Month: June 2024
Cybersecurity researchers have shed more light on a Chinese actor codenamed SecShow that has been observed conducting Domain Name System (DNS) on a global scale since at least June 2023. The adversary, according to Infoblox security researchers Dr. Renée Burton and Dave Mitchell, operates from the China Education and Research Network (CERNET), a project funded…
Read More
AWS has added support for FIDO2 passkeys, a passwordless authentication method under the Fast Identity Online (FIDO) framework, for multifactor authentication — and will soon make MFA mandatory for signing in to AWS accounts. “Beginning in July 2024, root users of standalone accounts — those that aren’t managed with AWS Organizations — will be required to…
Read More
Microsoft has released the Windows Server 2022 KB5039227 and Windows Server 2019 KB5039217 cumulative updates with security fixes and fixes for a variety of bugs. These updates are mandatory as they are part of Microsoft’s June 2024 Patch Tuesday and contain security updates for 51 vulnerabilities. Windows Server KB5039217 updateSource: BleepingComputer The Windows Server 2019…
Read More
1Critical 48Important 0Moderate 0Low Microsoft addresses 49 CVEs in its June 2024 Patch Tuesday release with one rated as critical and no zero-day or publicly disclosed vulnerabilities. Our counts omitted two CVEs that were not issued by Microsoft, which include CVE-2023-50868 (issued by MITRE) and CVE-2024-29187 (issued by GitHub). Microsoft patched 49 CVEs in its…
Read MoreCISA released six Industrial Control Systems (ICS) advisories on June 11, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations. Source link lol
Read More
Microsoft today released updates to fix more than 50 security vulnerabilities in Windows and related software, a relatively light Patch Tuesday this month for Windows users. The software giant also responded to a torrent of negative feedback on a new feature of Redmond’s flagship operating system that constantly takes screenshots of whatever users are doing…
Read More
Jun 11, 2024The Hacker NewsEndpoint Security / Incident Response Managed service providers (MSPs) are on the front lines of soaring demand for cybersecurity services as cyberattacks increase in volume and sophistication. Cynet has emerged as the security vendor of choice for MSPs to capitalize on existing relationships with SMB clients and profitably expand their client…
Read More
‘We have developed this marketplace with one goal in mind, your success,’ says Libby McIlhany, chief product officer for Pax8. ‘We’re giving you the keys to the kingdom of easy-to-use tools and AI insights designed to save you time and accelerate the growth of your business.’ Pax8 has unveiled the next generation of its revamped…
Read More
In a previous blog, we discussed how the “businessification” of cybercrime has coalesced around tried and true tools, techniques, and procedures, giving us a solid understanding of how these attacks happen. Security product vendors have made massive strides in developing capabilities to detect criminals carrying out their attacks; however, it’s not a perfect solution. If…
Read More
Max McCoy stumbled on a $47 million swindle that starts just north of the Oklahoma panhandle and bounces to Australia before things get really confusing in a haze of small town corruption, secretive law enforcement and competing theories. On the surface, this story is just another pig butchering scam, but is that because it’s actually…
Read More