The Story of the Mirai Botnet
Schneier on Security
JANUARY 16, 2024
Over at Wired, Andy Greenberg has an excellent story about the creators of the 2016 Mirai botnet.
Tue.Jan 16, 2024
275 
Choosing an MDR Provider: Boutique or Big Brand (Part 2)
Jane Frankland
JANUARY 16, 2024
In last week’s blog I started to explore the pros and cons of using an MDR provider and whether it’s better choosing a boutique provider over that of a traditional big brand. I began by discussing the first core feature – technology – I believe you should consider, along with the benefits and potential drawbacks. This week, I’m focused on the second feature – contract terms.
Join 28,000+
Insiders
Sign Up for our Newsletter
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Trending Sources
SMB Security Pack
Tech Republic Security
JANUARY 16, 2024
Small and midsize businesses are increasingly being targeted by cybercriminals — but they often lack the resources and expertise to develop comprehensive security policies to help defend against threats. This set of policies from TechRepublic Premium will help your company establish guidelines and procedures to reduce the risks. The pack comprises seven documents: IT Staff.
CVE-2023-22527 (CVSS 10): Critical RCE Flaw in Confluence Data Center and Server
Penetration Testing
JANUARY 16, 2024
A new threat looms large for users of Confluence Data Center and Confluence Server, marked by the alarming designation CVE-2023-22527. This vulnerability, with a CVSS score of 10, signifies the highest level of severity... The post CVE-2023-22527 (CVSS 10): Critical RCE Flaw in Confluence Data Center and Server appeared first on Penetration Testing.
Optimizing The Modern Developer Experience with Coder
Advertisement
Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.
Transmission of Sensitive Data Policy
Tech Republic Security
JANUARY 16, 2024
Data in transit means data is at risk if the proper precautions aren’t followed. Data stored inside a securely monitored environment is much less likely to fall into the wrong hands than data exchanged between people and systems. With this in mind, it is essential for company personnel to adhere to firm and clear guidelines.
“I’ll miss him so much” Facebook scam uses BBC branding to lure victims
Malwarebytes
JANUARY 16, 2024
Facebook scams are a constant nuisance and vary from like-farming to scams that can cost you some serious money. The latest one we found is a bit morbid. Recently, I’ve seen quite a few posts on my timeline that looked like this: Without going into details the post says: “I can’t believe he’s gone. I’ll miss him so much” In all the posts I’ve seen, one of my Facebook friends was tagged.
Sign up to get articles personalized to your interests!
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
More Trending
VMware fixed a critical flaw in Aria Automation. Patch it now!
Security Affairs
JANUARY 16, 2024
VMware warns customers of a critical vulnerability impacting its Aria Automation multi-cloud infrastructure automation platform. VMware Aria Automation (formerly vRealize Automation ) is a modern cloud automation platform that simplifies and streamlines the deployment, management, and governance of cloud infrastructure and applications. It provides a unified platform for automating tasks across multiple cloud environments, including VMware Cloud on AWS, VMware Cloud on Azure, and VMware Cloud Fo
A lightweight method to detect potential iOS malware
SecureList
JANUARY 16, 2024
Introduction In the ever-evolving landscape of mobile security, hunting for malware in the iOS ecosystem is akin to navigating a labyrinth with invisible walls. Imagine having a digital compass that not only guides you through this maze, but also reveals the hidden mechanisms of iOS malware previously shrouded in mystery. This is not a tool – this is the nature of digital forensic artifacts.
Google fixed the first actively exploited Chrome zero-day of 2024
Security Affairs
JANUARY 16, 2024
Google has addressed the first Chrome zero-day vulnerability of the year that is actively being exploited in the wild. Google has released security updates to address the first Chrome zero-day vulnerability of the year that is actively being exploited in the wild. The high-serverity vulnerability, tracked as CVE-2024-0519 , is an out of bounds memory access in the Chrome JavaScript engine.
CISA Warns of Actively Exploited Laravel Framework RCE Flaw
Penetration Testing
JANUARY 16, 2024
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a stern warning that’s reverberating through the web development community. The addition of a high-severity flaw in the Laravel Framework to its Known Exploited... The post CISA Warns of Actively Exploited Laravel Framework RCE Flaw appeared first on Penetration Testing.
The Tumultuous IT Landscape Is Making Hiring More Difficult
Advertisement
After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!
Atlassian fixed critical RCE in older Confluence versions
Security Affairs
JANUARY 16, 2024
Atlassian warns of a critical remote code execution issue in Confluence Data Center and Confluence Server that impacts older versions. Atlassian warns of a critical remote code execution vulnerability, tracked as CVE-2023-22527 (CVSS score 10.0), in Confluence Data Center and Confluence Server that impacts older versions. The vulnerability is a template injection vulnerability that can allow remote attackers to execute arbitrary code on vulnerable Confluence installs.
What is the CISO Experience in a Red Team Exercise?
NetSpi Executives
JANUARY 16, 2024
You’re about to have your first Red Team experience, or maybe your first one in the CISO seat of your organization. Maybe it’s just been a little while since your last one and you are curious how this one will go, what the Red Team will find, how your Blue Team will handle it, and what the longer tail takeaways post-engagement will be like. But before you begin, it’s important to consider: What am I not thinking about?
Google fixes first actively exploited Chrome zero-day of 2024
Bleeping Computer
JANUARY 16, 2024
Google has released security updates to fix the first Chrome zero-day vulnerability exploited in the wild since the start of the year. [.
Why the US Needs Comprehensive Cybersecurity Legislation
Security Boulevard
JANUARY 16, 2024
Taking a hands-off approach to cybersecurity is no longer good enough for any organization. In. The post Why the US Needs Comprehensive Cybersecurity Legislation appeared first on Security Boulevard.
The Cloud Development Environment Adoption Report
Advertisement
Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.
Citrix warns of new Netscaler zero-days exploited in attacks
Bleeping Computer
JANUARY 16, 2024
Citrix urged customers on Tuesday to immediately patch Netscaler ADC and Gateway appliances exposed online against two actively exploited zero-day vulnerabilities. [.
Getting Started: A Beginner’s Guide for Improving Privacy
Security Boulevard
JANUARY 16, 2024
Welcome to the world of online/digital privacy! Like its sister guide for cybersecurity, this privacy guide was written for complete privacy novices in mind. It is designed to be a starting point for anyone new to the world of online privacy. It also contains actionable advice for getting started on your privacy journey without the need for threat modeling (though it is certainly advised to set a direction for your efforts eventually.
VulnRecap 1/16/24 – Major Firewall Issues Persist
eSecurity Planet
JANUARY 16, 2024
The past week and the long weekend have had plenty of vulnerabilities to keep your IT and security teams busy. Both SonicWall and Juniper Networks have seen vulnerabilities that allow remote code execution and denial-of service attacks. Keep an eye out for security announcements from your firewall vendors; it’s possible additional similar vulnerabilities will come to light.
Netcraft Report Surfaces Spike in Online Healthcare Product Scams
Security Boulevard
JANUARY 16, 2024
The volume of online scams relating to healthcare emanating from inexpensive TLDs is spiking—accounting for as much as 60% of daily domain registrations. The post Netcraft Report Surfaces Spike in Online Healthcare Product Scams appeared first on Security Boulevard.
Bringing the Cybersecurity Imperative Into Focus
Advertisement
Tech leaders today are facing shrinking budgets and investment concerns. This whitepaper provides insights from over 1,000 tech leaders on how to stay secure and attract top cybersecurity talent, all while doing more with less. Download today to learn more!
CVE-2024-0562 & CVE-2024-0565: The Linux Kernel Faces Two Major Vulnerabilities
Penetration Testing
JANUARY 16, 2024
In the intricate web of modern computing, the Linux kernel stands as a foundational element, powering systems worldwide. However, even the most robust structures have the weakness. Recently, two vulnerabilities were found in the... The post CVE-2024-0562 & CVE-2024-0565: The Linux Kernel Faces Two Major Vulnerabilities appeared first on Penetration Testing.
GitLab warns zero-click vulnerability could lead to account takeovers
Malwarebytes
JANUARY 16, 2024
GitLab has issued a warning about a critical vulnerability in GitLab Community Edition (CE) and Enterprise Edition (EE). GitLab is an online DevOps platform that allows developers to collaborate on creating software. Organizations have a choice to install GitLab on their own server(s) or under GitLab’s control on GitLab.com. The vulnerability allows a successful attacker to easily take over users’ accounts without any interaction.
Implementing AI: Balancing Business Objectives and Security Requirements
Veracode Security
JANUARY 16, 2024
Artificial Intelligence (AI) and machine learning have become integral tools for organizations across various industries. However, the successful adoption of these technologies requires a careful balance between business objectives and security requirements. I sat down with Glenn Schmitz, the Chief Information Security Officer of the Department of Behavioral Health and Developmental Services in Virginia, as he shared valuable insights on implementing AI while ensuring safety, security, and ethic
Guide to Enterprise Data Protection Best Practices
Digital Guardian
JANUARY 16, 2024
When it comes to securing data, following best practices helps form a strong foundation. Enterprises looking to embrace data protection best practices should consider the following methods to ensure data - both company and user - is kept safe and secure.
Introducing CDEs to Your Enterprise
Advertisement
Explore how enterprises can enhance developer productivity and onboarding by adopting self-hosted Cloud Development Environments (CDEs). This whitepaper highlights the simplicity and flexibility of cloud-based development over traditional setups, demonstrating how large teams can leverage economies of scale to boost efficiency and developer satisfaction.
The No-Nonsense Guide to Bypassing API Auth Using NoSQL Injection
Security Boulevard
JANUARY 16, 2024
Introduction Sometimes, the way to bypass API auth is easier than you think. That’s all thanks to modern software development and the exponential growth of web services and cloud-based applications. Let me explain. APIs (Application Programming Interfaces) serve as the backbone for the seamless interaction between different software applications, systems, and services.
Zero-Day Alert: Update Chrome Now to Fix New Actively Exploited Vulnerability
The Hacker News
JANUARY 16, 2024
Google on Tuesday released updates to fix four security issues in its Chrome browser, including an actively exploited zero-day flaw. The issue, tracked as CVE-2024-0519, concerns an out-of-bounds memory access in the V8 JavaScript and WebAssembly engine, which can be weaponized by threat actors to trigger a crash.
A Flaw in Millions of Apple, AMD, and Qualcomm GPUs Could Expose AI Data
WIRED Threat Level
JANUARY 16, 2024
Patching every device affected by the LeftoverLocals vulnerability—which includes some iPhones, iPads, and Macs—may prove difficult.
FBI: Androxgh0st malware botnet steals AWS, Microsoft credentials
Bleeping Computer
JANUARY 16, 2024
CISA and the FBI warned today that threat actors using Androxgh0st malware are building a botnet focused on cloud credential theft and using the stolen information to deliver additional malicious payloads. [.
IT Leadership Agrees AI is Here, but Now What?
Advertisement
IT leaders are experiencing rapid evolution in AI amid sustained investment uncertainty. As AI evolves, enhanced cybersecurity and hiring challenges grow. This whitepaper offers real strategies to manage risks and position your organization for success.
Citrix, VMware, and Atlassian Hit with Critical Flaws — Patch ASAP!
The Hacker News
JANUARY 16, 2024
Citrix is warning of two zero-day security vulnerabilities in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway) that are being actively exploited in the wild. The flaws are listed below - CVE-2023-6548 (CVSS score: 5.
A true tale of virtual kidnapping: Lock and Code S05E02
Malwarebytes
JANUARY 16, 2024
This week on the Lock and Code podcast… On Thursday, December 28, at 8:30 pm in the Utah town of Riverdale, the city police began investigating what they believed was a kidnapping. 17-year-old foreign exchange student Kai Zhuang was missing, and according to Riverdale Police Chief Casey Warren , Zhuang was believed to be “forcefully taken” from his home, and “being held against his will.
CVE-2023-6548 & 6549: Two new Citrix Netscaler zero-days exploited in attacks
Penetration Testing
JANUARY 16, 2024
Citrix, a leader in digital workspace solutions, has sounded an alarm for its customers regarding two critical zero-day vulnerabilities, CVE-2023-6548 and CVE-2023-6549. These vulnerabilities pose a significant threat to the Netscaler management interface in... The post CVE-2023-6548 & 6549: Two new Citrix Netscaler zero-days exploited in attacks appeared first on Penetration Testing.
GitHub rotates keys to mitigate impact of credential-exposing flaw
Bleeping Computer
JANUARY 16, 2024
GitHub rotated keys potentially exposed by a vulnerability patched in December that could let attackers access credentials within production containers via environment variables. [.
Enhance Innovation and Governance Through the Cloud Development Maturity Model
Advertisement
Leverage the Cloud Development Environment Maturity Model to elevate your software development practices with scalable, secure cloud-based workspaces. This model offers a structured approach to modernizing development, aligning technology, developer experience, security, and workflows. By implementing Cloud Development Environments (CDEs), teams can boost efficiency, improve security, and streamline operations through centralized governance.
Let's personalize your content