Sign up for Scout Insight's free trial today! Get immediate insights into threats, search any IP with no training required, and enjoy intuitive graphical results. Whether you need to identify compromised hosts or enrich Splunk queries, Scout Insight has you covered. Don’t wait – accelerate your threat response now. Visit team-cymru.com/cyberwire to start your free trial!
This groundbreaking report leverages skills data from the professional members of Women in CyberSecurity (WiCyS), and establishes a new benchmark for understanding the capabilities and potential of women in cybersecurity. For more information on the Cyber Talent Study and to access the full report, please visit www.n2k.com/wicys.
TeamViewer has provided an update on last Wednesday's attack against its corporate IT environment, which the company has attributed to Russia's APT29. TeamViewer said yesterday, "As the investigation progresses, we reconfirm that the attack has been contained to our internal corporate IT environment. Most importantly, our assessment reconfirms that it did not touch our separated product environment, nor the TeamViewer connectivity platform, nor any customer data. According to current findings the threat actor leveraged a compromised employee account to copy employee directory data, i.e. names, corporate contact information, and encrypted employee passwords for our internal corporate IT environment. We have informed our employees and the relevant authorities."
Modernize your identity infrastructure and get rid of technical debt without sacrificing your complex access policies. Use Strata to integrate non-standard apps with any identity service while using any vendor, standard, or app architecture. Or use it to migrate away from outdated identity providers and consolidate IDPs. It’s seamless, simple and code-free. Share your top identity security priorities, and receive a pair of complimentary AirPods Pro.
Juniper Networks has issued an emergency patch for a critical authentication bypass vulnerability affecting Session Smart router and conductor products, SecurityWeek reports. The vulnerability (CVE-2024-2973) has been assigned a CVSS score of 10, and "allows a network-based attacker to bypass authentication and take full control of the device."
An Interpol operation seized $257 million and resulted in the arrests of 3,950 suspects linked to organized scam networks, the Record reports. The effort, dubbed "Operation First Light 2024," involved police forces from sixty-one countries and targeted "phishing, investment fraud, fake online shopping sites, romance, and impersonation scams."
Subscribe to N2K's monthly News2Knowledge Letter to stay on top of the latest training product releases and exam retirements, get certification and career development resources to support your learning journey, and keep up with the latest industry news and research on workforce development. You’ll also be the first to get our exclusive product promotions and discounts.
Researchers at Qualys have discovered an unauthenticated remote code execution vulnerability (CVE-2024-6387) affecting OpenSSH’s server (sshd) in glibc-based Linux systems, the Register reports. Qualys explains, "[W]e identified that this vulnerability is a regression of the previously patched vulnerability CVE-2006-5051, reported in 2006. A regression in this context means that a flaw, once fixed, has reappeared in a subsequent software release, typically due to changes or updates that inadvertently reintroduce the issue. This incident highlights the crucial role of thorough regression testing to prevent the reintroduction of known vulnerabilities into the environment. This regression was introduced in October 2020 (OpenSSH 8.5p1)."
The researchers add, "This bug marks the first OpenSSH vulnerability in nearly two decades—an unauthenticated RCE that grants full root access. It affects the default configuration and does not require user interaction, posing a significant exploit risk."
Ubuntu issued patched versions of OpenSSH today.
Today's issue includes events affecting , and Russia the United States.
Router maker's support portal hacked, replies with MetaMask phishing (BleepingComputer) BleepingComputer has verified that the helpdesk portal of a router manufacturer is currently sending MetaMask phishing emails in response to newly filed support tickets, in what appears to be a compromise.
Police allege ‘evil twin’ in-flight Wi-Fi used to steal info (The Register) Fasten your seat belts, secure your tray table, and try not to give away your passwords
Supply Chain Compromise Leads to Trojanized Installers (Rapid7) Rapid7 investigated suspicious behavior emanating from the installation of Notezilla, RecentX, & Copywhiz. These installers are distributed by Conceptworld.
Nearly 4,000 arrested in global police crackdown on online scam networks (The Record) International law enforcement said on Thursday that it dismantled online scam networks in several countries, arresting over 3,900 suspects and seizing $257 million in illegally obtained assets.
Inside a violent gang’s ruthless crypto-stealing home invasion spree (Ars Technica) More than a dozen men threatened, assaulted, tortured, or kidnapped 11 victims.
For a complete running list of events, please visit the Event Tracker.
SANSFIRE Washington, DC 2024 (Washington (or virtual), DC, USA, Jul 15 - 20, 2024) At SANSFIRE Washington, DC 2024, choose from 48 interactive courses with hands-on labs. Practice your skills and compete against your peers during NetWars Tournaments, and network with your instructor and industry colleagues in real-time. Each course includes electronic and printed books, and several courses align with GIAC certifications!
