Efforts to Secure US Telcos Beset by Salt Typhoon Might Fall Flat

December 12, 2024 at 02:07PM In response to a major telecommunications breach attributed to China, Senator Ron Wyden proposed the “Secure American Communications Act” to enhance cybersecurity standards for U.S. telcos. Critics argue existing regulations are under-enforced, highlighting resource challenges rather than a lack of rules as the primary issue in cybersecurity vulnerabilities. **Meeting Takeaways: … Read more

Europol Dismantles 27 DDoS Attack Platforms Across 15 Nations; Admins Arrested

December 12, 2024 at 02:27AM A global law enforcement operation named PowerOFF has dismantled 27 stresser services used for DDoS attacks, arresting three administrators and identifying over 300 users. Coordinated by Europol and 15 countries, the initiative addresses the rising threat of cybercrime and highlights vulnerabilities in web application security. ### Meeting Takeaways – December … Read more

The Future of Network Security: Automated Internal and External Pentesting

December 10, 2024 at 08:06AM As cyber threats evolve, automated internal and external pentesting becomes essential for organizations. These cost-effective solutions enable frequent and thorough security assessments, addressing both insider and perimeter risks. Automated tools, like vPenTest, offer detailed insights, streamline compliance, and empower IT teams to enhance their security posture proactively. ### Key Takeaways … Read more

Microsoft Rolls Out Default NTLM Relay Attack Mitigations

December 10, 2024 at 06:29AM Microsoft has introduced enhanced security measures to combat NTLM relay attacks on Exchange servers, including enabling Extended Protection for Authentication (EPA) and channel binding by default. These changes aim to safeguard accounts from exploitation via vulnerabilities, ensuring a more secure environment as the company plans to phase out NTLM usage … Read more

Mitel MiCollab zero-day flaw gets proof-of-concept exploit

December 5, 2024 at 10:41AM A zero-day vulnerability in Mitel MiCollab allows unauthorized file access on servers. Discovered by watchTowr, it remains unpatched after 90 days. Users are urged to implement security measures and monitor for suspicious activity until a fix is available, as Mitel plans to address the issue in December 2024. **Meeting Takeaways:** … Read more

CISA Warns of Zyxel Firewall Vulnerability Exploited in Attacks

December 4, 2024 at 08:19AM CISA warned of a high-severity vulnerability (CVE-2024-11667) in Zyxel firewall devices, exploited in the wild, allowing unauthorized file access. Zyxel issued patches, but users must change passwords for complete protection. CISA urges federal agencies to update their systems by December 24 and recommends all organizations to follow suit. ### Meeting … Read more

Misconfigured WAFs Heighten DoS, Breach Risks

December 3, 2024 at 05:39PM Many organizations using CDN-provided WAF services are misconfiguring them, exposing back-end servers to direct attacks. This affects nearly 40% of Fortune 100 companies, including major brands. Researchers found that inadequate request validation and lack of security best practices are primary causes of this widespread vulnerability, making servers accessible to Internet … Read more

Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit

November 15, 2024 at 04:19PM Palo Alto Networks’ firewall management interface has a critical zero-day vulnerability, allowing remote code execution by unauthenticated attackers. With a CVSS rating of 9.3, it currently lacks a patch. Users are advised to restrict access to the interface. Other vulnerabilities have been identified, with fixes available. ### Meeting Takeaways 1. … Read more

Varonis Warns of Bug Discovered in PostgreSQL PL/Perl

November 14, 2024 at 05:07PM A vulnerability in the PL/Perl extension of PostgreSQL (CVE-2024-10979) allows users to set arbitrary environment variables, scoring a CVSS 8.8. It can lead to severe security issues such as arbitrary code execution. Affected versions require updates to mitigate risks and should prompt users to review function creation logs. ### Meeting … Read more

FBI issues warning as crooks ramp up emergency data request scams

November 11, 2024 at 11:32AM The FBI warns of a rising trend in cybercriminals abusing emergency data requests (EDRs) in the US, using compromised government emails to obtain sensitive information from businesses. The FBI emphasizes the need for vigilance, recommending improved cybersecurity measures and close cooperation with local field offices to mitigate risks and validate … Read more