Microsoft confirmed that an eight-hour outage on Tuesday affecting its Azure portal, Microsoft 365, and Microsoft Purview services was caused by a DDoS attack. The company mentioned that its response to the outage may have worsened the impact.
The malware was found monitoring OTP messages from over 600 global brands, with victims detected in 113 countries, including India, Russia, Brazil, Mexico, the U.S., Ukraine, Spain, and Turkey.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 11:06:422024-08-01 11:06:42SMS Stealer Targeting Several Countries with Over 100,000 Malicious Android Apps
Apple has released a critical zero-day patch for older Macs running macOS Monterey 12.7.6, addressing an actively exploited vulnerability (CVE-2024-23296). The flaw in Apple’s RTKit real-time OS could allow unauthorized access to kernel memory.
Meta has agreed to pay the State of Texas $1.4 billion in a settlement for unlawfully capturing and using biometric data of millions of Texans. This is the largest privacy settlement in US history.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 10:06:432024-08-01 10:06:43Meta to Pay Texas $1.4bn for Unlawful Biometric Data Capture
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 10:06:432024-08-01 10:06:43Get an Extensive Education in Cybersecurity for Just $40
Google has announced that it’s adding a new layer of protection to its Chrome browser through what’s called app-bound encryption to prevent information-stealing malware from grabbing cookies on Windows systems.
“On Windows, Chrome uses the Data Protection API (DPAPI) which protects the data at rest from other users on the system or cold boot attacks,” Will Harris from the Chrome security team
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 10:06:422024-08-01 10:06:42Google Chrome Adds App-Bound Encryption to Protect Cookies from Malware
Secretive is an open-source app that securely stores and manages SSH keys in the Secure Enclave for Macs. Storing keys in the Secure Enclave prevents copying or exporting by malicious users or malware, ensuring a higher level of security.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 10:06:422024-08-01 10:06:42Secretive: Open-Source App for Storing and Managing SSH Keys in the Secure Enclave
Lineaje has raised $20 million in a Series A funding round, led by Prosperity7 Ventures, Neotribe, and Hitachi Ventures, with Tenable Ventures also participating. This investment highlights the increasing demand for software supply chain security.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 09:06:512024-08-01 09:06:51Lineaje Secures $20 Million in Funding To Address Software Supply Chain Issues
EvilProxy, known as the “LockBit of phishing,” is a popular phishing kit used in over a million attacks each month. It allows cybercriminals to launch ransomware infections, steal data, and compromise business emails.
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png00https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png2024-08-01 09:06:512024-08-01 09:06:51EvilProxy Phishing Kit Used in Over One Million Attacks Monthly
BackBox.org offers a range of Penetration Testing services to simulate an attack on your network or application. If you are interested in our services, please contact us and we will provide you with further information as well as an initial consultation.
Microsoft Confirms Azure, 365 Outage Linked to DDoS Attack
/in General NewsMicrosoft confirmed that an eight-hour outage on Tuesday affecting its Azure portal, Microsoft 365, and Microsoft Purview services was caused by a DDoS attack. The company mentioned that its response to the outage may have worsened the impact.
Cyware News – Latest Cyber News – Read More
SMS Stealer Targeting Several Countries with Over 100,000 Malicious Android Apps
/in General NewsThe malware was found monitoring OTP messages from over 600 global brands, with victims detected in 113 countries, including India, Russia, Brazil, Mexico, the U.S., Ukraine, Spain, and Turkey.
Cyware News – Latest Cyber News – Read More
DigiCert Revoking 83,000 Certificates of 6,800 Customers
/in General NewsDigiCert has started revoking 83,000 certificates impacted by a validation issue, but critical infrastructure customers are asking for more time.
The post DigiCert Revoking 83,000 Certificates of 6,800 Customers appeared first on SecurityWeek.
SecurityWeek – Read More
Apple Extends Zero-Day Patch to Older Macs, Urges Immediate Update
/in General NewsApple has released a critical zero-day patch for older Macs running macOS Monterey 12.7.6, addressing an actively exploited vulnerability (CVE-2024-23296). The flaw in Apple’s RTKit real-time OS could allow unauthorized access to kernel memory.
Cyware News – Latest Cyber News – Read More
Meta to Pay Texas $1.4bn for Unlawful Biometric Data Capture
/in General NewsMeta has agreed to pay the State of Texas $1.4 billion in a settlement for unlawfully capturing and using biometric data of millions of Texans. This is the largest privacy settlement in US history.
Cyware News – Latest Cyber News – Read More
Get an Extensive Education in Cybersecurity for Just $40
/in General NewsThis extensive bundle includes nine courses and more than 50 hours of training in ethical hacking, Kali Linux, certification exams, and more.
Security | TechRepublic – Read More
Google Chrome Adds App-Bound Encryption to Protect Cookies from Malware
/in General NewsGoogle has announced that it’s adding a new layer of protection to its Chrome browser through what’s called app-bound encryption to prevent information-stealing malware from grabbing cookies on Windows systems.
“On Windows, Chrome uses the Data Protection API (DPAPI) which protects the data at rest from other users on the system or cold boot attacks,” Will Harris from the Chrome security team
The Hacker News – Read More
Secretive: Open-Source App for Storing and Managing SSH Keys in the Secure Enclave
/in General NewsSecretive is an open-source app that securely stores and manages SSH keys in the Secure Enclave for Macs. Storing keys in the Secure Enclave prevents copying or exporting by malicious users or malware, ensuring a higher level of security.
Cyware News – Latest Cyber News – Read More
Lineaje Secures $20 Million in Funding To Address Software Supply Chain Issues
/in General NewsLineaje has raised $20 million in a Series A funding round, led by Prosperity7 Ventures, Neotribe, and Hitachi Ventures, with Tenable Ventures also participating. This investment highlights the increasing demand for software supply chain security.
Cyware News – Latest Cyber News – Read More
EvilProxy Phishing Kit Used in Over One Million Attacks Monthly
/in General NewsEvilProxy, known as the “LockBit of phishing,” is a popular phishing kit used in over a million attacks each month. It allows cybercriminals to launch ransomware infections, steal data, and compromise business emails.
Cyware News – Latest Cyber News – Read More