Recent Security News
-
When Email Security Meets SaaS Security: Uncovering Risky Auto-Forwarding Rules
November 9, 2023 at 06:39AM Wing Security has introduced a solution to address the risks associated with email auto-forwarding rules. While auto-forwarding is convenient, it can lead to the unauthorized dissemination of sensitive information. Wing’s SaaS security solution now includes a feature to detect and prevent auto-email forwarding. Additionally, Wing offers tools to identify and…
-
MuddyC2Go: New C2 Framework Iranian Hackers Using Against Israel
November 9, 2023 at 06:39AM Iranian state-sponsored hacking group MuddyWater is using a new command-and-control framework called MuddyC2Go in attacks targeting Israel. The framework, written in Go programming language, is believed to have been in use since early 2020. MuddyC2Go generates PowerShell payloads for post-exploitation activities, and experts recommend close monitoring of PowerShell activity. Key…
-
CISA Says SLP Vulnerability Allowing Amplified DoS Attacks Exploited in the Wild
November 9, 2023 at 05:30AM The US cybersecurity agency CISA has warned of threat actors using a Service Location Protocol (SLP) vulnerability to conduct denial-of-service (DoS) attacks with a high amplification factor. The flaw, tracked as CVE-2023-29552, allows unauthenticated remote attackers to register arbitrary services and use spoofed UDP traffic to amplify the magnitude of…
-
SysAid Zero-Day Vulnerability Exploited by Ransomware Group
November 9, 2023 at 05:30AM SysAid IT service management software has been targeted by a zero-day vulnerability used by a ransomware operation. Microsoft’s threat intelligence team discovered the exploitation and alerted SysAid, who released a patch on November 8. The vulnerability enables arbitrary code execution and was used by the group Lace Tempest, also linked…
-
Russian Hackers Used Novel OT Attack to Disrupt Ukrainian Power Amid Mass Missile Strikes
November 9, 2023 at 04:15AM In October, Russia’s “Sandworm” hackers carried out two previously undocumented attacks on operational technology (OT), causing a power outage and coinciding with missile strikes on critical infrastructure in Ukraine, according to cybersecurity firm Mandiant. The attacks targeted a control system called MicroSCADA and used a “novel technique” to impact industrial…