TECHZONE™
Открыть в Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
Больше595
Подписчики
Нет данных24 часа
Нет данных7 дней
-730 день
Архив постов
595
Juniper Networks Releases Critical Security Update for Routers
https://thehackernews.com/2024/07/juniper-networks-releases-critical.html
Juniper Networks has released out-of-band security updates to address a critical security flaw that could lead to an authentication bypass in some of its routers.
The vulnerability, tracked as CVE-2024-2973, carries a CVSS score of 10.0, indicating maximum severity.
“An Authentication Bypass Using an Alternate Path or Channel vulnerability in Juniper Networks Session Smart Router or Conductor
595
Google to Block Entrust Certificates in Chrome Starting November 2024
https://thehackernews.com/2024/06/google-to-block-entrust-certificates-in.html
Google has announced that it's going to start blocking websites that use certificates from Entrust starting around November 1, 2024, in its Chrome browser, citing compliance failures and the certificate authority's inability to address security issues in a timely manner.
"Over the past several years, publicly disclosed incident reports highlighted a pattern of concerning behaviors by Entrust
595
Key trends shaping the threat landscape in H1 2024 – Week in security with Tony Anscombe
https://www.welivesecurity.com/en/videos/key-trends-shaping-threat-landscape-h1-2024-week-security-tony-anscombe/
Learn about the categories of threats that 'topped the charts' and the kinds of techniques that bad actors leveraged most commonly in the first half of this year.
595
Kimsuky Using TRANSLATEXT Chrome Extension to Steal Sensitive Data
https://thehackernews.com/2024/06/kimsuky-using-translatext-chrome.html
The North Korea-linked threat actor known as Kimsuky has been linked to the use of a new malicious Google Chrome extension that's designed to steal sensitive information as part of an ongoing intelligence collection effort.
Zscaler ThreatLabz, which observed the activity in early March 2024, has codenamed the extension TRANSLATEXT, highlighting its ability to gather email addresses, usernames,
595
GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others
https://thehackernews.com/2024/06/gitlab-releases-patch-for-critical-cicd.html
GitLab has released security updates to address 14 security flaws, including one critical vulnerability that could be exploited to run continuous integration and continuous deployment (CI/CD) pipelines as any user.
The weaknesses, which affect GitLab Community Edition (CE) and Enterprise Edition (EE), have been addressed in versions 17.1.1, 17.0.3, and 16.11.5.
The most severe of the
595
8220 Gang Exploits Oracle WebLogic Server Flaws for Cryptocurrency Mining
https://thehackernews.com/2024/06/8220-gang-exploits-oracle-weblogic.html
Security researchers have shed more light on the cryptocurrency mining operation conducted by the 8220 Gang by exploiting known security flaws in the Oracle WebLogic Server.
"The threat actor employs fileless execution techniques, using DLL reflective and process injection, allowing the malware code to run solely in memory and avoid disk-based detection mechanisms," Trend Micro researchers Ahmed
595
Combatting the Evolving SaaS Kill Chain: How to Stay Ahead of Threat Actors
https://thehackernews.com/2024/06/combatting-evolving-saas-kill-chain-how.html
The modern kill chain is eluding enterprises because they aren’t protecting the infrastructure of modern business: SaaS.
SaaS continues to dominate software adoption, and it accounts for the greatest share of public cloud spending. But enterprises and SMBs alike haven’t revised their security programs or adopted security tooling built for SaaS.
Security teams keep jamming on-prem
595
New SnailLoad Attack Exploits Network Latency to Spy on Users' Web Activities
https://thehackernews.com/2024/06/new-snailload-attack-exploits-network.html
A group of security researchers from the Graz University of Technology have demonstrated a new side-channel attack known as SnailLoad that could be used to remotely infer a user's web activity.
"SnailLoad exploits a bottleneck present on all Internet connections," the researchers said in a study released this week.
"This bottleneck influences the latency of network packets, allowing an attacker
595
Researchers Warn of Flaws in Widely Used Industrial Gas Analysis Equipment
https://thehackernews.com/2024/06/researchers-warn-of-flaws-in-widely.html
Multiple security flaws have been disclosed in Emerson Rosemount gas chromatographs that could be exploited by malicious actors to obtain sensitive information, induce a denial-of-service (DoS) condition, and even execute arbitrary commands.
The flaws impact GC370XA, GC700XA, and GC1500XA and reside in versions 4.1.5 and prior.
According to operational technology (OT) security firm Claroty, the
595
ESET Threat Report H1 2024
https://www.welivesecurity.com/en/eset-research/eset-threat-report-h1-2024/
A view of the H1 2024 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts
595
TeamViewer Detects Security Breach in Corporate IT Environment
https://thehackernews.com/2024/06/teamviewer-detects-security-breach-in.html
TeamViewer on Thursday disclosed it detected an "irregularity" in its internal corporate IT environment on June 26, 2024.
"We immediately activated our response team and procedures, started investigations together with a team of globally renowned cyber security experts and implemented necessary remediation measures," the company said in a statement.
It further noted that its corporate IT
595
Rust-Based P2PInfect Botnet Evolves with Miner and Ransomware Payloads
https://thehackernews.com/2024/06/rust-based-p2pinfect-botnet-evolves.html
The peer-to-peer malware botnet known as P2PInfect has been found targeting misconfigured Redis servers with ransomware and cryptocurrency miners.
The development marks the threat's transition from what appeared to be a dormant botnet with unclear motives to a financially motivated operation.
"With its latest updates to the crypto miner, ransomware payload, and rootkit elements, it demonstrates
595
The Secrets of Hidden AI Training on Your Data
https://thehackernews.com/2024/06/the-secrets-of-hidden-ai-training-on.html
While some SaaS threats are clear and visible, others are hidden in plain sight, both posing significant risks to your organization. Wing's research indicates that an astounding 99.7% of organizations utilize applications embedded with AI functionalities. These AI-driven tools are indispensable, providing seamless experiences from collaboration and communication to work management and
595
How to Use Python to Build Secure Blockchain Applications
https://thehackernews.com/2024/06/how-to-use-python-to-build-secure.html
Did you know it’s now possible to build blockchain applications, known also as decentralized applications (or “dApps” for short) in native Python? Blockchain development has traditionally required learning specialized languages, creating a barrier for many developers… until now. AlgoKit, an all-in-one development toolkit for Algorand, enables developers to build blockchain applications in pure
595
Prompt Injection Flaw in Vanna AI Exposes Databases to RCE Attacks
https://thehackernews.com/2024/06/prompt-injection-flaw-in-vanna-ai.html
Cybersecurity researchers have disclosed a high-severity security flaw in the Vanna.AI library that could be exploited to achieve remote code execution vulnerability via prompt injection techniques.
The vulnerability, tracked as CVE-2024-5565 (CVSS score: 8.1), relates to a case of prompt injection in the "ask" function that could be exploited to trick the library into executing arbitrary
595
Russian National Indicted for Cyber Attacks on Ukraine Before 2022 Invasion
https://thehackernews.com/2024/06/russian-national-indicted-for-cyber.html
A 22-year-old Russian national has been indicted in the U.S. for his alleged role in staging destructive cyber attacks against Ukraine and its allies in the days leading to Russia's full-blown military invasion of Ukraine in early 2022.
Amin Timovich Stigal, the defendant in question, is assessed to be affiliated with the Main Directorate of the General Staff of the Armed Forces of the Russian
595
Critical SQLi Vulnerability Found in Fortra FileCatalyst Workflow Application
https://thehackernews.com/2024/06/critical-sqli-vulnerability-found-in.html
A critical security flaw has been disclosed in Fortra FileCatalyst Workflow that, if left unpatched, could allow an attacker to tamper with the application database.
Tracked as CVE-2024-5276, the vulnerability carries a CVSS score of 9.8. It impacts FileCatalyst Workflow versions 5.1.6 Build 135 and earlier. It has been addressed in version 5.1.6 build 139.
"An SQL injection vulnerability in
595
Cyber insurance as part of the cyber threat mitigation strategy
https://www.welivesecurity.com/en/business-security/cyber-insurance-part-cyber-threat-mitigation-strategy/
Why organizations of every size and industry should explore their cyber insurance options as a crucial component of their risk mitigation strategies
595
New MOVEit Transfer Vulnerability Under Active Exploitation - Patch ASAP!
https://thehackernews.com/2024/06/new-moveit-transfer-vulnerability-under.html
A newly disclosed critical security flaw impacting Progress Software MOVEit Transfer is already seeing exploitation attempts in the wild shortly after details of the bug were publicly disclosed.
The vulnerability, tracked as CVE-2024-5806 (CVSS score: 9.1), concerns an authentication bypass that impacts the following versions -
From 2023.0.0 before 2023.0.11
From 2023.1.0 before 2023.1.6, and&
595
Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware
https://thehackernews.com/2024/06/chinese-and-n-korean-hackers-target.html
Threat actors with suspected ties to China and North Korea have been linked to ransomware and data encryption attacks targeting government and critical infrastructure sectors across the world between 2021 and 2023.
While one cluster of activity has been associated with the ChamelGang (aka CamoFei), the second cluster overlaps with activity previously attributed to Chinese and North Korean
