InfoSec News 20240517
Top News
-
Palo Alto Networks is buying security assets from IBM to expand customer base
"Palo Alto Networks is acquiring IBM's QRadar cloud security software assets and migrating existing customers to its own Cortex XSIAM platform, as part of a broader partnership that will give Palo Alto access to consultants and a larger customer base."
TLP1 : Green
-
Apple and Google join forces to stop unwanted tracking
"Apple and Google have joined forces to develop an industry specification that will allow users across iOS and Android to be alerted if a Bluetooth tracking device is being used to unknowingly track their location."
TLP1 : Green
-
Alkira Raises $100M in Series C Funding to Simplify, Secure and Scale Critical Network Infrastructure
"Alkira, a leader in on-demand network infrastructure as-a-service, has raised $100 million in Series C funding to further expand its innovative platform that simplifies, secures, and scales critical network infrastructure for enterprises."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Brothers arrested for $25 million theft in Ethereum blockchain attack
"Two brothers, Anton Peraire-Bueno and James Pepaire-Bueno, were arrested for allegedly manipulating the Ethereum blockchain and stealing $25 million worth of cryptocurrency within approximately 12 seconds in a "first-of-its-kind" scheme."
TLP1 : Green
-
UK NCSC to Defend ‘High-Risk’ Political Candidates from Cyberattacks
"The Personal Internet Protection (PIP) service aims to provide an additional layer of security to individuals at “high-risk” of cyberattacks like spear-phishing, malware and other threats, ahead of the upcoming election year."
TLP1 : Green
-
Tornado Cash co-founder convicted of laundering $1.2 billion by Dutch court
"The co-founder of the cryptocurrency anonymizing service Tornado Cash, Alexey Pertsev, was convicted by a Dutch court of money laundering $1.2 billion and sentenced to five years and four months in prison."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
MediSecure e-script firm hit by ‘large-scale’ ransomware data breach
"Electronic prescription provider MediSecure in Australia has shut down its website and phone lines following a ransomware attack believed to originate from a third-party vendor."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Threat actors misusing Quick Assist in social engineering attacks leading to ransomware
"Cybercriminals are exploiting Microsoft's Quick Assist tool to conduct social engineering attacks and deliver ransomware like Black Basta to target users across various industries."
TLP1 : Green
-
Flaw in Wi-Fi Standard Can Enable SSID Confusion Attacks
"Attackers can exploit the issue to trick users into connecting to insecure networks, but it works only under specific conditions."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Save $95 on a 65+ course cybersecurity training library
"Cybersecurity is increasingly diverse and complex as a topic, and you need a training library that can keep you up to date with a wide range of topics. The Master Cyber Security 65+ Course Certification Bundle gives you an instant training library you can tap into at any time."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Payload Trends in Malicious OneNote Samples
"In this post, we look at the types of embedded payloads that attackers leverage to abuse Microsoft OneNote files. Our analysis of roughly 6,000 malicious OneNote samples from WildFire reveals that these samples have a phishing-like theme where attackers use one or more images to lure people into clicking or interacting with OneNote files. The interaction then executes an embedded malicious payload."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.