ch
Feedback
TECHZONE™

TECHZONE™

前往频道在 Telegram

TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news

显示更多
595
订阅者
无数据24 小时
无数据7
-930
帖子存档
New "Raptor Train" IoT Botnet Compromises Over 200,000 Devices Worldwide https://thehackernews.com/2024/09/new-raptor-train-iot-botnet-compromises.html Cybersecurity researchers have uncovered a never-before-seen botnet comprising an army of small office/home office (SOHO) and IoT devices that are likely operated by a Chinese nation-state threat actor called Flax Typhoon (aka Ethereal Panda or RedJuliett). The sophisticated botnet, dubbed Raptor Train by Lumen's Black Lotus Labs, is believed to have been operational since at least May 2020,

Chinese Engineer Charged in U.S. for Years-Long Cyber Espionage Targeting NASA and Military https://thehackernews.com/2024/09/chinese-engineer-charged-in-us-for.html A Chinese national has been indicted in the U.S. on charges of conducting a "multi-year" spear-phishing campaign to obtain unauthorized access to computer software and source code created by the National Aeronautics and Space Administration (NASA), research universities, and private companies. Song Wu, 39, has been charged with 14 counts of wire fraud and 14 counts of aggravated identity theft.

ESET Research Podcast: EvilVideo https://www.welivesecurity.com/en/podcasts/eset-research-podcast-evilvideo/ ESET researchers discuss how they uncovered a zero-day Telegram for Android exploit that allowed attackers to send malicious files posing as videos

Why Pay A Pentester? https://thehackernews.com/2024/09/why-pay-pentester.html The evolution of software always catches us by surprise. I remember betting against the IBM computer Deep Blue during its chess match against the grandmaster Garry Kasparov in 1997, only to be stunned when the machine claimed victory. Fast forward to today, would we have imagined just three years ago that a chatbot could write essays, handle customer support calls, and even craft commercial

North Korean Hackers Target Energy and Aerospace Industries with New MISTPEN Malware https://thehackernews.com/2024/09/north-korean-hackers-target-energy-and.html A North Korea-linked cyber-espionage group has been observed leveraging job-themed phishing lures to target prospective victims in energy and aerospace verticals and infect them with a previously undocumented backdoor dubbed MISTPEN. The activity cluster is being tracked by Google-owned Mandiant under the moniker UNC2970, which it said overlaps with a threat group known as TEMP.Hermit, which is

Chrome Introduces One-Time Permissions and Enhanced Safety Check for Safer Browsing https://thehackernews.com/2024/09/chrome-introduces-one-time-permissions.html Google has announced that it's rolling out a new set of features to its Chrome browser that gives users more control over their data when surfing the internet and protects against online threats. "With the newest version of Chrome, you can take advantage of our upgraded Safety Check, opt out of unwanted website notifications more easily and grant select permissions to a site for one time only,"

GSMA Plans End-to-End Encryption for Cross-Platform RCS Messaging https://thehackernews.com/2024/09/gsma-plans-end-to-end-encryption-for.html The GSM Association, the governing body that oversees the development of the Rich Communications Services (RCS) protocol, on Tuesday, said it's working towards implementing end-to-end encryption (E2EE) to secure messages sent between the Android and iOS ecosystems. "The next major milestone is for the RCS Universal Profile to add important user protections such as interoperable end-to-end

Patch Issued for Critical VMware vCenter Flaw Allowing Remote Code Execution https://thehackernews.com/2024/09/patch-issued-for-critical-vmware.html Broadcom on Tuesday released updates to address a critical security flaw impacting VMware vCenter Server that could pave the way for remote code execution. The vulnerability, tracked as CVE-2024-38812 (CVSS score: 9.8), has been described as a heap-overflow vulnerability in the DCE/RPC protocol. "A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a

Google Chrome Switches to ML-KEM for Post-Quantum Cryptography Defense https://thehackernews.com/2024/09/google-chrome-switches-to-ml-kem-for.html Google has announced that it will be switching from KYBER to ML-KEM in its Chrome web browser as part of its ongoing efforts to defend against the risk posed by cryptographically relevant quantum computers (CRQCs). "Chrome will offer a key share prediction for hybrid ML-KEM (codepoint 0x11EC)," David Adrian, David Benjamin, Bob Beck, and Devon O'Brien of the Chrome Team said. "The

U.S. Treasury Sanctions Executives Linked to Intellexa Predator Spyware Operation https://thehackernews.com/2024/09/us-treasury-sanctions-executives-linked.html The U.S. Department of Treasury has imposed fresh sanctions against five executives and one entity with ties to the Intellexa Consortium for their role in the development, operation, and distribution of a commercial spyware called Predator. "The United States will not tolerate the reckless propagation of disruptive technologies that threatens our national security and undermines the privacy and

How to Investigate ChatGPT activity in Google Workspace https://thehackernews.com/2024/09/how-to-investigate-chatgpt-activity-in.html When you connect your organization’s Google Drive account to ChatGPT, you grant ChatGPT extensive permissions for not only your personal files, but resources across your entire shared drive. As you might imagine, this introduces an array of cybersecurity challenges. This post outlines how to see ChatGPT activity natively in the Google Workspace admin console, and how Nudge Security can

Meta to Train AI Models Using Public U.K. Facebook and Instagram Posts https://thehackernews.com/2024/09/meta-to-train-ai-models-using-public-uk.html Meta has announced that it will begin training its artificial intelligence (AI) systems using public content shared by adult users across Facebook and Instagram in the U.K. in the coming months. "This means that our generative AI models will reflect British culture, history, and idiom, and that UK companies and institutions will be able to utilize the latest technology," the social media

AI security bubble already springing leaks https://www.welivesecurity.com/en/cybersecurity/ai-security-bubble-already-springing-leaks/ Artificial intelligence is just a spoke in the wheel of security – an important spoke but, alas, only one

Binance Warns of Rising Clipper Malware Attacks Targeting Cryptocurrency Users https://thehackernews.com/2024/09/binance-warns-of-rising-clipper-malware.html Cryptocurrency exchange Binance is warning of an "ongoing" global threat that's targeting cryptocurrency users with clipper malware with the goal of facilitating financial fraud. Clipper malware, also called ClipBankers, is a type of malware that Microsoft calls cryware, which comes with capabilities to monitor a victim's clipboard activity and steal sensitive data a user copies, including

SolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE Attacks https://thehackernews.com/2024/09/solarwinds-issues-patch-for-critical.html SolarWinds has released fixes to address two security flaws in its Access Rights Manager (ARM) software, including a critical vulnerability that could result in remote code execution. The vulnerability, tracked as CVE-2024-28991, is rated 9.0 out of a maximum of 10.0 on the CVSS scoring system. It has been described as an instance of deserialization of untrusted data. "SolarWinds Access Rights

Google Fixes GCP Composer Flaw That Could've Led to Remote Code Execution https://thehackernews.com/2024/09/google-fixes-gcp-composer-flaw-that.html A now-patched critical security flaw impacting Google Cloud Platform (GCP) Composer could have been exploited to achieve remote code execution on cloud servers by means of a supply chain attack technique called dependency confusion. The vulnerability has been codenamed CloudImposer by Tenable Research. "The vulnerability could have allowed an attacker to hijack an internal software dependency

North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware https://thehackernews.com/2024/09/north-korean-hackers-target.html Cybersecurity researchers are continuing to warn about North Korean threat actors' attempts to target prospective victims on LinkedIn to deliver malware called RustDoor. The latest advisory comes from Jamf Threat Labs, which said it spotted an attack attempt in which a user was contacted on the professional social network by claiming to be a recruiter for a legitimate decentralized

From Breach to Recovery: Designing an Identity-Focused Incident Response Playbook https://thehackernews.com/2024/09/from-breach-to-recovery-designing.html Imagine this... You arrive at work to a chaotic scene. Systems are down, panic is in the air. The culprit? Not a rogue virus, but a compromised identity. The attacker is inside your walls, masquerading as a trusted user. This isn't a horror movie, it's the new reality of cybercrime. The question is, are you prepared? Traditional incident response plans are like old maps in a new world. They

Master Your PCI DSS v4 Compliance with Innovative Smart Approvals https://thehackernews.com/2024/09/master-your-pci-dss-v4-compliance-with.html The PCI DSS landscape is evolving rapidly. With the Q1 2025 deadline looming ever larger, businesses are scrambling to meet the stringent new requirements of PCI DSS v4.0. Two sections in particular, 6.4.3 and 11.6.1, are troublesome as they demand that organizations rigorously monitor and manage payment page scripts and use a robust change detection mechanism. With the deadline fast approaching

Apple Drops Spyware Case Against NSO Group, Citing Risk of Threat Intelligence Exposure https://thehackernews.com/2024/09/apple-drops-spyware-case-against-nso.html Apple has filed a motion to "voluntarily" dismiss its lawsuit against commercial spyware vendor NSO Group, citing a shifting risk landscape that could lead to exposure of critical "threat intelligence" information. The development was first reported by The Washington Post on Friday. The iPhone maker said its efforts, coupled with those of others in the industry and national governments to tackle