Security Bulletin

Sensitive data compromise could have been achieved through the exploitation of the recently patched Google Cloud Run privilege escalation flaw dubbed "ImageRunner," according to SecurityWeek.

Immediate patching has been urged by Cisco for a critical flaw impacting its Smart Licensing Utility, tracked as CVE-2024-20439, following the discovery of its attempted exploitation last month, reports BleepingComputer.

Mounting threats to the profitability of ransomware operations amid escalating law enforcement clampdowns, even by Russia, have prompted the Hunters International ransomware-as-a-service gang to alert affiliates regarding an ongoing rebrand to the...

More advanced obfuscation techniques have been adopted by a new Hijack Loader malware variant, the SHELBY malware, and the Emmenhtal Loader to facilitate clandestine compromise, according to The Hacker News.

Introducing version 3 of the Cisco Meraki Add-on for Splunk.       A Splunk technical add-on (TA) is a modular component that normalizes, validates, and enriches specific data sources before indexing in Splunk to enable proper searching, reporting...

Cisco is the sole supplier of network services to Mobile World Congress, expanding into security and observability, with Splunk.

Google addresses patch bypasses for CVE-2024-38272 and CVE-2024-38271, part of the previously announced "QuickShell" silent RCE attack chain against Windows users.

While Israel and Iranian proxies fight it out IRL, their conflict in cyberspace has developed in parallel. These days attacks have decelerated, but advanced in sophistication.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

[This is a Guest Diary by Gregory Weber, an ISC intern as part of the SANS.edu BACS program]

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is sounding the alarm over a series of high-risk vulnerabilities present in industrial control systems