"7-Zip MotW bypass exploited in zero-day attacks against Ukraine."
Views expressed in this cybersecurity, cyber espionage, and cyber crime update are those of the reporters and correspondents. Accessed on 04 February 2025, 1449 UTC.
Content and Source: https://www.bleepingcomputer.com/
Please check link or scroll down to read your selections. Thanks for joining us today.
Russ Roberts (https://www.hawaiicybersecurityjournal.net).
7-Zip MotW bypass exploited in zero-day attacks against Ukraine
A 7-Zip vulnerability allowing attackers to bypass the Mark of the Web (MotW) Windows security feature was exploited by Russian hackers as a zero-day since September 2024.
- February 04, 2025
- 09:43 AM
0
Lifetime access to InfoSec4TC courses gets you started in cybersecurity
Whether you're a beginner or an established pro, you can keep up with new tech trends with an InfoSec4TC Platinum Membership. For $69.99 (regularly $280), you'll get lifetime access to over 90 cybersecurity courses, including training for GSEC, CISSP, ethical hacking, and a ton of other in-demand IT certifications.
- February 04, 2025
- 07:11 AM
- 0
Sponsored Content
Discover and secure AI use [Free trial]With new AI tools like DeepSeek popping up daily, it's critical to gain visibility into who's using which AI apps and where they are connected to other business applications. Get a complete (and free) AI inventory today with Nudge Security.
GrubHub data breach impacts customers, drivers, and merchants
Food delivery company GrubHub disclosed a data breach impacting the personal information of an undisclosed number of customers, merchants, and drivers after attackers breached its systems using a service provider account.
- February 04, 2025
- 04:24 AM
- 0
First Apple-notarized porn app available to iPhone users in Europe
The first Apple-notarized porn app, "Hot Tub," is now available to iPhone users in Europe through the alternative app marketplace, AltStore PAL.
- February 03, 2025
- 07:11 PM
- 0
Amazon Redshift gets new default settings to prevent data breaches
Amazon has announced key security enhancements for Redshift, a popular data warehousing solution, to help prevent data exposures due to misconfigurations and insecure default settings.
- February 03, 2025
- 04:37 PM
- 0
Google fixes Android kernel zero-day exploited in attacks
The February 2025 Android security updates patch 48 vulnerabilities, including a zero-day kernel vulnerability that has been exploited in the wild.
- February 03, 2025
- 03:10 PM
- 0
Canadian charged with stealing $65 million using DeFI crypto exploits
The U.S. Justice Department has charged a Canadian man with stealing roughly $65 million after exploiting two decentralized finance (DeFI) protocols.
- February 03, 2025
- 02:20 PM
- 0
Casio UK online store hacked to steal customer credit cards
Casio UK's e-shop at casio.co.uk was hacked to include malicious scripts that stole credit card and customer information between January 14 and 24, 2025.
- February 03, 2025
- 01:51 PM
- 0
Microsoft kills off Defender 'Privacy Protection' VPN feature
Microsoft announced it is killing off its Privacy Protection VPN feature in the Microsoft Defender app at the end of the month to focus on other features.
- February 03, 2025
- 12:27 PM
- 0
DeepSeek AI tools impersonated by infostealer malware on PyPI
Threat actors are taking advantage of the rise in popularity of the DeepSeek to promote two malicious infostealer packages on the Python Package Index (PyPI), where they impersonated developer tools for the AI platform.
- February 03, 2025
- 11:33 AM
- 0
Stop guessing, start ranking—get SEO help in your site with this deal
This SEOGuru tool simplifies SEO into an easy-to-follow checklist so you can focus on making improvements instead of drowning in complicated reports. For a limited time, you can get lifetime access for just $69 (reg. $599), which means no monthly fees—just permanent SEO power at your fingertips.
- February 03, 2025
- 07:12 AM
- 0
PyPI adds project archiving system to stop malicious updates
The Python Package Index (PyPI) has announced the introduction of 'Project Archival,' a new system that allows publishers to archive their projects, indicating to the users that no updates are to be expected.
- February 02, 2025
- 10:32 AM
- 0
Get a 1TB Koofr lifetime cloud storage subscription on sale in this deal
If you're saving files you never want to get rid of, a more cost-effective solution is to opt for a lifetime subscription to a cloud storage platform. Koofr has good upload speeds, excellent privacy assurances, and a low price. It's only $129.97 to get a 1TB cloud storage that lasts for life, but this is a limited time deal.
- February 02, 2025
- 08:12 AM
- 0
Google says hackers abuse Gemini AI to empower their attacks
Multiple state-sponsored groups are experimenting with the AI-powered Gemini assistant from Google to increase productivity and to conduct research on potential infrastructure for attacks or for reconnaissance on targets.
- February 01, 2025
- 12:14 PM
- 3
This telescope deal doubles as a camera lens with 50x zoom
When you finally get out into nature, there's so much to see. With a little help from an HD Monocular Telescope, you can see even more of the world, but that's not all this telescope can do. Plus, during this limited-time sale, it's only $24.97 (reg. $54).
- February 01, 2025
- 08:19 AM
- 0
Microsoft improves text contrast for all Windows Chromium browsers
Microsoft says it improved the contrast of text rendered in all Chromium-based web browsers on Windows, making it more readable on some displays.
- January 31, 2025
- 12:36 PM
- 0
Indian tech giant Tata Technologies hit by ransomware attack
Tata Technologies Ltd. had to suspend some of its IT services following a ransomware attack that impacted the company network.
- January 31, 2025
- 11:02 AM
- 1
Globe Life data breach may impact an additional 850,000 clients
Insurance giant Globe Life finished the investigation into the data breach it suffered last June and says that the incident may have impacted an additional 850,000 customers.
- January 31, 2025
- 10:24 AM
- 0
Mizuno USA says hackers stayed in its network for two months
Mizuno USA, a subsidiary of Mizuno Corporation, one of the world's largest sporting goods manufacturers, confirmed in data breach notification letters that unknown attackers stole files from its network between August and October 2024.
- January 31, 2025
- 10:12 AM
- 0
US healthcare provider data breach impacts 1 million patients
Community Health Center (CHC), a leading Connecticut healthcare provider, is notifying over 1 million patients that their personal and health information was stolen in an October breach.
- January 31, 2025
- 08:18 AM
- 1
Comments
Post a Comment
Please leave a comment about our recent post.