Kaspersky’s report highlights a steady increase in software vulnerabilities, with a surge in critical ones due to factors like bug bounty programs and complex software. Exploits, especially those available publicly, pose significant threats, and their numbers are rising. Key vulnerabilities in Q1 2024 include those affecting...
Actor IntelBroker is selling data from Europol in Breachforums (breachforums.st)
Data offered include Alliance employees, FOUO source code, PDFs, Documents for recon and guidelines.
IntelBroker Hacker Leaks Alleged HSBC & Barclays Bank Data (www.hackread.com)
Citrix warns admins to manually mitigate PuTTY SSH client bug (www.bleepingcomputer.com)
Boeing confirms attempted $200 million ransomware extortion attempt (cyberscoop.com)
Poland says Russian cyberspies targeted government networks (www.reuters.com)
Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version (thehackernews.com)
New Spectre-Style 'Pathfinder' Attack Targets Intel CPU, Leak Encryption Keys and Data (thehackernews.com)
Proton VPN TunnelVision support response.
I contacted Proton VPN about the TunnelVision exploit and I got a response. I feel great about it, thank you Proton!...
Zscaler investigating a potential breach (trust.zscaler.com)
Analyzing the vulnerability landscape in Q1 2024 (securelist.com)
Kaspersky’s report highlights a steady increase in software vulnerabilities, with a surge in critical ones due to factors like bug bounty programs and complex software. Exploits, especially those available publicly, pose significant threats, and their numbers are rising. Key vulnerabilities in Q1 2024 include those affecting...
zEus Stealer Distributed via Crafted Minecraft Source Pack (www.fortinet.com)
CHM Malware Stealing User Information Being Distributed in Korea (asec.ahnlab.com)
Nearly 184,000 MedStar Health patients' personal data possibly breached (therecord.media)
Security company exposes 1.2M guard and suspect records (www.theregister.com)
Chinese Hackers Deployed Backdoor Quintet to Down MITRE (www.darkreading.com)
UK confirms Ministry of Defence payroll data exposed in data breach (www.bleepingcomputer.com)
Stealing cookies: Researchers describe how to bypass modern authentication (cyberscoop.com)
China-Linked Hackers Suspected in ArcaneDoor Cyberattacks Targeting Network Devices (thehackernews.com)
Citrix Addresses High-Severity NetScaler Servers Flaw (www.darkreading.com)
NVIDIA patches three ChatRTX security bugs (www.scmagazine.com)
Deutsche Telekom claimed by LockBit, dozens more ransom victims (cybernews.com)
CVE-2024-3661: TunnelVision - How Attackers Can Decloak Routing-Based VPNs For a Total VPN Leak (www.leviathansecurity.com)
Android bug leaks DNS queries even when VPN kill switch is enabled (www.bleepingcomputer.com)
Iranian hackers pose as journalists to push backdoor malware (www.bleepingcomputer.com)