https://www.tenable.com/blog/cve-2023-46805-cve-2024-21887-zero-day-vulnerabilities-exploited-in-ivanti-connect-secure-and

https://www.tenable.com/blog/microsofts-january-2024-patch-tuesday-addresses-48-cves-cve-2024-20674

Lockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group.

https://threatpost.com/ransomware-attacks-are-on-the-rise/180481/

Tens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.

https://threatpost.com/cybercriminals-are-selling-access-to-chinese-surveillance-cameras/180478/

CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP.

https://threatpost.com/firewall-bug-under-active-attack-cisa-warning/180467/

Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.

https://threatpost.com/iphone-users-urged-to-update-to-patch-2-zero-days-under-attack/180448/

Google has patched the fifth actively exploited zero-day vulnerability discovered in Chrome this year as one in a series of fixes included in a stable channel update released Wednesday. The bug, tracked as CVE-2022-2856 and rated as high on the Common Vulnerability Scoring System (CVSS), is associated with “insufficient validation of untrusted input in Intents,” […]

https://threatpost.com/google-patches-chromes-fifth-zero-day-of-the-year/180432/

Mobile transactions could’ve been disabled, created and signed by attackers.

https://threatpost.com/xiaomi-phones-found-vulnerable-to-payment-forgery/180416/

‘Summer Camp’ for hackers features a compromised satellite, a homecoming for hackers and cyberwarfare warnings.

https://threatpost.com/black-hat-and-def-con-roundup/180409/

The CISA has seen a resurgence of the malware targeting a range of verticals and critical infrastructure organizations by exploiting RDP, firewall vulnerabilities.

https://threatpost.com/zeppelin-ransomware-resurfaces/180405/

August Patch Tuesday tackles 121 CVEs, 17 critical bugs and one zero-day bug exploited in the wild.

https://threatpost.com/microsoft-patches-dogwalk-zero-day-and-17-critical-flaws/180378/

Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among others, to trick victims.

https://threatpost.com/open-redirect-flaw-snags-amex-snapchat-user-data/180354/

Vulnerability—for which a proof-of-concept is forthcoming—is one of a string of flaws the company fixed that could lead to an attack chain.

https://threatpost.com/vmware-patch-critical-bug/180346/

DMARC analysis by Proofpoint shows that institutions in the U.S. have among some of the poorest protections to prevent domain spoofing and lack protections to block fraudulent emails.

https://threatpost.com/universities-email-cyber-risk/180342/

Recent LofyLife campaign steals tokens and infects client files to monitor various user actions, such as log-ins, password changes and payment methods.

https://threatpost.com/malicious-npm-discord/180327/

The increased proliferation of IoT devices paved the way for the rise of IoT botnets that amplifies DDoS attacks today. This is a dangerous warning that the possibility of a sophisticated DDoS attack and a prolonged service outage will prevent businesses from growing.

https://threatpost.com/ddos-attacks-prepared/180273/

Feds urge U.S. agencies to patch a Microsoft July Patch Tuesday 2022 bug that is being exploited in the wild by August 2.

https://threatpost.com/cisa-urges-patch-11-bug/180235/

A radio control system for drones is vulnerable to remote takeover, thanks to a weakness in the mechanism that binds transmitter and receiver.

https://threatpost.com/drone-hack-expresslrs-hijacked/180133/

The heap buffer overflow issue in the browser’s WebRTC engine could allow attackers to execute arbitrary code.

https://threatpost.com/actively-exploited-chrome-bug/180118/

Devices from Cisco, Netgear and others at risk from the multi-stage malware, which has been active since April 2020 and shows the work of a sophisticated threat actor.

https://threatpost.com/zuorat-soho-routers/180113/