BleepingComputer.com: Latest Cybersecurity News
Rogue HackerOne employee steals bug reports to sell on his own.
Views expressed in this cybersecurity-cyber crime update are those of the reporters and correspondents.
Accessed on 03 July 2022, 0501 UTC.
Content supplied by "BleepingComputer.com."
Source: https://www.bleepingcomputer.com/
Please click link or scroll down to read your selections.
Thanks for joining us today.
Russ Roberts
https://www.hawaiicybersecurityjournal.net
https://paper.li/RussellRoberts (machine learning, artificial intelligence, IoT, information security)
-
Rogue HackerOne employee steals bug reports to sell on the side
A HackerOne employee stole vulnerability reports submitted through the bug bounty platform and disclosed them to affected customers to claim financial rewards.
- JULY 02, 2022
- 11:36 AM
- 0
-
Microsoft finds Raspberry Robin worm in hundreds of Windows networks
Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.
- JULY 02, 2022
- 10:07 AM
- 0
-
Improve your firewall skills with this PCCSA training course deal
A firewall is often your first defense against breaches and attacks. This deep dive into the Palo Alto Networks Cybersecurity Fundamentals (PCCSA) certification will help you get the most from them for $19.99, 93% off the $295 MSRP.
- JULY 02, 2022
- 08:15 AM
- 0
-
Zoho ManageEngine ADAudit Plus bug gets public RCE exploit
Security researchers have published technical details and proof-of-concept exploit code for CVE-2022-28219, a critical vulnerability in the Zoho ManageEngine ADAudit Plus tool for monitoring activities in the Active Directory.
- JULY 01, 2022
- 03:45 PM
- 0
-
The Week in Ransomware - July 1st 2022 - Bug Bounties
It has been relatively busy this week with new ransomware attacks unveiled, a bug bounty program introduced, and new tactics used by the threat actors to distribute their encryptors.
- JULY 01, 2022
- 03:35 PM
- 0
-
CISA orders agencies to patch Windows LSA bug exploited in the wild
CISA has re-added a security bug affecting Windows devices to its list of bugs exploited in the wild after removing it in May due to Active Directory (AD) certificate authentication issues caused by Microsoft's May 2022 updates.
- JULY 01, 2022
- 01:20 PM
- 0
-
Microsoft updates Azure AD with support for temporary passcodes
Azure Active Directory (Azure AD) now allows admins to issue time-limited passcodes that can be used to register new passwordless authentication methods, during Windows onboarding, or to recover accounts easier when losing credentials or FIDO2 keys.
- JULY 01, 2022
- 12:05 PM
- 0
-
Microsoft: Windows Server 2012 reaches end of support in October 2023
Microsoft has reminded customers that Windows Server 2012/2012 R2 will reach its extended end-of-support (EOS) date next year, on October 10, 2023.
- JULY 01, 2022
- 07:54 AM
- 0
-
Back up all your crucial information with this cloud storage plan deal
Backing up your data helps protect you from both hackers and equipment loss. Degoo Premium Mega Backup Plans offer a lifetime of security with four different storage sizes. Get 15TB for $119.99, 25TB for $159.99, 35TB for $199,99, or 50TB for $239.99, all with code JULY20, now through July 5th.
- JULY 01, 2022
- 07:27 AM
- 0
-
Jenkins discloses dozens of zero-day bugs in multiple plugins
On Thursday, the Jenkins security team announced 34 security vulnerabilities affecting 29 plugins for the Jenkins open source automation server, 29 of the bugs being zero-days still waiting to be patched.
- JULY 01, 2022
- 06:12 AM
- 1
-
Toll fraud malware disables your WiFi to force premium subscriptions
Microsoft is warning that toll fraud malware is one of the most prevalent threats on Android and that it is evolving with features that allow automatic subscription to premium services.
- JUNE 30, 2022
- 07:05 PM
- 1
-
Create mobile code from your designs with this developer tool
Creating mobile apps is shifting from specialty development shops to an expected skill for IT professionals. The Monday Hero Pro Developer Tool Two-Year Subscription draws from your design documents for $79, 81% off the $432 MSRP.
- JUNE 30, 2022
- 02:25 PM
- 0
-
Macmillan shuts down systems after likely ransomware attack
Publishing giant Macmillan was forced to shut down their network and offices while recovering from a security incident that appears to be a ransomware attack.
- JUNE 30, 2022
- 02:04 PM
- 0
-
Microsoft Exchange servers worldwide backdoored with new malware
A newly discovered lightweight and persistent malware was used by attackers to backdoor Microsoft Exchange servers belonging to government and military organizations from Europe, the Middle East, Asia, and Africa.
- JUNE 30, 2022
- 12:59 PM
- 3
-
Ukraine targeted by almost 800 cyberattacks since the war started
Ukrainian government and private sector organizations have been the target of 796 cyberattacks since the start of the war on February 24, 2022, when Russia invaded Ukraine.
- JUNE 30, 2022
- 10:57 AM
- 4
-
Russian hacktivists take down Norway govt sites in DDoS attacks
Norway's National Security Authority (NSM) published a statement yesterday warning that some of the country's most important websites and online services are being rendered inaccessible due to distributed denial of service (DDoS) attacks.
- JUNE 30, 2022
- 10:31 AM
- 0
-
XFiles info-stealing malware adds support for Follina delivery
The XFiles info-stealer malware has added a delivery module that exploits CVE-2022-30190, aka Follina, for dropping the payload on target computers.
- JUNE 30, 2022
- 09:00 AM
- 0
-
Google blocked dozens of domains used by hack-for-hire groups
Google's Threat Analysis Group (TAG) has blocked dozens of malicious domains and websites used by hack-for-hire groups in attacks targeting high-risk targets worldwide.
- JUNE 30, 2022
- 08:19 AM
- 0
-
AstraLocker 2.0 infects users directly from Word attachments
A lesser-known ransomware strain called AstraLocker has recently released its second major version, and according to threat analysts, its operators engage in rapid attacks that drop its payload directly from email attachments.
- JUNE 30, 2022
- 08:12 AM
- 0
Comments
Post a Comment
Please leave a comment about our recent post.