October 25, 2024 at 03:07AM On Day 3 of Pwn2Own Ireland 2024, white hat hackers exposed 11 more zero-day vulnerabilities, raising the prize pool to $874,875. Viettel Cyber Security excelled, securing significant rewards. By Day 3’s end, a total of 114 vulnerabilities had been revealed, highlighting the event’s importance in enhancing device security. **Meeting Takeaways … Read more
October 24, 2024 at 10:04AM A vulnerability in Fortinet’s FortiManager, tracked as CVE-2024-47575, has been exploited since June 2024, allowing unauthorized access to servers. Mandiant identified the threat actor UNC5820, who stole sensitive configuration data. Fortinet has released patches and mitigation strategies to protect against further exploitation. ### Meeting Takeaways on Fortinet FortiManager Vulnerability (CVE-2024-47575) … Read more
October 23, 2024 at 05:20PM The Lazarus Group is targeting cryptocurrency users with a sophisticated scam involving a fake game website, exploiting a Chrome zero-day bug, and utilizing professional social media accounts. Researchers from Kaspersky warn this campaign, launched in February, highlights Lazarus’s evolving tactics and focus on generating revenue for North Korea’s missile program. … Read more
October 23, 2024 at 11:07AM Fortinet disclosed a critical API vulnerability, CVE-2024-47575, in FortiManager, exploited in zero-day attacks to steal sensitive data. The company privately alerted customers on October 13, but details leaked online. The flaw, affecting multiple versions, allows unauthorized command execution, posing risks for corporate networks. Mitigations and patches are available. ### Meeting … Read more
October 23, 2024 at 10:03AM On the first day of Pwn2Own Ireland, participants showcased 52 zero-day vulnerabilities, earning $486,250 in prizes. Viettel Cyber Security led with 13 points, while notable exploits included a $100,000 success by Summoning Team. The event featured various challenges, with three days remaining for competitors to exploit patched SOHO devices. ### … Read more
October 22, 2024 at 08:52AM A zero-day vulnerability in Samsung mobile processors has been exploited, enabling arbitrary code execution. Google has issued a warning about this security threat, highlighting the ongoing risks associated with the exploit. **Meeting Notes Takeaways:** 1. **Incident Overview**: A zero-day vulnerability in Samsung mobile processors has been identified and is currently … Read more
October 22, 2024 at 01:06AM CISA has added a critical vulnerability in ScienceLogic SL1 (CVE-2024-9537) to its KEV catalog due to active exploitation. This flaw could enable remote code execution. Fixes are available for several versions. Separately, Fortinet addressed an exploit linked to Chinese actors, but specifics remain undisclosed. Agencies must apply fixes by November … Read more
October 16, 2024 at 10:08AM North Korean hacking group ScarCruft executed a large-scale attack in May using an Internet Explorer zero-day vulnerability (CVE-2024-38178) to disseminate the RokRAT malware via deceptive toast ads. A joint report from South Korea’s NCSC and AhnLab highlights the threat, with Microsoft releasing a security update in August 2024. **Meeting Notes … Read more
October 16, 2024 at 07:45AM North Korean group ScarCruft exploited a zero-day vulnerability (CVE-2024-38178) in Windows to deploy RokRAT malware via a compromised advertising server. Users are tricked into clicking malicious links. This incident showcases ScarCruft’s evolving techniques, emphasizing the need for software updates to enhance security against such threats. ### Meeting Takeaways – October … Read more
October 14, 2024 at 09:15AM Tor browser version 13.5.7 is being released to address a zero-day vulnerability that was recently exploited, highlighting security concerns for Tor users related to Firefox. The update aims to enhance protection against such threats. **Meeting Takeaways:** 1. **Tor Browser Update**: Version 13.5.7 of the Tor browser is being rolled out. … Read more