Oktacron logo
Cyber security aggregate rss news

Cyber security aggregator - feeds history
image for Big Names, Big Hacks ...

 Firewall Daily

The once-familiar Twitter landscape has undergone a seismic transformation since the notorious Elon Musk took the reins, rebranding the platform as ‘X.’ In the span of just two years, Musk has wielded his influence over Twitter, reshaping it more significantly than any executive in the previous 16 years.   show more ...

From unloading a world-renowned brand to contemplating radical shifts in the company’s fundamental structure, Musk’s impact on X has been nothing short of revolutionary. Yet, amidst the tumultuous changes, a darker narrative unfolds—one that has gripped the attention of millions. The every accounts that embody X’s premium status, once synonymous with trust and influence, have now become prime targets for hackers. A wave of high-profile X account hacks has unveiled a disconcerting reality—no one is immune to the threat. From the cybersecurity firm Mandiant to the U.S. Securities and Exchange Commission (SEC), and even the Twitter accounts of influential figures like Vitalik Buterin, the co-founder of Ethereum, and Donald Trump Jr., the breaches are leaving a trail of chaos in their wake. The common thread? Bitcoin scams. These compromised “big name” accounts have become unwitting accomplices in a trend that not only jeopardizes the security of over 528 million Twitter users but also casts a dark shadow over the cryptocurrency market. As victims reeling from the aftermath, the pressing question remains: Why are trustworthy X accounts fueling Bitcoin scams, and what does this mean for the future of online security and digital currency? In this article, we will delve into the intricate web of high-profile X hacks and their alarming association with Bitcoin scams, seeking answers to the pressing questions surrounding the compromised security of renowned accounts. Crypto Scams: Twitter’s Underbelly Exposed Within the intricate interplay of cybercriminals and cryptocurrency, the link between Twitter breaches and the surge in Bitcoin scams emerges with unmistakable clarity. As cybersecurity breaches lay bare the vulnerabilities of even the most trusted Twitter accounts, opportunistic criminals exploit the distinct features of cryptocurrencies. Raj Kapoor, Founder & CEO, India Blockchain Alliance, highlights the fertile ground for unlawful activities provided by the anonymity and decentralized nature of cryptocurrencies, particularly Bitcoin. Compromised Twitter accounts, often belonging to high-profile entities, serve as conduits for endorsing deceptive transactions, investment schemes, and enticing incentives, all geared towards convincing followers to make cryptocurrency payments, primarily in Bitcoin. The allure for cybercriminals lies in Bitcoin’s perceived anonymity and the formidable challenge of tracing transactions. Kapoor notes, “Criminals frequently exploit the anonymity and decentralized characteristics of cryptocurrencies in order to amplify their unlawful undertakings. Frequently, compromised accounts are employed to endorse fraudulent transactions, investment schemes, or incentives in an attempt to entice followers to transfer cryptocurrency payments, predominantly in Bitcoin.” In the realm of ransom schemes, assailants regularly demand Bitcoin payments, capitalizing on the decentralized nature of cryptocurrencies to make tracking and apprehension a formidable task for law enforcement. Kapoor asserts, “Cybercriminals are drawn to Bitcoin due to its perceived anonymity and the challenging task of tracing transactions. As an integral component of ransom schemes, assailants frequently demand Bitcoin payments in exchange for access restoration or the prevention of sensitive data disclosure. Legislation finds it difficult to trace and apprehend individuals engaged in such schemes due to the decentralized nature of cryptocurrencies.” Big Names, Big Impact The vulnerability of trustworthy X accounts to sophisticated hacking techniques has become a pressing concern, with recent incidents revealing the audacity and evolving capabilities of cybercriminals. In one notable case, the Twitter account of Mandiant, a prominent cybersecurity firm, was compromised to orchestrate a cryptocurrency scam. The attacker not only posed as a legitimate entity but engaged in a cat-and-mouse game with Mandiant, leveraging the inherent trust in the account to promote a fake website and entice users with promises of free tokens. This incident sheds light on the persistence and adaptability of hackers, who managed to maintain control despite the account having two-factor authentication enabled. Similarly, the official X accounts of technology giant Netgear and Hyundai MEA became conduits for scams involving cryptocurrency wallet drainer malware. The attackers rebranded Hyundai MEA’s account to impersonate Overworld, a legitimate platform supported by Binance Labs. This tactic aimed to lend credibility to malicious activities, exploiting the trust users place in recognized names. Netgear’s compromised account was used to respond to tweets, enticing followers to a malicious website promising substantial rewards. Tragically, those who connected their wallets fell victim to asset and NFT theft, highlighting the real-world impact of these scams. In yet another incident, the U.S. Securities and Exchange Commission’s (SEC) official X account was compromised, leading to the dissemination of false information about the approval of spot bitcoin Exchange-Traded Funds (ETFs). The unauthorized tweet briefly caused a spike in bitcoin prices, highlighting the ripple effects of such compromises on the cryptocurrency market. The SEC later confirmed a SIM-swapping attack on the cell phone number associated with the account, emphasizing the need for robust security measures beyond the platform itself. “Recent breaches of Twitter accounts specifically aimed at corporations and government agencies have brought to light alarming patterns characterized by the use of social engineering, phishing, and the exploitation of organizational personnel’s weaknesses. In order to obtain unauthorized access, the attackers frequently employ sophisticated methods, posing a grave risk to the security and integrity of high-profile accounts,” says Kapoor. These examples highlight not only the common hacking techniques, such as SIM swapping, employed by cybercriminals but also the diverse array of Bitcoin scams facilitated through compromised “big name” accounts. Kapoor explains further, “The use of deceptive techniques, such as spear-phishing campaigns, to deceive individuals with account access into divulging sensitive information, such as login credentials, is a recurring theme in these incidents. Once compromised, hackers take advantage of the accounts’ reputation for trustworthiness in order to propagate false information, publish content without authorization, or conduct fraudulent activities, such as endorsing Bitcoin schemes.” From fake giveaways to impersonation and pump-and-dump schemes, the exploitation of trust in renowned Twitter accounts amplifies the effectiveness of these scams, posing a significant threat to the security of users and the stability of the cryptocurrency market. What Twitter Has to Say? In the aftermath of the SEC account hacking, Twitter swiftly responded with a statement shedding light on the nature of the breach. The official Twitter account posted, “We can confirm that the account @SECGov was compromised, and we have completed a preliminary investigation. Based on our investigation, the compromise was not due to any breach of X’s systems but rather due to an unidentified individual obtaining control over a phone number associated with the @SECGov account through a third party. We can also confirm that the account did not have two-factor authentication enabled at the time the account was compromised. We encourage all users to enable this extra layer of security.” This response highlights the importance of individual users taking proactive measures to enhance the security of their Twitter accounts, particularly through features like two-factor authentication, as the platform addresses the challenges posed by external breaches and cyber threats. Fortifying X Accounts Against Breaches Addressing the persistent challenge of Twitter breaches and subsequent Bitcoin scams requires a multifaceted approach, incorporating robust security measures, user education, and collaboration with regulatory bodies. Kapoor emphasizes the necessity for organizations to adopt and enforce strong cybersecurity protocols as incidents become more prevalent with the increasing use of cryptocurrencies. Regular security assessments, comprehensive employee training programs, and the implementation of multi-factor authentication are highlighted as crucial elements of a proactive defense against Twitter breaches and associated scams. To safeguard against infiltrations, organizations should enforce the use of multi-factor authentication, conduct regular security audits, and implement strong password policies. Employee education on secure email practices, phishing awareness, and the use of blockchain-enabled email security tools can further mitigate risks. Developing and regularly updating an incident response plan, incorporating real-time monitoring, and securing communication channels contribute to a comprehensive defense strategy. Collaboration with X security services and utilization of features like security settings, login verification, and security keys enhance overall cybersecurity posture. The key is to remain vigilant, adapt to evolving security threats, and consistently reassess and update these measures. In this dynamic landscape, a proactive stance is pivotal to safeguarding financial assets, online presence, and reputation. Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.

 Firewall Daily

By Neelesh Kripalani, Chief Technology Officer, Clover Infotech Amidst the evolving landscape of technology, Artificial Intelligence (AI) stands as a pillar of innovation, delivering unrivalled advancements across various sectors. Its ability to generate content, mimic human behavior, and facilitate creative processes   show more ...

has transformed various industries, including content creation, design, and customer service. However, it’s vital to acknowledge the transformative power of AI while being vigilant about managing the associated risks. Addressing Cybersecurity Challenges in India In recent years, India has experienced an unprecedented surge in cyberattacks, surpassing the global average. The need for robust cybersecurity measures is critical, and AI technologies play a pivotal role in addressing these challenges. Utilizing behavioral analysis, anomaly detection, predictive analysis, and automated incident response, AI enhances cybersecurity by facilitating real-time threat detection and mitigation. It is essential to integrate AI into a comprehensive strategy that includes legal frameworks, collaboration, and a culture of cybersecurity awareness. The synergy of AI with human expertise forms a robust defense against cyber threats, thereby ensuring the resilience of India’s cybersecurity landscape. Moving Beyond Reactive Approaches with Artificial Intelligence As cybercriminal tactics become more sophisticated, proactive security strategies become imperative. AI transforms the paradigm from reactive to proactive by employing advanced techniques that anticipate and counteract threats before they manifest. Behavioral analysis and anomaly detection scrutinize user activity and network patterns, enabling early identification of deviations. Predictive analysis, powered by machine learning models, empowers organizations to foresee and prepare for emerging threats based on historical patterns. Automated incident response systems swiftly identify and mitigate security incidents, minimizing the impact of cyber threats. AI’s integration with threat intelligence sources ensure that organizations stay ahead of evolving risks, offering a more proactive defense posture. Balancing Privacy and Robust Cyber Defense The rise of AI in cybersecurity undoubtedly also raises ethical concerns, particularly regarding privacy. Hence, striking a balance between privacy considerations and the need for robust, data-driven cyber defense requires a multi-faceted approach. Organizations must prioritize data minimization, collecting and retaining only essential information. Implementing anonymization, pseudonymization, and strong encryption techniques safeguard individual identities while allowing for meaningful analysis. Moreover, access controls and regular reviews of permissions ensure that sensitive data is accessible only to authorized individuals. Transparency and effective communication of data policies are crucial for building trust with users. Adherence to regulations, such as GDPR, further reinforces ethical considerations. Continuous monitoring, incident response planning, and robust data governance practices contribute to an adaptive cybersecurity framework. This approach allows organizations to not only stay resilient against evolving threats, but also upholds privacy standards, ensuring that AI in cybersecurity is effective as well as ethically sound. Conclusion In the face of escalating cyber threats in India, AI emerges as a powerful ally in fortifying cybersecurity defenses. Its ability to address specific challenges, contribute to proactive strategies, and navigate ethical concerns are enabling enterprises to build resilient cybersecurity frameworks for the digital future. Disclaimer: The views and opinions expressed in this guest post are solely those of the author(s) and do not necessarily reflect the official policy or position of The Cyber Express. Any content provided by the author is of their opinion and is not intended to malign any religion, ethnic group, club, organization, company, individual, or anyone or anything. 

 Firewall Daily

At the start of 2024, the digital underworld witnessed a seismic shift as hacking groups LulzSec France and Moroccan Black Cyber Army forged an ominous hacker alliances with a singular focus – Denmark. The unsettling proclamation, “LulzSec X Moroccan Black Cyber Army against Denmark,” echoed across the   show more ...

virtual realm, accompanied by a cryptic image, leaving security experts on high alert. This unexpected collaboration marked a departure from the conventional motives of greed, hinting at a new era where cyber threats transcend national borders and unite under shared objectives. To highlight this emerging trend, another announcement reverberated through the clandestine corridors of the internet. Beregini, a shadowy hacking group, brazenly absorbed Killmilk, the former leader of the pro-Russian cybercrime juggernaut Killnet, into its ranks. The revelation unfolded dramatically through a flashy video, complete with cyberattack maps and a narrative weaving Killmilk’s story into the enigmatic fabric of Beregini. However, these weren’t isolated incidents. Preceding these events was the aftermath of a successful dismantling of Alphv ransomware infrastructure. In an unforeseen turn, LockBit and BlackCat/APLHV, two formidable hacker collectives, joined forces, creating ripples across the digital landscape. Their goal: to establish a ransomware cartel, presenting a united front against law enforcement crackdowns, such as the recent FBI action targeting ALPHV’s leak website. These groundbreaking developments were unveiled through cryptic messages on the dark web, the notorious world where cybercriminals converge to communicate and orchestrate their illicit activities. In this landscape of evolving hacker alliances and unforeseen collaborations, questions arise about the motives that propel these cyber adversaries beyond the traditional world of greed. This article seeks to unravel the complexities surrounding such collaborations, exploring the reasons behind these hacker alliances, their manifestations in the vast expanse of cyberspace, the political influence they wield, and the potential geopolitical impacts. Why Do Cyber Misfits Forge Unholy Alliances? These digital renegades aren’t merely on a quest for a shared pot of gold; their motives go beyond individual pursuits. At the core of these unholy alliances lies the fundamental principle of ‘Strength in Numbers.’ Picture it as a digital heist where each participant contributes unique skills and tools to the collective table. These collaborations resemble a virtual Avengers squad, pooling expertise, knowledge, and resources to take on high-profile targets or dismantle Fort Knox-like defenses. Pankaj Kumar Saxena, Founder & Director of ewandzdigital Inc., sheds light on the driving forces behind these collaborations, stating, “One primary driver is the shared expertise and resources among hackers with different skills, creating a formidable force with enhanced capabilities. This collaboration results in more sophisticated and multifaceted attacks, leveraging the combined skills and resources of the group members. Another motive is the pursuit of monetary gains, where hackers collaborate for larger payouts through financially motivated cybercrimes, pooling resources to maximize impact and profits.” However, these alliances go beyond being a mere digital tag team; they are strategic maneuvers aimed at making a statement. It’s akin to a coordinated dance of chaos, where hackers unite to magnify their impact. Whether it’s seeking a broader reach, inflicting more significant damage, or chasing that fleeting fifteen minutes of fame in the media spotlight, collaboration enables them to achieve feats that solo missions cannot. Nathan Wenzler, Chief Cybersecurity Strategist at Tenable, emphasizes the parallels between hacker alliances and collaborative efforts in corporate environments, stating, “In many ways, hacker groups work the same hackers who group into alliances do so to share information, be more efficient and effective at launching attacks and potentially share the workload to accomplish similar goals.” “For example, instead of trying to write a piece of malware from scratch to take advantage of a particular exploit, a hacker could instead reach out to their collaborators and see if someone had already written code way that corporations and other businesses do, and they gain the same benefits from working together that most of us would within an office or virtual workspace,” Wenzler added further. In the vast expanse of cyberspace, the classic buddy system finds its place – mutual protection. Forming a network of cyber allies serves as a digital neighborhood watch, offering support and early warnings against potential cyber threats. This interconnected defense mechanism embodies a contemporary manifestation of the age-old adage: safety in numbers. These collaborations, however, aren’t solely born out of convenience; they often stem from shared beliefs. Whether driven by hacktivism or state-sponsored cyber warfare, ideological alignment becomes a potent adhesive. It’s akin to discovering a cyber soulmate who shares identical political or social goals, elevating the collaboration beyond mere lines of code to a shared cause. And then, there’s the ever-present motive that has fueled mischief-makers since the inception of hacking – financial gain. These partnerships often form to undertake massive cybercrime operations or share the spoils from lucrative ventures such as stolen data or ransom demands. Saxena further elaborates on these motives, explaining, “Another motive is the pursuit of monetary gains, where hackers collaborate for larger payouts through financially motivated cybercrimes, pooling resources to maximize impact and profits. Additionally, hacker alliances aim to increase their attack surface by collectively targeting a broader range of organizations or industries. This strategy involves coordinated attacks, occurring simultaneously or in sequence, overwhelming defenses and challenging targeted entities in their response efforts.” Political Motives Influencing Hacker Alliances In the intricate tapestry of hacker alliances, political motives emerge as a formidable force, steering collaborations beyond the traditional realms of greed. A notable aspect unfolds in the realm of Government-Sponsored Cyberwarfare, where states unite with hackers to launch targeted attacks against other nations or disrupt their critical infrastructure. This not only blurs the lines between statecraft and cyber warfare but also underscores the increasingly pivotal role hackers play in geopolitical maneuvers. Hacktivism and Activism represent another influential force, as groups leverage hacking to propel political agendas, protest injustices, or embarrass governments on the global stage. These alliances serve as digital vanguards for political movements, utilizing their cyber prowess to amplify voices that might otherwise be suppressed. “The alignment of hackers with political agendas is concerning, evident in instances like APT groups conducting cyber espionage for nation-states and hacktivist campaigns targeting organizations aligned with specific ideologies. Notably, the collaboration between ransomware groups and certain nations blurs the lines between state-sponsored and criminal activities. This trend poses challenges for attribution and escalates the impact of cyber operations on geopolitics. A recent example is the SolarWinds cyberattack, where suspected Russian-backed hackers targeted U.S. government agencies and private companies, showcasing the intersection of cyber threats and political motivations,” highlights Pankaj Kumar Saxena. Online Protests and Dissent take a digital turn as hacker alliances coordinate attacks to disrupt government websites or silence dissident voices. This form of digital dissent reshapes the landscape of political protest, extending the battleground beyond physical streets to the vast expanse of cyberspace. The manipulation of Elections and Political Processes raises concerns as hacker alliances engage in campaigns aimed at influencing voters, disrupting elections, or spreading disinformation. The potency of these cyber maneuvers to sway public opinion and undermine the democratic process serves as a stark reminder of the evolving challenges faced by governments worldwide. In a more ominous vein, Cyberterrorism and Destabilization emerge as motives, with hackers utilizing their skills to sow fear, disrupt essential services, and undermine government authority. This form of hybrid warfare underscores the potential for hacker alliances to become conduits for state-sponsored acts of destabilization, creating a volatile environment in the digital world. On asking Wenzler, he provides a fascinating insight into the evolving tactics of these digital provocateurs. In his words, “The most interesting trend I’ve seen with political hacktivists is that their attacks tend to shift towards quieter and less visible cyberattacks compared to previous years. It’s like they’ve adopted a ‘lying in wait’ strategy, emphasizing stealth in their operations against targets.” Wenzler continues to shed light on their calculated approach: “This doesn’t imply a reduction in their damaging capabilities or the frequency of attacks. Instead, it signifies a deliberate effort to operate covertly, avoiding detection by anyone within the targeted organization. They infiltrate the entire network, identifying all assets, applications, databases, and other devices, creating multiple potential attack points and methods for themselves.” He goes on to explain that even when they achieve a near-complete compromise of the environment, they may not launch noticeable or damaging attacks immediately. Instead, they patiently bide their time, waiting for a situation influenced by external political or social circumstances. “These hacktivists, motivated by causing harm rather than financial gain, exhibit patience and methodical precision in launching cyberattacks. Their goal is to ensure the maximum amount of political, reputational, and, yes, financial damage to the targeted organization.” Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.

 Feed

A Ukrainian national has pleaded guilty in the U.S. to his role in two different malware schemes, Zeus and IcedID, between May 2009 and February 2021. Vyacheslav Igorevich Penchukov (aka Vyacheslav Igoravich Andreev, father, and tank), 37, was arrested by Swiss authorities in October 2022 and extradited to the U.S. last year. He was added to the FBI's most-wanted list in 2012. The U.S.

 Cyber Security News

Source: www.darkreading.com – Author: Nathan Eddy, Contributing Writer Source: Cro_Magnon via Alamy Stock Photo The Russia-aligned threat group known as Winter Vivern was discovered exploiting cross-site scripting (XSS) vulnerabilities in Roundcube webmail servers across Europe in October — and now its   show more ...

victims are coming to light. The group mainly targeted government, military, and national infrastructure […] La entrada Russian APT ‘Winter Vivern’ Targets European Government, Military – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Dark Reading Staff Source: Pulsar Imagens via Alamy Stock Photo VARTA AG, a German battery manufacturer, has announced that it suffered a cyberattack on its IT systems the night of Feb. 12. The attack has affected five production plants and their administration, according   show more ...

to the company’s press announcement. Because of this, […] La entrada Cyberattack Disrupts German Battery-Production Lines – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: PRESS RELEASE SAN FRANCISCO, Feb. 13, 2024 /PRNewswire/ — Picus Security, the Security Validation company, has released the Picus Red Report 2024. This fourth annual report shares learnings from an in-depth analysis of more than 600,000 real-world malware samples   show more ...

and identifies the most common techniques leveraged by attackers. This year, Picus uncovered a surge of […] La entrada Surge in ‘Hunter-Killer’ Malware Uncovered by Picus Security – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Critical

Source: www.darkreading.com – Author: PRESS RELEASE MISSOULA, Mont., Feb. 13, 2024 /PRNewswire/ — LMG Security, an internationally recognized cybersecurity consulting firm, has discovered three new critical software vulnerabilities that pose a significant threat to hundreds of organizations in the   show more ...

United States. Emily Gosney, a cybersecurity consultant at LMG Security, discovered these vulnerabilities in a web application that is primarily used by […] La entrada Critical Software Vulnerabilities Impacting Credit Unions Discovered by LMG Security Researcher – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Jai Vijayan, Contributing Writer Source: monticello via Shutterstock Microsoft has identified one of the critical vulnerabilities in Exchange Server that the company disclosed in February’s Patch Tuesday update as actually being a zero-day threat that attackers are   show more ...

already actively exploiting. CVE-2024-21410 is an elevation of privilege vulnerability that gives a remote, […] La entrada Microsoft Exchange Server Flaw Exploited as a Zero-Day Bug – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: PRESS RELEASE NEW YORK, Feb. 13, 2024 /PRNewswire/ — DataDome, a leading provider of AI-powered online fraud and bot management, today announced it has opened its bot bounty program to the public, in partnership with ethical hacking platform YesWeHack. This   show more ...

initiative incentivizes an extended community of external researchers to rigorously test DataDome’s protection, in order to identify any […] La entrada DataDome Expands Bot Bounty Program to the Public, Invites Researchers to Rigorously Test its Solution – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Andreas Kuehlmann Source: Tada Images via Shutterstock The recently published hardware bill of materials (HBOM) framework from the Cybersecurity and Infrastructure Security Agency (CISA) is a much-needed step toward ensuring semiconductor chip security — but it   show more ...

doesn’t go far enough. The framework offers a consistent and repeatable way for vendors and […] La entrada CISA HBOM Framework Doesn’t Go Far Enough – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 breaks

Source: www.darkreading.com – Author: Becky Bracken, Editor, Dark Reading 2 Min Read Source: Maxim Ermolenko via Alamy Stock Photo The Department of Justice (DoJ) has disrupted a botnet used by Russian military intelligence for widespread cyber espionage. The network was made up of hundreds of individual small   show more ...

office/home office (SOHO) routers that the Russian Military […] La entrada DoJ Breaks Russian Military Botnet in Fancy Bear Takedown – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 0 - CT - SOC - CSIRT Operations - Vulner

Weekly Overview (5 Dec-12 Dec) – 2024 Vulnerabilities and Threats: Tools and Updates: Recommendations and Mitigations: Conclusion: The week witnessed a range of cybersecurity developments, from critical vulnerabilities in network infrastructure to the emergence of new malware targeting MacOS devices. Security   show more ...

professionals and organizations are advised to stay vigilant, apply necessary patches, and collaborate to […] La entrada Threat Intel Roundup: Gitlab, Juniper, MageCart, SystemBC se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 0 - CT - Cybersecurity Tools - MS Azure

Active Directory Reversible Encryption According to MITRE an adversary may abuse Active Directory authentication encryption properties to gain access to credentials on Windows systems. The AllowReversiblePasswordEncryption property specifies whether reversible password encryption for an account is enabled or disabled.   show more ...

By default this property is disabled (instead storing user credentials as the output of one-way hashing […] La entrada Credential Dumping se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini ESET fixed high-severity local privilege escalation bug in Windows products Pierluigi Paganini February 18, 2024 Cybersecurity firm ESET has addressed a high-severity elevation of privilege vulnerability in its Windows security solution. ESET addressed a   show more ...

high-severity vulnerability, tracked as CVE-2024-0353 (CVSS score 7.8), in its Windows products. The vulnerability is […] La entrada ESET fixed high-severity local privilege escalation bug in Windows products – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini ESET fixed high-severity local privilege escalation bug in Windows products  |  Security Affairs newsletter Round 459 by Pierluigi Paganini – INTERNATIONAL EDITION  |  Ukrainian national faces up to 20 years in prison for his role in Zeus,   show more ...

IcedID malware schemes  |  CISA: Cisco ASA/FTD bug CVE-2020-3259 exploited in ransomware attacks […] La entrada Security Affairs newsletter Round 459 by Pierluigi Paganini – INTERNATIONAL EDITION – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes Pierluigi Paganini February 17, 2024 A Ukrainian national pleaded guilty to his role in the Zeus and IcedID operations, which caused tens of millions of dollars   show more ...

in losses. Ukrainian national Vyacheslav Igorevich […] La entrada Ukrainian national faces up to 20 years in prison for his role in Zeus, IcedID malware schemes – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: thehackernews.com – Author: . Feb 18, 2024NewsroomMalware / Cybercrime A Ukrainian national has pleaded guilty in the U.S. to his role in two different malware schemes, Zeus and IcedID, between May 2009 and February 2021. Vyacheslav Igorevich Penchukov (aka Vyacheslav Igoravich Andreev, father,   show more ...

and tank), 37, was arrested by Swiss authorities in October 2022 […] La entrada FBI’s Most-Wanted Zeus and IcedID Malware Mastermind Pleads Guilty – Source:thehackernews.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 BLEEPINGCOMPUTER

Source: www.bleepingcomputer.com – Author: Mayank Parmar Google is testing a new feature to prevent malicious public websites from pivoting through a user’s browser to attack devices and services on internal, private networks. More simply, Google plans to prevent bad websites on the internet from   show more ...

attacking a visitor’s devices (like printers or routers) in your home […] La entrada New Google Chrome feature blocks attacks against home networks – Source: www.bleepingcomputer.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 BLEEPINGCOMPUTER

Source: www.bleepingcomputer.com – Author: Sergiu Gatlan The FBI took down a botnet of small office/home office (SOHO) routers used by Russia’s Main Intelligence Directorate of the General Staff (GRU) to proxy malicious traffic and to target the United States and its allies in spearphishing and   show more ...

credential theft attacks. This network of hundreds of Ubiquiti Edge OS routers […] La entrada FBI disrupts Russian Moobot botnet infecting Ubiquiti routers – Source: www.bleepingcomputer.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: go.theregister.com – Author: Team Register AI models, the subject of ongoing safety concerns about harmful and biased output, pose a risk beyond content emission. When wedded with tools that enable automated interaction with other systems, they can act on their own as malicious agents. Computer   show more ...

scientists affiliated with the University of Illinois Urbana-Champaign (UIUC) […] La entrada How to weaponize LLMs to auto-hijack websites – Source: go.theregister.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

2024-02
Aggregator history
Sunday, February 18
THU
FRI
SAT
SUN
MON
TUE
WED
FebruaryMarchApril