Infosec

Highlights
Cyber criminals are using Facebook to impersonate popular generative AI brands, including ChatGPT, Google Bard, Midjourney and Jasper
Facebook users are being tricked into downloading content from the fake brand pages and ads
These downloads contain malicious malware, which steals their online passwords (banking, social media, gaming, etc), crypto wallets and any information saved in their browser
Unsuspecting users are liking and commenting on fake posts, thereby spreading them to their own social networks

Executive Summary Introduction Real-time chat and video services available within telemedicine, finance, and smart IoT device applications used by millions of people, rely on the popular QuickBlox framework. QuickBlox supplies mobile and web application developers with a SDK and APIs to deliver not only user management, real-time public and private chat features, for example, but also […]

In response to the increasing frequency and evolution of nation-state cyberthreats, Microsoft is taking additional steps to protect our customers and increase the secure-by-default baseline of our cloud platforms. These steps are the result of close coordination with commercial and government customers, and with the Cybersecurity and Infrastructure Security Agency (CISA) about the types of security log data Microsoft provides to cloud customers for insight and analysis.

Adobe releases fresh updates to address an incomplete fix for a critical ColdFusion flaw (CVE-2023-38205).

A prolific threat actor has been operating on Russian-language forums since 2020, but then he accidentally infected his own computer and sold off its contents to threat researchers.

The Moscow-linked hacking group Armageddon remains one of the most active and dangerous threat actors targeting Ukraine during its war with Russia, according to recent research.

Experts say it could be related to revenge assassinations Tehran is plotting against former U.S. officials.

The WormGPT case: How Generative AI can improve the capabilities of cybercriminals and allows them to launch sophisticated attacks.

New report reveals the alarming activities of Gamaredon, a notorious Russian hacking crew. They exploit email and messaging platforms to compromise.

A malicious actor expands their target beyond AWS. Azure and Google Cloud Platform (GCP) services are now at risk.

Discussing privacy in Threads, and whether you should sign up to Zuckerberg’s Twitter clone.

Ransomware gangs have operated at a near-record profit in the first six months of the year, extorting more than $449 million from victims, according to blockchain research firm Chainalysis.

Heimdal® returns with the July edition of our Patch Tuesday series. Stay tuned for more awesome content on patches and fixes.

SonicWall and Fortinet both address critical vulnerabilities in their network security software.

I've discovered that I can only successfully connect to signal's server with my VPN on my phone if I turn off the kill switch in the network manager.

To my knowledge this is new in the last few weeks. I've tried every protocol and exit servers in random countries but everything breaks with the kill switch.

This is very worrying. I sent a bug report but this feels like an intentional thing and I'm curious if others are finding that signal is trying to talk to the server via an unobscured IP address.

Extremely concerning about motives...

🚨 Beware, Android users! Two file management apps on Google Play Store revealed as spyware, sending users' data to servers in China.

Hackers targeted a flaw in the file transfer utility MOVEit; concerns about the safety of sensitive data once again come to the fore.

I am a newbie here. Is there aby manuał on how to use it? I am list.

#infosec

Fun fact about nuclei @pdnuclei is that the more specific the url the better the outcome.

Yes you can just use CNN.com or https[:]//CNN[.]com

But using the full https[:]//www[.]cnn[.]com/ brings you even more info. Very dope program.

#z0ds3c #infosec

Hello Friend

#infosec

Microsoft says the early June disruptions to its Microsoft’s flagship office suite — including the Outlook email apps — were denial-of-service attacks by a shadowy new hacktivist group. In a blog post published Friday evening after The Associated Press sought clarification on the sporadic but serious outages, Microsoft confirmed that that they were DDoS attacks by a group calling itself Anonymous Sudan, which some security researchers believe is Russia-affiliated. The software giant offered few details on the attack. It did not comment on how many customers were affected.

Threat actors behind a recently surfaced ransomware operation known as Rhysida have leaked online what they claim to be documents stolen from the network of the Chilean Army (Ejército de Chile).

Have you found that companies are starting to forego cyberinsurance if they don't have the money to hire a full time security staff?