Sign up to save your podcasts
Or
Share 2024-02-11 : Daily : Gracie Folkins
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
2024-02-11 : Daily : Gracie Folkins
I'm Gracie Folkins, today is February 11th, 2024, and you are listening to Hack News Daily.
First up, big news for anyone with insurance through Washington National or Bankers Life. Over 66,000 customers got caught in a net of trouble because of something called SIM-swapping attacks. This sneaky trick lets hackers take over your phone number to get at your personal info. The companies are digging into what happened and suggesting everyone use extra security, like authentication apps, to keep safe.
Next, there's a shadow moving across the internet, targeting small office and home office devices worldwide. It's called the KV-botnet, and it's causing quite a stir. The FBI is stepping in to stop it, but this botnet is tricky, changing its methods to stay one step ahead. Cybersecurity experts are working hard to protect us from these attacks.
For the Mac users out there, listen up! A new threat named RustDoor is lurking. It's linked to some bad actors known for ransomware attacks. RustDoor can sneak into both Intel and Arm-based Macs to steal files. Bitdefender's researchers are on the case, trying to keep our computers safe.
Now, let's talk about a bug that's been squashed. CVE-2024-24806 was a big problem in a tool many developers use, but it's been fixed in the latest update. This bug could have let hackers see things they shouldn't, so it's a relief it's been patched.
Heading north, Canada is putting its foot down on a device called Flipper Zero, banning it because it's been used in car thefts. But the makers say it's all a misunderstanding, insisting Flipper Zero is for testing, not stealing, and doesn't work on modern cars.
Fortinet's FortiOS has been in the hacker's sights with a critical vulnerability that could let them take control remotely. Fortinet fixed it, but if you can't update right away, turning off SSL VPN is a must to stay safe.
Another warning for Mac users: watch out for fake updates for the Visual Studio code editor. This malware, possibly linked to ransomware, wants to steal your data. Always check where your updates are coming from.
The AndroxGh0st botnet is after vulnerabilities in various applications. Keeping your software up-to-date is your shield against this threat, according to Imperva's latest research.
A massive network called VexTrio has been using over 70,000 compromised websites to spread malware and phishing attacks. It's a big reminder to keep our digital doors locked tight against such threats.
Ivanti's got a security flaw in its products that hasn't been properly acknowledged, leaving admins to apply temporary fixes and hope for a full patch soon. No active exploits have been reported, but it's better to be safe than sorry.
CU Solutions Group had a bit of an oops moment with a cloud database misconfiguration, exposing over 3 million records. They fixed it fast, but it shows how important it is to keep our digital houses in order.
Scammers have created over 800 fake "Temu" websites, trying to trick us into giving away personal information. Always double-check who's sending you emails, especially if they promise free stuff.
Lastly, the National Vulnerability Database has flagged a serious issue in various Ivanti products. It's another call to action for immediate updates or pausing use to keep our networks safe.
Come back tomorrow for more Hack News Daily for the latest updates. You can find links to all the cyber news, red team tradecraft tooling, and more at https://HAQ.NEWS. Gracie Folkins out.
View all episodes
By Jared FolkinsI'm Gracie Folkins, today is February 11th, 2024, and you are listening to Hack News Daily.
First up, big news for anyone with insurance through Washington National or Bankers Life. Over 66,000 customers got caught in a net of trouble because of something called SIM-swapping attacks. This sneaky trick lets hackers take over your phone number to get at your personal info. The companies are digging into what happened and suggesting everyone use extra security, like authentication apps, to keep safe.
Next, there's a shadow moving across the internet, targeting small office and home office devices worldwide. It's called the KV-botnet, and it's causing quite a stir. The FBI is stepping in to stop it, but this botnet is tricky, changing its methods to stay one step ahead. Cybersecurity experts are working hard to protect us from these attacks.
For the Mac users out there, listen up! A new threat named RustDoor is lurking. It's linked to some bad actors known for ransomware attacks. RustDoor can sneak into both Intel and Arm-based Macs to steal files. Bitdefender's researchers are on the case, trying to keep our computers safe.
Now, let's talk about a bug that's been squashed. CVE-2024-24806 was a big problem in a tool many developers use, but it's been fixed in the latest update. This bug could have let hackers see things they shouldn't, so it's a relief it's been patched.
Heading north, Canada is putting its foot down on a device called Flipper Zero, banning it because it's been used in car thefts. But the makers say it's all a misunderstanding, insisting Flipper Zero is for testing, not stealing, and doesn't work on modern cars.
Fortinet's FortiOS has been in the hacker's sights with a critical vulnerability that could let them take control remotely. Fortinet fixed it, but if you can't update right away, turning off SSL VPN is a must to stay safe.
Another warning for Mac users: watch out for fake updates for the Visual Studio code editor. This malware, possibly linked to ransomware, wants to steal your data. Always check where your updates are coming from.
The AndroxGh0st botnet is after vulnerabilities in various applications. Keeping your software up-to-date is your shield against this threat, according to Imperva's latest research.
A massive network called VexTrio has been using over 70,000 compromised websites to spread malware and phishing attacks. It's a big reminder to keep our digital doors locked tight against such threats.
Ivanti's got a security flaw in its products that hasn't been properly acknowledged, leaving admins to apply temporary fixes and hope for a full patch soon. No active exploits have been reported, but it's better to be safe than sorry.
CU Solutions Group had a bit of an oops moment with a cloud database misconfiguration, exposing over 3 million records. They fixed it fast, but it shows how important it is to keep our digital houses in order.
Scammers have created over 800 fake "Temu" websites, trying to trick us into giving away personal information. Always double-check who's sending you emails, especially if they promise free stuff.
Lastly, the National Vulnerability Database has flagged a serious issue in various Ivanti products. It's another call to action for immediate updates or pausing use to keep our networks safe.
Come back tomorrow for more Hack News Daily for the latest updates. You can find links to all the cyber news, red team tradecraft tooling, and more at https://HAQ.NEWS. Gracie Folkins out.