Security

This is why we update… Data-thief malware exploits unpatched Windows PCs

by

January 12, 2024 at 07:00PM Criminals exploit Windows Defender SmartScreen bypass vulnerability to spread Phemedrone Stealer malware, targeting sensitive data on PCs. The flaw CVE-2023-36025 was patched by Microsoft in November, but a proof-of-concept exploit has been created. The malware targets various browsers, applications, and cryptocurrency wallets, and uses obfuscation techniques to evade detection. Update … Read more

Former Secretary of State Mike Pompeo Joins Cyabra Board of Directors

by

January 12, 2024 at 06:12PM Cyabra, a leading counter-disinformation company, appoints former Secretary of State Mike Pompeo to its Board of Directors due to strong revenue growth and successful funding. Pompeo’s strategic expertise complements Cyabra’s goal to counter disinformation. The company also secures a $5.7 million Series A extension round to support research, development, and … Read more

SEC X Account Hack Draws Senate Outrage

by

January 12, 2024 at 05:43PM Senators Wyden and Lummis have criticized the SEC for its failure to implement basic multifactor authentication (MFA) protections following the compromise of the X Twitter account. They have urged the Inspector General to investigate this cybersecurity lapse, emphasizing the potential impact on market stability and trust. The SEC’s failure to … Read more

CISA Adds 9.8 ‘Critical’ Microsoft SharePoint Bug to its KEV Catalog

by

January 12, 2024 at 05:43PM The Cybersecurity and Infrastructure Security Agency (CISA) added a critical privilege escalation vulnerability, CVE-2023-29357, affecting Microsoft SharePoint servers to its list of Known Exploited Vulnerabilities (KEV). This vulnerability, rated 9.8 out of 10, allows attackers to bypass authentication and gain administrative access. Despite a June patch, active exploitation continues, as … Read more

GitLab Releases Updates to Address Critical Vulnerabilities

by

January 12, 2024 at 05:43PM GitLab releases versions 16.7.2, 16.6.3, and 16.5.6 to address critical vulnerabilities. These include an authentication issue allowing unverified email password resets and a vulnerability enabling slash command abuse in Slack/Mattermost. Other vulnerabilities affect code approval, workspace creation, and signed commit metadata. GitLab urges upgrading and enabling two-factor authentication. Based on … Read more

The Week in Ransomware – January 12th 2024 – Targeting homeowners’ data

by

January 12, 2024 at 05:13PM Ransomware gangs are targeting mortgage lenders, with recent attacks on loanDepot, Mr. Cooper, and title insurance companies. The Toronto Zoo and Tigo Business were also hit. In a positive turn, a Dutch police operation led to the arrest of a ransomware operator. The week also saw the discovery of new … Read more

Hyundai MEA X Account Hacked, Followed by Crypto Promotion

by

January 12, 2024 at 04:05PM Hyundai MEA’s social media account was briefly taken over to distribute cryptocurrency promotions, with the account impersonating a role-playing game backed by Binance’s venture capital arm. The takeover resulted in changed text and images, promoting registration for cryptocurrency offers. Hyundai MEA regained control and removed the offending posts. Netgear and … Read more

Cybersecurity Incidents Consistently Increase in UAE

by

January 12, 2024 at 03:31PM A recent study by Kaspersky reveals that 87% of UAE-based businesses have encountered cybersecurity incidents over the past two years, with 25% attributed to staff malice. Malicious insider threats are deemed particularly dangerous by experts, presenting a growing concern for businesses. Furthermore, many companies in the region lack adequate defense … Read more

Exploit for under-siege SharePoint vuln reportedly in hands of ransomware crew

by

January 12, 2024 at 02:49PM Security experts have warned about a ransomware group exploiting a critical Microsoft SharePoint vulnerability, CVE-2023-29357, which can lead to remote code execution. This vulnerability was added to the US’s must-patch list, giving agencies three weeks to patch it. The exploit chain has been a concern, and patching is crucial to … Read more

CISA: Critical Microsoft SharePoint bug now actively exploited

by

January 12, 2024 at 02:47PM CISA warned of active exploitation of critical Microsoft SharePoint vulnerabilities, including CVE-2023-29357, which allows attackers to gain admin privileges using spoofed JWT tokens. When chained with another bug, remote code execution is possible. These exploits have gained attention after a successful demo at the Pwn2Own contest, leading to the release … Read more