PoC exploit for Ivanti EPMM privilege escalation flaw released (CVE 2024-22026) (www.helpnetsecurity.com)
Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002) (www.helpnetsecurity.com)
Log4Shell shows no sign of fading, spotted in 30% of CVE exploits (www.helpnetsecurity.com)
2024 Data Breach Investigations Report: Most breaches involve a non-malicious human element (www.helpnetsecurity.com)
Hackers backdoored Cisco ASA devices via two zero-days (CVE-2024-20353, CVE-2024-20359) - Help Net Security (www.helpnetsecurity.com)
73% of SME security pros missed or ignored critical alerts - Help Net Security (www.helpnetsecurity.com)
Behavioral patterns of ransomware groups are changing - Help Net Security (www.helpnetsecurity.com)
The GRIT Q1 2024 Ransomware Report highlights a nearly 20% annual increase in ransomware victims and significant shifts in Ransomware-as-a-Service (RaaS) group activities, partly in response to law enforcement actions. Groups like Alphv and LockBit have altered their operations, with smaller RaaS entities now seeking to recruit...
Bots dominate internet activity, account for nearly half of all traffic (www.helpnetsecurity.com)
cross-posted from: infosec.pub/post/11194362...
Bots dominate internet activity, account for nearly half of all traffic (www.helpnetsecurity.com)
cross-posted from: lemmy.dbzer0.com/post/18653040...
Cheap ransomware for sale on dark web marketplaces is changing the way hackers operate - Help Net Security (www.helpnetsecurity.com)
How to protect IP surveillance cameras from Wi-Fi jamming - Help Net Security (www.helpnetsecurity.com)
IT pros targeted with malicious Google ads for PuTTY, FileZilla - Help Net Security (www.helpnetsecurity.com)
CVE-2024-3400 exploited: Unit 42, Volexity share more details about the attacks - Help Net Security (www.helpnetsecurity.com)
Microsoft patches actively exploited security feature bypass vulnerability (CVE-2024-29988) - Help Net Security (www.helpnetsecurity.com)
How malicious email campaigns continue to slip through the cracks - Help Net Security (www.helpnetsecurity.com)
Cybercriminal adoption of browser fingerprinting - Help Net Security (www.helpnetsecurity.com)
XZ Utils backdoor update: Which Linux distros are affected and what can you do? - Help Net Security (www.helpnetsecurity.com)
Attackers are targeting financial departments with SmokeLoader malware - Help Net Security (www.helpnetsecurity.com)
The most prevalent malware behaviors and techniques - Help Net Security (www.helpnetsecurity.com)
Outsmarting cybercriminal innovation with strategies for enterprise resilience - Help Net Security (www.helpnetsecurity.com)
cross-posted from: midwest.social/post/10043498...
The effects of law enforcement takedowns on the ransomware landscape - Help Net Security (www.helpnetsecurity.com)
Transitioning to memory-safe languages: Challenges and considerations - Help Net Security (www.helpnetsecurity.com)
Memory-safe languages let programmers focus on quality code, avoiding risks of low-level memory management.
NIST CSF 2.0 released, to help all organizations, not just those in critical infrastructure - Help Net Security (www.helpnetsecurity.com)
NIST has released version 2.0 of the Cybersecurity Framework (CSF), focused on risk management and security for software supply chains. The update includes the new Govern function and tools such as the CSF 2.0 Reference Tool and the CPRT, to assist in the implementation and organizational coordination of the framework.
AnyDesk has been hacked, users urged to change passwords (www.helpnetsecurity.com)
AnyDesk Software GmbH, the German company behind the widely used (and misused) remote desktop application of the same name, has confirmed they’ve been hacked and their production systems have been compromised....
AWS Kill Switch: Open-source incident response tool - Help Net Security (www.helpnetsecurity.com)
