Tuesday, November 12, 2024

Security Affairs

"Apple indeed added a feature called "inactivity reboot" in iOS 18.1 that reboots locked devices."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 12 November 2024, 1415 UTC.

Content and Source:  Email subscription via https://feedly.com.   https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fsecurityaffairs.co%2Fwordpress%2Ffeed

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Security Affairs

68K followers23 articles per week#security#tech
11

Most popular

Apple indeed added a feature called “inactivity reboot” in iOS 18.1 that reboots locked devices
iPhones reboot complicate police investigations
by Pierluigi Paganini / 2h
Apple iOS supports a new feature that reboots locked devices after extended inactivity, aiming to enhance data security for users. Apple ‘quietly’ implemented a new security feature that automatically reboots a locked device if it has not been used for several days. The new feature was introduced with the release of iOS 18.1 at the end of October. The IT giant has implemented an auto-reboot timer
Ymir ransomware, a new stealthy ransomware grow in the wild
14 TTPs
by Pierluigi Paganini / 3h
Ymir ransomware discovered with RustyStealer
New Ymir ransomware was deployed in attacks shortly after systems were breached by RustyStealer malware, Kaspersky warns. Kaspersky researchers discovered a new ransomware family, called Ymir ransomware , which attackers deployed after breaching systems via PowerShell commands. Ymir includes detection-evasion features, executing tasks in memory using functions like malloc , memmove , and memcmp .
Texas oilfield supplier Newpark Resources suffered a ransomware attack
Newpark Resources ransomware incident disclosed
by Pierluigi Paganini / 3d
that disrupted its information systems and business applications. Texas oilfield supplier Newpark Resources revealed that a ransomware attack on October 29 disrupted access to some of its information systems and business applications. The company immediately activated its cybersecurity response plan and launched an investigation into the incident with the help of external experts. “On October 29

Yesterday

Amazon discloses employee data breach after May 2023 MOVEit attacks
MOVEit breach exposes employee data
by Pierluigi Paganini / 15h
Amazon disclosed a data breach exposing employee data, with information allegedly stolen in the May 2023 MOVEit attacks. Amazon disclosed a data breach that exposed employee information after data was allegedly stolen during the May 2023 MOVEit attacks. The company said that the data was stolen from a third-party vendor. Amazon did not disclose the number of impacted employees. A threat actor usi
A new fileless variant of Remcos RAT observed in the wild
25 TTPs
by Pierluigi Paganini / 23h
Fortinet researchers discovered a new phishing campaign spreading a variant of the commercial malware Remcos RAT. Fortinet’s FortiGuard Labs recently uncovered a phishing campaign spreading a new variant of the Remcos RAT . Remcos is a commercial remote administration tool (RAT) that is sold online to allow buyers remote control over computers. Threat actors use Remcos to steal sensitive informat

Nov 10, 2024

A surge in Pro-Russia cyberattacks after decision to monitor North Korean Troops in Ukraine
Pro-Russia hackers target South Korea
by Pierluigi Paganini / 1d
South Korea claims Pro-Russia actors intensified cyberattacks on national sites after it decided to monitor North Korean troops in Ukraine. South Korea’s government blames pro-Russia threat actors for an intensification of cyberattacks on national sites after it decided to monitor North Korean troops in Ukraine. South Korea reports that over 10,000 North Korean troops are now deployed in Russia,
SECURITY AFFAIRS MALWARE NEWSLETTER – ROUND 19
by Pierluigi Paganini / 2d
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. CRON#TRAP: Emulated Linux Environments as the Latest Tactic in Malware Staging Typosquat Campaign Targeting npm Developers ToxicP
Security Affairs newsletter Round 497 by Pierluigi Paganini – INTERNATIONAL EDITION
by Pierluigi Paganini / 2d
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Mazda Connect flaws allow to hack some Mazda vehicles Veeam Backup & Replication exploit reused in new Frag ransomware attack Texas oilfield supplier Newp
U.S. agency cautions employees to limit phone use due to Salt Typhoon hack of telco providers
5 TTPs
by Pierluigi Paganini / 2d
US CFPB warns employees to avoid work-related mobile calls and texts following China-linked Salt Typhoon hack over security concerns. The US government’s Consumer Financial Protection Bureau (CFPB) advises employees to avoid using cellphones for work after China-linked APT group Salt Typhoon hackers breached major telecom providers . The Consumer Financial Protection Bureau (CFPB) is a U.S. gover

Nov 9, 2024

Mazda Connect flaws allow to hack some Mazda vehicles
3 TTPs
by Pierluigi Paganini / 2d
Multiple vulnerabilities in the infotainment unit Mazda Connect could allow attackers to execute arbitrary code with root access. Trend Micro’s Zero Day Initiative warned of multiple vulnerabilities in the Mazda Connect infotainment system that could allow attackers to execute code with root privileges. This occurs due to improper input sanitization in the Mazda Connect CMU, allowing attackers wi
Veeam Backup & Replication exploit reused in new Frag ransomware attack
7 TTPs
by Pierluigi Paganini / 2d
A critical flaw, tracked as CVE-2024-40711, in Veeam Backup & Replication (VBR) was also recently exploited to deploy Frag ransomware. In mid-October, Sophos researchers warned that ransomware operators are exploiting the critical vulnerability CVE-2024-40711 in Veeam Backup & Replication to create rogue accounts and deploy malware. In early September 2024, Veeam released security updates to addr

End of feed

at
Labels:

No comments:

Post a Comment

Please leave a comment about our recent post.

Subscribe to: Post Comments (Atom)

ZDNet | Security.

"It's official:  All your Office apps are getting AI and a price increase." Views expressed in this cybersecurity, cyber crime...

  • The Cyberwire Daily Briefing
    "Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters ...
  • Cyber War News Today.
    "International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyb...
  • SecurityWeek Briefing
    "New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the report...