Security Bulletin

Malvertising exploiting Google search results has been leveraged to lure victims into downloading fraudulent software installers, including YouTube downloader, Roblox FPS Unlocker, and VLC video player.

More than 6,000 IPs with Cisco SMI were observed by the Shadowserver Foundation to have been exposed to the internet, with CISA noting that exploitation has been made easier by the prevalence of weak passwords in such devices.

Infiltration of CSC ServiceWorks' systems resulted in the exfiltration of individuals' names, birthdates, Social Security numbers, driver's license numbers, contact details, bank account numbers, and health insurance details.

Intrusions commenced with the delivery of phishing emails with RAR archives deploying a backdoor that facilitated the injection of the APT31-linked GrewApacha trojan, as well as a new version of the CloudSorcerer malware that bypasses detection...

"Buckle up for October, because I think we're in for a wild ride," said former National Security Agency Director of Cybersecurity Rob Joyce at this year's DEF CON cybersecurity conference, where he noted that election interference had been conducted...

Attacks by Iranian state-sponsored operations involved not only the infiltration of accounts belonging to a campaign official or a county government but also the creation of fake news sites with stories aimed at fueling disinformation and controversy...

AI security will require new tools and new thinking – here’s how to get started.

Internal Trump campaign documents from hacker ‘Robert’ leaked to Politico and other media outlets are intended to disrupt the 2024 US elections.

Learn how Cisco Foundation partners Raspberry Pi Foundation and Digital Opportunity Trust are supporting and nurturing the creativity, resiliency, and leadership of youths worldwide through sustainability programs and digital resiliency.

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

Trying something a bit different. A video demo to illustrate some concepts around "Origin" in web applications. Let me know if this is something you would like to see more of.