Microsoft Uncovers Austrian Company Exploiting Windows and Adobe Zero-Day Exploits

Microsoft Uncovers Austrian Company Exploiting Windows and Adobe Zero-Day Exploits,

A cyber mercenary that « ostensibly sells general security and information analysis services to commercial customers » used several Windows and Adobe zero-day exploits in limited and highly-targeted attacks against European and Central American entities.
The company, which Microsoft describes as a private-sector offensive actor (PSOA), is an Austria-based outfit called DSIRF that’s linked to the

,

A cyber mercenary that « ostensibly sells general security and information analysis services to commercial customers » used several Windows and Adobe zero-day exploits in limited and highly-targeted attacks against European and Central American entities.
The company, which Microsoft describes as a private-sector offensive actor (PSOA), is an Austria-based outfit called DSIRF that’s linked to the

, ,
https://thehackernews.com/2022/07/microsoft-uncover-austrian-company.html

Top MSSP CEOs Share 7 Must-Do Tips for Higher MSSP Revenue and Margin

Top MSSP CEOs Share 7 Must-Do Tips for Higher MSSP Revenue and Margin,

MSSPs must find ways to balance the need to please existing customers, add new ones, and deliver high-margin services against their internal budget constraints and the need to maintain high employee morale.In an environment where there are thousands of potential alerts each day and cyberattacks are growing rapidly in frequency and sophistication, this isn’t an easy balance to maintain.
Customers

,

MSSPs must find ways to balance the need to please existing customers, add new ones, and deliver high-margin services against their internal budget constraints and the need to maintain high employee morale.In an environment where there are thousands of potential alerts each day and cyberattacks are growing rapidly in frequency and sophistication, this isn’t an easy balance to maintain.
Customers

, ,
https://thehackernews.com/2022/07/top-mssp-ceos-share-7-must-do-tips-for.html

LibreOffice Releases Software Update to Patch 3 New Vulnerabilities

LibreOffice Releases Software Update to Patch 3 New Vulnerabilities,

The team behind LibreOffice has released security updates to fix three security flaws in the productivity software, one of which could be exploited to achieve arbitrary code execution on affected systems.
Tracked as CVE-2022-26305, the issue has been described as a case of improper certificate validation when checking whether a macro is signed by a trusted author, leading to the execution of

,

The team behind LibreOffice has released security updates to fix three security flaws in the productivity software, one of which could be exploited to achieve arbitrary code execution on affected systems.
Tracked as CVE-2022-26305, the issue has been described as a case of improper certificate validation when checking whether a macro is signed by a trusted author, leading to the execution of

, ,
https://thehackernews.com/2022/07/libreoffice-releases-software-security.html

U.S. Offers $10 Million Reward for Information on North Korean Hackers

U.S. Offers $10 Million Reward for Information on North Korean Hackers,

The U.S. State Department has announced rewards of up to $10 million for any information that could help disrupt North Korea’s cryptocurrency theft, cyber-espionage, and other illicit state-backed activities.
« If you have information on any individuals associated with the North Korean government-linked malicious cyber groups (such as Andariel, APT38, Bluenoroff, Guardians of Peace, Kimsuky, or

,

The U.S. State Department has announced rewards of up to $10 million for any information that could help disrupt North Korea’s cryptocurrency theft, cyber-espionage, and other illicit state-backed activities.
« If you have information on any individuals associated with the North Korean government-linked malicious cyber groups (such as Andariel, APT38, Bluenoroff, Guardians of Peace, Kimsuky, or

, ,
https://thehackernews.com/2022/07/us-offers-10-million-reward-for.html

L’Union européenne a trouvé des preuves que des téléphones de ses employés ont été compromis par Pegasus

L’Union européenne a trouvé des preuves que des téléphones de ses employés ont été compromis par Pegasus,

,

Le drapeau européen sur l'écran d'un iPhone, d'Apple.

En consultant une lettre échangée entre deux représentants de l’Union européenne, Reuters a pu apprendre que les smartphones de membres de la Commission européenne auraient été compromis par le logiciel espion. Une enquête est en cours, le commanditaire de l’attaque n’est pas encore connu.

L’article L’Union européenne a trouvé des preuves que des téléphones de ses employés ont été compromis par Pegasus est à retrouver sur 01net.com.

, ,
https://www.01net.com/actualites/lunion-europeenne-a-trouve-des-preuves-que-des-telephones-de-ses-employes-ont-ete-compromis-par-pegasus.html

These 28+ Android Apps with 10 Million Downloads from the Play Store Contain Malware

These 28+ Android Apps with 10 Million Downloads from the Play Store Contain Malware,

As many as 30 malicious Android apps with cumulative downloads of nearly 10 million have been found on the Google Play Store distributing adware.
« All of them were built into various programs, including image-editing software, virtual keyboards, system tools and utilities, calling apps, wallpaper collection apps, and others, » Dr.Web said in a Tuesday write-up.
While masquerading as innocuous

,

As many as 30 malicious Android apps with cumulative downloads of nearly 10 million have been found on the Google Play Store distributing adware.
« All of them were built into various programs, including image-editing software, virtual keyboards, system tools and utilities, calling apps, wallpaper collection apps, and others, » Dr.Web said in a Tuesday write-up.
While masquerading as innocuous

, ,
https://thehackernews.com/2022/07/these-28-android-apps-with-10-million.html

New Ducktail Infostealer Malware Targeting Facebook Business and Ad Accounts

New Ducktail Infostealer Malware Targeting Facebook Business and Ad Accounts,

Facebook business and advertising accounts are at the receiving end of an ongoing campaign dubbed Ducktail designed to seize control as part of a financially driven cybercriminal operation. 
« The threat actor targets individuals and employees that may have access to a Facebook Business account with an information-stealer malware, » Finnish cybersecurity company WithSecure (formerly F-Secure

,

Facebook business and advertising accounts are at the receiving end of an ongoing campaign dubbed Ducktail designed to seize control as part of a financially driven cybercriminal operation. 
« The threat actor targets individuals and employees that may have access to a Facebook Business account with an information-stealer malware, » Finnish cybersecurity company WithSecure (formerly F-Secure

, ,
https://thehackernews.com/2022/07/new-ducktail-infostealer-malware.html

Taking the Risk-Based Approach to Vulnerability Patching

Taking the Risk-Based Approach to Vulnerability Patching,

Software vulnerabilities are a major threat to organizations today. The cost of these threats is significant, both financially and in terms of reputation.Vulnerability management and patching can easily get out of hand when the number of vulnerabilities in your organization is in the hundreds of thousands of vulnerabilities and tracked in inefficient ways, such as using Excel spreadsheets or

,

Software vulnerabilities are a major threat to organizations today. The cost of these threats is significant, both financially and in terms of reputation.Vulnerability management and patching can easily get out of hand when the number of vulnerabilities in your organization is in the hundreds of thousands of vulnerabilities and tracked in inefficient ways, such as using Excel spreadsheets or

, ,
https://thehackernews.com/2022/07/taking-risk-based-approach-to.html

Sabotage de fibres optiques à Paris : l’identité des auteurs est toujours un mystère

Sabotage de fibres optiques à Paris : l’identité des auteurs est toujours un mystère,

,

fibre optique

L’identité des individus ayant saboté trois câbles de fibre optique à Paris est toujours un mystère. Plusieurs mois après les faits, l’attaque semble avoir été orchestrée par un groupe de professionnels. Certains experts soupçonnent des groupes écologistes radicaux.

L’article Sabotage de fibres optiques à Paris : l’identité des auteurs est toujours un mystère est à retrouver sur 01net.com.

, ,
https://www.01net.com/actualites/sabotage-fibres-optiques-paris-identite-auteurs-toujours-mystere.html

Malicious IIS Extensions Gaining Popularity Among Cyber Criminals for Persistent Access

Malicious IIS Extensions Gaining Popularity Among Cyber Criminals for Persistent Access,

Threat actors are increasingly abusing Internet Information Services (IIS) extensions to backdoor servers as a means of establishing a « durable persistence mechanism. »
That’s according to a new warning from the Microsoft 365 Defender Research Team, which said that « IIS backdoors are also harder to detect since they mostly reside in the same directories as legitimate modules used by target

,

Threat actors are increasingly abusing Internet Information Services (IIS) extensions to backdoor servers as a means of establishing a « durable persistence mechanism. »
That’s according to a new warning from the Microsoft 365 Defender Research Team, which said that « IIS backdoors are also harder to detect since they mostly reside in the same directories as legitimate modules used by target

, ,
https://thehackernews.com/2022/07/malicious-iis-extensions-gaining.html