2024, Accountability, Hacking and VPN - Cyber Security Informer

Cisco warns of large-scale brute-force attacks against VPN and SSH services

Security Affairs

APRIL 16, 2024

Cisco Talos warns of large-scale brute-force attacks against a variety of targets, including VPN services, web application authentication interfaces and SSH services. Pierluigi Paganini Follow me on Twitter: @securityaffairs and Facebook and Mastodon ( SecurityAffairs – hacking, brute-force )

VPN

VPN Firewall Authentication Hacking

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Security Affairs

JANUARY 31, 2024

Threat actors are exploiting recently disclosed zero-day flaws in Ivanti Connect Secure (ICS) VPN devices to deliver KrustyLoader. The second flaw, tracked as CVE-2024-21887 (CVSS score 9.1) The flaw CVE-2023-46805 (CVSS score 8.2) is an Authentication Bypass issue that resides in the web component of Ivanti ICS 9.x,

VPN

VPN Malware Authentication Small Business

Okta warns of unprecedented scale in credential stuffing attacks on online services

Security Affairs

APRIL 28, 2024

From March 18, 2024, to April 16, 2024, Duo Security and Cisco Talos observed large-scale brute-force attacks against a variety of targets, including VPN services, web application authentication interfaces and SSH services. This method poses a risk of exposing sensitive data or enabling fraudulent activities. .”

VPN

VPN Accountability Firewall Data breaches

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

CISA orders federal agencies to disconnect Ivanti VPN instances by February 2

Security Affairs

FEBRUARY 1, 2024

The CISA’s emergency directive orders to disconnect all instances no later than 11:59PM on Friday February 2, 2024. “As soon as possible and no later than 11:59PM on Friday February 2, 2024, disconnect all instances of Ivanti Connect Secure and Ivanti Policy Secure solution products from agency networks.”

VPN

VPN Authentication Software Malware

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Security Affairs

JANUARY 16, 2024

Experts warn that recently disclosed Ivanti Connect Secure VPN and Policy Secure vulnerabilities are massively exploited in the wild. The second flaw, tracked as CVE-2024-21887 (CVSS score 9.1) CVE-2024-21887 – a command-injection vulnerability found into multiple web components with a CVSS score of 9.1″

VPN

VPN Authentication Small Business Telecommunications

Treasury Sanctions Creators of 911 S5 Proxy Botnet

Krebs on Security

MAY 28, 2024

KrebsOnSecurity identified one of the three men in a July 2022 investigation into 911 S5, which was massively hacked and then closed ten days later. 911 built its proxy network mainly by offering “free” virtual private networking (VPN) services. based startup that tracks proxy and VPN services.

Top Trending CVEs of February 2024

NopSec

FEBRUARY 28, 2024

February 2024 is off to a ripping start for security research. Ghost CMS Persistent XSS CVE-2024-23724 Researchers at Rhino have identified a persistent cross-site scripting (XSS) vulnerability that impacts Ghost CMS. Researchers recently discovered that the software was prone to authenticated remote command execution (CVE-2024-22107).

Authentication

Authentication Accountability Passwords Risk

MITRE revealed that nation-state actors breached its systems via Ivanti zero-days

Security Affairs

APRIL 19, 2024

The MITRE Corporation revealed that a nation-state actor compromised its systems in January 2024 by exploiting Ivanti VPN zero-days. In April 2024, MITRE disclosed a security breach in one of its research and prototyping networks. ” reads a post published by the organization on Medium.

Cyber Attacks

Cyber Attacks VPN Authentication Hacking

Security Affairs newsletter Round 454 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

JANUARY 13, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

VPN

VPN Cybercrime Ransomware Hacking

Security Affairs newsletter Round 466 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

APRIL 7, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches

Data breaches Small Business Hacking Malware

Five Eyes alliance warns of attacks exploiting known Ivanti Gateway flaws

Security Affairs

MARCH 1, 2024

The advisory provides details about the exploitation in the wild of Connect Secure and Policy Secure vulnerabilities CVE-2023-46805 , CVE-2024-21887 , and CVE-2024-21893. The second vulnerability, tracked as CVE-2024-21887 (CVSS score 9.1) ” reads the advisory. x and Ivanti Policy Secure. x) and Ivanti Policy Secure.

Authentication

Authentication Cyber threats VPN Government

Stark Industries Solutions: An Iron Hammer in the Cloud

Krebs on Security

MAY 23, 2024

At least a dozen patriotic Russian hacking groups have been launching DDoS attacks since the start of the war at a variety of targets seen as opposed to Moscow. But by all accounts, few attacks from those gangs have come close to the amount of firepower wielded by a pro-Russia group calling itself “ NoName057(16).”

DDOS

DDOS Internet Internet Government

3CX Breach Was a Double Supply Chain Compromise

Krebs on Security

APRIL 20, 2023

Mandiant found the earliest evidence of compromise uncovered within 3CX’s network was through the VPN using the employee’s corporate credentials, two days after the employee’s personal computer was compromised. Microsoft Corp.

Malware

Malware Software Technology Accountability

Interview With a Crypto Scam Investment Spammer

Krebs on Security

MAY 22, 2023

Social networks are constantly battling inauthentic bot accounts that send direct messages to users promoting scam cryptocurrency investment platforms. Chaput said that at one point last week the volume of bot accounts being registered for the crypto spam campaign started overwhelming the servers that handle new signups at Mastodon.social.

Scams

Scams DDOS Cryptocurrency Accountability

RSAC insights: ‘SASE’ disrupts networking by meshing security, connectivity at the services edge

The Last Watchdog

MAY 14, 2021

However, the first-generation of SD-WAN solutions were notable for one key thing: they were solely focused on improving connectivity and did little to account for security. Early SD-WAN solutions “were built only to replace an MPLS-VPN with an Internet-based VPN,” Ahuja says. Any SASE solution must: •Be identity-driven.

Firewall

Firewall Mobile VPN Digital transformation

Dashlane 2024

eSecurity Planet

JANUARY 29, 2024

Internet security best practices mandate unique credentials for each online account; doing so would be impossible without a solid password manager like Dashlane. You can also set up compromised password alerts that will proactively look for leaked passwords or vulnerable accounts across your company. You can unsubscribe at any time.

Password Management

Password Management Passwords Authentication Accountability

ThreatLabz Coverage Advisory: Ivanti’s VPN Vulnerabilities Exploited by Hackers, New Zero-Days Pose Critical Risk

Security Boulevard

FEBRUARY 2, 2024

Introduction Ivanti, an IT management and security company, has issued a warning about multiple zero-day vulnerabilities in its VPN products exploited by Chinese state-backed hackers since December 2023. Active audit of privileged accounts that were recently created or updated. to gain access to ICS VPN appliances.

VPN

VPN Risk Architecture Firewall

Top Trending CVEs of January 2024

NopSec

JANUARY 31, 2024

We open up 2024 with an interesting mix of vulnerabilities, some of which have been patched for nearly a year. We save the best for last and take a look at a serious duo of vulnerabilities that impact Invanit (Pulse Secure) SSL VPNs. Roll up your sleeves and drop into a command line as we cover the trending CVEs of January 2024.

VPN

VPN Government Risk Hacking

26 Cyber Security Stats Every User Should Be Aware Of in 2024

Security Affairs

FEBRUARY 8, 2024

26 key cyber security stats for 2024 that every user should know, from rising cyber crime rates to the impact of AI technolog y. Privacy Compliance: By 2024, 40% of privacy tools will rely on AI, highlighting its expanding role in ensuring data privacy and meeting regulations. RaaS usage is expected to increase by 25% in 2024.

Social Engineering

Social Engineering Cyber Attacks Cyber Insurance IoT

Security Affairs newsletter Round 457 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 4, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Ransomware Revenue Down As More Victims Refuse to Pay Energy giant Schneider Electric hit by Cactus ransomware attack Hundreds Of Network Operators’ Credentials Found Circulating In Dark Web Fla.

Identity Theft

Identity Theft VPN Malware Ransomware

Security Affairs newsletter Round 458 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

FEBRUARY 11, 2024

Gov imposes visa restrictions on individuals misusing Commercial Spyware HPE is investigating claims of a new security breach Experts warn of a surge of attacks targeting Ivanti SSRF flaw How to hack the Airbus NAVBLUE Flysmart+ Manager Crooks stole $25.5

Spyware

Spyware Surveillance Identity Theft DDOS

Top 5 Cyber Predictions for 2024: A CISO Perspective

Security Boulevard

JANUARY 2, 2024

Let's delve into the rewind of 2023, exploring five influential trends and threats that molded the cyberthreat landscape and are poised to resonate throughout enterprises in 2024. This hack served as a stark reminder that the supply chain remains a critical vulnerability in enterprise security. The solution?

CISO

CISO Social Engineering Architecture Ransomware

Security Affairs newsletter Round 465 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 31, 2024

Statistics for H2 2023 AT&T says personal data from 73 million current and former account holders leaked onto dark web US critical infrastructure cyberattack reporting rules inch closer to reality Follow me on Twitter: @securityaffairs and Facebook and Mastodon Pierluigi Paganini ( SecurityAffairs – hacking, newsletter)

Artificial Intelligence

Artificial Intelligence Scams Hacking Cybercrime

VulnRecap 3/4/24 – Ivanti, Ubiquiti, AppLocker Under Attack

eSecurity Planet

MARCH 4, 2024

February 26, 2024 FCKeditor Used for SEO Poisoning on Government, University Sites Type of vulnerability: Malicious URL redirect. February 27, 2024 Ransomware Gangs Target Unpatched ScreenConnect Servers Type of vulnerability: Authentication bypass and path traversal. The fix: Apply Windows patches ASAP.

IoT

IoT Internet Internet Ransomware

Cyber Security Informer

Cisco warns of large-scale brute-force attacks against VPN and SSH services

Threat actors exploit Ivanti VPN bugs to deploy KrustyLoader Malware

Webinars

Trending Sources

Okta warns of unprecedented scale in credential stuffing attacks on online services

Webinars

CISA orders federal agencies to disconnect Ivanti VPN instances by February 2

Experts warn of mass exploitation of Ivanti Connect Secure VPN flaws

Treasury Sanctions Creators of 911 S5 Proxy Botnet

Top Trending CVEs of February 2024

MITRE revealed that nation-state actors breached its systems via Ivanti zero-days

Security Affairs newsletter Round 454 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 466 by Pierluigi Paganini – INTERNATIONAL EDITION

Five Eyes alliance warns of attacks exploiting known Ivanti Gateway flaws

Stark Industries Solutions: An Iron Hammer in the Cloud

3CX Breach Was a Double Supply Chain Compromise

Interview With a Crypto Scam Investment Spammer

RSAC insights: ‘SASE’ disrupts networking by meshing security, connectivity at the services edge

Dashlane 2024

ThreatLabz Coverage Advisory: Ivanti’s VPN Vulnerabilities Exploited by Hackers, New Zero-Days Pose Critical Risk

Top Trending CVEs of January 2024

26 Cyber Security Stats Every User Should Be Aware Of in 2024

Security Affairs newsletter Round 457 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs newsletter Round 458 by Pierluigi Paganini – INTERNATIONAL EDITION

Top 5 Cyber Predictions for 2024: A CISO Perspective

Security Affairs newsletter Round 465 by Pierluigi Paganini – INTERNATIONAL EDITION

VulnRecap 3/4/24 – Ivanti, Ubiquiti, AppLocker Under Attack

Stay Connected