Cyber Security Latest

Signal Foundation Warns Against EU’s Plan to Scan Private Messages for CSAM
Tue, 18 Jun 2024 21:52:00 +0530
A controversial proposal put forth by the European Union to scan users’ private messages for detection child sexual abuse material (CSAM) poses severe risks to end-to-end encryption (E2EE), warned Meredith Whittaker, president of the Signal Foundation, which maintains the privacy-focused messaging service of the same name.
“Mandating mass scanning of private communications fundamentally
https://thehackernews.com/2024/06/signal-foundation-warns-against-eus.html


Two Men Plead Guilty to Hacking Law Enforcement Database for Doxing
Tue, 18 Jun 2024 13:49:32 +0000

Sagar Steven Singh and Nicholas Ceraolo pleaded guilty to hacking a database maintained by a US federal law enforcement agency.

The post Two Men Plead Guilty to Hacking Law Enforcement Database for Doxing appeared first on SecurityWeek.

https://www.securityweek.com/two-men-plead-guilty-to-hacking-law-enforcement-database-for-doxing/


Cybercriminals Exploit Free Software Lures to Deploy Hijack Loader and Vidar Stealer
Tue, 18 Jun 2024 19:00:00 +0530
Threat actors are luring unsuspecting users with free or pirated versions of commercial software to deliver a malware loader called Hijack Loader, which then deploys an information stealer known as Vidar Stealer.
“Adversaries had managed to trick users into downloading password-protected archive files containing trojanized copies of a Cisco Webex Meetings App (ptService.exe),” Trellix security
https://thehackernews.com/2024/06/cybercriminals-exploit-free-software.html


New BadSpace Backdoor Deployed in Drive-By Attacks
Tue, 18 Jun 2024 13:11:23 +0000

The BadSpace backdoor is being distributed via drive-by attacks involving infected websites and JavaScript downloaders.

The post New BadSpace Backdoor Deployed in Drive-By Attacks appeared first on SecurityWeek.

https://www.securityweek.com/new-badspace-backdoor-deployed-in-drive-by-attacks/


Non-human Identity Lifecycle Firm Entro Security Raises $18 Million
Tue, 18 Jun 2024 12:54:48 +0000

Entro’s platform is designed to bring order to the increasingly chaotic management of non-human identities.

The post Non-human Identity Lifecycle Firm Entro Security Raises $18 Million appeared first on SecurityWeek.

https://www.securityweek.com/non-human-identity-lifecycle-firm-entro-security-raises-18-million/


New TikTag Attack Targets Arm CPU Security Feature 
Tue, 18 Jun 2024 12:16:39 +0000

Researchers have targeted the MTE security feature in Arm CPUs and showed how attackers could bypass protections.

The post New TikTag Attack Targets Arm CPU Security Feature  appeared first on SecurityWeek.

https://www.securityweek.com/new-tiktag-attack-targets-arm-cpu-security-feature/


The Annual SaaS Security Report: 2025 CISO Plans and Priorities
Tue, 18 Jun 2024 16:53:00 +0530
Seventy percent of enterprises are prioritizing investment in SaaS security by establishing dedicated teams to secure SaaS applications, as part of a growing trend of maturity in this field of cybersecurity, according to a new survey released this month by the Cloud Security Alliance (CSA).
Despite economic instability and major job cuts in 2023, organizations drastically increased investment in
https://thehackernews.com/2024/06/the-annual-saas-security-report-2025.html


Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence
Tue, 18 Jun 2024 11:12:56 +0000

China-linked threat actor Velvet Ant leveraged a legacy F5 BIG-IP appliance for three-year access to a victim’s network.

The post Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence appeared first on SecurityWeek.

https://www.securityweek.com/chinese-hackers-leveraged-legacy-f5-big-ip-appliance-for-persistence/


Critical Code Execution Vulnerabilities Patched in VMware vCenter Server
Tue, 18 Jun 2024 10:55:21 +0000

Serious vulnerabilities that can allow remote code execution and privilege escalation have been patched in VMware vCenter Server.

The post Critical Code Execution Vulnerabilities Patched in VMware vCenter Server appeared first on SecurityWeek.

https://www.securityweek.com/critical-code-execution-vulnerabilities-patched-in-vmware-vcenter-server/


New Malware Targets Exposed Docker APIs for Cryptocurrency Mining
Tue, 18 Jun 2024 15:11:00 +0530
Cybersecurity researchers have uncovered a new malware campaign that targets publicly exposed Docket API endpoints with the aim of delivering cryptocurrency miners and other payloads.
Included among the tools deployed is a remote access tool that’s capable of downloading and executing more malicious programs as well as a utility to propagate the malware via SSH, cloud analytics platform Datadog
https://thehackernews.com/2024/06/new-malware-targets-exposed-docker-apis.html


Blackbaud Settles With California for $6.75 Million Over 2020 Data Breach
Tue, 18 Jun 2024 08:59:51 +0000

Blackbaud was ordered to pay $6.75 million to the California Attorney General’s Office over the 2020 data breach.

The post Blackbaud Settles With California for $6.75 Million Over 2020 Data Breach appeared first on SecurityWeek.

https://www.securityweek.com/blackbaud-settles-with-california-for-6-75-million-over-2020-data-breach/


VMware Issues Patches for Cloud Foundation, vCenter Server, and vSphere ESXi
Tue, 18 Jun 2024 13:54:00 +0530
VMware has released updates to address critical flaws impacting Cloud Foundation, vCenter Server, and vSphere ESXi that could be exploited to achieve privilege escalation and remote code execution.
The list of vulnerabilities is as follows –

CVE-2024-37079 & CVE-2024-37080 (CVSS scores: 9.8) – Multiple heap-overflow vulnerabilities in the implementation of the DCE/RPC protocol that could
https://thehackernews.com/2024/06/vmware-issues-patches-for-cloud.html


Singapore Police Extradites Malaysians Linked to Android Malware Fraud
Tue, 18 Jun 2024 13:08:00 +0530
The Singapore Police Force (SPF) has announced the extradition of two men from Malaysia for their alleged involvement in a mobile malware campaign targeting citizens in the country since June 2023.
The unnamed individuals, aged 26 and 47, engaged in scams that tricked unsuspecting users into downloading malicious apps onto their Android devices via phishing campaigns with the aim of stealing
https://thehackernews.com/2024/06/singapore-police-extradites-malaysians.html


ASUS Patches Critical Authentication Bypass Flaw in Multiple Router Models
Mon, 17 Jun 2024 20:09:00 +0530
ASUS has shipped software updates to address a critical security flaw impacting its routers that could be exploited by malicious actors to bypass authentication.
Tracked as CVE-2024-3080, the vulnerability carries a CVSS score of 9.8 out of a maximum of 10.0.
“Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device,”
https://thehackernews.com/2024/06/asus-patches-critical-authentication.html


Tech Leaders to Gather for AI Risk Summit at the Ritz-Carlton, Half Moon Bay June 25-26, 2024
Mon, 17 Jun 2024 13:32:11 +0000

SecurityWeek’s AI Risk Summit + CISO Forum bring together business and government stakeholders to provide meaningful guidance on risk management and cybersecurity in the age of artificial intelligence.

The post Tech Leaders to Gather for AI Risk Summit at the Ritz-Carlton, Half Moon Bay June 25-26, 2024 appeared first on SecurityWeek.

https://www.securityweek.com/tech-leaders-to-gather-for-ai-risk-summit-at-the-ritz-carlton-half-moon-bay-june-25-26-2024/


CISA Conducts First AI Cyber Incident Response Exercise
Mon, 17 Jun 2024 13:09:16 +0000

The US cybersecurity agency CISA has conducted a tabletop exercise with the private sector focused on AI cyber incident response.

The post CISA Conducts First AI Cyber Incident Response Exercise appeared first on SecurityWeek.

https://www.securityweek.com/cisa-conducts-first-ai-cyber-incident-response-exercise/


Keytronic Says Personal Information Stolen in Ransomware Attack
Mon, 17 Jun 2024 12:36:31 +0000

Keytronic confirms that personal information was compromised after a ransomware group leaked allegedly stolen data.

The post Keytronic Says Personal Information Stolen in Ransomware Attack appeared first on SecurityWeek.

https://www.securityweek.com/keytronic-says-personal-information-stolen-in-ransomware-attack/


China-Linked Hackers Infiltrate East Asian Firm for 3 Years Using F5 Devices
Mon, 17 Jun 2024 17:29:00 +0530
A suspected China-nexus cyber espionage actor has been attributed as behind a prolonged attack against an unnamed organization located in East Asia for a period of about three years, with the adversary establishing persistence using legacy F5 BIG-IP appliances and using it as an internal command-and-control (C&C) for defense evasion purposes.
Cybersecurity company Sygnia, which responded to
https://thehackernews.com/2024/06/china-linked-hackers-infiltrate-east.html


What is DevSecOps and Why is it Essential for Secure Software Delivery?
Mon, 17 Jun 2024 16:56:00 +0530
Traditional application security practices are not effective in the modern DevOps world. When security scans are run only at the end of the software delivery lifecycle (either right before or after a service is deployed), the ensuing process of compiling and fixing vulnerabilities creates massive overhead for developers. The overhead that degrades velocity and puts production deadlines at risk.
https://thehackernews.com/2024/06/what-is-devsecops-and-why-is-it.html


Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor
Mon, 17 Jun 2024 11:58:00 +0530
Legitimate-but-compromised websites are being used as a conduit to deliver a Windows backdoor dubbed BadSpace under the guise of fake browser updates.
“The threat actor employs a multi-stage attack chain involving an infected website, a command-and-control (C2) server, in some cases a fake browser update, and a JScript downloader to deploy a backdoor into the victim’s system,” German
https://thehackernews.com/2024/06/hackers-exploit-legitimate-websites-to.html