is stored across multiple technologies and cloud environments. Not to mention, compliance requirements are only getting.๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐ US Sanctions Chinese Hackers for Treasury, Telecom Breaches ๐
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
The US has issued sanctions against an individual and a company involved in recent highprofile compromises of government officials by Chinese stateaffiliated hackers.๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
Infosecurity Magazine
US Sanctions Chinese Hackers for Treasury, Telecom Breaches
The US has issued sanctions against an individual and a company involved in recent high-profile compromises of government officials by Chinese state-affiliated hackers
๐ต๏ธโโ๏ธ US Ban on Automotive Components Could Curb Supply Chain ๐ต๏ธโโ๏ธ
๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
The US Department of Commerce will prohibit the import of components for connected vehicles from China or Russia, as the US continues to ban technology it sees as potential national security threats.๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
Dark Reading
US Ban on Auto Components Could Curb Supply Chain
The US Department of Commerce will prohibit the import of components for connected vehicles from China or Russia, as the US continues to ban technology it sees as potential national security threats.
๐ฆฟ Private Internet Access VPN Review: How Good Is PIA VPN? ๐ฆฟ
๐ Read more.
๐ Via "Tech Republic"
----------
๐๏ธ Seen on @cibsecurity
When it comes to privacy and security, PIA VPN is among the best. Discover its features, performance, pricing, and more with this indepth review.๐ Read more.
๐ Via "Tech Republic"
----------
๐๏ธ Seen on @cibsecurity
TechRepublic
Private Internet Access VPN Review: How Good Is PIA VPN?
Private Internet Access VPN offers great privacy at a low cost, but can it keep up with top VPN providers in terms of speed and user experience?
๐ Ukraine's State Registers Restored Following Cyber-Attack ๐
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
The December 2024 cyberattack on the countrys state registers, was attributed to Russian military intelligence services.๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
Infosecurity Magazine
Ukraine's State Registers Restored Following Cyber-Attack
The December 2024 cyber-attack on the countryโs state registers, was attributed to Russian military intelligence services
๐ฆ
Cyble Sensors Detect Attacks on Check Point, Ivanti and More ๐ฆ
๐ Read more.
๐ Via "CYBLE"
----------
๐๏ธ Seen on @cibsecurity
Cyble honeypots have detected vulnerability exploits on Check Point and Ivanti products, databases, CMS systems, and many other IT products. Overview Cyble honeypot sensors have detected new attacks on vulnerabilities in Check Point and Ivanti products, among dozens of other vulnerability exploits recently picked up by Cyble sensors. Cybles sensor intelligence reports to clients in the first two weeks of 2025 also highlighted new database and CMS attacks. Unpatched Linux systems and network and IoT devices remain popular targets for hackers looking to breach networks and add to botnets. The reports also examined new bruteforce attacks and phishing campaigns. Here are some of the highlights. Vulnerabilities Under Attack Here are some of the vulnerability exploits detect...๐ Read more.
๐ Via "CYBLE"
----------
๐๏ธ Seen on @cibsecurity
Cyble
Cyble Sensors Expose Attacks On Check Point & Ivanti
Cyble honeypots have detected vulnerability exploits on Check Point and Ivanti products, databases, CMS systems, and many other IT products.
๐ข Global cyber attacks jumped 44% last year ๐ข
๐ Read more.
๐ Via "ITPro"
----------
๐๏ธ Seen on @cibsecurity
A new report from Check Point Software warns of new tactics from threat actors.๐ Read more.
๐ Via "ITPro"
----------
๐๏ธ Seen on @cibsecurity
ITPro
Global cyber attacks jumped 44% last year
A new report from Check Point Software warns of new tactics from threat actors
๐๏ธ Unsecured Tunneling Protocols Expose 4.2 Million Hosts, Including VPNs and Routers ๐๏ธ
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
New research has uncovered security vulnerabilities in multiple tunneling protocols that could allow attackers to perform a wide range of attacks. "Internet hosts that accept tunneling packets without verifying the sender's identity can be hijacked to perform anonymous attacks and provide access to their networks," Top10VPN said in a study, as part of a collaboration with KU Leuven professor.๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ DoNot Team Linked to New Tanzeem Android Malware Targeting Intelligence Collection ๐๏ธ
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
The Threat actor known as DoNot Team has been linked to a new Android malware as part of highly targeted cyber attacks. The artifacts in question, named Tanzeem meaning "organization" in Urdu and Tanzeem Update, were spotted in October and December 2024 by cybersecurity company Cyfirma. The apps in question have been found to incorporate identical functions, barring minor modifications to the.๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
โค1
๐ต๏ธโโ๏ธ Name That Toon: Incentives ๐ต๏ธโโ๏ธ
๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
Feeling creative? Have something to say about cybersecurity? Submit your caption and our panel of experts will reward the winner with a 25 gift card.๐ Read more.
๐ Via "Dark Reading"
----------
๐๏ธ Seen on @cibsecurity
Dark Reading
Name That Toon: Incentives
Feeling creative? Have something to say about cybersecurity? Submit your caption and our panel of experts will reward the winner with a $25 gift card.
๐ HPE Launches Investigation After Hacker Claims Data Breach ๐
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
HPE is investigating claims of data breach by hacker IntelBroker, who offered stolen files for sale.๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
Infosecurity Magazine
HPE Launches Investigation After Hacker Claims Data Breach
HPE is investigating claims of data breach by hacker IntelBroker, who offered stolen files for sale
๐1
๐ Indian APT Group DONOT Misuses App for Intelligence Gathering ๐
๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
Android apps, linked to APT group DONOT, disguised as a chat platform for intelligence gathering.๐ Read more.
๐ Via "Infosecurity Magazine"
----------
๐๏ธ Seen on @cibsecurity
Infosecurity Magazine
Indian APT Group DONOT Misuses App for Intelligence Gathering
Android apps, linked to APT group DONOT, disguised as a chat platform for intelligence gathering
๐ฆ
Fortinet Zero-Day CVE-2024-55591 Exposed: Super-Admin Access Risk ๐ฆ
๐ Read more.
๐ Via "CYBLE"
----------
๐๏ธ Seen on @cibsecurity
Overview Fortinet, a global leader in cybersecurity solutions, recently released a critical advisory addressing a significant vulnerability CVE202455591 in its FortiOS and FortiProxy products. This flaw, which has a CVSSv3 score of 9.6, is categorized as a critical authentication bypass vulnerability and is currently being exploited in the wild. Attackers leveraging this vulnerability can potentially gain superadmin privileges by exploiting weaknesses in the Node.js WebSocket module, making this a highstakes issue for organizations relying on Fortinet's products. This blog provides a detailed overview of the vulnerability, affected versions, Indicators of Compromise IOCs, mitigation strategies, and steps for administrators to protect their systems effectively. The Vulnerabil...๐ Read more.
๐ Via "CYBLE"
----------
๐๏ธ Seen on @cibsecurity
Cyble
Fortinet Zero-Day CVE-2024-55591: Super-Admin Risk
Learn about CVE-2024-55591, a critical zero-day vulnerability in FortiOS and FortiProxy actively exploited by attackers.
๐๏ธ CERT-UA Warns of Cyber Scams Using Fake AnyDesk Requests for Fraudulent Security Audits ๐๏ธ
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
The Computer Emergency Response Team of Ukraine CERTUA is warning of ongoing attempts by unknown threat actors to impersonate the cybersecurity agency by sending AnyDesk connection requests. The AnyDesk requests claim to be for conducting an audit to assess the "level of security," CERTUA added, cautioning organizations to be on the lookout for such social engineering attempts that seek to.๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐๏ธ PNGPlug Loader Delivers ValleyRAT Malware Through Fake Software Installers ๐๏ธ
๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
Cybersecurity researchers are calling attention to a series of cyber attacks that have targeted Chinesespeaking regions like Hong Kong, Taiwan, and Mainland China with a known malware called ValleyRAT. The attacks leverage a multistage loader dubbed PNGPlug to deliver the ValleyRAT payload, Intezer said in a technical report published last week. The infection chain commences with a phishing.๐ Read more.
๐ Via "The Hacker News"
----------
๐๏ธ Seen on @cibsecurity
๐1