2024

North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware 2024-10-16 at 14:46 By The North Korean threat actor known as ScarCruft has been linked to the zero-day exploitation of a now-patched security flaw in Windows to infect devices with malware known as RokRAT. The vulnerability in question is CVE-2024-38178 (CVSS score: 7.5), a memory […]

Open-sourcing of WinAmp goes badly as owners delete entire repo 2024-10-16 at 14:14 By Liam Proven As badly as the later development of WinAmp itself, really The owners of WinAmp have just deleted their entire repo one month after uploading the source code to GitHub. Lots of source code, and quite possibly, not all of

‘Newport would look like Dubai’ if guy could dumpster dive for lost Bitcoin hard drive 2024-10-16 at 13:31 By Richard Currie To Wales now, where crypto bro sues to be allowed to excavate landfill site Last time we met 39-year-old James Howells from Newport, Wales, he was petitioning his local council to let him excavate

5 Techniques for Collecting Cyber Threat Intelligence 2024-10-16 at 13:31 By To defend your organization against cyber threats, you need a clear picture of the current threat landscape. This means constantly expanding your knowledge about new and ongoing threats. There are many techniques analysts can use to collect crucial cyber threat intelligence. Let’s consider five

NHS England warned about plans to extend Covid-era rules for patient data access 2024-10-16 at 12:31 By Lindsay Clark Governance and public consultation need work before rule change goes ahead A group overseeing UK health data sharing has advised the government not to expand legal rules allowing access to patient information introduced during the Covid

Openreach reveals latest locations facing the copper chop 2024-10-16 at 11:31 By Dan Robinson A reminder to get fiber (eventually) or get left behind BT infrastructure arm Openreach has disclosed the latest exchange locations where it plans to stop selling phone and broadband services that use copper cabling as part of its ambition to get

Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack 2024-10-16 at 10:46 By A new spear-phishing campaign targeting Brazil has been found delivering a banking malware called Astaroth (aka Guildma) by making use of obfuscated JavaScript to slip past security guardrails. “The spear-phishing campaign’s impact has targeted various industries, with manufacturing companies, retail firms, and

Internet Archive wobbles back online, with limited functionality 2024-10-16 at 10:31 By Simon Sharwood DDoS detectives deduce Mirai used to do the deed, using home entertainment boxes in Korea, China, and Brazil The Internet Archive has come back online, in slightly degraded mode, after repelling an October 9 DDoS attack and then succumbing to a

Google’s memory safety plan includes rehab for unsafe languages 2024-10-16 at 09:31 By Thomas Claburn Large C and C++ codebases will be around for the ‘foreseeable future’ Google has revealed that its approach to making programming code more memory safe involves both the adoption of memory safe languages and making unsafe languages more secure –

GitHub Patches Critical Flaw in Enterprise Server Allowing Unauthorized Instance Access 2024-10-16 at 08:47 By GitHub has released security updates for Enterprise Server (GHES) to address multiple issues, including a critical bug that could allow unauthorized access to an instance. The vulnerability, tracked as CVE-2024-9487, carries a CVS score of 9.5 out of a maximum

CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability 2024-10-16 at 08:47 By The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting SolarWinds Web Help Desk (WHD) software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. Tracked as CVE-2024-28987 (CVSS score: 9.1),