handmade.social

1 post1 participant0 posts today

Desert Lily ArtistryPSA for Canadian beaders: do NOT buy anything from Turtle Island Beads and Silver right now. They've been hacked 😢. Also, please repost to help get the word out! <a href="https://pixelfed.social/discover/tags/Canada?src=hash" class="u-url hashtag" rel="nofollow noopener noreferrer" target="_blank">#Canada</a> <a href="https://pixelfed.social/discover/tags/beading?src=hash" class="u-url hashtag" rel="nofollow noopener noreferrer" target="_blank">#beading</a> <a href="https://pixelfed.social/discover/tags/beadwork?src=hash" class="u-url hashtag" rel="nofollow noopener noreferrer" target="_blank">#beadwork</a> <a href="https://pixelfed.social/discover/tags/hacked?src=hash" class="u-url hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://pixelfed.social/discover/tags/scam?src=hash" class="u-url hashtag" rel="nofollow noopener noreferrer" target="_blank">#scam</a> <a href="https://pixelfed.social/discover/tags/scammer?src=hash" class="u-url hashtag" rel="nofollow noopener noreferrer" target="_blank">#scammer</a>

Sean O'BrienHad your account <a href="https://privacysafe.social/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> because your password was "qwerty1993"? 🤦Our <a href="https://privacysafe.social/@privacysafe" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@privacysafe</a> team released a small, simple tool to help you generate strong passwords & memorable passphrases — right in your web browser, wherever you are. 🌍 <a href="https://psafe.ly/mnnyWH" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://psafe.ly/mnnyWH</a>cc <a href="https://mamot.fr/@pluralistic" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@pluralistic</a>

beSpacificUS <a href="https://newsie.social/tags/Treasury" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Treasury</a> <a href="https://newsie.social/tags/Threat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Threat</a> <a href="https://newsie.social/tags/Intelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Intelligence</a> <a href="https://newsie.social/tags/Analysis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Analysis</a> Designates <a href="https://newsie.social/tags/DOGE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DOGE</a> Staff as ‘Insider Threat’. An internal email reviewed by WIRED calls DOGE staff’s access to federal <a href="https://newsie.social/tags/payments" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#payments</a> <a href="https://newsie.social/tags/systems" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#systems</a> “the single greatest insider threat <a href="https://newsie.social/tags/risk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#risk</a> the Bureau of the Fiscal Service <a href="https://newsie.social/tags/BFS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BFS</a> has ever faced. This may not have the impact it deserves - Almost all US payments are made using a system that has been <a href="https://newsie.social/tags/breached" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#breached</a> <a href="https://newsie.social/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://newsie.social/tags/cybercrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybercrime</a> <a href="https://newsie.social/tags/nationalsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nationalsecurity</a> <a href="https://newsie.social/tags/natsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#natsec</a> <a href="https://newsie.social/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IT</a> <a href="https://newsie.social/tags/networks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#networks</a> <a href="https://newsie.social/tags/software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#software</a> <a href="https://www.wired.com/story/treasury-bfs-doge-insider-threat/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.wired.com/story/treasury-bfs-doge-insider-threat/</a>

NonilexMeanwhile, morale has plummeted, said 3 <a href="https://masto.ai/tags/OPM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OPM</a> ofcls, as <a href="https://masto.ai/tags/DOGE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DOGE</a> agents have clashed w/senior career personnel. One official recalled a recent meeting in which a young DOGE team member began screaming at senior developers & calling them “idiots.”A halt to IT upgrades — along w/fresh access by outsiders w/the power to install new programs — could create novel vulnerabilities at an agency that has been repeatedly <a href="https://masto.ai/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> by foreign <a href="https://masto.ai/tags/intelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#intelligence</a> services.<a href="https://masto.ai/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://masto.ai/tags/law" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#law</a> <a href="https://masto.ai/tags/Trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Trump</a> <a href="https://masto.ai/tags/ElonMusk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ElonMusk</a>

Voting is Your POWER<a href="https://universeodon.com/tags/kashpatel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kashpatel</a> was hacked by <a href="https://universeodon.com/tags/iran" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#iran</a> Hackers are believed to have accessed at least some of Patel’s communications <a href="https://universeodon.com/tags/cabinet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cabinet</a> <a href="https://universeodon.com/tags/fbi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fbi</a> <a href="https://universeodon.com/tags/uspol" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#uspol</a> <a href="https://universeodon.com/tags/uspolitics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#uspolitics</a> <a href="https://universeodon.com/tags/hack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hack</a> <a href="https://universeodon.com/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://universeodon.com/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://universeodon.com/tags/Patel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Patel</a> <a href="https://www.cnn.com/2024/12/03/politics/kash-patel-targeted-iran-hack/index.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.cnn.com/2024/12/03/politics/kash-patel-targeted-iran-hack/index.html</a>

Patch NOW !!Update on CVE-2024-38812: VMware vCenter Server Heap-Based Buffer Overflow Vulnerability-- CISA has added CVE-2024-38812 to its 'Known Exploited vulnerabilities catalog'. IF YOU HAVEN'T PATCHED IT YET, PATCH IT NOW!! <a href="https://infosec.exchange/tags/PatchNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchNOW</a>Link: <a href="https://www.cisa.gov/known-exploited-vulnerabilities-catalog" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.cisa.gov/known-exploited-vulnerabilities-catalog</a><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/ComputerSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ComputerSecurity</a> <a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://infosec.exchange/tags/CyberSecurityAwareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurityAwareness</a> <a href="https://infosec.exchange/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a>

Patch NOW !!Updates on PAN-SA-2024-0015: The blog has been updated with the following latest information provided by Palo Alto.1) CVE-2024-0012 has been assigned 2) Indicators of Compromise has been updated. 3) Added a section "What if I found one of the IOCs in my Organization's environment??" 4) Affected Products and Product versions has been updated 5) Fixed versions has been updated. Refer: <a href="https://patchnow24x7.com/blog-1/f/pan-sa-2024-0015-secure-your-paloalto-management-interface-now" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://patchnow24x7.com/blog-1/f/pan-sa-2024-0015-secure-your-paloalto-management-interface-now</a><a href="https://infosec.exchange/tags/PatchNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchNOW</a> <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/ComputerSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ComputerSecurity</a> <a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://infosec.exchange/tags/CyberSecurityAwareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurityAwareness</a> <a href="https://infosec.exchange/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

gtbarryUnpatched Mazda Connect bugs let hackers install persistent malwareAttackers could exploit several vulnerabilities in the Mazda Connect infotainment unit, present in multiple car models including Mazda 3 (2014-2021), to execute arbitrary code with root permission. <a href="https://mastodon.social/tags/Mazda" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Mazda</a> <a href="https://mastodon.social/tags/infotainment" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infotainment</a> <a href="https://mastodon.social/tags/automotive" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#automotive</a> <a href="https://mastodon.social/tags/auto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#auto</a> <a href="https://mastodon.social/tags/cars" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cars</a> <a href="https://mastodon.social/tags/transportation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#transportation</a> <a href="https://mastodon.social/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malware</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/hackers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hackers</a> <a href="https://mastodon.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://mastodon.social/tags/Hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Hacked</a><a href="https://www.bleepingcomputer.com/news/security/unpatched-mazda-connect-bugs-let-hackers-install-persistent-malware/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.bleepingcomputer.com/news/security/unpatched-mazda-connect-bugs-let-hackers-install-persistent-malware/</a>

KR. Laboratories 🇺🇦БІЛЬШЕ 4 МІЛЬЙОНІВ САЙТІВ WORDPRESS ПІД ЗАГРОЗОЮБільше 4 мільйонів сайтів на базі CMS WordPress є під загрозою через критичну вразливість, виявлену спеціалістами Wordfence Security у відомому плагіні Really Simple SSL та його PRO версії.Це одна з найбільш серйозних вразливостей в плагінах WordPress за останні 12 років!Загроза була виявлена 6 листопада 2024 року, має ідентифікатор CVE-2024-10924 та ступінь критичності 9.8 за шкалою CVSS. Уразливість дає можливість зловмиснику віддалено отримати доступ до будь-якого облікового запису Wordpress, включаючи Адміністратора, навіть коли ввімкнено функцію двофакторної автентифікації!12-14 листопада 2024 року команда розробників Really Simple SSL випустила пропатчену версію обох плагінів 9.1.2, у якій вразливість була повністю усунена. Технічний аналіз цієї вразливості опублікований на сайті Wordfence: <a href="https://www.wordfence.com/blog/2024/11/really-simple-security-vulnerability/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.wordfence.com/blog/2024/11/really-simple-security-vulnerability/</a>Висновки:- Намагайтесь використовувати по мінімуму кількість додаткових плагінів на своєму сайті WordPress. Чим менше плагінів - тим менший ризик бути непомітно зламаним. - Не використовуйте ламані, обнулені, крякнуті плагіни. - Регулярно оновлюйте WordPress і усі його компоненти до останніх актуальних версій. Не затягуйте з цим. - Будьте в курсі останніх новин з кібербезпеки, щоби вчасно дізнаватися про інциденти та реагувати на них. - Проводьте резервне копіюванння сайтів, щоб була змога відновитись у разі зламу/атаки. Якщо ви знаєте когось, хто використовує ці плагіни на своєму сайті, ми рекомендуємо поділитися з ним цією порадою, щоб забезпечити безпеку його сайту, оскільки ця вразливість становить значний ризик.Кому потрібна допомога - звертайтеся, ми до ваших послуг: <a href="https://kr-labs.com.ua/blog/wordpress-security-recommendations/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://kr-labs.com.ua/blog/wordpress-security-recommendations/</a><a href="https://infosec.exchange/tags/wordpress" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wordpress</a> <a href="https://infosec.exchange/tags/vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vulnerability</a> <a href="https://infosec.exchange/tags/cybernews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybernews</a> <a href="https://infosec.exchange/tags/cybercrine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybercrine</a> <a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/%D0%BA%D1%96%D0%B1%D0%B5%D1%80%D0%B1%D0%B5%D0%B7%D0%BF%D0%B5%D0%BA%D0%B0" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#кібербезпека</a> <a href="https://infosec.exchange/tags/%D0%BD%D0%BE%D0%B2%D0%B8%D0%BD%D0%B8" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#новини</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/ReallySimpleSSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ReallySimpleSSL</a> <a href="https://infosec.exchange/tags/ReallySimpleSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ReallySimpleSecurity</a> <a href="https://infosec.exchange/tags/CVE_2024_10924" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CVE_2024_10924</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/hack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hack</a>

Patch NOW !!Update: I have updated the Blog with the latest information (includes a few IOCs) on Palo Alto Management Interface RCE vulnerability PAN-SA-2024-0015.Refer: <a href="https://patchnow24x7.com/blog-1/f/pan-sa-2024-0015-secure-your-paloalto-management-interface-now" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://patchnow24x7.com/blog-1/f/pan-sa-2024-0015-secure-your-paloalto-management-interface-now</a><a href="https://infosec.exchange/tags/PatchNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchNOW</a> <a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://infosec.exchange/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

PrivacyDigest<a href="https://mas.to/tags/TMobile" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TMobile</a> hacked in massive <a href="https://mas.to/tags/Chinese" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Chinese</a> <a href="https://mas.to/tags/breach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#breach</a> of telecom networks, WSJ reportsT-Mobile's network was among the systems <a href="https://mas.to/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> in a damaging Chinese cyber-espionage operation that successfully gained entry into multiple U.S. and international <a href="https://mas.to/tags/telecommunications" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#telecommunications</a> companies, The Wall Street Journal reported on Friday citing people familiar with the matter. <a href="https://mas.to/tags/China" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#China</a> <a href="https://mas.to/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mas.to/tags/espionage" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#espionage</a>Read in Reuters: <a href="https://apple.news/ADTAImxm1Q7e03JDt-IgHFQ" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://apple.news/ADTAImxm1Q7e03JDt-IgHFQ</a>Shared from Apple News

Patch NOW !!URGENT: PAN-SA-2024-0015: Palo Alto releases urgent security advisory regarding an actively exploited RCE vulnerability.. <a href="https://infosec.exchange/tags/PatchNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchNOW</a>!!Technical Details, Analysis and Recommendations:<a href="https://patchnow24x7.com/blog-1/f/pan-sa-2024-0015-secure-your-paloalto-management-interface-now" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://patchnow24x7.com/blog-1/f/pan-sa-2024-0015-secure-your-paloalto-management-interface-now</a><a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerability</a> <a href="https://infosec.exchange/tags/ComputerSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ComputerSecurity</a> <a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

Patch NOW !!November 2024 Microsoft Patch Tuesday Summary4 zero-day vulnerabilities addressed: Two of which with CVE-2024-49039 and CVE-2024-43451 reported to be exploited in the wild.Blog: <a href="https://patchnow24x7.com/blog-1/f/summary-november-2024-microsoft-patch-tuesday-patchnow" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://patchnow24x7.com/blog-1/f/summary-november-2024-microsoft-patch-tuesday-patchnow</a>The Blog provides technical details regarding the following vulnerabilities along with Patch Download link.CVE-2024-49019, CVE-2024-49040, CVE-2024-43602, CVE-2024-49039, CVE-2024-43451 and CVE-2024-43639. <a href="https://infosec.exchange/tags/PatchTuesday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchTuesday</a> <a href="https://infosec.exchange/tags/PatchNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchNOW</a> <a href="https://infosec.exchange/tags/ComputerSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ComputerSecurity</a> <a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://infosec.exchange/tags/CyberSecurityAwareness" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurityAwareness</a> <a href="https://infosec.exchange/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

Ms. Que BanhA <a href="https://beige.party/tags/hackers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hackers</a> or <a href="https://beige.party/tags/HackingGroup" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HackingGroup</a> calling itself <a href="https://beige.party/tags/RadwanCyberPal" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RadwanCyberPal</a> has claimed to have successfully <a href="https://beige.party/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> Israel’s Ministry of <a href="https://beige.party/tags/NationalSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NationalSecurity</a> and has published the stolen <a href="https://beige.party/tags/data" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#data</a> online. The documents appear to relate to <a href="https://beige.party/tags/FirearmsLjcences" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FirearmsLjcences</a> held by 5,000 <a href="https://beige.party/tags/Israeli" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Israeli</a> settlers. Each data set contains PDFs of several licence documents, complete with signatures, alongside scans of other documents and photo ID cards. Most of the documents appear to be from within the last two years, and the photo IDs appear to be current. The documents are all in Hebrew and appear to be genuine. Radwan Cyber Pal contacted Cyber Daily directly today, 11 November, and the threat actor’s Telegram page was created on the same day. Despite this, there have been scattered reports of the hack on several accounts on Instagram and X six days ago on 5 November, but no other details were provided.Radwan Cyber Pal’s Telegram page is written largely in Arabic, and the first post is a common Quranic quote popular with many pro-Palestinian groups, such as the Al-Aqsa Martyrs Brigades. Speaking of the hack itself, Radwan Cyber Pal said in English: “Following our victories in the field of the war with the genocidal regime, the Radwan Cyber Pal targeted Israel’s Ministry of National Security. We have the full data of the <a href="https://beige.party/tags/IsraeliOccupation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IsraeliOccupation</a> settlers and soldiers in addition to many confidential documents.” “All armed occupiers are our legitimate targets. Leave our stolen lands and homes now.”<a href="https://www.cyberdaily.au/security/11332-exclusive-anti-israel-hacker-claims-hack-on-ministry-of-national-security-posts-settler-ids-online" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.cyberdaily.au/security/11332-exclusive-anti-israel-hacker-claims-hack-on-ministry-of-national-security-posts-settler-ids-online</a><a href="https://beige.party/tags/Hactivism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Hactivism</a> <a href="https://beige.party/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://beige.party/tags/MiddleEast" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MiddleEast</a> <a href="https://beige.party/tags/ThankYouHacktivists" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThankYouHacktivists</a> <a href="https://beige.party/tags/FreePalestine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FreePalestine</a> <a href="https://beige.party/tags/IsraelIsATerroristState" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IsraelIsATerroristState</a> <a href="https://beige.party/tags/IsraelWarCrimes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IsraelWarCrimes</a> <a href="https://beige.party/tags/RacistIsrael" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RacistIsrael</a> <a href="https://beige.party/tags/IsraelRogueState" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IsraelRogueState</a> <a href="https://beige.party/tags/ArmsEmbargoOnIsrael" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ArmsEmbargoOnIsrael</a> <a href="https://beige.party/tags/USAFundsGenocide" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#USAFundsGenocide</a> <a href="https://beige.party/tags/BoycottIsrael" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BoycottIsrael</a> <a href="https://beige.party/tags/ExposeIDF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ExposeIDF</a> <a href="https://beige.party/tags/BDSMovement" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BDSMovement</a> <a href="https://beige.party/tags/BoycottIsraeliApartheid" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BoycottIsraeliApartheid</a> <a href="https://beige.party/tags/StopGenocide" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#StopGenocide</a> <a href="https://beige.party/tags/ApartheidIsrael" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ApartheidIsrael</a> <a href="https://beige.party/tags/SanctionIsrael" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SanctionIsrael</a> <a href="https://beige.party/tags/ExposeIsraeliTerrorists" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ExposeIsraeliTerrorists</a> <a href="https://beige.party/tags/ZionismIsACult" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ZionismIsACult</a> <a href="https://beige.party/tags/HackIsrael" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HackIsrael</a> <a href="https://beige.party/tags/FAFO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FAFO</a>

Renaud Lifchitz :verified:6 <a href="https://infosec.exchange/tags/Infotainment" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infotainment</a> Bugs Allow <a href="https://infosec.exchange/tags/Mazdas" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Mazdas</a> to Be <a href="https://infosec.exchange/tags/Hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Hacked</a> With <a href="https://infosec.exchange/tags/USBs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#USBs</a> <a href="https://www.darkreading.com/vulnerabilities-threats/6-infotainment-bugs-mazda-usbs" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.darkreading.com/vulnerabilities-threats/6-infotainment-bugs-mazda-usbs</a>

gtbarryHackers demand France’s Schneider Electric pay a $125k ransom in baguettesHungry hackers have demanded that France’s Schneider Electric pay a $125,000 ransom in baguettes.If the ransom demands aren’t fulfilled, the threat is that sensitive data, including information about company projects, staff, and user data, will be spilled. <a href="https://mastodon.social/tags/France" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#France</a> <a href="https://mastodon.social/tags/French" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#French</a> <a href="https://mastodon.social/tags/SchneiderElectric" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SchneiderElectric</a> <a href="https://mastodon.social/tags/baguettes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#baguettes</a> <a href="https://mastodon.social/tags/Energy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Energy</a> <a href="https://mastodon.social/tags/utility" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#utility</a> <a href="https://mastodon.social/tags/ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ransomware</a> <a href="https://mastodon.social/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malware</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/hackers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hackers</a> <a href="https://mastodon.social/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://mastodon.social/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a><a href="https://www.tomshardware.com/tech-industry/cyber-security/hackers-demand-frances-schneider-electric-pay-a-usd125k-ransom-in-baguettes" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.tomshardware.com/tech-industry/cyber-security/hackers-demand-frances-schneider-electric-pay-a-usd125k-ransom-in-baguettes</a>

Patch NOW !!CVE-2024-20418:: CVSS 10/10 -- Critical Remote code execution (RCE) flaw in Cisco Unified Industrial Wireless Software.. <a href="https://infosec.exchange/tags/PatchNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchNOW</a> Technical Details of the vulnerability: <a href="https://patchnow24x7.com/blog-1/f/cve-2024-20418-cisco-addresses-critical-cvss-1010-vulnerability" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://patchnow24x7.com/blog-1/f/cve-2024-20418-cisco-addresses-critical-cvss-1010-vulnerability</a><a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://infosec.exchange/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

Arkadiusz SikorskiWyciek danych z 18.09.2024 ( to jest : imię, nazwisko, adres dostawy, adres email, numer telefonu klientów ) Następujące marki : OCHNIK W.KRUK NewBalncePoland StreetStyle24 @Biżuteria-Picky-Pica-100063510283008 ( Sklep Picky Pica ) Podmiotami które są odpowiedzialne za utrzymanie e-sklepu, świadczy usługi informatyczne i obsługuje system informatyczny w przypadku wycieku danych są : - merce.com Enterprise Commerce Platform Merce.com S.A. merce.com Enterprise Commerce Platform [ <a href="https://www.facebook.com/merce.platform/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.facebook.com/merce.platform/</a> ] ( wdrożył i utrzymuje e-sklep ) - CNS Outsourcing IT Sp. z o.o. ( usługi informatyczne i obsługującemu jego systemy informatyczne ) - LSI Software LSI Software S.A. ( systemy teleinformatyczne, narzędzia informatyczne i teleinformatyczne ) - home.pl Home.pl ( systemy teleinformatyczne, narzędzia informatyczne i teleinformatyczne )<a href="https://pol.social/tags/RODO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RODO</a> <a href="https://pol.social/tags/WYCIEK" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WYCIEK</a> <a href="https://pol.social/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://pol.social/tags/bezpieczen%CC%81stwo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#bezpieczeństwo</a> <a href="https://pol.social/tags/Bezpiecze%C5%84stwoDanych" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BezpieczeństwoDanych</a> <a href="https://pol.social/tags/WyciekDanych" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WyciekDanych</a> <a href="https://pol.social/tags/daneosobowe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#daneosobowe</a> <a href="https://pol.social/tags/OCHNIK" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OCHNIK</a> <a href="https://pol.social/tags/wkruk" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#wkruk</a> <a href="https://pol.social/tags/newbalance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#newbalance</a> <a href="https://pol.social/tags/streetstyle" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#streetstyle</a> <a href="https://pol.social/tags/moda" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#moda</a> <a href="https://pol.social/tags/pickypica" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pickypica</a> <a href="https://pol.social/tags/uodo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#uodo</a> <a href="https://pol.social/tags/homepl" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homepl</a>

Patch NOW !!CVE-2024-42509 and CVE-2024-47460 : CRITICAL Remote Code Execution vulnerabilities in HPE Aruba Access Points. <a href="https://infosec.exchange/tags/PatchNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchNOW</a> Technical Details and Analysis: <a href="https://patchnow24x7.com/blog-1/f/cve-2024-42509-cve-2024-47460-mitigate-aruba-access-point-flaws" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://patchnow24x7.com/blog-1/f/cve-2024-42509-cve-2024-47460-mitigate-aruba-access-point-flaws</a><a href="https://infosec.exchange/tags/ComputerSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ComputerSecurity</a> <a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://infosec.exchange/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

Patch NOW !!CVE-2024-50387 and CVE-2024-50388-- QNAP has patched 2 zero-day vulnerabilities patched in Pwn2OwnOfficial advisory Links:CVE-2024-50387-- <a href="https://www.qnap.com/en/security-advisory/qsa-24-42" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.qnap.com/en/security-advisory/qsa-24-42</a> CVE-2024-50388-- <a href="https://www.qnap.com/en/security-advisory/qsa-24-41" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.qnap.com/en/security-advisory/qsa-24-41</a><a href="https://infosec.exchange/tags/PatchNOW" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#PatchNOW</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/ComputerSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ComputerSecurity</a> <a href="https://infosec.exchange/tags/hacked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacked</a> <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/informationsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#informationsecurity</a> <a href="https://infosec.exchange/tags/DataBreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DataBreach</a> **Limited information available regarding these vulnerabilities

Recent searches

Search options

Administered by:

Server stats:

#hacked