ru
Feedback
TECHZONE™

TECHZONE™

Открыть в Telegram

TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news

Больше
595
Подписчики
Нет данных24 часа
Нет данных7 дней
-730 день
Архив постов
Black Basta Ransomware May Have Exploited MS Windows Zero-Day Flaw https://thehackernews.com/2024/06/black-basta-ransomware-may-have.html Threat actors linked to the Black Basta ransomware may have exploited a recently disclosed privilege escalation flaw in the Microsoft Windows Error Reporting Service as zero-day, according to new findings from Symantec. The security flaw in question is CVE-2024-26169 (CVSS score: 7.8), an elevation of privilege bug in the Windows Error Reporting Service that could be exploited to achieve SYSTEM

New Phishing Campaign Deploys WARMCOOKIE Backdoor Targeting Job Seekers https://thehackernews.com/2024/06/new-phishing-campaign-deploys.html Cybersecurity researchers have disclosed details of an ongoing phishing campaign that leverages recruiting- and job-themed lures to deliver a Windows-based backdoor named WARMCOOKIE. "WARMCOOKIE appears to be an initial backdoor tool used to scout out victim networks and deploy additional payloads," Elastic Security Labs researcher Daniel Stepanic said in a new analysis. "Each sample is compiled

China-Backed Hackers Exploit Fortinet Flaw, Infecting 20,000 Systems Globally https://thehackernews.com/2024/06/china-backed-hackers-exploit-fortinet.html State-sponsored threat actors backed by China gained access to 20,000 Fortinet FortiGate systems worldwide by exploiting a known critical security flaw between 2022 and 2023, indicating that the operation had a broader impact than previously known. "The state actor behind this campaign was already aware of this vulnerability in FortiGate systems at least two months before Fortinet disclosed the

Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability https://thehackernews.com/2024/06/microsoft-issues-patches-for-51-flaws.html Microsoft has released security updates to address 51 flaws as part of its Patch Tuesday updates for June 2024. Of the 51 vulnerabilities, one is rated Critical and 50 are rated Important. This is in addition to 17 vulnerabilities resolved in the Chromium-based Edge browser over the past month. None of the security flaws have been actively exploited in the wild, with one of them listed as

How Cynet Makes MSPs Rich & Their Clients Secure https://thehackernews.com/2024/06/how-cynet-makes-msps-rich-their-clients.html Managed service providers (MSPs) are on the front lines of soaring demand for cybersecurity services as cyberattacks increase in volume and sophistication. Cynet has emerged as the security vendor of choice for MSPs to capitalize on existing relationships with SMB clients and profitably expand their client base. By unifying a full suite of cybersecurity capabilities in a simple, cost-effective

Chinese Actor SecShow Conducts Massive DNS Probing on Global Scale https://thehackernews.com/2024/06/chinese-actor-secshow-conducts-massive.html Cybersecurity researchers have shed more light on a Chinese actor codenamed SecShow that has been observed conducting Domain Name System (DNS) on a global scale since at least June 2023. The adversary, according to Infoblox security researchers Dr. Renée Burton and Dave Mitchell, operates from the China Education and Research Network (CERNET), a project funded by the Chinese government. "These

Top 10 Critical Pentest Findings 2024: What You Need to Know https://thehackernews.com/2024/06/top-10-critical-pentest-findings-2024.html One of the most effective ways for information technology (IT) professionals to uncover a company’s weaknesses before the bad guys do is penetration testing. By simulating real-world cyberattacks, penetration testing, sometimes called pentests, provides invaluable insights into an organization’s security posture, revealing weaknesses that could potentially lead to data breaches or other security

Apple Integrates OpenAI's ChatGPT into Siri for iOS, iPadOS, and macOS https://thehackernews.com/2024/06/apple-integrates-openais-chatgpt-into.html Apple has announced the launch of a "groundbreaking cloud intelligence system" called Private Cloud Compute (PCC) that's designed for processing artificial intelligence (AI) tasks in a privacy-preserving manner in the cloud. The tech giant described PCC as the "most advanced security architecture ever deployed for cloud AI compute at scale." PCC coincides with the arrival of new generative AI (

China-Linked ValleyRAT Malware Resurfaces with Advanced Data Theft Tactics https://thehackernews.com/2024/06/china-linked-valleyrat-malware.html Cybersecurity researchers have uncovered an updated version of malware called ValleyRAT that's being distributed as part of a new campaign. "In the latest version, ValleyRAT introduced new commands, such as capturing screenshots, process filtering, forced shutdown, and clearing Windows event logs," Zscaler ThreatLabz researchers Muhammed Irfan V A and Manisha Ramcharan Prajapati said. ValleyRAT

Snowflake Breach Exposes 165 Customers' Data in Ongoing Extortion Campaign https://thehackernews.com/2024/06/snowflake-breach-exposes-165-customers.html As many as 165 customers of Snowflake are said to have had their information potentially exposed as part of an ongoing campaign designed to facilitate data theft and extortion, indicating the operation has broader implications than previously thought. Google-owned Mandiant, which is assisting the cloud data warehousing platform in its incident response efforts, is tracking the

Arm Warns of Actively Exploited Zero-Day Vulnerability in Mali GPU Drivers https://thehackernews.com/2024/06/arm-warns-of-actively-exploited-zero.html Arm is warning of a security vulnerability impacting Mali GPU Kernel Driver that it said has been actively exploited in the wild. Tracked as CVE-2024-4610, the use-after-free issue impacts the following products - Bifrost GPU Kernel Driver (all versions from r34p0 to r40p0) Valhall GPU Kernel Driver (all versions from r34p0 to r40p0) "A local non-privileged user can make improper GPU memory

WeLiveSecurity wins Best Cybersecurity Vendor Blog award! https://www.welivesecurity.com/en/cybersecurity/welivesecurity-wins-best-cybersecurity-vendor-blog/ The award is an excellent opportunity for us to thank our readers and to recognize the depth of talent of ESET’s security researchers and writers

More_eggs Malware Disguised as Resumes Targets Recruiters in Phishing Attack https://thehackernews.com/2024/06/moreeggs-malware-disguised-as-resumes.html Cybersecurity researchers have spotted a phishing attack distributing the More_eggs malware by masquerading it as a resume, a technique originally detected more than two years ago. The attack, which was unsuccessful, targeted an unnamed company in the industrial services industry in May 2024, Canadian cybersecurity firm eSentire disclosed last week. "Specifically, the targeted individual was a

Cybersecurity CPEs: Unraveling the What, Why & How https://thehackernews.com/2024/06/cybersecurity-cpes-unraveling-what-why.html Staying Sharp: Cybersecurity CPEs Explained Perhaps even more so than in other professional domains, cybersecurity professionals constantly face new threats. To ensure you stay on top of your game, many certification programs require earning Continuing Professional Education (CPE) credits. CPEs are essentially units of measurement used to quantify the time and effort professionals spend on

Azure Service Tags Vulnerability: Microsoft Warns of Potential Abuse by Hackers https://thehackernews.com/2024/06/azure-service-tags-vulnerability.html Microsoft is warning about the potential abuse of Azure Service Tags by malicious actors to forge requests from a trusted service and get around firewall rules, thereby allowing them to gain unauthorized access to cloud resources. "This case does highlight an inherent risk in using service tags as a single mechanism for vetting incoming network traffic," the Microsoft Security Response Center (

Google Takes Down Influence Campaigns Tied to China, Indonesia, and Russia https://thehackernews.com/2024/06/google-takes-down-influence-campaigns.html Google has revealed that it took down 1,320 YouTube channels and 1,177 Blogger blogs as part of a coordinated influence operation connected to the People’s Republic of China (PRC). "The coordinated inauthentic network uploaded content in Chinese and English about China and U.S. foreign affairs," Google Threat Analysis Group (TAG) researcher Billy Leonard said in the company's quarterly bulletin

Sticky Werewolf Expands Cyber Attack Targets in Russia and Belarus https://thehackernews.com/2024/06/sticky-werewolf-expands-cyber-attack.html Cybersecurity researchers have disclosed details of a threat actor known as Sticky Werewolf that has been linked to cyber attacks targeting entities in Russia and Belarus. The phishing attacks were aimed at a pharmaceutical company, a Russian research institute dealing with microbiology and vaccine development, and the aviation sector, expanding beyond their initial focus of government

New PHP Vulnerability Exposes Windows Servers to Remote Code Execution https://thehackernews.com/2024/06/new-php-vulnerability-exposes-windows.html Details have emerged about a new critical security flaw impacting PHP that could be exploited to achieve remote code execution under certain circumstances. The vulnerability, tracked as CVE-2024-4577, has been described as a CGI argument injection vulnerability affecting all versions of PHP installed on the Windows operating system. According to DEVCORE security researcher, the shortcoming makes

Microsoft Revamps Controversial AI-Powered Recall Feature Amid Privacy Concerns https://thehackernews.com/2024/06/microsoft-revamps-controversial-ai.html Microsoft on Friday said it will disable its much-criticized artificial intelligence (AI)-powered Recall feature by default and make it an opt-in. Recall, currently in preview and coming exclusively to Copilot+ PCs on June 18, 2024, functions as an "explorable visual timeline" by capturing screenshots of what appears on users' screens every five seconds, which are subsequently analyzed and

560 million Ticketmaster customer data for sale? – Week in security with Tony Anscombe https://www.welivesecurity.com/en/videos/560-million-ticketmaster-customer-data-for-sale-week-in-security-with-tony-anscombe/ Ticketmaster seems to have experienced a data breach, with the ShinyHunters hacker group claiming to have exfiltrated 560 million customer data. Watch as Tony discusses the story and provides useful tips on how to protect people's data.