Ivanti issued updates for 10 critical Endpoint Manager vulnerabilities, including CVE-2024-29847 (CVSS 10.0), which allows remote code execution.

Details: https://thehackernews.com/2024/09/ivanti-releases-urgent-security-updates.html

No known exploits yet, but updates are essential. Don't delay!

#Microsoft’s September Patch Tuesday addresses 79 vulnerabilities, including 7 critical ones, with 3 under active attack. CVE-2024-43491 (CVSS 9.8) is a major threat with remote code execution risk.

Details here: https://thehackernews.com/2024/09/microsoft-issues-patches-for-79-flaws.html

Patch your systems immediately!

North Korean hackers are targeting developers through job interviews by embedding malware in coding assessments, exploiting job seekers' focus to compromise their systems.

Learn more: https://thehackernews.com/2024/09/developers-beware-lazarus-group-uses.html

Microsoft 365’s Shared Responsibility Model means YOU must protect your data, not Microsoft. Assuming they handle backups can lead to costly mistakes.

A proactive strategy can save you from compliance breaches & losses.

Read > https://thehackernews.com/expert-insights/2024/08/how-to-modernize-your-microsoft-365.html

⚠️ Singapore authorities arrest six individuals, including five Chinese nationals, linked to a global #cybercrime syndicate.

Laptops, phones, cash & over $850,000 in #cryptocurrency seized—showing the scale of the operation.

Learn more: https://thehackernews.com/2024/09/singapore-police-arrest-six-for-alleged.html

Passwords are risky—80% of breaches stem from weak or reused credentials. Passwordless isn’t a cure-all. Legacy systems & biometric privacy pose challenges.

Strengthen security with strong passwords + MFA.

Act now: https://thehackernews.com/2024/09/why-is-it-so-challenging-to-go.html

🔴 A "Chinese-speaking actor" is behind DragonRank, targeting IIS servers with BadIIS malware for SEO fraud.

Multiple industries, from healthcare to IT, are affected through vulnerable web apps like WordPress and phpMyAdmin.

Learn more: https://thehackernews.com/2024/09/dragonrank-black-hat-seo-campaign.html

🚀 vPenTest is the G2 Leader for Network Penetration Testing! 🚀

Trust isn’t given, it’s earned—and vPenTest from Vonahi Security has proven its worth! Thanks to outstanding reviews and high ratings from real users on G2, we’ve secured the top spot for Network Penetration Testing.

Want to see why? Experience the power of automated pentesting!

Schedule a free demo > https://thn.news/vpentest-network

⚠️ Quad7 botnet is rapidly compromising SOHO routers and VPNs from TP-LINK, Zyxel, Asus, and NETGEAR. Its new stealthy backdoor increases risks for businesses, especially with remote work setups.

Learn more: https://thehackernews.com/2024/09/quad7-botnet-expands-to-target-soho.html

Starting Oct 1, 2024, WordPress~org will mandate 2FA for accounts updating plugins/themes due to rising attacks on repositories. SVN passwords will add another layer of protection by securing commit access without exposing main credentials.

https://thehackernews.com/2024/09/wordpress-mandates-two-factor.html

Ireland’s Data Protection Commission (DPC) has launched a cross-border inquiry into Google’s AI model (PaLM 2) to investigate compliance with data protection laws.

Learn more: https://thehackernews.com/2024/09/irelands-watchdog-launches-inquiry-into.html

⚠️ Iranian APT OilRig is targeting Iraqi government networks with new malware Veaty and Spearal, using DNS tunneling and email-based C2 channels to infiltrate systems.

Learn more: https://thehackernews.com/2024/09/iranian-cyber-group-oilrig-targets.html

SaaS adoption is skyrocketing, but so are blind spots and third-party risks.

🔎 Visibility is the key to identifying and mitigating these risks. Every layer of your SaaS ecosystem must be accounted for—are you aware of every app in use?

Learn more: https://thehackernews.com/expert-insights/2024/09/how-confident-are-you-that-your.html

🔥 Selenium Grid Targeted for Crypto Mining!

Default no-auth settings make it a prime target for attackers injecting crypto miners and proxyjacking scripts.

Learn more: https://thehackernews.com/2024/09/exposed-selenium-grid-servers-targeted.html

AI’s potential is limitless, but only if we can trust it.

Their unpredictability introduces significant concerns, mainly regarding data security and privacy.

How can developers ensure their AI products are not just innovative, but safe?

Find out in this blog by Sentra’s CTO and Co-Founder, Ron Reiter: https://thn.news/ai-data-privacy-tips

🚨 Alert: Over 1.3M Android TV Boxes Compromised by New 'Vo1d' Malware.

This backdoor installs harmful apps undetected, targeting vulnerable OS versions. Businesses with unmonitored devices may unknowingly be affected

Read: https://thehackernews.com/2024/09/beware-new-vo1d-malware-infects-13.html

⚠️ New threat actor IntelBroker is selling data from Apple, Space-Eyes, & Facebook.

Cato CTRL's investigation reveals how deeply cybercriminals are embedded in hacking forums. If these giants can be compromised, so can anyone.

Read: https://thehackernews.com/2024/09/top-3-threat-report-insights-for-q2-2024.html

GitLab has just released patches for 17 vulnerabilities, including a critical flaw (CVE-2024-6678) with a CVSS score of 9.9/10.

This flaw could allow attackers to execute pipeline jobs as arbitrary users, posing a severe risk to your development environments.

This is the fourth critical flaw GitLab has patched in the past year.

Learn more: https://thehackernews.com/2024/09/urgent-gitlab-patches-critical-flaw.html

Don’t wait for an exploit—apply the update today!

🔐 Researchers have uncovered Ajina.Banker, a new #Android malware that steals financial data and intercepts 2FA via #Telegram.



It spreads through fake apps, targeting users across Central Asia.



Find details here: https://thehackernews.com/2024/09/new-android-malware-ajinabanker-steals.html



Double-check app sources and educate clients on mobile security best practices.

🔒 Just-in-time access in Privileged Identity Management (PIM) faces scrutiny for security gaps. Attackers know how to exploit it, making "just-in-time" feel like "all-the-time" access.

Learn more: https://thehackernews.com/expert-insights/2024/09/privileged-identity-management-pim-for.html

🚨 A new Linux malware, "Hadooken," is exploiting weak credentials and vulnerabilities in Oracle Weblogic to deploy cryptocurrency miners and DDoS botnets.

https://thehackernews.com/2024/09/new-linux-malware-campaign-exploits.html

The malware uses Python and shell scripts to spread laterally, creating a persistent threat.