Responsible Cyber

NOVEMBER 23, 2024

Overview of Vendor Breaches in 2024 In 2024, the cybersecurity landscape has faced an alarming rise in vendor-related breaches, underscoring the vulnerabilities associated with third-party service providers. A common characteristic among the vendor breaches reported in 2024 is the exploitation of weak security protocols.

Risk 81

Risk Healthcare Education Cybersecurity 81

Security Affairs

OCTOBER 23, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the Fortinet FortiManager missing authentication vulnerability CVE-2024-47575 (CVSS v4 score: 9.8) A missing authentication flaw in FortiManager and FortiManager Cloud versions allows attackers to execute arbitrary code or commands through specially crafted requests.

Authentication 127

Authentication Malware Risk Cybersecurity 127

Security Affairs

NOVEMBER 2, 2024

Hackers are exploiting two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957, in PTZOptics cameras. Threat actors are attempting to exploit two zero-day vulnerabilities, tracked as CVE-2024-8956 and CVE-2024-8957 , in PTZOptics pan-tilt-zoom (PTZ) live streaming cameras, GretNoise researchers warn.

Firmware 123

Firmware Manufacturing IoT Healthcare 123

Security Affairs

FEBRUARY 19, 2025

Palo Alto Networks warns that threat actors are chaining the vulnerability CVE-2025-0111 with two other vulnerabilities, tracked as CVE-2025-0108 with CVE-2024-9474 , to compromise PAN-OS firewalls. Attackers are chaining them with the CVE-2025-0108 with CVE-2024-9474 issues. ” reads the updated bulletin published by the vendor.

Firewall 107

Firewall Authentication Architecture Internet 107

Krebs on Security

FEBRUARY 26, 2025

At the end of 2023, malicious hackers learned that many companies had uploaded sensitive customer records to accounts at the cloud data storage service Snowflake that were protected with little more than a username and password (no multi-factor authentication needed). government military which country will not hand me over” -“U.S.

Hacking 259

Hacking Government Identity Theft Accountability 259

Security Affairs

NOVEMBER 19, 2024

CVE-2024-0012 is a vulnerability in Palo Alto Networks PAN-OS that allows unauthenticated attackers with network access to the management web interface to bypass authentication and gain administrator privileges. CISA orders federal agencies to fix this vulnerability by December 5, 2024. The issue affects PAN-OS versions 10.2,

Firewall 110

Firewall Authentication Risk Hacking 110

Security Affairs

DECEMBER 6, 2024

Cybersecurity and Infrastructure Security Agency (CISA)added the CyberPanelflaw CVE-2024-51378 (CVSS score: 10.0) Remote attackers could bypass authentication and execute arbitrary commands by exploiting a flaw in secMiddleware , which only validates POST requests. . to its Known Exploited Vulnerabilities (KEV) catalog.

DNS 110

DNS Authentication Ransomware Hacking 110

Security Affairs

OCTOBER 23, 2024

Cybersecurity and Infrastructure Security Agency (CISA) added the Microsoft SharePoint Deserialization Vulnerability CVE-2024-38094 (CVSS v4 score: 7.2) “An authenticated attacker with Site Owner permissions can use the vulnerability to inject arbitrary code and execute this code in the context of SharePoint Server.”

Encryption 123

Encryption Authentication Cybersecurity Accountability 123

Security Affairs

NOVEMBER 15, 2024

Below are the descriptions of the flaws addressed by the security firm: CVE-2024-9463 (CVSS 9.9) – A command injection vulnerability in Palo Alto Networks’ Expedition allows unauthenticated attackers to execute OS commands as root, exposing usernames, passwords, configurations, and API keys of PAN-OS firewalls.

Firewall 110

Firewall Passwords Authentication Phishing 110

Security Affairs

NOVEMBER 5, 2024

These cameras, which feature an embedded web server allowing for direct access by web browser, are reportedly deployed in environments where reliability and privacy are crucial” CVE-2024-8956 (CVSS score of 9.1) CVE-2024-8957 (CVSS score of CVSS 7.2) CISA orders federal agencies to fix this vulnerability by November 25, 2024.

Firmware 127

Firmware Manufacturing Authentication IoT 127

Security Affairs

APRIL 17, 2025

A remote authenticated attacker can exploit the flaw to inject arbitrary commands as a ‘nobody’ user, which could potentially lead to arbitrary code execution. The vulnerability is an OS Command Injection Vulnerability in the SMA100 management interface. ” reads the advisory. ” The vulnerability impacts 9.0.0.10-28sv

Authentication 110

Authentication Hacking Cybersecurity Risk 110

The Last Watchdog

DECEMBER 12, 2023

Related: Adopting an assume-breach mindset With that in mind, Last Watchdog invited the cybersecurity experts we’ve worked with this past year for their perspectives on two questions that all company leaders should have top of mind: •What should be my biggest takeaway from 2023, with respect to mitigating cyber risks at my organization?

Cybersecurity 258

Cybersecurity Social Engineering Cyber threats Software 258

Thales Cloud Protection & Licensing

NOVEMBER 26, 2024

Protecting Retailers Against Cyber Risks on Black Friday and Cyber Monday josh.pearson@t… Tue, 11/26/2024 - 08:01 As Black Friday and Cyber Monday loom, the stakes for retailers extend far beyond enticing deals and record sales. With retail sales during 2024 set to grow to between $5.23 trillion and $5.28 trillion and $5.28

Retail 71

Retail Cyber Risk Risk DDOS 71

The Last Watchdog

DECEMBER 18, 2024

To wrap up our 2024 year-end roundtable, we turn our attention to new technologies and trends that are emerging to help bridge the gaps. Organizations face rising risks of AI-driven social engineering and personal device breaches. This frees teams for strategic efforts like risk management.

Risk 173

Risk Threat Detection Technology Phishing 173

Malwarebytes

OCTOBER 29, 2024

CVE-2024-44274 : a vulnerability in Accessibility that could allow an attacker with physical access to a locked device to view sensitive user information. with improved authentication. CVE-2024-44282 : a vulnerability in Foundation where parsing a file could lead to disclosure of user information. and iPadOS 17.7.1,

Mobile 129

Mobile Software Authentication Risk 129

Security Affairs

NOVEMBER 26, 2024

Attackers can exploit the SSL VPN gateway by accessing the filesystem via an HTTP header flags attribute and a vulnerable URL without authentication. An attacker can browse the filesystem on the SSL VPN gateway using a flags attribute in an HTTP header without authentication. ” reads the advisory. ” reads the advisory.

VPN 112

VPN Authentication Hacking Risk 112

Security Affairs

FEBRUARY 26, 2025

The two vulnerabilities are: CVE-2023-34192 Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability CVE-2024-49035 Microsoft Partner Center Improper Access Control Vulnerability The first vulnerability, CVE-2023-34192 (CVSS score: 9.0), is a cross-site scripting (XSS) issue in Synacor ZCS.

Authentication 103

Authentication Hacking Cybersecurity Risk 103

The Last Watchdog

AUGUST 12, 2024

LAS VEGAS – Here’s what I discovered last week here at Black Hat USA 2024 : GenAI is very much in the mix as a potent X-factor in cybersecurity. When you add AI into the mix, it further intensifies the challenge of managing data sprawl and the associated risks.” Those are my big takeaways from Black Hat USA 2024. Roger that.

Software 290

Software Technology Mobile Cybersecurity 290

The Last Watchdog

DECEMBER 13, 2023

We drilled down on a few significant developments expected to play out in 2024 and beyond. Each time we use a mobile app or website-hosted service, digital certificates and the Public Key Infrastructure ( PKI ) come into play — to assure authentication and encrypt sensitive data transfers. We met at DigiCert Trust Summit 2023.

Encryption 311

Encryption Technology CISO IoT 311

Security Affairs

FEBRUARY 15, 2025

The Shadowserver Foundation researchers observed several CVE-2025-0108 attempts since 4 am UTC 2024-02-13 in their honeypots. An unauthenticated attacker on the network couple exploit the vulnerability to bypass authentication and invoke certain PHP scripts. “GreyNoise can confirm active exploitation of CVE-2025-0108.”

Firewall 104

Firewall Authentication Architecture Risk 104

Security Affairs

FEBRUARY 24, 2025

A botnet of 130,000+ devices is attacking Microsoft 365 accounts via password-spraying, bypassing MFA by exploiting basic authentication. The attackers targeted accounts protected with basic authentication bypassing multi-factor authentication. Despite Microsoft phasing it out, it remains an active security risk.

Passwords 122

Passwords Accountability Authentication Malware 122

Security Affairs

JANUARY 8, 2025

SonicWall warns customers to address an authentication bypass vulnerability in its firewall’s SonicOS that is “susceptible to actual exploitation.” Again, this upgrade addresses a high vulnerability for SSL VPN users that should be considered at imminent risk of exploitation and updated immediately.

Firewall 116

Firewall Firmware VPN Authentication 116

Thales Cloud Protection & Licensing

OCTOBER 24, 2024

New Cybersecurity Rules for Financial Institutions in New York State Take Effect November 1, 2024 madhav Fri, 10/25/2024 - 06:09 The next major deadline for compliance with the updated cybersecurity rules from the New York State Department of Financial Services (NYDFS) is November 1, 2024.

Financial Services 62

Financial Services Cybersecurity CISO Backups 62

Security Affairs

OCTOBER 21, 2024

The Internet Archive was breached again, attackers hacked its Zendesk email support platform through stolen GitLab authentication tokens. Poor cyber hygiene increases the risk of further data breaches and could undermine user trust. Hunt also verified the authenticity of the information included in the stolen archive.

Internet 130

Internet Internet Data breaches Authentication 130

SecureList

DECEMBER 9, 2024

This incident serves as a stark reminder of the critical risks posed by global IT disruptions and supply chain weaknesses. As part of Kaspersky Security Bulletin 2024, our “Story of the Year” centers on these pressing issues. Overview of 2024’s supply chain disruptions CrowdStrike Linux outage What happened?

Internet 111

Internet Internet Risk Social Engineering 111

Thales Cloud Protection & Licensing

OCTOBER 14, 2024

2024 Thales Global Data Threat Report: Trends in Financial Services madhav Tue, 10/15/2024 - 05:17 Financial services (FinServ) firms are key players in the global economy. The report also noted that the percentage of businesses experiencing breaches in the last year has dropped significantly, from 29% in 2021 to 14% in 2024.

Financial Services 62

Financial Services Threat Reports Authentication Banking 62

Security Affairs

OCTOBER 25, 2024

The vulnerability CVE-2024-20481 (CVSS score of 5.8) An attacker could exploit this vulnerability by sending a large number of VPN authentication requests to an affected device. Now the company confirmed that the flaw CVE-2024-20481 is actively exploited in the wild. This vulnerability is due to resource exhaustion.

VPN 114

VPN Firewall Technology Passwords 114

Tech Republic Security

SEPTEMBER 24, 2024

Implementing multi-factor authentication, supplier risk-management frameworks, and staff security training could help to reduce data breaches.

Data breaches 174

Data breaches Authentication Risk Cyber Attacks 174

The Last Watchdog

MAY 14, 2025

” Skill Dive is INE Security’s risk-free technical environment featuring exclusive labs not found in learning paths and courses. . “Our Skill Dive platform gives practitioners hands-on experience with real vulnerabilities in contained environments, cutting incident response times when these same issues hit production.

Authentication 130

Authentication Cybersecurity Risk Media 130

Security Affairs

FEBRUARY 15, 2025

The second vulnerability added to the CISA KEV catalog is CVE-2024-41710, which affects Mitel 6800, 6900, and 6900w series SIP phones, including the 6970 Conference Unit through R6.4.0.HF1 In mid-July 2024, Miteladdressedthe vulnerability with the release offirmware updates. HF1 (R6.4.0.136). reads the report published by Akamai.

Spyware 109

Spyware DDOS Hacking Authentication 109

Security Affairs

MARCH 18, 2025

The vulnerability is an authentication bypass issue that could allow a remote attacker to gain super-admin privileges by making maliciously crafted CSF proxy requests. An Authentication Bypass Using an Alternate Path or Channel vulnerability [CWE-288] affecting FortiOS 7.0.0 through 7.0.16 and FortiProxy 7.2.0 through 7.2.12, 7.0.0

Authentication 117

Authentication Ransomware Firewall Hacking 117

Malwarebytes

NOVEMBER 4, 2024

The City of Columbus was attacked by a ransomware group on July 18, 2024. On September 12, 2024, the city of Columbus issued a notice of breach that was sent to its clients. Enable two-factor authentication (2FA). Some forms of two-factor authentication (2FA) can be phished just as easily as a password.

Data breaches 117

Data breaches Passwords Ransomware Phishing 117

Centraleyes

DECEMBER 16, 2024

Tools like ChatGPT and Bard, powered by large language models, showcase how generative AI transforms business processesbut they also pose new risks. In a recent survey, 93% of respondents admitted to knowingly increasing their companys cybersecurity risks. In 2024, human-centric security strategies will become increasingly important.

Cybersecurity 98

Cybersecurity Insurance Cyber Insurance Technology 98

Security Affairs

NOVEMBER 3, 2024

Chinese threat actors use Quad7 botnet in password-spray attacks FBI arrested former Disney World employee for hacking computer menus and mislabeling allergy info Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide PTZOptics cameras zero-days actively exploited in the wild New LightSpy spyware (..)

Cryptocurrency 110

Cryptocurrency Hacking Phishing Cyber Attacks 110

eSecurity Planet

NOVEMBER 6, 2024

In this video, our expert delves into what cookies are and their function in web browsing, explores the techniques hackers use to steal them — such as session hijacking and cross-site scripting (XSS) — and shares effective strategies and tools to protect your cookies and personal data in 2024. How Do You Prevent It?

Identity Theft 109

Identity Theft Passwords Phishing Accountability 109

The Last Watchdog

SEPTEMBER 24, 2024

The data began leaking in April 2024, and by summer, it was being sold on the dark web for $3.5 This drives public awareness of the risks associated with identity theft. NPD reported the exposure of over 2.7 billion records. The breach was initially caused by a third-party malicious actor who infiltrated NPD’s systems in December 2023.

Authentication 216

Authentication Identity Theft Banking Data breaches 216

Security Affairs

JANUARY 31, 2024

Cybersecurity and Infrastructure Security Agency (CISA) adds Apple improper authentication bug to its Known Exploited Vulnerabilities catalog. Cybersecurity and Infrastructure Security Agency (CISA) added an Apple improper authentication bug, tracked as CVE-2022-48618 , to its Known Exploited Vulnerabilities (KEV) catalog.

Authentication 135

Authentication Risk Cybersecurity Information Security 135