"China-linked AOT Volt Typhoon exploited a zero-day in Versa Director."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.   Accessed on 28 August 2024, 1502 UTC.

Content and Source:  Email subscription via https://feedly.com.   https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fsecurityaffairs.co%2Fwordpress%2Ffeed

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Security Affairs

66K followers26 articles per week#security#tech

10

Most popular

China-linked APT Volt Typhoon exploited a zero-day in Versa Director

16 TTPs

•

by Pierluigi Paganini / 18h

•

CVE-2024-39717

China-linked APT group Volt Typhoon exploited a zero-day flaw in Versa Director to upload a custom webshell in target networks. China-linked APT Volt Typhoon exploited a zero-day vulnerability, tracked as CVE-2024-39717 , in Versa Director, to deploy a custom webshell on breached networks. Versa Director is a centralized management and orchestration platform used primarily by Internet Service Pro

US offers $2.5M reward for Belarusian man involved in mass malware distribution

$2.5M reward for Belarus hacker

•

by Pierluigi Paganini / 2h

The US Department of State offers a $2.5 million reward for information leading to the arrest of a Belarusian cybercriminal involved in the mass malware distribution. The US Department of State announced a $2.5 million reward for information leading to the arrest of Volodymyr Kadariya (38), a Belarusian national allegedly involved in a significant malware organization. Kadariya has been indicted

Google addressed the tenth actively exploited Chrome zero-day this year

Execution (Enterprise TA0002)

•

by Pierluigi Paganini / 1d

Google released emergency security updates to fix the tenth actively exploited Chrome zero-day vulnerability this year. Google released a security update to address a new Chrome zero-day vulnerability, tracked as CVE-2024-7965 (CVSS score 8.8), that is actively exploited. The vulnerability is an Inappropriate implementation issue that resides in Chrome’s V8 JavaScript engine. “Google is aware tha

Yesterday

U.S. CISA adds Apache OFBiz bug to its Known Exploited Vulnerabilities catalog

2 TTPs

•

by Pierluigi Paganini / 6h

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apache OFBiz bug to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apache OFBiz Incorrect Authorization Vulnerability CVE-2024-38856 (CVSS score of 9.8) to its Known Exploited Vulnerabilities (KEV) catalog . The vulnerability is an incorrect authorization issue in

Critical flaw in WPML WordPress plugin impacts 1M websites

2 TTPs

•

by Pierluigi Paganini / 16h

A critical flaw in the WPML WordPress plugin, which is installed on 1 million websites, could allow potential compromise of affected sites. The WPML Multilingual CMS Plugin for WordPress is installed on over 1 million sites. An authenticated (Contributor+) Remote Code Execution (RCE) vulnerability, tracked CVE-2024-6386 (CVSS score of 9.9), in WPML Plugin potentially allows the compromise of impa

Researchers unmasked the notorious threat actor USDoD

3 TTPs

•

by Pierluigi Paganini / 1d

•

USDoD hacker identity revealed Brazilian

CrowdStrike researchers have identified the notorious hacker USDoD who is behind several high-profile data leaks. The notorious hacker USDoD (aka EquationCorp), who is known for high-profile data leaks, is a man from Brazil, according to a CrowdStrike investigation. The news was first reported by the Brazilian website TecMundo who received a CrowdStrike report via an anonymous source. Over the pa

Aug 26, 2024

The Dutch Data Protection Authority (DPA) has fined Uber a record €290M

Uber fined 290 million euros

•

by Pierluigi Paganini / 1d

for violating the EU data protection regulation while sending sensitive driver data to the U.S. The Dutch Data Protection Authority (DPA) has fined Uber €290 million ($324 million) for allegedly failing to comply with the EU data protection regulation GPDR when transferring the personal data of European taxi drivers to the U.S. “The Dutch Data Protection Authority (DPA) imposes a fine of 290 mil

SonicWall addressed an improper access control issue in its firewalls

5 TTPs

•

by Pierluigi Paganini / 1d

•

CVE-2024-40766

SonicWall addressed a critical flaw in its firewalls that could allow attackers to achieve unauthorized access to the devices. SonicWall has released security updates to address a critical vulnerability, tracked as CVE-2024-40766 (CVSS score: 9.3), in its firewalls. The vulnerability is an improper access control issue that resides in the SonicWall SonicOS management access. “An improper access c

Aug 25, 2024

A cyberattack impacted operations at the Port of Seattle and Sea-Tac Airport

Seattle Airport suffers internet outage

•

by Pierluigi Paganini / 2d

A cyber attack hit the Port of Seattle, which also operates the Seattle-Tacoma International Airport, websites and phone systems were impacted. Media reported that the Port of Seattle, which also operates the Seattle-Tacoma International Airport, has suffered a cyber attack that impacted the websites, email and phone services. According to The Seattle Times, the cyber attack disrupted travel plan

Linux malware sedexp uses udev rules for persistence and evasion

6 TTPs

•

by Pierluigi Paganini / 2d

•

Stealthy sedexp Linux malware discovered

Researchers spotted a new stealthy Linux malware named sedexp that uses Linux udev rules to achieve persistence and evade detection. Aon’s Cyber Solutions spotted a new malware family, called sedexp, that relies on a lesser-known Linux persistence technique. The malware has been active since at least 2022 but remained largely undetected for years. The experts pointed out that the persistence meth

End of feed