Category: Kamban

Hackers have already compromised thousands of Palo Alto Networks firewalls in attacks exploiting two recently patched zero-day vulnerabilities. The two security flaws are an authentication bypass (CVE-2024-0012) in the PAN-OS management web interface that remote attackers can exploit to gain administrator privileges and a PAN-OS privilege escalation (CVE-2024-9474) that helps them run commands on the…

Read More

A new Linux backdoor called ‘WolfsBane’ has been discovered, believed to be a port of Windows malware used by the Chinese ‘Gelsemium’ hacking group. ESET security researchers who analyzed WolfsBane report that WolfsBane is a complete malware tool featuring a dropper, launcher, and backdoor, while it also uses a modified open-source rootkit to evade detection. The…

Read More

​Microsoft has released the November 2024 preview cumulative update for Windows 11 24H2, with 14 improvements and fixes for multiple issues, including some affecting File Explorer, the Clipboard history, and secondary displays. The KB5046740 update is part of Microsoft’s optional non-security preview updates schedule, pushed out on the fourth week of every month to help Windows…

Read More

Microsoft has confirmed that, since November 12, some Windows 10 users have been unable to update or uninstall packaged applications like Microsoft Teams. This known issue is caused by the WinAppSDK 1.6.2 package, which was automatically delivered to affected users’ systems after installing an app developed using Win App SDK. On impacted Windows 10 22H2…

Read More

The BianLian ransomware operation has shifted its tactics, becoming primarily a data theft extortion group, according to an updated advisory from the U.S. Cybersecurity & Infrastructure Security Agency, the FBI, and the Australian Cyber Security Centre. This new information comes in an update to a joint advisory released in May by the same agencies, which…

Read More

​Microsoft and the Justice Department have seized over 240 domains used by customers of ONNX, a phishing-as-a-service (PhaaS) platform, to target companies and individuals across the United States and worldwide since at least 2017. According to Microsoft’s Digital Defense Report 2024, ONNX (previously known as Caffeine) was the top Adversary in the Middle (AitM) phishing…

Read More

The U.S. has seized the cybercrime website ‘PopeyeTools’ and unsealed charges against three of its administrators, Abdul Ghaffar, Abdul Sami, and Javed Mirza, for selling stolen data. Apart from the seizure of multiple domains associated with the cybercrime platform, the authorities have also confiscated $283,000 worth of cryptocurrency linked to illicit operations. PopeyeTools was a…

Read More

‘ChatGPT came into the market two years ago, and for the first 12 months, it was a tool that couldn’t be used particularly effectively. So the industry is only nine to 12 months into being able to use large language models in a way that’s meaningful for enterprises and public sector organizations. Our Center of…

Read More

A design flaw in the Fortinet VPN server’s logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of compromised logins. Although the brute-force attack is still visible, a new technique allows logging only failed attempts and not successful ones, generating a false sense of security. Verifying…

Read More

Ford is investigating allegations that it suffered a data breach after a threat actor claimed to leak 44,000 customer records on a hacking forum. The leak was announced on Sunday by threat actor ‘EnergyWeaponUser,’ also implicating the hacker ‘IntelBroker,’ who supposedly took part in the November 2024 breach. The threat actors leaked on BreachForums 44,000…

Read More