TECHZONE™
Відкрити в Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
Показати більше593
Підписники
-124 години
-27 днів
-830 день
Архів дописів
593
Banking Trojans Target Latin America and Europe Through Google Cloud Run
https://thehackernews.com/2024/02/banking-trojans-target-latin-america.html
Cybersecurity researchers are warning about a spike in email phishing campaigns that are weaponizing the Google Cloud Run service to deliver various banking trojans such as Astaroth (aka Guildma), Mekotio, and Ousaban (aka Javali) to targets across Latin America (LATAM) and Europe.
"The infection chains associated with these malware families feature the use of malicious
593
LockBit Ransomware Group Resurfaces After Law Enforcement Takedown
https://thehackernews.com/2024/02/lockbit-ransomware-group-resurfaces.html
The threat actors behind the LockBit ransomware operation have resurfaced on the dark web using new infrastructure, days after an international law enforcement exercise seized control of its servers.
To that end, the notorious group has moved its data leak portal to a new .onion address on the TOR network, listing 12 new victims as of writing.
The administrator behind LockBit, in a&
593
Authorities Claim LockBit Admin "LockBitSupp" Has Engaged with Law Enforcement
https://thehackernews.com/2024/02/authorities-claim-lockbit-admin.html
LockBitSupp, the individual(s) behind the persona representing the LockBit ransomware service on cybercrime forums such as Exploit and XSS, "has engaged with law enforcement," authorities said.
The development comes following the takedown of the prolific ransomware-as-a-service (RaaS) operation as part of a coordinated international operation codenamed Cronos. Over 14,000 rogue
593
PSYOP campaigns targeting Ukraine – Week in security with Tony Anscombe
https://www.welivesecurity.com/en/videos/psyop-campaigns-targeting-ukraine-week-security-tony-anscombe/
Coming in two waves, the campaign sought to demoralize Ukrainians and Ukrainian speakers abroad with disinformation messages about war-related subjects
593
Microsoft Expands Free Logging Capabilities for all U.S. Federal Agencies
https://thehackernews.com/2024/02/microsoft-expands-free-logging.html
Microsoft has expanded free logging capabilities to all U.S. federal agencies using Microsoft Purview Audit irrespective of the license tier, more than six months after a China-linked cyber espionage campaign targeting two dozen organizations came to light.
"Microsoft will automatically enable the logs in customer accounts and increase the default log retention period from 90 days to 180 days,"
593
Dormant PyPI Package Compromised to Spread Nova Sentinel Malware
https://thehackernews.com/2024/02/dormant-pypi-package-compromised-to.html
A dormant package available on the Python Package Index (PyPI) repository was updated nearly after two years to propagate an information stealer malware called Nova Sentinel.
The package, named django-log-tracker, was first published to PyPI in April 2022, according to software supply chain security firm Phylum, which detected an anomalous update to the library on February 21,
593
Everything you need to know about IP grabbers
https://www.welivesecurity.com/en/cybersecurity/everything-you-need-to-know-about-ip-grabbers/
You would never give your personal ID to random strangers, right? So why provide the ID of your computer? Unsuspecting users beware, IP grabbers do not ask for your permission.
593
Operation Texonto: Information operation targeting Ukrainian speakers in the context of the war
https://www.welivesecurity.com/en/eset-research/operation-texonto-information-operation-targeting-ukrainian-speakers-context-war/
A mix of PSYOPs, espionage and … fake Canadian pharmacies!
593
Microsoft Releases PyRIT - A Red Teaming Tool for Generative AI
https://thehackernews.com/2024/02/microsoft-releases-pyrit-red-teaming.html
Microsoft has released an open access automation framework called PyRIT (short for Python Risk Identification Tool) to proactively identify risks in generative artificial intelligence (AI) systems.
The red teaming tool is designed to "enable every organization across the globe to innovate responsibly with the latest artificial intelligence advances," Ram Shankar Siva Kumar, AI red team
593
How to Use Tines's SOC Automation Capability Matrix
https://thehackernews.com/2024/02/how-to-use-tiness-soc-automation.html
Created by John Tuckner and the team at workflow and automation platform Tines, the SOC Automation Capability Matrix (SOC ACM) is a set of techniques designed to help security operations teams understand their automation capabilities and respond more effectively to incidents.
A customizable, vendor-agnostic tool featuring lists of automation opportunities, it's been shared
593
Researchers Detail Apple's Recent Zero-Click Shortcuts Vulnerability
https://thehackernews.com/2024/02/researchers-detail-apples-recent-zero.html
Details have emerged about a now-patched high-severity security flaw in Apple's Shortcuts app that could permit a shortcut to access sensitive information on the device without users' consent.
The vulnerability, tracked as CVE-2024-23204 (CVSS score: 7.5), was addressed by Apple on January 22, 2024, with the release of iOS 17.3, iPadOS 17.3, macOS Sonoma 14.3, and
593
FTC Slams Avast with $16.5 Million Fine for Selling Users' Browsing Data
https://thehackernews.com/2024/02/ftc-slams-avast-with-165-million-fine.html
The U.S. Federal Trade Commission (FTC) has hit antivirus vendor Avast with a $16.5 million fine over charges that the firm sold users' browsing data to advertisers after claiming its products would block online tracking.
In addition, the company has been banned from selling or licensing any web browsing data for advertising purposes. It will also have to notify users whose browsing data was
593
Apple Unveils PQ3 Protocol - Post-Quantum Encryption for iMessage
https://thehackernews.com/2024/02/apple-unveils-pq3-protocol-post-quantum.html
Apple has announced a new post-quantum cryptographic protocol called PQ3 that it said will be integrated into iMessage to secure the messaging platform against future attacks arising from the threat of a practical quantum computer.
"With compromise-resilient encryption and extensive defenses against even highly sophisticated quantum attacks, PQ3 is the first messaging protocol to reach
593
A New Age of Hacktivism
https://thehackernews.com/2024/02/a-new-age-of-hacktivism.html
In the past 2 years, we have observed a significant surge in hacktivism activity due to ongoing wars and geopolitical conflicts in various regions. Since the war against Ukraine began, we have witnessed a notable mobilization of non-state and state-backed actors alike, forming new groups or joining existing hacker collectives.
We understand hacktivism as a form of computer hacking that is
593
Cybercriminals Weaponizing Open-Source SSH-Snake Tool for Network Attacks
https://thehackernews.com/2024/02/cybercriminals-weaponizing-open-source.html
A recently open-sourced network mapping tool called SSH-Snake has been repurposed by threat actors to conduct malicious activities.
"SSH-Snake is a self-modifying worm that leverages SSH credentials discovered on a compromised system to start spreading itself throughout the network," Sysdig researcher Miguel Hernández said.
"The worm automatically searches through known credential
593
Russian Government Software Backdoored to Deploy Konni RAT Malware
https://thehackernews.com/2024/02/russian-government-software-backdoored.html
An installer for a tool likely used by the Russian Consular Department of the Ministry of Foreign Affairs (MID) has been backdoored to deliver a remote access trojan called Konni RAT (aka UpDog).
The findings come from German cybersecurity company DCSO, which linked the activity as originating from the Democratic People's Republic of Korea (DPRK)-nexus actors targeting Russia.
The
593
U.S. Offers $15 Million Bounty to Hunt Down LockBit Ransomware Leaders
https://thehackernews.com/2024/02/us-offers-15-million-bounty-to-hunt.html
The U.S. State Department has announced monetary rewards of up to $15 million for information that could lead to the identification of key leaders within the LockBit ransomware group and the arrest of any individual participating in the operation.
"Since January 2020, LockBit actors have executed over 2,000 attacks against victims in the United States, and around the world, causing costly
593
Watching out for the fakes: How to spot online disinformation
https://www.welivesecurity.com/en/how-to/watching-out-for-the-fakes-how-to-spot-online-disinformation/
Why and how are we subjected to so much disinformation nowadays, and is there a way to spot the fakes?
593
New Wi-Fi Vulnerabilities Expose Android and Linux Devices to Hackers
https://thehackernews.com/2024/02/new-wi-fi-vulnerabilities-expose.html
Cybersecurity researchers have identified two authentication bypass flaws in open-source Wi-Fi software found in Android, Linux, and ChromeOS devices that could trick users into joining a malicious clone of a legitimate network or allow an attacker to join a trusted network without a password.
The vulnerabilities, tracked as CVE-2023-52160 and CVE-2023-52161, have been discovered following a
593
Mustang Panda Targets Asia with Advanced PlugX Variant DOPLUGS
https://thehackernews.com/2024/02/mustang-panda-targets-asia-with.html
The China-linked threat actor known as Mustang Panda has targeted various Asian countries using a variant of the PlugX (aka Korplug) backdoor dubbed DOPLUGS.
"The piece of customized PlugX malware is dissimilar to the general type of the PlugX malware that contains a completed backdoor command module, and that the former is only used for downloading the latter," Trend Micro researchers Sunny Lu
