March 2024 – Page 3 – Threat Note

From Security Week – 26 Security Issues Patched in TeamCity

[[{"value":"JetBrains patches 26 security issues in TeamCity and takes steps to avoid malicious exploitation of vulnerabilities. The post 26 Security Issues Patched in TeamCity appeared first on SecurityWeek."}]] Read More

Samir K March 29, 2024

News

From Cyber Security News – Multiple Splunk Vulnerabilities Attackers Bypass SPL Safeguards : Patch Now

[[{"value":"Splunk Inc. has disclosed two significant vulnerabilities within its software suite, posing a considerable risk to organizations utilizing Splunk Enterprise and Splunk Cloud Platform. The vulnerabilities, identified as CVE-2024-29945 and…

Samir K March 29, 2024

News

From The Hacker News – PyPI Halts Sign-Ups Amid Surge of Malicious Package Uploads Targeting Developers

The maintainers of the Python Package Index (PyPI) repository briefly suspended new user sign-ups following an influx of malicious projects uploaded as part of a typosquatting campaign. It said "new project creation and new user registration" was temporarily halted to mitigate what it said was a "malware upload campaign." The incident was resolved 10 hours later, on March 28, 2024, at

Samir K March 29, 2024

Toolkit

From Security Week – VP Harris Says US Agencies Must Show Their AI Tools Aren’t Harming People’s Safety or Rights

[[{"value":"U.S. federal agencies must show that their artificial intelligence tools aren’t harming the public, or stop using them, under new rules unveiled by the White House on Thursday. “When government…

Samir K March 29, 2024

Articles

From Krebs on Security – Thread Hijacking: Phishes That Prey on Your Curiosity

Thread hijacking attacks. They happen when someone you know has their email account compromised, and you are suddenly dropped into an existing conversation between the sender and someone else. These…

Samir K March 28, 2024

News

From Dark Reading – Cisco IOS Bugs Allow Unauthenticated, Remote DoS Attacks

Several Cisco products, including IOS, IOS XE, and AP software, need patching against various high-risk security vulnerabilities. Read More

Samir K March 28, 2024

Toolkit

From Dark Reading – Pervasive LLM Hallucinations Expand Code Developer Attack Surface

The tendency of popular AI-based tools to recommend nonexistent code libraries offers a bigger opportunity than thought to distribute malicious packages. Read More

Samir K March 28, 2024

News

From Security Week – Malware Upload Attack Hits PyPI Repository

[[{"value":"Maintainers of the Python Package Index (PyPI) repository were forced to suspend new project creation and new user registration to mitigate a malware upload campaign. The post Malware Upload Attack…

Samir K March 28, 2024

Toolkit

From Cyber Security News – GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

[[{"value":"GoPlus Labs, the leading Web3 security infrastructure provider, has unveiled a groundbreaking report that highlights the growing, widespread use and potential of Web3 user security data to aid in risk…

Samir K March 28, 2024

Breaches

From Dark Reading – Indian Government, Oil Companies Breached by ‘HackBrowserData’

The malicious actor used Slack channels as an exfiltration point to upload the stolen data. Read More

Samir K March 28, 2024

News

From The Hacker News – Linux Version of DinodasRAT Spotted in Cyber Attacks Across Several Countries

A Linux version of a multi-platform backdoor called DinodasRAT has been detected in the wild targeting China, Taiwan, Turkey, and Uzbekistan, new findings from Kaspersky reveal. DinodasRAT, also known as XDealer, is a C++-based malware that offers the ability to harvest a wide range of sensitive data from compromised hosts. In October 2023, Slovak cybersecurity firm ESET&nbsp

Samir K March 28, 2024

News

From The Hacker News – Finland Blames Chinese Hacking Group APT31 for Parliament Cyber Attack

The Police of Finland (aka Poliisi) has formally accused a Chinese nation-state actor tracked as APT31 for orchestrating a cyber attack targeting the country's Parliament in 2020. The intrusion, per the authorities, is said to have occurred between fall 2020 and early 2021. The agency described the ongoing criminal probe as both demanding and time-consuming, involving extensive analysis of a "

Samir K March 28, 2024

News

From Cyber Security News – C2A Security’s EVSec Risk Management and Automation Platform Gains Automotive Industry Favor as Companies Pursue Regulatory Compliance

[[{"value":"In 2023, C2A Security added multiple OEMs and Tier 1s to its portfolio of customers, successful evaluations, and partnerships such as BMW Group, Daimler Truck AG, Marelli, NTT Data, Siemens,…

Samir K March 28, 2024

Vulnerabilities

From Cybersecurity Help – Free VPN apps on Google Play turned Android devices into residential proxies

The threat actor behind this scheme profits by selling access to the residential proxy network to third parties. Read More

Samir K March 28, 2024

News

From Security Week – Splunk Patches Vulnerabilities in Enterprise Product

[[{"value":"Splunk patches high-severity vulnerabilities in Enterprise, including an authentication token exposure issue. The post Splunk Patches Vulnerabilities in Enterprise Product appeared first on SecurityWeek."}]] Read More

Samir K March 28, 2024