All Safe

All Safe https://www.allissafe.com We help companies to be prepared for real cyber attacks. Sun, 17 Dec 2023 18:54:56 +0200 en-EN hourly 1 https://www.allissafe.com/assets/img/favicon/favicon-32x32.png All Safe https://www.allissafe.com 32 32 17 December 2023 https://www.allissafe.com/articole/17-december-2023/ MongoDB's breach underscores the persistent threat of unauthorized access to corporate systems, potentially exposing sensitive customer information. The exploitation of an RCE vulnerability in QNAP VioStor NVR devices by the InfectedSlurs botnet highlights Sun, 17 Dec 2023 18:54:56 +0200 https://www.allissafe.com/articole/17-december-2023/ 16 December 2023 https://www.allissafe.com/articole/16-december-2023/ Ex-Amazon Engineer Pleads Guilty to Crypto Exchange Hacks. CISA Urges Manufacturers to Cease Default Password Practices. Threat Actors Employ Fingerprinting Techniques to Bypass Google's Security. Cyberattack Impacts Lesotho's Central Bank, Disrupting Nati Sat, 16 Dec 2023 16:03:31 +0200 https://www.allissafe.com/articole/16-december-2023/ 15 December 2023 https://www.allissafe.com/articole/15-december-2023/ MITRE Introduces EMB3D for Critical Infrastructure Threat Modeling. Ten New Android Banking Trojans Target Nearly 1K Bank Apps. Delta Dental Data Breach Exposes Data of 7 Million Individuals. Fri, 15 Dec 2023 19:02:16 +0200 https://www.allissafe.com/articole/15-december-2023/ 14 December 2023 https://www.allissafe.com/articole/14-december-2023/ EU's Proposed eIDAS 2.0 Raises Security Concerns. Scammers Employ Google Forms in BazarCall Attacks. Supply Chain Attack on Ledger dApp Steals $600K in Cryptocurrency. Microsoft Seizes Domains Linked to Fraudulent Outlook Account Sales. Thu, 14 Dec 2023 19:51:03 +0200 https://www.allissafe.com/articole/14-december-2023/ 13 December 2023 https://www.allissafe.com/articole/13-december-2023/ Microsoft Warns of OAuth-Based Attacks. DonorView Data Exposure of One Million Records. UK Ministry of Defence Fined for Afghan Evacuation Data Breach. Data Breach at Dubai’s Largest Taxi App, DTC. Ukraine Claims Cyberattack on Russia’s State Tax Service. Wed, 13 Dec 2023 15:56:52 +0200 https://www.allissafe.com/articole/13-december-2023/ 12 December 2023 https://www.allissafe.com/articole/12-december-2023/ Sophos Backports RCE Fix for Unsupported Firewalls. Ransomware Attack on Ukraine's Largest Mobile Carrier, Kyivstar. Code Repository Wiping Results in 2-Year Prison Sentence. pfSense and WordPress Exposed to Remote Code Execution (RCE) Attacks Tue, 12 Dec 2023 21:41:58 +0200 https://www.allissafe.com/articole/12-december-2023/ 11 December 2023 https://www.allissafe.com/articole/11-december-2023/ Researchers Bypass Android Lock Screen Using Driving Mode Assistant. AutoSpill Attack Steals Passwords From Password Managers. Kelvin Security Hacking Group Leader Arrested in Spain. Russian Hackers Exploiting Outlook Zero-day to Attack NATO Member Countri Mon, 11 Dec 2023 19:40:39 +0200 https://www.allissafe.com/articole/11-december-2023/ 10 December 2023 https://www.allissafe.com/articole/10-december-2023/ Over 30% of Log4J Apps Use a Vulnerable Version of the Library. Researchers Exploited GOG Galaxy XPC for Privilege Escalation in macOS. New iPhone Hack Convinces Users With Fake Lockdown Mode. Mon, 11 Dec 2023 19:29:33 +0200 https://www.allissafe.com/articole/10-december-2023/ 09 December 2023 https://www.allissafe.com/articole/09-december-2023/ Norton Healthcare Discloses Data Breach After May Ransomware Attack. Researchers Automated Jailbreaking of LLMs With Other LLMs. Bypassing Major EDRs Using Pool Party Process Injection Techniques. Hackers Hit Erris Water in Stance Over Israel. Privilege El Sat, 09 Dec 2023 15:15:42 +0200 https://www.allissafe.com/articole/09-december-2023/ 08 December 2023 https://www.allissafe.com/articole/08-december-2023/ Russian Military Hackers Target NATO Fast Reaction Corps. Meta Rolls Out Default End-to-End Encryption on Messenger, Facebook. Progress Software Discloses Two New CVEs in MOVEit. MrAnon Stealer Spreads via Email with Fake Hotel Booking PDF. Fri, 08 Dec 2023 15:20:50 +0200 https://www.allissafe.com/articole/08-december-2023/ 07 December 2023 https://www.allissafe.com/articole/07-december-2023/ New SLAM Attack Steals Sensitive Data from AMD, Future Intel CPUs. Threat Actors Can Leverage AWS STS to Infiltrate Cloud Accounts. ENISA Publishes Threat Landscape Report on DoS Attacks. Deutsche Wohnen Ruling Set to Drive Up GDPR Fines. Govts Spy on Appl Thu, 07 Dec 2023 10:43:51 +0200 https://www.allissafe.com/articole/07-december-2023/ 06 December 2023 https://www.allissafe.com/articole/06-december-2023/ Vulnerabilities Impact Critical Infrastructure Routers. Atlassian Releases Critical Software Fixes to Prevent Remote Code Execution. Federal Agency Breached Through Adobe ColdFusion Vulnerability. Kali Linux 2023.4 Released with GNOME 45 and 15 New Tools. Wed, 06 Dec 2023 13:28:34 +0200 https://www.allissafe.com/articole/06-december-2023/ 05 December 2023 https://www.allissafe.com/articole/05-december-2023/ Russian Hackers Exploiting Outlook Bug to Hijack Exchange Accounts. PDF Phishing: Beyond the Bait. December Android Updates Fix Critical Zero-Click RCE Flaw. Tipalti Investigates Claims of Data Stolen in Ransomware Attack. Tue, 05 Dec 2023 06:45:00 +0200 https://www.allissafe.com/articole/05-december-2023/ 04 December 2023 https://www.allissafe.com/articole/04-december-2023/ The European Space Agency Explores Cybersecurity for Space Industry. Linux Version of Qilin Ransomware Focuses on VMware ESXi. Astrology Website WeMystic Exposes Over 13 Million User Records. Mon, 04 Dec 2023 14:25:06 +0200 https://www.allissafe.com/articole/04-december-2023/ 03 December 2023 https://www.allissafe.com/articole/03-december-2023/ Apple Patches WebKit Flaws Exploited on Older iPhones. OpenAI’s Custom Chatbots Are Leaking Their Secrets. Notepad++ Input Validation Flaws Lead to Uncontrolled Search Path Vulnerability. Russian Hacker Vladimir Dunaev Convicted for Creating TrickBot Malwa Sun, 03 Dec 2023 17:13:00 +0200 https://www.allissafe.com/articole/03-december-2023/ 02 December 2023 https://www.allissafe.com/articole/02-december-2023/ Over 20,000 Vulnerable Microsoft Exchange Servers Exposed to Attacks. US Health Dept Urges Hospitals to Patch Critical Citrix Bleed Bug. TrickBot Malware Developer Pleads Guilty, Faces 35 Years in Prison. Hackers Use New Agent Raccoon Malware to Backdoor U Sat, 02 Dec 2023 01:25:51 +0200 https://www.allissafe.com/articole/02-december-2023/ 01 December 2023 https://www.allissafe.com/articole/01-december-2023/ Zero-Day Alert: Apple Rolls Out iOS, macOS, and Safari Patches for 2 Actively Exploited Flaws. WhatsApp's New Secret Code Feature Hides Your Locked Chats. Capital Health Hospitals hit by cyberattack causing IT outages. Fri, 01 Dec 2023 12:21:05 +0200 https://www.allissafe.com/articole/01-december-2023/ 30 November 2023 https://www.allissafe.com/articole/30-november-2023/ North Korea's Lazarus Group Generates $3 Billion from Crypto Hacks. Black Basta Ransomware Nets Over $100 Million in Extortion. Hackers Exploit US Water Facility via Exposed PLCs. CACTUS Ransomware Exploits Qlik Sense Vulnerabilities. Thu, 30 Nov 2023 23:45:09 +0200 https://www.allissafe.com/articole/30-november-2023/ 29 November 2023 https://www.allissafe.com/articole/29-november-2023/ Zero-Day Exploitation in Google Chrome. New Bluetooth Attack 'BLUFFS' Breaks Session Secrecy. Critical ownCloud Vulnerability Exploited by Hackers. Identity Attacks Rising, Verizon Report Indicates. Design Flaw in Google Workspace. Forced Authentication Vu Wed, 29 Nov 2023 23:41:26 +0200 https://www.allissafe.com/articole/29-november-2023/ 28 November 2023 https://www.allissafe.com/articole/28-november-2023/ Ukraine Alleges Hacking of Russian Aviation Agency. North Korean Hackers' macOS Tactics Evolution. Microsoft Deprecates Defender Application Guard for Office. Police Dismantle Global Ransomware Group. Ransomware Strikes Indie Game Maker. Tue, 28 Nov 2023 23:37:40 +0200 https://www.allissafe.com/articole/28-november-2023/ 27 November 2023 https://www.allissafe.com/articole/27-november-2023/ Google Drive Users Report Data Loss. Passive Extraction of Private RSA Keys in SSH Connections. Secure AI System Development Guidelines Released. New Rust-Based SysJoker Backdoor Tied to Hamas. Mon, 27 Nov 2023 23:35:26 +0200 https://www.allissafe.com/articole/27-november-2023/ 26 November 2023 https://www.allissafe.com/articole/26-november-2023/ General Electric Investigates Alleged Cyber Attack. Atomic Stealer Malware Targets macOS Through Fake Updates. New 'HrServ.dll' Web Shell Detected in APT Attack on Afghan Government. Sun, 26 Nov 2023 23:32:51 +0200 https://www.allissafe.com/articole/26-november-2023/ 25 November 2023 https://www.allissafe.com/articole/25-november-2023/ Critical Vulnerabilities in ownCloud Raise Data Breach Risk. ownCloud File Sharing App Exposes Admin Passwords. CTS Cyberattack Affects Multiple UK Law Firms. Sat, 25 Nov 2023 23:30:46 +0200 https://www.allissafe.com/articole/25-november-2023/ 24 November 2023 https://www.allissafe.com/articole/24-november-2023/ Hamas-Linked SysJoker Backdoor Targets Israel. Exposed Kubernetes Secrets in Public Repositories Pose Threat. Konni Group Deploys Russian-Language Malicious Word Docs. Black Friday Deal on Zero2Automated Malware Analysis Course. Fri, 24 Nov 2023 23:28:29 +0200 https://www.allissafe.com/articole/24-november-2023/ 23 November 2023 https://www.allissafe.com/articole/23-november-2023/ Windows Hello Authentication Bypassed on Microsoft, Dell, Lenovo Laptops. Welltok Data Breach Exposes 8.5 Million US Patients' Data. Microsoft Alerts: Lazarus Hackers Breach CyberLink in Supply Chain Attack. Kansas Courts Confirm Cyberattack Led to Data Th Thu, 23 Nov 2023 23:22:58 +0200 https://www.allissafe.com/articole/23-november-2023/ 22 November 2023 https://www.allissafe.com/articole/22-november-2023/ LockBit Ransomware Exploiting Critical Citrix Bleed Vulnerability. Microsoft Introduces Defender Bounty Program with Rewards Up to $20,000. CISA Directs Federal Agencies to Patch Looney Tunables Linux Bug. AutoZone Alerts Customers of MOVEit Data Breach. Wed, 22 Nov 2023 23:20:15 +0200 https://www.allissafe.com/articole/22-november-2023/ 21 November 2023 https://www.allissafe.com/articole/21-november-2023/ NetSupport RAT Infections Targeting Multiple Sectors. Mustang Panda Targets Philippines Government Amid South China Sea Tensions. Canadian Government Data Breach After Contractor Hacks. Tor Project Removes Risky Network Relays. Tue, 21 Nov 2023 23:09:22 +0200 https://www.allissafe.com/articole/21-november-2023/ 20 November 2023 https://www.allissafe.com/articole/20-november-2023/ Randstorm Exploit: Vulnerability in 2011-2015 Bitcoin Wallets. Indian Hack-for-Hire Group Targeted U.S., China, and More for Over 10 Years Mon, 20 Nov 2023 23:06:19 +0200 https://www.allissafe.com/articole/20-november-2023/ 19 November 2023 https://www.allissafe.com/articole/19-november-2023/ Exploit for CrushFTP RCE chain released, patch now. 8Base Group Deploying New Phobos Ransomware Variant via SmokeLoader. Google shares plans for blocking third-party cookies in Chrome. Windows 10 to let admins control how optional updates are deployed. Sun, 19 Nov 2023 23:03:33 +0200 https://www.allissafe.com/articole/19-november-2023/ 18 November 2023 https://www.allissafe.com/articole/18-november-2023/ Google: Hackers exploited Zimbra zero-day in attacks on govt orgs. CISA warns of actively exploited Windows, Sophos, and Oracle bugs. The Week in Ransomware - November 17th 2023 - Citrix in the Crosshairs. British Library: Ongoing outage caused by ransomwa Sat, 18 Nov 2023 23:00:20 +0200 https://www.allissafe.com/articole/18-november-2023/ 17 November 2023 https://www.allissafe.com/articole/17-november-2023/ CISA Adds Three Security Flaws with Active Exploitation to KEV Catalog. Hackers Could Exploit Google Workspace and Cloud Platform for Ransomware Attacks. FBI shares tactics of notorious Scattered Spider hacker collective. Fri, 17 Nov 2023 22:57:32 +0200 https://www.allissafe.com/articole/17-november-2023/ 16 November 2023 https://www.allissafe.com/articole/16-november-2023/ Russian Hackers Linked to 'Largest Ever Cyber Attack' on Danish Critical Infrastructure. Ransomware gang files SEC complaint over victim’s undisclosed breach. Samsung hit by new data breach impacting UK store customers. Thu, 16 Nov 2023 22:54:46 +0200 https://www.allissafe.com/articole/16-november-2023/ 15 November 2023 https://www.allissafe.com/articole/15-november-2023/ New Intel CPU Vulnerability Impacts Multi-Tenant Virtualized Environments. Microsoft Releases Patch Updates for 5 New Zero-Day Vulnerabilities. VMware Warns of Unpatched Critical Cloud Director Vulnerability. Wed, 15 Nov 2023 22:47:03 +0200 https://www.allissafe.com/articole/15-november-2023/ 14 November 2023 https://www.allissafe.com/articole/14-november-2023/ Vietnamese Hackers Using New Delphi-Powered Malware to Target Indian Marketers. CISA Sets a Deadline - Patch Juniper Junos OS Flaws. Ethereum Feature Abused to Steal $60 Million from 99K Victims. Tue, 14 Nov 2023 21:55:13 +0200 https://www.allissafe.com/articole/14-november-2023/