December, 2024 - Cybernoz

Critical RCE Vulnerability in Apache Struts Actively Exploited using Public PoC

A critical security vulnerability has been identified in Apache Struts, a popular open-source framework for building Java-based web applications actively used in attacks leveraging publish…

December 17, 2024 Cybernoz 3 min read

ITnews

Petbarn uses AI tool to answer questions, recommend products – Marketing

Pet care retailer Petbarn is offering a generative AI tool to “pet parents” that can dispense “vet-approved advice” when its stores and vet clinics are…

December 17, 2024 Cybernoz 2 min read

HackRead

Hackers Leak Partial Cisco Data from 4.5TB of Exposed Records

SUMMARY: Partial Data Leak: Hackers leaked 2.9GB of Cisco’s data on Breach Forums on December 16, 2024. Exposed Records: The leaked data is part of…

December 17, 2024 Cybernoz 3 min read

ITnews

Gov asked to create universal coverage map for telco services in Australia – Telco/ISP

The government has been asked to compile and maintain an independent map of mobile and broadband service availability and providers, accurate to a “specific location”…

December 17, 2024 Cybernoz 3 min read

CyberDefenseMagazine

Innovator Spotlight: Fortra – Cyber Defense Magazine

by Dan K. Anderson CEO, CISO, and vCISO As cyber threats grow more sophisticated and frequent, organizations face immense pressure to simplify their security stacks…

December 17, 2024 Cybernoz 4 min read

Bleeping Computer

New critical Apache Struts flaw exploited to find vulnerable servers

A recently patched critical Apache Struts 2 vulnerability tracked as CVE-2024-53677 is actively exploited using public proof-of-concept exploits to find vulnerable devices. Apache Struts is…

December 17, 2024 Cybernoz 2 min read

CyberSecurityNews

FBI Warns Of HiatusRAT Attacking Web Cameras And DVRs To Gain Full Access

The Federal Bureau of Investigation (FBI) has issued a Private Industry Notification (PIN) alerting cybersecurity professionals and system administrators about a new threat targeting web…

December 17, 2024 Cybernoz 2 min read

TheHackerNews

Attackers Exploit Microsoft Teams and AnyDesk to Deploy DarkGate Malware

Dec 17, 2024Ravie LakshmananMalware / Credential Theft A new social engineering campaign has leveraged Microsoft Teams as a way to facilitate the deployment of a…

December 17, 2024 Cybernoz 3 min read

CyberSecurityNews

Azure Data Factory And Apache Airflow Integration Flaws Let Attackers Gain Write Access

Researchers uncovered new security vulnerabilities in the Azure Data Factory Apache Airflow integration dubbed “Dirty DAG”, which allow attackers to get unauthorized write permissions to…

December 17, 2024 Cybernoz 3 min read

ComputerWeekly

Conservative MP adds to calls for public inquiry over PSNI police spying

A court ruling that the Metropolitan Police and the Police Service of Northern Ireland unlawfully placed journalists under surveillance has led to renewed calls for…

December 17, 2024 Cybernoz 5 min read

Bleeping Computer

Might need a mass password reset one day? Read this first.

A common adage among cybersecurity professionals is that when it comes to cyber-attacks, it’s not a matter of if but when. Despite this certainty, organizations are often caught…

December 17, 2024 Cybernoz 4 min read

Wired

Intel Officials Warned Police That US Cities Aren’t Ready for Hostile Drones

In the memo obtained by WIRED, DHS displays less confidence in its ability to detect menacing drones. The document, which authorities were instructed not to…

December 17, 2024 Cybernoz 2 min read