Skip to main content

BleepingComputer.com

"New Windows Driver Signatures Bypass allows kernel root kit installs."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 26 October 2024, 2140 UTC.

Content and Source:  Email subscription via https://feedly.com.

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

 

BleepingComputer

90K followers42 articles per week#security#tech
39

Most popular

New Cisco ASA and FTD features block VPN brute-force password attacks
5 TTPs
48by Lawrence Abrams / 3h
Cisco has added new security features that significantly mitigate brute-force and password spray attacks on Cisco ASA and Firepower Threat Defense (FTD), helping protect the network from breaches and reducing resource utilization on devices. [...]
Windows 11 24H2 KB5044384 update fixes sfc /scannow corrupt file errors
Windows 11 KB5044380 update features
100+by Lawrence Abrams / 2d
Microsoft has released the optional KB5044384 preview cumulative update for Windows 11 24H2, which includes twenty-four changes, including a bug that caused the sfc /scannow command to always display corrupt file errors. [...]

Yesterday

Black Basta poses as IT support on Microsoft Teams to breach networks
IoC > 5 domains
37by Lawrence Abrams / 1d
7 TTPs
Black Basta uses Teams for attacks
The BlackBasta ransomware operation has moved its social engineering attacks to Microsoft Teams, posing as corporate help desks contacting employees to assist them with an ongoing spam attack. [...]
Amazon seizes domains used in rogue Remote Desktop campaign to steal data
12 TTPs
by Bill Toulas / 1d
AWS seizes APT29 phishing domains
Amazon has seized domains used by the Russian APT29 hacking group in targeted attacks against government and military organizations to steal Windows credentials and data using malicious Remote Desktop Protocol connection files. [...]

Oct 24, 2024

QNAP, Synology, Lexmark devices hacked on Pwn2Own Day 3
Pwn2Own Ireland 2024 hackers earn $500K
by Bill Toulas / 1d
The third day of Pwn2Own Ireland 2024 continued to showcase the expertise of white hat hackers as they exposed 11 zero-day vulnerabilities, adding $124,750 to the total prize pool, which now stands at $874,875. [...]
UnitedHealth says data of 100 million stolen in Change Healthcare breach
Change Healthcare breach affects 100M
74by Lawrence Abrams / 1d
UnitedHealth has confirmed for the first time that over 100 million people had their personal information and healthcare data stolen in the Change Healthcare ransomware attack, marking this as the largest healthcare data breach in recent years. [...]
UnitedHealth says data of 100 million stolen in Change Healthcare hack
Change Healthcare breach affects 100M
70by Lawrence Abrams / 1d
UnitedHealth has confirmed for the first time that over 100 million people had their personal information and healthcare data stolen in the Change Healthcare ransomware attack, marking this as the largest healthcare data breach in recent years. [...]
Apple creates Private Cloud Compute VM to let researchers find bugs
2 TTPs
27by Ionut Ilascu / 1d
Apple opens Private Cloud Compute for research
Apple created a Virtual Research Environment to allow public access to testing the security of its Private Cloud Compute system, and released the source code for some "key components" to help researchers analyze the privacy and safety features on the architecture. [...]
Ireland fines LinkedIn €310 million over targeted advertising
LinkedIn fined 310 million euros
by Bill Toulas / 2d
LinkedIn received a €310 million fine from the Irish Data Protection Commission for violating European Union's law related to the processing of personal data for behavioral analysis and targeted advertising. [...]
New Qilin ransomware encryptor features stronger encryption, evasion
14 TTPs
48by Bill Toulas / 2d
A new Rust-based variant of the Qilin (Agenda) ransomware strain, dubbed 'Qilin.B,' has been spotted in the wild, featuring stronger encryption, better evasion from security tools, and the ability to disrupt data recovery mechanisms. [...]
Mandiant says new Fortinet flaw has been exploited since June
IoC > 1 IP
30by Lawrence Abrams / 2d
6 TTPs
CVE-2024-47575
A new Fortinet FortiManager flaw dubbed "FortiJump" and tracked as CVE-2024-47575 has been exploited since June 2024 in zero-day attacks on over 50 servers, according to a new report by Mandiant. [...]

Oct 23, 2024

Windows 11 KB5044380 preview update lets you remap the Copilot key
Windows 11 KB5044380 update features
48by Lawrence Abrams / 3d
Microsoft has released the optional KB5044380 Preview cumulative update for Windows 11 23H2 and 22H2, which brings seventeen changes, including a new Gamepad keyboard and the ability to remap the Copilot keyboard key. [...]
Fortinet warns of new critical FortiManager flaw used in zero-day attacks
IoC > 4 IPs
68by Lawrence Abrams / 3d
9 TTPs
Fortinet publicly disclosed today a critical FortiManager API vulnerability, tracked as CVE-2024-47575, that was exploited in zero-day attacks to steal sensitive files containing configurations, IP addresses, and credentials for managed devices. [...]

Oct 22, 2024

AWS, Azure auth keys found in Android and iOS apps used by millions
200+by Bill Toulas / 4d
Multiple popular mobile applications for iOS and Android come with hardcoded, unencrypted credentials for cloud services like Amazon Web Services (AWS) and Microsoft Azure Blob Storage, exposing user data and source code to security breaches. [...]
SEC charges tech companies for downplaying SolarWinds breaches
SEC fines four companies $7M
30by Lawrence Abrams / 4d
The SEC has charged four companies—Unisys Corp, Avaya Holdings, Check Point Software, and Mimecast—for allegedly misleading investors about the impact of their breaches during the massive 2020 SolarWinds Orion hack. [...]
VMware fixes bad patch for critical vCenter Server RCE flaw
3 TTPs
85by Bill Toulas / 4d
VMware has released another security update for CVE-2024-38812, a critical VMware vCenter Server remote code execution vulnerability that was not correctly fixed in the first patch from September 2024. [...]

Oct 21, 2024

Hackers exploit Roundcube webmail flaw to steal email, credentials
IoC > 1 domain
44by Bill Toulas / 5d
9 TTPs
Threat actors have been exploiting a vulnerability in the Roundcube Webmail client to target government organizations in the Commonwealth of Independent States (CIS) region, the successor of the former Soviet Union. [...]
Certain ASUS laptops get BSOD when upgrading to Windows 11 24H2
Windows 11 24H2 faces issues
26by Bill Toulas / 5d
Microsoft is warning of Windows crashing with the blue screen of death on some ASUS laptop models when trying to upgrade to the latest version of the operating system, Windows 11 version 24H2. [...]
Labels:

Comments

Post a Comment

Please leave a comment about our recent post.

Popular posts from this blog

Cyber War News Today.

"International Defence Cooperation:  A key to regional stability." Views expressed in this cybersecurity, cyber espionage, and cyber crime update are those of the reporters and correspondents.  Accessed on 15 December 2024, 0134 UTC. Content and Source:   https://cyberwar.einnews.com/news/cyber-war-news?n=2&code=FA9GNesSTpp2rjO1&utm_source=NewsletterNews&utm_medium=email&utm_campaign=Cyber+War+News&utm_content=navig Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). Cyber War News Monitoring Get by    Email    •     RSS Published on  Dec 13, 2024 The Cyber Warfare Market Size Reach USD 127.1 Billion by 2032 Exhibiting CAGR at 13.3% WILMINGTON, DE, UNITED STATES, December 13, 2024 /⁨EINPresswire.com⁩/ -- According to the report, The Cyber Warfare Market Size Reach USD 127.1 Billion by 2032 Exhibiting CAGR at 1...
Post a Comment
Read more

The Cyberwire Daily Briefing

"Fortinet confirms breach of customer data." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 15 September 2024, 1339 UTC. Content and Source:   https://thecyberwire.com/newsletters/daily-briefing/13/176 Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). V13 | Issue 176 | 9.13.24 Daily Briefing for 09.13.24 Announcement Cloud Security in the Age of Generative AI. Artificial Intelligence is revolutionizing business, but it also introduces new risks. Join us on Wednesday, September 18th at 2pm EDT for a compelling live webinar on "Good vs. Evil: Cloud Security in the Age of Generative AI" with N2K CyberWire’s Dave Bittner and Sysdig’s Loris Degioanni.  Learn more and register now . Summary By the CyberWire staff At a glance. Fortinet confirms breach of customer data. Iran's Scarred Manticore deplo...
Post a Comment
Read more

SecurityWeek Briefing

"New RAMBO attack allows air-gapped data theft." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 September 2024, 0035 UTC. Content and Source:  https://www.securityweek.com Please check link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net).   Monday, September 9 , 2024 Are you worried about unmanaged devices and apps? LATEST CYBERSECURITY HEADLINES New RAMBO Attack Allows Air-Gapped Data Theft Predator Spyware Resurfaces With Fresh Infrastructure Google Pushes Rust in Legacy Firmware to Tackle Memory Safety Flaws 300,000 Impacted by Data Breach at Car Rental Firm Avis One Million US Kaspersky Customers Transferred to Pango’s UltraAV Two Indicted in US for Running Dark Web Marketplaces Offering Stolen Information Critical SonicWall Vulnerability Possibly Exploited in Ransomware Attacks CISA Breaks Silence on Controvers...
Post a Comment
Read more