CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware

October 13, 2023 at 10:12AM The US cybersecurity agency CISA has released two new resources to help organizations identify and eliminate security flaws targeted by ransomware groups. The resources include a column in the Known Exploited Vulnerabilities catalog that flags flaws associated with ransomware campaigns, and a table on the StopRansomware project’s website listing misconfigurations … Read more

What the Hollywood Writers Strike Resolution Means for Cybersecurity

October 13, 2023 at 10:07AM The Writers Guild of America’s strike, centered on the role of artificial intelligence (AI) in creative processes, has ended with a victory for writers. The agreement bans the independent use of AI for writing and ensures that writers receive credit for their creative contributions. This sets a precedent that AI … Read more

Juniper Networks Patches Over 30 Vulnerabilities in Junos OS

October 13, 2023 at 09:19AM Juniper Networks has released patches for over 30 vulnerabilities in Junos OS and Junos OS Evolved. The most critical flaw is an incorrect default permissions bug that allows unauthorized access and the creation of a backdoor with root privileges. Other vulnerabilities include denial of service (DoS) risks and impacts on … Read more

In Other News: Ex-Uber Security Chief Appeal, New Offerings From Tech Giants, Crypto Bounty

October 13, 2023 at 09:19AM SecurityWeek provides a concise compilation of noteworthy cybersecurity stories. This week’s stories include the appeal of former Uber security chief Joe Sullivan against his conviction for covering up a data breach, a bounty offered for finding the NIST elliptic curve seeds, analysis of surveillance products by NSO Group competitor Intellexa, … Read more

Equifax scores £11.1M slap on wrist over 2017 mega breach

October 13, 2023 at 08:55AM Equifax has been fined £11 million ($13.6 million) by the UK’s Financial Conduct Authority (FCA) for failing to protect consumers from financial crime. The FCA criticized Equifax for its failure to notify regulators promptly and for misleading the public about the severity of a security breach in 2017. The original … Read more

Researchers Unveil ToddyCat’s New Set of Tools for Data Exfiltration

October 13, 2023 at 08:30AM The APT actor ToddyCat has been linked to new malicious tools used for data exfiltration, providing insight into their tactics. Kaspersky discovered the group last year, connecting it to attacks on high-profile entities in Europe and Asia. The tools include loaders, a Trojan, a file collection tool, a Dropbox uploader, … Read more

Ransomware attacks doubled year on year. Are organizations equipped to handle the evolution of Ransomware in 2023?

October 13, 2023 at 07:48AM Ransomware attacks have become more sophisticated and adaptable, using new techniques and targeting vulnerabilities in networking devices. The healthcare sector has become a significant target, with a focus on stealing sensitive data. High-income organizations are preferred targets due to their ability to pay ransoms and the potential damage to their … Read more

DarkGate Malware Spreading via Messaging Services Posing as PDF Files

October 13, 2023 at 07:06AM DarkGate, a piece of malware, is being spread through instant messaging platforms like Skype and Microsoft Teams. The malware is delivered disguised as a PDF document and triggers the download and execution of an AutoIt script that launches the malware. The malware can harvest sensitive data, conduct cryptocurrency mining, and … Read more

FBI, CISA Warn of Rising AvosLocker Ransomware Attacks Against Critical Infrastructure

October 13, 2023 at 07:06AM AvosLocker ransomware gang has been linked to recent attacks on critical infrastructure sectors in the U.S. The gang uses legitimate software and open-source remote administration tools to compromise networks and exfiltrate data. AvosLocker leverages sophisticated techniques to avoid detection and affects Windows, Linux, and VMware environments. The attacks rely on … Read more

Dozens of Squid Proxy Vulnerabilities Remain Unpatched 2 Years After Disclosure

October 13, 2023 at 06:18AM Dozens of vulnerabilities in the Squid caching and forwarding web proxy, discovered in 2021 by researcher Joshua Rogers, remain unpatched. Only a few flaws have been addressed, while 35 vulnerabilities still exist. The Squid Team lacks resources to address the issues, and the researcher suggests reassessing the use of Squid … Read more