MONITOR – Page 4 – Cybersecurity News Everyday

Humans + AI: A Winning CX Strategy

January 16, 2025 Youtube

Summary: The video discusses the critical role of balancing human interaction with technology, specifically AI, to enhance customer experience strategies. It highlights the importance of understanding customer needs, ensuring consistent omnichannel engagement, empowering employees, and maintaining a mindset focused on continuous improvement.

Keypoints:

Providing excellent customer experiences is essential for long-term business growth.…

Cyber Security News

Researchers Find Exploit Allowing NTLMv1 Despite Active Directory Restrictions

January 16, 2025 TheHackerNews

Summary: Cybersecurity researchers have discovered that a misconfiguration in on-premise applications can bypass Microsoft’s Group Policy designed to disable NT LAN Manager (NTLM) v1 authentication. This vulnerability allows organizations to mistakenly believe they are protected against NTLMv1 attacks, while in reality, they remain exposed due to misconfigured settings.…

The Cyber Threat Responsible for the Biggest Breaches of 2024

Info Data Leak

The $10 Cyber Threat Responsible for the Biggest Breaches of 2024

January 16, 2025January 18, 2025 TheHackerNews

Summary: Stolen credential-based attacks have surged, becoming the leading cyber threat in 2023/24, with a staggering 80% of web app attacks originating from this breach vector. Despite increased cybersecurity budgets, vulnerabilities remain due to inadequate MFA adoption and the rise of infostealer malware. This article explores the factors contributing to the rise in account compromises and offers recommendations for security teams to combat these threats.…

Threat Research

Sneaky 2FA: exposing a new AiTM Phishing-as-a-Service

January 16, 2025 SekoiaIO

In December 2024, a new Adversary-in-the-Middle (AiTM) phishing kit known as Sneaky 2FA was identified, targeting Microsoft 365 accounts. This phishing kit, sold as Phishing-as-a-Service (PhaaS) by the cybercrime service “Sneaky Log”, utilizes sophisticated techniques including autograb functionality and anti-bot measures. The analysis reveals its operational methods, including the use of Telegram for distribution and support.…

Threat Research

Securonix Threat Labs 2024 Annual Autonomous Threat Sweeper Intelligence Insights

January 16, 2025 Securonix

The 2024 Annual Cyber Threat Report reveals a significant increase in cyber threats, including advanced persistent threats (APTs) and evolving tactics used by attackers. Key incidents include the resurgence of LockBit ransomware, exploitation of vulnerabilities in widely-used technologies, and notable data breaches affecting major organizations. Affected: Ivanti Connect Secure, GlobalProtect, CrowdStrike, Snowflake, Palo Alto Networks

Keypoints :

Emerging threats exploit vulnerabilities in Ivanti Connect Secure and GlobalProtect VPN.…

Threat Research

Unpacking the LastPass Hack: A Case Study | CSA

January 16, 2025January 16, 2025 admin

This article examines the LastPass hack, detailing how attackers exploited vulnerabilities to access sensitive customer data. It emphasizes the importance of robust security measures in cloud computing and offers practical guidelines for detection and prevention. Affected: LastPass

Keypoints :

LastPass is a SaaS provider specializing in password vault solutions.…

Threat Research

JustJoin Landing Page Linked to Suspected DPRK Activity Resurfaces

January 16, 2025January 16, 2025 admin

This report discusses the identification of a server linked to TA444/BlueNoroff, which employs deceptive domains related to virtual meeting platforms like Zoom for phishing and malware delivery. The analysis reveals a network of domains and shared SSH keys, indicating coordinated infrastructure. Affected: IP address, domain

Keypoints :

Hunt researchers identified a server with HTTP response headers linked to DPRK-related activity.…

Info Data Leak

Purina Dog Food Data Breach Raises Privacy Issues in Colombia

January 16, 2025 DailyDarkWeb

Victim: Purina Dog Food | Purina Dog Food Price: Not disclosed Data: Phone numbers, Email addresses

Keypoints :

Incident involves a data breach in Colombia. Exposed sensitive user information including phone numbers and email addresses. Raises significant privacy concerns regarding consumer data security. Highlights the need for robust cybersecurity measures in the pet food and retail sectors.…

Info Data Leak

CISA shares guidance for Microsoft expanded logging capabilities

January 16, 2025January 18, 2025 BleepingComputer

Summary: CISA has released guidance for government agencies and enterprises on utilizing expanded cloud logs in Microsoft 365 for forensic and compliance investigations. The new Microsoft Purview Audit (Standard) logging capabilities enhance threat-hunting efforts, particularly in response to a significant Exchange Online breach attributed to the threat actor Storm-0558.…

Info Data Leak

MetLife Data Breach Sparks Privacy Worries in the U.S.

January 16, 2025 DailyDarkWeb

Victim: MetLife | MetLife Price: Not disclosed Data: Sensitive user information

Keypoints :

Massive data breach involving a 289GB database. Leaked data includes sensitive user information. Concerns about unauthorized access and identity theft. Highlights the need for robust cybersecurity measures. Financial and insurance sectors are prime targets for breaches.…

Info Data Leak

Eyewear Wholesaler Data Breach Raises Privacy Issues

January 16, 2025 DailyDarkWeb

Victim: Frame and Optic | Frame and Optic Price: Not disclosed Data: Customer and business data

Keypoints :

Data breach involving a U.S.-based eyewear wholesaler. Exposed sensitive customer details, purchase records, and potentially confidential business insights. Highlights the growing cybersecurity challenges in the eyewear industry. Emphasizes the need for robust cybersecurity measures to protect sensitive information.…

Info Data Leak

Jia Bo Sports Betting Platform May Have Data Breach in China

January 16, 2025 DailyDarkWeb

Victim: Jia Bo Sports Betting Platform | Jia Bo Sports Betting Platform Price: Not disclosed Data: Personal information and transactional records

Keypoints :

Incident involves a cybersecurity breach targeting the Jia Bo Sports Betting Platform in China. Potential compromise of sensitive user data, including personal information and transaction records.…

Threat Research

Ransomware and Cyber Extortion in Q4 2024

January 15, 2025 Reliaquest

The last quarter of 2024 saw an unprecedented surge in ransomware activity, with significant growth in the number of active groups and notable incidents involving established players like LockBit and emerging threats such as Akira and BlackLock. This report highlights key findings, trends, and recommendations to bolster defenses against ransomware attacks.…

Threat Research

Volt Typhoon: Analyzing Espionage Campaigns Against Critical Infrastructure

January 15, 2025January 15, 2025 iocOne

Volt Typhoon, a Chinese state-sponsored APT group, is known for targeting critical infrastructure in the US, UK, Canada, and Australia by exploiting vulnerabilities in outdated SOHO devices. Their stealthy tactics involve using legitimate tools to blend malicious activities with normal network traffic, making detection difficult. Affected: United States, United Kingdom, Canada, Australia

Keypoints :

Volt Typhoon is linked to espionage and information gathering targeting critical infrastructure.…

Threat Research

Origins of A Logger – Agent Tesla

January 15, 2025January 15, 2025 iocOne

The article discusses the evolution and impact of the Agent Tesla malware and its variant, Origin Logger, which have been pivotal in the Malware-as-a-Service (MaaS) ecosystem since 2014. The report details the methods of the developers, their targeted sectors, and the ongoing business email compromise (BEC) attacks.…

Cyber Security News

January Windows updates may fail if Citrix SRA is installed

January 15, 2025 BleepingComputer

Summary: Microsoft has issued a warning that the January 2025 cumulative updates for Windows 11 and Windows 10 may fail if Citrix Session Recording Agent (SRA) version 2411 is installed. Users are advised to follow a workaround to successfully install the updates while Citrix and Microsoft work on a resolution.…

Info Data Leak

Global Data Breach Exposes 1.27TB of Private Data

January 15, 2025 DailyDarkWeb

Victim: Unknown | Global Data Breach Price: Not disclosed Exfiltrated Data Type: Sensitive personal and corporate information

Key Points :

Massive data breach involving a leak of 1.27TB of data. Exposed data may include sensitive personal and corporate information. Highlights ongoing risks associated with large-scale data storage.…

Cyber Security News

Apple Bug Allows Root Protections Bypass Without Physical Access

January 15, 2025 DarkReading

Summary: Cyber defenders are urged to update macOS systems to address a critical vulnerability (CVE-2024-44243) that compromises the operating system’s security. This flaw allows threat actors to bypass System Integrity Protection (SIP), potentially leading to severe malware installations without physical access.

Threat Actor: Unknown | unknown Victim: Apple | Apple

Key Point :

Vulnerability allows bypassing of macOS System Integrity Protection (SIP).…

Info Data Leak

Data Breach Exposes Personal Information of 125,000 Egyptians

January 15, 2025 DailyDarkWeb

Victim: 125,000 Egyptians | 125,000 Egyptians Price: Not disclosed Exfiltrated Data Type: Personal Information

Key Points :

Data breach exposes personal information of 125,000 individuals in Egypt. Exposed database includes sensitive details such as names and contact information. Highlights serious concerns about data security in the region.…

Cyber Security News

Windows 11 KB5050009 & KB5050021 cumulative updates released

January 15, 2025 BleepingComputer

Summary: Microsoft has released mandatory cumulative updates KB5050009 and KB5050021 for Windows 11 to address security vulnerabilities and improve system features. These updates include various fixes and enhancements, particularly for touchscreen gestures, File Explorer, and speech functionalities.

Threat Actor: Microsoft | Microsoft Victim: Windows 11 Users | Windows 11 Users

Key Point :

Mandatory updates KB5050009 and KB5050021 fix security vulnerabilities and improve system features.…

Tag: MONITOR