infosecurity-magazine.com

Health Information Published Online After MediSecure Ransomware Attack (www.infosecurity-magazine.com)

Cybercriminals Exploit Cloud Storage For SMS Phishing Scams (www.infosecurity-magazine.com)

GitHub Fixes Maximum Severity Flaw in Enterprise Server (www.infosecurity-magazine.com)

Russian Actors Weaponize Legitimate Services in Multi-Malware Attack (www.infosecurity-magazine.com)

Hackers Target New NATO Member Sweden with Surge of DDoS Attacks (www.infosecurity-magazine.com)

DragonForce Ransomware Group Uses LockBit’s Leaked Builder (www.infosecurity-magazine.com)

US Election Officials Told to Prepare for Nation-State Influence Campa (www.infosecurity-magazine.com)

Ivanti Patches Two Critical Avalanche Flaws in Major Update (www.infosecurity-magazine.com)

CVE-2024-24996 is described as a heap overflow in the WLInfoRailService component of the product, while CVE-2024-29204 is a heap overflow bug in the WLAvalancheService component. Both could allow a remote unauthenticated attacker to execute arbitrary commands, which is why they have been given a CVSS score of 9.8.

Russian Sandworm Group Using Novel Backdoor to Target Ukraine (www.infosecurity-magazine.com)

LeakyCLI Flaw Exposes AWS and Google Cloud Credentials (www.infosecurity-magazine.com)

Windows: New 'BatBadBut' Rust Vulnerability Given Highest CVSS Score (www.infosecurity-magazine.com) French

Comme quoi, même avec un langage safe by design (oublions rust-cve), si la platforme est fragile on peut pas y échaper

Rhadamanthys Malware Deployed By TA547 Against German Targets (www.infosecurity-magazine.com)

Chinese Groups Deploy New TTPs to Exploit Ivanti Vulnerabilities - Infosecurity Magazine (www.infosecurity-magazine.com)

IMF Investigates Serious Cybesecurity Breach (www.infosecurity-magazine.com)

Why DDoS Threat Actors Are Shifting Their Tactics (www.infosecurity-magazine.com)

FBI: US Ransomware Losses Surge 74% to $59.6 Million in 2023 (www.infosecurity-magazine.com)

GhostSec Evolves With Website Compromise Tools (www.infosecurity-magazine.com)

Cisco Talos reports a surge in malicious activities by hacking group GhostSec, including the development of GhostLocker 2.0 ransomware using Golang. Collaborating with Stormous, GhostSec conducts double extortion ransomware attacks globally, targeting sectors like technology and education. They’ve launched a RaaS program,...

Self-Propagating Worm Created to Target Generative AI Systems (www.infosecurity-magazine.com)

Researchers created “Morris II,” a computer worm targeting GenAI applications, capable of spreading malware and stealing data. It exploits GenAI systems’ retrieval augmented generation (RAG) for “0-click propagation.” The Israel Institute of Technology, Intuit, and Cornell Tech researchers emphasize the need for secure...

Ads for Zero-Day Exploit Sales Surge 70% Annually (www.infosecurity-magazine.com)

Group-IB’s report reveals a 70% increase in the sale of zero-day exploits in 2023 and monthly rentals of vulnerabilities, such as CVE-2023-38831 (WinRAR < 6.23). There is growing interest in ChatGPT credentials to access corporate data, with over 225,000 infostealer records for sale on the dark web. Apple devices are becoming...

White House Urges Tech Industry to Eliminate Memory Safety Vulnerabili (www.infosecurity-magazine.com)

The White House is calling on the tech industry to use programming languages that prevent memory vulnerabilities, responsible for up to 70% of CVEs in insecure languages. The ONCD recommends this change to improve software security, and the new U.S. cybersecurity strategy focuses on security from the design stage.

Ransomware Warning as CVSS 10.0 ScreenConnect Bug is Exploited (www.infosecurity-magazine.com)

IT administrators are urged to immediately patch on-premises ScreenConnect servers due to active exploitation of a critical vulnerability, CVE-2024-1709, with a maximum CVSS score of 10.0. This authentication bypass bug allows for arbitrary code execution and sensitive data access without user interaction. ConnectWise, the...