Tag: attackers
-
Alerts: Microsoft Releases December 2024 Security Updates
Source URL: https://www.cisa.gov/news-events/alerts/2024/12/10/microsoft-releases-december-2024-security-updates Source: Alerts Title: Microsoft Releases December 2024 Security Updates Feedly Summary: Microsoft released security updates to address vulnerabilities in multiple Microsoft products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review the following and apply necessary updates:…
-
The Register: Fully patched Cleo products under renewed ‘zero-day-ish’ mass attack
Source URL: https://www.theregister.com/2024/12/10/cleo_vulnerability/ Source: The Register Title: Fully patched Cleo products under renewed ‘zero-day-ish’ mass attack Feedly Summary: Thousands of servers targeted while customers wait for patches Researchers at security shop Huntress are seeing mass exploitation of a vulnerability affecting three Cleo file management products, even on patched systems.… AI Summary and Description: Yes Summary:…
-
The Register: Heart surgery device maker’s security bypassed, data encrypted and stolen
Source URL: https://www.theregister.com/2024/12/10/artivion_security_incident/ Source: The Register Title: Heart surgery device maker’s security bypassed, data encrypted and stolen Feedly Summary: Sounds like th-aorta get this sorted quickly A manufacturer of devices used in heart surgeries says it’s dealing with “a cybersecurity incident" that bears all the hallmarks of a ransomware attack.… AI Summary and Description: Yes…
-
The Register: Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket
Source URL: https://www.theregister.com/2024/12/09/aws_credentials_stolen/ Source: The Register Title: Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket Feedly Summary: ShinyHunters-linked heist thought to have been ongoing since March Exclusive A massive online heist targeting AWS customers during which digital crooks abused misconfigurations in public websites and stole source code, thousands of…
-
The Register: OpenWrt orders router firmware updates after supply chain attack scare
Source URL: https://www.theregister.com/2024/12/09/openwrt_firmware_vulnerabilities/ Source: The Register Title: OpenWrt orders router firmware updates after supply chain attack scare Feedly Summary: A couple of bugs lead to a potentially bad time OpenWrt users should upgrade their images to the same version to protect themselves from a possible supply chain attack reported to the open source Wi-Fi router…
-
The Register: Microsoft dangles $10K for hackers to hijack LLM email service
Source URL: https://www.theregister.com/2024/12/09/microsoft_llm_prompt_injection_challenge/ Source: The Register Title: Microsoft dangles $10K for hackers to hijack LLM email service Feedly Summary: Outsmart an AI, win a little Christmas cash Microsoft and friends have challenged AI hackers to break a simulated LLM-integrated email client with a prompt injection attack – and the winning teams will share a $10,000…