Xynik December 11, 2024 at 07:30AM Cybersecurity researchers revealed the EagleMsgSpy surveillance program, allegedly used by Chinese police since 2017, to gather extensive data from mobile devices. Operating through an installer and a headless client, it captures messages, call logs, and location data, requiring physical access to activate. It targets law enforcement applications, indicating its serious … Read more
December 11, 2024 at 07:30AM A China-based threat actor has been linked to cyber attacks in Southeast Asia targeting key sectors, including government and telecoms, since October 2023. Characterized by sophisticated tools and techniques, attacks involved prolonged network access and data exfiltration. Recent activities indicate persistent cyber espionage amidst ongoing regional geopolitical tensions. ### Meeting … Read more
December 11, 2024 at 07:15AM Ivanti issued a security advisory for three critical vulnerabilities in its Cloud Services Application (CSA), including a perfect 10-rated authentication bypass flaw. These vulnerabilities could allow attackers to gain unauthorized access and execute malicious commands. Users are urged to upgrade to version 5.0.3 to mitigate risks. ### Meeting Takeaways: **Ivanti … Read more
December 11, 2024 at 07:11AM Google’s Willow chip, announced on December 9, 2024, can solve complex problems in minutes, demonstrating significant advancements in quantum computing. It features below-threshold error correction, reducing reliance on error-correcting qubits. While impressive, experts caution that the breakthrough is incremental and still distant from achieving cryptographically relevant quantum computing. ### Meeting … Read more
December 11, 2024 at 06:56AM Center for Vein Restoration has informed over 446,000 individuals that their personal, medical, and financial data was compromised in a cyberattack identified on October 6. The breach affects both patients and employees. The organization is enhancing security measures and providing identity theft protection services to those impacted. ### Meeting Takeaways: … Read more
December 11, 2024 at 06:34AM The December 2024 ICS Patch Tuesday featured advisories from CISA and several industrial companies, notably Schneider Electric and Siemens. Significant vulnerabilities were reported, including critical flaws in Modicon controllers and high-severity issues in various products, prompting numerous patches and mitigations for affected systems. Rockwell Automation and Phoenix Contact also released … Read more
December 11, 2024 at 06:19AM Ivanti announced patches for 11 vulnerabilities, including five critical-severity bugs affecting Cloud Services Application, Connect Secure, and Policy Secure. Notably, CVE-2024-11639, with a CVSS score of 10, allows authentication bypass. Users are urged to update their systems. No evidence of exploitation has been reported. ### Meeting Takeaways 1. **Ivanti Vulnerability … Read more
December 11, 2024 at 05:49AM The US government has charged Chinese national Guan Tianfeng for his involvement in hacker attacks on Sophos firewalls, compromising around 81,000 devices globally. The attacks exploited zero-day vulnerabilities and were linked to Sichuan Silence Information Technology. Sanctions against Guan and the company were also announced, with rewards offered for information. … Read more
December 11, 2024 at 02:30AM Microsoft’s October 2024 Patch Tuesday addressed 72 security flaws, including a critical privilege escalation vulnerability (CVE-2024-49138) actively exploited in the wild. The update opened paths for further security measures against threats. Additionally, Microsoft plans to phase out NTLM in favor of Kerberos to bolster security against exploitation. ### Meeting Takeaways: … Read more
December 11, 2024 at 02:06AM Telecommunications firms globally, including in the US, Asia-Pacific, and MENA regions, are targets of Chinese-sponsored cyberattacks, such as those from Salt Typhoon and Volt Typhoon. Experts warn that nations should enhance security measures and adopt encryption to protect communications, as foreign intrusions threaten network privacy and integrity. ### Meeting Takeaways … Read more