Source: thehackernews.com – Author: . Jul 17, 2023THNEndpoint Security / Cyber Attack Cyber attacks using infected USB infection drives as an initial access vector have witnessed...
Day: July 19, 2023
Cybercriminals Exploit Microsoft Word Vulnerabilities to Deploy LokiBot Malware – Source:thehackernews.com
Source: thehackernews.com – Author: . Jul 17, 2023THNMalware / Cyber Threat Microsoft Word documents exploiting known remote code execution flaws are being used as phishing lures...
CERT-UA Uncovers Gamaredon’s Rapid Data Exfiltration Tactics Following Initial Compromise – Source:thehackernews.com
Source: thehackernews.com – Author: . Jul 17, 2023THNCyber Attack / Data Safety The Russia-linked threat actor known as Gamaredon has been observed conducting data exfiltration activities...
WormGPT: New AI Tool Allows Cybercriminals to Launch Sophisticated Cyber Attacks – Source:thehackernews.com
Source: thehackernews.com – Author: . Jul 15, 2023THNArtificial Intelligence / Cyber Crime With generative artificial intelligence (AI) becoming all the rage these days, it’s perhaps not...
Microsoft Bug Allowed Hackers to Breach Over Two Dozen Organizations via Forged Azure AD Tokens – Source:thehackernews.com
Source: thehackernews.com – Author: . Jul 15, 2023THNCyber Attack / Enterprise Security Microsoft on Friday said a validation error in its source code allowed for Azure...
Critical Security Flaws Uncovered in Honeywell Experion DCS and QuickBlox Services – Source:thehackernews.com
Source: thehackernews.com – Author: . Jul 14, 2023THNVulnerability/ Cyber Threat Multiple security vulnerabilities have been discovered in various services, including Honeywell Experion distributed control system (DCS)...
Google Virus Total leaks list of spooky email addresses – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Early disclaimer: this isn’t quite the mother of all data breaches, nor even perhaps a younger cousin, so you can...
Microsoft hit by Storm season – a tale of two semi-zero days – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin At the tail-end of last week, Microsoft published a report entitled Analysis of Storm-0558 techniques for unauthorized email access. In...
Zimbra Collaboration Suite warning: Patch this 0-day right now (by hand)! – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Popular collaboration product Zimbra has warned customers to apply a software patch urgently to close a security hole that it...
S3 Ep143: Supercookie surveillance shenanigans – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin Remembering the slide rule. What you need to know about Patch Tuesday. Supercookie surveillance shenanigans. When bugs arrive in pairs....
Microsoft patches four zero-days, finally takes action against crimeware kernel drivers – Source: nakedsecurity.sophos.com
Source: nakedsecurity.sophos.com – Author: Paul Ducklin This Tuesday, 2023-07-11, was Microsoft’s Patch Tuesday for July 2023, so here’s a brief reminder to do two things: Patch...