Sun.Aug 04, 2024

article thumbnail

Legal, Financial and Insurance Implications of the CrowdStrike-Microsoft Incident

Lohrman on Security

As Delta Air Lines, and many other public and private organizations, tally the business costs from the unprecedented incident caused by a CrowdStrike update, lawyers debate contract language.

Insurance 186
article thumbnail

Hackers attempt to sell the personal data of 3 billion people resulting from an April data breach

Security Affairs

Jerico Pictures Inc., operating as National Public Data, exposed the personal information of nearly 3 billion individuals in an April data breach. A proposed class action claims that Jerico Pictures Inc., operating with the National Public Data, exposed the personal information of nearly 3 billion individuals in a data breach that occurred in April.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

CVE-2024-38100: Leaked Wallpaper Exploit Exposes Windows Users to Privilege Escalation Attacks

Penetration Testing

In a recent security bulletin, Microsoft disclosed a critical vulnerability in Windows File Explorer, identified as CVE-2024-38100, with a CVSS score of 7.8. This flaw, discovered by Andrea Pierini from Semperis, allows attackers to... The post CVE-2024-38100: Leaked Wallpaper Exploit Exposes Windows Users to Privilege Escalation Attacks appeared first on Cybersecurity News.

article thumbnail

Chinese StormBamboo APT compromised ISP to deliver malware

Security Affairs

A China-linked APT, tracked as StormBamboo, compromised an internet service provider (ISP) to poison software update mechanisms with malware. Volexity researchers reported that a China-linked APT group, tracked as StormBamboo (aka Evasive Panda , Daggerfly , and StormCloud), successfully compromised an undisclosed internet service provider (ISP) in order to poison DNS responses for target organizations.

Malware 145
article thumbnail

Prevent Data Breaches With Zero-Trust Enterprise Password Management

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our next-generation privileged access management solution deploys in minutes and seamlessly integrates with any tech stack to prevent breaches, reduce help desk costs and ensure compliance.

article thumbnail

Critical Flaw in Rockwell Automation Devices Allows Unauthorized Access

The Hacker News

A high-severity security bypass vulnerability has been disclosed in Rockwell Automation ControlLogix 1756 devices that could be exploited to execute common industrial protocol (CIP) programming and configuration commands. The flaw, which is assigned the CVE identifier CVE-2024-6242, carries a CVSS v3.1 score of 8.4.

143
143
article thumbnail

China-linked APT41 breached Taiwanese research institute

Security Affairs

China-linked group APT41 breached a Taiwanese government-affiliated research institute using ShadowPad and Cobalt Strike. Cisco Talos researchers reported that the China-linked group compromised a Taiwanese government-affiliated research institute. The experts attributed the attack with medium confidence to the APT41 group. The campaign started as early as July 2023 and threat actors delivered the ShadowPad malware, Cobalt Strike , and other post-exploitation tools.

Malware 144

More Trending

article thumbnail

Security Affairs Malware Newsletter – Round 5

Security Affairs

Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape. Unplugging PlugX: Sinkholing the PlugX USB worm botnet Introducing Gh0stGambit: A Dropper for Deploying Gh0st RAT Mandrake spyware sneaks onto Google Play again, flying under the radar for two years A Survey of Malware Detection Using Deep Learning ThreatLabz 2024_Ransomware Report Phishing targeting Polish SMBs continues via ModiLoader BingoMod: The new android

Malware 142
article thumbnail

New Android Trojan "BlankBot" Targets Turkish Users' Financial Data

The Hacker News

Cybersecurity researchers have discovered a new Android banking trojan called BlankBot targeting Turkish users with an aim to steal financial information. "BlankBot features a range of malicious capabilities, which include customer injections, keylogging, screen recording and it communicates with a control server over a WebSocket connection," Intel 471 said in an analysis published last week.

Banking 137
article thumbnail

Surge in Magniber ransomware attacks impact home users worldwide

Bleeping Computer

[.

article thumbnail

Malcolm: A Comprehensive Network Traffic Analysis Tool

Penetration Testing

In today’s complex cybersecurity landscape, effective network traffic analysis is crucial for detecting and mitigating potential threats. Malcolm, a powerful network traffic analysis tool suite, stands out as an innovative solution designed to streamline... The post Malcolm: A Comprehensive Network Traffic Analysis Tool appeared first on Cybersecurity News.

article thumbnail

Optimizing The Modern Developer Experience with Coder

Many software teams have migrated their testing and production workloads to the cloud, yet development environments often remain tied to outdated local setups, limiting efficiency and growth. This is where Coder comes in. In our 101 Coder webinar, you’ll explore how cloud-based development environments can unlock new levels of productivity. Discover how to transition from local setups to a secure, cloud-powered ecosystem with ease.

article thumbnail

How to protect yourself from becoming victim of UPI frauds?

Quick Heal Antivirus

A new and interesting kind of cyber theft is making rounds in the cyber world. This time the. The post How to protect yourself from becoming victim of UPI frauds? appeared first on Quick Heal Blog.

98
article thumbnail

Mint Stealer: New MaaS Malware Threatens Confidential Data

Penetration Testing

Experts from Cyfirma have released a report on the malware Mint Stealer, which operates under the “Malware-as-a-Service” (MaaS) model. This malware specializes in stealing confidential data and employs advanced techniques to bypass security measures.... The post Mint Stealer: New MaaS Malware Threatens Confidential Data appeared first on Cybersecurity News.

Malware 89
article thumbnail

Fuzzy matching with Ghidra BSim, a guide

Pen Test Partners

TL;DR BSim, Ghidra’s new built-in plugin is a game-changer for reversing firmware and other stripped binaries. Rapidly identify and annotate functions from known libraries. Fuzzy matching works with unknowns, like exact library versions and compiler options. Automatically define custom variable types and structures in your project. Background Oh no!

article thumbnail

CVE-2024-36268: Apache InLong Vulnerability Leaves Systems Open to Remote Attacks

Penetration Testing

The Apache InLong project, a popular data integration framework widely used for handling large-scale data streams, has issued a security advisory regarding a critical vulnerability discovered in its TubeMQ component. Tracked as CVE-2024-36268, this... The post CVE-2024-36268: Apache InLong Vulnerability Leaves Systems Open to Remote Attacks appeared first on Cybersecurity News.

article thumbnail

The Tumultuous IT Landscape Is Making Hiring More Difficult

After a year of sporadic hiring and uncertain investment areas, tech leaders are scrambling to figure out what’s next. This whitepaper reveals how tech leaders are hiring and investing for the future. Download today to learn more!

article thumbnail

USENIX Security ’23 – NeuroPots: Realtime Proactive Defense against Bit-Flip Attacks in Neural Networks

Security Boulevard

Authors/Presenters:Qi Liu, Jieming Yin, Wujie Wen, Chengmo Yang, Shi Shay Many thanks to USENIX for publishing their outstanding USENIX Security ’23 Presenter’s content, and the organizations strong commitment to Open Access. Originating from the conference’s events situated at the Anaheim Marriott ; and via the organizations YouTube channel. Permalink The post USENIX Security ’23 – NeuroPots: Realtime Proactive Defense against Bit-Flip Attacks in Neural Networks appeared first on Security

article thumbnail

Calibre eBook Software Exposed: Critical Security Vulnerabilities Discovered

Penetration Testing

Calibre, the popular cross-platform e-book management software, has three significant security vulnerabilities. These vulnerabilities, identified by researchers from STAR Labs SG Pte. Ltd., could potentially expose millions of users to various cyber threats. The... The post Calibre eBook Software Exposed: Critical Security Vulnerabilities Discovered appeared first on Cybersecurity News.

article thumbnail

The Great CrowdStrike Crash, AI’s Role in Employee Smiles

Security Boulevard

In episode 341, we cover the unprecedented global IT outage caused by a CrowdStrike update crash, affecting 8.5 million Windows machines. We discuss whether it’s the largest outage in history and discuss the intricacies of internet accessibility and responses from key stakeholders like Microsoft. Also, in our Aware Much segment, we explore Japan’s AI system, […] The post The Great CrowdStrike Crash, AI’s Role in Employee Smiles appeared first on Shared Security Podcast.

article thumbnail

CVE-2024-38856: Critical Apache OFBiz Flaw Opens Door to Unauthorized Code Execution

Penetration Testing

A newly identified vulnerability in Apache OFBiz, the widely adopted open-source enterprise resource planning (ERP) platform, has prompted urgent security advisories due to the potential for unauthorized code execution. Tracked as CVE-2024-38856, this flaw... The post CVE-2024-38856: Critical Apache OFBiz Flaw Opens Door to Unauthorized Code Execution appeared first on Cybersecurity News.

article thumbnail

The Cloud Development Environment Adoption Report

Cloud Development Environments (CDEs) are changing how software teams work by moving development to the cloud. Our Cloud Development Environment Adoption Report gathers insights from 223 developers and business leaders, uncovering key trends in CDE adoption. With 66% of large organizations already using CDEs, these platforms are quickly becoming essential to modern development practices.

article thumbnail

Security Affairs newsletter Round 483 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. US sued TikTok and ByteDance for violating children’s privacy laws Russia-linked APT used a car for sale as a phishing lure to target diplomats with HeadLace malware Investors sued CrowdStrike over false claims about its Falcon platform Avtech camera vuln

Spyware 131
article thumbnail

Critical Admidio Vulnerabilities CVE-2024-37906 and CVE-2024-38529 Revealed

Penetration Testing

Cybersecurity researchers have uncovered two critical security vulnerabilities (CVE-2024-37906 and CVE-2024-38529) in Admidio, a popular open-source user management system used by organizations and groups worldwide. These vulnerabilities could potentially allow attackers to compromise the... The post Critical Admidio Vulnerabilities CVE-2024-37906 and CVE-2024-38529 Revealed appeared first on Cybersecurity News.

article thumbnail

Accelerating Memory Safety: DARPA’s TRACTOR Program Transforms C to Rust

Penetration Testing

DARPA is accelerating the transition to memory-safe programming languages through the TRACTOR program, aimed at automated conversion of C code to Rust. This initiative is developing machine learning tools to automate the translation of... The post Accelerating Memory Safety: DARPA’s TRACTOR Program Transforms C to Rust appeared first on Cybersecurity News.

article thumbnail

Beware DEV#POPPER: Evolving Malware Targets Developers Everywhere

Penetration Testing

In recent months, the world has encountered a new campaign by North Korean hackers. The DEV#POPPER campaign targets software developers and affects victims in South Korea, North America, Europe, and the Middle East, as... The post Beware DEV#POPPER: Evolving Malware Targets Developers Everywhere appeared first on Cybersecurity News.

Malware 58
article thumbnail

Bringing the Cybersecurity Imperative Into Focus

Tech leaders today are facing shrinking budgets and investment concerns. This whitepaper provides insights from over 1,000 tech leaders on how to stay secure and attract top cybersecurity talent, all while doing more with less. Download today to learn more!

article thumbnail

Oyster Backdoor Gets Upgrade: Rhysida Ransomware Gang Uses SEO Poisoning in New Attack

Penetration Testing

On July 10, 2024, an unnamed private school was attacked by the Rhysida ransomware group, utilizing a new version of the Oyster Backdoor, also known as Broomstick. This updated variant of Oyster was first... The post Oyster Backdoor Gets Upgrade: Rhysida Ransomware Gang Uses SEO Poisoning in New Attack appeared first on Cybersecurity News.

article thumbnail

The Rise of RADAR and DISPOSSESSOR: A New Ransomware-as-a-Service

Penetration Testing

In April, a security researcher named Jim Walter from SentinelOne published an article detailing how some ransomware affiliates have begun collaborating to secure payment if deceived by previous partners. The most notable recent incident... The post The Rise of RADAR and DISPOSSESSOR: A New Ransomware-as-a-Service appeared first on Cybersecurity News.