BleepingComputer.com: Cybersecurity News

"Instagram's Threads to get Twitter-like support, edit button and more."

Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents.  Accessed on 09 July 2023, 1319 UTC.  Content provided by "BleepingComputer.com."

Source:  https://www.bleepingcomputer.com/ ("BleepingComputer.com").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Instagram's Threads to get Twitter-like hashtags support, edit button and more

  • Instagram's dedicated text-sharing app, Threads, is set to introduce many new features, including Twitter-style hashtags, an edit button, a trending page, and possibly even an automatic archiving function. Instagram's Head, Adam Mosseri, confirmed these upcoming features in a series of posts on Threads.

  • Big Head Hacker
     

New ‘Big Head’ ransomware displays fake Windows update alert

  • Security researchers have dissected a recently emerged ransomware strain named 'Big Head' that may be spreading through malvertising that promotes fake Windows updates and Microsoft Word installers.

  • CISA
     

CISA warns govt agencies to patch actively exploited Android driver

  • CISA ordered federal agencies today to patch a high-severity Arm Mali GPU kernel driver privilege escalation flaw added to its list of actively exploited vulnerabilities and addressed with this month's Android security updates.

  • Mastodon
     

Critical TootRoot bug lets attackers hijack Mastodon servers

  • Mastodon, the free and open-source decentralized social networking platform, has patched four vulnerabilities, including a critical one that allows hackers to create arbitrary files on instance-hosting servers using specially crafted media files.

  • Barracuda
     

Barracuda working on fix for ongoing Email Gateway login issues

  • Email and network security firm Barracuda is working to fix an ongoing issue that triggers invalid login errors and prevents Email Gateway Defense users from signing into their accounts.

  • MOVEit
     

MOVEit Transfer customers warned to patch new critical flaw

  • MOVEit Transfer, the software at the center of the recent massive spree of Clop ransomware breaches, has received an update that fixes a critical-severity SQL injection bug and two other less severe vulnerabilities.

  • Android
     

Apps with 1.5M installs on Google Play send your data to China

  • Security researchers discovered two malicious file management applications on Google Play with a collective installation count of over 1.5 million that collected excessive user data that goes well beyond what's needed to offer the promised functionality.

  • CISA
     

CISA: Netwrix Auditor RCE bug exploited in Truebot malware attacks

  • CISA and the FBI warned today of new Truebot malware variants deployed on networks compromised using a critical remote code execution (RCE) vulnerability in the Netwrix Auditor software in attacks targeting organizations across the United States and Canada.

  • Nickelodeon
     

Nickelodeon investigates breach after leak of 'decades old’ data

  • Nickelodeon has confirmed that the data leaked from an alleged breach of the company is legitimate but some of it appears to be decades old.

  • Outlook
     

Microsoft investigates Outlook.com bug breaking email search

  • Microsoft is investigating an ongoing issue preventing Outlook.com users from searching their emails and triggering 401 exception errors. 

  • Cisco
     

Cisco warns of bug that lets attackers break traffic encryption

  • Cisco warned customers today of a high-severity vulnerability impacting some data center switch models and allowing attackers to tamper with encrypted traffic.

  • JumpCloud white
     

JumpCloud resets admin API keys amid ‘ongoing incident’

  • JumpCloud, a US-based enterprise software firm is notifying several customers of an "ongoing incident." As a caution, the company has invalidated existing admin API keys to protect its customer organizations. Headquartered in Colorado, the cloud-based directory-as-a-service platform serves over 180,000 organizations across the world.

  • android
     

Android July security updates fix three actively exploited bugs

  • Google has released the monthly security updates for Android operating system, which comes with fixes for 46 vulnerabilities. Three of the issues are likely actively exploited in the wild.

VIEW MORE

Comments

Popular posts from this blog

SecurityWeek Briefing.

Cyber War Newswire

SecurityWeek Briefing.