Bancsec Advisor

A detailed analysis of nearly 20 million malware logs available on the dark web and Telegram has highlighted a significant penetration of information-stealing malware into business settings.

The Biden administration has unveiled its National Cybersecurity Strategy Implementation Plan (NCSIP) to detail the execution of the national cybersecurity strategy introduced earlier this year. Coordinated by the Office of the National Cyber Director, the plan establishes timelines and assigns responsibilities across 18 federal agencies for around 65 different initiatives.

Cybersecurity researchers have unveiled the first-ever open-source software supply chain attacks targeting the banking sector, as detailed by a report from Checkmarx. The attackers demonstrated advanced methods, including targeting specific web components of victim banks by adding malicious functionalities.

A critical vulnerability in Fortinet firewalls has put over 300,000 devices at risk of being compromised. The vulnerability, called FortiOS RCE (Remote Code Execution) bug, allows unauthorized individuals to gain control of affected firewalls without authentication or user interaction.

Cisco Secure Client Software for Windows, previously known as AnyConnect Secure Mobility Client, has been found to have a significant vulnerability (CVE-2023-20178) that enables attackers to elevate their privileges to the SYSTEM account without requiring any user interaction.

The Lazarus Group, a notorious hacking collective with ties to North Korea, has been exploiting vulnerabilities in Windows Internet Information Services (IIS) web servers as a means to infiltrate corporate networks

Researchers at Cybereason have uncovered a new malware called RdStealer, which specifically targets Windows systems using Remote Desktop Protocol (RDP). This malware is designed to pilfer sensitive information from drives shared over RDP connections.

A zero-day vulnerability has been discovered in MOVEit Transfer, a file transfer software developed by Ipswitch. This vulnerability poses a risk of data theft from organizations.

A technique has been discovered by security researchers that enables the delivery of malware through Microsoft Teams, bypassing the file restrictions from external sources.

A security flaw in Microsoft's MSHTML platform has been revealed by researchers, which has the potential to enable attackers to circumvent integrity protections on targeted machines.