Cyber Security News

Akamai researchers have delved into the often-overlooked threat of VPN post-exploitation, highlighting techniques that threat actors can use to escalate their intrusion after compromising a VPN server. The study focuses on vulnerabilities and no-fix techniques affecting Ivanti Connect Secure and FortiGate VPNs, potentially allowing attackers to gain control over other critical network assets. VPN servers […]

The post Post-Exploitation Tactics Hackers Use After Compromising Ivanti, Fortigate VPN Servers appeared first on Cyber Security News.

Hackers often target the Solana Python API ecosystem to exploit vulnerabilities in decentralized applications, access private keys, or manipulate transactions on the Solana blockchain. Recently the Solana Python API ecosystem was targeted by a typosquatting attack (tagged as sonatype-2024-3214). The official Solana Python API project, known as “solana-py” on GitHub but listed as “solana” on […]

The post Beware Of Malicious Typosquat Package That Steals Your Secret Keys appeared first on Cyber Security News.

A Sinkclose vulnerability, which has been detected in AMD processors for decades, lets hackers obtain access to some of the most privileged areas of a computer. It allows malware to infiltrate a computer’s memory so deeply that, in many situations, it could be quicker to destroy the device than disinfect it. The vulnerability allows hackers […]

The post AMD Sinkclose Vulnerability Lets Attackers Most Privileged Portions Of a Computer appeared first on Cyber Security News.

Law enforcement has been attacking cyber threat actors for quite some time now. The FBI has taken down several servers belonging to multiple threat actors to disrupt their malicious operations. However, the FBI announced the Shutdown of a Ransomware group named “Radar/Dispossessor”. This ransomware group was reportedly run by a person who goes by the […]

The post FBI Shuts Down Dispossessor Ransomware Operations, Domains Dismantled appeared first on Cyber Security News.

A newly discovered vulnerability in the Common Log File System (CLFS.sys) driver of Windows has been identified, potentially affecting millions of devices running Windows 10, Windows 11, and various Windows Server versions. Tracked as CVE-2024-6768, this vulnerability allows a malicious authenticated low-privilege user to trigger a Blue Screen of Death (BSOD) through a forced call […]

The post CLFS Vulnerability Let Hackers Trigger BSOD Error On All Versions Of Windows 10 & 11 appeared first on Cyber Security News.

Hackers masquerading as the Security Service of Ukraine have compromised over 100 government systems. The Computer Emergency Response Team of Ukraine (CERT-UA) at the State Service of Special Communications and Information Protection (SSSCIP) reported the incident on August 12, highlighting the sophisticated tactics employed by the attackers. Malicious Emails Target Government Bodies The attack began […]

The post Hackers Posing as Security Service Compromised 100 Govt Systems appeared first on Cyber Security News.

Elon Musk, who owns the social media platform X (which used to be called Twitter), said that the platform was hit by a massive Distributed Denial-of-Service (DDoS) attack. This happened at the same time as a planned live interview with former President Donald Trump. The attack aimed to disrupt X’s services by overwhelming it with […]

The post Elon Musk Reports Massive DDoS Attack on X Amid Trump Interview appeared first on Cyber Security News.

Researchers have uncovered a sophisticated phishing marketplace, the ONNX Store, which provides cybercriminals with advanced tools to hijack Microsoft 365 accounts. Alarmingly, these tools include methods for bypassing two-factor authentication (2FA), a critical security measure that many organizations rely on to protect sensitive information. This discovery underscores the urgent need for corporate information security teams […]

The post ONNX Bot Tool Hijacks Microsoft 365 accounts & Even Bypass 2FA appeared first on Cyber Security News.

Criminal IP, an expanding Cyber Threat Intelligence (CTI) search engine from AI SPERA, has recently completed its technology integration with Maltego, a global all-in-one investigation platform that specializes in visualized analysis of combined cyber data. This collaboration integrates Criminal IP’s comprehensive database of malicious IPs, domains, and CVEs directly into Maltego’s unified user interface and […]

The post Criminal IP and Maltego Collaborate to Broaden Threat Intelligence Data Search appeared first on Cyber Security News.

In the beginning of August 2024, Sonos released a security advisory in which they fixed two security vulnerabilities that were associated with Remote Code Execution. These vulnerabilities have been assigned with CVE-2023-50810 and CVE-2023-50809.  These vulnerabilities were existing in Sonos One and Sonos Era-100 Bluetooth speakers which could allow a threat actor to record the […]

The post Sonos Smart Speaker Vulnerability Let Attackers Execute Remote Code appeared first on Cyber Security News.

The threat landscape is significantly evolving, and cybersecurity researchers are continuously developing new security mechanisms to mitigate such evolving and sophisticated threats. Cybersecurity researchers Lloyd Fournier, Nick Farrow, and Robin Linus recently discovered a new Dark Skippy attack that enables hackers to steal secret keys from signing devices. While it was discovered on the 8th […]

The post New Dark Skippy Attack Let Hackers Steal Secret Keys From Signing Device appeared first on Cyber Security News.

Endpoint security tools are software applications that protect endpoints such as desktops, laptops, and mobile devices from cybersecurity threats. These tools secure entry points of end-user devices from being exploited by malicious actors. They commonly include features like antivirus, anti-malware, firewall policies, and intrusion detection systems. Modern endpoint security solutions may also incorporate advanced technologies […]

The post 10 Best Advanced Endpoint Security Tools – 2024 appeared first on Cyber Security News.

The Sumter County Sheriff’s Office has been victim to a ransomware attack orchestrated by the criminal group Rhysida. The cyberattack has temporarily disrupted access to certain records, although law enforcement services remain unaffected. According to a recent tweet from Luke Connolly the Criminal group Rhysida claims to have hacked the Sumter County Sheriff, FLA, and […]

The post Sumter County Sheriff’s Office Systems Hit by Rhysida Ransomware appeared first on Cyber Security News.

Cybersecurity researchers have discovered an extensive hacker toolkit, revealing a comprehensive set of tools designed for various stages of cyberattacks. The toolkit, found in an open directory, showcases the sophisticated methods employed by threat actors to gain and maintain access to compromised systems. The discovery, made in early December 2023, exposed a collection of batch […]

The post Hackers’ Toolkit Exposed, Wide Range of Tools from Initial Access to Full Control appeared first on Cyber Security News.

Google researchers have identified critical security vulnerabilities within Qualcomm’s Adreno GPU, potentially affecting billions of Android devices globally. If exploited, these vulnerabilities could lead to unauthorized access and control over affected devices, posing a substantial risk to users’ data and privacy. Qualcomm, a leading manufacturer of mobile processors and wireless chipsets, has confirmed the existence […]

The post Vulnerabilities in Qualcomm’s Adreno GPU Chipsets Affect Billions of Android Devices appeared first on Cyber Security News.

Researchers from Aqua identified critical vulnerabilities in six Amazon Web Services (AWS): CloudFormation, Glue, EMR, SageMaker, ServiceCatalog, and CodeStar. These vulnerabilities varied in severity, potentially allowing remote code execution, full-service user takeover, AI module manipulation, data exposure, data exfiltration, and denial of service (DoS) attacks. The vulnerabilities could have affected any organization using these services […]

The post Critical Vulnerabilities in AWS Lets Attackers Gain Full-Service Remotely appeared first on Cyber Security News.

Security researchers have uncovered severe vulnerabilities in the Ewon Cosy+, a widely used industrial remote access gateway tool, allowing them to gain root access and compromise the device’s security. The findings, presented at DEF CON 32, highlight significant risks to industrial infrastructure and remote access systems. The Ewon Cosy+, developed by HMS Networks, is designed […]

The post Researchers Hacked Industrial Remote Access Gateway Tool to Gain Root Access appeared first on Cyber Security News.

IBM has disclosed a vulnerability in its Aspera Shares software, CVE-2023-38018. This flaw in user session handling could potentially allow attackers to impersonate any user within the system, posing a substantial security risk for organizations relying on this software for data transfer. CVE-2023-38018 – Vulnerability Details The vulnerability arises from IBM Aspera Shares’ failure to […]

The post IBM Aspera Shares Vulnerability Let Attackers Login as Any User appeared first on Cyber Security News.

A critical security vulnerability has been discovered in OpenSSH implementations on FreeBSD systems, potentially allowing attackers to execute remote code without authentication. The vulnerability, identified as CVE-2024-7589, affects all supported versions of FreeBSD. The issue stems from a signal handler in the SSH daemon (sshd) that may call logging functions that are not async-signal-safe. This […]

The post Critical OpenSSH Vulnerability in FreeBSD Let’s Attackers Gain Root Access Remotely appeared first on Cyber Security News.

Monitoring an Active Directory (AD) involves tracking and analyzing business AD events and activity. Windows-based systems store and manage network resources, user accounts, groups, and security rules in Active Directory. Monitoring supports AD’s availability, security, and proper operation. Active Directory monitoring tools capture and analyze user authentication, logon/logoff events, group membership changes, password policy violations, […]

The post Best Active Directory Monitoring Tools – 2024 appeared first on Cyber Security News.