Aggregator

Компания F.A.C.C.T. проанализировала вредоносные рассылки во втором квартале 2024 г.

Our team recently uncovered a malware distribution campaign for a threat we’ve named DeerStealer.  The malware was spread through fake Google Authenticator websites, captured in this analysis session.  The site appears to be a Google page offering the application for download. The first site we discovered, authentificcatorgoolglte[.]com, mimics safety.google/intl/en_my/cybersecurity-advancements:  Clicking the Download button sends visitor […]

The post Brief Overview of the DeerStealer Distribution Campaign  appeared first on ANY.RUN's Cybersecurity Blog.

IBM reveals a 10% increase in the global cost of a data breach to $4.9m

ISC.AI 2024、新耀东方上安会、XCon、KCon……

“以模制模”助力安全行业新变革。

深入分析近一年的网络攻防态势和技术动态，为企业接下来的安全建设提供洞见。

知己知彼，才能百战不殆。

我们六岁啦！！！

On the heels of the recent U.S. ban on Kaspersky antivirus software, it was expected that Kaspersky would begin to remove resources in the U.S. However, few expected them to lay off all the U.S.-employee base with such efficiency.

The post From Geopolitics to Boardrooms: The Impact of the Kaspersky Ban  appeared first on Security Boulevard.

投稿截止日为8月5日

黑暗天使一跃成为今年最值得关注的勒索软件团伙

One critical method employed by security professionals to test systems’ strength and resilience is penetration testing. Gray-box testing is a balanced and practical approach that combines black-box and white-box testing elements. This blog explains the nuances of gray-box testing in cybersecurity and explores its characteristics, advantages, and techniques. What Is Gray Box Testing In Cybersecurity? […]

The post Gray Box Testing in Cybersecurity: Finding the Right Balance for Security first appeared on StrongBox IT.

The post Gray Box Testing in Cybersecurity: Finding the Right Balance for Security appeared first on Security Boulevard.

A vulnerability was found in Dell Inventory Collector. It has been classified as critical. Affected is an unknown function. The manipulation leads to path traversal. This vulnerability is traded as CVE-2024-37129. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Dell Peripheral Manager up to 1.7.5 and classified as critical. This issue affects some unknown processing of the component Symbolic Links Handler. The manipulation leads to uncontrolled search path. The identification of this vulnerability is CVE-2024-37127. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Dell Peripheral Manager up to 1.7.5 and classified as critical. This vulnerability affects unknown code of the component Symbolic Links Handler. The manipulation leads to uncontrolled search path. This vulnerability was named CVE-2024-32857. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.

A significant remote code execution (RCE) vulnerability was identified in the Ghostscript library, a widely used tool on Linux systems. This vulnerability, tracked as CVE-2024-29510, is currently being exploited in attacks, posing a severe risk to numerous applications and services. Ghostscript is a powerful and versatile tool used for processing PostScript and PDF files. It […]

The post Ghostscript Vulnerability Actively Exploited in Attacks appeared first on TuxCare.

The post Ghostscript Vulnerability Actively Exploited in Attacks appeared first on Security Boulevard.

Many smaller organizations are turning to cyber risk insurance, both to protect against the cost of a cyber incident and to use the extensive post-incident services that insurers provide

Phishing campaigns target small and medium-sized businesses (SMBs) in Poland to deliver malware families such as Agent Tesla, Formbook, and Remcos RAT. ESET researchers observed multiple phishing campaigns targeting SMBs in Poland in May 2024, distributing various malware families like Agent Tesla, Formbook, and Remcos RAT. ESET researchers detected nine notable phishing campaigns during May 2024 in Poland, Romania, and Italy. […]

Zscaler warns of copycat attacks after revealing one ransomware victim paid $75m