Wednesday, January 31, 2024

Tuesday, January 30, 2024

Cyberattack disrupts IT systems in Fulton County, Georgia - StateScoop

Cyberattack disrupts IT systems in Fulton County, Georgia  StateScoop


http://dlvr.it/T267zy

URGENT: Upgrade GitLab - Critical Workspace Creation Flaw Allows File Overwrite

GitLab once again released fixes to address a critical security flaw in its Community Edition (CE) and Enterprise Edition (EE) that could be exploited to write arbitrary files while creating a workspace.
Tracked as CVE-2024-0402, the vulnerability has a CVSS score of 9.9 out of a maximum of 10.
"An issue has been discovered in GitLab CE/EE affecting all versions from 16.0 prior to


http://dlvr.it/T25x4Z

Senators Introduce Cybersecurity Agriculture Bill - Transport Topics

Senators Introduce Cybersecurity Agriculture Bill  Transport Topics


http://dlvr.it/T25Ryt

Comic anthology about cyber professionals by cyber professionals - Axios

Comic anthology about cyber professionals by cyber professionals  Axios


http://dlvr.it/T25RnB

New ZLoader Malware Variant Surfaces with 64-bit Windows Compatibility

Threat hunters have identified a new campaign that delivers the ZLoader malware, resurfacing nearly two years after the botnet's infrastructure was dismantled in April 2022.
A new variant of the malware is said to have been in development since September 2023, Zscaler ThreatLabz said in an analysis published this month.
"The new version of Zloader made significant changes to the loader


http://dlvr.it/T24gf9

Monday, January 29, 2024

Juniper Networks Releases Urgent Junos OS Updates for High-Severity Flaws

Juniper Networks has released out-of-band updates to address high-severity flaws in SRX Series and EX Series that could be exploited by a threat actor to take control of susceptible systems.
The vulnerabilities, tracked as CVE-2024-21619 and CVE-2024-21620, are rooted in the J-Web component and impact all versions of Junos OS. Two other shortcomings, CVE-2023-36846 and


http://dlvr.it/T23Ydd

'Relatively few' agency policies met standards for IoT security, OMB reports - Nextgov/FCW

'Relatively few' agency policies met standards for IoT security, OMB reports  Nextgov/FCW


http://dlvr.it/T23Lp8

Be the Royal Family's Cybersecurity Manager, and get a cut-price honey dipper! - Graham Cluley

Be the Royal Family's Cybersecurity Manager, and get a cut-price honey dipper!  Graham Cluley


http://dlvr.it/T22sW0

Top 10 Cybersecurity Threats to Be Wary of in 2024 - Techopedia

Top 10 Cybersecurity Threats to Be Wary of in 2024  Techopedia


http://dlvr.it/T22sKh

Malicious PyPI Packages Slip WhiteSnake InfoStealer Malware onto Windows Machines

Cybersecurity researchers have identified malicious packages on the open-source Python Package Index (PyPI) repository that deliver an information stealing malware called WhiteSnake Stealer on Windows systems.
The malware-laced packages are named nigpal, figflix, telerer, seGMM, fbdebug, sGMM, myGens, NewGends, and TestLibs111. They have been uploaded by a threat actor named "WS."
"These


http://dlvr.it/T226n9

Sunday, January 28, 2024

France: ransomware investigations on the rise again - InCyber

France: ransomware investigations on the rise again  InCyber


http://dlvr.it/T20r4c

Data Privacy Day: The Data Privacy Enforcement Changes Impacting Firms - Infosecurity Magazine

Data Privacy Day: The Data Privacy Enforcement Changes Impacting Firms  Infosecurity Magazine


http://dlvr.it/T20qxl

Cybersecurity As Relatable As Possible (#4)— Hackers | by Cyb3r Philosoph3r 🌐 | Jan, 2024 - Medium

Cybersecurity As Relatable As Possible (#4)— Hackers | by Cyb3r Philosoph3r 🌐 | Jan, 2024  Medium


http://dlvr.it/T20STp

10 Best Network Security Providers for Ecommerce - 2024 - CybersecurityNews

10 Best Network Security Providers for Ecommerce - 2024  CybersecurityNews


http://dlvr.it/T20SPQ

Cyber security and AI: Should machines be included in your training program? - Security Boulevard

Cyber security and AI: Should machines be included in your training program?  Security Boulevard


http://dlvr.it/T1zxV3

Saturday, January 27, 2024

Wareham Public Schools Named Recipient of 2024 Municipal Cybersecurity Awareness Training Grant - John Guilfoil Public Relations LLC

Wareham Public Schools Named Recipient of 2024 Municipal Cybersecurity Awareness Training Grant  John Guilfoil Public Relations LLC


http://dlvr.it/T1z27h

Cybersecurity Tips for Your Business | Columns | jacksonvilleprogress.com - Jacksonville Daily Progress

Cybersecurity Tips for Your Business | Columns | jacksonvilleprogress.com  Jacksonville Daily Progress


http://dlvr.it/T1yt6C

For the Pacific Northwest National Laboratory cybersecurity starts with research and zero trust - Federal News Network

For the Pacific Northwest National Laboratory cybersecurity starts with research and zero trust  Federal News Network


http://dlvr.it/T1ygZ4

Massachusetts Hospital Faces Class Action Over Christmas Cyber Attack - Insurance Journal

Massachusetts Hospital Faces Class Action Over Christmas Cyber Attack  Insurance Journal


http://dlvr.it/T1yQK7

AllaKore RAT Malware Targeting Mexican Firms with Financial Fraud Tricks

Mexican financial institutions are under the radar of a new spear-phishing campaign that delivers a modified version of an open-source remote access trojan called AllaKore RAT.
The BlackBerry Research and Intelligence Team attributed the activity to an unknown Latin American-based financially motivated threat actor. The campaign has been active since at least 2021.
"Lures use Mexican Social


http://dlvr.it/T1y772

Friday, January 26, 2024

MSFT, CRWD, PANW: Which Cybersecurity Stock is Best for 2024? - TipRanks.com - TipRanks

MSFT, CRWD, PANW: Which Cybersecurity Stock is Best for 2024? - TipRanks.com  TipRanks


http://dlvr.it/T1x8ds

Data theft plaguing K-12 schools after holiday season attacks - The Record from Recorded Future News

Data theft plaguing K-12 schools after holiday season attacks  The Record from Recorded Future News


http://dlvr.it/T1wysS

Guess the company: Takes your DNA, blames you when criminals steal it, can’t spot a cyberattack for 5 months - The Register

Guess the company: Takes your DNA, blames you when criminals steal it, can’t spot a cyberattack for 5 months  The Register


http://dlvr.it/T1wjrq

"Mother of All Breaches" Data Leak Pulls Together 26 Billion Records From Thousands of Prior Breaches - CPO Magazine

"Mother of All Breaches" Data Leak Pulls Together 26 Billion Records From Thousands of Prior Breaches  CPO Magazine


http://dlvr.it/T1wPTV

Critical Cisco Flaw Lets Hackers Remotely Take Over Unified Comms Systems

Cisco has released patches to address a critical security flaw impacting Unified Communications and Contact Center Solutions products that could permit an unauthenticated, remote attacker to execute arbitrary code on an affected device.
Tracked as CVE-2024-20253 (CVSS score: 9.9), the issue stems from improper processing of user-provided data that a threat actor could abuse to send a


http://dlvr.it/T1w0JK

Thursday, January 25, 2024

Florida Bill Proposes Safe Harbor Against Breach Suits to Businesses Maintaining Recognized Cybersecurity Programs - The National Law Review

Florida Bill Proposes Safe Harbor Against Breach Suits to Businesses Maintaining Recognized Cybersecurity Programs  The National Law Review


http://dlvr.it/T1tF54

Sweden Riksbank Turns to Police After Ransomware Hits Tietoevry - Bloomberg

Sweden Riksbank Turns to Police After Ransomware Hits Tietoevry  Bloomberg


http://dlvr.it/T1tDvk

NCSC Warns That AI is Already Being Used by Ransomware Gangs - tripwire.com

NCSC Warns That AI is Already Being Used by Ransomware Gangs  tripwire.com


http://dlvr.it/T1svjk

SystemBC Malware's C2 Server Analysis Exposes Payload Delivery Tricks

Cybersecurity researchers have shed light on the command-and-control (C2) server of a known malware family called SystemBC.
"SystemBC can be purchased on underground marketplaces and is supplied in an archive containing the implant, a command-and-control (C2) server, and a web administration portal written in PHP," Kroll said in an analysis published last week.
The risk and


http://dlvr.it/T1svPK

5379 GitLab Servers are Vulnerable to Zero-Click Account Takeover Attacks - CybersecurityNews

5379 GitLab Servers are Vulnerable to Zero-Click Account Takeover Attacks  CybersecurityNews


http://dlvr.it/T1sTdy

Wednesday, January 24, 2024

Denmark allocates €12 million for cyber security in Ukraine's Armed Forces and Defence Ministry within IT coalition - Yahoo News

Denmark allocates €12 million for cyber security in Ukraine's Armed Forces and Defence Ministry within IT coalition  Yahoo News


http://dlvr.it/T1qjHY

RichmondCC designated a leader in cyber security education - The Richmond Observer

RichmondCC designated a leader in cyber security education  The Richmond Observer


http://dlvr.it/T1qj44

Are YOU being snooped on if you use airport WiFi? Cyber security experts warn authorities could be monitoring - Daily Mail

Are YOU being snooped on if you use airport WiFi? Cyber security experts warn authorities could be monitoring  Daily Mail


http://dlvr.it/T1qN3s

Healthcare cybersecurity: Our hospital’s path to better cyber resilience - CIO

Healthcare cybersecurity: Our hospital’s path to better cyber resilience  CIO


http://dlvr.it/T1qMr2

Urgent call for cyber defence as AI-Driven Ransomware attacks surge, warns NCSC - Business MattersBusiness Matters

Urgent call for cyber defence as AI-Driven Ransomware attacks surge, warns NCSC  Business MattersBusiness Matters


http://dlvr.it/T1pyQ6

Wednesday, January 3, 2024

DOJ Slams XCast with $10 Million Fine Over Massive Illegal Robocall Operation

The U.S. Department of Justice (DoJ) on Tuesday said it reached a settlement with VoIP service provider XCast over allegations that it facilitated illegal telemarketing campaigns since at least January 2018, in contravention of the Telemarketing Sales Rule (TSR).
In addition to prohibiting the company from violating the law, the stipulated order requires it to meet other compliance measures,


http://dlvr.it/T0vsdp

Tuesday, January 2, 2024

US water utilities targeted by foreign hackers, prompting calls for cybersecurity overhaul - Fox News

US water utilities targeted by foreign hackers, prompting calls for cybersecurity overhaul  Fox News


http://dlvr.it/T0tj7L

I almost shared my security details doing Instagram’s latest trend, it’s a hacker’s dream, delete yours now... - The US Sun

I almost shared my security details doing Instagram’s latest trend, it’s a hacker’s dream, delete yours now...  The US Sun


http://dlvr.it/T0tWhB

States and Congress wrestle with cybersecurity after Iran attacks Pittsburgh-area water authority - CBS Pittsburgh

States and Congress wrestle with cybersecurity after Iran attacks Pittsburgh-area water authority  CBS Pittsburgh


http://dlvr.it/T0tHx6

Tom Purcell: The urgency to become cyber-secure in 2024 - The Daily Freeman

Tom Purcell: The urgency to become cyber-secure in 2024  The Daily Freeman


http://dlvr.it/T0tHnw

Google Settles $5 Billion Privacy Lawsuit Over Tracking Users in 'Incognito Mode'

Google has agreed to settle a lawsuit filed in June 2020 that alleged that the company misled users by tracking their surfing activity who thought that their internet use remained private when using the “incognito” or “private” mode on web browsers.
The class-action lawsuit sought at least $5 billion in damages. The settlement terms were not disclosed.
The plaintiffs had


http://dlvr.it/T0sf2J

SLED / FED Virtual Cybersecurity Summit - CISO MAG

SLED / FED Virtual Cybersecurity Summit  CISO MAG http://dlvr.it/TB1n1g