Cyber Security News

Researchers have uncovered a sophisticated phishing marketplace, the ONNX Store, which provides cybercriminals with advanced tools to hijack Microsoft 365 accounts. Alarmingly, these tools include methods for bypassing two-factor authentication (2FA), a critical security measure that many organizations rely on to protect sensitive information. This discovery underscores the urgent need for corporate information security teams […]

The post ONNX Bot Tool Hijacks Microsoft 365 accounts & Even Bypass 2FA appeared first on Cyber Security News.

Criminal IP, an expanding Cyber Threat Intelligence (CTI) search engine from AI SPERA, has recently completed its technology integration with Maltego, a global all-in-one investigation platform that specializes in visualized analysis of combined cyber data. This collaboration integrates Criminal IP’s comprehensive database of malicious IPs, domains, and CVEs directly into Maltego’s unified user interface and […]

The post Criminal IP and Maltego Collaborate to Broaden Threat Intelligence Data Search appeared first on Cyber Security News.

In the beginning of August 2024, Sonos released a security advisory in which they fixed two security vulnerabilities that were associated with Remote Code Execution. These vulnerabilities have been assigned with CVE-2023-50810 and CVE-2023-50809.  These vulnerabilities were existing in Sonos One and Sonos Era-100 Bluetooth speakers which could allow a threat actor to record the […]

The post Sonos Smart Speaker Vulnerability Let Attackers Execute Remote Code appeared first on Cyber Security News.

The threat landscape is significantly evolving, and cybersecurity researchers are continuously developing new security mechanisms to mitigate such evolving and sophisticated threats. Cybersecurity researchers Lloyd Fournier, Nick Farrow, and Robin Linus recently discovered a new Dark Skippy attack that enables hackers to steal secret keys from signing devices. While it was discovered on the 8th […]

The post New Dark Skippy Attack Let Hackers Steal Secret Keys From Signing Device appeared first on Cyber Security News.

The Sumter County Sheriff’s Office has been victim to a ransomware attack orchestrated by the criminal group Rhysida. The cyberattack has temporarily disrupted access to certain records, although law enforcement services remain unaffected. According to a recent tweet from Luke Connolly the Criminal group Rhysida claims to have hacked the Sumter County Sheriff, FLA, and […]

The post Sumter County Sheriff’s Office Systems Hit by Rhysida Ransomware appeared first on Cyber Security News.

Cybersecurity researchers have discovered an extensive hacker toolkit, revealing a comprehensive set of tools designed for various stages of cyberattacks. The toolkit, found in an open directory, showcases the sophisticated methods employed by threat actors to gain and maintain access to compromised systems. The discovery, made in early December 2023, exposed a collection of batch […]

The post Hackers’ Toolkit Exposed, Wide Range of Tools from Initial Access to Full Control appeared first on Cyber Security News.

Google researchers have identified critical security vulnerabilities within Qualcomm’s Adreno GPU, potentially affecting billions of Android devices globally. If exploited, these vulnerabilities could lead to unauthorized access and control over affected devices, posing a substantial risk to users’ data and privacy. Qualcomm, a leading manufacturer of mobile processors and wireless chipsets, has confirmed the existence […]

The post Vulnerabilities in Qualcomm’s Adreno GPU Chipsets Affect Billions of Android Devices appeared first on Cyber Security News.

Researchers from Aqua identified critical vulnerabilities in six Amazon Web Services (AWS): CloudFormation, Glue, EMR, SageMaker, ServiceCatalog, and CodeStar. These vulnerabilities varied in severity, potentially allowing remote code execution, full-service user takeover, AI module manipulation, data exposure, data exfiltration, and denial of service (DoS) attacks. The vulnerabilities could have affected any organization using these services […]

The post Critical Vulnerabilities in AWS Lets Attackers Gain Full-Service Remotely appeared first on Cyber Security News.

Security researchers have uncovered severe vulnerabilities in the Ewon Cosy+, a widely used industrial remote access gateway tool, allowing them to gain root access and compromise the device’s security. The findings, presented at DEF CON 32, highlight significant risks to industrial infrastructure and remote access systems. The Ewon Cosy+, developed by HMS Networks, is designed […]

The post Researchers Hacked Industrial Remote Access Gateway Tool to Gain Root Access appeared first on Cyber Security News.

IBM has disclosed a vulnerability in its Aspera Shares software, CVE-2023-38018. This flaw in user session handling could potentially allow attackers to impersonate any user within the system, posing a substantial security risk for organizations relying on this software for data transfer. CVE-2023-38018 – Vulnerability Details The vulnerability arises from IBM Aspera Shares’ failure to […]

The post IBM Aspera Shares Vulnerability Let Attackers Login as Any User appeared first on Cyber Security News.

A critical security vulnerability has been discovered in OpenSSH implementations on FreeBSD systems, potentially allowing attackers to execute remote code without authentication. The vulnerability, identified as CVE-2024-7589, affects all supported versions of FreeBSD. The issue stems from a signal handler in the SSH daemon (sshd) that may call logging functions that are not async-signal-safe. This […]

The post Critical OpenSSH Vulnerability in FreeBSD Let’s Attackers Gain Root Access Remotely appeared first on Cyber Security News.

Monitoring an Active Directory (AD) involves tracking and analyzing business AD events and activity. Windows-based systems store and manage network resources, user accounts, groups, and security rules in Active Directory. Monitoring supports AD’s availability, security, and proper operation. Active Directory monitoring tools capture and analyze user authentication, logon/logoff events, group membership changes, password policy violations, […]

The post Best Active Directory Monitoring Tools – 2024 appeared first on Cyber Security News.

Our Weekly Cybersecurity Newsletter is your personal radar that will help you to surf through the ever-changing digital threat landscape. This analysis, however, is not just a news report but aims to provide context, possible impact evaluations, and practical mitigation strategies. Whether it is securing enterprise infrastructure, building secure applications, or hardening personal digital life: […]

The post Weekly Cyber Security News Letter – Data Breaches, Vulnerability, Cyber Attack & More appeared first on Cyber Security News.

Microsoft researchers have recently uncovered multiple medium-severity vulnerabilities in OpenVPN, a widely used open-source VPN software. OpenVPN is used by thousands of companies across various industries, including information technology, financial services, telecommunications, and computer software, on major platforms such as Windows, iOS, macOS, Android, and BSD. Are you from SOC and DFIR Teams? Analyse Malware […]

The post Critical OpenVPN Vulnerabilities Expose Millions of Devices to RCE Attack appeared first on Cyber Security News.

Microsoft has disclosed a significant security vulnerability in its Office suite, identified as CVE-2024-38200, which could potentially allow attackers to access sensitive information. This spoofing vulnerability affects multiple versions of Microsoft Office, including Office 2016, Office 2019, Office LTSC 2021, and Microsoft 365 Apps for Enterprise, across both 32-bit and 64-bit systems. The vulnerability, rated […]

The post Microsoft Office Spoofing Vulnerability Let Attackers Steal Sensitive Data appeared first on Cyber Security News.

A popular open-source firewall software pfSense vulnerability has been identified, allowing for remote code execution (RCE) attacks. The vulnerability, tracked as CVE-2022-31814, highlights potential risks in pfSense installations, particularly those using the pfBlockerNG package. pfSense is a widely used, FreeBSD-based firewall and router software that offers enterprise-grade features and security. It is renowned for its […]

The post Open Source Firewall pfsense Vulnerable to Remote Code Execution Attacks appeared first on Cyber Security News.

In November 2023, hackers from Iran hacked the Municipal Water Authority of Aliquippa, Pennsylvania. They targeted a vulnerable control system and damaged it with anti-Israel statements. Two months later, in January 2024, Russians attacked Muleshoe and Abernathy water facilities, causing minor disruptions such as the overflowing of water storage tanks. These are incidents that reveal […]

The post Thousands Of Internet-Connected ICS Devices Exposes Critical Infrastructure To Cyber Attacks appeared first on Cyber Security News.

The giant global electricity network intercrosses the fast-growing solar power infrastructure and ubiquitous Internet of Things, making a complex point of energy and data. This intersection relies on vulnerable inverters and controllers—key elements that may be vulnerable spots as per recent studies.  Cybersecurity analysts at BitDefender recently discovered that a series of Solar Power system […]

The post Series Of Solar Power System Vulnerabilities Impacts Millions Of Installations appeared first on Cyber Security News.

Clearlake is a cyber threat operation that distributes fake antivirus software to make users perceive their system as infected. Sometimes, malicious software can be designed to ask for payment to remove it, or it installs more malware that steals sensitive data or causes further damage to the victim’s system. Cybersecurity analysts at Avast Threat Labs […]

The post Threat Actors Hijacking Websites To Deliver .NET-Based Malware appeared first on Cyber Security News.

Roundcube, a widely adopted open-source webmail application, is included by default in the popular cPanel web hosting control panel, leading to millions of installations worldwide.  The software is commonly used by universities and government agencies, making the email accounts of public sector employees a valuable target for Advanced Persistent Threat (APT) groups engaged in espionage.  […]

The post Critical XSS Vulnerability In Roundcube Let Attackers Execute Arbitrary Code appeared first on Cyber Security News.