Thursday, October 3, 2024

BleepingComputer.com

"Why your password policy should include a custom dictionary."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 03 October 2024, 1429 UTC.

Content and Source:   https://www.bleepingcomputer.com/

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Latest Articles

Why your password policy should include a custom dictionary

  • Utilizing a custom dictionaries helps strengthen your password policies. Learn more from Specops Software about how to build custom dictionaries in your Windows Active Directory password policy.

  • Deeper Connect Air
     
    Deals

This hardware VPN router is cheaper many software subscriptions

  • Grab your Deeper Connect Air VPN router while they're at their lowest prices ever: $149.97 with free shipping (reg. $219) for a limited time. No coupon is needed to get this price.

    • BleepingComputer Deals
      •  
    • October 03, 2024
      •  
    • 07:06 AM
      •  
    • Comment Count 0
  • AI Girl Deepfake
     
    Security, Artificial Intelligence

FIN7 hackers launch deepfake nude “generator” sites to spread malware

  • The notorious APT hacking group known as FIN7 launched a network of fake AI-powered deepnude generator sites to infect visitors with information-stealing malware.

  • Ivanti
     
    Security

Critical Ivanti RCE flaw with public exploit now used in attacks

  • CISA warned today that a critical Ivanti vulnerability that can let threat actors gain remote code execution on vulnerable Endpoint Manager (EPM) appliances is now actively exploited in attacks.

  • Cookies
     
    Security

Fake browser updates spread updated WarmCookie malware

  • A new 'FakeUpdate' campaign targeting users in France leverages compromised websites to show fake browser and application updates that spread a new version of the WarmCookie malware.

  • Microsoft Azure
     
    Deals

Train for the Azure certification exams with this prep bundle deal

  • Get the 2024 Microsoft Azure Architect & Administrator Exam Certification Prep Bundle for just $39.99 (reg. $117) now.

    • BleepingComputer Deals
      •  
    • October 02, 2024
      •  
    • 02:09 PM
      •  
    • Comment Count 0
  • Microsoft Office
     
    Microsoft

Microsoft Office 2024 now available for Windows and macOS users

  • Microsoft has released Office 2024 for small businesses and consumers who want a standalone version without a Microsoft 365 subscription.

  • Datacenter Network Switch
     
    Security

CISA: Network switch RCE flaw impacts critical infrastructure

  • U.S. cybersecurity agency CISA is warning about two critical vulnerabilities that allow authentication bypass and remote code execution in Optigo Networks ONS-S8 Aggregation Switch products used in critical infrastructure.

  • Malware Phishing
     
    Security

Critical Zimbra RCE flaw exploited to backdoor servers using emails

  • Hackers are actively exploiting a recently disclosed RCE vulnerability in Zimbra email servers that can be triggered simply by sending specially crafted emails to the SMTP server.

  • DrayTek Router
     
    Security, Hardware

DrayTek fixed critical flaws in over 700,000 exposed routers

  • DrayTek has released security updates for multiple router models to address 14 vulnerabilities of varying severity, including a remote code execution flaw that received the maximum CVSS score of 10.

  • Windows 11
     
    Microsoft

Microsoft blocks Windows 11 24H2 on some Intel PCs over BSOD issues

  • ​Microsoft is blocking Windows 24H2 upgrades on systems with incompatible Intel Smart Sound Technology (SST) audio drivers due to blue screen of death (BSOD) issues.

  • Windows 11
     
    Microsoft

Microsoft warns of Windows 11 24H2 gaming performance issues

  • Microsoft has blocked Windows 24H2 upgrades on some systems because of known issues causing Asphalt 8 game crashes and Easy Anti-Cheat blue screens.

  • MacBook Air
     
    Deals

This refurbished MacBook Air M1 deal will get you away from your PC

  • You can save 65% on this refurbished M1 MacBook Air with 128GB of space, making it only $514.99 (originally $1,499).

    • BleepingComputer Deals
      •  
    • October 02, 2024
      •  
    • 07:10 AM
      •  
    • Comment Count 0
  • Arc
     
    Security, Software

Arc browser launches bug bounty program after fixing RCE bug

  • The Browser Company has introduced an Arc Bug Bounty Program to encourage security researchers to report vulnerabilities to the project and receive rewards.

  • Outlook
     
    Microsoft

Microsoft fixes Outlook email sending issue for users with many folders

  • ​Microsoft has fixed a known issue affecting Outlook for Microsoft 365 users that caused problems sending emails for those with too many nested folders.

  • Rackspace
     
    Security

Rackspace monitoring data stolen in ScienceLogic zero-day attack

  • Cloud hosting provider Rackspace suffered a data breach exposing "limited" customer monitoring data after threat actors exploited a zero-day vulnerability in a third-party tool used by the ScienceLogic SL1 platform.

  • Microsoft 365
     
    Deals

Get Office apps, OneDrive, and more with 42% off Microsoft 365

  • Microsoft 365 has virtually everything, from Office apps used by over a billion users worldwide to 1TB of OneDrive storage to built-in security and so much more. You can get a 1-year subscription to Microsoft 365 for $39.97 (reg. $69.99) for a limited time.

    • BleepingComputer Deals
      •  
    • October 01, 2024
      •  
    • 02:07 PM
      •  
    • Comment Count 0
  • Hospital
     
    Security, Healthcare

Ransomware attack forces UMC Health System to divert some patients

  • Texas healthcare provider UMC Health System was forced to divert some patients to other locations after a ransomware attack impacted its operations.

  • Hacker suit
     
    Security

Evil Corp hit with new sanctions, BitPaymer ransomware charges

  • The Evil Corp cybercrime syndicate has been hit with new sanctions by the United States, United Kingdom, and Australia. The US also indicted one of its members for conducting BitPaymer ransomware attacks.

  • LockBit
     
    Security

Police arrest four suspects linked to LockBit ransomware gang

  • Law enforcement authorities from 12 countries arrested four suspects linked to the LockBit ransomware gang, including a developer, a bulletproof hosting service administrator, and two people connected to LockBit activity.

at No comments:
Labels:
Subscribe to: Posts (Atom)

Cyber War News Today.

"From trade wars to cyber wars in modern era." Views expressed in this cybersecurity, cyber espionage, and cyber crime update are ...

  • The Cyberwire Daily Briefing
    "Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters ...
  • Cyber War News Today.
    "International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyb...
  • SecurityWeek Briefing
    "New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the report...