The Week in Ransomware – September 8th 2023 – Conti Indictments
It started as a slow ransomware news week but slowly picked up pace with the Department of Justice announcing indictments...
Cisco warns of VPN zero-day exploited by ransomware gangs
Cisco is warning of a CVE-2023-20269 zero-day vulnerability in its Cisco Adaptive Security Appliance (ASA) and Cisco Firepower Threat Defense...
Notepad++ 8.5.7 released with fixes for four security vulnerabilities
Notepad++ version 8.5.7 has been released with fixes for multiple buffer overflow zero-days, with one marked as potentially leading to...
Apple Patches Two Zero-Days Exploited in Pegasus Attacks
Apple has patched two critical zero-day vulnerabilities exploited in the wild to deliver eavesdropping malware from a notorious commercial spyware...
CISA Adds Critical RocketMQ Bug to Must-Patch List
The US government has ordered all federal civilian agencies to patch a critical vulnerability in Apache RocketMQ, which is currently...
Regulator to Investigate Fertility App Security Concerns
The UK’s data protection regulator is set to review how period and fertility tracking applications process user information, after revealing...
Russian Man Handed Nine-Year Sentence for Hacking Scheme
A US court has sentenced a Russian businessman to nine years in prison for an elaborate corporate hacking scheme that...
Cyber-criminals Exploit GPUs in Graphic Design Software
Security researchers at Cisco Talos have uncovered a scheme that preys on graphic designers and 3D modelers. Cyber-criminals are using...
China Unleashes AI-Powered Image Generation For Influence Operations
China has unveiled a new cyber capability powered by artificial intelligence, enabling the automatic generation of images for influence operations....
Google TAG Exposes North Korean Campaign Targeting Researchers
Google’s Threat Analysis Group (TAG) has shed light on a cyber campaign originating from North Korea, targeting security researchers engaged...
Dymocks – 836,120 breached accounts
HIBP In September 2023, the Australian book retailer Dymocks announced a data breach. The data dated back to June 2023...
U.K. and U.S. Sanction 11 Russia-based Trickbot Cybercrime Gang Members
The U.K. and U.S. governments on Thursday sanctioned 11 individuals who are alleged to be part of the notorious Russia-based...
CISA: CISA Releases Two Industrial Control Systems Advisories
CISA Releases Two Industrial Control Systems Advisories CISA released two Industrial Control Systems (ICS) advisories on September 5, 2023. These...
CISA: CISA and International Partners Release Malware Analysis Report on Infamous Chisel Mobile Malware
CISA and International Partners Release Malware Analysis Report on Infamous Chisel Mobile Malware Today, the United Kingdom’s National Cyber Security...
CISA: CISA Adds One Known Vulnerability to Catalog
CISA Adds One Known Vulnerability to Catalog CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based...
CISA: VMware Releases Security Update for Tools
VMware Releases Security Update for Tools VMware has released a security update to address a vulnerability in VMware Tools. A...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on August 31, 2023. These...
CISA: CISA Releases Four Industrial Control Systems Advisories
CISA Releases Four Industrial Control Systems Advisories CISA released four Industrial Control Systems (ICS) advisories on September 7, 2023. These...
CISA: CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack
CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack CISA has released actionable guidance for Federal Civilian...
CISA: CISA, FBI, and CNMF Release Advisory on Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475
CISA, FBI, and CNMF Release Advisory on Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475 Today, CISA, Federal Bureau of...
CISA: CISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells
CISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells The Cybersecurity and Infrastructure Security Agency (CISA) has...
CISA: Cisco Releases Security Advisories for Multiple Products
Cisco Releases Security Advisories for Multiple Products Cisco has released security advisories to address vulnerabilities affecting multiple Cisco products. A...
US-CERT Vulnerability Summary for the Week of August 28, 2023
High VulnerabilitiesPrimary Vendor -- ProductDescriptionPublishedCVSS ScoreSource & Patch Infoearcms -- ear_appAn issue found in Earcms Ear App v.20181124 allows a...
Quick-Lookup-Ptrun – Quick Lookup Plugin For PowerToys Run (Wox)
This plugin for PowerToys Run allows you to quickly search for an IP address, domain name, hash or any other...
