NSA Releases EliteWolf GitHub Repository for Securing OT Environments
The National Security Agency released a code repository in GitHub to make it easier for critical infrastructure organizations and similar entities to better identify and detect potentially malicious activities in their operational technology (OT) environments. The agency announced this week that it released the repository for OT Intrusion Detection Signatures ... Read More
SEC is Investigating Progress Software in Wake of MOVEit Attacks
Progress Software is now adding an investigation by the U.S. Securities and Exchange Commission to its growing list of legal and financial headaches stemming from the massive hack of its MOVEit file transfer tool that has affected more than 2,500 organizations over the past five months. In a regulatory filing ... Read More
Hackers Still Abusing LinkedIn Smart Links in Phishing Attacks
Email security firm Cofense in 2022 uncovered a phishing campaign that abused LinkedIn’s Smart Links feature to redirect unsuspecting victims to malicious websites, another example of bad actors using a trusted source to bypass security measures and reach users. At the time, hackers were using the phishing campaign to convince ... Read More
Microsoft Defender Brings Automated Attack Disruption to Endpoints
Microsoft’s Defender for Endpoint can now stop ransomware and other human-operated cyberattacks by automatically isolating a compromised device to keep the bad actors from being able to move laterally through a targeted organization’s network. The tool, which is on by default, can do this without the enterprise having to use ... Read More
GNOME Libcue Flaw is a Risk to Linux Systems
A flaw in a relatively obscure component of the popular GNOME desktop environment for Linux could allow bad actors to gain control of the system if exploited ... Read More
Cloudflare, Google, AWS Battle Record-Setting ‘Rapid Reset’ DDoS Attacks
Cloud giants Amazon Web Services, Google, and Cloudflare are warning about a novel zero-day vulnerability in the HTTP/2 protocol that allows threat groups to launch massive distributed denial-of-service (DDoS) attacks that dwarf previous record-setting incidents. All three companies this morning unveiled details of the flaw – tracked as CVE-2023-44487 – ... Read More
Heads Up: Patch for ‘Worst Curl Security Flaw’ Coming This Week
Developers who use the popular curl open-source data transfer tool will be able to patch two vulnerabilities in the software on October 11, one of which the lead developer called the “worst curl security flaw in a long time.” Daniel Stenberg, who also is the original author of curl, earlier ... Read More
FTC: Americans lost $2.7 Billion Since 2021 to Social Media Scams
Americans lost a whopping $2.7 billion in scams that reached them via social media, and the actual figure could be much higher, according to the Federal Trade Commission (FTC). Of those who reported losing money to fraud over the past two years, 25% said the problem started on social media, ... Read More
A Growing Cyberwar in the Widening Israeli-Hamas Conflict
The unprecedented assault by Hamas on Israel over the weekend brought with it cyberattacks by a number of known threat groups, echoing what was seen in the runup and aftermath of Russia’s invasion of Ukraine early last year. It’s a reminder that wars going forward will be fought on multiple ... Read More
Google, Yahoo to Put Tighter Spam Restrictions on Bulk Senders
Email giants Google and Yahoo are putting tighter requirements on bulk email senders in hopes of reducing the massive amounts of spam that hammer inboxes every day and deflecting the phishing and other cyberthreats that hide within it. Google’s AI-enabled email defense systems every day block almost 15 billion unwanted ... Read More
