Threat Note – Page 1852 – Aggregating Cyber Insights

News

From Dark Reading – Hackers For Hire Hit Both Sides in Israel-Hamas Conflict

DDoS for hire and live attacks hit both sides as cyber campaigns continue. Read More

Samir K October 10, 2023

News

From Dark Reading – How Keyloggers Have Evolved From the Cold War to Today

Keyloggers have been used for espionage since the days of the typewriter, but today's threats are easier to get and use than ever. Read More

Samir K October 10, 2023

Toolkit

From Cyber Security News – New APT Group Using Custom Malware to Attack Manufacturing & IT Industries

An unidentified APT group deployed custom malware and public tools to target organizations in Taiwan’s following sectors:- This campaign also targeted a government agency in the Pacific Islands, along with…

Samir K October 10, 2023

News

From Dark Reading – North Korea’s State-Sponsored APTs Organize & Align

An unprecedented collaboration by various APTs within the DPKR makes them harder to track, setting the stage for aggressive, complex cyberattacks that demand strategic response efforts, Mandiant warns. Read More

Samir K October 10, 2023

News

From Cyber Security News – Hackers Exploiting Citrix NetScaler Vulnerability to Steal User Credentials

Threat actors were attacking unpatched NetScaler Gateways using the vulnerability classified as CVE-2023-3519 to inject malicious script into the HTML of the authentication web page and steal user credentials. With a…

Samir K October 10, 2023

Vulnerabilities

From The Hacker News – HTTP/2 Rapid Reset Zero-Day Vulnerability Exploited to Launch Record DDoS Attacks

Amazon Web Services (AWS), Cloudflare, and Google on Tuesday said they took steps to mitigate record-breaking distributed denial-of-service (DDoS) attacks that relied on a novel technique called HTTP/2 Rapid Reset. The layer 7 attacks were detected in late August 2023, the companies said in a coordinated disclosure. The cumulative susceptibility to this attack is being tracked as CVE-2023-44487,

Samir K October 10, 2023

Articles

From Graham Cluley – Hacktivists send fake nuclear attack warning via Israeli Red Alert app

Hackers have exploited a flaw in a widely-used app that warns of missile attacks against Israel to send a fake alert that a nuclear strike is imminent. Read more in…

Samir K October 10, 2023

News

From Dark Reading – Old-School Attacks Are Still a Danger, Despite Newer Techniques

The cold, hard truth? Cybercriminals are still perpetuating plenty of unsophisticated attacks for a simple reason: They work. Read More

Samir K October 10, 2023

Vulnerabilities

From Cybersecurity Help – New Grayling APT targets IT and biomedical sectors in Taiwan

One of the most interesting aspects of the campaign is the use of a distinctive DLL sideloading technique. Read More

Samir K October 10, 2023

News

From The Hacker News – Google Adopts Passkeys as Default Sign-in Method for All Users

Google on Tuesday announced the ability for all users to set up passkeys by default, five months after it rolled out support for the FIDO Alliance-backed passwordless standard for Google Accounts on all platforms. "This means the next time you sign in to your account, you'll start seeing prompts to create and use passkeys, simplifying your future sign-ins," Google's Sriram Karra and Christiaan

Samir K October 10, 2023

Vulnerabilities

From Cybersecurity Help – Hello Kitty ransomware source code leaked on cybercrime forum

The released source code is the legitimate 2020 HelloKitty version used when the ransomware operation was first launched. Read More

Samir K October 10, 2023

News

From Cyber Security News – U.S. Army Sergeant Arrested for Spying Secrets to China: DoJ

In a shocking turn of events, a former U.S. Army Sergeant, Joseph Daniel Schmidt, has been arrested and indicted on charges of attempting to deliver national defense information and retaining…

Samir K October 10, 2023

News

From Cyber Security News – ChatGPT, FraudGPT, and WormGPT Plays A Vital Role in Social Engineering Attacks

Generative AI models like ChatGPT, FraudGPT, and WormGPT bring innovation and new challenges in cybersecurity’s evolution. These generative AI models revolutionize cyberattacks, enabling personalized phishing, deepfakes, and cognitive bias exploitation,…

Samir K October 10, 2023

Articles

From Schneier on Security – Model Extraction Attack on Neural Networks

Adi Shamir et al. have a new model extraction attack on neural networks: Polynomial Time Cryptanalytic Extraction of Neural Network Models Abstract: Billions of dollars and countless GPU hours are…

Samir K October 10, 2023

Research

From The Hacker News – New Report: Child Sexual Abuse Content and Online Risks to Children on the Rise

Certain online risks to children are on the rise, according to a recent report from Thorn, a technology nonprofit whose mission is to build technology to defend children from sexual abuse. Research shared in the Emerging Online Trends in Child Sexual Abuse 2023 report, indicates that minors are increasingly taking and sharing sexual images of themselves. This activity may occur consensually or

Samir K October 10, 2023

From Security Week – Cisco Patches High-Severity Vulnerabilities in Enterprise Products

From Cyber Security News – Hackers Abuse Google Ads to Steal Users GoDaddy ManageWP login Credentials

From Schneier on Security – Smart Glasses for the Authorities

From Security Week – Gemini CLI Vulnerability Could Have Led to Code Execution, Supply Chain Attack

From Cyber Security News – 28 Fake Call History Apps on Google Play with 7.3M+ Downloads Trick Users to Steal Payments

From Cyber Security News – Malicious NuGet Packages Target Browser Credentials, SSH Keys, and Crypto Wallets

From The Hacker News – PyPI Packages Deliver ZiChatBot Malware via Zulip APIs on Windows and Linux

From Cyber Security News – Critical vm2 Node.js Library Vulnerabilities Enables Arbitrary Code Execution Attacks

From Cyber Security News – Hackers Used Claude AI to Attack on Water and Drainage Utility Systems

From Cyber Security News – Critical Ollama Memory Leak Vulnerability Exposes 300,000 Servers Globally

From Security Week – Cisco Patches High-Severity Vulnerabilities in Enterprise Products

From Cyber Security News – Hackers Abuse Google Ads to Steal Users GoDaddy ManageWP login Credentials

From Schneier on Security – Smart Glasses for the Authorities

From Security Week – Gemini CLI Vulnerability Could Have Led to Code Execution, Supply Chain Attack

From Cyber Security News – 28 Fake Call History Apps on Google Play with 7.3M+ Downloads Trick Users to Steal Payments

From Cyber Security News – Malicious NuGet Packages Target Browser Credentials, SSH Keys, and Crypto Wallets

From Dark Reading – Hackers For Hire Hit Both Sides in Israel-Hamas Conflict

From Dark Reading – How Keyloggers Have Evolved From the Cold War to Today

From Dark Reading – North Korea’s State-Sponsored APTs Organize & Align

From Cyber Security News – Hackers Exploiting Citrix NetScaler Vulnerability to Steal User Credentials

From The Hacker News – HTTP/2 Rapid Reset Zero-Day Vulnerability Exploited to Launch Record DDoS Attacks

From Graham Cluley – Hacktivists send fake nuclear attack warning via Israeli Red Alert app

From Dark Reading – Old-School Attacks Are Still a Danger, Despite Newer Techniques

From Cybersecurity Help – New Grayling APT targets IT and biomedical sectors in Taiwan

From The Hacker News – Google Adopts Passkeys as Default Sign-in Method for All Users

From Cybersecurity Help – Hello Kitty ransomware source code leaked on cybercrime forum

From Cyber Security News – U.S. Army Sergeant Arrested for Spying Secrets to China: DoJ

From Cyber Security News – ChatGPT, FraudGPT, and WormGPT Plays A Vital Role in Social Engineering Attacks

From Schneier on Security – Model Extraction Attack on Neural Networks

From The Hacker News – New Report: Child Sexual Abuse Content and Online Risks to Children on the Rise

From Security Week – Cisco Patches High-Severity Vulnerabilities in Enterprise Products

From Cyber Security News – Hackers Abuse Google Ads to Steal Users GoDaddy ManageWP login Credentials

From Schneier on Security – Smart Glasses for the Authorities

From Security Week – Gemini CLI Vulnerability Could Have Led to Code Execution, Supply Chain Attack