November 12, 2024 at 11:54AM The FBI, NSA, and Five Eyes partners identified 15 top vulnerabilities exploited in 2023, urging immediate patching and management. Zero-day exploits increased, with 12 of the 15 vulnerabilities addressed last year. Notably, CVE-2023-3519 was widely targeted, emphasizing the need for proactive security measures to mitigate risks. ### Meeting Takeaways: 1. … Read more
November 12, 2024 at 10:29AM The joint Cybersecurity Advisory highlights increased exploitation of zero-day vulnerabilities in 2023 by malicious cyber actors compared to 2022, urging vendors and end-users to adopt security measures. Recommendations include implementing secure software development practices and timely patch management to mitigate risks associated with routinely exploited vulnerabilities. ### Meeting Takeaways #### … Read more
October 24, 2024 at 10:04AM On day two of Pwn2Own Ireland 2024, white hat hackers exposed 51 zero-day vulnerabilities, winning $358,625. The Viettel Cyber Security team led the competition, with participants like Pham Tuan Son and Ken Gannon achieving significant points and payouts. Overall, 103 vulnerabilities have been exploited, totaling $847,875 in prizes. **Meeting Takeaways … Read more
October 23, 2024 at 08:25PM Google security researchers identified a critical vulnerability (CVE-2024-44068) in Samsung’s Exynos mobile chips, allowing attackers to escalate privileges and remotely execute code. The flaw, rated 8.1 on the CVSS scale, affects multiple processor versions. Samsung issued a patch on October 7, but in-the-wild exploits have already emerged. ### Meeting Notes … Read more
October 16, 2024 at 06:16PM Mandiant security analysts have reported a concerning trend where threat actors are increasingly adept at identifying and exploiting zero-day vulnerabilities in software, highlighting growing risks in cybersecurity. **Meeting Takeaways:** 1. **New Threat Trend**: Mandiant security analysts have identified a concerning trend among threat actors. 2. **Increased Capability**: There is a … Read more
October 14, 2024 at 06:23PM Researchers reported that a sophisticated cyberattacker, likely a nation-state actor, exploited three zero-day vulnerabilities in Ivanti’s Cloud Service Appliance to infiltrate networks. This involved command and SQL injection flaws, enabling them to maintain access and potentially execute advanced techniques like DNS tunneling and deploying rootkits. Organizations must apply patches urgently. … Read more
October 8, 2024 at 05:52PM Microsoft’s October security update addressed 117 vulnerabilities, ranking as the third largest release this year. Of these, two actively exploited flaws require immediate attention. One, CVE-2024-43573, is a spoofing vulnerability in MSHTML, while the other, CVE-2024-43572, is a remote code execution (RCE) flaw in Microsoft Management Console. Three publicly known … Read more
September 18, 2024 at 05:23AM Russian special forces are escalating cyber operations targeting Western critical infrastructure. Unit 29155 of Russia’s GRU military intelligence agency is exploiting vulnerabilities, while a secretive military unit is plotting to sabotage submarine cables. Experts warn of the increased risk of destructive hybrid attacks and emphasize the importance of improving cybersecurity … Read more
September 10, 2024 at 03:37PM Ivanti has patched a critical vulnerability (CVE-2024-29847) in its Endpoint Management software that could allow unauthenticated attackers to execute remote code on the core server. The company has also addressed almost two dozen other high and critical severity flaws in its products. Ivanti has seen a rise in fixed flaws … Read more
August 29, 2024 at 09:48AM Google TAG has identified evidence of Russian state-backed hackers using iOS and Chrome exploits previously associated with commercial spyware vendors NSO Group and Intellexa. These exploits have been used in high-profile corporate hacks, including a breach at Microsoft. The hackers have been observed using exploits against iOS and Android devices, … Read more