SubSnipe: Open-Source Tool for Finding Subdomains Vulnerable to Takeover

/in

SubSnipe is an open-source tool designed to identify vulnerable subdomains at risk of takeover. Created by Florian Walter, the tool offers improved accuracy and efficiency compared to other similar tools by conducting additional verification steps.

Cyware News – Latest Cyber News – ​Read More

MarineMax Notifying 123,000 of Data Breach Following Ransomware Attack

/in

Boat dealer MarineMax said the data breach caused by a recent ransomware attack impacts over 123,000 individuals.

The post MarineMax Notifying 123,000 of Data Breach Following Ransomware Attack appeared first on SecurityWeek.

SecurityWeek – ​Read More

Mysterious Chinese Hacking Group ‘GhostEmperor’ Spotted for First Time in Two Years

/in

Security firm Sygnia revealed that GhostEmperor recently compromised a network, using it as a launchpad to access another victim’s systems. This marks the first public report on the group since it was identified by Kaspersky Lab in 2021.

Cyware News – Latest Cyber News – ​Read More

Ransomware Costs at Critical Infrastructure Organizations Soar

/in

According to Sophos, ransomware attacks on critical national infrastructure (CNI) organizations have seen a significant increase in costs over the past year, with the median ransom payments reaching $2.54 million.

Cyware News – Latest Cyber News – ​Read More

Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says

/in

Teixeira, who was part of the 102nd Intelligence Wing at Otis Air National Guard Base in Massachusetts, worked as a cyber transport systems specialist.

The post Pentagon Leaker Jack Teixeira to Face Military Court-Martial, Air Force Says appeared first on SecurityWeek.

SecurityWeek – ​Read More

Port Shadow Attack Allows VPN Traffic Interception, Redirection

/in

Researchers show how the Port Shadow technique against VPNs can allow MitM attacks, enabling threat actors to intercept and redirect traffic. 

The post Port Shadow Attack Allows VPN Traffic Interception, Redirection appeared first on SecurityWeek.

SecurityWeek – ​Read More

Cisco SSM On-Prem Bug Lets Hackers Change Any User’s Password

/in

Tracked as CVE-2024-20419, the flaw enables remote attackers to set new passwords without authentication. Admins are advised to upgrade to the fixed release to protect vulnerable servers, as there are no workarounds available.

Cyware News – Latest Cyber News – ​Read More

Rising Tides: Alyssa Miller on ‘Do Better, be Better’ and ‘See Past the Technology’ to Advance Cybersecurity

/in

Miller has been in cybersecurity for roughly 20 years and is now the CISO of Epiq Global.

The post Rising Tides: Alyssa Miller on ‘Do Better, be Better’ and ‘See Past the Technology’ to Advance Cybersecurity appeared first on SecurityWeek.

SecurityWeek – ​Read More

Cisco Patches Critical Vulnerabilities in Secure Email Gateway, SSM

/in

Cisco has released patches for critical vulnerabilities in Secure Email Gateway and Smart Software Manager On-Prem.

The post Cisco Patches Critical Vulnerabilities in Secure Email Gateway, SSM appeared first on SecurityWeek.

SecurityWeek – ​Read More

IPVanish vs ExpressVPN (2024): Which VPN Is Better?

/in

Which VPN is better, IPVanish or ExpressVPN? Use our guide to compare pricing, features and more.

Security | TechRepublic – ​Read More