CyberScoop
Arizona woman arrested and charged in North Korean IT worker scheme
Christina Chapman facilitated remote work and financial transfers for North Koreans tied to that nation’s weapons development programs, according to the U.S. government.
The Hacker News
Microsoft Patches 61 Flaws, Including Two Actively Exploited Zero-Days
Microsoft has patched 61 new security flaws, including two zero-days actively exploited in the wild.
CyberNews
Russia-linked group incorporating AI in its new automated propaganda machine
A Russia-linked group is automating fake news fabrication and publishing with AI.
The Hacker News
Severe Vulnerabilities in Cinterion Cellular Modems Pose Risks to Various Industries
Kaspersky researchers have uncovered multiple security flaws in Cinterion cellular modems that could put your communication networks and IoT devices a
.png)
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
Staying informed is the key in this dynamic battle of cybersecurity, and due to this, the weekly news recap provides you with the newest trends, weaknesses, infringements found, and some possible defense mechanisms.
The Hacker News
Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability
Google has just released an update to patch a new zero-day flaw, CVE-2024-4671, which hackers are actively exploiting in the wild.
Ars Technica
Robot dogs armed with AI-targeting rifles undergo US Marines Special Ops evaluation
Quadrupeds being reviewed have automatic targeting systems but require human oversight to fire.
Cyber Security News
Hackers Using Weaponized Shortcut Files To Deploy CHM Malware
Hackers exploit the weaponized shortcut files due to their ability to execute malicious code without the knowledge of the user being targeted.
Cyber Security News
HijackLoader Using Weaponized PNG Files To Deliver Multiple Malware
HijackLoader, a modular malware loader observed in 2023, is evolving with new evasion techniques, as it is a variant using a PNG image to
The Hacker News
Critical Tinyproxy Flaw Opens Over 50,000 Hosts to Remote Code Execution
Critical unpatched flaw (CVE-2023-49606) in Tinyproxy could lead to remote code execution. Over 50% of 90K+ exposed hosts are vulnerable.
Bleeping Computer
Microsoft warns of "Dirty Stream" attack impacting Android apps
Microsoft has highlighted a novel attack dubbed "Dirty Stream," which could allow malicious Android apps to overwrite files in another application's home directory, potentially leading to arbitrary code execution and secrets theft.
DarkReading
R Programming Bug Exposes Orgs to Vast Supply Chain Risk
The CVE-2024-27322 security vulnerability in R's deserialization process gives attackers a way to execute arbitrary code in target environments via specially crafted files.
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
Welcome to this week's edition of the Cyber Security News Weekly Round-Up. This issue covers the latest vulnerabilities, cyber attacks, and emerging threats that have been making headlines. Stay informed and stay secure!
Cyber Security News
Hackers Abuse Autodesk Drive For Hosting Weaponized PDF Files
Hackers abuse the Autodesk hosting platform to host malicious PDF files, which leads to phishing attacks on victims.
The Hacker News
Palo Alto Networks Outlines Remediation for Critical PAN-OS Flaw Under Attack
A critical vulnerability (CVE-2024-3400) in PAN-OS could expose your systems to remote code execution attacks.
HACKRead
Google Patches Critical Chrome Vulnerability and Additional Flaws
A critical vulnerability (CVE-2024-4058) has been patched in the latest update (version 124). This flaw could allow attackers to take control of your system.
Cyber Security News
Hackers Weaponized Electron Framework to Steal Data Stealthy
Hackers abuse Electron Framework's cross-platform desktop app capabilities based on web tech like HTML, JS, CSS.
Cyber Security News
Megazord Ransomware Attacking Healthcare And Government Entities
Hackers primarily use ransomware to gain financially from their victims, by blackmailing them for payments to recover their encrypted files
The Hacker News
Russia's APT28 Exploited Windows Print Spooler Flaw to Deploy 'GooseEgg' Malware
Hackers linked to Russia have been exploiting a Windows bug for YEARS to deploy GooseEgg malware for escalating attack access.
The Hacker News
MITRE Corporation Breached by Nation-State Hackers Exploiting Ivanti Flaws
MITRE, a top cybersecurity firm, breached by a nation-state. Zero-days and session hijacking were the weapons.
The Hacker News
Microsoft Warns: North Korean Hackers Turn to AI-Fueled Cyber Espionage
North Korea's state-linked hackers are enhancing their operations with advanced artificial intelligence tools.
DarkReading
Evil XDR: Researcher Turns Palo Alto Software Into Perfect Malware
It turns out that a powerful security solution can double as even more powerful malware, capable of granting comprehensive access over a targeted machine.
The Record
Researchers find dozens of fake E-ZPass toll websites after FBI warning
The FBI said in an alert that since early March there have been more than 2,000 complaints reporting texts impersonating toll collection services.
DarkReading
Cisco Warns of Massive Surge in Password Spraying Attacks on VPNs
Attackers are indiscriminately targeting VPNs from Cisco and several other vendors in what may be a reconnaissance effort, company says.
.webp)
Cyber Security News
Poisoned Google Ads Targeting Infra Teams with Weaponized IP Scanners
Security researchers uncovered a sophisticated malvertising campaign targeting IT professionals, particularly those in security.
The Hacker News
Hackers Exploit OpenMetadata Flaws to Mine Crypto on Kubernetes
Vulnerabilities in OpenMetadata are being exploited. These critical security flaws enable hackers to get into Kubernetes environments.
SecurityWeek
You Against the World: The Offenders Dilemma
Inside the four pillars of an offensive playbook – Red Teams, Penetration Testing, Automation and AI, and vulnerability assessment.
The Cyber Express
Cisco Duo Data Breach Exposes Customer MFA Data Through Telephony Provider
Cisco Duo's security team has issued a warning regarding a cyberattack that compromised some customers' VoIP and SMS logs, potentially
Trend Micro
How Red Team Exercises Increases Your Cyber Health
Delve into the world of red team exercises, their vital role in enhancing organizational security through simulated cyberattacks, including tactics like phishing and lateral movement within networks, and understand the need for regular testing and improvement to counter evolving threats effectively.
.webp)
Cyber Security News
Hackers Attacking Infra Teams With Fake PuTTY & FileZilla Ads
By displaying sponsored search results for utilities like PuTTY and FileZilla, the attackers can lure in their victims.
Infosecurity News
Foreign Interference Drives Record Surge in IP Theft
DTEX claims industrial espionage and IP theft are at an all-time high thanks to malicious insiders
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
Welcome to the Cyber Security News Weekly Round-Up. Each week, we will explore the latest cyber threats, vulnerabilities, and notable stories that have shaped the cybersecurity landscape.
Cyber Security News
Hackers Use Weaponized PDF Files to Deliver Byakugan Malware on Windows
PDF files weaponized by hackers are commonly used as an attack vector since PDFs are highly trusted and shared documents.
Cyber Security News
Rhadamanthys Stealer Using Weaponized PDF Files To Attack Oil And Gas Sector
Hackers use weaponized PDF files as they have the ability to incorporate malicious codes or scripts within a well-known and trusted form of
The Hacker News
Google Warns: Android Zero-Day Flaws in Pixel Phones Exploited by Forensic Companies
Google's Pixel smartphones under attack. Two new Android security flaws - CVE-2024-29745 & CVE-2024-29748 - uncovered, exploited in the wild.
.png)
Cyber Security News
Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)
This weekly cybersecurity news recap keeps you informed about the latest threats, exposures, mitigation techniques, and emerging malicious tactics that could compromise systems.
The Hacker News
Dormakaba Locks Used in Millions of Hotel Rooms Could Be Cracked in Seconds
Security flaws found in Dormakaba's Saflok RFID locks used in hotels could turn your keycard into a master key.
.webp)
Cyber Security News
Hackers Using Weaponized Virtual Hard Disk Files to Deliver Remcos RAT
Hackers have been found leveraging weaponized virtual hard disk (VHD) files to deploy the notorious Remote Control Software (RAT), Remcos.
The Hacker News
Hackers Hit Indian Defense, Energy Sectors with Malware Posing as Air Force Invite
Indian government & energy sectors under attack. Hackers used phishing emails, weaponized 'HackBrowserData' malware to steal sensitive data.
%20(1).webp)
Cyber Security News
Hackers Using Weaponized PDF Files to Deliver Mispadu Banking Malware
Mispadu, a banking trojan targeting Latin America, attacks Europe, stealing credentials through phishing emails and malicious URLs.
The Hacker News
Alert: New Phishing Attack Delivers Keylogger Disguised as Bank Payment Notice
New phishing campaign uncovered by Trustwave SpiderLabs uses novel malware to deploy Agent Tesla, a notorious information stealer and keylogger.
The Hacker News
N. Korea-linked Kimsuky Shifts to Compiled HTML Help Files in Ongoing Cyberattacks
Kimsuky shifts tactics, now using CHM files to deliver malware, targeting sensitive data globally.
.png)
Cyber Security News
Cyber Security News Weekly Round-Up : Cyber Attacks, Vulnerabilities, Threats & New Cyber Stories
cybersecurity news will keep you posted on the latest developments, exposures, advances, occurrences, threats, and narratives in this field.
The Hacker News
Over 800 npm Packages Found with Discrepancies, 18 Exploitable to 'Manifest Confusion'
New report reveals 800+ packages in the npm registry contain hidden code discrepancies.
CyberNews
North Korean hackers use “nuclear lure” to trick and run new attack
North Korea’s nuclear threats are now being exploited by North Korean hackers known as Kimsuky as a lure for victims to open malicious payloads.
Cyber Security News
Operation PhantomBlu: Attackers Utilising Weaponized MS Office Doc to Hack Windows
Researchers from Perception Point identified a new malware campaign, PhantomBlu, targeting US organizations that use novel techniques to deploy NetSupport RAT, a remote access trojan, by exploiting legitimate features of Microsoft Office document templates via OLE manipulation. It allows the attackers to evade detection and gain control of victim machines for various malicious activities, including […]
The Hacker News
New 'Loop DoS' Attack Impacts Hundreds of Thousands of Systems
Researchers uncover a new DoS attack vector targeting UDP-based application protocols, potentially endangering hundreds of thousands of hosts.
The Hacker News
TeamCity Flaw Leads to Surge in Ransomware, Cryptomining, and RAT Attacks
Multiple threat actors exploit security flaws in JetBrains TeamCity to deploy ransomware, crypto miners, Cobalt Strike beacons, and Spark RAT
Cyber Security News
WARNING: Hackers' New Favorite Tool – Weaponized SVG Files!
Threat actors use SVG files in cyber-attacks because SVGs (Scalable Vector Graphic files) can contain embedded scripts, making them a vector
The Hacker News
Fortra Patches Critical RCE Vulnerability in FileCatalyst Transfer Tool
Fortra patches critical flaw in FileCatalyst transfer tool. Vulnerability allows remote code execution via directory traversal.
Trend Micro
EU Agency ENISA Names New DoS Attack Classifications
ENISA Report Unveils a Complex Cyber Landscape
The Hacker News
Third-Party ChatGPT Plugins Could Lead to Account Takeovers
Cybersecurity experts have uncovered new vulnerabilities in #ChatGPT's third-party plugins, posing a significant risk to user data and account.
.webp)
Cyber Security News
Hackers using Weaponized PDF Files to Deliver Remcos RAT
Cybercriminals have launched a sophisticated campaign targeting individuals and utilizing weaponized PDF files to deploy dangerous RATs.
The Hacker News
DarkGate Malware Exploits Recently Patched Microsoft Flaw in Zero-Day Attack
A new DarkGate malware campaign uses a recently patched #MicrosoftWindows flaw (CVE-2024-21412) to deploy malicious software via bogus installers.
.webp)
Cyber Security News
Remcos Everywhere! Attacking From a Weaponized Zip File
Cybersecurity circles are abuzz with the latest campaign involving the notorious Remote Control System (RAT), Remcos.
The Hacker News
Malware Campaign Exploits Popup Builder WordPress Plugin to Infect 3,900+ Sites
WordPress sites under attack! A new malware campaign exploits Popup Builder plugin vulnerability (CVE-2023-6000) infecting over 3,900 sites
.webp)
Cyber Security News
Earth Kapre Hackers Using Weaponized ISO & IMG Files to Attack Organizations
Hacking group known as Earth Kapre, referred to as RedCurl & Red Wolf, targeting across the globe with weaponized ISO and IMG files.
The Hacker News
BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks
Hackers leveraging JetBrains TeamCity flaws to propagate BianLian ransomware attacks
Cyber Security News
Cyber Security News Weekly Round-Up : Vulnerabilities, Cyber Attacks, Threats & New Cyber Stories
Stay updated with the most recent advancements in the cybersecurity industry with our weekly recap of cybersecurity news.
DarkReading
Stealth Bomber: Atlassian Confluence Exploits Drop Web Shells In-Memory
The proof-of-concept exploits for Atlassian Confluence would enable arbitrary code execution without requiring file system access.
HACKRead
Vulnerability Risk Management for External Assets
Vulnerability risk management weighs vulnerability criticality, exploit likelihood, and business impact, unlike traditional methods, enhancing risk mitigation.
The Hacker News
Over 100 Malicious AI/ML Models Found on Hugging Face Platform
Over 100 AI/ML models discovered with malicious intent on the Hugging Face platform. The cyber realm faces a new threat.
Cyber Security News
Weekly Cyber Security News Letter & Threats Roundup - Top 25 Cyber Incidents
Welcome to the Cyber Security News Recap, a weekly newsletter. We strive to provide you with the most current information regarding advancements in cybersecurity.
Computerworld
Apple warns of increased iPhone security risks
Apple has told its European customers that new EU competition laws will make iPhones less safe.
SC Magazine
Lazarus Group observed exploiting an admin-to-kernel Windows zero-day
Avast researchers say North Korean APT has developed a new, stealthier rootkit and appears poised to continue enhancements.
Computerworld
Apple warns of increased iPhone security risks
Apple has told its European customers that new EU competition laws will make iPhones less safe.
The Hacker News
New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems
Researchers have disclosed a new attack technique, "Silver SAML," targeting applications that use cloud identity providers such as Microsoft Entra ID.
Cyber Security News
Hackers Using Weaponized ZIP File To Steal NTLM Hashes
ZIP files are used by threat actors to weaponize them since they can easily convey malicious payloads within compressed archives, making it
The Hacker News
FBI Warns U.S. Healthcare Sector of Targeted BlackCat Ransomware Attacks
BlackCat ransomware returns with a vengeance, healthcare sector under fire. U.S. government warning a must-read.
Cyber Security News
Hackers Attacking Online Ticket Booking Users Using Weaponized PDF Files
Threat actors use weaponized PDF files to exploit vulnerabilities in software which enables them to execute malicious code on a target system
The Hacker News
New Hugging Face Vulnerability Exposes AI Models to Supply Chain Attacks
Hugging Face vulnerability allows attackers to hijack machine learning models.
Cyber Security News
Hackers Poison SEO Results To Deploy Gootloader Malware And Steal RDP Access
Hackers poison the SEO results to manipulate search engine rankings by misdirecting users to malicious sites.
The Hacker News
8,000+ Subdomains of Trusted Brands Hijacked for Massive Spam Operation
Over 8,000 subdomains belonging to recognized brands and organizations are being exploited for malicious email distribution.
The DFIR Report
SEO Poisoning to Domain Control: The Gootloader Saga Continues - The DFIR Report
Key Takeaways More information about Gootloader can be found in the following reports: The DFIR Report, GootloaderSites, Mandiant, Red Canary, & Kroll. An audio version of this report can be … Read More
Cyber Security News
Huge Surge In Attacks Exploiting User Credentials To Hack Enterprises
There are currently billions of compromised credentials available on the Dark Web, making it the easiest route for criminals to exploit
The Hacker News
Researchers Detail Apple's Recent Zero-Click Shortcuts Vulnerability
A high-severity flaw in Apple's Shortcuts could expose your data without consent! Learn how Apple patched this with iOS 17.3 and more.
CSO
Identity hacking saw sharp rise 2023
Increased attack speed and cloud compromise were also high on adversaries' agenda.
DarkReading
New Wave of 'Anatsa' Banking Trojans Targets Android Users in Europe
Users have already downloaded droppers for the malware from Google's official Play store more than 100,000 times since November 2023.
The Cyber Express
NCSC Issues Guidance to Secure PBX Systems from Cyberattacks
The National Cyber Security Centre (NCSC) in the UK has issued a comprehensive blog aimed at educating individuals and organizations
The Hacker News
CISA Warning: Akira Ransomware Exploiting Cisco ASA/FTD Vulnerability
A critical vulnerability (CVE-2020-3259) in Cisco ASA and FTD software has been added to CISA's KEV catalog.
CyberNews
Global elections are here, and so are those aiming to sabotage them
Election-related malicious activity in cyberspace is skyrocketing.
The Hacker News
Critical Exchange Server Flaw (CVE-2024-21410) Under Active Exploitation
A newly discovered privilege escalation vulnerability (CVE-2024-21410) in Microsoft Exchange Server is being actively exploited.
The Hacker News
Alert: CISA Warns of Active 'Roundcube' Email Attacks - Patch Now
CISA has identified a medium-severity security flaw affecting Roundcube email software, categorized as CVE-2023-43770.
Infosecurity News
Malicious Campaign Impacts Hundreds of Microsoft Azure Accounts
Proofpoint has observed an ongoing campaign targeting the Microsoft Azure applications of hundreds of individuals with operational and executive roles
DarkReading
CISO Corner: DoD Regs, Neurodiverse Talent & Tel Aviv's Light Rail
Also in this issue: How the SEC's reporting rules are being weaponized, quishing attacks plaguing execs, and tabletop exercises making a comeback.
The Hacker News
Fortinet Warns of Critical FortiOS SSL VPN Flaw Likely Under Active Exploitation
Fortinet has unveiled a critical security flaw in its SSL VPN, CVE-2024-21762, allowing hackers to execute arbitrary code.
DarkReading
'Ov3r_Stealer' Malware Spreads Through Facebook to Steal Crates of Info
A tangled web of attackers use various social media tactics to propagate the novel threat, which has several execution methods and exfiltrates data to Telegram.
Bleeping Computer
Facebook ads push new Ov3r_Stealer password-stealing malware
A new password-stealing malware named Ov3r_Stealer is spreading through fake job advertisements on Facebook, aiming to steal account credentials and cryptocurrency.
The Hacker News
Beware: Fake Facebook Job Ads Spreading 'Ov3r_Stealer' to Steal Crypto and Credentials
Cybercriminals use fake Facebook job ads to spread Ov3r_Stealer, a Windows malware. It steals sensitive information.
The Hacker News
Experts Detail New Flaws in Azure HDInsight Spark, Kafka, and Hadoop Services
Researchers found three security vulnerabilities in Azure HDInsight's Apache Hadoop, Kafka, and Spark services that allow for root access and system d
CyberNews
Anonymous: a cult of personality that could soon fail
Is Anonymous a cult of personality and could it soon fail.
SecurityWeek
In Other News: Palo Alto Loses Patent Lawsuit, Identity Firms Get Funding, Government Hackers
Palo Alto Networks ordered to pay $150 million in patent lawsuit, identity solutions firms get big funding, government hacker techniques.
The Hacker News
Mastodon Vulnerability Allows Hackers to Hijack Any Decentralized Account
Decentralized social network Mastodon has disclosed a critical security flaw that allows malicious actors to impersonate and take over any account.
The Hacker News
CISA Warns of Active Exploitation of Critical Vulnerability in iOS, iPadOS, and macOS
Critical Apple kernel bug in iOS, macOS, and more exploited in the wild. CISA urges FCEB agencies to patch by February 21st.
DarkReading
More Ivanti VPN Zero-Days Fuel Attack Frenzy as Patches Finally Roll
Both China-backed APTs and ordinary cyberattackers have seized on a pair of Ivanti VPN bugs for global exploitation.
The Hacker News
Italian Businesses Hit by Weaponized USBs Spreading Cryptojacking Malware
UNC4990 is using weaponized USB devices as an initial infection method to target organizations in Italy.
The Hacker News
Chinese Hackers Exploiting VPN Flaws to Deploy KrustyLoader Malware
Chinese nation-state hacker group UTA0178 weaponized Ivanti VPN vulnerabilities to deploy the Rust-based KrustyLoader, cryptocurrency miners.
The Hacker News
Researchers Uncover How Outlook Vulnerability Could Leak Your NTLM Passwords
Hackers can remotely steal your Windows login NTLM passwords through a vulnerability in Outlook's calendar feature.
Security Affairs
Multiple PoC exploits released for Jenkins flaw CVE-2024-23897
Multiple proof-of-concept (PoC) exploits for recently disclosed critical Jenkins vulnerability CVE-2024-23897 have been released.
The Hacker News
Critical Jenkins Vulnerability Exposes Servers to RCE Attacks - Patch ASAP!
Critical Jenkins RCE vulnerability (CVE-2024-23897) discovered. Hackers can remotely control your CI/CD pipelines.
Loading more articles....