The Hacker News
New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks
New Wi-Fi vulnerability discovered! CVE-2023-52424, dubbed "SSID Confusion attack," affects all operating systems and Wi-Fi clients.
The Hacker News
New Wi-Fi vulnerability discovered! CVE-2023-52424, dubbed "SSID Confusion attack," affects all operating systems and Wi-Fi clients.
The Record
The U.K. government has warned that the accounts of political candidates and election officials are “almost certainly attractive targets for cyber actors looking to carry out espionage operations.”
The Record
State-linked hackers from Russia, China, Iran and North Korea are setting their sights set their sights on NGOs, think tanks, human rights activists and journalists, the advisory warned.
The Record
Okta Chief Security Officer David Bradbury discusses lessons from the incident, how nation-state threats are evolving, and how AI is already influencing identity-based attacks.
Bleeping Computer
A massive network of 75,000 fake online shops called 'BogusBazaar' tricked over 850,000 people in the US and Europe into making purchases, allowing the criminals to steal credit card information and attempt to process an estimated $50 million in fake orders.
SecurityWeek
Hundreds of companies are showcasing their products and services this week at the 2024 edition of the RSA Conference in San Francisco.
SecurityWeek
Thirty-three cybersecurity-related merger and acquisition (M&A) transactions were announced by companies in April 2024.
Bleeping Computer
The Iranian state-backed threat actor tracked as APT42 is employing social engineering attacks, including posing as journalists, to breach corporate networks and cloud environments of Western and Middle Eastern targets.
The Hacker News
Czechia and Germany reveal they were targets of a massive cyber espionage campaign by Russia-linked APT28 hacker group.
The Hacker News
Attention SOHO router users! A new malware called Cuttlefish is on the prowl, stealthily monitoring your traffic and stealing authentication data.
The Record
Cuttlefish infiltrates routers and other networking hardware with the goal of quietly stealing information, Black Lotus Labs says. Most known targets are in Turkey.
Security Affairs
Cuttlefish malware targets enterprise-grade and small office/home office (SOHO) routers to harvest public cloud authentication data.
SecurityWeek
Malware platform roaming around enterprise SOHO routers capable of covertly harvesting public cloud authentication data from internet traffic.
Bleeping Computer
A new malware named 'Cuttlefish' has been spotted infecting enterprise-grade and small office/home office (SOHO) routers to monitor data that passes through them and steal authentication information.
Bleeping Computer
Latrodectus malware is now being distributed in phishing campaigns using Microsoft Azure and Cloudflare lures to appear legitimate while making it harder for email security platforms to detect the emails as malicious.
CSO
The new offering is aimed at protecting against prompt injection, data leakage, and training data poisoning in LLM systems.
The Cyber Express
Okta reported an "unprecedented scale" of credential stuffing attacks targeting its identity and access management solutions, resulting in the breach
Security Affairs
A hacking campaign targeted Ukraine exploiting a seven-year-old vulnerability in Microsoft Office to deliver Cobalt Strike.
SC Magazine
A new CryptBot variant targets password managers and authentication apps in the new campaign.
Security Affairs
Government agencies revealed that Akira ransomware has breached over 250 entities worldwide and received over $42 million in ransom payments.
SecurityWeek
Akira ransomware has hit over 250 organizations worldwide and received over $42 million in ransom payments.
Infosecurity News
A joint advisory from Europol and US and Dutch government agencies estimated that Akira made around $42m in ransomware proceeds from March 2023 to January 2024
Cyber Security News
Sandbox Tools for Phishing Analysis 2024: 1. Interactivity 2. RSPAMD Integration 3. Suricata Rule Engine 4. MITRE ATT&CK 5.Matrix 6. Phishing Tag.
Cyber Security News
The weekly cybersecurity news wrap-up provides readers with the latest information on emerging risks, vulnerabilities, ways to reduce them, and harmful schemes to help make defensive measures proactive.
Cyber Security News
A recent phishing campaign targeting Latin America utilized emails with ZIP attachments containing an HTML file disguised as an invoice using
The Hacker News
Latin America targeted in new phishing attack. Emails contain malicious HTML files disguised as invoices.
Bleeping Computer
Newly discovered HTTP/2 protocol vulnerabilities called "CONTINUATION Flood" can lead to denial of service (DoS) attacks, crashing web servers with a single TCP connection in some implementations.
SecurityWeek
New HTTP/2 DoS method named Continuation Flood can pose a greater risk than Rapid Reset, which has been used for record-breaking attacks.
CyberNews
The OWASP foundation for the security of software, apologized to thousands of its members this past weekend after revealing the non-profit was hacked last month.
SecurityWeek
Twenty-seven cybersecurity-related merger and acquisition (M&A) deals were announced in March 2024, same as in February.
SecurityWeek
The OWASP Foundation says a wiki misconfiguration exposed resumes filed over a decade ago by aspiring members.
Cyber Security News
This sophisticated service enables cybercriminals to launch phishing campaigns across over 20,000 domains.
Cyber Security News
The Open Web Application Security Project (OWASP) Foundation disclosed a significant data breach. The breach, which was discovered in late February 2024, was caused by a misconfiguration of the foundation's old Wiki web server.
The Record
The software security nonprofit Open Worldwide Application Security Project (OWASP) said a possible data breach may affect anyone who was a member of the organization from 2006 to 2014.
Security Affairs
The OWASP Foundation disclosed a data breach that impacted some members due to a misconfiguration of an old Wiki web server.
Bleeping Computer
The OWASP Foundation has disclosed a data breach after some members' resumes were exposed online due to a misconfiguration of its old Wiki web server.
The DFIR Report
Key Takeaways We provide a range of services, one of which is our Threat Feed, specializing in monitoring Command and Control frameworks like Cobalt Strike, Metasploit, Sliver, Viper, Mythic, Havoc, … Read More
The Hacker News
Beware of Darcula, a Phishing-as-a-Service platform targeting 100+ countries with over 20,000 fake domains.
Cyber Security News
A new threat has emerged, targeting unsuspecting iPhone users through the seemingly secure iMefofferssage platform.
Bleeping Computer
A new phishing-as-a-service (PhaaS) named 'Darcula' uses 20,000 domains to spoof brands and steal credentials from Android and iPhone users in more than 100 countries.
DarkReading
Threat actors are widely adopting the fast-growing, low-cost phishing-as-a-service (PhaaS) platform, which is sold via Telegram.
CyberNews
That would be 9.3 million emails per day, 6,500 per minute, and 108 per second.
DarkReading
Pervasive and inexpensive phishing kit encompasses hundreds of templates targeting Kuwait Post, Etisalat, Jordan Post, Saudi Post. Australia Post, Singapore Post, and postal services in South Africa, Nigeria, Morocco, and more.
SecurityWeek
Disputed Ray AI framework vulnerability exploited to steal information and deploy cryptominers on hundreds of clusters.
The Hacker News
New phishing campaign uncovered by Trustwave SpiderLabs uses novel malware to deploy Agent Tesla, a notorious information stealer and keylogger.
Infosecurity News
Discovered by Sekoia in 2023, the kit is associated with Adversary-in-The-Middle (AiTM) attacks
Bleeping Computer
Cybercriminals have been increasingly using a new phishing-as-a-service (PhaaS) platform named 'Tycoon 2FA' to target Microsoft 365 and Gmail accounts and bypass two-factor authentication (2FA) protection.
The Hacker News
Sophisticated attack targets Discord bot site Top.gg + devs. Attackers stole browser cookies, pushed malicious code, and created fake Python packages.
DarkReading
The attacker employed various techniques, including distributing malicious dependencies via a fake Python infrastructure linked to GitHub projects.
SecurityWeek
CISA, the FBI, and MS-ISAC have released new guidance on how federal agencies can defend against DDoS attacks.
Ars Technica
AcidRain, discovered in 2022, is tied to AcidPour. Both are attributed to Russia.
The Record
Russia fired 150 missiles and drones overnight, damaging energy facilities across the country and knocking out power for 1.5 million residents.
Bleeping Computer
A previously unknown malware campaign called Sign1 has infected over 39,000 websites over the past six months, causing visitors to see unwanted redirects and popup ads.
HACKRead
Tax season is underway in the United States, bringing with it the notorious tax returns phishing campaigns targeting taxpayers and businesses.
The Record
After officials warned of “massive” efforts to disrupt the presidential vote, Russian authorities claimed cyberattacks had no effect on the election.
Cyber Security News
With our weekly cybersecurity news summary, explore and learn about the most recent developments in the cybersecurity field.
Ars Technica
Parts of Africa were already seeing web disruptions from damaged Red Sea cables.
SecurityWeek
Microsoft announces that its Copilot for Security generative AI security solution will become generally available on April 1.
DarkReading
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps.
HACKRead
These groups launched phishing attacks using stealthy attack patterns to target officials at large US school districts, bypassing MFA protections.
The Cyber Express
Vodafone Egypt, the largest mobile operator in the country serving over 40 million customers, finds itself grappling with a partial
PCMag
Research suggests new AI security threats are on the horizon. Cloudflare is developing an AI Firewall and is using its own AI tools to defend against AI-powered cyberattacks.
HACKRead
American Express notified card members of a data breach impacting customer information, emphasizing that its systems were not compromised.
CSO
Added to Cloudflare’s Web Application Firewall (WAF) offerings, Firewall for AI is designed to prevent the exploitation of AI models, specifically generative AI.
The Hacker News
Learn from GitLab's 2017 incident: 300GB of data lost in seconds, but their transparent recovery is a masterclass in accountability.
CyberSecurity Dive
CSO David Bradbury detailed to Cybersecurity Dive what the identity and access management company got wrong and the security pledges it's making to customers.
The Hacker News
A critical security flaw (CVE-2024-1071) in the WordPress plugin Ultimate Member has been disclosed, affecting over 200,000 active installations.
The Hacker News
Cybersecurity experts uncover a surge in phishing attacks using Google Cloud Run to distribute banking malware across LATAM and Europe.
The Hacker News
Apple's iMessage is getting a major security boost with PQ3, the 'strongest' post-quantum encryption yet
Bleeping Computer
Tens of thousands of U.S. customers from Verizon, T-Mobile, and AT&T have been complaining about lack of wireless service or interruptions on Thursday morning.
DarkReading
Thanks to a 24-year-old security vulnerability tracked as CVE-2023-50387, attackers could stall DNS servers with just a single malicious packet, effectively taking out wide swaths of the Internet.
Bleeping Computer
A serious vulnerability named KeyTrap in the Domain Name System Security Extensions (DNSSEC) feature could be exploited to deny internet access to applications for an extended period.
The Cyber Express
Anonymous Sudan, a self-proclaimed activist group, allegedly launched a cyberattack on OpenAI, the artificial intelligence (AI) giant, on February 14,
SecurityWeek
Patches released for a new DNSSEC vulnerability named KeyTrap, described as the worst DNS attack ever discovered.
The Hacker News
Microsoft's latest Patch Tuesday tackles 73 vulnerabilities, including actively exploited zero-days.
Cyber Security News
Secure Network As a Service for MSP: 1. Perimeter 81 2. Cloudflare 3. Netskope 4. VMware 5. Palo Alto Networks 6. Aarna Networks.
DarkReading
Saudi Arabia charity was under surveillance with the modified reverse proxy tool, researchers discovered.
The Hacker News
Password spraying, OAuth hijacking, and nation-state attacks – the cybersecurity world is under siege. Learn how to protect your organization.
The Cyber Express
By Jonathon Dixon, Vice President and Managing Director - APJC, Cloudflare Digitization and technology are deeply rooted within the DNA
Cyber Security News
Network as a Service for MSSP : 1. Perimeter 81 2. Cloudflare 3. Prisma Cloud 4. Megaport 5. Akamai 6. Aryaka 7. Converged Cloud.
Security Affairs
26 key cyber security stats for 2024 that every user should know, from rising cyber crime rates to the impact of AI technology.
The Cyber Express
In the past year, 18% of Qatari organizations experienced a cybersecurity incident, with 5% facing more than five incidents. The
The Record
The shutdown coincides with the passing of a controversial bill to extend the term of President Macky Sall to December, when elections are now scheduled to be held.
The Cyber Express
The compromise of AnyDesk, a prominent remote desktop application distributed by AnyDesk Software GmbH, has caused quite a stir in
The Cyber Express
The impact of the massive Okta data breach lingers, continuing to provide an opportunistic terrain for hackers. Cloudflare, a prominent
CSO
The hack, which used stolen tokens and credentials, was able to access “some documentation and a limited amount of source code” before being thwarted.
HACKRead
Cybersecurity researchers have identified threat actors on a dark web forum selling AnyDesk accounts, ranging from 18,000 to 30,000 accounts.
Security Affairs
Resecurity identified bad actors offering a significant number of AnyDesk customer credentials for sale on the Dark Web.
HACKRead
AnyDesk, a remote desktop software maker, has reportedly become a victim of a cyberattack that compromised its production systems.
The Hacker News
Discover the details of the recent AnyDesk cyber attack, including the company’s swift response to secure its production systems and the steps users s
Bleeping Computer
AnyDesk confirmed today that it suffered a recent cyberattack that allowed hackers to gain access to the company's production systems. BleepingComputer has learned that source code and private code signing keys were stolen during the attack.
Bleeping Computer
AnyDesk confirmed today that it suffered a recent cyberattack that allowed hackers to gain access to the company's production systems. BleepingComputer has learned that source code and private code signing keys were stolen during the attack.
DarkReading
The cyberattackers, believed to be state sponsored, didn't get far into Cloudflare's global network, but not for lack of trying.
HACKRead
The aftermath of the 2023 Okta breach continues to unfold, with Cloudflare disclosing the details of its security compromise.
CyberSecurity Dive
A threat actor that previously intruded Cloudflare’s network through its Okta environment regained access with mistakenly unrotated credentials.
DataBreaches
Sergiu Gatlan reports: Cloudflare disclosed today that its internal Atlassian server was breached by a suspected ‘nation state attacker’ who...
Cyber Security News
Cloudflare discovered a threat actor on the self-hosted Atlassian server on November 23, 2023. The attack was launched with the use of one stolen access token.
SecurityWeek
A nation-state threat actor accessed internal Cloudflare systems using credentials stolen during the Okta hack.
Infosecurity News
Cloudflare revealed suspected nation-state attackers compromised its systems and accessed source code using credentials stolen in the Okta breach
Security Affairs
Cloudflare revealed that a nation-state actor breached its internal Atlassian server, gaining access to its wiki and its bug database
Loading more articles....