ICS Network Controllers Open to Remote Exploit, No Patches Available
CISA advisory warns of critical ICS device flaws, but a lack of available fixes leaves network administrators on defense to prevent exploits.
darkreading – Read More
GPT-4 Can Exploit Most Vulns Just by Reading Threat Advisories
Existing AI technology can allow hackers to automate exploits for public vulnerabilities in minutes flat. Very soon, diligent patching will no longer be optional.
darkreading – Read More
Cisco Warns of Massive Surge in Password-Spraying Attacks on VPNs
Attackers are indiscriminately targeting VPNs from Cisco and several other vendors in what may be a reconnaissance effort, the vendor says.
darkreading – Read More
Android could soon protect you from malicious apps by quarantining them
Quarantining an Android app will hide its screens and notifications, prevent it from ringing your device, and make sure its services can’t be called by other apps.
Latest stories for ZDNET in Security – Read More
Kaspersky Study: Devices Infected With Data-Stealing Malware Increased by 7 Times Since 2020
Nearly 10 million devices were infected with data-stealing malware in 2023, with criminals stealing an average of 50.9 credentials per device.
Security | TechRepublic – Read More
US Government and OpenSSF Partner on New SBOM Management Tool
Protobom, the new open source software tool, will help all organizations read and generate SBOMs and file data, as well as translate this data across standard industry SBOM formats.
Cyware News – Latest Cyber News – Read More
Global Police Operation Disrupts ‘LabHost’ Phishing Service, Over 30 Arrested Worldwide
As many as 37 individuals have been arrested as part of an international crackdown on a cybercrime service called LabHost that has been used by criminal actors to steal personal credentials from victims around the world.
Cyware News – Latest Cyber News – Read More
SAP Applications Increasingly in Attacker Crosshairs, Report Shows
Malicious hackers are targeting SAP applications at an alarming pace, according to warnings from Onapsis and Flashpoint.
The post SAP Applications Increasingly in Attacker Crosshairs, Report Shows appeared first on SecurityWeek.
SecurityWeek – Read More
OfflRouter Malware Evades Detection in Ukraine for Almost a Decade
Select Ukrainian government networks have remained infected with a malware called OfflRouter since 2015.
Cisco Talos said its findings are based on an analysis of over 100 confidential documents that were infected with the VBA macro virus and uploaded to the VirusTotal malware scanning platform.
“The documents contained VBA code to drop and run an executable with the name ‘ctrlpanel.exe,'”
The Hacker News – Read More
United Nations Agency Investigating Ransomware Attack Involving Data Theft
United Nations Development Programme (UNDP) investigating a ransomware attack in which hackers stole sensitive data.
The post United Nations Agency Investigating Ransomware Attack Involving Data Theft appeared first on SecurityWeek.
SecurityWeek – Read More