June 2024 - Page 4 of 62 - Cyber Security News

Memory Dump Analysis: Using LiME for Acquisition and Volatility for Initial Setup

The content of this post is solely the responsibility of the author. LevelBlue does not adopt or endorse any of the views, positions, or information...

June 27, 2024

Advisories

USN-6856-1: FontForge vulnerabilities

It was discovered that FontForge incorrectly handled filenames. If a user or an automated system were tricked into opening a specially crafted input file, a...

June 27, 2024

News

IT Leaders Are Fifty-Fifty on Using GenAI For Cybersecurity

Corelight study claims many IT leaders see benefit of GenAI but similar share are concerned about data exposure Read More

June 27, 2024

News

US charges four FIN9-linked hackers after $71 million cybercrime spree

Four alleged members of the FIN9 cybercrime gang have been charged in relation to a series of hacks that caused over US $71 million of...

June 27, 2024

News

Chinese State Actors Use Ransomware to Conceal Real Intent

A new report warns that Chinese APT groups are using ransomware to conceal cyber-espionage activity Read More

June 27, 2024

Advisories

Polyfill.io Supply Chain Attack

What is the attack?Over 100,000+ sites have been impacted by a supply chain attack involving the Polyfill.io service. Polyfill is a popular tool used for...

June 27, 2024

Advisories

USN-6854-1: OpenSSL vulnerability

It was discovered that OpenSSL failed to choose an appropriately short private key size when computing shared-secrets in the Diffie-Hellman Key Agreement Protocol. A remote...

June 27, 2024

Advisories

DSA-5723-1 plasma-workspace – security update

Fabian Vogt discovered that the KDE session management server insufficiently restricted ICE connections from localhost, which could allow a local attacker to execute arbitrary code...

June 27, 2024

News

Smashing Security podcast #378: Julian Assange, inside a DDoS attack, and deepfake traumas

Wikileaks's Julian Assange is a free man, deepfakes cause trouble in the playground, and we hear hot takes about ransomware and tales from inside a...

June 26, 2024

Advisories

python-waitress-1.4.3-2.el7

FEDORA-EPEL-2024-1682369c61 Packages in this update: python-waitress-1.4.3-2.el7 Update description: Backport upstream fix for CVE-2022-24761. https://github.com/advisories/GHSA-4f7p-27jc-3c36 Read More

June 26, 2024

Palo Alto Networks Confirms New Zero-Day Being Exploited by Threat Actors

Bitfinex Hacker Jailed for Five Years Over Billion Dollar Crypto Heist

watchTowr Finds New Zero-Day Vulnerability in Fortinet Products

Good Essay on the History of Bad Password Policies

Ransomware Groups Use Cloud Services For Data Exfiltration

O2’s AI Granny Outsmarts Scam Callers with Knitting Tales

Safeguarding Healthcare Organizations from IoMT Risks

An Interview With the Target & Home Depot Hacker

Sitting Ducks DNS Attacks Put Global Domains at Risk

Month: June 2024

Memory Dump Analysis: Using LiME for Acquisition and Volatility for Initial Setup

USN-6856-1: FontForge vulnerabilities

IT Leaders Are Fifty-Fifty on Using GenAI For Cybersecurity

US charges four FIN9-linked hackers after $71 million cybercrime spree

Chinese State Actors Use Ransomware to Conceal Real Intent

Polyfill.io Supply Chain Attack

USN-6854-1: OpenSSL vulnerability

DSA-5723-1 plasma-workspace – security update

Smashing Security podcast #378: Julian Assange, inside a DDoS attack, and deepfake traumas

python-waitress-1.4.3-2.el7