Microsoft announces Defender bug bounty program
Microsoft has announced a new bug bounty program aimed at unearthing vulnerabilities in Defender-related products and services, and is offering participants the possibility to earn…
Month: November 2023
AI Solutions Are the New Shadow IT
Ambitious Employees Tout New AI Tools, Ignore Serious SaaS Security Risks Like the SaaS shadow IT of the past, AI is placing CISOs and cybersecurity…
CISA reveals how LockBit hacked Boeing via Citrix Bleed
The US Cybersecurity and Infrastructure Security Agency (CISA), alongside the FBI and the Australian Cyber Security Centre (ACSC), have revealed in-depth details of how the…
Cyber Toufan Claims Cyberattacks On Israel Cybersecurity
In a series of cyberattacks on Israel’s cybersecurity infrastructure, the newly formed Cyber Toufan Operations group has claimed responsibility for breaching several high-profile organizations. These…
Bug Bytes #217 – How to Submit Vulnerabilities, Writing a Great WriteUp and 2 years of Bug Bounty
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps…
Kansas Officials Blame 5-Week Disruption of Court System on ‘Sophisticated Foreign Cyberattack’
Cybercriminals hacked into the Kansas court system, stole sensitive data and threatened to post it on the dark web in a ransomware attack that has…
CISA adds Looney Tunables Linux bug to its Known Exploited Vulnerabilities catalog
CISA adds Looney Tunables Linux bug to its Known Exploited Vulnerabilities catalog Pierluigi Paganini November 22, 2023 US CISA adds Looney Tunables Linux flaw to its…
Hackers Exploiting 0-day RCE Flaws to Deploy Mirai Malware
The Mirai botnet is a malicious network of infected computers, routers, and IoT devices harnessed by cybercriminals to launch large-scale DDoS attacks. The destructiveness of…
North Korean Hackers Posed as Job Recruiters and Seekers
Two ongoing efforts, Contagious Interview and Wagemole, have been identified to target job-seeking activities connected to North Korean Hackers and state-sponsored threat actors. Threat actors…
Binance CEO Changpeng Zhao’s Resignation Coincides With Guilty Plea
Changpeng Zhao, former CEO of Binance, has resigned from his position after pleading guilty to anti-money laundering and sanctions violations charges brought by the US…
Citrix, Gov Agencies Issue Fresh Warnings on CitrixBleed Vulnerability
Australian and US governmental agencies and Citrix this week issued fresh warnings on the exploitation of a critical NetScaler product vulnerability. Tracked as CVE-2023-4966 (CVSS…
World Wide Fund for Nature signs IT deal with Atos
The World Wide Fund for Nature (WWF) is harnessing technology to support its mission to conserve the natural world through a deal with IT services supplier…