SecureList

NOVEMBER 6, 2024

It spreads via forums posts, torrent trackers and blogs, imitating popular software like Foxit PDF Editor and AutoCAD. These posts refer to the SteelFox dropper as an efficient way to activate a legitimate software product for free. Instead, it operates on a larger scale, infecting everyone who stumbles upon the compromised software.

Software 121

Software Cryptocurrency Malware DNS 121

Security Boulevard

JANUARY 6, 2025

DigiCert has made available a Domain Control Validation (DCV) library under an open-source software license as part of a larger effort to enable certificate authorities (CAs) to reduce total costs. The post DigiCert Open Sources Domain Control Validation Software appeared first on Security Boulevard.

Software 107

Software Cybersecurity 107

Krebs on Security

FEBRUARY 28, 2025

Security experts say the Russia-based service provider Prospero OOO (the triple O is the Russian version of “LLC”) has long been a persistent source of malicious software, botnet controllers, and a torrent of phishing websites. federal agencies from using Kaspersky software, mandating its removal within 90 days.

Malware 234

Malware Antivirus Software DDOS 234

Schneier on Security

FEBRUARY 13, 2025

DOGE personnel are also reported to be feeding Education Department data into artificial intelligence software, and they have also started working at the Department of Energy. But given that DOGE workers have already copied data and possibly installed and modified software, it’s unclear how this fixes anything.

Government 363

Government Artificial Intelligence Banking Software 363

Security Affairs

NOVEMBER 26, 2024

Blue Yonder, a supply chain software provider, suffered a ransomware attack, impacting operations for clients like Starbucks and grocery stores. ” reads the statement published by the supply chain management software provider. grocery chain Sainsbury. ” reported CNN. Blue Yonder Group , Inc.

Software 115

Software Ransomware Retail Manufacturing 115

Schneier on Security

NOVEMBER 27, 2024

Legal documents released in ongoing US litigation between NSO Group and WhatsApp have revealed for the first time that the Israeli cyberweapons maker ­ and not its government customers ­ is the party that “installs and extracts” information from mobile phones targeted by the company’s hacking software.

Government 316

Government Spyware Mobile Hacking 316

Schneier on Security

FEBRUARY 3, 2025

Like other spyware makers, Paragon’s hacking software is used by government clients and WhatsApp said it had not been able to identify the clients who ordered the alleged attacks. ” It is not clear who was behind the attack.

Spyware 272

Spyware Government Hacking Software 272

Schneier on Security

DECEMBER 17, 2024

. […] Because the vulnerability that allowed him to rewrite the plates’ firmware exists at the hardware level—in Reviver’s chips themselves—Rodriguez says there’s no way for Reviver to patch the issue with a mere software update. Instead, it would have to replace those chips in each display.

Firmware 272

Firmware Hacking Software 272

Adam Shostack

JANUARY 2, 2025

Software on Microsoft Windows uses an application programming interface (API) called "CreateFile" to access files. Ransomware works by going through files, one by one, and replacing their content with an encrypted version. Sometimes it also sends copies elsewhere, but that turns out to be slow, and sometimes sets off alarms.)

Ransomware 246

Ransomware Encryption Software 246

Schneier on Security

JANUARY 16, 2025

It was that very server that allowed the FBI to finally kill this pesky bit of malicious software. According to the FBI , at least 45,000 IP addresses in the US had back-and-forths with the command-and-control server since September 2023.

Malware 247

Malware Hacking Software 247

The Last Watchdog

OCTOBER 23, 2024

INE Security advises businesses to secure their network by using firewalls, encrypting data, and regularly updating security software. Tip 4: Regularly Updating and Patching Systems Keeping software and systems up to date is crucial in protecting against vulnerabilities. Many cyber attacks exploit vulnerabilities in outdated software.

Small Business 162

Small Business Data breaches Backups Passwords 162

Krebs on Security

FEBRUARY 11, 2025

Microsoft today issued security updates to fix at least 56 vulnerabilities in its Windows operating systems and supported software, including two zero-day flaws that are being actively exploited. Windows enterprise administrators would do well to keep an eye on askwoody.com , which often has the scoop on any patches causing problems.

Artificial Intelligence 192

Artificial Intelligence Engineering Software Internet 192

Krebs on Security

NOVEMBER 19, 2024

Finastra, which provides software and services to 45 of the world’s top 50 banks, notified customers of the security incident after a cybercriminal began selling more than 400 gigabytes of data purportedly stolen from the company. However, it did reference many of the same banks called out as Finastra customers in the Nov.

Data breaches 285

Data breaches Banking Cybercrime Advertising 285

Schneier on Security

APRIL 2, 2024

modified the way the software functions. The following year, JiaT75 submitted a patch over the xz Utils mailing list, and, almost immediately, a never-before-seen participant named Jigar Kumar joined the discussion and argued that Lasse Collin, the longtime maintainer of xz Utils, hadn’t been updating the software often or fast enough.

Social Engineering 353

Social Engineering Engineering Software Encryption 353

Schneier on Security

APRIL 11, 2024

There’s an important moral to the story of the attack and its discovery : The security of the global internet depends on countless obscure pieces of software written and maintained by even more obscure unpaid, distractible, and sometimes vulnerable volunteers. The modularity they provide makes software projects tractable.

Software 361

Software Engineering Internet Internet 361

Schneier on Security

JULY 25, 2024

As we experienced last week, a single problem in a small piece of software can take large swaths of the internet and global economy offline. Each piece of software depends on dozens of others, typically written by other engineering teams sometimes years earlier on the other side of the planet. These failures can take many forms.

Marketing 350

Marketing Software Internet Internet 350

Krebs on Security

DECEMBER 19, 2024

The cracked software is being resold as a cloud-based attack tool by at least two different services, one of which KrebsOnSecurity traced to an information technology firm based in Turkey. Araneida Scanner. LinkedIn finds this same altugsara[.]com Neither Altug Sara nor Bilitro Yazilim responded to requests for comment.

Hacking 225

Hacking Cybercrime Advertising Data breaches 225

Security Affairs

FEBRUARY 25, 2025

Russia’s NKTsKI warns financial sector organizations about a breach at major Russian IT service and software provider LANIT. LANIT Group (Laboratory of New Information Technologies) is one of Russia’s largest IT service and software providers. ” reads the security breach notification published by GosSOPKA.

Telecommunications 100

Telecommunications Software Technology Healthcare 100

Krebs on Security

JANUARY 31, 2025

The “fud” bit stands for “Fully Un-Detectable,” and it refers to cybercrime resources that will evade detection by security tools like antivirus software or anti-spam appliances. “The Cybercrime Team is on the trail of a number of buyers of the tools,” the Dutch national police said. ” U.S.

Phishing 244

Phishing Cybercrime Advertising Malware 244

Penetration Testing

NOVEMBER 25, 2024

Palo Alto Networks has issued a security advisory warning of a vulnerability in its GlobalProtect app that could allow attackers to install malicious software on endpoints.

Software 133

Software Cybersecurity 133

Penetration Testing

DECEMBER 3, 2024

Veeam Software, a prominent provider of backup and disaster recovery solutions, has released urgent security updates to address two critical vulnerabilities in its Service Provider Console (VSPC). One of these... The post CVE-2024-42448 (CVSS 9.9): Critical RCE Vulnerability in Veeam VSPC appeared first on Cybersecurity News.

Backups 136

Backups Software Cybersecurity 136

Penetration Testing

DECEMBER 22, 2024

The Apache Software Foundation recently released a critical security update to address a remote code execution (RCE) vulnerability in Apache Tomcat, identified as CVE-2024-56337.

Software 139

Software Cybersecurity 139

Security Affairs

NOVEMBER 9, 2024

.” The research targeted a CMU unit manufactured by Visteon, with software initially developed by Johnson Controls Inc. The study focused on the latest software version (74.00.324A), but experts believe that earlier versions (at least 70.x) x) may also be vulnerable.

Hacking 128

Hacking Firmware Software Manufacturing 128

Security Affairs

DECEMBER 3, 2024

The vulnerability resides in the WebVPN login page of Cisco Adaptive Security Appliance (ASA) Software, an unauthenticated, remote attacker could exploit the flaw to conduct a cross-site scripting (XSS) attack against a user of WebVPN on the Cisco ASA. ” reads the advisory. ” continues the advisory.

Software 118

Software Hacking Information Security 118

Krebs on Security

FEBRUARY 18, 2025

“The software can work from anywhere in the world,” Merrill said. “These guys provide the software for $500 a month, and it can relay both NFC enabled tap-to-pay as well as any digital wallet. Three individuals charged with using ghost tap software at an electronics store in Singapore. Image: The Straits Times.

Phishing 274

Phishing Mobile Scams Retail 274

Penetration Testing

DECEMBER 17, 2024

The Apache Software Foundation has released important security updates to address two vulnerabilities in Apache Tomcat, a widely-used open-source web server, and servlet container.

Software 116

Software Cybersecurity 116

Security Boulevard

OCTOBER 24, 2024

Unmanaged software as a service (SaaS) applications and AI tools within organizations are posing a growing security risk as vulnerabilities increase, according to a report from Grip Security. The post Majority of SaaS Applications, AI Tools Unmanaged appeared first on Security Boulevard.

Software 121

Software Risk Security Awareness Cybersecurity 121

Security Boulevard

JANUARY 10, 2025

Giant education software provider PowerSchool reported that hackers using compromised credentials access a database and stole student and teacher data in an attack that the company said was not ransomware, though a ransom apparently was paid. Affected K-12 school districts are scrambling to alert parents and staffs.

Education 115

Education Ransomware Software Data privacy 115

Adam Shostack

JANUARY 2, 2025

CISA has released their secure software attestation form , which means the 90 day clock is ticking. Application Security Interesting post: The most important goal in designing software is understandability. Semplici framework di sicurezza del software da integrare nei propri sistemi. Press release , technical report.)

Software 130

Software Advertising Hacking 130

Schneier on Security

AUGUST 2, 2024

Here’s a disaster that didn’t happen : Cybersecurity researchers from JFrog recently discovered a GitHub Personal Access Token in a public Docker container hosted on Docker Hub, which granted elevated access to the GitHub repositories of the Python language, Python Package Index (PyPI), and the Python Software Foundation (PSF).

Software 313

Software Cybersecurity 313