Search cyberveille.decio.ch

Found 49 bookmarks

Custom sorting

Hackers exploit Ivanti SSRF flaw to deploy new DSLog backdoor

Hackers are exploiting a server-side request forgery (SSRF) vulnerability in Ivanti Connect Secure, Policy Secure, and ZTA gateways to deploy the new DSLog backdoor on vulnerable devices.

#bleepingcomputer #EN #2024 #Backdoor #Ivanti #Malware #SSRF #Vulnerability #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Feb 13, 2024

Hackers exploit Ivanti SSRF flaw to deploy new DSLog backdoor

Ivanti: Patch new Connect Secure auth bypass bug immediately

Today, Ivanti warned of a new authentication bypass vulnerability impacting Connect Secure, Policy Secure, and ZTA gateways, urging admins to secure their appliances immediately.

#bleepingcomputer #EN #2024 #CVE-2024-22024 #Authentication-Bypass #Connect-Secure #Ivanti #Policy-Secure #Warning #Security #InfoSec #Computer-Security

·bleepingcomputer.com·Feb 8, 2024

Ivanti: Patch new Connect Secure auth bypass bug immediately

23andMe data breach: Hackers stole raw genotype data, health reports

Genetic testing provider 23andMe confirmed that hackers stole health reports and raw genotype data of customers affected by a credential stuffing attack that went unnoticed for five months, from April 29 to September 27. #23andMe #Breach #Computer #Credential #DNA #Data #Genetics #Health #InfoSec #Leak #Security #Stuffing

#bleepingcomputer #EN #2024 #Stuffing #Credential #InfoSec #Data #Genetics #Leak #DNA #Breach #Security #Computer #23andMe #Health

·bleepingcomputer.com·Jan 26, 2024

23andMe data breach: Hackers stole raw genotype data, health reports

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

Over 5,300 internet-exposed GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw GitLab warned about earlier this month.

#bleepingcomputer #EN #2024 #Account-Takeover #Alert #Exposed #GitLab #Password-Reset #Security #Vulnerability

·bleepingcomputer.com·Jan 24, 2024

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

MacOS info-stealers quickly evolve to evade XProtect detection

Multiple information stealers for the macOS platform have demonstrated the capability to evade detection even when security companies follow and report about new variants frequently.

#bleepingcomputer #EN #2024 #Information #Malware #Security #Apple #Evasion #Stealer #Info #XProtect #InfoSec #Computer #macOS

·bleepingcomputer.com·Jan 17, 2024

MacOS info-stealers quickly evolve to evade XProtect detection

Lockbit ransomware disrupts emergency care at German hospitals

German hospital network Katholische Hospitalvereinigung Ostwestfalen (KHO) has confirmed that recent service disruptions were caused by a Lockbit ransomware attack where the threat actors gained access to IT systems and encrypted devices on the network.

#bleepingcomputer #EN #2023 #Hospital #Computer #Ransomware #InfoSec #3.0 #Healthcare #Germany #Security #LockBit

·bleepingcomputer.com·Dec 30, 2023

Lockbit ransomware disrupts emergency care at German hospitals

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Lumma Stealer malware now uses trigonometry to evade detection

The Lumma information-stealing malware is now using an interesting tactic to evade detection by security software - the measuring of mouse movements using trigonometry to determine if the malware is running on a real machine or an antivirus sandbox.

#bleepingcomputer #EN #2023 #Anti-VM #Info-Stealer #Information-stealing-malware #Lumma #LummaC2 #Malware #Malware-as-a-Service #Security #detection

·bleepingcomputer.com·Nov 20, 2023

Lumma Stealer malware now uses trigonometry to evade detection

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Discord will switch to temporary file links to block malware delivery

Discord will switch to temporary file links for all users by the end of the year to block attackers from using its CDN (content delivery network) for hosting and pushing malware.

#bleepingcomputer #EN #2023 #Delivery #Computer #CDN #Security #InfoSec #Hyperlink #DMALocker #Content #Discord #Network

·bleepingcomputer.com·Nov 6, 2023

Discord will switch to temporary file links to block malware delivery

Massive cybercrime URL shortening service uncovered via DNS data

A threat actor that security researchers call Prolific Puma has been providing link shortening services to cybercriminals for at least four years while keeping a sufficiently low profile to operate undetected.

#bleepingcomputer #EN #2023 #Shortener #URL #NameSilo #Prolific #Computer #usTLD #DNS #Security #InfoSec #Puma #TLD

·bleepingcomputer.com·Nov 1, 2023

Massive cybercrime URL shortening service uncovered via DNS data

Atlassian warns of critical Confluence flaw leading to data loss

Australian software company Atlassian warned admins to immediately patch Internet-exposed Confluence instances against a critical security flaw that could lead to data loss following successful exploitation.

#bleepingcomputer #EN #2023 #Atlassian #Loss #Security #Data #Confluence

·bleepingcomputer.com·Oct 31, 2023

Atlassian warns of critical Confluence flaw leading to data loss

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.

#Bleepingcomputer #EN #2022 #Malware #Microsoft #Raspberry-Robin #raspberryrobin #USB #Windows #Worm #Security #Detection

·bleepingcomputer.com·Jul 3, 2022

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Suspected LockBit ransomware affiliate arrested, charged in US

Russian national Ruslan Magomedovich Astamirov was arrested in Arizona and charged by the U.S. Justice Department for allegedly deploying LockBit ransomware on the networks of victims in the United States and abroad.

#bleepingcomputer #EN #2023 #Affiliates #LockBit #Ransomware #Security #arrested

·bleepingcomputer.com·Jun 15, 2023

Suspected LockBit ransomware affiliate arrested, charged in US

Jenkins discloses dozens of zero-day bugs in multiple plugins

On Thursday, the Jenkins security team announced 34 security vulnerabilities affecting 29 plugins for the Jenkins open source automation server, 29 of the bugs being zero-days still waiting to be patched.

#bleepingcomputer #EN #2023 #CSRF #Jenkins #Vulnerability #XSS #Zero-Day #Security

·bleepingcomputer.com·Jan 5, 2023

Jenkins discloses dozens of zero-day bugs in multiple plugins

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

Microsoft says that a recently spotted Windows worm has been found on the networks of hundreds of organizations from various industry sectors.