Security Affairs

APRIL 15, 2024

Cisco Duo warns that a data breach involving one of its telephony suppliers exposed multifactor authentication (MFA) messages sent by the company via SMS and VOIP to its customers. The security breach occurred on April 1, 2024, the threat actors used a Provider employee’s credentials that illicitly obtained through a phishing attack.

Data breaches 115

Data breaches Social Engineering Engineering Authentication 115

Security Affairs

APRIL 28, 2024

From March 18, 2024, to April 16, 2024, Duo Security and Cisco Talos observed large-scale brute-force attacks against a variety of targets, including VPN services, web application authentication interfaces and SSH services. ” reads the advisory published by Okta. ” continues the advisory.

VPN 109

VPN Accountability Firewall Data breaches 109

Security Affairs

APRIL 16, 2024

Cisco Talos warns of large-scale brute-force attacks against a variety of targets, including VPN services, web application authentication interfaces and SSH services.

VPN 121

VPN Firewall Authentication Hacking 121

Security Affairs

FEBRUARY 1, 2024

For the first time since its establishment, CISA is ordering federal agencies to disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure products within 48 hours. The CISA’s emergency directive orders to disconnect all instances no later than 11:59PM on Friday February 2, 2024. x) and Policy Secure (9.x,

VPN 102

VPN Authentication Software Malware 102

Security Affairs

APRIL 19, 2024

The MITRE Corporation revealed that a nation-state actor compromised its systems in January 2024 by exploiting Ivanti VPN zero-days. In April 2024, MITRE disclosed a security breach in one of its research and prototyping networks. ” reads a post published by the organization on Medium.

Cyber Attacks 111

Cyber Attacks VPN Authentication Hacking 111

Security Affairs

APRIL 9, 2024

“An error in the account handler lets an attacker skip the PIN verification entirely and create a privileged user profile.” . “WebOS runs a service on ports 3000/3001 (HTTP/HTTPS/WSS) which is used by the LG ThinkQ smartphone app to control the TV. ” reads the advisory. Sweden, and Finland.

Hacking 124

Hacking Internet Internet Authentication 124

Security Affairs

FEBRUARY 23, 2024

Tangerine suffered a data breach that exposed the personal information of roughly 230,000 individuals. The security breach occurred on Sunday 18 February 2024, but Tangerine management became aware of the incident on Tuesday 20 February 2024. Access to the affected legacy database has also been closed.”continues

Data breaches 93

Data breaches Telecommunications Banking Mobile 93

Security Affairs

FEBRUARY 22, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added a ConnectWise ScreenConnect vulnerability, tracked as CVE-2024-1709 , to its Known Exploited Vulnerabilities (KEV) catalog. It would be too dangerous for this information to be readily available to threat actors. The issues impact ScreenConnect 23.9.7

Authentication 104

Authentication Cybersecurity Hacking Accountability 104

Security Affairs

MAY 13, 2024

“It is important to note that our systems are secure. We already have robust security processes in place for any account access changes, which will require you to confirm your identity using either Biometrics or Two Factor Authentication.” ” continues the notice.

Data breaches 100

Data breaches Cyber Attacks Identity Theft Banking 100

Security Affairs

MAY 17, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the following D-Link router vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog : CVE-2014-100005 Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DIR-600 router (rev. CISA orders federal agencies to fix these vulnerabilities by June 6, 2024.

Firmware 95

Firmware Authentication Passwords Hacking 95

Security Affairs

MARCH 1, 2024

The advisory provides details about the exploitation in the wild of Connect Secure and Policy Secure vulnerabilities CVE-2023-46805 , CVE-2024-21887 , and CVE-2024-21893. is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x, x and Ivanti Policy Secure. x), Policy Secure (9.x,

Authentication 78

Authentication Cyber threats VPN Government 78

Security Affairs

MARCH 10, 2024

Judge ordered NSO Group to hand over the Pegasus spyware code to WhatsApp Cybercrime BlackCat Ransomware Affiliate TTPs American Express credit cards EXPOSED in third-party vendor data breach – account numbers and names among details accessed in hack LockBit 3.0’S

Spyware 87

Spyware Data breaches Hacking Ransomware 87

Security Affairs

MAY 7, 2024

MITRE published more details on the recent security breach, including a timeline of the attack and attribution evidence. In April 2024, MITRE disclosed a security breach in one of its research and prototyping networks. On January 4, 2024, the threat actors conducted a reconnaissance on NERVE environment.

Malware 99

Malware Hacking Accountability Authentication 99

Security Affairs

FEBRUARY 27, 2024

Multiple threat actors have started exploiting the recently disclosed vulnerabilities , tracked as CVE-2024-1709 (CVSS score of 10) and CVE-2024-1708 (CVSS score of 8.4), in the ConnectWise ScreenConnect software.

Ransomware 115

Ransomware Malware Software Authentication 115

Security Affairs

JANUARY 31, 2024

Threat actors are exploiting recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) VPN devices to deliver KrustyLoader. is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x, x and Ivanti Policy Secure. The second flaw, tracked as CVE-2024-21887 (CVSS score 9.1)

VPN 91

VPN Malware Authentication Small Business 91

Thales Cloud Protection & Licensing

MAY 22, 2024

Counting Down to the EU NIS2 Directive madhav Thu, 05/23/2024 - 05:16 Our recently released 2024 Data Threat Report showed a direct correlation between compliance and cyber security outcomes. Multi-factor authentication or continuous authentication solutions. They start enforcing those measures the very next day.

Marketing 62

Marketing Data breaches Risk Authentication 62

Security Affairs

MARCH 30, 2024

In March 2024, more than 70,000,000 records from an unspecified division of AT&T were leaked onto Breached forum, vx-underground researchers reported. No information is available to indicate whether it is a 3rd party compromise, or which 'division' this data is from. million former account holders.”

Data breaches 133

Data breaches Telecommunications Cybercrime Hacking 133

Security Affairs

JANUARY 13, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

VPN 107

VPN Cybercrime Ransomware Hacking 107

Security Affairs

JANUARY 28, 2024

Pro-Ukraine hackers wiped 2 petabytes of data from Russian research center Participants earned more than $1.3M

Artificial Intelligence 95

Artificial Intelligence Hacking Malware Cyber Attacks 95

Security Affairs

JANUARY 16, 2024

Last week, software firm Ivanti reported that threat actors are exploiting two zero-day vulnerabilities (CVE-2023-46805, CVE-2024-21887) in Connect Secure (ICS) and Policy Secure to remotely execute arbitrary commands on targeted gateways. is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x,

VPN 83

VPN Authentication Small Business Telecommunications 83

Krebs on Security

MARCH 12, 2024

Last week, Apple pushed out an urgent software update to its flagship iOS platform, warning that there were at least two zero-day exploits for vulnerabilities being used in the wild (CVE-2024-23225 and CVE-2024-23296). The security updates are available in iOS 17.4 , iPadOS 17.4 , and iOS 16.7.6. Apple’s macOS Sonoma 14.4

Authentication 244

Authentication Engineering Accountability Internet 244

Security Affairs

MARCH 17, 2024

France Travail data breach impacted 43 Million people Scranton School District in Pennsylvania suffered a ransomware attack Lazarus APT group returned to Tornado Cash to launder stolen funds Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case UK Defence Secretary jet hit by an electronic warfare attack in Poland Cisco (..)

Data breaches 105

Data breaches Computers and Electronics Cybercrime Ransomware 105

Thales Cloud Protection & Licensing

APRIL 29, 2024

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders madhav Tue, 04/30/2024 - 05:32 Trust is the currency of the digital economy. The Thales 2024 Trust Index report indicates that 87% of consumers expect vendors to respect their digital rights, which leads to trusted relationships.

Risk 71

Risk Manufacturing Digital transformation Cybersecurity 71

Security Affairs

DECEMBER 29, 2023

Altogether, Meduza makes a great competitor to Azorult , Redline , Racoon , and Vidar Stealer used by cybercriminals for account takeover (ATO), online-banking theft, and financial fraud. The author behind Meduza distributed the following notification about the update on multiple underground communities and Telegram group: Attention!

Password Management 125

Password Management Cryptocurrency Passwords Authentication 125

Security Boulevard

APRIL 29, 2024

The Evolving Legislative and Compliance Landscape: A Roadmap for Business Leaders madhav Tue, 04/30/2024 - 05:32 Trust is the currency of the digital economy. The Thales 2024 Trust Index report indicates that 87% of consumers expect vendors to respect their digital rights, which leads to trusted relationships.

Risk 70

Risk Manufacturing Cybersecurity Digital transformation 70

Thales Cloud Protection & Licensing

SEPTEMBER 18, 2023

The deadline is fast approaching The PCI Data Security Standard (PCI DSS) was developed in 2008 to standardize the security controls that need to be enforced by businesses processing payment card data in order to protect cardholder data and sensitive authentication data wherever it is stored, processed, or transmitted.

Financial Services 77

Financial Services Data breaches Accountability Encryption 77

Security Affairs

APRIL 10, 2024

In March 2024, more than 70,000,000 records from an unspecified division of AT&T were leaked onto Breached forum, vx-underground researchers reported. The researchers confirmed that the leaked data is legitimate , however, it is still unclear if the information was stolen from a third-party organization linked to AT&T.

Data breaches 100

Data breaches Telecommunications Identity Theft Hacking 100

Security Affairs

FEBRUARY 28, 2024

” In February 2024, a court order allowed US authorities to neutralize the Moobot botnet, a network of hundreds of small office/home office (SOHO) routers under the control of the Russia-linked group APT28. APT28 group deployed Python scripts on compromised EdgeRouters to collect and validate stolen webmail account credentials.

Energy and Utilities 96

Energy and Utilities Government Firewall Malware 96

Security Affairs

JANUARY 19, 2024

The company updated its advisory on January 18, 2023, revealing that it is aware of exploitation “in the wild.” “As of January 18, 2024 VMware is aware of exploitation “in the wild.”” In October, VMware addressed a critical out-of-bounds write vulnerability, tracked as CVE-2023-34048 (CVSS score 9.8), that impacts vCenter Server.

Firewall 112

Firewall Accountability Malware Authentication 112

Security Affairs

FEBRUARY 26, 2024

i-SOON is a prominent contractor for various agencies of the Chinese government, including Ministry of Public Security, Ministry of State Security, and the People’s Liberation Army. An analyst based in Taiwan, known as Azaka, discovered the data leak and shared their findings on social media.

Hacking 108

Hacking Government Spyware Marketing 108

CyberSecurity Insiders

JANUARY 6, 2023

is clearly failing to protect cardholder account details effectively in today’s environment. The Council gathered input from 200+ organizations and announced the updated requirements in March 2022, which will become mandatory on March 31, 2024. Apply secure configurations to all system components. Protect stored account data.

Antivirus 138

Antivirus Retail Software Accountability 138

Security Affairs

JANUARY 3, 2024

For the tool to function, the operator must input a list of compromised email accounts to be scanned. It’s noteworthy that most of the victim accounts identified were predominantly from the U.K. and various EU countries, including but not limited to Spain, France, Poland, Italy, Germany, Switzerland, among others.

Artificial Intelligence 117

Artificial Intelligence Banking Scams Cybercrime 117

SecureList

FEBRUARY 27, 2024

Possible attack vectors Parents app The robot needs to be linked to a parent’s account before it can be used. From a security researcher’s perspective, this application is particularly interesting because it allows calling to the robot, and monitoring the child’s activities and learning progress.

Education 94

Education Manufacturing Firmware Internet 94

Centraleyes

JANUARY 21, 2024

As a global trailblazer in information security and data protection regulation, the EU continues to lead the way in comprehensive cybersecurity standards. National Implementation Deadline: Member states are mandated to incorporate the provisions of the NIS2 directive into their national laws by October 17, 2024.

Cybersecurity 110

Cybersecurity Energy and Utilities Cyber threats Risk 110

Centraleyes

DECEMBER 17, 2023

in March of 2024. ” It keeps the core security principles intact while adding a dash of flexibility to accommodate diverse technology setups. These changes are backed by extra guidance to help organizations tackle PCI audit requirements and secure account data today and in the future. On that date, PCI DSS v4.0

Passwords 52

Passwords Computers and Electronics Software Risk 52

Security Affairs

MAY 26, 2024

Fix it now! million individuals North Korea-linked Kimsuky used a new Linux backdoor in recent attacks International Press – Newsletter Cybercrime Healthcare company WebTPA discloses breach affecting 2.5

Healthcare 101

Healthcare Spyware Data breaches Banking 101

eSecurity Planet

MAY 30, 2024

2024 looks like it will only increase the number of affected individuals considering the scale of ransomware attacks from the first half of the year in the USA, Canada, and Australia. million for the first three quarters of FY 2024. million patient’s information caused by a third party tracker installed on the Kaiser patient portal.

Healthcare 123

Healthcare Cybersecurity Backups Ransomware 123