Stay Updated with the Latest Tech News
Get ahead of the curve with the latest insights, trends, and analysis in the tech world.
Browse by Category
Citrix Patches Zero-Day Recording Manager Bugs
There is some disagreement over whether the remote code execution (RCE) security flaws allow for unauthenticated exploitation or not. Citrix says no, but researchers say the company is downplaying a "good old unauthenticated RCE."
Published on: November 12, 2024 | Source:
Share on Facebook
Share in Tweet (rip twitter)
Share on LinkedIn
Share on Reddit
Share on Threads
Share on Bluesky
Hereβs the indictment against two men allegedly responsible for Snowflake customer breachΒ
Connor Moucka and John Binns were indicted in the U.S. court of Western Washington. The post Hereβs the indictment against two men allegedly responsible for Snowflake customer breach appeared first on CyberScoop.
Published on: November 12, 2024 | Source:Citrix 'Recording Manager' Zero-Day Bug Allows Unauthenticated RCE
The security vulnerability is due to an exposed Microsoft Message Queuing (MSMQ) instance and the use of the insecure BinaryFormatter.
Published on: November 12, 2024 | Source:The Power of the Purse: How to Ensure Security by Design
CISA should make its recommended goals mandatory and perform audits to ensure compliance.
Published on: November 12, 2024 | Source:New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration
Cybersecurity researchers have disclosed new security flaws impacting Citrix Virtual Apps and Desktop that could be exploited to achieve unauthenticated remote code execution (RCE) The issue, per findings from watchTowr, is rooted in the Session Recording component that allows system administrators to capture user activity, and record keyboard and mouse input, along with a video stream of the
Published on: November 12, 2024 | Source:New Phishing Tool GoIssue Targets GitHub Developers in Bulk Email Campaigns
Cybersecurity researchers are calling attention to a new sophisticated tool called GoIssue that can be used to send phishing messages at scale targeting GitHub users. The program, first marketed by a threat actor named cyberdluffy (aka Cyber D' Luffy) on the Runion forum earlier this August, is advertised as a tool that allows criminal actors to extract email addresses from public GitHub
Published on: November 12, 2024 | Source:North Korean-linked hackers were caught experimenting with new macOS malware
Researchers canβt tell if the malware was used in a campaign, or North Korean operatives were caught before they could deploy it in the wild. The post North Korean-linked hackers were caught experimenting with new macOS malware appeared first on CyberScoop.
Published on: November 12, 2024 | Source:North Korean Hackers Target macOS Using Flutter-Embedded Malware
Threat actors with ties to the Democratic People's Republic of Korea (DPRK aka North Korea) have been found embedding malware within Flutter applications, marking the first time this tactic has been adopted by the adversary to infect Apple macOS devices. Jamf Threat Labs, which made the discovery based on artifacts uploaded to the VirusTotal platform earlier this month, said the Flutter-built
Published on: November 12, 2024 | Source:Criminals Exploiting FBI Emergency Data Requests
Iβve been writing about the problem with lawful-access backdoors in encryption for decades now: that as soon as you create a mechanism for law enforcement to bypass encryption, the bad guys will use it too. Turns out the same thing is true for non-technical backdoors: The advisory said that the cybercriminals were successful in masquerading as law enforcement by using compromised police accounts to send emails to...
Published on: November 12, 2024 | Source:5 Ways Behavioral Analytics is Revolutionizing Incident Response
Behavioral analytics, long associated with threat detection (i.e. UEBA or UBA), is experiencing a renaissance. Once primarily used to identify suspicious activity, itβs now being reimagined as a powerful post-detection technology that enhances incident response processes. By leveraging behavioral insights during alert triage and investigation, SOCs can transform their workflows to become more
Published on: November 12, 2024 | Source:Beats by bot: The AI remix revolution
Artificial intelligence is reshaping the music landscape, turning listeners into creators and sparking new debates over creativity, copyright, and the future of music
Published on: November 12, 2024 | Source:New Ymir Ransomware Exploits Memory for Stealthy Attacks; Targets Corporate Networks
Cybersecurity researchers have flagged a new ransomware family called Ymir that was deployed in an attack two days after systems were compromised by a stealer malware called RustyStealer. "Ymir ransomware introduces a unique combination of technical features and tactics that enhance its effectiveness," Russian cybersecurity vendor Kaspersky said. "Threat actors leveraged an unconventional blend
Published on: November 12, 2024 | Source:Incident Response, Anomaly Detection Rank High on Planned ICS Security Spending
The "SANS 2024 State of ICS/OT Cybersecurity" report suggests organizations are going to shift spending from security technologies protecting industrial control systems and operational technology environments to nontechnical activities, such as training and incident response.
Published on: November 11, 2024 | Source:Halliburton Optimistic Amid $35M Data Breach Loss
Though its third-quarter earnings report confirms that the company remains on track, it's unclear how that will be affected if the threat actors commit further damage.
Published on: November 11, 2024 | Source:Revamped Remcos RAT Deployed Against Microsoft Windows Users
Windows users are at risk for full device takeover by an emerging malicious version of the Remcos remote admin tool, which is being used in an ongoing campaign exploiting a known remote code execution (RCE) vulnerability in Microsoft Office and WordPad.
Published on: November 11, 2024 | Source:What Listening to My Father Taught Me About Cybersecurity
It's polite to listen to advice that people are willing to share, but not all of it will be useful for you. Here's how to separate the wheat from the chaff.
Published on: November 11, 2024 | Source:Flexible Structure of Zip Archives Exploited to Hide Malware Undetected
Attackers abuse concatenation, a method that involves appending multiple zip archives into a single file, to deliver a variant of the SmokeLoader Trojan hidden in malicious attachments delivered via phishing.
Published on: November 11, 2024 | Source:Facebook Asks Supreme Court to Dismiss Cambridge Analytica Lawsuit
Meta has maintained that Facebook did not mislead investors by not including mention of the Cambridge Analytica scandal in its forward-looking risk disclosures, but the plaintiffs say it was a glaring omission.
Published on: November 11, 2024 | Source:Open Source Security Incidents Aren't Going Away
Companies and organizations need to recognize the importance of investing in engineers who possess both the soft and hard skills required to secure open source software effectively.
Published on: November 11, 2024 | Source:THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 04 - Nov 10)
Imagine this: the very tools you trust to protect you onlineβyour two-factor authentication, your carβs tech system, even your security softwareβturned into silent allies for hackers. Sounds like a scene from a thriller, right? Yet, in 2024, this isnβt fiction; itβs the new cyber reality. Todayβs attackers have become so sophisticated that theyβre using our trusted tools as secret pathways,
Published on: November 11, 2024 | Source:New GootLoader Campaign Targets Users Searching for Bengal Cat Laws in Australia
In an unusually specific campaign, users searching about the legality of Bengal Cats in Australia are being targeted with the GootLoader malware. "In this case, we found the GootLoader actors using search results for information about a particular cat and a particular geography being used to deliver the payload: 'Are Bengal Cats legal in Australia?,'" Sophos researchers Trang Tang, Hikaru Koike,
Published on: November 11, 2024 | Source:The ROI of Security Investments: How Cybersecurity Leaders Prove It
Cyber threats are intensifying, and cybersecurity has become critical to business operations. As security budgets grow, CEOs and boardrooms are demanding concrete evidence that cybersecurity initiatives deliver value beyond regulation compliance. Just like you wouldnβt buy a car without knowing it was first put through a crash test, security systems must also be validated to confirm their value.
Published on: November 11, 2024 | Source:Security Flaws in Popular ML Toolkits Enable Server Hijacks, Privilege Escalation
Cybersecurity researchers have uncovered nearly two dozen security flaws spanning 15 different machine learning (ML) related open-source projects. These comprise vulnerabilities discovered both on the server- and client-side, software supply chain security firm JFrog said in an analysis published last week. The server-side weaknesses "allow attackers to hijack important servers in the
Published on: November 11, 2024 | Source:Beyond the checkbox: Demystifying cybersecurity compliance
In an era of escalating digital threats, cybersecurity compliance goes beyond ticking a legal box β itβs a crucial shield safeguarding assets, reputation, and the very survival of your business
Published on: November 11, 2024 | Source:HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities
Hewlett Packard Enterprise (HPE) has released security updates to address multiple vulnerabilities impacting Aruba Networking Access Point products, including two critical bugs that could result in unauthenticated command execution. The flaws affect Access Points running Instant AOS-8 and AOS-10 - AOS-10.4.x.x: 10.4.1.4 and below Instant AOS-8.12.x.x: 8.12.0.2 and below Instant AOS-8.10.x.x:
Published on: November 11, 2024 | Source:Cybercriminals Use Excel Exploit to Spread Fileless Remcos RAT Malware
Cybersecurity researchers have discovered a new phishing campaign that spreads a new fileless variant of known commercial malware called Remcos RAT. Remcos RAT "provides purchases with a wide range of advanced features to remotely control computers belonging to the buyer," Fortinet FortiGuard Labs researcher Xiaopeng Zhang said in an analysis published last week. "However, threat actors have
Published on: November 11, 2024 | Source:FBI: Spike in Hacked Police Emails, Fake Subpoenas
The Federal Bureau of Investigation (FBI) is urging police departments and governments worldwide to beef up security around their email systems, citing a recent increase in cybercriminal services that use hacked police email accounts to send unauthorized subpoenas and customer data requests to U.S.-based technology companies.
Published on: November 09, 2024 | Source:Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns
Palo Alto Networks on Friday issued an informational advisory urging customers to ensure that access to the PAN-OS management interface is secured because of a potential remote code execution vulnerability. "Palo Alto Networks is aware of a claim of a remote code execution vulnerability via the PAN-OS management interface," the company said. "At this time, we do not know the specifics of the
Published on: November 09, 2024 | Source:Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering
The 36-year-old founder of the Bitcoin Fog cryptocurrency mixer has been sentenced to 12 years and six months in prison for facilitating money laundering activities between 2011 and 2021. Roman Sterlingov, a dual Russian-Swedish national, pleaded guilty to charges of money laundering and operating an unlicensed money-transmitting business earlier this March. The U.S. Department of Justice (DoJ)
Published on: November 09, 2024 | Source:AI & LLMs Show Promise in Squashing Software Bugs
Large language models (LLMs) can help app security firms find and fix software vulnerabilities. Malicious actors are on to them, too, but here's why defenders may retain the edge.
Published on: November 08, 2024 | Source:Friday Squid Blogging: Squid-A-Rama in Des Moines
Squid-A-Rama will be in Des Moines at the end of the month. Visitors will be able to dissect squid, explore fascinating facts about the species, and witness a live squid release conducted by local divers. How are they doing a live squid release? Simple: this is Des Moines, Washington; not Des Moines, Iowa. Blog moderation policy. The post Friday Squid Blogging: Squid-A-Rama in Des Moines appeared first on Schneier on...
Published on: November 08, 2024 | Source:6 Infotainment Bugs Allow Mazdas to Be Hacked With USBs
Direct cyberattacks on vehicles are all but unheard of. In theory, though, the opportunity is there to cause real damage β data extraction, full system compromise, even gaining access to safety-critical systems.
Published on: November 08, 2024 | Source:Mystery Hackers Target Texas Oilfield Supplier in Ransomware Attack
It remains unclear how the attackers gained access to Newpark Resources' system, or what they plan to do with any stolen data the strike may have spewed out.
Published on: November 08, 2024 | Source:Preparing for DORA Amid Technical Controls Ambiguity
The European Union's Digital Operational Resilience Act requires financial entities to focus on third-party risk, resilience, and testing.
Published on: November 08, 2024 | Source:Webinar: Learn How Storytelling Can Make Cybersecurity Training Fun and Effective
Letβs face itβtraditional security training can feel as thrilling as reading the fine print on a software update. Itβs routine, predictable, and, letβs be honest, often forgotten the moment it's over. Now, imagine cybersecurity training thatβs as unforgettable as your favorite show. Remember how "Hamilton" made history come alive, or how "The Office" taught us CPR (Staying Alive beat, anyone?)?
Published on: November 08, 2024 | Source: