Oktacron logo
Cyber security aggregate rss news

Cyber security aggregator - feeds history

 Feed

The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) on Friday issued sanctions against a Beijing-based cybersecurity company known as Integrity Technology Group, Incorporated for orchestrating several cyber attacks against U.S. victims. These attacks have been publicly attributed to a Chinese state-sponsored threat actor tracked as Flax Typhoon (aka Ethereal Panda or

 Feed

Cybersecurity researchers have flagged a new malware called PLAYFULGHOST that comes with a wide range of information-gathering features like keylogging, screen capture, audio capture, remote shell, and file transfer/execution. The backdoor, according to Google's Managed Defense team, shares functional overlaps with a known remote administration tool referred to as Gh0st RAT, which had its source

 Feed

A high-severity security flaw has been disclosed in ProjectDiscovery's Nuclei, a widely-used open-source vulnerability scanner that, if successfully exploited, could allow attackers to bypass signature checks and potentially execute malicious code. Tracked as CVE-2024-43405, it carries a CVSS score of 7.4 out of a maximum of 10.0. It impacts all versions of Nuclei later than 3.0.0. "The

 Cyber Security News

Source: go.theregister.com – Author: Jessica Lyons French tech giant Atos today denied that Space Bears criminals breached its systems – but noted that third-party infrastructure was compromised by the ransomware crew, and that files accessed by the crooks included “data mentioning the Atos company   show more ...

name.” The struggling French IT biz, which provides supercomputing, comms, and […] La entrada Atos denies Space Bears’ ransomware claims – with a ‘but’ – Source: go.theregister.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 captchas

Source: go.theregister.com – Author: Richard Currie Though the same couldn’t be said for most of us mere mortals, Vercel CEO Guillermo Rauch had a productive festive period, resulting in a CAPTCHA that requires the user to kill three monsters in Doom – on nightmare mode. The Completely Automated Public   show more ...

Turing test to tell Computers and […] La entrada CAPTCHAs now run Doom – on nightmare mode – Source: go.theregister.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 boffins

Source: go.theregister.com – Author: Thomas Claburn Computer scientists affiliated with France’s Inria and Microsoft have devised a way to automatically turn a subset of C code into safe Rust code, in an effort to meet the growing demand for memory safety. The C programming language was created in the   show more ...

early 1970s and has been used […] La entrada Boffins carve up C so code can be converted to Rust – Source: go.theregister.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Owais Sultan. Businesses are perpetually under pressure to innovate in a fast-paced digital era. But legacy applications, written with outdated technologies, slow down progress and efficiency. However, legacy app migration provides a strategic solution to overcome this challenge   show more ...

and help organizations modernize their systems and gain scalability, security as well as […] La entrada Legacy App Migration: Transforming Outdated Systems – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Owais Sultan. Integrate weather APIs to enhance your app with real-time data, forecasts, and personalized insights. Improve user experience while managing costs and scaling globally. The integration of weather APIs can do wonders for any web or mobile application. Whether it is   show more ...

food delivery apps, which need to know the exact […] La entrada Top Tips for Weather API Integration and Data Utilization – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Owais Sultan. Discover how AI (Artificial Intelligence) transforms storytelling in filmmaking with scriptwriting, casting, editing, and immersive viewer experiences. The future of cinema is here! The art of storytelling has slowly and gradually evolved over the last few years   show more ...

concerning a few fields of marketing, and the most illustrative of these […] La entrada A New Dawn for Storytelling: The Intersection of AI and Cinema – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 'Cyber

Source: sec.cloudapps.cisco.com – Author: . Cisco Meeting Management Information Disclosure Vulnerability Medium CVE-2024-20507 CWE-200 Download CSAF Email Summary A vulnerability in the logging subsystem of Cisco Meeting Management could allow an authenticated, remote attacker to view sensitive information in   show more ...

clear text on an affected system. This vulnerability is due to improper storage of sensitive information […] La entrada Cisco Meeting Management Information Disclosure Vulnerability – Source:sec.cloudapps.cisco.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 'Cyber

Source: sec.cloudapps.cisco.com – Author: . Cisco 7800, 8800, and 9800 Series Phones Information Disclosure Vulnerability Medium CVE-2024-20445 CWE-200 Download CSAF Email Summary A vulnerability in the web UI of Cisco Desk Phone 9800 Series, Cisco IP Phone 7800 and 8800 Series, and Cisco Video Phone 8875 could   show more ...

allow an unauthenticated, remote attacker to access sensitive […] La entrada Cisco 7800, 8800, and 9800 Series Phones Information Disclosure Vulnerability – Source:sec.cloudapps.cisco.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Becky Bracken, Senior Editor, Dark Reading Source: artpartner-images.com via Alamy Stock Photo A remarkable number of BeyondTrust instances remain connected to the Internet, despite dire warnings Chinese state-sponsored threat actors are actively exploiting a critical   show more ...

vulnerability in unpatched systems. The BeyondTrust bug, tracked under CVE-2024-12356, has an assigned CVSS score of […] La entrada Thousands of Buggy BeyondTrust Systems Remain Exposed – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.darkreading.com – Author: Nate Nelson, Contributing Writer Source: MedStockPhotos via Alamy Stock Photo An unmitigated revamp of healthcare cybersecurity is coming in 2025, and experts warn that the compliance burden for organizations will be steep. Since 2005, healthcare organizations have been   show more ...

subject to Security Standards for the Protection of Electronic Protected Health Information (“Security […] La entrada New HIPAA Cybersecurity Rules Pull No Punches – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.techrepublic.com – Author: Jack Wallen We may earn from vendors via affiliate links or sponsorships. This might affect product placement on our site, but not the content of our reviews. See our Terms of Use for details. Here’s how to use the secure copy command, in conjunction with ssh key   show more ...

authentication, for an even […] La entrada How To Use SCP (Secure Copy) With SSH Key Authentication – Source: www.techrepublic.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Apps

Source: www.techrepublic.com – Author: TechRepublic Academy Published January 3, 2025 We may earn from vendors via affiliate links or sponsorships. This might affect product placement on our site, but not the content of our reviews. See our Terms of Use for details. CCleaner speeds up sluggish PCs by clearing   show more ...

junk files, fixing registry issues, and […] La entrada This Trusted App Helps Sluggish PCs Work Faster – Source: www.techrepublic.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Cyber Security News

Source: www.infosecurity-magazine.com – Author: The US government has issued sanctions against a China-based cybersecurity company for its involvement in a large-scale botnet targeting American organizations, including critical infrastructure. Beijing-based Integrity Technology Group has been accused of playing   show more ...

a role in multiple computer intrusion incidents that have been attributed to Flax Typhoon, a Chinese malicious state-sponsored […] La entrada US Sanctions Chinese Cybersecurity Firm for Global Botnet Attacks – Source: www.infosecurity-magazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: www.hackerone.com – Author: Jobert Abma. Hacking can be tedious work. Sometimes you’ve been looking for hours, perhaps days, and you’re unable to find a security vulnerability. It can be demotivating at times. This blog will give you multiple tips to power through it and regain that sweet, sweet   show more ...

feeling of submitting a security vulnerability. This […] La entrada What To Do When You’re Stuck Hacking – Source:www.hackerone.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: www.hackerone.com – Author: Marten Mickos. Today we celebrate cyber defense. The U.S. Department of Defense’s Defense Digital Service (DDS) announced expansion of the Hack the Pentagon crowdsourced security program and partnership with HackerOne. HackerOne is one of three vendors to be awarded a   show more ...

contract as part of the Hack the Pentagon expansion to run […] La entrada The Best is Yet To Come: DOD Awards New Hack the Pentagon Contract to HackerOne – Source:www.hackerone.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: www.hackerone.com – Author: HackerOne. For the first time, HackerOne kicked off fall by migrating south. Way south. All the way to Buenos Aires, Argentina! Oath, a media and tech company, under which Yahoo, AOL, Verizon Digital Media Services, TechCrunch and many more dynamic brands fall, welcomed over   show more ...

50 hackers in their third live hacking […] La entrada The Paranoids at Oath Take Bug Bounties to Argentina: h1-5411 Recap – Source:www.hackerone.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: www.hackerone.com – Author: Marten Mickos. In 2016, the DoD said Yes to cyber help by launching the Hack the Pentagon program. It took 13 minutes for them to receive their first critical vulnerability report from a hacker. In the following two years, hackers detected over 5,000 security vulnerabilities   show more ...

that otherwise could have been exploited […] La entrada Say Yes To Cyber Help – Source:www.hackerone.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 0CISO2CISO

Source: www.hackerone.com – Author: johnk. “I think we found something good,” said hackers @sumlac, @teknogeek, and @johnny said to a member of the MARFORCYBER team at the kickoff live hacking event on August 12, 2018 in Las Vegas for Hack the Marine Corps. The Marine peered over his shoulder as @sumlac and   show more ...

his fellow hackers split […] La entrada The U.S. Marine Corps Resolves Nearly 150 Vulnerabilities Thanks to Hackers – Source:www.hackerone.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 APT

Source: securityaffairs.com – Author: Pierluigi Paganini The U.S. Treasury Department sanctioned Chinese cybersecurity firm Integrity Tech for its involvement in attacks attributed to the Flax Typhoon group. The U.S. Treasury sanctioned a Chinese cybersecurity firm, Integrity Tech, for links to cyberattacks by   show more ...

China’s state-backed Flax Typhoon APT group (also called Ethereal Panda or RedJuliett). The China-linked APT […] La entrada US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Android

Source: securityaffairs.com – Author: Pierluigi Paganini FireScam malware steals credentials and financial data by monitoring Android app notifications and sending data to a Firebase database. Cybersecurity firm Cyfirma warns of the FireScam Android info-stealing malware that supports spyware capabilities. The   show more ...

malicious code steals credentials and financial data by monitoring app notifications and sending the information […] La entrada FireScam Android info-stealing malware supports spyware capabilities – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 Breaking News

Source: securityaffairs.com – Author: Pierluigi Paganini Richmond University Medical Center has confirmed that a ransomware attack in May 2023 affected 670,000 individuals. New York’s Richmond University Medical Center confirmed a May 2023 ransomware attack impacted 674,033 individuals. Richmond University   show more ...

Medical Center (RUMC) is a healthcare institution based in Staten Island, New York. It provides a […] La entrada Richmond University Medical Center data breach impacted 674,033 individuals – Source: securityaffairs.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 1 - Cyber Security News Post

Source: hackread.com – Author: Deeba Ahmed. SUMMARY FireScam Malware: FireScam disguises itself as a “Telegram Premium” app to target Android users via phishing websites mimicking trusted app stores. Malicious Capabilities: It steals sensitive data, monitors apps, tracks device activity, and ensures   show more ...

persistence through advanced permissions. Evasion Techniques: FireScam uses obfuscation, restricted access, and sandbox detection […] La entrada New FireScam Infostealer Spyware Hits Android via Fake Telegram Premium – Source:hackread.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

 'Cyber

Source: sec.cloudapps.cisco.com – Author: . Cisco Adaptive Security Appliance and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities Medium CVE-2024-20297 CVE-2024-20299 CWE-290 Download CSAF Email Summary Multiple vulnerabilities in the AnyConnect firewall for Cisco   show more ...

Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to […] La entrada Cisco Adaptive Security Appliance and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities – Source:sec.cloudapps.cisco.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

2025-01
Aggregator history
Saturday, January 04
WED
THU
FRI
SAT
SUN
MON
TUE
JanuaryFebruaryMarch