Tag: Cyberattacks
-
Alerts: CISA Adds Three Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/15/cisa-adds-three-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Three Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-30088 Microsoft Windows Kernel TOCTOU Race Condition Vulnerability CVE-2024-9680 Mozilla Firefox Use-After-Free Vulnerability CVE-2024-28987 SolarWinds Web Help Desk Hardcoded Credential Vulnerability These…
-
The Register: Microsoft says governments should bear the responsibility for dealing with cybercrime
Source URL: https://www.theregister.com/2024/10/15/microsoft_digital_defense_report/ Source: The Register Title: Microsoft says governments should bear the responsibility for dealing with cybercrime Feedly Summary: Although it also reaffirmed commitment to secure-by-design initiatives Microsoft is calling for more robust deterrents to be placed on nation-states as criminals continue to run rife across online systems “without any meaningful consequences."… AI Summary…
-
Hacker News: The Internet Archive is back as a read-only service after cyberattacks
Source URL: https://www.theverge.com/2024/10/14/24269741/internet-archive-online-read-only-data-breach-outage Source: Hacker News Title: The Internet Archive is back as a read-only service after cyberattacks Feedly Summary: Comments AI Summary and Description: Yes Summary: The Internet Archive has resumed operations in a limited read-only capacity following a cyberattack that resulted in a data breach and DDoS attack. This incident highlights ongoing concerns…
-
Microsoft Security Blog: Microsoft’s guidance to help mitigate Kerberoasting
Source URL: https://www.microsoft.com/en-us/security/blog/2024/10/11/microsofts-guidance-to-help-mitigate-kerberoasting/ Source: Microsoft Security Blog Title: Microsoft’s guidance to help mitigate Kerberoasting Feedly Summary: Kerberoasting, a well-known Active Directory (AD) attack vector, enables threat actors to steal credentials and navigate through devices and networks. Microsoft is sharing recommended actions administrators can take now to help prevent successful Kerberoasting cyberattacks. The post Microsoft’s…
-
Slashdot: European Govt Air-Gapped Systems Breached Using Custom Malware
Source URL: https://it.slashdot.org/story/24/10/11/1811217/european-govt-air-gapped-systems-breached-using-custom-malware?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: European Govt Air-Gapped Systems Breached Using Custom Malware Feedly Summary: AI Summary and Description: Yes Summary: An advanced persistent threat (APT) group named GoldenJackal has been successful in breaching air-gapped government systems in Europe, employing custom tools to steal sensitive information. This activity raises significant concerns about the security…
-
Alerts: CISA Adds Three Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/09/cisa-adds-three-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Three Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-23113 Fortinet Multiple Products Format String Vulnerability CVE-2024-9379 Ivanti Cloud Services Appliance (CSA) SQL Injection Vulnerability CVE-2024-9380 Ivanti Cloud Services Appliance (CSA) OS Command Injection…