Essential Cyber Intel Brief: 11/08/2024
No one has time to sift through dozens of websites for critical cybersecurity insights. That’s why I developed a better solution-it’s automated, curated, and absolutely free.
Get the critical updates you need as a cybersecurity professional or business leader without the time drag or hassle.
Designed for efficiency, my custom program pinpoints the most critical cybersecurity events security professionals and business leaders need to know. I publish them every business day by 9 AM CT for you.
In just one to two minutes, you’ll determine if the latest cybersecurity developments require further attention, allowing you to stay informed without losing valuable time.
Subscribe to receive automated notifications and stay ahead of key developments- no spam, just concise, relevant updates delivered directly to your inbox.
You can connect with me on LinkedIn and join my professional network.
11/08/2024 — New Cybersecurity Updates
North Korean hackers use new macOS malware against crypto firms — North Korean threat actor BlueNoroff has been targeting crypto-related businesses with a new multi-stage malware for macOS systems. Source
CISA warns of critical Palo Alto Networks bug exploited in attacks — Today, CISA warned that attackers are exploiting a critical missing authentication vulnerability in Palo Alto Networks Expedition, a migration tool that can help convert firewall configuration from Checkpoint, Cisco, and other vendors to PAN-OS. Source
Nokia says hackers leaked third-party app source code — Nokia’s investigation of recent claims of a data breach found that the source code leaked on a hacker forum belongs to a third party and company and customer data has not been impacted. Source
New CRON TRAP Malware Infects Windows by Hiding in Linux VM to Evade Antivirus — Cybersecurity researchers have flagged a new malware campaign that infects Windows systems with a Linux virtual instance containing a backdoor capable of establishing remote access to the compromised hosts. Source
CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability — The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a now-patched critical security flaw impacting Palo Alto Networks Expedition to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. Source
North Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOS — A threat actor with ties to the Democratic People’s Republic of Korea (DPRK) has been observed targeting cryptocurrency-related businesses with a multi-stage malware capable of infecting Apple macOS devices. Source
A Hacker’s Guide to Password Cracking — Defending your organization’s security is like fortifying a castle — you need to understand where attackers will strike and how they’ll try to breach your walls. And hackers are always searching for weaknesses, whether a lax password policy or a forgotten backdoor. To build a stronger defense, you must think like a hacker and anticipate their moves. Source
China-Aligned MirrorFace Hackers Target EU Diplomats with World Expo 2025 Bait — The China-aligned threat actor known as MirrorFace has been observed targeting a diplomatic organization in the European Union, marking the first time the hacking crew has targeted an entity in the region. Source
Palo Alto Networks Expedition Vulnerability Exploited in Attacks, CISA Warns — CISA has added a Palo Alto Networks Expedition flaw tracked as CVE-2024–5910 to its Known Exploited Vulnerabilities Catalog. Source
North Korean Hackers Target macOS Users — North Korean cryptocurrency thieves were caught targeting macOS with fake PDF applications, backdoors, and new persistence tactics. Source
Cisco Patches Critical Vulnerability in Industrial Networking Solution — A critical vulnerability in Cisco Unified Industrial Wireless software could allow remote, unauthenticated attackers to inject commands with root privileges. Source
500,000 people impacted by ransomware attack on Columbus, Ohio — The City of Columbus, Ohio, has notified 500,000 individuals that a ransomware attack in July 2024 stole their personal information. Source
Copyright: Copyright © 2024 Tim Layton & Associates, LLC. All rights reserved. All information and content on this website are protected by copyright and may not be reproduced, distributed, or transmitted in any form without prior written permission from Tim Layton & Associates, LLC.
Originally published at https://timlaytonllc.com on November 8, 2024.
