Monday, October 21, 2024

Security News Bundle

"THN Cybersecurity Recap: Top Threats, Tools, and News (Oct 14-Oct 20)."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents. Accessed on 21 October 2024, 1346 UTC.

Content and Source: Email subscription via https://feedly.com. https://feedly.com/i/collection/content/user/f401222a-bca6-4c45-9cc1-183f239e8d86/category/7737d3c9-5fe2-4b34-8708-85e57085f895

Please scroll down to read your selections. Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Security News Bundle

36

Most popular

THN Cybersecurity Recap: Top Threats, Tools and News (Oct 14 - Oct 20)
11 TTPs
•
48The Hacker News / 1h
Hi there! Here’s your quick update on the latest in cybersecurity. Hackers are using new tricks to break into systems we thought were secure—like finding hidden doors in locked houses. But the good news? Security experts are fighting back with smarter tools to keep data safe. Some big companies were hit with attacks, while others fixed their vulnerabilities just in time. It's a constant battle.
Cisco Confirms Security Incident After Hacker Offers to Sell Data
Cisco data breach claims emerge
•
SecurityWeek / 1h
Cisco has confirmed that some files have been stolen from its DevHub environment after a hacker offered to sell information. The post appeared first on SecurityWeek .
Perplexity AI's new tool makes researching the stock market 'delightful'. Here's how
ZDNet | Security / 1h
Perplexity Finance is a comprehensive suite of AI-powered tools with an easy-to-use interface. Here's how to access it and what to know before you do.

Today

macOS HM Surf vuln might already be under exploit by major malware family
2 TTPs
•
The Register – Security / 7min
Like keeping your camera and microphone private? Patch up In revealing details about a vulnerability that threatens the privacy of Apple fans, Microsoft urges all macOS users to update their systems.…
ESET Distributor’s Systems Abused to Deliver Wiper Malware
ESET-branded wiper malware targets Israel
•
SecurityWeek / 31min
ESET has launched an investigation after a product distributor in Israel sent out emails delivering wiper malware. The post appeared first on SecurityWeek .
Nidec Confirms Data Stolen In Ransomware Attack
Nidec confirms ransomware data breach
•
Packet Storm Security / 1h
[no content]
Cisco Confirms Security Incident After Hacker Offers To Sell Data
Cisco data breach claims emerge
•
Packet Storm Security / 1h
[no content]
Grafana Critical Vulnerability Risks Remote Code Execution
2 TTPs
•
Packet Storm Security / 1h
•
CVE-2024-9264
[no content]
Internet Archive Exposed Again – This Time Through Zendesk
Internet Archive suffers major cyberattacks
•
Packet Storm Security / 1h
[no content]
Big Rewards Offered in Dedicated Google Cloud Bug Bounty Program
SecurityWeek / 1h
More than 460 products and services are covered under Google Cloud’s new VRP, with 140 eligible for top tier bug bounty rewards. The post appeared first on SecurityWeek .
Guide: The Ultimate Pentest Checklist for Full-Stack Security
33The Hacker News / 1h
Pentest Checklists Are More Important Than Ever Given the expanding attack surface coupled with the increasing sophistication of attacker tactics and techniques, penetration testing checklists have become essential for ensuring thorough assessments across an organization’s attack surface, both internal and external. By providing a structured approach, these checklists help testers systematically
Atlassian Patches Vulnerabilities in Bitbucket, Confluence, Jira
SecurityWeek / 2h
Atlassian has released patches for high-severity vulnerabilities in Bitbucket, Confluence, and Jira Service Management. The post appeared first on SecurityWeek .
Electric Motor Giant Nidec Confirms Data Stolen in Ransomware Attack
Nidec confirms ransomware data breach
•
SecurityWeek / 2h
Electric motor manufacturer Nidec confirms business and internal documents were stolen in a ransomware attack. The post appeared first on SecurityWeek .
Microsoft introduces 10 AI agents for sales, finance, supply chain in Dynamics 365
Microsoft launches Copilot autonomous agents
•
ZDNet | Security / 3h
Microsoft says agents can save companies as much as $50 million a year or offer the equivalent value of 'adding 187 full-time employees' by automating business processes.
AI and Hardware Hacking on the Rise
Hackers see AI boosting hacking value
•
SecurityWeek / 3h
Bugcrowd’s Inside the Mind of a Hacker report surveys the thoughts of one of the world’s largest hacker communities. The post appeared first on SecurityWeek .

Yesterday

Roundcube Webmail Vulnerability Exploited in Government Attack
Roundcube webmail XSS vulnerability exploited
•
SecurityWeek / 3h
An XSS vulnerability in Roundcube Webmail has been targeted for code execution against a governmental organization in a CIS country. The post appeared first on SecurityWeek .
Microsoft's upgraded Copilot Studio is like a LEGO set for building AI agents
Microsoft launches Copilot autonomous agents
•
ZDNet | Security / 4h
The next evolution of business automation has arrived. Here's how companies are building agents to automate everything from fraud prevention to client proposals.
Red Hat reveals major enhancements to Red Hat Enterprise Linux AI
ZDNet | Security / 4h
Only weeks after Red Hat released Red Hat Enterprise Linux AI, the company rolled out the next version: RHEL AI 1.2.
Ubuntu 24.10 Oracular Oriole takes flight - with a blend of innovation and nostalgia
Ubuntu celebrates 20th anniversary
•
ZDNet | Security / 4h
Twenty years in the making, Ubuntu 24.10 has arrived, and it brings back the Ubuntu 4.10 startup sound. Here's what else you can expect.
Internet Archive Hacked Again During Service Restoration Efforts
Internet Archive suffers major cyberattacks
•
SecurityWeek / 4h
The Internet Archive has suffered an email hack while working to restore services impacted by the recent cyberattacks. The post appeared first on SecurityWeek .
Unknown threat actors exploit Roundcube Webmail flaw in phishing campaign
11 TTPs
•
Security Affairs / 6h
Hackers exploited a now-patched Roundcube flaw in a phishing attack to steal user credentials from the open-source webmail software. Researchers from Positive Technologies warn that unknown threat actors have attempted to exploit a now-patched vulnerability, tracked as CVE-2024-37383 (CVSS score: 6.1), in the open-source Roundcube webmail software. The attackers have exploited the flaw as part of
Researchers Discover Severe Security Flaws in Major E2EE Cloud Storage Providers
5 TTPs
•
57The Hacker News / 6h
Cybersecurity researchers have discovered severe cryptographic issues in various end-to-end encrypted (E2EE) cloud storage platforms that could be exploited to leak sensitive data. "The vulnerabilities range in severity: in many cases a malicious server can inject files, tamper with file data, and even gain direct access to plaintext," ETH Zurich researchers Jonas Hofmann and Kien Tuong Truong
How to easily fly away from X to Bluesky without losing your flock - for now
Bluesky gains users after X changes
•
ZDNet | Security / 6h
The Sky Follower Bridge extension lets you easily migrate your follows and block list from X (formerly Twitter) to Bluesky, but you need to act fast because its functionality may be short-lived. Here's why.
Tesla, Intel, deny they're the foreign company China just accused of making maps that threaten national security
Tesla Intel deny China accusations
•
The Register – Security / 8h
As TSMC defends itself against report it may have helped Huawei Tesla has denied it was involved in illegal-map making activities in China after Beijing asserted an unnamed foreign firm working on a smart car project had done so – and even stolen state secrets – through a collaboration with a local business.…
Internet Archive exposed again – this time through Zendesk
Internet Archive suffers major cyberattacks
•
The Register – Security / 12h
Org turns its woes into a fundraising opportunity Despite the Internet Archive's assurances it's back on its feet after a recent infosec incident, the org still appears to be in trouble after parties unknown claimed to hold access tokens to its Zendesk implementation and to have used them to send a mass email blast.…
DPRK Uses Microsoft Zero-Day in No-Click Toast Attacks
2 TTPs
•
Dark Reading / 12h
•
CVE-2024-38178
The "Code-on-Toast" supply chain cyberattacks by APT37 delivered data-stealing malware to users in South Korea who had enabled Toast pop-up ads.
Cyprus Thwarted a Digital Attack Against the Government’s Main Online Portal
Cyber attacks hit Cyprus organizations
•
SecurityWeek / 15h
Cyprus said that it has successfully thwarted a DDoS attack aimed at blocking access to the government’s central online portal. The post appeared first on SecurityWeek .
Severe flaws in E2EE cloud storage platforms used by millions
5 TTPs
•
72BleepingComputer / 21h
Several end-to-end encrypted (E2EE) cloud storage platforms are vulnerable to a set of security issues that could expose user data to malicious actors. [...]
Internet Archive breached again through stolen access tokens
IoC > 1 IP
•
100+BleepingComputer / 22h
•
2 TTPs
•
Internet Archive suffers major cyberattacks
The Internet Archive was breached again, this time on their Zendesk email support platform after repeated warnings that threat actors stole exposed GitLab authentication tokens. [...]
Internet Archive breached again through exposed access tokens
IoC > 1 IP
•
100+BleepingComputer / 22h
•
2 TTPs
•
Internet Archive suffers major cyberattacks
The Internet Archive was breached again, this time on their Zendesk email support platform after repeated warnings that threat actors stole exposed GitLab authentication tokens. [...]
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 16
CVE-2024-38178
•
Security Affairs / 1d
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Expanding the Investigation: Deep Dive into Latest TrickMo Samples HijackLoader evolution: abusing genuine signing certificates F
Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION
CVE-2024-38178
•
Security Affairs / 1d
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. U.S. CISA adds Veeam Backup and Replication flaw to its Known Exploited Vulnerabilities catalog North Korea-linked APT37 exploited IE zero-day in a recent
One of my favorite portable power stations is $50 off ahead of Black Friday
ZDNet | Security / 1d
The EcoFlow River 2 is a reliable, lightweight power station for when you're on the move, and this is one of the lowest prices we've seen ahead of Black Friday.
F5 fixed a high-severity elevation of privilege vulnerability in BIG-IP
2 TTPs
•
Security Affairs / 1d
Technology firm F5 patches a high-severity elevation of privilege vulnerability in BIG-IP and a medium-severity flaw in BIG-IQ. F5 addressed two vulnerabilities in BIG-IP and BIG-IQ enterprise products, respectively tracked as CVE-2024-45844 and CVE-2024-47139. An authenticated attacker, with Manager role privileges or higher, could exploit the vulnerability CVE-2024-45844 to elevate privileges a

Oct 19, 2024

Open source LLM tool primed to sniff out Python zero-days
2 TTPs
•
The Register – Security / 1d
The static analyzer uses Claude AI to identify vulns and suggest exploit code Researchers with Seattle-based Protect AI plan to release a free, open source tool that can find zero-day vulnerabilities in Python codebases with the help of Anthropic's Claude AI model.…
Hackers Exploit Roundcube Webmail XSS Vulnerability to Steal Login Credentials
IoC > 1 domain
•
47The Hacker News / 1d
•
13 TTPs
Unknown threat actors have been observed attempting to exploit a now-patched security flaw in the open-source Roundcube webmail software as part of a phishing attack designed to steal user credentials. Russian cybersecurity company Positive Technologies said it discovered last month an email that was sent to an unspecified governmental organization located in one of the Commonwealth of

End of feed

No comments:

Post a Comment

Please leave a comment about our recent post.

Subscribe to: Post Comments (Atom)