Xynik

CVE-2023-36025 Exploited for Defense Evasion in Phemedrone Stealer Campaign

by

January 12, 2024 at 02:38AM This blog summarizes the exploitation of CVE-2023-36025 by the Phemedrone Stealer campaign, which targets web browsers, cryptocurrency wallets, and messaging apps. The malware bypasses Windows Defender SmartScreen, allowing threat actors to execute malicious scripts. Despite Microsoft’s patch, the vulnerability continues to be exploited, posing a risk to organizations. Advanced security … Read more

Drivers: We’ll take that plain dumb car over a flashy data-spilling internet one, thanks

by

January 12, 2024 at 02:34AM Most people at CES are uncomfortable with car manufacturers sharing their data with third parties, with 72% expressing discomfort. Many are unaware of the extent of data collection by their cars. However, there is a willingness to trade personal data for driver personalization and better insurance rates, suggesting a need … Read more

Act Now: CISA Flags Active Exploitation of Microsoft SharePoint Vulnerability

by

January 12, 2024 at 02:03AM The U.S. CISA added a critical security vulnerability in Microsoft SharePoint Server to its catalog, noting evidence of active exploitation and the availability of patches from Microsoft. Security researcher Nguyễn Tiến Giang demonstrated an exploit at a hacking contest, with federal agencies advised to apply the patches by January 31, … Read more

Trend Micro Defends FIFA World Cup from Cyber Threats

by

January 12, 2024 at 12:11AM Trend Micro collaborated with INTERPOL to defend the FIFA World Cup, monitoring and reporting on potential cyber threats. They proactively identified and shared detections of malicious websites and scams, such as fake ticket sales, streaming sites, survey scams, and crypto scamming. Trend Micro aims to continue making the digital world … Read more

Black Basta-Affiliated Water Curupira’s Pikabot Spam Campaign

by

January 12, 2024 at 12:11AM Pikabot malware, associated with the Water Curupira intrusion set, was used in phishing campaigns through 2023. Similar to Qakbot, it consists of a loader and core module enabling unauthorized access. The campaigns targeted victims via spam emails with malicious attachments, evolving to include a PDF file delivery method. Organizations are … Read more

Cyber insurance requirements: What’s in store for 2024

by

January 12, 2024 at 12:11AM In 2024, cyber insurance requirements are set to evolve, reflecting the changing threat landscape and increasing data breach costs. Predictions include a shift towards modern attack surface management, prioritization of vulnerabilities, limited coverage for manufacturing breaches, and mandatory incident response plans. Providers emphasize adaptability in the face of evolving regulations … Read more

Trend Micro’s Bug Bounty Program ZDI 2023 Performance

by

January 12, 2024 at 12:11AM Trend Micro’s Zero Day Initiative (ZDI) disclosed 1,913 bugs in 2023 with 74% rated as Critical/High risk. The program identified vulnerabilities in attacks using zero-day exploits and provided early virtual patches to protect customers. ZDI also contributed 20% of bugs to Microsoft and 78% to Adobe, supporting both vendors in … Read more

Halara probes breach after hacker leaks data for 950,000 people

by

January 11, 2024 at 03:28PM Popular athleisure clothing brand Halara is investigating a data breach after the alleged leak of almost 950,000 customers’ data on a hacking forum. The Hong Kong-based company, known for its TikTok promotions, is working to address the situation. The leaked data is said to contain personal information, prompting concerns about … Read more

Microsoft testing Windows 11 USB 80Gbps support, Copilot on login

by

January 11, 2024 at 02:41PM Microsoft is currently testing USB4 Version 2.0 support in Windows 11, allowing up to 80Gbps transfer speeds over USB Type-C cables. This latest USB standard is essential for higher-performance displays, hubs, docks, and storage devices. The company is also testing a new Windows Copilot option and sharing improvements in the … Read more

Bitwarden adds passkey support to log into web password vaults

by

January 11, 2024 at 02:41PM Bitwarden password manager now allows users to log into their web vaults using passkeys, a more secure and phishing-resistant alternative to traditional passwords. The implementation relies on the PRF WebAuthn extension for encryption and decryption. Users can register passkeys using a hardware security key, increasing security without sacrificing convenience. The … Read more