Secret Service says it dismantled extensive telecom threat in NYC area
The Secret Service said Tuesday that it disrupted a network of electronic devices in the New York City area that posed imminent telecommunications-based threats to U.S. government officials and potentially the United Nations General Assembly meeting currently underway. The range of threats included enabling encrypted communications between threat groups and criminals, or disabling cell towers and conducting denial-of-service attacks to shut down cell communications in the region. READ MORE...
Airport Chaos Shows Human Impact of 3rd-Party Attacks
A cyberattack targeting ticketing and check-in software used in several European airports caused widespread disruptions over the weekend that continued to affect flights and passengers on Monday. The ongoing incident demonstrates the human impact of increasing cyberattacks on critical infrastructure, especially through third-party software and services, security experts said. RTX, the parent company of Collins Aerospace, acknowledged an attack on Collins' MUSE software at "select airports." READ MORE...
CISA says hackers breached federal agency using GeoServer exploit
CISA has revealed that attackers breached the network of an unnamed U.S. federal civilian executive branch (FCEB) agency last year after compromising an unpatched GeoServer instance. The security bug (tracked as CVE-2024-36401) is a critical remote code execution (RCE) vulnerability patched on June 18, 2024. CISA added the flaw to its catalog of actively exploited vulnerabilities roughly one month later, after multiple security researchers shared proof-of-concept exploits online. READ MORE...
Scammers are impersonating the FBI to steal your personal data
Been scammed? Hoping to report it to the FBI? Definitely do so, but be careful. Spoofed versions of the FBI's Internet Crime Complaint Center (IC3) website are now circulating online, and they lead straight back to the scammers. The FBI issued an advisory last week, warning that cybercriminals are setting up fake versions of their site to tempt people into entering their personal information. Criminals spoof legitimate sites like the IC3 portal using techniques including 'typosquatting'. READ MORE...
Cops cuff another teen over alleged Scattered Spider attack that broke Vegas casinos
A teen surrendered to Las Vegas police and was booked on suspicion of breaking into multiple Las Vegas casino networks in 2023, as part of a series of hacks attributed to Scattered Spider. The FBI's Las Vegas Cyber Task Force, which includes the Las Vegas Metropolitan Police Department's Cyber Investigative Group, probed the casino attacks, which occurred between August and October 2023. The juvenile suspect turned himself in on September 17. READ MORE...
Here's how potent Atomic credential stealer is finding its way onto Macs
Ads prominently displayed on search engines are impersonating a wide range of online services in a bid to infect Macs with a potent credential stealer, security companies have warned. The latest reported target is users of the LastPass password manager. Late last week, LastPass said it detected a widespread campaign that used search engine optimization to display ads for LastPass macOS apps at the top of search results returned by search engines, including Google and Bing. READ MORE...
ShadowV2 DDoS Service Lets Customers Self-Manage Attacks
A newly discovered distributed denial-of-service (DDoS) botnet targets misconfigured Docker containers for infection and offers a new service model where customers launch their own attacks, Darktrace reports. The operation, named ShadowV2, breaks the traditional DDoS service model with the use of a Python-based command-and-control (C&C) platform hosted on GitHub CodeSpaces, and a sophisticated attack toolkit that combines traditional malware with modern DevOps technology. READ MORE...
NPM package caught using QR Code to fetch cookie-stealing malware
Newly discovered npm package 'fezbox' employs QR codes to retrieve cookie-stealing malware from the threat actor's server. The package, masquerading as a utility library, leverages this innovative steganographic technique to harvest sensitive data, such as user credentials, from a compromised machine. While 2D barcodes like QR codes have conventionally been designed for humans, to hold marketing content or share links, attackers have found a new purpose for them. READ MORE...
Iran-Linked Hackers Target Europe With New Malware
An Iran-linked cyber-espionage group has expanded its operations beyond its traditional Middle Eastern hunting grounds to target critical infrastructure organizations across Western Europe using constantly improving malware variants and attack tactics. Researchers at Check Point Software are tracking the threat group as "Nimbus Manticore," which they said overlaps with UNC1549, or Smoke Sandstorm. READ MORE...
Top 25 MCP Vulnerabilities Reveal How AI Agents Can Be Exploited
MCP has become an integral part of the expansion of agentic AI but comes with its own vulnerabilities. Model Context Protocol (MCP), developed by Anthropic and released as an open standard in 2024, is the de facto (not absolute) standard method of ensuring a consistent and safe interface between an AI agent (or agents) and the data source (or sources). It specifies how AI agents interact with tools, other agents, data, and context in a safe and auditable manner whenever required. READ MORE...
- ...in 1846, German astronomer Johann Gottfried Galle discovers the planet Neptune at the Berlin Observatory.
- ...in 1889, Nintendo is founded in Kyoto, Japan. The company's original business was the manufacture and sale of handmade playing cards.
- ...in 1930, musician and popular music trailblazer Ray Charles ("I've Got A Woman", "What'd I Say") is born in Albany, GA.
- ...in 2002, the first public version of the Mozilla Firefox web browser is released.
