ThreatsHub Cybersecurity News

The best free VPNs of 2024: Expert tested

April 23, 2024 TH Author

Free VPNs can come with security risks. But there are solid limited-service free VPNs provided by reputable companies that may fit your needs — here’s what to know.
READ MORE HERE…

CyberSecurity Blogs

UnitedHealth Admits Breach Could Cover Substantial Proportion Of People In America

April 23, 2024 TH Author headline,hacker,privacy,data loss

Mandiant: Orgs are detecting cybercriminals faster than ever

April 23, 2024 TH Author

The ‘big victory for the good guys’ shouldn’t be celebrated too much, though The average time taken by global organizations to detect cyberattacks has dropped to its lowest-ever level of ten days, Mandiant revealed today.… READ MORE HERE…

The Register

Old Windows print spooler bug is latest target of Russia’s Fancy Bear gang

April 23, 2024 TH Author

Putin’s pals use ‘GooseEgg’ malware to launch attacks you can defeat with patches or deletion Russian spies are exploiting a years-old Windows print spooler vulnerability and using a custom tool called GooseEgg to elevate privileges and steal credentials across compromised networks, according to Microsoft Threat Intelligence.… READ MORE HERE…

The Register

Europol becomes latest law enforcement group to plead with big tech to ditch E2EE

April 22, 2024 TH Author

Don’t bore us, get to the chorus: You need less privacy so we can protect the children Yet another international cop shop has come out swinging against end-to-end encryption – this time it’s Europol which is urging an end to implementation of the tech for fear police investigations will be hampered by protected DMs.… READ MORE HERE…

Microsoft Secure

Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials

April 22, 2024 TH Author Blizzard, elevation of privilege, Forest Blizzard (STRONTIUM), Government, Non-governmental organizations (NGOs), Windows

Since 2019, Forest Blizzard has used a custom post-compromise tool to exploit a vulnerability in the Windows Print Spooler service that allows elevated permissions. Microsoft has issued a security update addressing this vulnerability as CVE-2022-38028.
The post Analyzing Forest Blizzard’s custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials appeared first on Microsoft Security Blog. READ MORE HERE…

ZDNet | Security

Tinder’s ‘Share My Date’ feature will let you share date plans with friends and family

April 22, 2024 TH Author

The upcoming feature will help you more easily share the location, date, and time of your date and a photo of your online match.
READ MORE HERE…

The Register

Researchers claim Windows Defender can be fooled into deleting databases

April 22, 2024 TH Author

Two rounds of reports and patches may not have completely closed this hole BLACK HAT ASIA Researchers at US/Israeli infosec outfit SafeBreach last Friday discussed flaws in Microsoft and Kaspersky security products that can potentially allow the remote deletion of files. And, they asserted, the hole could remain exploitable – even after both vendors claim to have patched the problem.… READ MORE HERE…

The Register

Sacramento airport goes no-fly after AT&T internet cable snipped

April 19, 2024 TH Author

Police say this appears to be a ‘deliberate act.’ Sacramento International Airport (SMF) suffered hours of flight delays yesterday after what appears to be an intentional cutting of an AT&T internet cable serving the facility.… READ MORE HERE…

The Register

WhatsApp, Threads, more banished from Apple App Store in China

April 19, 2024 TH Author

Still available in Hong Kong and Macau, for now Apple has removed four apps from its China-regional app store, including Meta’s WhatsApp and Threads, after it was ordered to do so by Beijing for security reasons.… READ MORE HERE…

← Previous

Cyber Security Trending News