Security Leftovers
-
IT Pro Today ☛ How eBPF Benefits IT Operations Teams Seeking to Improve Observability
Here's why it's not a question of should IT teams use the eBPF Linux kernel technology to collect observability data, but rather how they should do so.
-
LinuxSecurity ☛ CSI Linux: A Digital Forensics Distro with an Intense Focus on User Education
CSI GNU/Linux is a GNU/Linux distribution focused on digital forensics and cybersecurity with an intense focus on user education. The platform offers robust capabilities for investigations, analysis, and response and the flexibility required to meet the demands of modern digital investigations.
-
Diffoscope ☛ Reproducible Builds (diffoscope): diffoscope 257 released
The diffoscope maintainers are pleased to announce the release of diffoscope version
[...]257. This version includes the following changes: -
OpenSSF (Linux Foundation) ☛ OpenSSF Participates in Department of Commerce Consortium Dedicated to Hey Hi (AI) Safety
The Open Source Security Foundation (OpenSSF) is participating in the Biden-Harris Administration’s first-ever Consortium Dedicated to Hey Hi (AI) Safety, led by the US Department of Commerce. We join over 200 leading artificial intelligence (AI) stakeholders in supporting the development and deployment of trustworthy and safe Hey Hi (AI) along with other 'Linux' Foundation (LF) projects including LF Hey Hi (AI) & Data, SPDX, and C2PA.
-
Security Week ☛ Warzone RAT Shut Down by Law Enforcement, Two Arrested
Warzone RAT dismantled in international law enforcement operation that also involved arrests of suspects in Malta and Nigeria.
-
IT Wire ☛ AFP helps Malta arrest individual over distributing trojan
A statement from the AFP on Tuesday said the individual, 27, had been arrested on 7 February by the Maltese police force after intelligence had been provided by the AFP.
The trojan, known as Warzone, is claimed to have been distributed to other cyber criminals, "allowing them to bypass security and remotely access computers without the victim’s knowledge, browse file systems, record keystrokes, steal usernames and passwords and even access Web cameras".
The AFP said its Cyber Command had "assisted in the identification of persons of interest and the co-ordination of intelligence related to the criminal network after identifying Warzone as an emerging cyber threat in 2020.
-
Security Week ☛ Exploitation of Another Ivanti VPN Vulnerability Observed
Organizations urged to hunt for potential compromise as exploitation of a recent Ivanti enterprise VPN vulnerability begins.
-
Bruce Schneier ☛ On Passkey Usability
Matt Burgess tries to only use passkeys. The results are mixed.
-
SANS ☛ Exploit against Unnamed "Bytevalue" router vulnerability included in Mirai Bot, (Mon, Feb 12th)
Today, I noticed the following URL showing up in our "First Seen" list:
& -
Security Week ☛ ExpressVPN User Data Exposed Due to Bug
ExpressVPN disables split tunneling on backdoored Windows after learning that DNS requests were not properly directed.
-
Security Week ☛ Hunter-Killer Malware Tactic Growing: Stealthy, Persistent and Aggressive
A malware tactic dubbed ‘hunter-killer’ is growing, based on an analysis of more than 600,000 malware samples. This may become the standard approach for advanced attacks.
-
Security Week ☛ Stealthy Cyberespionage Campaign Remained Undiscovered for Two Years
A possibly China-linked threat actor uses a custom backdoor in a cyberespionage campaign ongoing since at least 2021.
-
Silicon Angle ☛ Proofpoint uncovers account takeover campaign targeting Microsoft trap Azure users
Proofpoint Inc. researchers have uncovered a hacking campaign that seeks to compromise Microsoft trap Azure accounts in a bid to steal data and carry out financial fraud. The email security provider detailed the cybercrime operation in an advisory released today.
-
Security Week ☛ Ongoing Microsoft trap Azure Cloud Account Takeover Campaign Targeting Senior Personnel
An active cloud account takeover campaign has impacted dozens of Microsoft trap Azure environments and compromised hundreds of user accounts.
-
Digital Restrictions (DRM)
-
Vice Media Group ☛ Feds Want to Ban the World’s Cutest Hacking Device. Experts Say It's a ‘Scapegoat’
Canada is moving to ban the TikTok-famous Flipper Zero, claiming that it contributes to car thefts. It doesn’t.
-