lemmydev2

joined 1 year ago
sorted by: new top controversial old
1
Ivanti warns critical flaws in Endpoint Manager exploited in the wild (www.scworld.com)
 

Ivanti is advising administrators to get up to date on their patches following a new spell of exploits against Endpoint Manager (EPM).

1
Recently patched CUPS flaw can be used to amplify DDoS attacks (www.bleepingcomputer.com)
 

A recently disclosed vulnerability in the Common Unix Printing System (CUPS) open-source printing system can be exploited by threat actors to launch distributed denial-of-service (DDoS) attacks with a 600x amplification factor. [...]

1
Thousands of Linux systems infected by stealthy malware since 2021 (arstechnica.com)
 

The ability to remain installed and undetected makes Perfctl hard to fight.

1
Cybercriminals capitalize on poorly configured cloud environments (www.helpnetsecurity.com)
 

Off-the-shelf offensive security tools and poorly configured cloud environments create openings in the attack surface, according to Elastic. Adversaries are utilizing off-the-shelf tools Offensive security tools (OSTs), including Cobalt Strike and Metasploit, made up ~54% of observed malware alerts. The most prevalent malware family observed this year was Cobalt Strike, accounting for 27.02% of infections. Cobalt Strike is a very mature commercial post-exploitation framework with an experienced research and development team. It is so effective … More → The post Cybercriminals capitalize on poorly configured cloud environments appeared first on Help Net Security.

1
Supercon 2023: [Cory Doctorow] with an Audacious Plan to Halt the Internet’s Enshittification and Throw It Into Reverse (hackaday.com)
 

Those of us old enough to remember BBS servers or even rainbow banners often go down the nostalgia hole about how the internet was better “back in the day” than …read more

1
Over 4,000 Adobe Commerce, Magento shops hacked in CosmicSting attacks (www.bleepingcomputer.com)
 

Approximately 5% of all Adobe Commerce and Magento online stores, or 4,275 in absolute numbers, have been hacked in "CosmicSting" attacks. [...]

1
‘Pig butchering’ trading apps found on Google Play, App Store (www.bleepingcomputer.com)
 

Fake trading apps on Google Play and Apple's App Store lure victims into "pig butchering" scams that have a global reach. [...]

1
MAGA Election Official Sentenced to 9 Years for Giving Trump Goons Access to Voting Data (gizmodo.com)
 

The former county clerk suggested at her sentencing that God would get revenge against prosecutors because she's a "child of God."

1
Earth Is About to Get Hit By a Major Geomagnetic Storm (gizmodo.com)
 

While the storm could pose a threat to fragile electric systems, the National Oceanic and Atmospheric Administration says the danger is minor.

1
FIN7 hackers launch deepfake nude “generator” sites to spread malware (www.bleepingcomputer.com)
 

The notorious APT hacking group known as FIN7 launched a network of fake AI-powered deepnude generator sites to infect visitors with information-stealing malware. [...]

1
Harvard students make auto-doxxing smart glasses to show need for privacy regs (arstechnica.com)
 

Linking Meta smart glasses to a face search engine can ID strangers in a glance.

1
Record-Breaking DDoS Attack Peaked at 3.8 Tbps, 2.14 Billion Pps (www.securityweek.com)
 

Cloudflare recently mitigated another record-breaking DDoS attack, peaking at 3.8 Tbps and 2.14 billion Pps.  The post Record-Breaking DDoS Attack Peaked at 3.8 Tbps, 2.14 Billion Pps appeared first on SecurityWeek.

view more: next ›