German authorities have taken decisive action by shutting down Nemesis Market, a notorious dark web marketplace known for facilitating illegal activities such as drug trafficking, data theft, and cybercrime services. The Nemesis Market shut down marks a victory in the ongoing battle against underground criminal show more ...
The notorious hacking group R00Tk1t has shifted its focus from Malaysian organizations toward India, marking a concerning development in the threat actor plans. The threat actor, on its Telegram channel has warned India's running government of BJP cyberattack, citing the current political party in power over show more ...
The decentralized finance (DeFi) space, ParaSwap, has updated new precautions against the smart contract vulnerability dubbed the "AugustusV6 vulnerability." This vulnerability, detected just last week, prompted ParaSwap to take immediate action to safeguard user assets and rectify the issue. Upon finding the show more ...
Kiribati, the Marshall Islands, Micronesia, Nauru, and Palau participate in the cybersecurity exercise held in Guam.
In a joint alert with the FBI, CISA seeks to tamp down the pervasiveness of a well-known class of bugs.
The attacker employed various techniques, including distributing malicious dependencies via a fake Python infrastructure linked to GitHub projects.
The operating system, DBOS, natively uses a relational database to reduce cost, ease application development, and maintain cybersecurity and integrity.
Countries around the world are signaling support of secure AI practices, but not necessarily committing to them.
All-or-nothing security policies strain resources by aiming for perfection. We need a better way to assess progress.
The US and the UK charge seven Chinese nationals for operating as part of threat group APT31.
The issue can seem daunting, but most organizations have more agency and flexibility to deal with third-party risk than they think.
Cybersecurity researchers at the Synopsys Cybersecurity Research Center (CyRC) have uncovered vulnerabilities within the Zephyr OS network stack, potentially leaving connected devices susceptible to IP spoofing (or IP address spoofing) attacks.
The data exposed in the Greensboro College data leak encompassed a broad spectrum of personal details, including names, Social Security numbers, student identification numbers, dates of birth, passport numbers, and health information.
Vendors have 90 days to release security fixes for zero-day vulnerabilities reported during Pwn2Own contests before TrendMicro's Zero Day Initiative discloses them publicly.
President Joe Biden on Thursday nominated Michael Sulmeyer to be assistant secretary of defense for cyber policy at the Pentagon, the first individual to hold the position.
The North Korea-linked threat actor known as Kimsuky (aka Black Banshee, Emerald Sleet, or Springtail) has been observed shifting its tactics, leveraging Compiled HTML Help (CHM) files as vectors to deliver malware for harvesting sensitive data.
"This funding round marks a significant milestone for Finite State and reaffirms the trust and confidence our investors have placed in our mission," said Matt Wyckhouse, CEO and Founder of Finite State.
The latest CISA Industrial Control Systems (ICS) advisory, marked by a flaw with a CVSS v4 score of 7.1, highlights concerns regarding the WebAccess/SCADA system manufactured by Advantech.
Led by Maverick Ventures and Ten Eleven Ventures with participation from Pier 88 Investment Partners, the investment will fund the development of BlueFlag’s SDLC security and governance platform.
The campaign has been active since late February and mainly uses phishing emails that appear to come from the German Christian Democratic Union, according to a report by Mandiant.
The parent company IAG has reportedly sent out a breach notification email to affected individuals, telling them that their names, dates of birth, nationalities, ID cards, passport information, and phone numbers, have all been taken by the hackers.
High-risk vulnerabilities in operating systems across major vendors such as Microsoft, Google, Apple, and Cisco, network infrastructure, including VPNs, and enterprise software, accounted for two-thirds of all active exploits in 2023.
Russian state-backed hackers are likely behind recent attacks on four Ukrainian internet providers, disrupting their operations for over a week. A group known as Solntsepek claimed responsibility for the incidents on its Telegram channel last week.
In a report released March 7, the U.N. experts said they tracked the activity of “cyberthreat actors subordinate to the Reconnaissance General Bureau (RGB), including Kimsuky, the Lazarus Group, Andariel and BlueNoroff,” between 2017 and 2023.
Police in Romania and Spain have struck a blow against a sophisticated cyber-fraud gang that tricked victims out of millions of dollars through fake ads and business email compromise (BEC) scams.
The multi-stage and evasive malicious payload harvests passwords, credentials, and more dumps of valuable data from infected systems and exfiltrates them to the attacker’s infrastructure.
Google's new AI-powered 'Search Generative Experience' algorithms recommend scam sites that redirect visitors to unwanted Chrome extensions, fake iPhone giveaways, browser spam subscriptions, and tech support scams.
Customers of bankrupt crypto platform BlockFi have been targeted with a very convincing phishing email impersonating the platform, asking them to connect their wallet to complete the withdrawal of remaining funds.
Ubuntu Security Notice 6713-1 - It was discovered that QPDF incorrectly handled certain memory operations when decoding JSON files. If a user or automated system were tricked into processing a specially crafted JSON file, QPDF could be made to crash, resulting in a denial of service, or possibly execute arbitrary code.
Ubuntu Security Notice 6712-1 - It was discovered that Net::CIDR::Lite incorrectly handled extra zero characters at the beginning of IP address strings. A remote attacker could possibly use this issue to bypass access controls.
Ubuntu Security Notice 6710-1 - Manfred Paul discovered that Firefox did not properly perform bounds checking during range analysis, leading to an out-of-bounds write vulnerability. A attacker could use this to cause a denial of service, or execute arbitrary code. Manfred Paul discovered that Firefox incorrectly show more ...
Debian Linux Security Advisory 5647-1 - Several vulnerabilities have been discovered in Samba, a SMB/CIFS file, print, and login server for Unix, which might result in denial of service or information disclosure.
Debian Linux Security Advisory 5646-1 - Multiple security vulnerabilities have been discovered in Cacti, a web interface for graphing of monitoring systems, which could result in cross-site scripting, SQL injection, or command injection.
Debian Linux Security Advisory 5645-1 - Manfred Paul discovered a flaw in the Mozilla Firefox web browser, allowing an attacker to inject an event handler into a privileged object that would allow arbitrary JavaScript execution in the parent process.
Red Hat Security Advisory 2024-1415-03 - An update for edk2 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include a buffer overflow vulnerability.
Red Hat Security Advisory 2024-1387-03 - An update for ovn22.03 is now available in Fast Datapath for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.
Red Hat Security Advisory 2024-1372-03 - An update for the redhat-ds:11 module is now available for Red Hat Directory Server 11.7 for RHEL 8. Issues addressed include denial of service and heap overflow vulnerabilities.
Red Hat Security Advisory 2024-0692-03 - An update is now available for Red Hat OpenShift GitOps v1.10.2. Issues addressed include cross site request forgery, denial of service, and traversal vulnerabilities.
Red Hat Security Advisory 2024-0691-03 - An update is now available for Red Hat OpenShift GitOps v1.9.4. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System base score, which gives a detailed severity rating, is available for each vulnerability show more ...
Red Hat Security Advisory 2024-0689-03 - An update is now available for Red Hat OpenShift GitOps v1.11. Issues addressed include a cross site request forgery vulnerability.
A new security shortcoming discovered in Apple M-series chips could be exploited to extract secret keys used during cryptographic operations. Dubbed GoFetch, the vulnerability relates to a microarchitectural side-channel attack that takes advantage of a feature known as data memory-dependent prefetcher (DMP) to target constant-time cryptographic implementations and capture sensitive data
The Iran-affiliated threat actor tracked as MuddyWater (aka Mango Sandstorm or TA450) has been linked to a new phishing campaign in March 2024 that aims to deliver a legitimate Remote Monitoring and Management (RMM) solution called Atera. The activity, which took place from March 7 through the week of March 11, targeted Israeli entities spanning global manufacturing, technology, and
Unidentified adversaries orchestrated a sophisticated attack campaign that has impacted several individual developers as well as the GitHub organization account associated with Top.gg, a Discord bot discovery site. "The threat actors used multiple TTPs in this attack, including account takeover via stolen browser cookies, contributing malicious code with verified commits, setting up a custom
In January 2024, Microsoft discovered they’d been the victim of a hack orchestrated by Russian-state hackers Midnight Blizzard (sometimes known as Nobelium). The concerning detail about this case is how easy it was to breach the software giant. It wasn’t a highly technical hack that exploited a zero-day vulnerability – the hackers used a simple password spray attack to take control of
Nemesis Market, a notorious corner of the darknet beloved by cybercriminals and drug dealers, has been suddenly shut down after German police seized control of its systems. Read more in my article on the Tripwire State of Security blog.
In October 2023, the British Library suffered "one of the worst cyber incidents in British history," as described by Ciaran Martin, ex-CEO of the National Cyber Security Centre (NCSC). What lessons can other organisations learn from the ransomware attack? Read more in my article on the Exponential-e blog.
Struggle to know how to help children and teens stay safe in cyberspace? A good ol’ fashioned chat is enough to put them on the right track.
Source: www.cyberdefensemagazine.com – Author: News team How many errors does your organization have? By Zsolt Baranya, Information Security Auditor, Black Cell Ltd. During my work as an information security expert, I encounter numerous errors, many of which are committed not only by one organization but by show more ...
Source: www.schneier.com – Author: Bruce Schneier HomeBlog Friday Squid Blogging: New Species of Squid Discovered A new species of squid was discovered, along with about a hundred other species. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. show more ...
Source: www.schneier.com – Author: Bruce Schneier BleepingComputer has the details. It’s $2M less than in 2022, but it’s still a lot. The highest reward for a vulnerability report in 2023 was $113,337, while the total tally since the program’s launch in 2010 has reached $59 million. For Android, the show more ...
Source: www.schneier.com – Author: Bruce Schneier This mini-essay was my contribution to a round table on Power and Governance in the Age of AI. It’s nothing I haven’t said here before, but for anyone who hasn’t read my longer essays on the topic, it’s a shorter introduction. The increasingly show more ...
Source: www.schneier.com – Author: Bruce Schneier The Wall Street Journal is reporting on a variety of techniques drivers are using to obscure their license plates so that automatic readers can’t identify them and charge tolls properly. Some drivers have power-washed paint off their plates or covered them show more ...
Source: www.schneier.com – Author: Bruce Schneier Oh, how the mighty have fallen. A decade ago, social media was celebrated for sparking democratic uprisings in the Arab world and beyond. Now front pages are splashed with stories of social platforms’ role in misinformation, business conspiracy, malfeasance, show more ...
Source: securityboulevard.com – Author: Wajahat Raja Tomer Peled, an Akamai cybersecurity security researcher, recently discovered a Kubernetes RCE vulnerability that allows threat actors to remotely execute code on Windows endpoints. Not only this but the threat actors can have full system privileges while show more ...
Source: securityboulevard.com – Author: madhav Amid ongoing economic uncertainty and a progressively complex threat landscape, businesses are trying to navigate increasingly stringent regulatory requirements while bolstering their security posture. The 2024 Thales Global Data Threat Report, conducted by show more ...
Source: securityboulevard.com – Author: Tom Eston In this episode, special guest Alyssa Miller joins the hosts for an insightful and entertaining conversation covering a broad range of topics from social engineering anecdotes involving Kevin Johnson to Alyssa’s journey in aviation and being a pilot. They show more ...
Source: securityboulevard.com – Author: Marc Handelman Security Bloggers Network Home » Security Bloggers Network » USENIX Security ’23 – Jinwen Wang, Yujie Wang, Ao Li, Yang Xiao, Ruide Zhang, Wenjing Lou, Y. Thomas Hou, Ning Zhang – ARI: Attestation of Real-time Mission Execution Integrity by Marc show more ...
Source: securityboulevard.com – Author: Lohrmann on Cybersecurity Cybersecurity experts from state and local government, as well as top federal agencies, gathered this week to discuss everything from critical infrastructure attacks to concerns about China. Here are some top takeaways. March 24, 2024 • Dan show more ...
Source: www.cybertalk.org – Author: slandau EXECUTIVE SUMMARY: As artificial intelligence (AI) continues to rapidly advance, the risks posed by malicious exploitation or the misuse of AI systems looms large. For cyber security leaders, getting ahead of AI-based risks has become mission-critical. No one wants to show more ...
Source: www.lastwatchdog.com – Author: bacohido By Jeremy Swenson The National Institute of Standards and Technology (NIST) has updated their widely used Cybersecurity Framework (CSF) — a free respected landmark guidance document for reducing cybersecurity risk. Related: More background on CSF However, it’s show more ...
Source: www.infosecurity-magazine.com – Author: 1 A new phishing kit dubbed Tycoon 2FA has raised significant concerns in the cybersecurity community. Discovered by the Sekoia Threat Detection & Research (TDR) team in October 2023 and discussed in an advisory published today, the kit is associated with show more ...
Source: www.infosecurity-magazine.com – Author: 1 Cybersecurity experts have issued a cautionary alert regarding the proliferation of fake online deals for the popular weight-loss drug Ozempic. Despite its primary use in treating diabetes, Ozempic has gained traction among individuals seeking weight loss due show more ...
Source: www.darkreading.com – Author: Dark Reading Staff 1 Min Read Source: Andrey Popov via Alamy Stock Photo SQL injection vulnerabilities continue to plague supply chains, prompting a joint alert from the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) on show more ...
Source: www.darkreading.com – Author: Matt Mettenheimer Matt Mettenheimer, Associate Director of Cyber Advisory, Cybersecurity Practice, S-RM March 25, 2024 5 Min Read Source: Andriy Popov via Alamy Stock Photo COMMENTARY Mitigating third-party risk may seem daunting when considering the slew of incoming show more ...
Source: www.darkreading.com – Author: Dark Reading Staff 1 Min Read Source: Stocktrek Images Inc. via Alamy Stock Photo Japan held cyber defense exercises with five Pacific island nations last month in an effort to shore up cybersecurity defenses in the region. The cybersecurity exercise event, held in Guam in show more ...
Source: www.darkreading.com – Author: Nathan Eddy, Contributing Writer Source: Monticello via Shutterstock An unidentified group of threat actors orchestrated a sophisticated supply chain cyberattack on members of the Top.gg GitHub organization as well as individual developers in order to inject malicious code show more ...
Source: www.darkreading.com – Author: Grant Gross, Contributing Writer Source: Eric Muhamad Naris via Alamy Stock Photo Enterprises are increasingly adopting generative artificial intelligence (AI) to automate IT processes, detect security threats, and take over frontline customer service functions. An IBM show more ...
Source: www.darkreading.com – Author: Dark Reading Staff 1 Min Read Source: GK Images via Alamy Stock Photo Apple has released iOS 17.4.1, its latest security update, just weeks after releasing iOS 17.4, but is being intentionally vague about details surrounding the new release. Apple notes that it provides show more ...
Source: www.darkreading.com – Author: Murali Palanisamy 4 Min Read Source: Andrea Danti via Alamy Stock Photo COMMENTARY The recent news that hackers had breached remote access solution company AnyDesk shined a harsh light on the need for companies to take a long, hard look at code-signing practices to help show more ...
Source: www.darkreading.com – Author: Dark Reading Staff 1 Min Read Source: Aleksey Zotov via Alamy Stock Photo Kenya’s data protection agency has ordered TikTok to share details on whether it is in compliance with the nation’s privacy and user verification laws. Kithure Kindiki, Kenya’s show more ...
