Security

GitLab warns of critical zero-click account hijacking vulnerability

by

January 12, 2024 at 02:47PM GitLab has released security updates to address critical vulnerabilities in its Community and Enterprise Edition, including an authentication flaw (CVE-2023-7028) allowing account hijacking and a vulnerability (CVE-2023-5356) enabling the abuse of Slack/Mattermost integrations. The flaws were addressed in GitLab versions 16.7.2, 16.5.6, and 16.6.4, with backported fixes available. For official … Read more

Secret multimillion-dollar cryptojacker snared by Ukrainian police

by

January 12, 2024 at 01:04PM Europol-led investigation results in the arrest of a 29-year-old in Ukraine, suspected of orchestrating a multi-million-dollar cryptojacking scheme. The suspect exploited cloud environments to mine over $2 million worth of cryptocurrencies. Despite the involvement of a cloud provider and law enforcement, the identity of the individual remains under judicial secrecy. … Read more

Juniper warns of critical RCE bug in its firewalls and switches

by

January 12, 2024 at 12:40PM Juniper Networks has addressed a critical pre-auth remote code execution vulnerability affecting SRX Series firewalls and EX Series switches, tracked as CVE-2024-21591. Vulnerable Junos OS versions are listed, and admins are urged to apply security updates or disable the J-Web interface. CISA also warned of a previous exploit on Juniper … Read more

Brad Arkin is New Chief Trust Officer at Salesforce

by

January 12, 2024 at 11:41AM Veteran cybersecurity executive Brad Arkin has made the move from Cisco to Salesforce, assuming the role of Chief Trust Officer. With a background in security leadership at companies like Adobe, Arkin is expected to bolster confidence in Salesforce’s handling of customer data in an AI-first world, following the departure of … Read more

Ivanti Connect Secure zero-days exploited to deploy custom malware

by

January 12, 2024 at 10:36AM Hackers have been exploiting two zero-day vulnerabilities in Ivanti Connect Secure since early December, deploying multiple malware families for espionage. The vulnerabilities, CVE-2023-46805 and CVE-2024-21887, bypass authentication and inject arbitrary commands. Attackers targeted a small number of Ivanti customers. The threat actor, tracked as UNC5221, used various custom malware and … Read more

Laptop Maker Framework Says Customer Data Stolen in Third-Party Breach

by

January 12, 2024 at 10:19AM Laptop maker Framework suffered a data breach when an employee at its external accounting partner, Keating Consulting, fell victim to a phishing attack. The compromised data includes personal information of impacted individuals. Framework is urging users to be cautious of phishing attempts impersonating the company and has taken steps to … Read more

Your Cybersecurity Budget Is a Horse’s Rear End

by

January 12, 2024 at 10:14AM The design of the space shuttle and cybersecurity budgets are compared to the size of a horse’s hindquarters, suggesting that budget limitations are based on past budgets and may not adequately address current challenges. The article encourages a realistic assessment of cybersecurity programs and consideration of reengineering budget processes. Based … Read more

In Other News: WEF’s Unsurprising Cybersecurity Findings, KyberSlash Cryptography Flaw

by

January 12, 2024 at 09:46AM A weekly cybersecurity roundup by SecurityWeek provides a concise compilation of noteworthy stories often overlooked. This week’s round-up includes the WEF’s cybersecurity report, a kyber vulnerability, a self-spreading botnet, Iranian APT attacking Albania, North Korean crypto theft, a new cybersecurity institute, disclosures of vulnerabilities, reports from Cloudflare, and patches for … Read more

Secure network operations for hybrid working

by

January 12, 2024 at 09:44AM Webinar on remote working and network security. Remote work is here to stay, but security is crucial. Zscaler offers solutions for secure app access, traffic elimination, issue detection, and cost reduction. Join the webinar on 16 January at 6pm GMT/1pm ET/10am PT to learn more. Sponsored by Zscaler. Register to … Read more

Nation-State Actors Weaponize Ivanti VPN Zero-Days, Deploying 5 Malware Families

by

January 12, 2024 at 09:18AM Suspected nation-state actors exploited two zero-day vulnerabilities in Ivanti Connect Secure VPN, deploying multiple malware families to gain backdoor access to devices. The attacks, attributed to a Chinese espionage actor, targeted less than 10 customers and are expected to be highly-targeted. Patches are anticipated on January 22. Mandiant identified the … Read more