Aggregator

De vooruitgeschoven NAVO-troepenmacht in Litouwen staat voor het eerst onder leiding van een Nederlandse militair. Luitenant-kolonel Bas Schillemans nam vandaag het commando over van de Duitse Oberstleutnant Mark Krüger. De landmacht-officier stuurt 6 maanden lang meer dan 1.300 militairen uit 6 verschillende landen aan.

Атака позволяет злоумышленникам похищать секретные ключи, заражая устройства вредоносной прошивкой.

DARPA's AI Cyber Challenge is enlisting AI to fight software vulnerabilities, with the healthcare sector closely watching the semi-finals as a potential solution to rising cyber threats

Cybersecurity researchers have disclosed details of security flaws in the Roundcube webmail software that could be exploited to execute malicious JavaScript in a victim's web browser and steal sensitive information from their account under specific circumstances. "When a victim views a malicious email in Roundcube sent by an attacker, the attacker can execute arbitrary JavaScript in the victim's

Attackers, including nation-state actors, increasingly leverage legitimate cloud services for espionage operations, exploiting their low-profile and cost-effective nature.  The services, such as Microsoft OneDrive and Google Drive, evade detection by masquerading as trusted entities, thereby enabling covert data exfiltration and tool development.  Researchers discovered a novel Go-based backdoor, GoGra, deployed against a South Asian media […]

The post Hackers Leveraging OneDrive & Google Drive To Hide Malicious Traffic appeared first on Cyber Security News.

ESem——南方科技大学 COMPASS Lab 在 AsiaCCS'24 上发表的论文

A critical vulnerability, designated as CVE-2024-42219, has been identified in 1Password 8 for Mac. This flaw allows malicious actors to exfiltrate vault items by bypassing the app’s platform security protections. Robinhood’s Red Team responsibly disclosed the issue following an independent security assessment of 1Password for Mac. CVE-2024-42219 – The Vulnerability The vulnerability affects the inter-process […]

The post 1Password Vulnerability Let Attackers Exfiltrate Vault Items appeared first on Cyber Security News.

Learn how to safeguard AD data risks and how to harden the AD attack surface to reduce the risk of a successful attack.

The post Defusing AD-Based Risks | Best Practices for Securing Modern Directory Services appeared first on SentinelOne.

7月│月报 谛听工控安全月报上线了，工信部的最新政策，7月发生的多起工控安全事件，谛听团队收集的最新攻击教据......更多安全资讯，请关注“谛听ditecting",每月更新!

If the recent nationwide CrowdStrike outage has taught us anything, it’s that enterprises must be prepared for anything and everything. This only goes to reinforce the importance of observability, which is crucial for IT teams who need to respond rapidly to problems within mission-critical network and application...

Ashok是一款多功能开源网络侦查公开资源情报OSINT工具，该工具是OSINT领域中的瑞士军刀，可以使用该工具轻松完成网络侦查任务。

Новый проект открывает разработчикам доступ к огромному набору инструментов.

A newly surfaced cybercampaign targeting Israeli users has thrust the sophisticated RHADAMANTHYS information stealer into the spotlight. Originating from Russian-speaking cybercriminals and offered as a Malware-as-a-Service, RHADAMANTHYS excels at data exfiltration.  Recent samples and in-depth analysis reveal a complex infection chain and extensive payload capabilities, highlighting the evolving threat landscape and underscoring the need for […]

The post RHADAMANTHYS Stealer Weaponizing RAR Archive To Steal Login Credentials appeared first on Cyber Security News.

Deep learning models analyzing API sequences for Windows malware detection face challenges due to evolving malware variants. A group of researchers recently proposed the MME framework, which enhances the existing detectors by leveraging API knowledge graphs and system resource encodings.  Utilizing contrastive learning, MME captures similar malicious semantics in evolved malware samples.  MME Framework Experimental […]

The post Researchers Proposed MME Framework To Enhance API Sequence-Based Malware Detection appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability classified as problematic has been found in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP up to 15.83/16.14/17.1. Affected is an unknown function of the component User Handler. The manipulation leads to incorrect user management. This vulnerability is traded as CVE-2024-7266. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP up to 19.5. It has been rated as problematic. This issue affects some unknown processing of the component IP Infrastructure Handler. The manipulation leads to exposure of sensitive information due to incompatible policies. The identification of this vulnerability is CVE-2024-7267. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Naukowa i Akademicka Sieć Komputerowa - Państwowy Instytut Badawczy EZD RP up to 15.83/16.14/17.1. It has been declared as problematic. This vulnerability affects unknown code of the component Password Handler. The manipulation leads to incorrect user management. This vulnerability was named CVE-2024-7265. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in MongoDB Server, Driver and PHP Driver on Windows. It has been classified as critical. This affects an unknown part. The manipulation leads to improper access controls. This vulnerability is uniquely identified as CVE-2024-7553. Local access is required to approach this attack. There is no exploit available. It is recommended to upgrade the affected component.

Пользователи жалуются на изменение ключевых настроек браузеров без их ведома.

The Apache CloudStack project has announced the release of long-term support (LTS) security updates, versions 4.18.2.3 and 4.19.1.1, which address two critical vulnerabilities, CVE-2024-42062 and CVE-2024-42222. These vulnerabilities pose significant risks to the integrity, confidentiality, and availability of CloudStack-managed infrastructure. CVE-2024-42062: User Key Exposure to Domain Admins CVE-2024-42062 is a critical vulnerability that affects Apache […]

The post Apache Cloudstack Vulnerability Exposes API & Secret Keys to Admin Accounts appeared first on Cyber Security News.