April 17, 2024 - Cyber Security News

Smashing Security podcast #368: Gary Barlow, and a scam turns deadly

Take That's Gary Barlow chats up a pizza-slinging granny from Essex via Facebook, or does he? And a scam takes a sinister turn - for...

April 17, 2024

Advisories

golang-opentelemetry-contrib-1.17.0-2.fc41 golang-opentelemetry-otel-1.17.0-1.fc41

FEDORA-2024-971a3a4ef7 Packages in this update: golang-opentelemetry-contrib-1.17.0-2.fc41 golang-opentelemetry-otel-1.17.0-1.fc41 Update description: Update opentelemetry stack to 1.17 Read More

April 17, 2024

Advisories

Oracle Quarterly Critical Patches Issued April 16, 2024

Multiple vulnerabilities have been discovered in Oracle products, the most severe of which could allow for remote code execution. Read More

April 17, 2024

News

Redline Stealer: A Novel Approach

A new packed variant of the Redline Stealer trojan was observed in the wild, leveraging Lua bytecode to perform malicious behavior. McAfee telemetry data shows...

April 17, 2024

Advisories

Multiple Vulnerabilities in Ivanti Avalanche Could Allow for Remote Code Execution

Multiple vulnerabilities have been discovered in Ivanti Avalanche, the most severe of which could allow for remote code execution. Ivanti Avalanche is a mobile device...

April 17, 2024

Advisories

httpd-2.4.59-2.fc40

FEDORA-2024-937be154d8 Packages in this update: httpd-2.4.59-2.fc40 Update description: This update includes httpd version 2.4.59, fixing various security issues and bugs. See https://downloads.apache.org/httpd/CHANGES_2.4.59 for complete details...

April 17, 2024

Advisories

httpd-2.4.59-2.fc39

FEDORA-2024-d0dccd6b96 Packages in this update: httpd-2.4.59-2.fc39 Update description: This update includes httpd version 2.4.59, fixing various security issues and bugs. See https://downloads.apache.org/httpd/CHANGES_2.4.59 for complete details...

April 17, 2024

News

Linux Cerber Ransomware Variant Exploits Atlassian Servers

The attacks exploit CVE-2023-22518, a critical flaw in Atlassian Confluence Data Center and Server Read More

April 17, 2024

News

North Korean Group Kimsuky Exploits DMARC and Web Beacons

Proofpoint confirmed Kimsuky has directly contacted foreign policy experts since 2023 through seemingly benign email conversations Read More

April 17, 2024

Advisories

USN-6729-2: Apache HTTP Server vulnerabilities

USN-6729-1 fixed several vulnerabilities in Apache. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: Orange Tsai...

April 17, 2024

Friday Squid Blogging: Squid Sticker

Italy’s Data Protection Watchdog Issues €15m Fine to OpenAI Over ChatGPT Probe

Ukraine’s Security Service Probes GRU-Linked Cyber-Attack on State Registers

LockBit Admins Tease a New Ransomware Version

Webcams and DVRs Vulnerable to HiatusRAT, FBI Warns

CISA Urges Encrypted Messaging After Salt Typhoon Hack

Ransomware Attackers Target Industries with Low Downtime Tolerance

Web Hacking Service ‘Araneida’ Tied to Turkish IT Firm

US Organizations Still Using Kaspersky Products Despite Ban

Day: April 17, 2024

Smashing Security podcast #368: Gary Barlow, and a scam turns deadly

golang-opentelemetry-contrib-1.17.0-2.fc41 golang-opentelemetry-otel-1.17.0-1.fc41

Oracle Quarterly Critical Patches Issued April 16, 2024

Redline Stealer: A Novel Approach

Multiple Vulnerabilities in Ivanti Avalanche Could Allow for Remote Code Execution

httpd-2.4.59-2.fc40

httpd-2.4.59-2.fc39

Linux Cerber Ransomware Variant Exploits Atlassian Servers

North Korean Group Kimsuky Exploits DMARC and Web Beacons

USN-6729-2: Apache HTTP Server vulnerabilities