Security Affairs

FEBRUARY 11, 2023

US CISA added actively exploited flaws in Fortra MFT, Intel driver, and TerraMaster NAS to its Known Exploited Vulnerabilities Catalog. US CISA added actively exploited flaws in Fortra MFT, Intel driver, and TerraMaster NAS, respectively tracked as CVE-2023-0669 , CVE-2015-2291 , and CVE-2022-24990 , to its Known Exploited Vulnerabilities Catalog. The CVE-2015-2291 flaw (CVSS v3 score 7.8) is a denial-of-service (DoS) issue that resides in the Intel ethernet diagnostics driver for Windows IQVW3

Healthcare 98

Healthcare Ransomware Authentication Hacking 98

Bleeping Computer

FEBRUARY 11, 2023

Microsoft's WinGet package manager is currently having problems installing or upgrading packages after WinGet CDN's SSL/TLS certificate expired. [.

98

98

Security Affairs

FEBRUARY 11, 2023

The Clop ransomware group claims to have breached over 130 organizations exploiting the GoAnywhere MFT zero-day. The Clop ransomware group claims to have stolen sensitive data from over 130 organizations by exploiting a zero-day vulnerability ( CVE-2023-0669 ) in Fortra’s GoAnywhere MFT secure file transfer tool, BleepingComputer reported. Fortra immediately addressed the flaw with the release of emergency security patch and urged customers to install it.

Ransomware 98

Ransomware Hacking Internet Internet 98

WIRED Threat Level

FEBRUARY 11, 2023

Plus: Deepfake disinformation spotted in the wild, Android privacy problems in China, Reddit gets phished, and more.

Phishing 98

Phishing Hacking 98

Speaker: Erroll Amacker

Automation is transforming finance but without strong financial oversight it can introduce more risk than reward. From missed discrepancies to strained vendor relationships, accounts payable automation needs a human touch to deliver lasting value. This session is your playbook to get automation right. We’ll explore how to balance speed with control, boost decision-making through human-machine collaboration, and unlock ROI with fewer errors, stronger fraud prevention, and smoother operations.

Risk

Bleeping Computer

FEBRUARY 11, 2023

Microsoft will soon add native support to Windows 11 for controlling the RGB lighting on computer peripherals, like mice and gaming keyboards. [.

98

98

The Hacker News

FEBRUARY 11, 2023

Suspected Russian threat actors have been targeting Eastern European users in the crypto industry with fake job opportunities as bait to install information-stealing malware on compromised hosts.

Cryptocurrency 96

Cryptocurrency Malware 96

The Hacker News

FEBRUARY 11, 2023

After the U.S. Cybersecurity and Infrastructure Security Agency (CISA) released a decryptor for affected victims to recover from ESXiArgs ransomware attacks, the threat actors have bounced back with an updated version that encrypts more data.

Ransomware 95

Ransomware System Administration Encryption Cybersecurity 95

Security Boulevard

FEBRUARY 11, 2023

Our thanks to USENIX for publishing their Presenter’s outstanding USENIX Security ’22 Conference content on the organization’s’ YouTube channel. Permalink The post USENIX Security ’22 – Shubham Jain, Ana-Maria Crețu, Yves-Alexandre de Montjoye – ‘Adversarial Detection Avoidance Attacks: Evaluating The Robustness Of Perceptual Hashing-Based Client-Side Scanning’ appeared first on Security Boulevard.

Education 52

Education InfoSec Cybersecurity 52

Security Boulevard

FEBRUARY 11, 2023

Argo CD is a popular Continuous Deployment tool that enables DevOps teams to manage their applications across multiple environments. However, in the past two weeks, three critical vulnerabilities have been detected in the tool, exposing sensitive information and compromising the security of the system. In this article, we will discuss the three vulnerabilities and their [.

52

52