Security Affairs

MAY 25, 2022

The Cybersecurity & Infrastructure Security Agency (CISA) has added 41 flaws to its Known Exploited Vulnerabilities Catalog, including recently addressed issues in the Android kernel ( CVE-2021-1048 and CVE-2021-0920) and Cisco IOS XR ( CVE-2022-20821 ). The Cisco IOS XR flaw (CVE-2022-20821, CVSS score: 6.5,

IT 139

IT Cybersecurity Risk Security 139

Security Affairs

FEBRUARY 19, 2024

The attackers noticed that the applications often reached the Top-3 in the “Top New Free” category, in an attempt to trick users into believing that the application was legitimate and downloaded by a large number of users. According to ThreatFabric, the dropper applications were uploaded on Google Play in the targeted regions.

Access 95

Access Authentication Cybersecurity IT 95

Security Affairs

DECEMBER 14, 2021

Below are the vulnerability details: Vulnerability Category Vulnerability Impact Severity CVSS base score CVSS vector CVE Number Out-of-bounds Write ( CWE-787 ) Arbitrary code execution Critical 7.8 ??CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-44184. Pierluigi Paganini.

Security 95

Security Access IT Information Security 95

The Last Watchdog

FEBRUARY 21, 2022

Related: High-profile healthcare hacks in 2021. Start by assessing what critical information your organization needs to protect and maintain access to in order to provide services. A data inventory allows you to focus the greatest security (and monitoring) where it needs to be.

Passwords 214

Passwords Cybersecurity Education Phishing 214

Hunton Privacy

MAY 13, 2021

On April 29, 2021, the New York City Council passed the Tenant Data Privacy Act (“TDPA”), which would regulate the collection, use, safeguarding and retention of tenant data by owners of “smart access” buildings. Security safeguards. The TDPA has been sent to the New York City Mayor’s desk for signature. building guests).

Data Privacy 106

Data Privacy Privacy Authentication Passwords 106

Security Affairs

MAY 28, 2022

In April, GitHub uncovered threat actors using stolen OAuth user tokens to gain access to their repositories and download private data from several organizations. On April 12, the company launched an investigation into a series of unauthorized access to data stored in repositories of dozens of organizations.

Metadata 135

Metadata Passwords Archiving Access 135

Security Affairs

JULY 17, 2023

An unauthenticated visitor can exploit the vulnerability to remotely execute commands on vulnerable Coldfusion 2018, 2021, and 2023 servers. The issue is a deserialization of untrusted data that was discovered by the security researcher Nicolas Zilio from CrowdStrike.

Authentication 90

Authentication Access Cybersecurity Security 90

Security Affairs

MAY 27, 2022

The FBI warns organizations in the higher education sector of credentials sold on cybercrime forums that can allow threat actors to access their networks. “The FBI is informing academic partners of identified US college and university credentials advertised for sale on online criminal marketplaces and publically accessible forums.

Sales 124

Sales Education Phishing Passwords 124

Security Affairs

MAY 30, 2022

It uses a list of hardcoded username/password combinations to login into devices in the attempt to access systems using weak or default credentials. The new variant of the bot includes exploits for the following security issues: CVE-2022-22954 : Critical RCE flaw in VMware Workspace ONE Access and VMware Identity Manager.

CMS 138

CMS IoT Passwords Security 138

Security Affairs

JULY 20, 2023

The vulnerabilities could lead to arbitrary code execution and security feature bypass. The impacted ColdFusion versions are 2023, 2021 and 2018. AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2023-38204 Improper Access Control ( CWE-284 ) Security feature bypass Critical 7.5 ” reads the security bulletin.

Authentication 62

Authentication Access Security Information Security 62

Security Affairs

JULY 19, 2022

These apps were downloaded a total of over 300k times belonging to the following common categories: Communication (47.1%) Health Personalization (5.9%) Photography Tools (39.2%). “The tools and communication were among the most targeted categories covering the majority of the Joker-infected apps. ” continues the report.

Communications 116

Communications Authentication Passwords Access 116

IT Governance

OCTOBER 21, 2021

The need for experienced and qualified cyber security professionals is a highlight of Cybersecurity Career Awareness Week , led by NICE (National Initiative for Cybersecurity Education). Cyber security focuses on protecting computer systems from unauthorised access or being otherwise damaged. Build your cyber security career.

Security 111

Security Information Security GDPR Data Privacy 111

Security Affairs

MAY 26, 2022

“This critical vulnerability should be patched or mitigated immediately per the instructions in VMSA-2021-0014. The CVE-2022-22972 flaw affects Workspace ONE Access, VMware Identity Manager (vIDM), and vRealize Automation. The company acknowledged Bruno López of Innotec Security for the discovery of the flaw. states VMware.

Authentication 136

Authentication Cybersecurity Access Education 136

Security Affairs

JUNE 2, 2022

Since March 2021, the malicious code was also employed in attacks aimed at several European countries as well as Japan. In March 2021, experts from Swiss security outfit PRODAFT estimated that the number of infected devices worldwide was approximately 60,000. The victim clicks the link and is prompted to install an app.

Passwords 82

Passwords Access Security Cybersecurity 82

Security Affairs

MARCH 22, 2021

The Apache Software Foundation addressed last week a high severity vulnerability in Apache OFBiz, tracked as CVE-2021-26295 , that could have allowed a remote, unauthenticated attacker to take over the ERP system. This category of issue could compromise the availability, authorization process, and bypass access control.

Cloud 103

Cloud Access Security IT 103

Security Affairs

JULY 27, 2022

.” The attackers usually exploit a critical vulnerability in the hosted application to gain initial access and drop a script web shell as the first stage of the attack chain. Then the web shell is used to install a rogue IIS module that establishes persistent access to the server which is hard to discover.

Access 102

Access Authentication Security IT 102

Data Protection Report

NOVEMBER 14, 2023

The SEC’s Complaint alleges that between 2018 and 2021, the Company and the CISO misled investors about the strength of its cybersecurity protocols, which were allegedly not reasonably designed to protect its critical assets, including Orion.

Cybersecurity 115

Cybersecurity IT Risk Passwords 115

Security Affairs

MAY 29, 2023

” In May 2022, Google’s Threat Analysis Group (TAG) researchers discovered three campaigns, between August and October 2021, targeting Android users with five zero-day vulnerabilities. “When used together, these components provide a variety of information stealing, surveillance and remote-access capabilities. .

IT 86

IT Communications Access Manufacturing 86

Security Affairs

JUNE 13, 2022

China-linked Gallium APT (aka Softcell) used a previously undocumented remote access Trojan dubbed PingPull in recent attacks aimed at organizations in Southeast Asia, Europe, and Africa. The PingPull Trojan is written in Visual C++, it was used by threat actors to access a reverse shell and run arbitrary commands on compromised systems.

Communications 84

Communications Government Access Cybersecurity 84

Hunton Privacy

MAY 3, 2021

On April 29, 2021, China issued a second draft version of the Data Security Law (“Draft DSL”). The Draft DSL will be open for public comments until May 28, 2021. Data Protection Policy Based On Hierarchical Classification and Category.

Security 111

Security Cybersecurity Data collection Government 111

Security Affairs

JANUARY 6, 2021

WhatsApp is notifying users that starting February 8, 2021, they will be obliged to share their data with Facebook, leaving them no choice. This is bad news for WhatsApp users and their privacy, the company is notifying them that starting February 8, 2021, they will be requested to share their data with Facebook companies.

IT 110

IT Privacy Metadata Security 110

Data Matters

DECEMBER 9, 2021

On November 26, 2021, the U.S. The Proposed Rule would bring “connected software applications” into the scope of Commerce’s authority to review certain transactions involving information and communications technology and services (ICTS) in the U.S. national security. The risk factors include. legal compliance measures.

Communications 88

Communications Manufacturing Data collection Risk 88

Data Matters

JUNE 4, 2021

The Directive has three primary requirements: Pipeline facilities and other covered entities must designate a Cybersecurity Coordinator with TSA by June 4, 2021, who must be available as the primary contact for communications with the TSA and CISA, twenty-four hours a day and seven days a week, regarding cybersecurity and related information.

Cybersecurity 128

Cybersecurity Communications Government Compliance 128

Security Affairs

JUNE 1, 2022

To make it harder the analysis, the real C2 server is accessed only after a long delay. “In July 2021, we described the method of uncovering real C&C servers among the thousands of legitimate servers abused by XLoader v.2.3. Please vote for Security Affairs and Pierluigi Paganini in every category that includes them (e.g.

IT 132

IT Communications Cybersecurity Security 132

Data Matters

FEBRUARY 10, 2022

The impending emphasis on supply chain risk is not a surprise, however, in light of the SEC’s numerous information requests in 2021 connected to the Solar Winds vulnerability. Chair Gensler’s most recent speech and any forthcoming SEC proposals or guidance may also signal the SEC’s continued focus on cyberenforcement. s software.

Cybersecurity 88

Cybersecurity Marketing Risk Compliance 88

Security Affairs

JUNE 9, 2022

The malware was first spotted in November 2021, experts believe it was designed to target the financial sector in Latin America, such as Banco do Brasil and Caixa. Its main objective is to capture credentials and to facilitate backdoor access to infected machines. Symbiote hides its presence by hooking libc and libpcap functions.

Libraries 142

Libraries Passwords Security IT 142

Security Affairs

JULY 26, 2021

The attack abuses the Encrypting File System Remote (EFSRPC) protocol, which is used to perform maintenance and management operations on encrypted data that is stored remotely and accessed over a network. Guidance at [link] — Security Response (@msftsecresponse) July 24, 2021. Normal behavior, disable it if you dare!"

Authentication 116

Authentication Passwords Encryption Security 116

Security Affairs

JUNE 10, 2022

Cuba ransomware has been actively distributed through the Hancitor malware , a commodity malware that partnered with ransomware gangs to help them gain initial access to target networks. ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Ransomware 116

Ransomware Encryption Communications Cybersecurity 116

Security Affairs

JUNE 13, 2022

Experts observed the HelloXD ransomware deploying a backdoor to facilitate persistent remote access to infected hosts. The HelloXD ransomware first appeared in the threat landscape on November 30, 2021, it borrows the code from Babuk ransomware , which is available in Russian-speaking hacking forums since September 2021.

Ransomware 79

Ransomware Security Cybersecurity IT 79

Thales Cloud Protection & Licensing

MARCH 16, 2021

Why Data Visibility is Important for Security. Tue, 03/16/2021 - 07:47. The shift to working from home over the past year, as reviewed in “ 451 Research’s Voice of the Enterprise: Digital Pulse ” published on October 2020, identifies the “information security as the priority respondents cited most often as having become greater”.

Security 91

Security Data breaches Cloud Big data 91

Hunton Privacy

APRIL 19, 2021

On April 14, 2021, the European Data Protection Board (“EDPB”) announced that it had adopted its Opinion on the draft UK adequacy decision issued by the European Commission on February 19, 2021. The EDPB’s Opinion is non-binding but will be persuasive.

GDPR 81

GDPR Personal data Access Security 81

Security Affairs

JUNE 16, 2022

The ALPHA/BlackCat gang has been active since at least December 2021 when malware researchers from Recorded Future and MalwareHunterTeam discovered their operation. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. To nominate, please visit:?.

Ransomware 77

Ransomware Cybersecurity Security Access 77

Security Affairs

MAY 27, 2022

ERMAC was first spotted by researchers from Threatfabric in July 2021, it is based on the popular banking trojan Cerberus. ” Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS. The ERMAC Android banking trojan version 2.0 To nominate, please visit:?.

Phishing 140

Phishing Security Cybersecurity IT 140

Hunton Privacy

FEBRUARY 1, 2024

The leaked text substantially diverges from the original proposal by the European Commission, which dates back to 2021. Employment, Workers Management and Access to Self-Employment. Access to and Enjoyment of Essential Private Services and Essential Public Services and Benefits. to prepare news articles).

Risk 114

Risk Education Artificial Intelligence Insurance 114

Security Affairs

JUNE 16, 2022

The compromise of Exchange servers allows threat actors to access the target networks, perform internal reconnaissance and lateral movement activities, and steal sensitive documents before encrypting them. Security Affairs is one of the finalists for the best European Cybersecurity Blogger Awards 2022 – VOTE FOR YOUR WINNERS.

Ransomware 95

Ransomware Archiving Access Encryption 95

Security Affairs

JULY 21, 2021

The platform lists coupons in multiple categories including health, travel, food, services, events. July 19, 2021 – The actor having the alias “ bl4ckt0r ” has published TicketClub Italy database with over 340,957 users for sale and released several meaningful data dumps which may confirm the breach.

Data breaches 100

Data breaches Sales Retail Phishing 100

eSecurity Planet

SEPTEMBER 24, 2021

Both vendors will help you and your employees store access credentials, improve password health, and share sensitive information securely. To help you determine which one is the best fit, we’ve compared Bitwarden and LastPass in each of the following categories: Features Supported platforms Security Cost.

Passwords 114

Passwords Encryption Authentication Access 114