Cyber security aggregate rss news

Cyber security aggregator - feeds history

totals: cyware (15) packetstormsecurity (13)

A hacker is selling access to the email accounts of hundreds of C-level executives

cyware Nov 28, 2020 Breaches and Incidents

A threat actor is currently selling passwords for the email accounts of hundreds of C-level executives from companies worldwide on a closed-access underground forum for Russian-speaking hackers.

Out-of-band Drupal security updates fix bugs with known exploits

cyware Nov 28, 2020 Malware and Vulnerabilities

Drupal has released out-of-band security updates to patch two arbitrary PHP code execution vulnerabilities identified as CVE-2020-28948 and CVE-2020-28949 in Drupal core.

TurkeyBombing Puts New Twist on Zoom Abuse

cyware Nov 28, 2020 Malware and Vulnerabilities

Millions of family and friends, forced to spend Thanksgiving socially distant, are being targeted by cybercriminals as they turn to video platforms like Zoom to virtually be together.

Reuters: Suspected North Korean hackers targeted COVID vaccine maker AstraZeneca

cyware Nov 28, 2020 Breaches and Incidents

The North Korean hackers posed as recruiters on networking site LinkedIn and WhatsApp in order to approach AstraZeneca staff, including those working on coronavirus research, with fake job offers.

Domain-based Phishing and Spoofing Scams Put Pedal to the Metal

cyware Nov 28, 2020 Trends, Reports, Analysis

Researchers have found that criminals are using mainstream ISPs, hosting companies, and free internet services in phishing and domain spoofing scams, especially when major events are around.

Media Agencies: The Next Target of Cybercriminals

cyware Nov 28, 2020 Trends, Reports, Analysis

Any cybersecurity mishap in media firms that hold a lot of confidential data, will not only harm its reputation but also pose risks to institutions and the general public from various malicious actors.

DefenseStorm Secures $12M in Series B Capital Raise

cyware Nov 28, 2020 Companies to Watch

DefenseStorm, the cloud-based cybersecurity and cyber compliance management provider to regional and community banks and credit unions, announced that it has raised a $12M Series B round.

Cloud security mapping startup Lightspeed comes out of stealth

cyware Nov 28, 2020 Companies to Watch

Lightspin, a new Israeli-based cybersecurity startup focused on the cloud security, secured $4 million in initial seed funding from Ibex Investors and other private angel investors.

CrowdStrike Foundation Announces NextGen Scholarship Recipients for Academic Year 2020 – 2021

cyware Nov 28, 2020 Companies to Watch

The CrowdStrike Foundation, a nonprofit that funds scholarships and research, announced the recipients of its NextGen Scholarship awards for the academic year 2020 – 2021.

Tanium Deepens Strategic Partnership with CIS, Joining the Elite CIS CyberMarket

cyware Nov 28, 2020 Companies to Watch

Tanium, the provider of unified endpoint management and security built for the world’s most demanding IT environments, today announced a strategic partnership with the Center for Internet Security.

China Releases Draft Personal Information Protection Law

cyware Nov 28, 2020 Geopolitical, Terrorism

The draft PIPL proposes to codify many data privacy and protection principles and concepts that exist in China's current data governance regime, including the Cybersecurity Law1.

Abnormal Security Raises $50M To Enhance Email Security Tool

cyware Nov 28, 2020 Companies to Watch

Email security startup Abnormal Security has announced a Series B funding round, led by Menlo Ventures, to double the size of its machine learning and data science teams.

Jacobs Acquires Cyber and Intelligence Leader The Buffalo Group

cyware Nov 28, 2020 Companies to Watch

Jacobs has announced the acquisition of The Buffalo Group, a cyber and intel solutions provider, further strengthening Jacobs’ portfolio of national priority mission-focused, government solutions.

Group-IB launches new threat hunting and attack prevention solution

cyware Nov 28, 2020 Security Products & Services

Group-IB has revealed the results of its years-long development of proprietary high-tech products for threat hunting and research — Threat Intelligence & Attribution and Threat Hunting Framework.

What is an SMB Relay Attack?

cyware Nov 28, 2020 Threat Intel & Info Sharing

The SMB Relay attack abuses the NTLM challenge-response protocol. Commonly, all SMB sessions used the NTML protocol for encryption and authentication purposes (i.e. NTLM over SMB).

A Hacker Is Selling Access To The Email Accounts Of Hundreds Of C-Level Executives

packetstormsecurity Nov 28, 2020 headline,hacker,privacy,email,data loss,

Manchester United Silent On Cyber Attack Demands Report

packetstormsecurity Nov 28, 2020 headline,malware,britain,fraud,cryptogra

TurkeyBombing Puts New Twist On Zoom Abuse

packetstormsecurity Nov 28, 2020 headline

The Best Gifts For Hackers

packetstormsecurity Nov 28, 2020 Feed

Apache NiFi API Remote Code Execution

packetstormsecurity Nov 28, 2020 Feed

This Metasploit module uses the NiFi API to create an ExecuteProcess processor that will execute OS commands. The API must be unsecured (or credentials provided) and the ExecuteProcess processor must be available. An ExecuteProcessor processor is created then is configured with the payload and started. The processor is then stopped and deleted.

nfstream 6.2.5

packetstormsecurity Nov 28, 2020 Feed

nfstream is a Python package providing fast, flexible, and expressive data structures designed to make working with online or offline network data both easy and intuitive. It aims to be the fundamental high-level building block for doing practical, real world network data analysis in Python. Additionally, it has the show more ...

broader goal of becoming a common network data processing framework for researchers providing data reproducibility across experiments.

Ubuntu Security Notice USN-4646-2

packetstormsecurity Nov 28, 2020 Feed

Ubuntu Security Notice 4646-2 - USN-4646-1 fixed vulnerabilities in poppler. The fix for CVE-2019-10871 introduced a regression causing certain applications linked against poppler to fail. This update backs out the fix pending further investigation. It was discovered that Poppler incorrectly handled certain files. If show more ...

a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service. Various other issues were also addressed.

Ubuntu Security Notice USN-4649-1

packetstormsecurity Nov 28, 2020 Feed

Ubuntu Security Notice 4649-1 - Jens Mueller discovered that xdg-utils incorrectly handled certain URI. An attacker could possibly use this issue to expose sensitive information.

Weaponize GhostWriting Injection - Code Injection Series Part 5

packetstormsecurity Nov 28, 2020 Feed

Whitepaper called Weaponize GhostWriting Injection. This is part 5 of a 5 part series of papers.

Disable Dynamic Code Mitigation (ACG) - Code Injection Series Part 4

packetstormsecurity Nov 28, 2020 Feed

Whitepaper called Disable Dynamic Code Mitigation (ACG). This is part 4 of a 5 part series of papers.

Exploit WNF Callback - Code Injection Series Part 3

packetstormsecurity Nov 28, 2020 Feed

Whitepaper called Exploit WNF Callback. This is part 3 of a 5 part series of papers.

Bypass Start Address Protection - Code Injection Series Part 2

packetstormsecurity Nov 28, 2020 Feed

Whitepaper called Bypass Start Address Protection. This is part 2 of a 5 part series of papers.

Process PE Injection Basics - Code Injection Series Part 1

packetstormsecurity Nov 28, 2020 Feed

Whitepaper called Process PE Injection Basics. This is part 1 of a 5 part series of papers.

2020-11

202020212022202320242025

Aggregator history

Saturday, November 28

SUN

MON

TUE

WED

THU

FRI

SAT