TECHZONE™
Відкрити в Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
Показати більше595
Підписники
Немає даних24 години
Немає даних7 днів
-730 день
Архів дописів
595
New MOVEit Transfer Vulnerability Under Active Exploitation - Patch ASAP!
https://thehackernews.com/2024/06/new-moveit-transfer-vulnerability-under.html
A newly disclosed critical security flaw impacting Progress Software MOVEit Transfer is already seeing exploitation attempts in the wild shortly after details of the bug were publicly disclosed.
The vulnerability, tracked as CVE-2024-5806 (CVSS score: 9.1), concerns an authentication bypass that impacts the following versions -
From 2023.0.0 before 2023.0.11
From 2023.1.0 before 2023.1.6, and&
595
Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware
https://thehackernews.com/2024/06/chinese-and-n-korean-hackers-target.html
Threat actors with suspected ties to China and North Korea have been linked to ransomware and data encryption attacks targeting government and critical infrastructure sectors across the world between 2021 and 2023.
While one cluster of activity has been associated with the ChamelGang (aka CamoFei), the second cluster overlaps with activity previously attributed to Chinese and North Korean
595
Practical Guidance For Securing Your Software Supply Chain
https://thehackernews.com/2024/06/practical-guidance-for-securing-your.html
The heightened regulatory and legal pressure on software-producing organizations to secure their supply chains and ensure the integrity of their software should come as no surprise. In the last several years, the software supply chain has become an increasingly attractive target for attackers who see opportunities to force-multiply their attacks by orders of magnitude. For example, look no
595
Apple Patches AirPods Bluetooth Vulnerability That Could Allow Eavesdropping
https://thehackernews.com/2024/06/apple-patches-airpods-bluetooth.html
Apple has released a firmware update for AirPods that could allow a malicious actor to gain access to the headphones in an unauthorized manner.
Tracked as CVE-2024-27867, the authentication issue affects AirPods (2nd generation and later), AirPods Pro (all models), AirPods Max, Powerbeats Pro, and Beats Fit Pro.
"When your headphones are seeking a connection request to one of your previously
595
New Credit Card Skimmer Targets WordPress, Magento, and OpenCart Sites
https://thehackernews.com/2024/06/new-credit-card-skimmer-targets.html
Multiple content management system (CMS) platforms like WordPress, Magento, and OpenCart have been targeted by a new credit card web skimmer called Caesar Cipher Skimmer.
A web skimmer refers to malware that is injected into e-commerce sites with the goal of stealing financial and payment information.
According to Sucuri, the latest campaign entails making malicious modifications to the
595
New Medusa Android Trojan Targets Banking Users Across 7 Countries
https://thehackernews.com/2024/06/new-medusa-android-trojan-targets.html
Cybersecurity researchers have discovered an updated version of an Android banking trojan called Medusa that has been used to target users in Canada, France, Italy, Spain, Turkey, the U.K., and the U.S.
The new fraud campaigns, observed in May 2024 and active since July 2023, manifested through five different botnets operated by various affiliates, cybersecurity firm Cleafy said in an analysis
595
Buying a VPN? Here’s what to know and look for
https://www.welivesecurity.com/en/privacy/buying-vpn-what-know-look-for/
VPNs are not all created equal – make sure to choose the right provider that will help keep your data safe from prying eyes
595
Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack
https://thehackernews.com/2024/06/over-110000-websites-affected-by.html
Google has taken steps to block ads for e-commerce sites that use the Polyfill.io service after a Chinese company acquired the domain and modified the JavaScript library ("polyfill.js") to redirect users to malicious and scam sites.
More than 110,000 sites that embed the library are impacted by the supply chain attack, Sansec said in a Tuesday report.
Polyfill is a popular library that
595
New Attack Technique Exploits Microsoft Management Console Files
https://thehackernews.com/2024/06/new-attack-technique-exploits-microsoft.html
Threat actors are exploiting a novel attack technique in the wild that leverages specially crafted management saved console (MSC) files to gain full code execution using Microsoft Management Console (MMC) and evade security defenses.
Elastic Security Labs has codenamed the approach GrimResource after identifying an artifact ("sccm-updater.msc") that was uploaded to the VirusTotal malware
595
How to Cut Costs with a Browser Security Platform
https://thehackernews.com/2024/06/how-to-cut-costs-with-browser-security.html
Browser security is becoming increasingly popular, as organizations understand the need to protect at the point of risk - the browser. Network and endpoint solutions are limited in their ability to protect from web-borne threats like phishing websites or malicious browser extensions. They also do not protect from internal data exfiltration, like employees pasting sensitive data to ChatGPT. As it
595
Wikileaks' Julian Assange Released from U.K. Prison, Heads to Australia
https://thehackernews.com/2024/06/wikileaks-julian-assange-released-from.html
WikiLeaks founder Julian Assange has been freed in the U.K. and has departed the country after serving more than five years in a maximum security prison at Belmarsh for what was described by the U.S. government as the "largest compromises of classified information in the history" of the country.
Capping off a 14-year legal saga, Assange, 52, pleaded guilty to one criminal count of conspiring to
595
4 FIN9-linked Vietnamese Hackers Indicted in $71M U.S. Cybercrime Spree
https://thehackernews.com/2024/06/4-fin9-linked-vietnamese-hackers.html
Four Vietnamese nationals with ties to the FIN9 cybercrime group have been indicted in the U.S. for their involvement in a series of computer intrusions that caused over $71 million in losses to companies.
The defendants, Ta Van Tai (aka Quynh Hoa and Bich Thuy), Nguyen Viet Quoc (aka Tien Nguyen), Nguyen Trang Xuyen, and Nguyen Van Truong (aka Chung Nguyen), have been accused of conducting
595
Multiple WordPress Plugins Compromised: Hackers Create Rogue Admin Accounts
https://thehackernews.com/2024/06/multiple-wordpress-plugins-compromised.html
Multiple WordPress plugins have been backdoored to inject malicious code that makes it possible to create rogue administrator accounts with the aim of performing arbitrary actions.
"The injected malware attempts to create a new administrative user account and then sends those details back to the attacker-controlled server," Wordfence security researcher Chloe Chamberland said in a Monday alert.
595
Google Introduces Project Naptime for AI-Powered Vulnerability Research
https://thehackernews.com/2024/06/google-introduces-project-naptime-for.html
Google has developed a new framework called Project Naptime that it says enables a large language model (LLM) to carry out vulnerability research with an aim to improve automated discovery approaches.
"The Naptime architecture is centered around the interaction between an AI agent and a target codebase," Google Project Zero researchers Sergei Glazunov and Mark Brand said. "The agent is provided
595
Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool
https://thehackernews.com/2024/06/critical-rce-vulnerability-discovered.html
Cybersecurity researchers have detailed a now-patch security flaw affecting the Ollama open-source artificial intelligence (AI) infrastructure platform that could be exploited to achieve remote code execution.
Tracked as CVE-2024-37032, the vulnerability has been codenamed Probllama by cloud security firm Wiz. Following responsible disclosure on May 5, 2024, the issue was addressed in version
595
Ease the Burden with AI-Driven Threat Intelligence Reporting
https://thehackernews.com/2024/06/ease-burden-with-ai-driven-threat.html
Learn about critical threats that can impact your organization and the bad actors behind them from Cybersixgill’s threat experts. Each story shines a light on underground activities, the threat actors involved, and why you should care, along with what you can do to mitigate risk.
Cybersecurity professionals are facing unprecedented challenges as they strive to manage increasing workloads
595
RedJuliett Cyber Espionage Campaign Hits 75 Taiwanese Organizations
https://thehackernews.com/2024/06/redjuliett-cyber-espionage-campaign.html
A likely China-linked state-sponsored threat actor has been linked to a cyber espionage campaign targeting government, academic, technology, and diplomatic organizations in Taiwan between November 2023 and April 2024.
Recorded Future's Insikt Group is tracking the activity under the name RedJuliett, describing it as a cluster that operates Fuzhou, China, to support Beijing's intelligence
595
Multiple Threat Actors Deploying Open-Source Rafel RAT to Target Android Devices
https://thehackernews.com/2024/06/iranian-hackers-deploy-rafel-rat-in.html
Multiple threat actors, including cyber espionage groups, are employing an open-source Android remote administration tool called Rafel RAT to meet their operational objectives by masquerading it as Instagram, WhatsApp, and various e-commerce and antivirus apps.
"It provides malicious actors with a powerful toolkit for remote administration and control, enabling a range of malicious activities
595
ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor
https://thehackernews.com/2024/06/excobalt-cyber-gang-targets-russian.html
Russian organizations have been targeted by a cybercrime gang called ExCobalt using a previously unknown Golang-based backdoor known as GoRed.
"ExCobalt focuses on cyber espionage and includes several members active since at least 2016 and presumably once part of the notorious Cobalt Gang," Positive Technologies researchers Vladislav Lunin and Alexander Badayev said in a technical report
595
Warning: New Adware Campaign Targets Meta Quest App Seekers
https://thehackernews.com/2024/06/warning-new-adware-campaign-targets.html
A new campaign is tricking users searching for the Meta Quest (formerly Oculus) application for Windows into downloading a new adware family called AdsExhaust.
"The adware is capable of exfiltrating screenshots from infected devices and interacting with browsers using simulated keystrokes," cybersecurity firm eSentire said in an analysis, adding it identified the activity earlier this month.
"
