Cyber security aggregate rss news

Cyber security aggregator - feeds history

totals: darkreading (1) cyware (4) thehackernews (3)

9 Innovative Ways to Boost Security Hygiene for Cyber Awareness Month

darkreading Oct 21, 2023 Feed

If we really want to move the dial on security habits, it's time to think beyond phishing tests. Our panel of CISOs and other security heavy-hitters offer expert tips that go beyond the obvious.

FBI: Thousands of Remote IT Workers Sent Wages to North Korea to Help Fund Weapons Program

cyware Oct 21, 2023 Threat Intel & Info Sharing

The workers used false identities to secure remote IT jobs and funneled their earnings to North Korea, while also infiltrating and stealing information from the companies they worked for.

Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices

cyware Oct 21, 2023 Malware and Vulnerabilities

The vulnerability, tracked as CVE-2023-20273, allows for privilege escalation through the Web UI. It has been used alongside another vulnerability, CVE-2023-20198, in an exploit chain to deploy a malicious implant.

Critical RCE Flaws Found in Solarwinds Access Audit Solution

cyware Oct 21, 2023 Malware and Vulnerabilities

The vulnerabilities, which have been patched in version 2023.2.1, could be exploited by remote unauthenticated attackers to execute arbitrary code in the context of SYSTEM without authentication.

Business-Oriented Threat Involving ‘Several Types of Malware All at Once’ Remains Active

cyware Oct 21, 2023 Malware and Vulnerabilities

The campaign involves various types of malware, including cryptominers and keyloggers, and primarily targets enterprises that provide business-to-business (B2B) products and services.

Cisco Zero-Day Exploited to Implant Malicious Lua Backdoor on Thousands of Devices

thehackernews Oct 21, 2023 Feed

Cisco has warned of a new zero-day flaw in IOS XE that has been actively exploited by an unknown threat actor to deploy a malicious Lua-based implant on susceptible devices. Tracked as CVE-2023-20273 (CVSS score: 7.2), the issue relates to a privilege escalation flaw in the web UI feature and is said to have been used alongside CVE-2023-20198 as part of an exploit chain. "The attacker first

Okta's Support System Breach Exposes Customer Data to Unidentified Threat Actors

thehackernews Oct 21, 2023 Feed

Identity services provider Okta on Friday disclosed a new security incident that allowed unidentified threat actors to leverage stolen credentials to access its support case management system. "The threat actor was able to view files uploaded by certain Okta customers as part of recent support cases," David Bradbury, Okta's chief security officer, said. "It should be noted that the Okta

Europol Dismantles Ragnar Locker Ransomware Infrastructure, Nabs Key Developer

thehackernews Oct 21, 2023 Feed

Europol on Friday announced the takedown of the infrastructure associated with Ragnar Locker ransomware, alongside the arrest of a "key target" in France. "In an action carried out between 16 and 20 October, searches were conducted in Czechia, Spain, and Latvia," the agency said. "The main perpetrator, suspected of being a developer of the Ragnar group, has been brought in front of the examining

2023-10

202020212022202320242025

Aggregator history

Saturday, October 21

SUN

MON

TUE

WED

THU

FRI

SAT