Virus Bulletin PUA – a love letter
Late nights at VB2023 featured intriguing interactions between security experts and the somewhat enigmatic world of grayware purveyors
Security
New ‘HTTP/2 Rapid Reset’ technique behind record-breaking DDoS attacks
A new DDoS technique named ‘HTTP/2 Rapid Reset’ is actively employed in attacks since August enabling record-breaking attacks. Researchers disclosed…
A flaw in libcue library impacts GNOME Linux systems
A vulnerability in the libcue library impacting GNOME Linux systems can be exploited to achieve remote code execution (RCE) on…
Exposed security cameras in Israel and Palestine pose significant risks
Many poorly configured security cameras are exposed to hacktivists in Israel and Palestine, placing the owners using them and the…
Model Extraction Attack on Neural Networks
Adi Shamir et al. have a new model extraction attack on neural networks: Polynomial Time Cryptanalytic Extraction of Neural Network…
Hacktivists in Palestine and Israel after SCADA and other industrial control systems
Both pro-Israeli and pro-Palestinian hacktivists have joined the fight and are targeting SCADA and ICS systems. Both pro-Israeli and pro-Palestinian…
Weekly Update 368
Presently sponsored by: Online fraud is everywhere. Secure your finances and personal info with Aura’s award-winning identity protection. Protect your…
Large-scale Citrix NetScaler Gateway credential harvesting campaign exploits CVE-2023-3519
IBM observed a credential harvesting campaign that is targeting Citrix NetScaler gateways affected by the CVE-2023-3519 vulnerability. IBM’s X-Force researchers…
The source code of the 2020 variant of HelloKitty ransomware was leaked on a cybercrime forum
A threat actor has leaked the source code for the first version of the HelloKitty ransomware on a Russian-speaking cybercrime…
7 Ways to Make the Most of Cybersecurity Awareness Month
October is a month often associated with the spookiness of Halloween, but for the tech-savvy, it also marks Cybersecurity Awareness…