Experimental News Clipping Site

Tag: attack

  • Microsoft Security Blog: New Star Blizzard spear-phishing campaign targets WhatsApp accounts

    by

    Kurt Seifried
    in

    Source URL: https://www.microsoft.com/en-us/security/blog/2025/01/16/new-star-blizzard-spear-phishing-campaign-targets-whatsapp-accounts/ Source: Microsoft Security Blog Title: New Star Blizzard spear-phishing campaign targets WhatsApp accounts Feedly Summary: In mid-November 2024, Microsoft Threat Intelligence observed the Russian threat actor we track as Star Blizzard sending their typical targets spear-phishing messages, this time offering the supposed opportunity to join a WhatsApp group. This is the first…

  • Hacker News: Mastercard DNS Error Went Unnoticed for Years

    by

    Kurt Seifried
    in

    Source URL: https://krebsonsecurity.com/2025/01/mastercard-dns-error-went-unnoticed-for-years/ Source: Hacker News Title: Mastercard DNS Error Went Unnoticed for Years Feedly Summary: Comments AI Summary and Description: Yes Summary: The incident involving MasterCard’s DNS misconfiguration underscores the critical importance of accurate DNS management as a security measure in the financial sector. The flaw, which existed for nearly five years, highlights potential…

  • Krebs on Security: MasterCard DNS Error Went Unnoticed for Years

    by

    Kurt Seifried
    in

    Source URL: https://krebsonsecurity.com/2025/01/mastercard-dns-error-went-unnoticed-for-years/ Source: Krebs on Security Title: MasterCard DNS Error Went Unnoticed for Years Feedly Summary: The payment card giant MasterCard just fixed a glaring error in its domain name server settings that could have allowed anyone to intercept or divert Internet traffic for the company by registering an unused domain name. The misconfiguration…

  • Slashdot: DDoS Attacks Soar 53% To 21.3 Million, Cloudflare Reports

    by

    Kurt Seifried
    in

    Source URL: https://it.slashdot.org/story/25/01/22/140247/ddos-attacks-soar-53-to-213-million-cloudflare-reports?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: DDoS Attacks Soar 53% To 21.3 Million, Cloudflare Reports Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses Cloudflare’s significant efforts in mitigating DDoS attacks in 2024, highlighting a dramatic increase in volumetric attacks and the rise of ransom DDoS incidents. This information is particularly relevant for…

  • CSA: How to Combat Social Engineering Attacks

    by

    Kurt Seifried
    in

    Source URL: https://abnormalsecurity.com/blog/soc-expert-perspectives-social-engineering-threats Source: CSA Title: How to Combat Social Engineering Attacks Feedly Summary: AI Summary and Description: Yes **Summary:** The text discusses the increasing threat of social engineering attacks and highlights key insights from cybersecurity experts regarding the vulnerabilities associated with human behavior, advanced attack techniques such as deepfakes, and the necessity for AI-driven…

  • The Register: Infosec was literally the last item in Trump’s policy plan, yet major changes are likely on his watch

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/22/trump_cyber_policy/ Source: The Register Title: Infosec was literally the last item in Trump’s policy plan, yet major changes are likely on his watch Feedly Summary: Everyone agrees defense matters. How to do it is up for debate Feature The Trump administration came to office this week without a detailed information security policy, but…

  • The Register: Ransomware scum make it personal for <i>Reg</i> readers by impersonating tech support

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/22/ransomware_crews_abuse_microsoft_teams/ Source: The Register Title: Ransomware scum make it personal for <i>Reg</i> readers by impersonating tech support Feedly Summary: That invitation to a Teams call on which IT promises to mop up a spamstorm may not be what it seems Two ransomware campaigns are abusing Microsoft Teams to infect organizations and steal data,…

  • The Register: PowerSchool thieves net decades of Canadian students’ records, hit 40-plus US states

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/22/powerschool_attack_canada_lawsuit/ Source: The Register Title: PowerSchool thieves net decades of Canadian students’ records, hit 40-plus US states Feedly Summary: Lawsuits pile up after database accessed by miscreants Canada’s largest school board has revealed that student records dating back to 1985 may have been accessed by miscreants who compromised software provider PowerSchool.… AI Summary…

  • Hacker News: LLMs Demonstrate Behavioral Self-Awareness [pdf]

    by

    Kurt Seifried
    in

    Source URL: https://martins1612.github.io/selfaware_paper_betley.pdf Source: Hacker News Title: LLMs Demonstrate Behavioral Self-Awareness [pdf] Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The provided text discusses a study focused on the concept of behavioral self-awareness in Large Language Models (LLMs). The research demonstrates that LLMs can be finetuned to recognize and articulate their learned behaviors, including…

  • The Register: Patch procrastination leaves 50,000 Fortinet firewalls vulnerable to zero-day

    by

    Kurt Seifried
    in

    Source URL: https://www.theregister.com/2025/01/21/fortinet_firewalls_still_vulnerable/ Source: The Register Title: Patch procrastination leaves 50,000 Fortinet firewalls vulnerable to zero-day Feedly Summary: Seven days after disclosure and little action taken, data shows Fortinet customers need to get with the program and apply the latest updates as nearly 50,000 management interfaces are still vulnerable to the latest zero-day exploit.… AI…