July, 2024 - Security Ticks

Department of Labor announces extreme heat protections for workers

Department of Labor announces extreme heat protections for workers 2024-07-05 at 15:16 By The U.S. Department of Labor has released a proposed rule to protect workers from the significant health risks of extreme heat. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Department of Labor announces extreme heat protections for workers Read More »

How Intelligence Sharing Can Help Keep Major Worldwide Sporting Events on Track

cybercrime, Olympics, Threat Intelligence / SecurityTicks

How Intelligence Sharing Can Help Keep Major Worldwide Sporting Events on Track 2024-07-05 at 15:02 By Marc Solomon The Olympic Games is only 29 days long, so set up and take down is a very intense period, where the threat actors can take advantage. The post How Intelligence Sharing Can Help Keep Major Worldwide Sporting

React to this headline:

How Intelligence Sharing Can Help Keep Major Worldwide Sporting Events on Track Read More »

In Other News: Microsoft Details ICS Flaws, Smart Grill Hacking, Predator Spyware Activity

In Other News, Vulnerabilities / SecurityTicks

In Other News: Microsoft Details ICS Flaws, Smart Grill Hacking, Predator Spyware Activity 2024-07-05 at 15:02 By SecurityWeek News Noteworthy stories that might have slipped under the radar: Microsoft details Rockwell HMI vulnerabilities, smart grills hacked, Predator spyware activity drops. The post In Other News: Microsoft Details ICS Flaws, Smart Grill Hacking, Predator Spyware Activity

React to this headline:

In Other News: Microsoft Details ICS Flaws, Smart Grill Hacking, Predator Spyware Activity Read More »

OVHcloud Sees Record 840 Mpps DDoS Attack

cybercrime, DDoS, Featured, record / SecurityTicks

OVHcloud Sees Record 840 Mpps DDoS Attack 2024-07-05 at 15:02 By Ionut Arghire OVHcloud says it mitigated the largest ever DDoS attack leveraging packet rate, which peaked at 840 Mpps. The post OVHcloud Sees Record 840 Mpps DDoS Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

OVHcloud Sees Record 840 Mpps DDoS Attack Read More »

Blueprint for Success: Implementing a CTEM Operation

Uncategorized / SecurityTicks

Blueprint for Success: Implementing a CTEM Operation 2024-07-05 at 14:46 By The attack surface isn’t what it once was and it’s becoming a nightmare to protect. A constantly expanding and evolving attack surface means risk to the business has skyrocketed and current security measures are struggling to keep it protected. If you’ve clicked on this

React to this headline:

Blueprint for Success: Implementing a CTEM Operation Read More »

Labour wins race to lead UK, but few would envy the load in its tech in-tray

Uncategorized / SecurityTicks

Labour wins race to lead UK, but few would envy the load in its tech in-tray 2024-07-05 at 14:17 By Lindsay Clark Looming train wrecks face winning party after it promises investment and innovation Analysis The United Kingdom woke up to the prospect of a new government this morning, but it faces old problems in

React to this headline:

Labour wins race to lead UK, but few would envy the load in its tech in-tray Read More »

Some Data Is ‘Breached’ During a Hacking Attack on the Alabama Education Department

Data Breaches, education / SecurityTicks

Some Data Is ‘Breached’ During a Hacking Attack on the Alabama Education Department 2024-07-05 at 13:16 By Associated Press Alabama’s education superintendent said some data was breached during a hacking attempt at the State Department of Education. The post Some Data Is ‘Breached’ During a Hacking Attack on the Alabama Education Department appeared first on

React to this headline:

Some Data Is ‘Breached’ During a Hacking Attack on the Alabama Education Department Read More »

GootLoader Malware Still Active, Deploys New Versions for Enhanced Attacks

Uncategorized / SecurityTicks

GootLoader Malware Still Active, Deploys New Versions for Enhanced Attacks 2024-07-05 at 13:02 By The malware known as GootLoader continues to be in active use by threat actors looking to deliver additional payloads to compromised hosts. “Updates to the GootLoader payload have resulted in several versions of GootLoader, with GootLoader 3 currently in active use,”

React to this headline:

GootLoader Malware Still Active, Deploys New Versions for Enhanced Attacks Read More »

Oracle releases experimental next-gen kernel build

Uncategorized / SecurityTicks

Oracle releases experimental next-gen kernel build 2024-07-05 at 12:36 By Liam Proven UEK-next is bleeding edge – unlike most CentOS-alikes Oracle’s Linux engineers have released their build of kernel 6.9 for Oracle Linux – and they’re already planning for 6.10 and beyond.… This article is an excerpt from The Register View Original Source React to

React to this headline:

Oracle releases experimental next-gen kernel build Read More »

Turning Jenkins Into a Cryptomining Machine From an Attacker’s Perspective

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Cyber Threats, Trend Micro Research : Endpoints, Trend Micro Research : Exploits & Vulnerabilities, Trend Micro Research : Malware, Trend Micro Research : Research / SecurityTicks

Turning Jenkins Into a Cryptomining Machine From an Attacker’s Perspective 2024-07-05 at 12:02 By In this blog entry, we will discuss how the Jenkins Script Console can be weaponized by attackers for cryptomining activity if not configured properly. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source React to

React to this headline:

Turning Jenkins Into a Cryptomining Machine From an Attacker’s Perspective Read More »

Europol says mobile roaming tech is making its job too hard

Uncategorized / SecurityTicks

Europol says mobile roaming tech is making its job too hard 2024-07-05 at 11:31 By Connor Jones Privacy measures apparently helping criminals evade capture Top Eurocops are appealing for help from lawmakers to undermine a privacy-enhancing technology (PET) they say is hampering criminal investigations – and it’s not end-to-end encryption this time. Not exactly.… This

React to this headline:

Europol says mobile roaming tech is making its job too hard Read More »

Time Lords decree: No leap second needed in 2024

Uncategorized / SecurityTicks

Time Lords decree: No leap second needed in 2024 2024-07-05 at 09:46 By Laura Dobberstein Let’s not get ahead of ourselves, even if Earth is spinning out The International Earth Rotation and Reference Systems Service (IERS) announced on Thursday there will be no leap second added to 2024.… This article is an excerpt from The

React to this headline:

Time Lords decree: No leap second needed in 2024 Read More »

Infostealing malware masquerading as generative AI tools

cybercrime, ESET, generative AI, Malware, News, report, survey / SecurityTicks

Infostealing malware masquerading as generative AI tools 2024-07-05 at 08:01 By Help Net Security Over the past six months, there has been a notable surge in Android financial threats – malware targeting victims’ mobile banking funds, whether in the form of ‘traditional’ banking malware or, more recently, cryptostealers, according to ESET. Vidar infostealer targets Windows

React to this headline:

Infostealing malware masquerading as generative AI tools Read More »

Polyfill[.]io Attack Impacts Over 380,000 Hosts, Including Major Companies

Uncategorized / SecurityTicks

Polyfill[.]io Attack Impacts Over 380,000 Hosts, Including Major Companies 2024-07-05 at 08:01 By The supply chain attack targeting widely-used Polyfill[.]io JavaScript library is wider in scope than previously thought, with new findings from Censys showing that over 380,000 hosts are embedding a polyfill script linking to the malicious domain as of July 2, 2024. This

React to this headline:

Polyfill[.]io Attack Impacts Over 380,000 Hosts, Including Major Companies Read More »

Good news: Samsung predicts prodigious profit pop

Uncategorized / SecurityTicks

Good news: Samsung predicts prodigious profit pop 2024-07-05 at 07:46 By Simon Sharwood Bad news: It’s probably because you have to pay more for RAM Samsung Electronics has advised investors it is set to post bumper profits and notch a big jump in revenue for the quarter ended June 30.… This article is an excerpt

React to this headline:

Good news: Samsung predicts prodigious profit pop Read More »

99% of IoT exploitation attempts rely on previously known CVEs

Bitdefender, cybersecurity, IoT, Netgear, News, report, survey / SecurityTicks

99% of IoT exploitation attempts rely on previously known CVEs 2024-07-05 at 07:31 By Help Net Security The explosion of Internet of Things (IoT) devices has brought about a wide range of security and privacy challenges, according to Bitdefender and NETGEAR. The report is based on global telemetry of 3.8 million homes and 50 million

React to this headline:

99% of IoT exploitation attempts rely on previously known CVEs Read More »

New Golang-Based Zergeca Botnet Capable of Powerful DDoS Attacks

Uncategorized / SecurityTicks

New Golang-Based Zergeca Botnet Capable of Powerful DDoS Attacks 2024-07-05 at 07:31 By Cybersecurity researchers have uncovered a new botnet called Zergeca that’s capable of conducting distributed denial-of-service (DDoS) attacks. Written in Golang, the botnet is so named for its reference to a string named “ootheca” present in the command-and-control (C2) servers (“ootheca[.]pw” and “ootheca[.]top”).

React to this headline:

New Golang-Based Zergeca Botnet Capable of Powerful DDoS Attacks Read More »

Security leaders discuss three sophisticated nation-state campaigns

Uncategorized / SecurityTicks

Security leaders discuss three sophisticated nation-state campaigns 2024-07-05 at 07:16 By A new report details 3 sophisticated nation-state campaigns, and security leaders share their insights. This article is an excerpt from Subscribe to Security Magazine’s RSS Feed View Original Source React to this headline:

React to this headline:

Security leaders discuss three sophisticated nation-state campaigns Read More »

47% of corporate data stored in the cloud is sensitive

Cloud, cybersecurity, data, News, report, survey, Thales / SecurityTicks

47% of corporate data stored in the cloud is sensitive 2024-07-05 at 07:01 By Help Net Security As the use of the cloud continues to be strategically vital to many organizations, cloud resources have become the biggest targets for cyberattacks, with SaaS applications (31%), cloud storage (30%) and cloud management infrastructure (26%) cited as the

React to this headline:

47% of corporate data stored in the cloud is sensitive Read More »

Organizations weigh the risks and rewards of using AI

AuditBoard, cyber risk, cybersecurity, News, report, survey / SecurityTicks

Organizations weigh the risks and rewards of using AI 2024-07-05 at 06:31 By Help Net Security 78% of organizations are tracking AI as an emerging risk while simultaneously adopting the technology themselves, according to AuditBoard. Organizations prioritize AI risk assessment The report, based on a survey of over 400 security professionals in the US involved

React to this headline:

Organizations weigh the risks and rewards of using AI Read More »

July 2024