June 2023 – Page 16 – PossibleThreat Articles

The first victims of the ongoing attacks on vulnerable MOVEit Transfer instances are coming forward. The Cl0p ransomware gang claims it is behind the attacks.

Independent Krebs Security

Service Rents Email Addresses for Account Signups

June 6, 2023 0 Comments impulse scam crypto project, kopeechka, mastodon, quotpw, renaud chaput, Spam, trend micro, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 06 Jun 2023 20:09:13 +0000

One of the most expensive aspects of any cybercriminal operation is the time and effort it takes to create large numbers of new throwaway email accounts. Now a new service offers to help dramatically cut costs associated with large-scale spam and account creation campaigns, by paying people to sell their email account credentials and letting customers temporarily rent access to a vast pool of established accounts at major providers.

Security Sophos

Chrome zero-day: “This exploit is in the wild”, so check your version now

June 6, 2023 0 Comments chrome, cve-2023-3079, Edge, Google, Google Chrome, Microsoft, Microsoft Edge, type confusion, vulnerability, zero day

Credit to Author: Paul Ducklin| Date: Tue, 06 Jun 2023 16:28:43 +0000

Chrome 0-day patched now, Edge patch coming soon.

Microsoft Security

XDR meets IAM: Comprehensive identity threat detection and response with Microsoft

June 6, 2023 0 Comments Security strategies

Credit to Author: Rob Lefferts and Alex Weinert| Date: Wed, 31 May 2023 16:00:00 +0000

Identity-based attacks are on the rise, making identity protection more important than ever. Explore our blog post to learn how Microsoft’s Identity Threat Detection and Response can help.

The post XDR meets IAM: Comprehensive identity threat detection and response with Microsoft appeared first on Microsoft Security Blog.

Microsoft Security

New macOS vulnerability, Migraine, could bypass System Integrity Protection

June 6, 2023 0 Comments

Credit to Author: Microsoft Threat Intelligence| Date: Tue, 30 May 2023 16:00:00 +0000

A new vulnerability, which we refer to as “Migraine”, could allow an attacker with root access to bypass System Integrity Protection (SIP) in macOS and perform arbitrary operations on a device.

The post New macOS vulnerability, Migraine, could bypass System Integrity Protection appeared first on Microsoft Security Blog.

Security Wired

Apple Expands Its On-Device Nudity Detection to Combat CSAM

June 6, 2023 0 Comments Security, Security / Privacy, Security / Security News

Credit to Author: Lily Hay Newman| Date: Mon, 05 Jun 2023 23:41:46 +0000

Instead of scanning iCloud for illegal content, Apple’s tech will locally flag inappropriate images for kids. And adults are getting an opt-in nudes filter too.

Security Wired

Hacks Against Ukraine’s Emergency Response Services Rise During Bombings

June 6, 2023 0 Comments Security, Security / Cyberattacks and Hacks, Security / National Security, Security / Security News

Credit to Author: Lily Hay Newman| Date: Mon, 05 Jun 2023 15:35:54 +0000

Data from Cloudflare’s free digital defense service, Project Galileo, illuminates new links between online and offline attacks.

Security TrendMicro

Impulse Team’s Massive Years-Long Mostly-Undetected Cryptocurrency Scam

June 6, 2023 0 Comments trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : research

Credit to Author: Cedric Pernet| Date: Tue, 06 Jun 2023 00:00:00 +0000

We have been able to uncover a massive cryptocurrency scam involving more than a thousand websites handled by different affiliates linked to a program called Impulse Project, run by a threat actor named Impulse Team.