Ars Technica
Archie, the Internet’s first search engine, is rescued and running
A journey through busted tapes, the Internet Old Farts Club, and SPARCstations.
Trend Micro
Tracking the Progression of Earth Hundun's Cyberespionage Campaign in 2024
This report describes how Waterbear and Deuterbear — two of the tools in Earth Hundun's arsenal — operate, based on a campaign from 2024.
SecurityWeek
Thoma Bravo-owned LogRhythm Announces Merger with Rival Exabeam
Financial terms were not released but it's likely a hefty price tag with Exabeam’s most recent valuation pegged at $2.5 billion.
DarkReading
D-Link Routers Vulnerable to Takeover Via Exploit for Zero-Day
A vulnerability in the HNAP login request protocol that affects a family of devices gives unauthenticated users root access for command execution.
SecurityWeek
Senators Urge $32 Billion in Emergency Spending on AI After Finishing Yearlong Review
Senators are recommending that Congress spend at least $32 billion over the next three years to develop AI and place safeguards around it.
The Record
Officials defend election security efforts as senators call on them to improve their game
“We've got to do a better job of making sure Americans of all political stripes understand what is very probably coming their way over the next less than six months,” Senate Intelligence Chair Mark Warner told leaders from ODNI, CISA and the FBI.
Bleeping Computer
PoC exploit released for RCE zero-day in D-Link EXO AX4800 routers
The D-Link EXO AX4800 (DIR-X4860) router is vulnerable to remote unauthenticated command execution that could lead to complete device takeovers by attackers with access to the HNAP port.
SecurityWeek
MITRE EMB3D Threat Model Officially Released
MITRE announced the public availability of the EMB3D threat model for embedded devices used in critical infrastructure.
The Record
Is this Iowa congressman the next House Republican point man on cyber?
Rep. Zach Nunn arrived in Congress with arguably more cyber experience than any other new member in history. Can he fill the shoes of Rep. Mike Gallagher, the party's longtime House leader on cybersecurity issues?
CyberSecurity Dive
Congress wants to question Microsoft exec over security defects
The committee wants to question Brad Smith, Microsoft’s president and vice chair, over the company’s security shortcomings and how it plans to strengthen security measures.
The Record
Vermont passes data privacy law allowing consumers to sue companies
The law includes data minimization requirements, which significantly constrain what personal data companies can gather and use and bans companies from selling consumers’ sensitive data, allowing individuals to sue if they believe businesses have done so.
.png)
Cyber Security News
Accenture Wins $789 Million Contract to Support Global U.S. Navy Maritime Forces
AFS, a subsidiary of global professional services company Accenture, has been awarded a $789 million contract to bolster the cybersecurity.
DarkReading
Aggressive Cloud-Security Player Wiz Scores $1B in Funding Round
The latest round of investment prices the fast-growing cloud native application protection platform (CNAPP) at $12 billion with a simple mandate: Grow quickly through acquisition.
The Record
State attorneys general implore Congress not to preempt their privacy laws
The cohort fears the draft federal American Privacy Rights Act (APRA) could wipe out existing, and in a few cases stronger, state data privacy laws.
The Hacker News
The Fundamentals of Cloud Security Stress Testing
The cloud promises agility, but opens a Pandora's box of cyber risks if not secured properly. Understand your responsibility under the shared responsi
DarkReading
City of Wichita Public Services Disrupted After Ransomware Attack
The city was forced to shut down its IT networks and continues to investigate a major cyber incident that happened over the weekend.
SecurityWeek
Niobium Raises $5.5M for Zero Trust Computing Hardware Acceleration
Niobium raises $5.5 million in seed funding for a fully homomorphic encryption (FHE) hardware accelerator designed for zero trust computing.
SecurityWeek
Wiz Raises $1 Billion at $12 Billion Valuation
Cloud security giant Wiz has raised $1 billion, which brings the total funding to $1.9 billion, at a valuation of $12 billion.
SecurityWeek
MITRE Hack: China-Linked Group Breached Systems in December 2023
MITRE has shared more details on the recent hack, including the new malware and a timeline of the attacker’s activities.
The Record
Warner: Lawmakers 'in process' of finding Section 702 fix
"We're working on it," says the Senate Intelligence Committee chairman about the recently renewed law's handling of “electronic communications service providers” — a sticking point for privacy advocates.
HACKRead
New Goldoon Botnet Targeting D-Link Devices by Exploiting Weak Credentials
A new botnet called Goldoon targets D-Link routers and NAS devices putting them at risk of DDoS attacks and more. Learn how weak credentials leave you vulnerable and how to secure your network. pen_spark
SecurityWeek
Network Security Firm Corelight Raises $150 Million
Network detection and response (NDR) provider Corelight has raised $150 million in a Series D funding round led by Accel.
The Hacker News
New "Goldoon" Botnet Targets D-Link Routers With Decade-Old Flaw
A new botnet called Goldoon is targeting D-Link routers with a critical vulnerability from 2015 (CVE-2015-2051).
CyberSecurity Dive
Congress grills UnitedHealth CEO over Change cyberattack
Legislators slammed Andrew Witty over the company’s lack of cybersecurity practices and the impact of the breach, which may have compromised the data of a third of Americans.
The Record
Newly identified botnet targets decade-old flaw in unpatched D-Link devices
Researchers at Fortinet are calling the botnet Goldoon. D-Link released a patch in 2015 for the bug that it exploits, but some device owners didn't install it.
DarkReading
UnitedHealth Congressional Testimony Reveals Fails
The breach used stolen Citrix credentials for an account with no MFA. Attackers went undetected for days, and Change's backup strategy failed.
SecurityWeek
Oasis Security Raises $35 Million to Tackle Non-Human Identity Management
New York startup Oasis Security banks $35 million in a Series A extension round led by Accel, Cyberstarts, and Sequoia Capital.
SecurityWeek
DeepKeep Launches AI-Native Security Platform With $10 Million in Seed Funding
DeepKeep, which provides an AI-Native Trust, Risk, and Security Management (TRiSM) platform, has raised $10 million in seed funding.
The Record
UnitedHealth CEO confirms company paid $22 million ransom in heated Senate hearing
CEO Andrew Witty blamed Change Healthcare's legacy technologies and lack of multifactor authentication for the cyberattack, which disrupted the medical industry nationwide.
SC Magazine
Senators grill UnitedHealth CEO on Change Healthcare cyberattack
Andrew Witty stuck with the familiar corporate line of providing consumers with two years of credit monitoring.
The Record
It’s time to rethink the national vulnerabilities database for the AI era, senators say
Sens. Mark Warner and Thom Tillis want to see changes in the federal NVD to reflect how different AI systems can be from traditional software and hardware.
SecurityWeek
Apptega Raises $15 Million for Cybersecurity Compliance Platform
Mainsail Partners leads a $15 million financing round for end-to-end cybersecurity compliance platform company Apptega.
SecurityWeek
Island Secures $175M Investment as Enterprise Browser Startups Defy Tech Giants
Despite headwinds from industry behemoths like Microsoft and Google, venture capital investors remain bullish on enterprise browser startups
CyberSecurity Dive
At Microsoft, years of security debt come crashing down
Critics say negligence, misguided investments and hubris have left the enterprise giant on its back foot.
The Cyber Express
AT&T, Verizon, T-Mobile Slapped with $200 Million Fine Over Location Data Sharing
The Federal Communications Commission has fined the largest phone carriers in the country - AT&T, Sprint, T-Mobile and Verizon -
The Record
Carmakers lying about requiring warrants before sharing location data, Senate probe finds
Only five of 14 queried auto manufacturers require a warrant or court order before giving law enforcement connected car owners’ location data, an investigation found.
The Record
Congress circles UnitedHealth as effects of ransomware attack continue
UnitedHealth Group CEO Andrew Witty is preparing to testify in two separate congressional hearings about the ransomware attack on the company's Change Healthcare unit.
Krebs on Security
FCC Fines Major U.S. Wireless Carriers for Selling Customer Location Data
The U.S. Federal Communications Commission (FCC) today levied fines totaling nearly $200 million against the four major carriers -- including AT&T, Sprint, T-Mobile and Verizon -- for illegally sharing access to customers' location information without consent.
The Record
FCC fines carriers $196 million for selling customer location data
T-Mobile, Verizon, AT&T and Sprint were caught peddling customers’ location data to so-called aggregators who then resold the information to third-party data brokers, the FCC said.
DarkReading
CISO Corner: Evil SBOMs; Zero-Trust Pioneer Slams Cloud Security
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: security license mandates; a move to four-day remediation requirements; lessons on OWASP for LLMs.
The Record
Congress picked a direct fight with ByteDance and TikTok. The privacy implications are less clear.
Lawmakers sought to keep Americans' data out of the Chinese government's hands. For privacy advocates and others, though, the new TikTok law raises bigger questions.
SecurityWeek
Endpoint Security Firm ThreatLocker Raises $115 Million in Series D Funding
Zero trust endpoint security company ThreatLocker has announced a $115 million Series D funding round that brings the total to $240 million.
The Record
DHS asked to consider potentially 'devastating’ impact of hacks on rural water systems
A bipartisan pair of U.S. House members wants more information from the Department of Homeland Security about a Russia-linked group's attack on a water utility in Texas, as well as cybersecurity protections for water supplies in general.
DarkReading
Back from the Brink: UnitedHealth Offers Sobering Post-Attack Update
The company reports most systems are functioning again but that analysis of the data affected will take months to complete.
The Cyber Express
PayPal Appoints Shaun Khalfan as Chief Information Security Officer
In today's digital age, where data breaches and cyber threats loom large, the role of Chief Information Security Officer (CISO)
CyberSecurity Dive
Mitre R&D network hit by Ivanti zero-day exploits
Exploits of Ivanti VPN products have hit roughly 1,700 organizations. To Mitre, guidance from the vendor and government fell short.
SecurityWeek
MITRE Hacked by State-Sponsored Group via Ivanti Zero-Days
MITRE R&D network hacked in early January by a state-sponsored threat group that exploited an Ivanti zero-day vulnerability.
Infosecurity News
MITRE Reveals Ivanti Breach By Nation State Actor
Non-profit MITRE says a sophisticated state group breached its network via two chained Ivanti zero-days
The Record
UnitedHealth CEO to testify about ransomware attack
The House Energy and Commerce Subcommittee on Oversight and Investigations will hear from UnitedHealth Group CEO Andrew Witty on May 1.
Cyber Security News
MITRE Hacked - Attackers Compromised R&D Networks Using Ivanti Zero-days
The MITRE Corporation has disclosed that a sophisticated cyber attack recently compromised one of its internal r&d networks.
The Record
Renewal of surveillance law clears Congress minutes before deadline
The White House says President Joe Biden will sign the bill to reauthorize Section 702 of FISA.
The Record
Warrantless spying powers extended to 2026 with Biden’s signature
The president signed legislation that imposes modest changes to the Section 702 of the Foreign Intelligence Surveillance Act.
The Hacker News
How Attackers Can Own a Business Without Touching the Endpoint
How attackers are hacking organizations without touching the endpoint by targeting cloud identities.
Security Affairs
Previously unknown Kapeka backdoor linked to Sandworm APT
Russia-linked APT Sandworm employed a previously undocumented backdoor called Kapeka in attacks against Eastern Europe since 2022.
CSO
Consolidation blamed for Change Healthcare ransomware attack
United HealthGroup said it has already taken $872 million in dealing with the attack and the disruption it caused.
The Record
Senators push forward with Section 702 legislation as deadline looms
The vote comes as the Biden administration and Section 702's congressional supporters engage in a new fight with privacy hawks over a provision that would alter the definition of “electronic communication service providers,” or ECSPs.
The Record
Data broker provisions in draft privacy legislation too weak, lawmakers say
Experts and lawmakers expressed concern at a House committee hearing that the draft American Privacy Rights Act would not do enough to rein in the industry.
SecurityWeek
Miggo Security Gets $7.5 Million Seed Funding to Build ADR Technology
YL Ventures leads a seed funding round for Miggo Security, a Tel Aviv startup working on application detection and response technology.
The Record
Vote looms on bill to curtail government transactions with data brokers
The House was expected to consider the bipartisan Fourth Amendment is Not for Sale Act, which has a companion bill in the Senate. Biden administration officials have denounced the legislation on national security grounds.
The Record
Russian disinformation efforts around U.S. elections ‘kicked into gear over the last 45 days’: Microsoft
The campaigns are reminiscent of efforts in 2020 with a “renewed focus on undermining US support for Ukraine” as well as attempts to turn U.S. citizens against NATO and to foster domestic infighting.
DarkReading
FBI: Smishing Campaign Lures Victims With Unpaid-Toll Notices
The scam is spreading across the US and impersonates the specific toll-collection services of each state in malicious SMS messages
The Record
Renewal of warrantless surveillance powers is in Senate’s hands
“Republicans need to work with us in a bipartisan way to ensure this program with important implications for our national security does not lapse,” says Senate Majority Leader Chuck Schumer.
The Record
Ransomware attack has cost UnitedHealth $872 million; total expected to surpass $1 billion
UnitedHealth Group's earnings call captured the financial fallout from the incident on the same day as a congressional hearing into the cyberattack.
SC Magazine
RansomHub says Change Healthcare data now up for sale
The ransomware group posted screenshots of alleged insurer and patient information Monday.
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
The weekly cybersecurity news wrap-up provides readers with the latest information on emerging risks, vulnerabilities, ways to reduce them, and harmful schemes to help make defensive measures proactive.
Security Affairs
Security Affairs newsletter Round 467 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
SecurityWeek
Exploitation of Unpatched D-Link NAS Device Vulnerabilities Soars
Second identifier, CVE-2024-3272, assigned to unpatched D-Link NAS device vulnerabilities, just as exploitation attempts soar.
The Cyber Wire
N2K CyberWire Network Launches Cyber Talent Insights Special Series Podcast
N2K Networks today announced the premiere of Cyber Talent Insights, a three-part special series podcast that guides listeners through effective strategies to develop cybersecurity teams in the constantly changing landscape of the industry.
The Cyber Express
Beware of Active Exploitation: Critical Vulnerabilities in D-Link NAS Devices Exposes 92,000 Devices
An active exploitation of critical vulnerabilities in D-Link Network Attached Storage (NAS) devices has raised concerns for D-Link users exposing
The Record
Spy powers bill returns again to House floor
Members were preparing to hold procedural votes on the legislation Friday morning, after having blocked it once already this week.
Trend Micro
Importance of Scanning Files on Uploader Applications
Delve into the crucial practice of file scanning within uploader applications, and learn defensive measures to safeguards against malicious threats like malware.
Security Affairs
CISA adds D-Link multiple NAS devices bugs to its Known Exploited Vulnerabilities catalog
US Cybersecurity and Infrastructure Security Agency (CISA) adds D-Link NAS devices bugs to its Known Exploited Vulnerabilities catalog
SecurityWeek
US Cyber Force Assisted Foreign Governments 22 Times in 2023
USCYBERCOM said its Cyber National Mission Force participated in 22 foreign hunt forward operations in 2023.
The Record
Vulnerabilities in end-of-life D-Link devices are being exploited, CISA says
The Cybersecurity and Infrastructure Security Agency added two bugs in older D-Link hardware to its Known Exploited Vulnerabilities list. Experts say 92,000 devices could be exposed.
Trend Micro
Cyberespionage Group Earth Hundun's Continuous Refinement of Waterbear and Deuterbear
Our blog entry provides an in-depth analysis of Earth Hundun's Waterbear and Deuterbear malware.
The Hacker News
Microsoft Fixes 149 Flaws in Huge April Patch Release, Zero-Days Included
Microsoft releases a massive patch for April 2024, fixing a record 149 flaws. Two vulnerabilities are ALREADY under attack.
The Record
Prominent US senator sees new momentum for healthcare cybersecurity push
As U.S. hospitals struggle to pay their employees amid a cyberattack that knocked out a major payment vendor, a powerful Democratic senator is seizing the moment to push for better security in the sorely vulnerable healthcare sector.
Bleeping Computer
Microsoft April 2024 Patch Tuesday fixes 150 security flaws, 67 RCEs
Today is Microsoft's April 2024 Patch Tuesday, which includes security updates for 150 flaws and sixty-seven remote code execution bugs.
DarkReading
92K D-Link NAS Devices Open to Critical Command-Injection Bug
The company is asking users to retire several network-attached storage (NAS) models to avoid compromise through a publicly available exploit that results in backdooring.
Infosecurity News
Over 90,000 D-Link NAS Devices Are Under Attack
Threat actors are targeting a high severity vulnerability in close to 100,000 legacy D-Link devices
SecurityWeek
Exploitation Attempts Target Unpatched Flaw Affecting Many D-Link NAS Devices
Unpatched D-Link NAS device vulnerability CVE-2024-3273, potentially affecting many devices, is being exploited in the wild.
The Hacker News
Critical Flaws Leave 92,000 D-Link NAS Devices Vulnerable to Malware Attacks
Hackers are exploiting vulnerabilities (CVE-2024-3272 and CVE-2024-3273) in D-Link NAS devices. Up to 92,000 devices affected.
SC Magazine
D-Link NAS device vulnerabilities exploited – no patch available
An attacker could gain remote access to network-attached storage and execute arbitrary commands.
Bleeping Computer
Critical RCE bug in 92,000 D-Link NAS devices now exploited in attacks
Attackers are now actively targeting over 92,000 end-of-life D-Link Network Attached Storage (NAS) devices exposed online and unpatched against a critical remote code execution (RCE) zero-day flaw.
Ars Technica
Hackers actively exploit critical remote takeover vulnerabilities in D-Link devices
D-Link won't be patching vulnerable NAS devices because they're no longer supported.
Infosecurity News
US Federal Data Privacy Law Introduced by Legislators
Two US lawmakers have published a draft federal data privacy law, dubbed the American Privacy Rights Act, which aims to provide protections for the personal information of all US citizens
CyberSecurity Dive
D-Link tells customers to sunset actively exploited storage devices
The networking hardware vendor advised owners of the affected devices to retire and replace them. There is no patch available for the vulnerability.
The Hacker News
The Drop in Ransomware Attacks in 2024 and What it Means
Q1 2024 had 22% less ransomware attacks than Q4 2023. Why is that and is it a trend that will continue?
SC Magazine
Over 92,000 D-Link NAS devices face compromise risk
More than 92,000 outdated internet-exposed D-Link Network Attached Storage devices could be breached in attacks exploiting a newly discovered arbitrary command injection and hardcoded backdoor vulnerability, tracked as CVE-2024-3273, which could result in sensitive data access, system configuration modifications, and denial-of-service conditions, reports Security Affairs.
The Record
Sweeping bipartisan comprehensive data privacy bill to be introduced by congressional leaders
A comprehensive data privacy bill unveiled Sunday would offer historic privacy protections and appears to have momentum on both sides of the aisle.
Security Affairs
Security Affairs newsletter Round 466 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs are free for you.
Security Affairs
+92,000 Internet-facing D-Link NAS devices can be easily hacked
A researcher disclosed an arbitrary command injection and hardcoded backdoor issue in multiple end-of-life D-Link NAS models.
Bleeping Computer
Over 92,000 exposed D-Link NAS devices have a backdoor account
A threat researcher has disclosed a new arbitrary command injection and hardcoded backdoor flaw in multiple end-of-life D-Link Network Attached Storage (NAS) device models.
Computerworld
Android 14 Upgrade Report Card: Predictable unpredictability
When it comes to Android upgrades, all device-makers are absolutely not equal — and this year's data reveals just how volatile their commitments can be.
The Record
Congress prepares for FISA Round 3
U.S. House leaders are planning to call up legislation that would renew powerful spying authorities — known as Section 702 — that are slated to expire in a matter of days.
.webp)
Cyber Security News
D-Link NAS Command Injection Flaw : 92,000 Devices Affected
A new command injection vulnerability and a backdoor account has been discovered in D-Link Network Attached Storage devices which affects
DarkReading
HHS Plans for Cyber 'One-Stop Shop' After United Healthcare Attack
The initiative is meant to provide more resources and better strategies for healthcare entities that face an increasing amount of cybersecurity challenges.
The DFIR Report
From OneNote to RansomNote: An Ice Cold Intrusion - The DFIR Report
Key Takeaways We provide a range of services, one of which is our Threat Feed, specializing in monitoring Command and Control frameworks like Cobalt Strike, Metasploit, Sliver, Viper, Mythic, Havoc, … Read More
The Record
FCC to probe ‘grave’ weaknesses in phone network infrastructure
In a move praised by privacy and security experts, the agency says it is looking hard at the safety of protocols known as SS7 and Diameter.
Ars Technica
OpenAI holds back wide release of voice-cloning tech due to misuse concerns
Voice Engine can clone voices with 15 seconds of audio, but OpenAI is warning of potential misuse.
Loading more articles....