Google Fixes GCP Composer Flaw That Could’ve Led to Remote Code Execution

September 16, 2024 at 09:27AM A critical security flaw in Google Cloud Platform Composer, now patched, could have allowed remote code execution via a supply chain attack called dependency confusion. This could have led to a large-scale supply chain attack by tricking the package manager into downloading a malicious package. The issue was fixed by … Read more

North Korean Hackers Target Cryptocurrency Users on LinkedIn with RustDoor Malware

September 16, 2024 at 09:27AM Cybersecurity researchers warn about North Korean threat actors targeting LinkedIn users with RustDoor malware, posing as cryptocurrency recruiters. The attackers aim at infiltrating financial and cryptocurrency networks through social engineering campaigns, prompting victims to download malicious coding challenges. The RustDoor backdoor persists in macOS and Windows machines, highlighting evolving tactics … Read more

From Breach to Recovery: Designing an Identity-Focused Incident Response Playbook

September 16, 2024 at 08:21AM The text discusses the growing threat of identity-based cyber attacks and the need for organizations to adapt their incident response plans accordingly. It highlights the importance of an identity-focused playbook in detecting, containing, and recovering from identity breaches. The accompanying webinar promises to provide strategies for IT security professionals, incident … Read more

Master Your PCI DSS v4 Compliance with Innovative Smart Approvals

September 16, 2024 at 08:21AM Rapidly evolving PCI DSS landscape with v4.0 introduces rigorous requirements, particularly sections 6.4.3 and 11.6.1, necessitating strict monitoring and management of payment page scripts. Reflectiz offers a dedicated PCI dashboard with real-time, remote visibility, script-level monitoring, and a smart approval mechanism, ensuring efficient compliance and reduced risks. Access a 30-day … Read more

Prison just got rougher as band of heinously violent cybercrims sentenced to lengthy stints

September 16, 2024 at 08:19AM Cybercriminal Remy Ra St Felix and his gang were sentenced for a string of violent cryptocurrency robberies in the US. St Felix received a 47-year prison term and five years supervised release and was ordered to pay over $524 million in restitution. The gang targeted victims, held them at gunpoint, … Read more

Microsoft Says Recent Windows Vulnerability Exploited as Zero-Day

September 16, 2024 at 07:39AM Microsoft identified and addressed a high-severity CVE-2024-43461 security flaw through September 2024 updates, following its exploitation as a zero-day in Internet Explorer. This spoofing bug in MSHTML can execute arbitrary code when a user interacts with a malicious page or file. It was part of an attack chain exploited by … Read more

88,000 Impacted by Access Sports Data Breach Resulting From Ransomware Attack

September 16, 2024 at 07:39AM Access Sports Medicine & Orthopaedics discovered unauthorized access to personal and health information of over 88,000 individuals due to a cyberattack. The compromised data includes names, Social Security numbers, and medical information. While no evidence of misuse has been found, fraud protection services have been offered. The attack was claimed … Read more

Data Stolen in Ransomware Attack That Hit Seattle Airport

September 16, 2024 at 07:39AM The Port of Seattle confirmed a ransomware cyberattack in August, causing outages and disruptions to various services at the SEA Airport and other facilities. While most affected systems have been restored, the Port’s external website and internal portals remain offline. Stolen data is being assessed, with the potential for public … Read more

SolarWinds Patches Critical Vulnerability in Access Rights Manager

September 16, 2024 at 05:27AM SolarWinds has released patches for two vulnerabilities in its Access Rights Manager, including a critical-severity bug (CVE-2024-28991) enabling remote code execution. A second issue (CVE-2024-28990) allows an attacker to access RabbitMQ management console. Both were resolved in version 2024.3.1 and users are advised to update installations promptly. No exploitation in … Read more

Ivanti CSA Vulnerability Exploited in Attacks Days After DIsclosure

September 16, 2024 at 05:27AM Exploitation of the Ivanti Cloud Service Appliance (CSA) vulnerability CVE-2024-8190 began shortly after the vendor released patches. The high-severity flaw enables unauthorized access and remote code execution, affecting certain versions of the CSA. Ivanti has addressed the issue in Patch 519 and CSA 5.0, but noted limited customer exploitation. CISA … Read more