Xynik January 11, 2024 at 10:16AM NCSC-FI warns of increased Akira ransomware attacks in December, targeting Finnish companies and wiping backups. The attacks exploited a vulnerability in Cisco VPNs, allowing unauthorized access to networks. The agency advises switching to offline backups and updating Cisco ASA and FTD to prevent further attacks. They emphasize the need for … Read more
January 11, 2024 at 09:43AM The World Economic Forum’s Global Risks Report identified artificially powered misinformation as the top immediate risk to the global economy, with environmental risks posing long-term threats. The report emphasized the potential impact of AI on polarizing societies and eroding democracy, and highlighted the risks associated with deepfake technology and AI-powered … Read more
January 11, 2024 at 09:43AM On the first Patch Tuesday of 2024, Intel, AMD, Zoom, and Splunk released security advisories. Intel addressed BIOS firmware vulnerabilities, AMD reported a low-severity SEV-SNP issue, and Splunk patched critical and high-severity vulnerabilities. Zoom informed customers of a high-severity flaw affecting Windows products. Several other companies also released their first … Read more
January 11, 2024 at 09:43AM Merck settled a legal battle with insurance companies over $1.4 billion in claimed damages caused by the NotPetya cyberattack, challenging hostile/warlike act exclusion clauses. The resolution is significant for businesses amid increasing cyberattacks. Although insurance firms clarify act-of-war clauses, companies must carefully review coverage to mitigate risks from complex cyberthreats. … Read more
January 11, 2024 at 09:21AM CISA warns of actively exploited Microsoft SharePoint Server vulnerability (CVE-2023-29357) allowing unauthenticated attackers to gain admin privileges. Exploit involves sending a spoofed JWT authentication token; no user interaction needed. CISA adds CVE-2023-29357 to Known Exploited Vulnerabilities list, advising federal agencies to patch within 21 days as per BOD 22-01. All … Read more
January 11, 2024 at 09:21AM Cisco announced patches for a critical vulnerability (CVE-2024-20272) in Unity Connection, enabling remote exploitation without authentication. Versions 12.5.1.19017-4 and 14.0.1.14006-5 resolve this. Additionally, a medium-severity flaw (CVE-2024-20287) in the WAP371 access point’s discontinued model has a released exploit code. Cisco advises migration to Business 240AC AP and announced patches for … Read more
January 11, 2024 at 09:21AM Mandiant’s social media account on platform X was hacked, resulting in a cryptocurrency theft campaign generating over $900,000 for cybercriminals. The attack involved promoting a fake website. The company’s investigation revealed a compromised password attack, leading to changes in their security process. Mandiant detailed the ClinkSink campaign and identified numerous … Read more
January 11, 2024 at 09:19AM Capture the Flag (CTF) events offer an engaging and educational platform for cybersecurity professionals to enhance their hacking skills and gain practical knowledge. CTF design requires careful consideration of technical challenges, operational complexity, and the need for engaging storytelling. Lessons learned include the importance of software development approaches, operational rigor, … Read more
January 11, 2024 at 09:19AM Passkeys, a password-less technology, utilize device-based authentication and public-key encryption. Though initially esoteric, they are gaining traction with major websites and identity ecosystems, supported by tech giants like Apple, Google, and Microsoft. The move towards mainstream adoption is underway, with a focus on developer adoption and tools to simplify implementation. … Read more
January 11, 2024 at 09:07AM A session management issue (CVE-2024-0230) impacting Bluetooth accessories was addressed with improved checks. The update, released on January 9, 2024, mitigates the risk of attackers extracting Bluetooth pairing keys and monitoring traffic. Affected products include various Magic Keyboards, with an available update to address the issue. Based on the meeting … Read more