BleepingComputer.com

"Google fixes fifth chrome zero-day exploited in attacks this year."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 May 2024, 1526 UTC.

Content and Source:  https://www.bleepingcomputer.com/

Please scroll down to read your selections.  Thanks for joining us today.

You can read earlier posts by checking the "Archive" link in the blog sidebar.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Learn ethical hacking techniques with $1,000 off this super bundle

  • Ethical hacking takes the battle to the black hats and keeps them from taking over the internet. These 18 cybersecurity training courses show you how to fight back for $39.97, $1059 off the $1098 MSRP now through 5/12.

    • BLEEPINGCOMPUTER DEALS
    •  
    • MAY 10, 2024
    •  
    • 07:15 AM
    •  
    • Comment Count 0
  • Google Chrome
     

Google fixes fifth Chrome zero-day exploited in attacks this year

  • ​Google has released a security update for the Chrome browser to fix the fifth zero-day vulnerability exploited in the wild since the start of the year.

  • World Internet Network
     

Widely used Telit Cinterion modems open to SMS takeover attacks

  • Security flaws in Telit Cinterion cellular modems, widely used in sectors including industrial, healthcare, and telecommunications, could allow remote attackers to execute arbitrary code via SMS.

  • Russian hackers
     

Poland says Russian military hackers target its govt networks

  • Poland says a state-backed threat group linked to Russia's military intelligence service (GRU) has been targeting Polish government institutions throughout the week.

  • Monday.com
     

Monday.com removes "Share Update" feature abused for phishing attacks

  • Project management platform Monday.com has removed its "Share Update" feature after threat actors abused it in phishing attacks.

  • Citrix
     

Citrix warns admins to manually mitigate PuTTY SSH client bug

  • Citrix notified customers this week to manually mitigate a PuTTY SSH client vulnerability that could allow attackers to steal a XenCenter admin's private SSH key.

  • Microsoft Office
     

Add Microsoft Office to your Windows or Mac laptop for $200 off

  • Get Microsoft Office Professional Plus 2019 for Windows and Microsoft Office Home & Business 2019 for Mac for $29.97, $200 off the $229 MSRP, through the end of May 12th, 2024.

    • BLEEPINGCOMPUTER DEALS
    •  
    • MAY 09, 2024
    •  
    • 02:11 PM
    •  
    • Comment Count 0
  • AT&T ATT
     

AT&T delays Microsoft 365 email delivery due to spam wave

  • AT&T's email servers are blocking connections from Microsoft 365 due to a "high volume" spam wave originating from Microsoft's service.

  • British Columbia
     

British Columbia investigating cyberattacks on government networks

  • The Government of British Columbia is investigating multiple "cybersecurity incidents" that have impacted the Canadian province's government networks.

  • Dell
     

Dell warns of data breach, 49 million customers allegedly affected

  • Dell is warning customers of a data breach after a threat actor claimed to have stolen information for approximately 49 million customers.

  • Fix corrupted files and save data with $70 off EaseUS Fixo
     

Fix corrupted files and save data with $70 off EaseUS Fixo

  • Every file can potentially be corrupted, and having a repair utility is a great backup to your backup. EaseUS's Fixo app for Windows and Mac can help for $49.99, $70 off the $119.95 MSRP.

    • BLEEPINGCOMPUTER DEALS
    •  
    • MAY 09, 2024
    •  
    • 07:07 AM
    •  
    • Comment Count 0
  • Zscaler
     

Zscaler takes "test environment" offline after rumors of a breach

  • Zscaler says that they discovered an exposed "test environment" that was taken offline for analysis after rumors circulated that a threat actor was selling access to the company's systems.

  • Georgia Institute of Technology Tech Tower
     

University System of Georgia: 800K exposed in 2023 MOVEit attack

  • The University System of Georgia (USG) is sending data breach notifications to 800,000 individuals whose data was exposed in the 2023 Clop MOVEit attacks.

  • Hospital
     

Ascension healthcare takes systems offline after cyberattack

  • ​Ascension, one of the largest private healthcare systems in the United States, has taken some of its systems offline to investigate what it describes as a "cyber security event."

  • Stack Overflow OpenAI
     

Stack Overflow suspends user for editing posts in OpenAI protest

  • A recent partnership announcement between OpenAI and Stack Overflow has some members concerned that their data is being used without permission and, when trying to remove their posts, find their accounts are suspended.

  • F5
     

New BIG-IP Next Central Manager bugs allow device takeover

  • F5 has fixed two high-severity BIG-IP Next Central Manager vulnerabilities, which can be exploited to gain admin control and create rogue accounts on any managed assets.

  • PowerShell
     

Master Windows automation with 6 PowerShell courses for $16.97

  • The full 2024 Windows PowerShell Certification Bundle is worth $78, but you can get it for just $16.97 if you order by 11:59 pm Pacific on 5/12.

    • BLEEPINGCOMPUTER DEALS
    •  
    • MAY 08, 2024
    •  
    • 02:09 PM
    •  
    • Comment Count 0
  • Hacker card
     

FBI warns of gift card fraud ring targeting retail companies

  • The FBI warned retail companies in the United States that a financially motivated hacking group has been targeting employees in their gift card departments in phishing attacks since at least January 2024.

  • Wichita Keeper of the Plains
     

City of Wichita breach claimed by LockBit ransomware gang

  • The LockBit ransomware gang has claimed responsibility for a disruptive cyberattack on the City of Wichita, which has forced the City's authorities to shut down IT systems used for online bill payment, including court fines, water bills, and public transportation.

  • Windows
     

Microsoft: April Windows Server updates also cause crashes, reboots

  • Microsoft has confirmed that last month's Windows Server security updates may also cause domain controller reboots after the Local Security Authority Subsystem Service (LSASS) process crashes.

VIEW MORE

Comments

Popular posts from this blog

SecurityWeek Briefing.

Cyber War Newswire

SecurityWeek Briefing.