Tag: vigilance
-
The Register: ESET denies it was compromised as Israeli orgs targeted with ‘ESET-branded’ wipers
Source URL: https://www.theregister.com/2024/10/18/eset_denies_israel_branch_breach/ Source: The Register Title: ESET denies it was compromised as Israeli orgs targeted with ‘ESET-branded’ wipers Feedly Summary: Says ‘limited’ incident isolated to ‘partner company’ ESET denies being compromised after an infosec researcher highlighted a wiper campaign that appeared to victims as if it was launched using the Slovak security shop’s infrastructure.……
-
Alerts: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/17/oracle-releases-quarterly-critical-patch-update-advisory-october-2024 Source: Alerts Title: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024 Feedly Summary: Oracle released its quarterly Critical Patch Update Advisory for October 2024 to address vulnerabilities in multiple products. A cyber threat actor could exploit some of these vulnerabilities to take control of an affected system. CISA encourages users…
-
Alerts: CISA Adds One Known Exploited Vulnerability to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/17/cisa-adds-one-known-exploited-vulnerability-catalog Source: Alerts Title: CISA Adds One Known Exploited Vulnerability to Catalog Feedly Summary: CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-40711 Veeam Backup and Replication Deserialization Vulnerability These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant…
-
Krebs on Security: Sudanese Brothers Arrested in ‘AnonSudan’ Takedown
Source URL: https://krebsonsecurity.com/2024/10/sudanese-brothers-arrested-in-anonsudan-takedown/ Source: Krebs on Security Title: Sudanese Brothers Arrested in ‘AnonSudan’ Takedown Feedly Summary: The U.S. government on Wednesday announced the arrest and charging of two Sudanese brothers accused of running Anonymous Sudan (a.k.a. AnonSudan), a cybercrime business known for launching powerful distributed denial-of-service (DDoS) attacks against a range of targets, including dozens…
-
Slashdot: US Charges Duo Behind ‘Anonymous Sudan’ For Over 35,000 DDoS Attacks
Source URL: https://yro.slashdot.org/story/24/10/17/0020245/us-charges-duo-behind-anonymous-sudan-for-over-35000-ddos-attacks?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: US Charges Duo Behind ‘Anonymous Sudan’ For Over 35,000 DDoS Attacks Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the indictment of two Sudanese nationals associated with the hacktivist group Anonymous Sudan, known for executing large-scale DDoS attacks against critical infrastructure and high-profile organizations globally. This…
-
Alerts: CISA Adds Three Known Exploited Vulnerabilities to Catalog
Source URL: https://www.cisa.gov/news-events/alerts/2024/10/15/cisa-adds-three-known-exploited-vulnerabilities-catalog Source: Alerts Title: CISA Adds Three Known Exploited Vulnerabilities to Catalog Feedly Summary: CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2024-30088 Microsoft Windows Kernel TOCTOU Race Condition Vulnerability CVE-2024-9680 Mozilla Firefox Use-After-Free Vulnerability CVE-2024-28987 SolarWinds Web Help Desk Hardcoded Credential Vulnerability These…
-
Hacker News: Invisible text that AI chatbots understand and humans can’t?
Source URL: https://arstechnica.com/security/2024/10/ai-chatbots-can-read-and-write-invisible-text-creating-an-ideal-covert-channel/ Source: Hacker News Title: Invisible text that AI chatbots understand and humans can’t? Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a sophisticated method of exploiting vulnerabilities in AI chatbots like Claude and Copilot through “ASCII smuggling,” where invisible characters are used to embed malicious instructions. This innovative…