Aggregator

Агентство советует переходить на защищённые мессенджеры со сквозным шифрованием.

Bij een brand op de Prinses Margrietkazerne in Wezep is een loods verwoest. 9 Defensiemedewerkers hadden klachten na het inademden van rook. 1 van hen liep lichte brandwonden op. Na medische controles mochten ze weer naar huis. De hulpdiensten waren snel ter plaatse. De brand is inmiddels onder controle.

BADBOX is a cybercriminal operation infecting Android devices like TV boxes and smartphones with malware before sale, which are often sold through reputable retailers and pose a significant threat to users due to their pre-installed malicious software, making detection challenging. It previously thought eradicated has resurfaced with a significantly expanded reach, infecting over 192,000 Android […]

The post BADBOX Botnet Hacked 74,000 Android Devices With Customizable Remote Codes appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability classified as critical was found in University of Washington Pine 4.0.4/4.10/4.21. This vulnerability affects unknown code of the component FROM Handler. The manipulation leads to memory corruption. This vulnerability was named CVE-2000-0909. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Legit Security announced enhancements to its secrets scanning product. Available as either a stand-alone product or as part of a broader ASPM platform, Legit released a new secrets dashboard for an integrated view of all findings and recovery actions taken to remediate secrets. In addition, Legit released new discovery and remediation capabilities for secrets found within developers’ personal GitHub repositories. Secrets – from API keys and tokens to credentials and PII – play a vital … More →

The post Legit Security provides insights into the enterprise’s secrets posture appeared first on Help Net Security.

A vulnerability classified as problematic has been found in libgtop 2.14.5. This affects the function glibtop_get_proc_map_s. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2007-0235. It is possible to launch the attack on the local host. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

IntroductionDuring a recent incident response, Kaspersky’s GERT team identified a set

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation.

• CVE-2024-12356 BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) Command Injection Vulnerability

These types of vulnerabilities are frequent attack vectors for malicious cyber actors and pose significant risks to the federal enterprise.

Binding Operational Directive (BOD) 22-01: Reducing the Significant Risk of Known Exploited Vulnerabilities established the Known Exploited Vulnerabilities Catalog as a living list of known Common Vulnerabilities and Exposures (CVEs) that carry significant risk to the federal enterprise. BOD 22-01 requires Federal Civilian Executive Branch (FCEB) agencies to remediate identified vulnerabilities by the due date to protect FCEB networks against active threats. See the BOD 22-01 Fact Sheet for more information.

Although BOD 22-01 only applies to FCEB agencies, CISA strongly urges all organizations to reduce their exposure to cyberattacks by prioritizing timely remediation of Catalog vulnerabilities as part of their vulnerability management practice. CISA will continue to add vulnerabilities to the catalog that meet the specified criteria.

CISA released eight Industrial Control Systems (ICS) advisories on December 19, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-24-354-01 Hitachi Energy RTU500 series CMU
• ICSA-24-354-02 Hitachi Energy SDM600
• ICSA-24-354-03 Delta Electronics DTM Soft
• ICSA-24-354-04 Siemens User Management Component
• ICSA-24-354-05 Tibbo AggreGate Network Manager
• ICSA-24-354-06 Schneider Electric Accutech Manager
• ICSA-24-354-07 Schneider Electric Modicon Controllers
   
• ICSMA-24-354-01 Ossur Mobile Logic Application

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

As the year comes to a close, NIST continues to engage with our international partners to strengthen cybersecurity, including sharing over ten new international translations in over six languages as resources for our stakeholders around the world. These efforts were complemented by discussions on opportunities for future enhanced international collaboration and resource sharing. Here are some updates from the past few months: Our international engagement continues through our support to the Department of State and the International Trade Administration (ITA) during numerous international

Cybersecurity firm Recorded Future has been listed as an “undesirable” organization by the Prosecutor General's Office of the Russian Federation

[This is a Guest Diary by Sahil Shaikh, an ISC intern as part of the SANS.edu BACS program]Introd

Крупнейшие компании мира стали жертвами уязвимости на сервере производителя GPS-трекеров.

Europol has published a groundbreaking report titled “Leveraging Legitimacy: How the EU’s Most Threatening Criminal Networks Abuse Legal Business Structures.”  The report uncovers the alarming extent to which organized crime groups exploit legitimate business structures to strengthen their power, evade law enforcement, and expand their illegal activities. Building on the findings of its April 2024 study, “Decoding […]

The post Europol Details on How Cyber Criminals Exploit legal businesses for their Economy appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

A vulnerability classified as very critical has been found in University of Minnesota Gopherd 2.3/2.3.1. This affects an unknown part of the component GDESkey Request Handler. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2000-0743. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

De aanhoudende (militaire) conflicten en geopolitieke spanningen in verschillende delen van de wereld leggen ook in 2025 een grote druk op de nationale veiligheid en maatschappelijke weerbaarheid. Tegelijkertijd vraagt ook de dreiging in Nederland van terrorisme, extremisme en criminele ondermijning volgend jaar om voortdurende alertheid. De AIVD doet daarbij zijn werk steeds meer in het grijze gebied waarin landen opereren tussen conflict en vrede. Het kabinet investeert daarom in de capaciteit van de AIVD en intensiveert met name extra in onderzoeken naar China en criminele ondermijning. Dat schrijft minister Uitermark (BZK) in de jaarplanbrief die vandaag naar de Tweede Kamer is gestuurd.

A vulnerability was suspected in Linux Kernel up to 5.10.145/5.15.67/5.19.8. Further investigation has shown that this issues is a false-positive. Please review the sources mentioned and consider not using this entry at all.

A vulnerability was found in Button Block Plugin up to 1.1.5 on WordPress. It has been rated as problematic. This issue affects some unknown processing of the component Post Handler. The manipulation leads to information disclosure. The identification of this vulnerability is CVE-2024-12560. The attack may be initiated remotely. There is no exploit available.

A vulnerability classified as critical has been found in Download Manager Plugin up to 3.3.03 on WordPress. Affected is an unknown function. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2024-11768. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was suspected in Linux Kernel up to 5.15.9/5.15.13. This issue was flagged as a false-positive. Please consult the sources mentioned and consider not using this entry at all.