Cyber Defense Advisors

Month: January 2024

Home / News / 2024 / January / Page 8
~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation
  • by
  • January 23, 2024

~40,000 Attacks in 3 Days: Critical Confluence RCE Under Active Exploitation

Malicious actors have begun to actively exploit a recently disclosed critical security flaw impacting Atlassian Confluence Data Center and Confluence Server, within three days of public disclosure. Tracked as CVE-2023-22527 (CVSS score: 10.0), the vulnerability impacts out-of-date versions of the software, allowing unauthenticated attackers to achieve remote code execution on susceptible installations. The shortcoming affects […]

Cyber News
Apple Issues Patch for Critical Zero-Day in iPhones, Macs
  • by
  • January 23, 2024

Apple Issues Patch for Critical Zero-Day in iPhones, Macs – Update Now

Apple on Monday released security updates for iOS, iPadOS, macOS, tvOS, and Safari web browser to address a zero-day flaw that has come under active exploitation in the wild. The issue, tracked as CVE-2024-23222, is a type confusion bug in the WebKit browser engine that could be exploited by a threat actor to achieve arbitrary […]

Cyber News
  • by
  • January 22, 2024

North Korean Hackers Weaponize Research Lures to Deliver RokRAT Backdoor

Media organizations and high-profile experts in North Korean affairs have been at the receiving end of a new campaign orchestrated by a threat actor known as ScarCruft in December 2023. “ScarCruft has been experimenting with new infection chains, including the use of a technical threat research report as a decoy, likely targeting consumers of threat […]

Cyber News
MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries
  • by
  • January 22, 2024

MavenGate Attack Could Let Hackers Hijack Java and Android via Abandoned Libraries

Several public and popular libraries abandoned but still used in Java and Android applications have been found susceptible to a new software supply chain attack method called MavenGate. “Access to projects can be hijacked through domain name purchases and since most default build configurations are vulnerable, it would be difficult or even impossible to know […]

Cyber News
With hackers poisoning water systems
  • by
  • January 22, 2024

With hackers poisoning water systems, US agencies issue incident response guide to boost cybersecurity

US federal agencies have teamed up to release a cybersecurity best practice guidance for the water and wastewater sector (WWS). Read more in my article on the Tripwire State of Security blog. 

Cyber News
  • by
  • January 22, 2024

AI Bots on X (Twitter)

You can find them by searching for OpenAI chatbot warning messages, like: “I’m sorry, I cannot provide a response as it goes against OpenAI’s use case policy.” I hadn’t thought about this before: identifying bots by searching for distinctive bot phrases. Tags: artificial intelligence, chatbots, identification, Twitter Sidebar photo of Bruce Schneier by Joe MacInnis. […]

Cyber News
NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers
  • by
  • January 22, 2024

NS-STEALER Uses Discord Bots to Exfiltrate Your Secrets from Popular Browsers

Cybersecurity researchers have discovered a new Java-based “sophisticated” information stealer that uses a Discord bot to exfiltrate sensitive data from compromised hosts. The malware, named NS-STEALER, is propagated via ZIP archives masquerading as cracked software, Trellix security researcher Gurumoorthi Ramanathan said in an analysis published last week. The ZIP file contains within it a rogue […]

Cyber News
52% of Serious Vulnerabilities We Find are Related to Windows 10
  • by
  • January 22, 2024

52% of Serious Vulnerabilities We Find are Related to Windows 10

We analyzed 2,5 million vulnerabilities we discovered in our customer’s assets. This is what we found. Digging into the data The dataset we analyze here is representative of a subset of clients that subscribe to our vulnerability scanning services. Assets scanned include those reachable across the Internet, as well as those present on internal networks. […]

Cyber News
FTC Bans InMarket for Selling Precise User Location Without Consent
  • by
  • January 22, 2024

FTC Bans InMarket for Selling Precise User Location Without Consent

The U.S. Federal Trade Commission (FTC) is continuing to clamp down on data brokers by prohibiting InMarket Media from selling or licensing precise location data. The settlement is part of allegations that the Texas-based company did not inform or seek consent from consumers before using their location information for advertising and marketing purposes. “InMarket will […]

Cyber News