TECHZONE™
الذهاب إلى القناة على Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
إظهار المزيد595
المشتركون
لا توجد بيانات24 ساعات
لا توجد بيانات7 أيام
-1030 أيام
أرشيف المشاركات
595
North Korean Hackers Target macOS Using Flutter-Embedded Malware
https://thehackernews.com/2024/11/north-korean-hackers-target-macos-using.html
Threat actors with ties to the Democratic People's Republic of Korea (DPRK aka North Korea) have been found embedding malware within Flutter applications, marking the first time this tactic has been adopted by the adversary to infect Apple macOS devices.
Jamf Threat Labs, which made the discovery based on artifacts uploaded to the VirusTotal platform earlier this month, said the Flutter-built
595
5 Ways Behavioral Analytics is Revolutionizing Incident Response
https://thehackernews.com/2024/11/5-ways-behavioral-analytics-is.html
Behavioral analytics, long associated with threat detection (i.e. UEBA or UBA), is experiencing a renaissance. Once primarily used to identify suspicious activity, it’s now being reimagined as a powerful post-detection technology that enhances incident response processes. By leveraging behavioral insights during alert triage and investigation, SOCs can transform their workflows to become more
595
New Ymir Ransomware Exploits Memory for Stealthy Attacks; Targets Corporate Networks
https://thehackernews.com/2024/11/new-ymir-ransomware-exploits-memory-for.html
Cybersecurity researchers have flagged a new ransomware family called Ymir that was deployed in an attack two days after systems were compromised by a stealer malware called RustyStealer.
"Ymir ransomware introduces a unique combination of technical features and tactics that enhance its effectiveness," Russian cybersecurity vendor Kaspersky said.
"Threat actors leveraged an unconventional blend
595
THN Recap: Top Cybersecurity Threats, Tools, and Practices (Nov 04 - Nov 10)
https://thehackernews.com/2024/11/thn-recap-top-cybersecurity-threats_11.html
⚠️ Imagine this: the very tools you trust to protect you online—your two-factor authentication, your car’s tech system, even your security software—turned into silent allies for hackers. Sounds like a scene from a thriller, right? Yet, in 2024, this isn’t fiction; it’s the new cyber reality. Today’s attackers have become so sophisticated that they’re using our trusted tools as secret pathways,
595
The ROI of Security Investments: How Cybersecurity Leaders Prove It
https://thehackernews.com/2024/11/the-roi-of-security-investments-how.html
Cyber threats are intensifying, and cybersecurity has become critical to business operations. As security budgets grow, CEOs and boardrooms are demanding concrete evidence that cybersecurity initiatives deliver value beyond regulation compliance.
Just like you wouldn’t buy a car without knowing it was first put through a crash test, security systems must also be validated to confirm their value.
595
Security Flaws in Popular ML Toolkits Enable Server Hijacks, Privilege Escalation
https://thehackernews.com/2024/11/security-flaws-in-popular-ml-toolkits.html
Cybersecurity researchers have uncovered nearly two dozen security flaws spanning 15 different machine learning (ML) related open-source projects.
These comprise vulnerabilities discovered both on the server- and client-side, software supply chain security firm JFrog said in an analysis published last week.
The server-side weaknesses "allow attackers to hijack important servers in the
595
HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities
https://thehackernews.com/2024/11/hpe-issues-critical-security-patches.html
Hewlett Packard Enterprise (HPE) has released security updates to address multiple vulnerabilities impacting Aruba Networking Access Point products, including two critical bugs that could result in unauthenticated command execution.
The flaws affect Access Points running Instant AOS-8 and AOS-10 -
AOS-10.4.x.x: 10.4.1.4 and below
Instant AOS-8.12.x.x: 8.12.0.2 and below
Instant AOS-8.10.x.x:
595
Cybercriminals Use Excel Exploit to Spread Fileless Remcos RAT Malware
https://thehackernews.com/2024/11/cybercriminals-use-excel-exploit-to.html
Cybersecurity researchers have discovered a new phishing campaign that spreads a new fileless variant of known commercial malware called Remcos RAT.
Remcos RAT "provides purchases with a wide range of advanced features to remotely control computers belonging to the buyer," Fortinet FortiGuard Labs researcher Xiaopeng Zhang said in an analysis published last week.
"However, threat actors have
595
Life on a crooked RedLine: Analyzing the infamous infostealer’s backend
https://www.welivesecurity.com/en/eset-research/life-crooked-redline-analyzing-infamous-infostealers-backend/
Following the takedown of RedLine Stealer by international authorities, ESET researchers are publicly releasing their research into the infostealer’s backend modules
595
Palo Alto Advises Securing PAN-OS Interface Amid Potential RCE Threat Concerns
https://thehackernews.com/2024/11/palo-alto-advises-securing-pan-os.html
Palo Alto Networks on Friday issued an informational advisory urging customers to ensure that access to the PAN-OS management interface is secured because of a potential remote code execution vulnerability.
"Palo Alto Networks is aware of a claim of a remote code execution vulnerability via the PAN-OS management interface," the company said. "At this time, we do not know the specifics of the
595
Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering
https://thehackernews.com/2024/11/bitcoin-fog-founder-sentenced-to-12.html
The 36-year-old founder of the Bitcoin Fog cryptocurrency mixer has been sentenced to 12 years and six months in prison for facilitating money laundering activities between 2011 and 2021.
Roman Sterlingov, a dual Russian-Swedish national, pleaded guilty to charges of money laundering and operating an unlicensed money-transmitting business earlier this March.
The U.S. Department of Justice (DoJ)
595
ESET APT Activity Report Q2 2024–Q3 2024
https://www.welivesecurity.com/en/eset-research/eset-apt-activity-report-q2-2024-q3-2024/
An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q2 2024 and Q3 2024
595
AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services
https://thehackernews.com/2024/11/androxgh0st-malware-integrates-mozi.html
The threat actors behind the AndroxGh0st malware are now exploiting a broader set of security flaws impacting various internet-facing applications, while also deploying the Mozi botnet malware.
"This botnet utilizes remote code execution and credential-stealing methods to maintain persistent access, leveraging unpatched vulnerabilities to infiltrate critical infrastructures," CloudSEK said in a
595
IcePeony and Transparent Tribe Target Indian Entities with Cloud-Based Tools
https://thehackernews.com/2024/11/icepeony-and-transparent-tribe-target.html
High-profile entities in India have become the target of malicious campaigns orchestrated by the Pakistan-based Transparent Tribe threat actor and a previously unknown China-nexus cyber espionage group dubbed IcePeony.
The intrusions linked to Transparent Tribe involve the use of a malware called ElizaRAT and a new stealer payload dubbed ApoloStealer on specific victims of interest, Check Point
595
Malicious NPM Packages Target Roblox Users with Data-Stealing Malware
https://thehackernews.com/2024/11/malicious-npm-packages-target-roblox.html
A new campaign has targeted the npm package repository with malicious JavaScript libraries that are designed to infect Roblox users with open-source stealer malware such as Skuld and Blank-Grabber.
"This incident highlights the alarming ease with which threat actors can launch supply chain attacks by exploiting trust and human error within the open source ecosystem, and using readily available
595
The vCISO Academy: Transforming MSPs and MSSPs into Cybersecurity Powerhouses
https://thehackernews.com/2024/11/the-vciso-academy-transforming-msps-and.html
We’ve all heard a million times: growing demand for robust cybersecurity in the face of rising cyber threats is undeniable. Globally small and medium-sized businesses (SMBs) are increasingly targeted by cyberattacks but often lack the resources for full-time Chief Information Security Officers (CISOs). This gap is driving the rise of the virtual CISO (vCISO) model, offering a cost-effective
595
Webinar: Learn How Storytelling Can Make Cybersecurity Training Fun and Effective
https://thehackernews.com/2024/11/webinar-learn-how-storytelling-can-make.html
Let’s face it—traditional security training can feel as thrilling as reading the fine print on a software update. It’s routine, predictable, and, let’s be honest, often forgotten the moment it's over. Now, imagine cybersecurity training that’s as unforgettable as your favorite show.
Remember how "Hamilton" made history come alive, or how "The Office" taught us CPR (Staying Alive beat, anyone?)?
595
New CRON#TRAP Malware Infects Windows by Hiding in Linux VM to Evade Antivirus
https://thehackernews.com/2024/11/new-crontrap-malware-infects-windows-by.html
Cybersecurity researchers have flagged a new malware campaign that infects Windows systems with a Linux virtual instance containing a backdoor capable of establishing remote access to the compromised hosts.
The "intriguing" campaign, codenamed CRON#TRAP, starts with a malicious Windows shortcut (LNK) file likely distributed in the form of a ZIP archive via a phishing email.
"What makes the CRON#
595
CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability
https://thehackernews.com/2024/11/cisa-alerts-to-active-exploitation-of.html
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a now-patched critical security flaw impacting Palo Alto Networks Expedition to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The vulnerability, tracked as CVE-2024-5910 (CVSS score: 9.3), concerns a case of missing authentication in the Expedition migration tool that
595
Jane Goodall: Reasons for hope | Starmus highlights
https://www.welivesecurity.com/en/we-live-science/jane-goodall-reasons-hope-starmus-highlights/
The trailblazing scientist shares her reasons for hope in the fight against climate change and how we can tackle seemingly impossible problems and keep going in the face of adversity
متاح الآن! بحث تيليغرام 2025 — أهم رؤى العام 
