TECHZONE™
Відкрити в Telegram
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
Показати більше593
Підписники
-124 години
-17 днів
-730 день
Архів дописів
594
New ZenHammer Attack Bypasses Rowhammer Defenses on AMD CPUs
https://thehackernews.com/2024/03/new-zenhammer-attack-bypasses-rowhammer.html
Cybersecurity researchers from ETH Zurich have developed a new variant of the RowHammer DRAM (dynamic random-access memory) attack that, for the first time, successfully works against AMD Zen 2 and Zen 3 systems despite mitigations such as Target Row Refresh (TRR).
"This result proves that AMD systems are equally vulnerable to Rowhammer as Intel systems, which greatly increases the attack
594
Telegram Offers Premium Subscription in Exchange for Using Your Number to Send OTPs
https://thehackernews.com/2024/03/telegram-offers-premium-subscription-in.html
In June 2017, a study of more than 3,000 Massachusetts Institute of Technology (MIT) students published by the National Bureau for Economic Research (NBER) found that 98% of them were willing to give away their friends' email addresses in exchange for free pizza.
"Whereas people say they care about privacy, they are willing to relinquish private data quite easily when
594
Hackers Hit Indian Defense, Energy Sectors with Malware Posing as Air Force Invite
https://thehackernews.com/2024/03/hackers-target-indian-defense-and.html
Indian government entities and energy companies have been targeted by unknown threat actors with an aim to deliver a modified version of an open-source information stealer malware called HackBrowserData and exfiltrate sensitive information in some cases by using Slack as command-and-control (C2).
"The information stealer was delivered via a phishing email, masquerading as an invitation letter
594
CISA Warns: Hackers Actively Attacking Microsoft SharePoint Vulnerability
https://thehackernews.com/2024/03/cisa-warns-hackers-actively-attacking.html
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a security flaw impacting the Microsoft Sharepoint Server to its Known Exploited Vulnerabilities (KEV) catalog based on evidence of active exploitation in the wild.
The vulnerability, tracked as CVE-2023-24955 (CVSS score: 7.2), is a critical remote code execution flaw that allows an authenticated attacker with
594
Borrower beware: Common loan scams and how to avoid them
https://www.welivesecurity.com/en/scams/borrower-beware-common-loan-scams/
Personal loan scams prey on your financial vulnerability and might even trap you in a vicious circle of debt. Here’s how to avoid being scammed when considering a loan.
594
Microsoft Edge Bug Could Have Allowed Attackers to Silently Install Malicious Extensions
https://thehackernews.com/2024/03/microsoft-edge-bug-could-have-allowed.html
A now-patched security flaw in the Microsoft Edge web browser could have been abused to install arbitrary extensions on users' systems and carry out malicious actions.
"This flaw could have allowed an attacker to exploit a private API, initially intended for marketing purposes, to covertly install additional browser extensions with broad permissions without the user's knowledge," Guardio
594
SASE Solutions Fall Short Without Enterprise Browser Extensions, New Report Reveals
https://thehackernews.com/2024/03/sase-solutions-fall-short-without.html
As SaaS applications dominate the business landscape, organizations need optimized network speed and robust security measures. Many of them have been turning to SASE, a product category that offers cloud-based network protection while enhancing network infrastructure performance.
However, a new report: "Better Together: SASE and Enterprise Browser Extension for the SaaS-First Enterprise" (
594
Critical Unpatched Ray AI Platform Vulnerability Exploited for Cryptocurrency Mining
https://thehackernews.com/2024/03/critical-unpatched-ray-ai-platform.html
Cybersecurity researchers are warning that threat actors are actively exploiting a "disputed" and unpatched vulnerability in an open-source artificial intelligence (AI) platform called Anyscale Ray to hijack computing power for illicit cryptocurrency mining.
"This vulnerability allows attackers to take over the companies' computing power and leak sensitive data," Oligo Security researchers Avi
594
Alert: New Phishing Attack Delivers Keylogger Disguised as Bank Payment Notice
https://thehackernews.com/2024/03/alert-new-phishing-attack-delivers.html
A new phishing campaign has been observed leveraging a novel loader malware to deliver an information stealer and keylogger called Agent Tesla.
Trustwave SpiderLabs said it identified a phishing email bearing this attack chain on March 8, 2024. The message masquerades as a bank payment notification, urging the user to open an archive file attachment.
The archive ("Bank Handlowy w Warszawie
594
Two Chinese APT Groups Ramp Up Cyber Espionage Against ASEAN Countries
https://thehackernews.com/2024/03/two-chinese-apt-groups-ramp-up-cyber.html
Two China-linked advanced persistent threat (APT) groups have been observed targeting entities and member countries affiliated with the Association of Southeast Asian Nations (ASEAN) as part of a cyber espionage campaign over the past three months.
This includes the threat actor known as Mustang Panda, which has been recently linked to cyber attacks against Myanmar as well as
594
Malicious NuGet Package Linked to Industrial Espionage Targets Developers
https://thehackernews.com/2024/03/malicious-nuget-package-linked-to.html
Threat hunters have identified a suspicious package in the NuGet package manager that's likely designed to target developers working with tools made by a Chinese firm that specializes in industrial- and digital equipment manufacturing.
The package in question is SqzrFramework480, which ReversingLabs said was first published on January 24, 2024. It has been downloaded
594
Cybersecurity starts at home: Help your children stay safe online with open conversations
https://www.welivesecurity.com/en/kids-online/cybersecurity-starts-home-children-open-conversations/
Struggle to know how to help children and teens stay safe in cyberspace? A good ol’ fashioned chat is enough to put them on the right track.
594
U.S. Charges 7 Chinese Nationals in Major 14-Year Cyber Espionage Operation
https://thehackernews.com/2024/03/us-charges-7-chinese-nationals-in-major.html
The U.S. Department of Justice (DoJ) on Monday unsealed indictments against seven Chinese nationals for their involvement in a hacking group that targeted U.S. and foreign critics, journalists, businesses, and political officials for about 14 years.
The defendants include Ni Gaobin (倪高彬), Weng Ming (翁明), Cheng Feng (程锋), Peng Yaowen (彭耀文), Sun Xiaohui (孙小辉), Xiong Wang (熊旺), and Zhao Guangzong (
594
Crafting Shields: Defending Minecraft Servers Against DDoS Attacks
https://thehackernews.com/2024/03/crafting-shields-defending-minecraft.html
Minecraft, with over 500 million registered users and 166 million monthly players, faces significant risks from distributed denial-of-service (DDoS) attacks, threatening server functionality, player experience, and the game’s reputation. Despite the prevalence of DDoS attacks on the game, the majority of incidents go unreported, leaving a gap in awareness and protection. This article explains
594
U.S. Sanctions 3 Cryptocurrency Exchanges for Helping Russia Evade Sanctions
https://thehackernews.com/2024/03/us-sanctions-3-cryptocurrency-exchanges.html
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) sanctioned three cryptocurrency exchanges for offering services used to evade economic restrictions imposed on Russia following its invasion of Ukraine in early 2022.
This includes Bitpapa IC FZC LLC, Crypto Explorer DMCC (AWEX), and Obshchestvo S Ogranichennoy Otvetstvennostyu Tsentr Obrabotki Elektronnykh Platezhey (
594
CISA Alerts on Active Exploitation of Flaws in Fortinet, Ivanti, and Nice Products
https://thehackernews.com/2024/03/cisa-alerts-on-active-exploitation-of.html
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday placed three security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
The vulnerabilities added are as follows -
CVE-2023-48788 (CVSS score: 9.3) - Fortinet FortiClient EMS SQL Injection Vulnerability
CVE-2021-44529 (CVSS score: 9.8) - Ivanti
594
Hackers Hijack GitHub Accounts in Supply Chain Attack Affecting Top-gg and Others
https://thehackernews.com/2024/03/hackers-hijack-github-accounts-in.html
Unidentified adversaries orchestrated a sophisticated attack campaign that has impacted several individual developers as well as the GitHub organization account associated with Top.gg, a Discord bot discovery site.
"The threat actors used multiple TTPs in this attack, including account takeover via stolen browser cookies, contributing malicious code with verified commits, setting up a custom
594
Key Lesson from Microsoft’s Password Spray Hack: Secure Every Account
https://thehackernews.com/2024/03/key-lesson-from-microsofts-password.html
In January 2024, Microsoft discovered they’d been the victim of a hack orchestrated by Russian-state hackers Midnight Blizzard (sometimes known as Nobelium). The concerning detail about this case is how easy it was to breach the software giant. It wasn’t a highly technical hack that exploited a zero-day vulnerability – the hackers used a simple password spray attack to take control of
594
New "GoFetch" Vulnerability in Apple M-Series Chips Leaks Secret Encryption Keys
https://thehackernews.com/2024/03/new-gofetch-vulnerability-in-apple-m.html
A new security shortcoming discovered in Apple M-series chips could be exploited to extract secret keys used during cryptographic operations.
Dubbed GoFetch, the vulnerability relates to a microarchitectural side-channel attack that takes advantage of a feature known as data memory-dependent prefetcher (DMP) to target constant-time cryptographic implementations and capture sensitive data
594
Iran-Linked MuddyWater Deploys Atera for Surveillance in Phishing Attacks
https://thehackernews.com/2024/03/iran-linked-muddywater-deploys-atera.html
The Iran-affiliated threat actor tracked as MuddyWater (aka Mango Sandstorm or TA450) has been linked to a new phishing campaign in March 2024 that aims to deliver a legitimate Remote Monitoring and Management (RMM) solution called Atera.
The activity, which took place from March 7 through the week of March 11, targeted Israeli entities spanning global manufacturing, technology, and
