TECHZONE™
Открыть в Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
Больше594
Подписчики
Нет данных24 часа
Нет данных7 дней
-630 день
Архив постов
594
New 'Cuckoo' Persistent macOS Spyware Targeting Intel and Arm Macs
https://thehackernews.com/2024/05/new-cuckoo-persistent-macos-spyware.html
Cybersecurity researchers have discovered a new information stealer targeting Apple macOS systems that's designed to set up persistence on the infected hosts and act as a spyware.
Dubbed Cuckoo by Kandji, the malware is a universal Mach-O binary that's capable of running on both Intel- and Arm-based Macs.
The exact distribution vector is currently unclear, although there are
594
Pay up, or else? – Week in security with Tony Anscombe
https://www.welivesecurity.com/en/videos/ransomware-ransom-demands-week-security-tony-anscombe/
Organizations that fall victim to a ransomware attack are often caught between a rock and a hard place, grappling with the dilemma of whether to pay up or not
594
Microsoft Outlook Flaw Exploited by Russia's APT28 to Hack Czech, German Entities
https://thehackernews.com/2024/05/microsoft-outlook-flaw-exploited-by.html
Czechia and Germany on Friday revealed that they were the target of a long-term cyber espionage campaign conducted by the Russia-linked nation-state actor known as APT28, drawing condemnation from the European Union (E.U.), the North Atlantic Treaty Organization (NATO), the U.K., and the U.S.
The Czech Republic's Ministry of Foreign Affairs (MFA), in a statement, said some unnamed
594
OpenAI may launch search engine to take on Google
Popular tipster Jimmy Apples on X platform has claimed that OpenAI is expected to host an event on May 9, a week ahead of Google's annual I/O event (May 14).
In a recent podcast with Lex Fridman, Altman emphasized OpenAI's desire to avoid simply replicating Google Search. "I find the current model boring. The question shouldn't be about building a 'better' Google Search. It's about fundamentally improving information discovery, utilization, and synthesis," he explained.
It is widely reported that OpenAI is said to have used some of Microsoft Bing's resources to build its search engine.
This could also render Perplexity AI obsolete.
594
Adding insult to injury: crypto recovery scams
https://www.welivesecurity.com/en/scams/crypto-recovery-scams-insult-injury/
Once your crypto has been stolen, it is extremely difficult to get back – be wary of fake promises to retrieve your funds and learn how to avoid becoming a victim twice over
594
Expert-Led Webinar - Uncovering Latest DDoS Tactics and Learn How to Fight Back
https://thehackernews.com/2024/05/expert-led-webinar-learn-latest-ddos.html
In today's rapidly evolving digital landscape, the threat of Distributed Denial of Service (DDoS) attacks looms more significant than ever. As these cyber threats grow in sophistication, understanding and countering them becomes crucial for any business seeking to protect its online presence.
To address this urgent need, we are thrilled to announce our upcoming webinar, "Uncovering Contemporary
594
Hackers Increasingly Abusing Microsoft Graph API for Stealthy Malware Communications
https://thehackernews.com/2024/05/hackers-increasingly-abusing-microsoft.html
Threat actors have been increasingly weaponizing Microsoft Graph API for malicious purposes with the aim of evading detection.
This is done to "facilitate communications with command-and-control (C&C) infrastructure hosted on Microsoft cloud services," the Symantec Threat Hunter Team, part of Broadcom, said in a report shared with The Hacker News.
594
New Guide Explains How to Eliminate the Risk of Shadow SaaS and Protect Corporate Data
https://thehackernews.com/2024/05/new-guide-explains-how-to-eliminate.html
SaaS applications are dominating the corporate landscape. Their increased use enables organizations to push the boundaries of technology and business. At the same time, these applications also pose a new security risk that security leaders need to address, since the existing security stack does not enable complete control or comprehensive monitoring of their usage.
594
NSA, FBI Alert on N. Korean Hackers Spoofing Emails from Trusted Sources
https://thehackernews.com/2024/05/nsa-fbi-alert-on-n-korean-hackers.html
The U.S. government on Thursday published a new cybersecurity advisory warning of North Korean threat actors' attempts to send emails in a manner that makes them appear like they are from legitimate and trusted parties.
The joint bulletin was published by the National Security Agency (NSA), the Federal Bureau of Investigation (FBI), and the Department of State.
"The
594
Google Announces Passkeys Adopted by Over 400 Million Accounts
https://thehackernews.com/2024/05/google-announces-passkeys-adopted-by.html
Google on Thursday announced that passkeys are being used by over 400 million Google accounts, authenticating users more than 1 billion times over the past two years.
"Passkeys are easy to use and phishing resistant, only relying on a fingerprint, face scan or a pin making them 50% faster than passwords," Heather Adkins, vice president of security engineering at Google, said.
594
Four Critical Vulnerabilities Expose HPE Aruba Devices to RCE Attacks
https://thehackernews.com/2024/05/four-critical-vulnerabilities-expose.html
HPE Aruba Networking (formerly Aruba Networks) has released security updates to address critical flaws impacting ArubaOS that could result in remote code execution (RCE) on affected systems.
Of the 10 security defects, four are rated critical in severity -
CVE-2024-26304 (CVSS score: 9.8) - Unauthenticated Buffer Overflow Vulnerability in the L2/L3 Management Service Accessed via
594
Popular Android Apps Like Xiaomi, WPS Office Vulnerable to File Overwrite Flaw
https://thehackernews.com/2024/05/popular-android-apps-like-xiaomi-wps.html
Several popular Android applications available in Google Play Store are susceptible to a path traversal-affiliated vulnerability that could be exploited by a malicious app to overwrite arbitrary files in the vulnerable app's home directory.
"The implications of this vulnerability pattern include arbitrary code execution and token theft, depending on an application’s 
594
Ukrainian REvil Hacker Sentenced to 13 Years and Ordered to Pay $16 Million
https://thehackernews.com/2024/05/ukrainian-revil-hacker-sentenced-to-13.html
A Ukrainian national has been sentenced to more than 13 years in prison and ordered to pay $16 million in restitution for carrying out thousands of ransomware attacks and extorting victims.
Yaroslav Vasinskyi (aka Rabotnik), 24, along with his co-conspirators part of the REvil ransomware group orchestrated more than 2,500 ransomware attacks and demanded ransom payments in
594
When is One Vulnerability Scanner Not Enough?
https://thehackernews.com/2024/05/when-is-one-vulnerability-scanner-not.html
Like antivirus software, vulnerability scans rely on a database of known weaknesses.
That’s why websites like VirusTotal exist, to give cyber practitioners a chance to see whether a malware sample is detected by multiple virus scanning engines, but this concept hasn’t existed in the vulnerability management space.
The benefits of using multiple scanning engines
Generally speaking
594
Dropbox Discloses Breach of Digital Signature Service Affecting All Users
https://thehackernews.com/2024/05/dropbox-discloses-breach-of-digital.html
Cloud storage services provider Dropbox on Wednesday disclosed that Dropbox Sign (formerly HelloSign) was breached by unidentified threat actors, who accessed emails, usernames, and general account settings associated with all users of the digital signature product.
The company, in a filing with the U.S. Securities and Exchange Commission (SEC), said it became aware of the "
594
New "Goldoon" Botnet Targets D-Link Routers With Decade-Old Flaw
https://thehackernews.com/2024/05/new-goldoon-botnet-targets-d-link.html
A never-before-seen botnet called Goldoon has been observed targeting D-Link routers with a nearly decade-old critical security flaw with the goal of using the compromised devices for further attacks.
The vulnerability in question is CVE-2015-2051 (CVSS score: 9.8), which affects D-Link DIR-645 routers and allows remote attackers to execute arbitrary
594
CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability
https://thehackernews.com/2024/05/cisa-warns-of-active-exploitation-of.html
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical flaw impacting GitLab to its Known Exploited Vulnerabilities (KEV) catalog, owing to active exploitation in the wild.
Tracked as CVE-2023-7028 (CVSS score: 10.0), the maximum severity vulnerability could facilitate account takeover by sending password reset emails to an unverified email
594
New Cuttlefish Malware Hijacks Router Connections, Sniffs for Cloud Credentials
https://thehackernews.com/2024/05/new-cuttlefish-malware-hijacks-router.html
A new malware called Cuttlefish is targeting small office and home office (SOHO) routers with the goal of stealthily monitoring all traffic through the devices and gather authentication data from HTTP GET and POST requests.
"This malware is modular, designed primarily to steal authentication material found in web requests that transit the router from the adjacent
594
Bitcoin Forensic Analysis Uncovers Money Laundering Clusters and Criminal Proceeds
https://thehackernews.com/2024/05/bitcoin-forensic-analysis-uncovers.html
A forensic analysis of a graph dataset containing transactions on the Bitcoin blockchain has revealed clusters associated with illicit activity and money laundering, including detecting criminal proceeds sent to a crypto exchange and previously unknown wallets belonging to a Russian darknet market.
The findings come from Elliptic in collaboration with researchers from the&
594
Android Malware Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers
https://thehackernews.com/2024/05/android-malware-wpeeper-uses.html
Cybersecurity researchers have discovered a previously undocumented malware targeting Android devices that uses compromised WordPress sites as relays for its actual command-and-control (C2) servers for detection evasion.
The malware, codenamed Wpeeper, is an ELF binary that leverages the HTTPS protocol to secure its C2 communications.
"Wpeeper is a typical backdoor Trojan for Android
