TECHZONE™
前往频道在 Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
显示更多595
订阅者
无数据24 小时
无数据7 天
-1030 天
帖子存档
595
Critical Flaws in Ollama AI Framework Could Enable DoS, Model Theft, and Poisoning
https://thehackernews.com/2024/11/critical-flaws-in-ollama-ai-framework.html
Cybersecurity researchers have disclosed six security flaws in the Ollama artificial intelligence (AI) framework that could be exploited by a malicious actor to perform various actions, including denial-of-service, model poisoning, and model theft.
"Collectively, the vulnerabilities could allow an attacker to carry out a wide-range of malicious actions with a single HTTP request, including
595
German Police Disrupt DDoS-for-Hire Platform dstat[.]cc; Suspects Arrested
https://thehackernews.com/2024/11/german-police-disrupt-ddos-for-hire.html
German law enforcement authorities have announced the disruption of a criminal service called dstat[.]cc that made it possible for other threat actors to easily mount distributed denial-of-service (DDoS) attacks.
"The platform made such DDoS attacks accessible to a wide range of users, even those without any in-depth technical skills of their own," the Federal Criminal Police Office (aka
595
THN Recap: Top Cybersecurity Threats, Tools, and Practices (Oct 28 - Nov 03)
https://thehackernews.com/2024/11/thn-recap-top-cybersecurity-threats.html
This week was a total digital dumpster fire! Hackers were like, "Let's cause some chaos!" and went after everything from our browsers to those fancy cameras that zoom and spin. (You know, the ones they use in spy movies? 🕵️♀️)
We're talking password-stealing bots, sneaky extensions that spy on you, and even cloud-hacking ninjas! 🥷 It's enough to make you want to chuck your phone in the ocean.
595
Cyber Threats That Could Impact the Retail Industry This Holiday Season (and What to Do About It)
https://thehackernews.com/2024/11/cyber-threats-that-could-impact-retail.html
As the holiday season approaches, retail businesses are gearing up for their annual surge in online (and in-store) traffic. Unfortunately, this increase in activity also attracts cybercriminals looking to exploit vulnerabilities for their gain.
Imperva, a Thales company, recently published its annual holiday shopping cybersecurity guide. Data from the Imperva Threat Research team’s
595
Google’s AI Tool Big Sleep Finds Zero-Day Vulnerability in SQLite Database Engine
https://thehackernews.com/2024/11/googles-ai-tool-big-sleep-finds-zero.html
Google said it discovered a zero-day vulnerability in the SQLite open-source database engine using its large language model (LLM) assisted framework called Big Sleep (formerly Project Naptime).
The tech giant described the development as the "first real-world vulnerability" uncovered using the artificial intelligence (AI) agent.
"We believe this is the first public example of an AI agent finding
595
New FakeCall Malware Variant Hijacks Android Devices for Fraudulent Banking Calls
https://thehackernews.com/2024/11/new-fakecall-malware-variant-hijacks.html
Cybersecurity researchers have discovered a new version of a well-known Android malware family dubbed FakeCall that employs voice phishing (aka vishing) techniques to trick users into parting with their personal information.
"FakeCall is an extremely sophisticated Vishing attack that leverages malware to take almost complete control of the mobile device, including the interception of incoming
595
Month in security with Tony Anscombe – October 2024 edition
https://www.welivesecurity.com/en/videos/month-security-tony-anscombe-october-2024-edition/
Election interference, American Water and the Internet Archive breaches, new cybersecurity laws, and more – October saw no shortage of impactful cybersecurity news stories
595
Inside Iran’s Cyber Playbook: AI, Fake Hosting, and Psychological Warfare
https://thehackernews.com/2024/11/inside-irans-cyber-playbook-ai-fake.html
U.S. and Israeli cybersecurity agencies have published a new advisory attributing an Iranian cyber group to targeting the 2024 Summer Olympics and compromising a French commercial dynamic display provider to show messages denouncing Israel's participation in the sporting event.
The activity has been pinned on an entity that's known as Emennet Pasargad, which the agencies said has been operating
595
Massive Git Config Breach Exposes 15,000 Credentials; 10,000 Private Repos Cloned
https://thehackernews.com/2024/11/massive-git-config-breach-exposes-15000.html
Cybersecurity researchers have flagged a "massive" campaign that targets exposed Git configurations to siphon credentials, clone private repositories, and even extract cloud credentials from the source code.
The activity, codenamed EMERALDWHALE, is estimated to have collected over 10,000 private repositories and stored in an Amazon S3 storage bucket belonging to a prior victim. The bucket,
595
5 SaaS Misconfigurations Leading to Major Fu*%@ Ups
https://thehackernews.com/2024/11/5-saas-misconfigurations-leading-to.html
With so many SaaS applications, a range of configuration options, API capabilities, endless integrations, and app-to-app connections, the SaaS risk possibilities are endless. Critical organizational assets and data are at risk from malicious actors, data breaches, and insider threats, which pose many challenges for security teams.
Misconfigurations are silent killers, leading to major
595
Microsoft Warns of Chinese Botnet Exploiting Router Flaws for Credential Theft
https://thehackernews.com/2024/11/microsoft-warns-of-chinese-botnet.html
Microsoft has revealed that a Chinese threat actor it tracks as Storm-0940 is leveraging a botnet called Quad7 to orchestrate highly evasive password spray attacks.
The tech giant has given the botnet the name CovertNetwork-1658, stating the password spray operations are used to steal credentials from multiple Microsoft customers.
"Active since at least 2021, Storm-0940 obtains initial access
595
Microsoft Delays Windows Copilot+ Recall Release Over Privacy Concerns
https://thehackernews.com/2024/11/microsoft-delays-windows-copilot-recall.html
Microsoft is further delaying the release of its controversial Recall feature for Windows Copilot+ PCs, stating it's taking the time to improve the experience.
The development was first reported by The Verge. The artificial intelligence-powered tool was initially slated for a preview release starting in October.
"We are committed to delivering a secure and trusted experience with Recall," the
595
Stop LUCR-3 Attacks: Learn Key Identity Security Tactics in This Expert Webinar
https://thehackernews.com/2024/11/stop-lucr-3-attacks-learn-key-identity.html
Did you know that advanced threat actors can infiltrate the identity systems of major organizations and extract sensitive data within days? It’s a chilling reality, becoming more common and concerning by the day.
These attackers exploit vulnerabilities in SaaS and cloud environments, using compromised identities to move laterally within networks, causing widespread damage.
Cybersecurity and IT
595
New Phishing Kit Xiū gǒu Targets Users Across Five Countries With 2,000 Fake Sites
https://thehackernews.com/2024/11/new-phishing-kit-xiu-gou-targets-users.html
Cybersecurity researchers have disclosed a new phishing kit that has been put to use in campaigns targeting Australia, Japan, Spain, the U.K., and the U.S. since at least September 2024.
Netcraft said more than 2,000 phishing websites have been identified the kit, known as Xiū gǒu, with the offering used in attacks aimed at a variety of verticals, such as public sectors, postal, digital services
595
How to remove your personal information from Google Search results
https://www.welivesecurity.com/en/how-to/how-remove-personal-information-google-search-results/
Have you ever googled yourself? Were you happy with what came up? If not, consider requesting the removal of your personal information from search results.
595
New LightSpy Spyware Version Targets iPhones with Increased Surveillance Tactics
https://thehackernews.com/2024/10/new-lightspy-spyware-version-targets.html
Cybersecurity researchers have discovered an improved version of an Apple iOS spyware called LightSpy that not only expands on its functionality, but also incorporates destructive capabilities to prevent the compromised device from booting up.
"While the iOS implant delivery method closely mirrors that of the macOS version, the post-exploitation and privilege escalation stages differ
595
LottieFiles Issues Warning About Compromised "lottie-player" npm Package
https://thehackernews.com/2024/10/lottiefiles-issues-warning-about.html
LottieFiles has revealed that its npm package "lottie-player" was compromised as part of a supply chain attack, prompting it to release an updated version of the library.
"On October 30th ~6:20 PM UTC - LottieFiles were notified that our popular open source npm package for the web player @lottiefiles/lottie-player had unauthorized new versions pushed with malicious code," the company said in a
595
Enterprise Identity Threat Report 2024: Unveiling Hidden Threats to Corporate Identities
https://thehackernews.com/2024/10/enterprise-identity-threat-report-2024.html
In the modern, browser-centric workplace, the corporate identity acts as the frontline defense for organizations. Often referred to as “the new perimeter”, the identity stands between safe data management and potential breaches. However, a new report reveals how enterprises are often unaware of how their identities are being used across various platforms. This leaves them vulnerable to data
595
LiteSpeed Cache Plugin Vulnerability Poses Significant Risk to WordPress Websites
https://thehackernews.com/2024/10/litespeed-cache-plugin-vulnerability.html
A high-severity security flaw has been disclosed in the LiteSpeed Cache plugin for WordPress that could allow an unauthenticated threat actor to elevate their privileges and perform malicious actions.
The vulnerability, tracked as CVE-2024-50550 (CVSS score: 8.1), has been addressed in version 6.5.2 of the plugin.
"The plugin suffers from an unauthenticated privilege escalation vulnerability
595
North Korean Group Collaborates with Play Ransomware in Significant Cyber Attack
https://thehackernews.com/2024/10/north-korean-group-collaborates-with.html
Threat actors in North Korea have been implicated in a recent incident that deployed a known ransomware family called Play, underscoring their financial motivations.
The activity, observed between May and September 2024, has been attributed to a threat actor tracked as Jumpy Pisces, which is also known as Andariel, APT45, DarkSeoul, Nickel Hyatt, Onyx Sleet (formerly Plutonium), Operation Troy,
现已上线!2025 年 Telegram 研究 — 年度关键洞察 
