Uncategorized

Uncategorized post – later to be categorized.

Ivanti Issues Critical Security Updates for CSA and Connect Secure Vulnerabilities The Hacker [email protected] (The Hacker News)
December 10, 2024

Ivanti has released security updates to address multiple critical flaws in its Cloud Services Application (CSA) and Connect Secure products that could lead to privilege escalation and code execution. The list …


Patch Tuesday, December 2024 Edition Krebs on SecurityBrianKrebs
December 10, 2024

Microsoft today released updates to plug at least 70 security holes in Windows and Windows software, including one vulnerability that is already being exploited in active attacks. The zero-day seeing …


Cleo File Transfer Vulnerability Under Exploitation – Patch Pending, Mitigation Urged The Hacker [email protected] (The Hacker News)
December 10, 2024

Users of Cleo-managed file transfer software are being urged to ensure that their instances are not exposed to the internet following reports of mass exploitation of a vulnerability affecting fully …


Fake Recruiters Distribute Banking Trojan via Malicious Apps in Phishing Scam The Hacker [email protected] (The Hacker News)
December 10, 2024

Cybersecurity researchers have shed light on a sophisticated mobile phishing (aka mishing) campaign that's designed to distribute an updated version of the Antidot banking trojan. "The attackers presented themselves as recruiters, …


The Future of Network Security: Automated Internal and External Pentesting The Hacker [email protected] (The Hacker News)
December 10, 2024

In today’s rapidly evolving threat landscape, safeguarding your organization against cyberattacks is more critical than ever. Traditional penetration testing (pentesting), while effective, often falls short due to its high costs, …


Phone Phishing Gang Busted: Eight Arrested in Belgium and Netherlands The Hacker [email protected] (The Hacker News)
December 10, 2024

Belgian and Dutch authorities have arrested eight suspects in connection with a "phone phishing" gang that primarily operated out of the Netherlands with an aim to steal victims' financial data …


Hackers Weaponize Visual Studio Code Remote Tunnels for Cyber Espionage The Hacker [email protected] (The Hacker News)
December 10, 2024

A suspected China-nexus cyber espionage group has been attributed to an attacks targeting large business-to-business IT service providers in Southern Europe as part of a campaign codenamed Operation Digital Eye. The …


Ongoing Phishing and Malware Campaigns in December 2024 The Hacker [email protected] (The Hacker News)
December 10, 2024

Cyber attackers never stop inventing new ways to compromise their targets. That's why organizations must stay updated on the latest threats.  Here's a quick rundown of the current malware and phishing …


CERT-UA Warns of Phishing Attacks Targeting Ukraine’s Defense and Security Force The Hacker [email protected] (The Hacker News)
December 10, 2024

The Computer Emergency Response Team of Ukraine (CERT-UA) has warned of a new set of cyber attacks that it said were aimed at defense companies in the country as well …


Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering The Hacker [email protected] (The Hacker News)
December 9, 2024

The threat actors linked to the Black Basta ransomware have been observed switching up their social engineering tactics, distributing a different set of payloads such as Zbot and DarkGate since …