CyberSecurity Insiders

APRIL 10, 2023

We spoke with our blog volunteers to get their insights into what best practices their companies are following, along with how you can get on a path to better identity management. Why is identity management and security important in 2023? “In The dangers of improper management of digital identities are at an all-time high.

Identity Theft 105

Identity Theft Education Authentication Data breaches 105

eSecurity Planet

SEPTEMBER 5, 2023

August 28, 2023 Ransomware Group Exploits Citrix NetScaler Vulnerability In July, Citrix released a patch for a critical remote code execution vulnerability ( CVE-2023-3519 ), which affected the company’s NetScaler ADC and NetScaler Gateway products and carried a severity rating of 9.8 out of 10 on the CVSS vulnerability scale.

VPN 95

VPN Authentication Ransomware Antivirus 95

Security Affairs

APRIL 3, 2023

’ The shared responsibility model allows application owners to add an authentication function by simply clicking a button. ” The experts discovered that other apps were impacted by the misconfiguration issue, including Mag News, Central Notification Service (CNS), Contact Center, PoliCheck, Power Automate Blog, and COSMOS.

Accountability 79

Accountability Education Media Authentication 79

eSecurity Planet

NOVEMBER 6, 2023

30, 2023 NGINX Ingress Controller for Kubernetes Flaws Can Lead to Credential Theft Type of Attack: Path sanitization bypass and injection vulnerabilities discovered in the NGINX Ingress controller can allow for credential theft, arbitrary command execution, and critical data access. CVE-2023-5044 (Code Injection): This CVSS score 7.6

Software 89

Software Education Ransomware Firmware 89

Security Boulevard

MARCH 17, 2023

Background: On 14th March 2023, Microsoft released a security update guide for a critical severity vulnerability CVE-2023-23397. Once Outlook receives this message it initiates a NTLM authentication with this SMB share server. This can be used to protect high value domain admin accounts. What is the issue?

Authentication 69

Authentication Accountability 69

BH Consulting

SEPTEMBER 14, 2023

That’s one of the many fascinating insights from Hive Systems’ 2023 Password Table. Security company Trustwave tracked a noticeable increase in this kind of activity in early 2023. Separately, the security provider Cloudflare said that identity deception like that used in BEC scams can “easily bypass email authentication standards”.

Scams 59

Scams Passwords Social Engineering Cybersecurity 59

The Last Watchdog

SEPTEMBER 25, 2023

million in 2023, according to IBM’s Cost of a Data Breach Report, and over 700,000 small businesses were targeted in cybersecurity attacks in 2020, according to the Small Business Association. Monitoring who has made what changes protects your business and holds team members accountable for safe IT practices. Adequate IT compliance.

Small Business 222

Small Business Cybersecurity Technology Accountability 222

Security Affairs

APRIL 28, 2023

A vulnerability impacting Zyxel firewalls, tracked as CVE-2023-28771, can be exploited to execute arbitary code on vulnerable devices. Researchers from TRAPA Security have discovered a critical remote code execution vulnerability, tracked as CVE-2023-28771 (CVSS score 9.8), impacting Zyxel Firewall. through 5.35. . through 5.35.

Firewall 94

Firewall Firmware VPN Authentication 94

Security Through Education

JANUARY 18, 2023

What are some personal cybersecurity concerns for 2023? Business email compromise (BEC) attacks have been predicted to soar in 2023 according to Forbes Advisor. This is how the scammers “fatten the pig” until the right time to “butcher it,” when they take all the money out of the account. The Internet of Things. What You Can Do.

Cybersecurity 98

Cybersecurity Social Engineering Scams IoT 98

The Last Watchdog

AUGUST 21, 2023

Phone number spoofing involves manipulating caller ID displays to mimic legitimate phone numbers, giving scammers a deceptive veil of authenticity. They may claim that a new credit card or checking account has been opened in the victim’s name, providing specific details such as addresses and alleged deposits to sound convincing.

Scams 246

Scams Banking Accountability Authentication 246

NopSec

JULY 28, 2023

Good news for blog content, but less so for production networks. Seriously, who is using ColdFusion in 2023? Finally, we cover a pre-authentication RCE vulnerability identified in the business intelligence software Metabase. We had the opportunity to be picky about our curated selection of critical risks to report.

Authentication 52

Authentication Encryption Risk Passwords 52

Duo's Security Blog

JANUARY 23, 2024

Throughout 2023, we’ve heard about many high-profile security incidents targeting a wide range of publicly listed companies. To add, Cisco Talos 2023 Year in Review (page 7) highlights hackers' use of “Valid Accounts” as the second most common attack technique observed for the year. WebAuthn is important.

Authentication 75

Authentication Accountability CISO Technology 75

NopSec

MAY 31, 2023

May was a rather quiet month for security research, but an excellent write up filtered to the masses from the Pwn2own 2023 conference held in Vancouver, B.C. Finally, it wouldn’t be a worthy blog post if we didn’t include a nugget from patch Tuesday. tar file manipulation. tar file manipulation.

Risk 52

Risk Accountability Authentication Passwords 52

Security Affairs

APRIL 22, 2023

Cybersecurity and Infrastructure Security Agency (CISA) has added the following three new issues to its Known Exploited Vulnerabilities Catalog : CVE-2023-28432 (CVSS score – 7.5) – MinIO Information Disclosure Vulnerability. CVE-2023-27350 (CVSS score – 9.8) – PaperCut MF/NG Improper Access Control Vulnerability.

Education 90

Education Media Authentication Cybersecurity 90

BH Consulting

DECEMBER 11, 2023

They include credentials that stay in use for a long time, inconsistent use of multi-factor authentication, and cloud workloads with non-administrator permissions. These practices can lead to account compromise, or enabling unauthorised users to access sensitive data and escalate privileges.

Surveillance 52

Surveillance Cybersecurity DDOS Data breaches 52

Malwarebytes

OCTOBER 9, 2023

On Friday October 6, 2023, 23andMe confirmed via a somewhat opaque blog post that threat actors had "obtained information from certain accounts, including information about users’ DNA Relatives profiles." However, the damage seems to go far beyond the accounts with reused passwords.

Passwords 134

Passwords Accountability Scams Social Engineering 134

Security Affairs

APRIL 5, 2023

.” The researchers reported the issues to the United States Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA), which assigned the following five CVEs: Use of Hard-coded Credentials CWE-798 ( CVE-2023–1748 , CVSS3.0: Authorization Bypass Through User-Controlled Key CWE-639 ( CVE-2023–1749 , CVSS3.0:

Manufacturing 91

Manufacturing Media Firewall Education 91

Security Affairs

APRIL 24, 2023

Hackers are actively exploiting PaperCut MF/NG print management software flaws (tracked as CVE-2023-27350 and CVE-2023-27351 ) in attacks in the wild. On April 19th, Print management software provider PaperCut confirmed that it is aware of the active exploitation of the CVE-2023-27350 vulnerability.

Authentication 94

Authentication Software Education Malware 94

Anton on Security

JANUARY 3, 2023

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our fifth Threat Horizons Report ( full version ) that we just released ( the official blog for #1 report , my unofficial blogs for #2 , #3 and #4 ). Now, go and read the report!

Cybersecurity 185

Cybersecurity Backups DDOS Accountability 185

Security Affairs

MAY 12, 2023

Recently, VIPRE Security Group published their Email Security in 2023 report , where they shared insights on the development of email-based threats and how they can impact organizations. What Can We Expect in 2023? It’s not likely to stop there. At this point, the bad actor has access to the information they were after.

Phishing 89

Phishing Social Engineering Small Business B2B 89

Krebs on Security

JUNE 27, 2023

On July 16, 2020 — the day after some of Twitter’s most recognizable and popular users had their accounts hacked and used to tweet out a bitcoin scam — KrebsOnSecurity observed that several social media accounts tied to O’Connor appeared to have inside knowledge of the intrusion. I haven’t done anything.”

Cryptocurrency 223

Cryptocurrency Accountability Mobile Hacking 223

Security Affairs

APRIL 21, 2023

One of the issues tracked as CVE-2023-20036 (CVSS score: 9.9) “A vulnerability in the web UI of Cisco IND could allow an authenticated, remote attacker to execute arbitrary commands with administrative privileges on the underlying operating system of an affected device.” ” reads the advisory.

Authentication 91

Authentication Education Media Hacking 91

Duo's Security Blog

JANUARY 29, 2024

In analyzing de-identified customer data over the latter half of 2023, we found a pattern of threat activity targeting multiple universities using shared attack infrastructure. In the context of the attack shown in the previous section, after multiple failed authentications the attacker would be disabled from making further Push attempts.

Education 112

Education Authentication Passwords Phishing 112

Duo's Security Blog

APRIL 20, 2023

Through the first two months of 2023 alone, the Australian Competition and Consumer Commission’s Scamwatch reported more than 19,000 phishing reports with estimated financial losses of more than $5.2 Accounting for nearly a quarter of reported incidents in Australia, phishing is a broad category of social engineering with several variations.

Phishing 77

Phishing Social Engineering Authentication Engineering 77

Security Affairs

MAY 2, 2023

FortiGuard Labs researchers observed a worrisome level of attacks attempting to exploit an authentication bypass vulnerability in TBK DVR devices. Threat actors are attempting to exploit a five-year-old authentication bypass issue, tracked as CVE-2018-9995 (CVSS score of 9.8), in TBK DVR devices. .

Authentication 98

Authentication Retail Surveillance Education 98

Security Affairs

APRIL 30, 2023

Nominate here: [link] Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter ) The post Security Affairs newsletter Round 417 by Pierluigi Paganini – International edition appeared first on Security Affairs.

Cybercrime 88

Cybercrime Malware Hacking Accountability 88

Security Affairs

JANUARY 16, 2024

Last week, software firm Ivanti reported that threat actors are exploiting two zero-day vulnerabilities (CVE-2023-46805, CVE-2024-21887) in Connect Secure (ICS) and Policy Secure to remotely execute arbitrary commands on targeted gateways. The flaw CVE-2023-46805 (CVSS score 8.2) x and Ivanti Policy Secure. x) and Ivanti Policy Secure.

VPN 85

VPN Authentication Small Business Telecommunications 85

Duo's Security Blog

FEBRUARY 6, 2024

According to Cisco Talos, three of the top five MITRE ATT@CK techniques used in 2023 were identity-based. Even before the high-profile attacks in 2023, the trend in adopting zero trust security principles already showed that identity security must be a major priority for organizations of all sizes.

Accountability 81

Accountability Authentication Risk Marketing 81

Security Affairs

APRIL 13, 2023

Successful exploitation can lead to remote, unauthenticated access to Redis and MongoDB instances via crafted authentication requests. ” reads the advisory published by the vendor. The vulnerability affects FortiPresence 1.2 all versions, FortiPresence 1.1 all versions, and FortiPresence 1.0 all versions.

Authentication 81

Authentication Education Media Hacking 81

Security Affairs

FEBRUARY 2, 2024

The incident took place on Thanksgiving Day, November 23, 2023, and Cloudflare immediately began an investigation with the help of CrowdStrike. ” reads the blog post published by the company. Cloudflare admitted having failed to rotate these authentication elements.

Authentication 108

Authentication Hacking Accountability Information Security 108

Krebs on Security

JANUARY 30, 2024

stole at least $800,000 from at least five victims between August 2022 and March 2023. In each attack, the victims saw their email and financial accounts compromised after suffering an unauthorized SIM-swap, wherein attackers transferred each victim’s mobile phone number to a new device that they controlled. According to an Aug.

Social Engineering 318

Social Engineering Mobile Cybercrime Passwords 318

Security Affairs

APRIL 8, 2023

The CVE-2023-26083 flaw in the Arm Mali GPU driver is chained with other issues to install commercial spyware, as reported by Google’s Threat Analysis Group (TAG) in a recent report. CISA orders federal agencies to fix this flaw by April 28, 2023.

Backups 81

Backups Spyware Ransomware Education 81

NetSpi Technical

JANUARY 18, 2024

Time-Based One-Time Password (TOTP) Time-Based One-Time Password (TOTP) is a common two-factor authentication (2FA) mechanism used across the internet. During authentication, the secret is used in combination with the time in a cryptographic hash function to produce a secure 6-digit passcode. Would the app still let me authenticate?

Authentication 115

Authentication Passwords Accountability Penetration Testing 115

Duo's Security Blog

SEPTEMBER 6, 2023

We have a lot of thoughts on passkeys – some of which we’ve shared in other posts in this passkey blog series – and today we’re going to explore how passkeys stack up against passwords from the perspective of cloud platforms. That’s why many tech companies are turning to passkeys as a more secure and convenient replacement.

Passwords 96

Passwords Password Management Authentication Threat Detection 96

Security Affairs

MAY 4, 2023

Cisco is warning of a critical remote code execution (RCE) vulnerability, tracked as CVE-2023-20126 (CVSS score of 9.8), impacting SPA112 2-Port phone adapters. The company also warned that there are no workarounds for the CVE-2023-20126 vulnerability. The company product has reached end-of-life (EoL). ” continues the advisory.

Firmware 85

Firmware Education Media Authentication 85

Duo's Security Blog

JULY 7, 2023

A passkey is a phishing-resistant cryptographic keypair you register for web-based authentication. It’s the strongest authentication method available today, which is why you see passkeys moving to replace passwords altogether. As of July 2023 For a deeper dive into passkeys and their benefits, read ' What are Passkeys? ’

Authentication 83

Authentication Passwords Mobile Password Management 83

NetSpi Technical

MARCH 14, 2024

Once applied to another resource, it allows the resource to utilize the associated Entra ID identity to authenticate and gain access to other Azure resources. We’ve linked out on the above list to some blogs that show how to use those services to attack Managed Identities.

Penetration Testing 133

Penetration Testing Accountability Authentication Engineering 133