Cyber Defense Advisors

Cyber News

  • by
  • November 2, 2022

Multiple Vulnerabilities Reported in Checkmk IT Infrastructure Monitoring Software

Multiple vulnerabilities have been disclosed in Checkmk IT Infrastructure monitoring software that could be chained together by an unauthenticated, remote attacker to fully take over affected servers.  “These vulnerabilities can be chained together by an unauthenticated, remote attacker to gain code execution on the server running Checkmk version 2.1.0p10 and lower,” SonarSource researcher

Cyber News, Cyber Threat Trends
  • by
  • November 2, 2022

WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED!

ACM.99 Verifying that you are making an SSH connection to the host you think you are This is a continuation of my series of posts on Automating Cybersecurity Metrics. Have you ever been logging into an host and seen this error message and wondered what it meant? Or maybe this one? There are many good posts o this […]

Cyber News, Cyber Threat Trends
  • by
  • November 2, 2022

Inside Raccoon Stealer V2

Raccoon Stealer is back on the news again. US officials arrested Mark Sokolovsky, one of the malware actors behind this program. In July 2022, after several months of the shutdown, a Raccoon Stealer V2 went viral. Last week, the Department of Justice’s press release stated that the malware collected 50 million credentials. This article will […]

Cyber News, Cyber Threat Trends
  • by
  • November 2, 2022

These Android Apps with a Million Play Store Installations Redirect Users to Malicious Sites

A set of four Android apps released by the same developer has been discovered directing victims to malicious websites as part of an adware and information-stealing campaign. The apps, published by a developer named Mobile apps Group and currently available on the Play Store, have been collectively downloaded over one million times. According to Malwarebytes, the websites are […]

Cyber News, Cyber Threat Trends
  • by
  • November 2, 2022

Experts Warn of SandStrike Android Spyware Infecting Devices via Malicious VPN App

A previously undocumented Android spyware campaign has been found striking Persian-speaking individuals by masquerading as a seemingly harmless VPN application. Russian cybersecurity firm Kaspersky is tracking the campaign under the moniker SandStrike. It has not been attributed to any particular threat group. “SandStrike is distributed as a means to access resources about the Bahá’í religion 

Cyber News, Cyber Threat Trends

Mobile Phishing Attacks on Government Staff Soar

Lookout report finds over-reliance on unmanaged devices

Cyber News, Cyber Threat Trends
  • by
  • November 2, 2022

Scores in cybersecurity consistently miss the goal

Yes, your home brew, too Continue reading on The CISO Den »

Cyber News, Cyber Threat Trends
  • by
  • November 2, 2022

Netacea launches malicious bot intelligence service to help customers tackle threats

Cybersecurity vendor Netacea has announced the launch of a new Business Logic Intelligence Service (BLIS) designed to give customers actionable insight to help them tackle malicious bot activity and security threats. The firm said that the tiered, fee-based service will provide organizations with bot threat intelligence based on research including analysis of dark web forums […]

Cyber News, Cyber Threat Trends

OpenSSL Security Advisory Downgraded to High Severity

Experts still recommend patching affected systems

Cyber News, Cyber Threat Trends