"Ransomware gangs are loving this dumb but deadly make-me-admin ESXi vulnerability."

Views expressed in this cybersecurity, cyber espionage, and cyber crime update are those of the reporters and correspondents.  Accessed on 30 July 2024, 1454 UTC.

Content and Source:  Subscription via https://feedly.com.   https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.theregister.co.uk%2Fsecurity%2Fheadlines.atom

Please scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The Register – Security

87K followers29 articles per week#security#tech

11

Most popular

Ransomware gangs are loving this dumb but deadly make-me-admin ESXi vulnerability

7 TTPs

•

by Connor Jones / 3h

•

CVE-2024-37085

Get those patches applied – all the big dogs are abusing it Do you have your VMware ESXi hypervisor joined to Active Directory? Well, the latest news from Microsoft serves as a reminder that you might not want to do that given the recently patched vulnerability that has security experts deeply concerned.…

'LockBit of phishing' EvilProxy used in more than a million attacks every month

IoC > 1 domain

•

by Jessica Lyons / 18min

•

9 TTPs

Leaves a trail of ransomware infections, data theft, business email compromise in its wake Insight The developers of EvilProxy – a phishing kit dubbed the "LockBit of phishing" – have produced guides on using legitimate Cloudflare services to disguise malicious traffic. This adds to the ever-growing arsenal of tools offering criminals who lack actual technical expertise to get into the digital th

Intruders at HealthEquity rifled through storage, stole 4.3M people's data

HealthEquity data breach affects 4.3M

•

35by Connor Jones / 1d

No mention of malware or ransomware – somewhat of a rarity these days HealthEquity, a US fintech firm for the healthcare sector, admits that a "data security event" it discovered at the end of June hit the data of a substantial 4.3 million individuals. Stolen details include addresses, telephone numbers and payment data.…

Yesterday

Proofpoint phishing palaver plagues millions with 'perfectly spoofed' emails from IBM, Nike, Disney, others

EchoSpoofing exploits Proofpoint email security

•

by Jessica Lyons / 8h

They DKIM here, they DKIM there A huge phishing campaign exploited a security blind-spot in Proofpoint's email filtering systems to send an average of three million "perfectly spoofed" messages a day purporting to be from Disney, IBM, Nike, Best Buy, and Coca-Cola – all of which are Proofpoint customers.…

Malaysia is working on an internet 'kill switch', says minister

Malaysia to introduce cybersecurity kill switch

•

by Laura Dobberstein / 12h

Follows requirement for social media and messaging platforms to get a license Legislation for an internet "kill switch" will reach Malaysia’s Parliament in October, according to the country's minister for Law and Institutional Reform.…

Meta's AI safety system defeated by the space bar

31by Thomas Claburn / 17h

'Ignore previous instructions' thwarts Prompt-Guard model if you just add some good ol' ASCII code 32 Meta's machine-learning model for detecting prompt injection attacks – special prompts to make neural networks behave inappropriately – is itself vulnerable to, you guessed it, prompt injection attacks.…

US border cops really must get a warrant in NY before searching your phones, devices

Warrant required for border phone searches

•

by Brandon Vigliarolo / 18h

Do we really want to bother SCOTUS with this, friends? Surely they're way too busy to take a look US border agents must obtain a warrant, in New York at least, to search anyone's phone and other electronic device when traveling in or out of the country, another federal judge has ruled.…

Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update

Google fixes Chrome password manager bug

•

21by Richard Speed / 1d

Happy Sysadmin Day Google celebrated Sysadmin Day last week by apologizing for breaking its password manager for millions of Windows users – just as many Windows admins were still hard at work mitigating the impact of the faulty CrowdStrike update.…

Jul 28, 2024

Post-CrowdStrike, Microsoft to discourage use of kernel drivers by security tools

CrowdStrike update causes global outages

•

26by Simon Sharwood / 1d

Now there's an idea – parsing config data in user mode Updated Microsoft has vowed to reduce cybersecurity vendors' reliance on kernel-mode code, which was at the heart of the CrowdStrike super-snafu this month.…

China ponders creating a national 'cyberspace ID'

by Laura Dobberstein / 1d

Because clearly it's better for Beijing to know who you are than for every ISP and social service to keep its own records Beijing may soon issue "cyberspace IDs" to its citizens, after floating a proposal for the scheme last Friday.…

Secure Boot useless on hundreds of PCs from major vendors after key leak

7 TTPs

•

by Brandon Vigliarolo / 1d

Plus: More stalkerware exposure; a $16M TracFone fine; Ransomware victims don't use MFA, and more Infosec in brief Protecting computers' BIOS and the boot process is essential for modern security – but knowing it's important isn't the same as actually taking steps to do it.…

End of feed