<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 4/15/2024

SHARE

Top News

"Highly capable" hackers root corporate networks by exploiting firewall 0-day

Highly capable hackers are rooting multiple corporate networks by exploiting a maximum-severity zero-day vulnerability in a firewall product from Palo Alto Networks, researchers said Friday. The vulnerability, which has been under active exploitation for at least two weeks now, allows the hackers with no authentication to execute malicious code with root privileges, the highest possible level of system access, researchers said. READ MORE...

Breaches

With Sisense compromise, the race begins to understand the impact

The Cybersecurity and Infrastructure Security Agency is responding to a compromise at data analytics firm Sisense, the agency said Thursday in a security alert. The company, with offices in New York, Tel Aviv and London, is a business intelligence and data analytics platform for businesses around the world. CISA urged Sisense customers to reset credentials and any secrets potentially exposed to the attack. READ MORE...


Hacker claims Giant Tiger data breach, leaks 2.8M records online

Canadian retail chain Giant Tiger disclosed a data breach in March 2024. A threat actor has now publicly claimed responsibility for the data breach and leaked 2.8 million records on a hacker forum that they claim are of Giant Tiger customers. Data breach monitoring service HaveIBeenPwned has added the leaked database to its website to make it easy for users to check if their information was compromised. READ MORE...


Roku warns 576,000 accounts hacked in new credential stuffing attacks

Roku warns that 576,000 accounts were hacked in new credential stuffing attacks after disclosing another incident that compromised 15,000 accounts in early March. The company said the attackers used login information stolen from other online platforms to breach as many active Roku accounts as possible in credential stuffing attacks. In such attacks, the threat actors leverage automated tools to attempt millions of logins using a list of user/password pairs. READ MORE...

Hacking

Former Security Engineer Sentenced to Prison for Hacking Crypto Exchanges

Shakeeb Ahmed, a former senior security engineer, was sentenced to three years in prison for hacking and defrauding two cryptocurrency exchanges. Ahmed, 34, of New York, New York, was arrested in July 2023, one year after the attacks occurred. He pleaded guilty in December. According to court documents, in early July 2022, Ahmed defrauded a decentralized cryptocurrency exchange of roughly $9 million. READ MORE...

Software Updates

Delinea Secret Server customers should apply latest patches

Customers of Delinea's Secret Server are being urged to upgrade their installations "immediately" after a researcher claimed a critical vulnerability could allow attackers to gain admin-level access. Secret Server is a privileged access management (PAM) product from Delinea (formerly known as Thycotic and ThycoticCentrify), meaning admin-level access could provide attackers with a way into account credentials of an organization's most senior staff. READ MORE...

Malware

Two People Arrested in Australia and US for Development and Sale of Hive RAT

Authorities in Australia and the US have announced the arrest and indictment of two individuals for their roles in the development and sale of the Hive remote access trojan (RAT). Initially developed and distributed under the name of Firebird, the malware was marketed as a remote access tool that could stay hidden and steal sensitive information from the targeted systems. READ MORE...

Information Security

Federal agencies caught sharing credentials with Microsoft over email

The Russia-linked hackers behind the attack on Microsoft's internal systems starting in late November stole credentials for federal agencies that could be used to compromise government departments, cyber authorities said Thursday. The Cybersecurity and Infrastructure Security Agency issued an emergency directive on April 2, which it made public Thursday, requiring federal agencies to reset credentials and hunt for potential breaches or malicious activity. READ MORE...

On This Date

  • ...in 1452, Italian painter, sculptor, and architect Leonardo da Vinci is born in Florence.
  • ...in 1865, at 7:22 a.m., Abraham Lincoln, the 16th president of the United States, dies from a bullet wound inflicted the night before by John Wilkes Booth.
  • ...in 1912, the British ocean liner Titanic sinks into the North Atlantic Ocean about 400 miles south of Newfoundland, Canada.
  • ...in 1947, Jackie Robinson, age 28, becomes the first African American player in Major League Baseball.