#InformationSecurity

Microsoft Patches Vulnerabilities in Windows Defender, Update Catalog

December 13, 2024 by Xynik

December 13, 2024 at 06:40AM Microsoft has patched two critical vulnerabilities: one in Windows Defender (CVE-2024-49071) related to information disclosure, and another in the Update Catalog (CVE-2024-49147) involving privilege escalation. These issues have been fully mitigated, requiring no action from users. Transparency remains a priority for Microsoft with CVE identifiers. **Meeting Takeaways: Microsoft Vulnerabilities Update** … Read more

Chinese EagleMsgSpy Spyware Found Exploiting Mobile Devices Since 2017

December 11, 2024 by Xynik

December 11, 2024 at 07:30AM Cybersecurity researchers revealed the EagleMsgSpy surveillance program, allegedly used by Chinese police since 2017, to gather extensive data from mobile devices. Operating through an installer and a headless client, it captures messages, call logs, and location data, requiring physical access to activate. It targets law enforcement applications, indicating its serious … Read more

SAP Patches Critical Vulnerability in NetWeaver

December 10, 2024 by Xynik

December 10, 2024 at 08:57AM SAP released nine new and four updated security notes on December 2024 Security Patch Day, addressing critical vulnerabilities in NetWeaver AS for Java. Notably, CVE-2024-47578 poses a significant risk of complete system compromise. Users are urged to implement the security updates promptly, although there are no known active exploits. ### … Read more

Badass Russian techie outsmarts FSB, flees Putinland all while being tracked with spyware

December 6, 2024 by Xynik

December 6, 2024 at 07:37AM Kirill Parubets, a Russian programmer, revealed after his detention that spyware was installed on his device by the FSB. He faced threats while being coerced to act as an informant but fled with his wife. Citizen Lab’s report underscores the dangers of device custody by security services in authoritarian regimes. … Read more

I-O Data Confirms Zero-Day Attacks on Routers, Full Patches Pending

December 5, 2024 by Xynik

December 5, 2024 at 11:53AM I-O Data confirmed critical vulnerabilities in its routers, allowing remote attackers to disable firewalls and execute commands. Full patches will take weeks. Three flaws—CVE-2024-45841, CVE-2024-47133, and CVE-2024-52564—pose risks of information disclosure and command execution. A partial fix is available, with complete solutions expected by December 2024. ### Meeting Takeaways 1. … Read more

Russian FSB Hackers Breach Pakistan’s APT Storm-0156

December 4, 2024 by Xynik

December 4, 2024 at 05:31PM Russian hackers, known as Secret Blizzard, have infiltrated a Pakistani hacker group, Storm-0156, to access sensitive information from Afghan and Indian military targets. By leveraging Storm-0156’s tools and infrastructure, they employed diverse tactics for espionage, showcasing a unique trend of threat actors hacking fellow cybercriminals to gain operational advantages. **Meeting … Read more

760,000 Employee Records From Several Major Firms Leaked Online

December 3, 2024 by Xynik

December 3, 2024 at 07:42AM Data of over 760,000 employees from major companies, including Bank of America and Nokia, was leaked online, linked to last year’s MOVEit hack by the Cl0p ransomware group. The information includes personal and job-related details, posing a risk for social engineering attacks, as analyzed by Atlas Privacy. **Meeting Takeaways: Data … Read more

Man accused of hilariously bad opsec as alleged cybercrime spree detailed

November 26, 2024 by Xynik

November 26, 2024 at 03:42PM Nicholas Michael Kloster, 31, appeared in court for alleged cybercrimes, including breaking and entering, credit card abuse, and manipulating computer systems of two companies shortly after his employment. Prosecutors claim he caused $5,000 in damages to a nonprofit and faces charges related to computer access and damage. Trial is scheduled … Read more

Hackers exploit critical bug in Array Networks SSL VPN products

November 26, 2024 by Xynik

November 26, 2024 at 08:27AM America’s Cyber Defense Agency has identified hackers exploiting a remote code execution vulnerability in SSL VPN products from Array Networks AG and vxAG ArrayOS. **Meeting Takeaways:** 1. **Subject Matter:** America’s Cyber Defense Agency (ACDA) is addressing a significant security threat. 2. **Vulnerability Identified:** There is a remote code execution vulnerability … Read more

QNAP and Veritas dump 30-plus vulns over the weekend

November 26, 2024 by Xynik

November 26, 2024 at 05:33AM QNAP addressed 24 vulnerabilities in its products, with two critical and nine high-severity flaws identified. The most affected was the Notes Station 3 app. Meanwhile, Veritas disclosed seven critical vulnerabilities in its Enterprise Vault software, with patches expected long-term, raising concerns about security management and response efficiency. ### Meeting Takeaways … Read more