Cyber Security News

A recently discovered vulnerability in Kubernetes has raised significant concerns within the cybersecurity community. Akamai researcher Tomer Peled identified a design flaw in Kubernetes’ sidecar project, git-sync, which could allow attackers to execute command injection attacks. This vulnerability affects default Kubernetes installations across various platforms, including Amazon EKS, Azure AKS, and Google GKE. It will […]

The post Kubernetes Vulnerability Exposes Clusters to Command Injection Attacks appeared first on Cyber Security News.

A critical security flaw has been discovered in the Zimbra Collaboration Suite (ZCS), potentially allowing hackers to execute malicious JavaScript code. This cross-site scripting (XSS) flaw, identified as CVE-2024-33533, has been found in the Zimbra webmail admin interface. The vulnerability arises from inadequate input validation, which permits attackers to inject harmful scripts into the application. […]

The post Zimbra XSS Flaw Allows Hackers to Execute Malicious JavaScript Code appeared first on Cyber Security News.

In a recent revelation, law enforcement figures have highlighted a concerning rise in cyber attacks targeting small businesses. The City of London Police reported 1,227 incidents in 2022, which experts believe represents only a fraction of the true scale of the problem. The most prevalent threats include business email compromise, ransomware, phone hacking, and insider […]

The post Cyber Alert! Small Businesses Should Enhance Their Cyber Defenses – NCSC Guide (PDF) appeared first on Cyber Security News.

On June 20, 2024, government services were knocked offline as a cyberattack rocked the Indonesian National Data Center. Investigators would attribute the outage to a new hacker group infecting targets with a novel ransomware variant: Brain Cipher. A variant of the LockBit ransomware family, Brain Cipher was created using the leaked LockBit 3.0 Builder. It […]

The post Brain Cipher Ransomware Analysis & Detection with Cynet’s All-in-One Platform appeared first on Cyber Security News.

A recent Digital Forensics and Incident Response (DFIR) report has uncovered various sophisticated tools threat actors employ to bypass major security defenses. These tools have been found to effectively circumvent protections offered by popular antivirus programs such as Windows Defender and Malwarebytes. The report highlights the alarming capability of these tools to delete backups and […]

The post New Threat Actors Tools Found to be Bypassed Antivirus & Delete Backups appeared first on Cyber Security News.

Researchers have uncovered a new and previously undocumented malware platform named “Cyclops.” Written in the Go programming language, Cyclops has been linked to the notorious hacking group Charming Kitten, also known as APT 35. This malware platform enables operators to execute arbitrary commands on targeted systems, posing a severe threat to cybersecurity in the Middle […]

The post Undocumented Malware Platform “Cyclops” Lets Hackers to Write Arbitrary Commands on Windows appeared first on Cyber Security News.

NIST, an agency in the federal government of the United States (US), has finished its first draft of cryptographic algorithms that are immune to quantum computer attacks. Quantum computers use the principle of quantum mechanics, and they are advanced computing systems that perform tasks that normal computers cannot. Instead of using classical bits, these types […]

The post NIST Finalised 3 Encryption Tools To Prevent Future Quantum Computers Cyberattacks appeared first on Cyber Security News.

The research identifies a critical security vulnerability in GitHub Actions artifacts, enabling unauthorized access to tokens and secrets within CI/CD pipelines.  Misconfigured workflows in major organizations’ public repositories exposed sensitive information, potentially compromising cloud environments and allowing attackers to inject malicious code into production systems.  By exploiting leaked GitHub tokens, adversaries could manipulate repositories and […]

The post GitHub Vulnerability “ArtiPACKED” Trigger RCE Exploit to Hack Repositories appeared first on Cyber Security News.

In collaboration with Access Now and other civil society organizations, Citizen Lab exposed a sophisticated attack dubbed as “Rivers of Phishing,” a new phishing campaign that attacks Russia’s enemies globally. The fact-finding efforts revealed that their coordinated spear-phishing targeted particular individuals across multiple countries and sectors of civil society. The threat actor adopted advanced digital […]

The post Rivers Of Phish – New Phishing Campaign Attacks Russia Enemies Globally appeared first on Cyber Security News.

The Iranian government-backed cyber group APT42 has launched a phishing campaign aimed at disrupting the U.S. presidential election. According to Google’s Threat Analysis Group (TAG), this sophisticated threat actor, associated with Iran’s Islamic Revolutionary Guard Corps (IRGC), has been targeting high-profile individuals linked to both the Biden and Trump campaigns. The campaign is part of […]

The post Iranian APT42 Group Launches a Massive Phishing Campaign to Attack U.S. Presidential Election appeared first on Cyber Security News.

Palo Alto Networks has issued a high-severity security update for the Prisma Access Browser, addressing multiple vulnerabilities discovered in the underlying Chromium engine. This update, identified as PAN-SA-2024-0007, supersedes the Talon Browser and incorporates critical security fixes from recent Chromium updates. The vulnerabilities primarily involve “use after free” issues, type confusion, and insufficient data validation […]

The post Vulnerability in Palo Alto Networks Prisma Access Browser Let Attackers Trigger RCE appeared first on Cyber Security News.

IBM has issued a security bulletin highlighting multiple vulnerabilities in its QRadar Suite Software. These vulnerabilities, affecting various components, have been addressed in the latest software release. IBM QRadar Suite Software is a powerful cybersecurity platform that integrates SIEM (Security Information and Event Management), SOAR (Security Orchestration, Automation, and Response), network traffic analysis, and vulnerability management into a single, […]

The post Critical Vulnerabilities in IBM QRadar Lets Attackers Trigger Arbitrary Code Remotely appeared first on Cyber Security News.

In the rapidly evolving world of cybersecurity, emerging threats pose significant challenges to organizations worldwide. These threats, characterized by their novelty and complexity, often exploit new vulnerabilities and technologies, making them difficult to predict and defend against. As cybercriminals continually refine their methods, businesses must stay informed and proactive to protect their assets. One powerful […]

The post How to Investigate Emerging Cyber Threats in 2024 – SOC/DFIR Team Guide appeared first on Cyber Security News.

A critical security vulnerability identified as CVE-2024-5830 has been discovered in Chrome’s V8 JavaScript engine. The flaw, initially reported in May 2024 as bug 342456991. The vulnerability is a type confusion bug that allows an attacker to execute arbitrary code within the Chrome renderer sandbox by simply getting a victim to visit a malicious website.  […]

The post One Click on a Malicious Site Could Exploit Chrome V8 Engine RCE Vulnerability appeared first on Cyber Security News.

Kootenai Health, a prominent healthcare provider located at 2003 Kootenai Health Way, Coeur d’Alene, Idaho, has been the victim of a significant ransomware attack. The attack exposed sensitive information belonging to 464,088 patients. The breach, which occurred on February 22, 2024, was discovered on August 1, 2024, by the Office of the Maine Attorney General, […]

The post Kootenai Health Ransomware Attack: 464,000 patients Data Exposed appeared first on Cyber Security News.

Gigabud, an Android banking trojan impersonating government entities, initially targeted Thailand, the Philippines, and Peru. Its source code significantly overlaps with Golddigger, another Android banking trojan targeting Vietnam.  It indicates a shared threat actor who has expanded Gigabud’s scope to include Bangladesh, Indonesia, Mexico, South Africa, and Ethiopia, demonstrating increased sophistication and geographic targeting.  Researchers […]

The post Golddigger And Gigabud Android Malware Attacking Airlines Customers appeared first on Cyber Security News.

A phishing email containing only a PNG image was sent from a compromised AWS account using the spoofed sender address [email protected]. Clicking the image redirected victims to a malicious Squarespace domain, giraffe-viola-p262.squarespace[.]com, which subsequently led to a PDF viewer.  The sender domain is recognized as a known malware distributor, according to open-source threat intelligence, which […]

The post New Phishing Campaign Attacking AWS Accounts To Steal Logins appeared first on Cyber Security News.

Fortinet, a leader in cybersecurity solutions, has released patches addressing several vulnerabilities affecting its FortiOS, FortiProxy, FortiPAM, FortiSwitchManager, FortiManager, and FortiAnalyzer products. If exploited, these vulnerabilities could potentially allow unauthorized access and privilege escalation, posing a significant threat to affected systems. Vulnerability Details CVE-2022-45862 The graphical user interface (GUI) of FortiOS, FortiProxy, FortiPAM, and FortiSwitchManager […]

The post Fortinet Patches Multiple Vulnerabilities Impacting FortiOS & Other Products appeared first on Cyber Security News.

Security researchers discovered a vulnerability in GitHub’s Actions feature. GitHub Actions artifacts are generated as part of organizations’ CI/CD workflows, and a combination of misconfigurations and security flaws can lead to artifact leakage of tokens. Dubbed “ArtiPACKED,” this exploit leverages a race condition in GitHub’s artifact system, allowing attackers to compromise repositories and inject malicious […]

The post ArtiPACKED: Hacking GitHub Repositories Through a Race Condition Vulnerability appeared first on Cyber Security News.

Adobe has released patches for 72 security vulnerabilities across its popular software products. This effort, spearheaded by Adobe’s Product Security Incident Response Team (PSIRT), underscores its commitment to safeguarding its users against potential cyber threats. Comprehensive Security Measures Adobe’s PSIRT is crucial to the company’s vulnerability disclosure program. It provides a single point of contact […]

The post Adobe Patches 72 Security Vulnerabilities Across Multiple Products appeared first on Cyber Security News.