PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released https://firewall.firm.in/wp-content/uploads/2024/11/paloaltonetworks-exploit.png Nov 16, 2024Ravie LakshmananVulnerability / Network Security Palo Alto Networks has released new indicators of compromise (IoCs) a day after the network security vendor confirmed that a new zero-day vulnerability impacting its PAN-OS firewall management interface has been actively exploited in the wild. To that end, the company said it ...

T-Mobile hacked in massive Chinese breach of telecom networks: Report – ET CISO https://etimg.etb2bimg.com/thumb/msid-115356410,imgsize-199428,width-1200,height=765,overlay-etciso/data-breaches/t-mobile-hacked-in-massive-chinese-breach-of-telecom-networks-report.jpg T-Mobile’s network was among the systems hacked in a damaging Chinese cyber-espionage operation that gained entry into multiple U.S. and international telecommunications companies, The Wall Street Journal reported on Friday citing people familiar with the matter. Hackers linked to a Chinese intelligence agency were able to ...

Researchers Warn of Privilege Escalation Risks in Google’s Vertex AI ML Platform https://firewall.firm.in/wp-content/uploads/2024/11/ai.png Nov 15, 2024Ravie LakshmananArtificial Intelligence / Vulnerability Cybersecurity researchers have disclosed two security flaws in Google’s Vertex machine learning (ML) platform that, if successfully exploited, could allow malicious actors to escalate privileges and exfiltrate models from the cloud. “By exploiting custom job permissions, we were able to ...

Telangana Cyber Security Bureau arrests 165 cybercriminals in 6 months – ET CISO https://etimg.etb2bimg.com/thumb/msid-115166897,imgsize-5128,width-1200,height=765,overlay-etciso/cybercrime-fraud/telangana-cyber-security-bureau-arrests-165-cybercriminals-in-6-months.jpg Hyderabad, Telangana Cyber Security Bureau (TGCSB) has arrested 165 cyber criminals from across the country during the last six months. TGSCB director Shikha Goel said on Sunday that these cyber criminals were involved in 76 cases registered at seven cybercrime police stations in the state. In ...

Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations https://firewall.firm.in/wp-content/uploads/2024/11/iranian-hackers.png Nov 15, 2024Ravie LakshmananCyber Espionage / Malware Cybersecurity researchers have shed light on a new remote access trojan and information stealer used by Iranian state-sponsored actors to conduct reconnaissance of compromised endpoints and execute malicious commands. Cybersecurity company Check Point has codenamed the malware WezRat, stating it has been ...

Meeting Modern Security Demands: The evolution of security integrators into hybrid solution providers – ET CISO https://etimg.etb2bimg.com/thumb/msid-115169950,imgsize-11204,width-1200,height=765,overlay-etciso/next-gen-tech/meeting-modern-security-demands-the-evolution-of-security-integrators-into-hybrid-solution-providers.jpg The security industry’s evolution from traditional models to hybrid, technology-driven solutions underscore the need for a comprehensive approach. As technological advancements continue at an unprecedented pace and security threats grow increasingly complex, the security industry finds itself at a critical crossroads. Traditional, isolated ...

Vietnamese Hacker Group Deploys New PXA Stealer Targeting Europe and Asia https://firewall.firm.in/wp-content/uploads/2024/11/hacking.png Nov 15, 2024Ravie LakshmananMalware / Credential Theft A Vietnamese-speaking threat actor has been linked to an information-stealing campaign targeting government and education entities in Europe and Asia with a new Python-based malware called PXA Stealer. The malware “targets victims’ sensitive information, including credentials for various online accounts, VPN ...

VVDN, SecureThings ink pact for cybersecurity in connected vehicles, IoT, network & WiFi gear – ET CISO https://etimg.etb2bimg.com/thumb/msid-115202288,imgsize-173768,width-1200,height=765,overlay-etciso/cybercrime-fraud/vvdn-securethings-ink-pact-for-cybersecurity-in-connected-vehicles-iot-network-wifi-gear.jpg NEW DELHI: Homegrown IT hardware and telecom gear maker VVDN Technologies on Tuesday said it has signed a memorandum of understanding (MoU) with SecureThings.ai to integrate cybersecurity into products and solutions for automotive, networking and Wi-Fi, Internet of Things (IoT), and Cloud ...

High-Severity Flaw in PostgreSQL Allows Hackers to Exploit Environment Variables https://firewall.firm.in/wp-content/uploads/2024/11/pistgresql.png Nov 15, 2024Ravie LakshmananVulnerability / Database Security Cybersecurity researchers have disclosed a high-severity security flaw in the PostgreSQL open-source database system that could allow unprivileged users to alter environment variables, and potentially lead to code execution or information disclosure. The vulnerability, tracked as CVE-2024-10979, carries a CVSS score of ...

Russian cybersecurity experts keen to share expertise with India amid rising threats – ET CISO https://etimg.etb2bimg.com/thumb/msid-115202952,imgsize-48156,width-1200,height=765,overlay-etciso/cybercrime-fraud/russian-cybersecurity-experts-keen-to-share-expertise-with-india-amid-rising-threats.jpg As India’s digital landscape expands rapidly, so too do the threats posed by cybercriminals targeting the country’s key sectors and sensitive data. A leading Russian cybersecurity firm Positive Technologies has revealed that more than two-thirds of cyberattacks in India lead to leaks of confidential ...