November 20, 2024 at 12:18AM Oracle has alerted users about a high-severity vulnerability (CVE-2024-21287) in the Agile Product Lifecycle Management Framework, which is being actively exploited. This flaw allows unauthenticated access to sensitive files. Users are urged to apply patches immediately for protection, as details on the attackers remain unknown. **Meeting Takeaways – Nov 20, … Read more
November 19, 2024 at 10:45PM The SWEEPS initiative, funded by a $2.5 million grant, aims to enhance secure coding skills among software developers through workshops, courses, and bootcamps. Targeting all career stages, it addresses the skills gap in software security, promoting best practices to defend against cyberattacks. Enrollment prioritizes U.S. citizens with military backgrounds. **Meeting … Read more
November 19, 2024 at 07:34PM Equinox, a New York health services organization, has informed over 21,000 clients and staff of a data breach involving their personal information. The LockBit ransomware gang is suspected of the incident, which occurred in April. Equinox has since secured its IT environment and is investigating the breach. ### Meeting Notes … Read more
November 19, 2024 at 06:11PM Chinese government-affiliated hackers are exploiting a zero-day vulnerability in Fortinet’s Windows VPN client to steal sensitive information, including credentials. Volexity identified the issue and reported it to Fortinet, which has yet to release a fix. The attackers use a tool called DeepData, capable of extensive data theft. ### Meeting Takeaways … Read more
November 19, 2024 at 05:15PM The emerging Helldown ransomware targets organizations using VMware ESXi servers, exploiting undocumented vulnerabilities in Zyxel firewalls. Since August, it has impacted 31 victims, mainly US businesses. Helldown employs sophisticated tactics to steal and threaten to leak sensitive data, emphasizing the importance of vigilant security measures for virtualized infrastructures. ### Meeting … Read more
November 19, 2024 at 04:59PM Evgenii Ptitsyn, a Russian citizen, was extradited from South Korea to the U.S. for his role in the Phobos ransomware operation, accused of extorting over $16 million from victims. Facing 13 charges, he provided technical support to criminals using the malware. If convicted, he could face over 100 years in … Read more
November 19, 2024 at 04:57PM Apple issued emergency security updates to address two zero-day vulnerabilities that were exploited in attacks on Intel-based Mac systems. The updates aim to enhance security and protect users from potential threats. **Meeting Takeaways:** 1. Apple has released emergency security updates. 2. The updates address two zero-day vulnerabilities. 3. The vulnerabilities … Read more
November 19, 2024 at 04:54PM Apple addressed two vulnerabilities in Safari 18.1.1 for macOS Ventura and Sonoma, released on November 19, 2024. CVE-2024-44308 involves arbitrary code execution from malicious web content, while CVE-2024-44309 relates to cross-site scripting attacks. Both issues may have been actively exploited on Intel-based Mac systems. ### Meeting Notes Summary **Release Information** … Read more
November 19, 2024 at 04:28PM CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities catalog, including a critical OS command injection affecting Progress Kemp LoadMaster. This addition highlights the ongoing need for organizations to address cybersecurity risks through timely updates and patches. ### Meeting Notes Takeaways 1. **New Vulnerabilities Added**: The U.S. Cybersecurity … Read more
November 19, 2024 at 04:20PM CISA has added three new critical vulnerabilities to its KEV catalog, including CVE-2024-1212 in Progress Kemp LoadMaster, which allows remote system access. Organizations must implement updates by December 9, 2024, or cease usage. Additionally, another flaw, CVE-2024-7591, has also been identified but lacks observed exploitation. **Meeting Takeaways:** 1. **New Vulnerabilities … Read more