Security Affairs

JANUARY 12, 2024

Researchers published a proof-of-concept (PoC) code for the recently disclosed critical flaw CVE-2023-51467 in the Apache OfBiz. Researchers from cybersecurity firm VulnCheck have created a proof-of-concept (PoC) exploit code for the recently disclosed critical flaw CVE-2023-51467 (CVSS score: 9.8) in the Apache OfBiz.

Authentication 133

Authentication Software Passwords Hacking 133

Krebs on Security

APRIL 27, 2023

A researcher found DC Health had five Salesforce Community sites exposing data. The guest access feature allows unauthenticated users to view specific content and resources without needing to log in. Salesforce Community is a widely-used cloud-based software product that makes it easy for organizations to quickly create websites.

Banking 278

Banking Government Information Security Authentication 278

Security Affairs

NOVEMBER 28, 2022

Amazon Web Services (AWS) fixed a cross-tenant vulnerability that could have allowed attackers to gain unauthorized access to resources. Amazon Web Services (AWS) has addressed a cross-tenant confused deputy problem in its platform that could have allowed threat actors to gain unauthorized access to resources.

Accountability 142

Accountability Hacking Information Security 142

Malwarebytes

APRIL 1, 2024

Researchers at HUMAN’s Satori Threat Intelligence have discovered a disturbing number of VPN apps that turn users’ devices into proxies for cybercriminals without their knowledge, as part of a camapign called PROXYLIB. The researchers included a list of applications they uncovered as part of PROXYLIB.

VPN 132

VPN Mobile Advertising Marketing 132

Anton on Security

JANUARY 3, 2023

This is my completely informal, uncertified, unreviewed and otherwise completely unofficial blog inspired by my reading of our fifth Threat Horizons Report ( full version ) that we just released ( the official blog for #1 report , my unofficial blogs for #2 , #3 and #4 ). take a look at this new resource !

Cybersecurity 185

Cybersecurity Backups DDOS Accountability 185

CSO Magazine

APRIL 12, 2022

Almost all cloud users, roles, services, and resources grant excessive permissions leaving organizations vulnerable to attack expansion in the event of compromise, a new report from Palo Alto’s Unit 42 has revealed. To read this article in full, please click here

Government 143

Government 143

Security Affairs

FEBRUARY 13, 2024

Maintainers behind the Ransomfeed platform have released Q3 Report 2023 including activities of 185 criminal groups operating worldwide. This report meticulously scrutinizes the geographical localization of these attacks, as well as the industries predominantly targeted. Let us now delve into the detailed breakdown of the days.

Ransomware 115

Ransomware Data collection Hacking Cybersecurity 115

Security Affairs

APRIL 21, 2024

Researchers from Kaspersky discovered the DuneQuixote campaign in February 2024, but they believe the activity may have been active since 2023. Additionally, it incorporates anti-analysis measures and checks to prevent connections to C2 resources. ” concludes the report.

Malware 107

Malware Software Hacking Government 107

Security Affairs

FEBRUARY 14, 2024

The researchers observed the following APT groups using artificial intelligence (AI) and large language models (LLMs) in various phases of their attack chain: China-linked APT groups Charcoal Typhoon and Salmon Typhoon; Iran-linked APT group Crimson Sandstorm ; North Korea-linked APT group Emerald Sleet ; Russia-linked APT group Forest Blizzard.

Artificial Intelligence 118

Artificial Intelligence Social Engineering Phishing Engineering 118

Duo's Security Blog

APRIL 8, 2024

Then, the attacker enrolls a new device to bypass MFA and gain unlimited access to an organization’s resources and data. Mike Moran, Duo data scientist, threat researcher, and co-contributor of this MITRE ATT&CK® technique wants customers to understand how important it is to be aware of and protect against this type of attack.

Authentication 111

Authentication Accountability Risk Phishing 111

Security Affairs

MAY 31, 2022

Cyber Research Labs reported a rise in ransomware attacks in the second quarter of 2022, small states are more exposed to these attacks. Cyble researchers warn that cybercriminal organizations have changed tactics, switching from businesses to small states threatening to subvert government apparatus. ” continues Cyble. .

Government 144

Government Ransomware Cybercrime Banking 144

Schneier on Security

JANUARY 3, 2023

A group of Chinese researchers have just published a paper claiming that they can—although they have not yet done so—break 2048-bit RSA. What the researchers have done is combine classical lattice reduction factoring techniques with a quantum approximate optimization algorithm. This is something to take seriously.

Encryption 363

Encryption Government Information Security 363

Security Affairs

APRIL 12, 2024

Proofpoint researchers observed a threat actor, tracked as TA547, targeting German organizations with an email campaign delivering the Rhadamanthys malware. ” reads the report published by Proofpoint. Like LLM-generated social engineering lures, threat actors may incorporate these resources into an overall campaign.”

Malware 113

Malware Social Engineering Retail Engineering 113

Krebs on Security

JULY 21, 2023

For example, 88 percent listed a Director of Human Resources (or “Chief People Officer”), and 37 out of 100 included a Chief Marketing Officer. The CSO or CISO position traditionally has reported to an executive in a technical role, such as the CTO or CIO. Image: IANS Research.

CSO 201

CSO CISO Insurance Risk 201

Security Affairs

JANUARY 22, 2024

Resecurity researchers warn of massive leak of stolen Thai personally identifiable information (PII) on the dark web by cybercriminals. There are reports of cybercriminals, one known in the shadowy corners of the Dark Web as Naraka, circulating large amounts of stolen personal identifiable information (PII) of Thai citizens.

Data breaches 123

Data breaches Government Technology Cybercrime 123

CyberSecurity Insiders

JANUARY 9, 2023

Second, the tasks required to ascertain control and policy compliance details, resolve violations and provide adherence proof are resource intensive and error prone. Cloud resource monitoring and policy enforcement is more fractured. Less controlled use of cloud resources introducing new exposures.

Policy Compliance 142

Policy Compliance Technology Digital transformation Encryption 142

Security Affairs

JANUARY 30, 2024

BleepingComputer first reported the attack that hit the Sustainability Business division of the company on January 17th. The attack impacted the services of Schneider Electric’s Resource Advisor cloud platform causing outages. BleepingComputer contacted Schneider Electric which confirmed the data breach.

Ransomware 129

Ransomware Hacking Data breaches Digital transformation 129

Security Affairs

DECEMBER 9, 2023

A team of researchers from the Singapore University of Technology and Design discovered a set of security vulnerabilities in the firmware implementation of 5G mobile network modems from major chipset vendors. The researchers noticed that numerous 5G commercial products, such as smartphones, CPE routers, and USB modems, may be impacted. .

Firmware 118

Firmware Mobile Software Hacking 118

CSO Magazine

MAY 24, 2023

These hijacked resources enable the attackers to launch email and SMS spam campaigns. The main goal of this Python-based script is to harvest credentials stored in configuration files for email providers, cloud service providers, server management systems, databases, and payment systems. To read this article in full, please click here

Authentication 106

Authentication Malware 106

Security Affairs

NOVEMBER 18, 2023

Check Point researchers observed Russia-linked Gamaredon spreading the worm called LitterDrifter via USB in attacks against Ukraine. “LitterDrifter seems to be an evolution of a previously reported activity tying Gamaredon group to a propagating USB Powershell worm.” ” continues the report.

Malware 121

Malware Backups Media Hacking 121

Security Affairs

DECEMBER 13, 2023

Researchers linked a sophisticated botnet, tracked as KV-Botnet, to the operation of the China-linked threat actor Volt Typhoon. In early July and August of 2022, the researchers noticed several Cisco RV320s , DrayTek Vigor routers , and NETGEAR ProSAFEs that were part of the botnet. ” concludes the report.

Small Business 120

Small Business Technology VPN Manufacturing 120

Security Affairs

JANUARY 31, 2024

In early January 2024, software firm Ivanti reported that threat actors were exploiting two zero-day vulnerabilities ( CVE-2023-46805, CVE-2024-21887 ) in Connect Secure (ICS) and Policy Secure to remotely execute arbitrary commands on targeted gateways. ” reads the report published by Synacktiv. ” concludes the report.

VPN 103

VPN Malware Authentication Small Business 103

Security Affairs

FEBRUARY 19, 2024

In January, BleepingComputer first reported the attack that hit the Sustainability Business division of the company on January 17th. The attack impacted the services of Schneider Electric’s Resource Advisor cloud platform causing outages. At the time, BleepingComputer contacted Schneider Electric which confirmed the data breach.

Ransomware 114

Ransomware Digital transformation Retail Antivirus 114

Security Affairs

NOVEMBER 3, 2023

Researchers disclosed four zero-day flaws in Microsoft Exchange that can be remotely exploited to execute arbitrary code or disclose sensitive information on vulnerable installs. The issue results from the lack of proper validation of a URI prior to accessing resources. Authentication is required to exploit this vulnerability.

Authentication 128

Authentication Hacking Information Security 128

Veracode Security

MARCH 18, 2024

Understanding Security Debt Security debt is a major and growing problem in software development with significant implications for application security, according to Veracode's State of Software Security 2024 Report. Security debt refers to software flaws that remain unfixed for a year or more.

Software 52

Software Risk 52

CSO Magazine

MARCH 7, 2022

Researchers at the Massachusetts Institute of Technology have discovered a way to foil memory-timing side-channel attacks that's more efficient than other methods. According to a report by the researchers, the attacks are enabled by shared computer resources. To read this article in full, please click here

Engineering 76

Engineering Passwords Technology 76

CyberSecurity Insiders

OCTOBER 12, 2021

And the results were released by a survey carried out by research firm Comparitech. Well, researchers say that the focus of those spreading file encrypting malware might shift to large companies for whom data means life blood and who can shell out millions to keep their reputation in business intact.

Ransomware 126

Ransomware Data breaches Encryption Malware 126

CSO Magazine

MAY 8, 2023

The ultimate goal of Identity Security is to provide secure access to every identity for any resource or environment, from any location, using any device. Yet ever-evolving technology and dynamic threats can make executing a comprehensive Identity Security program a complex undertaking.

Technology 86

Technology 86

Security Affairs

MAY 17, 2023

Searchlight Cyber researchers warn of threat actors that are offering on the dark web access to energy sector organizations. Dark web intelligence firm Searchlight Cyber published a report that analyzes how threat actors in the dark web prepare their malicious operations against energy organizations.

Energy and Utilities 97

Energy and Utilities Cybercrime Data collection VPN 97

CyberSecurity Insiders

NOVEMBER 16, 2022

Hence, companies can use the resources to train, deploy and scale as per their AI model needs on Azure Infrastructure powered by Nvidia’s AI Enterprise Software suit. Since reporting challenges make security and license management compulsive, redundant risks and costs are also being observed, says Microsoft 365 Security Benchmark Report.

Artificial Intelligence 116

Artificial Intelligence Software Engineering Passwords 116

SecureWorld News

JANUARY 29, 2024

While tech policy experts see the transparency requirements as a positive step, cybersecurity professionals have mixed opinions on whether the self-reporting rules will effectively mitigate dangers from irresponsible AI development. "It It is difficult to see how much self-reporting will protect U.S.

Artificial Intelligence 95

Artificial Intelligence Data privacy Government Healthcare 95

Security Affairs

OCTOBER 18, 2023

Experts reported that the vulnerability CVE-2023-4966 in Citrix NetScaler ADC/Gateway devices has been exploited in attacks since late August. ” reported Citrix. ” reported Citrix. ” Researchers from Mandiant observed the exploitation of this vulnerability as a zero-day since late August.

Authentication 107

Authentication VPN Hacking Government 107

Security Affairs

NOVEMBER 24, 2023

Researchers warn of publicly exposed Kubernetes configuration secrets that could pose a threat of supply chain attack for organizations. Aqua Nautilus researchers warn of publicly exposed Kubernetes configuration secrets that put organizations at risk of supply chain attacks. ” continues the report.

Passwords 120

Passwords Data breaches Authentication Hacking 120

CSO Magazine

SEPTEMBER 27, 2022

The vulnerability, tracked as CVE-2022-3540, was privately reported to Zoho in June by a security researcher identified as Vinicius and was fixed later that same month.

Cybersecurity 96

Cybersecurity 96

McAfee

OCTOBER 3, 2021

The increasing prevalence of ransomware tops the findings of the McAfee Enterprise Advanced Threat Research Report: October 2021 released today. While ransomware continues to hold cybersecurity headlines hostage, so much has changed since our last threat report. MITRE ATT&CK Techniques – Top techniques used in Q2 2021.

Threat Reports 98

Threat Reports Ransomware Healthcare Government 98

Cisco Security

JANUARY 11, 2023

We’re excited today to share this new, jointly-published research report Business Benefits of Investing in Data Privacy Management Programs. out of 5 with respect to implementing the seven elements of organizational accountability as described in the report. And CIPL members had an average score of 4.13

Data privacy 140

Data privacy Accountability Risk 140

Security Affairs

NOVEMBER 3, 2023

Kaspersky researchers are warning of multiple WhatsApp mods that embed a spyware module dubbed CanesSpy. Kaspersky researchers discovered multiple WhatsApp mods that embed a spyware module dubbed CanesSpy. ” reads the report published by Kaspersky. ” concludes the report.

Spyware 117

Spyware Malware Mobile Advertising 117