July 2023 – Page 2 – PossibleThreat Articles

Credit to Author: Microsoft Threat Intelligence| Date: Tue, 25 Jul 2023 17:00:00 +0000

Cloud cryptojacking, a type of cyberattack that uses computing power to mine cryptocurrency, could result in financial loss to targeted organizations due to the compute fees that can be incurred from the abuse.

The post Cryptojacking: Understanding and defending against cloud compute resource abuse appeared first on Microsoft Security Blog.

Microsoft Security

How to build stronger security teams

July 29, 2023 0 Comments

Credit to Author: Brooke Lynn Weenig and Jayson Street| Date: Tue, 25 Jul 2023 16:00:00 +0000

Jayson Street of Truesec talks about security awareness training and building a foundation of cybersecurity.

The post How to build stronger security teams appeared first on Microsoft Security Blog.

Security Wired

‘Call of Duty: Modern Warfare 2’ Players Hit With Worm Malware

July 29, 2023 0 Comments Security, Security / Security News

Credit to Author: Matt Burgess, Andrew Couts| Date: Sat, 29 Jul 2023 13:00:00 +0000

Plus: Russia tightens social media censorship, new cyberattack reporting rules for US companies, and Google Street View returns to Germany.

Security Sophos

Sophos Central Turns Ten!

July 29, 2023 0 Comments Endpoint, featured, products & services, security operations, Sophos Central, sophos cloud, sophos email, sophos endpoint, Sophos Intercept X, sophos mdr, sophos server protection

Credit to Author: Sally Adam| Date: Sat, 29 Jul 2023 07:25:32 +0000

The world’s most trusted cybersecurity platform now secures more than 25 million devices

MalwareBytes Security

Zimbra issues awaited patch for actively exploited vulnerability

July 28, 2023 0 Comments cisa, cve-2023-0464, cve-2023-38750, Exploits and vulnerabilities, jsp, news, tag, xml, XSS, zcs, zimbra

Categories: Exploits and vulnerabilities

Categories: News

Tags: Zimbra

Tags: ZCS

Tags: CVE-2023-38750

Tags: CISA

Tags: CVE-2023-0464

Tags: TAG

Tags: XSS

Tags: JSP

Tags: XML

Tags:

Zimbra has released ZCS 10.0.2 that fixes two security issues, including the known bug that could lead to exposure of internal JSP and XML files.

ComputerWorld Independent

Apple toughens up app security with API control

July 28, 2023 0 Comments Apple, Data privacy, Privacy, Security, Software Development

Apple is at war with device fingerprinting — the use of fragments of unique device-specific information to track users online. This fall, it will put in place yet another important limitation to prevent unauthorized use of this kind of tech.

Apple at WWDC 2023 announced a new initiative designed to make apps that do track users more obvious while giving users additional transparency into such use. Now it has told developers a little more about how this will work in practice.

To read this article in full, please click here

Security Wired

The NSA Is Lobbying Congress to Save a Phone Surveillance ‘Loophole’

July 28, 2023 0 Comments Security, Security / National Security, Security / Privacy, Security / Security News

Credit to Author: Dell Cameron| Date: Thu, 27 Jul 2023 20:31:24 +0000

The National Security Agency has urged top lawmakers to resist demands that it obtain warrants for sensitive data sold by data brokers.

Security TrendMicro

Related CherryBlos and FakeTrade Android Malware Involved in Scam Campaigns

July 28, 2023 0 Comments trend micro research : articles, news, reports, trend micro research : malware, trend micro research : mobile, trend micro research : research

Credit to Author: Trend Micro Research| Date: Fri, 28 Jul 2023 00:00:00 +0000

Trend Micro’s Mobile Application Reputation Service (MARS) team discovered two new related Android malware families involved in cryptocurrency-mining and financially-motivated scam campaigns targeting Android users.

MalwareBytes Security

Patch now! Ivanti Endpoint Manager Mobile Authentication vulnerability used in the wild

July 27, 2023 0 Comments cve-2023-35078, epmm, Exploits and vulnerabilities, ivanti, mobileiron, news, norwegian ministries, Patch

Categories: Exploits and vulnerabilities

Categories: News

Tags: Norwegian ministries

Tags: ivanti

Tags: EPMM

Tags: MobileIron

Tags: CVE-2023-35078

Tags: patch

A patch is now available for an Ivanti EPMM vulnerability that was used in a cyberattack on the ICT platform which is relied upon by a dozen Norwegian ministries.

Security TrendMicro

How a Cyber Security Platform Addresses the 3 “S”

July 27, 2023 0 Comments trend micro ciso : blog, trend micro ciso : cloud, trend micro ciso : detection and response, trend micro ciso : digital transformation, trend micro ciso : expert perspective, trend micro ciso : risk management, trend micro ciso : skills gap, trend micro ciso : video

Credit to Author: Yohei Ishihara| Date: Thu, 27 Jul 2023 00:00:00 +0000

Explore how a security platform can help organizations address the 3 “S” impacting cybersecurity: stealth, sustainability, and shortage.