September 18, 2024 at 08:24AM CISA and the FBI issued a Secure by Design alert highlighting the prevalence of cross-site scripting (XSS) vulnerabilities. They urge organizations to eliminate XSS flaws by validating and sanitizing user input, implementing additional security measures, conducting code reviews, and using modern web frameworks. The agencies also recommend implementing secure by … Read more
September 16, 2024 at 05:20PM Ivanti alerted customers about the active exploitation of a high-severity vulnerability (CVE-2024-8190) in its Cloud Service Appliance (CSA). The company recommended upgrading to CSA 5.0 to remediate the bug, warning that unauthorized access is possible with a CVSS score of 7.2. Users are urged to update to the latest version … Read more
September 13, 2024 at 02:20PM The FBI and CISA warn of high disinformation spread claiming cyberattacks on US voter registration databases, instigated by malicious actors to manipulate public opinion and undermine trust in democracy. Access to voter registration information does not indicate compromise, and there’s no evidence of cyberattacks preventing elections or altering voter data. … Read more
August 21, 2024 at 12:54PM ESET warns of new phishing tactic targeting iOS and Android users with web applications mimicking banking software to steal login credentials. Cybercriminals use Progressive Web Applications and WebAPKs to bypass security measures. The attacks combine voice calls, social media malvertising, and SMS messages to distribute links, mainly targeting mobile banking … Read more
August 12, 2024 at 02:39PM Ukraine’s CERT-UA discovered malicious software being distributed through emails impersonating the country’s Security Service. The emails contain a link to download a file triggering the ANONVNC malware, allowing attackers to access victims’ devices. More than 100 government devices have been affected, and users are advised to contact CERT-UA if suspicious. … Read more
August 7, 2024 at 02:02AM A threat intelligence firm discovered a malicious Android program, BlankBot, targeting Turkish-language speakers. It can capture screen grabs, keystrokes, and create custom overlays to gather sensitive information. The program is under active development and mostly undetected by anti-malware scanners. Its motive for targeting Turkey is unclear, but it appears to … Read more
August 5, 2024 at 10:38AM Criminals are targeting Windows users with SnakeKeylogger, a malicious software that records keystrokes, steals credentials, takes screenshots, and sends sensitive information to fraudsters. This malware, known for its sophistication and crafty exfiltration of data, is typically spread through phishing campaigns. It can be hidden in Office documents or PDFs attached … Read more
July 29, 2024 at 08:18AM Acronis warned of threat actors exploiting a critical vulnerability (CVE-2023-45249) in Acronis Cyber Infrastructure. The defect allows arbitrary code execution due to default passwords and impacts ACI releases before certain builds. The company urged customers to apply available patches promptly, emphasizing the potential dire consequences of unpatched instances. Key takeaways … Read more
July 12, 2024 at 02:34PM CISA and the FBI issued a critical “Secure by Design Alert” urging software developers to address OS command-injection vulnerabilities. Recent exploits, such as the CVE-2024-20399 bug in Cisco’s NX-OS software, demonstrate the potential for system takeovers and data leaks. The agencies advocate for a secure-by-design approach and OPSEC principles to … Read more
July 11, 2024 at 03:58PM Apple issued alerts to iPhone users in 98 countries regarding potential mercenary spyware attacks, without disclosing attackers’ identities or specific target countries. This is the second warning since April. Recipients were urged to take the warning seriously, with Apple highlighting the sensitive nature of their threat identification methods. From the … Read more