Kiwi law firm client data exposed to fraud. Rhode Island state workers impacted in third-party MOVEit data breach. Trends in higher ed cyberattacks. Read More
The CyberWire
The all in one place for non-profit security aid.
Kiwi law firm client data exposed to fraud. Rhode Island state workers impacted in third-party MOVEit data breach. Trends in higher ed cyberattacks. Read More
The CyberWire
Microsoft may have scrapped Windows 11’s dynamic wallpapers feature
Microsoft has many good ideas for Windows 11 that often do not ship, and one of them was “Dynamic Wallpapers,” which, as the name suggests, could have made the wallpaper dynamic, similar to third-party tools like Lively Wallpaper. […] Read More
Oracle Agile PLM Zero-Day Vulnerability Exploited In The Wild
Oracle has issued an urgent security alert regarding a critical vulnerability in its Agile Product Lifecycle Management (PLM) Framework that is actively being exploited in the wild.
The vulnerability, tracked as CVE-2024-21287, allows unauthenticated attackers to access and download sensitive files from affected systems remotely.
The zero-day flaw affects Oracle Agile PLM Framework version 9.3.6, specifically the Software Development Kit and Process Extension components.
With a CVSS base score of 7.5, this high-severity vulnerability can be exploited remotely without authentication via HTTP or HTTPS protocols.
Maximizing Cybersecurity ROI: Expert Tips for SME & MSP Leaders – Attend Free Webinar
If successfully exploited, an unauthenticated attacker could gain unauthorized access to critical data or potentially obtain complete access to all Oracle Agile PLM Framework accessible data.
The vulnerability may result in file disclosure, allowing attackers to download files accessible under the privileges of the PLM application.
Security researchers Joel Snape and Lutz Wolf from CrowdStrike discovered and reported the vulnerability to Oracle.
While specific details about the ongoing attacks are limited, Oracle has confirmed that the flaw is being actively exploited in the wild.
Eric Maurice, Vice President of Security Assurance at Oracle, stated, “If successfully exploited, an unauthenticated perpetrator could download files accessible under the privileges used by the PLM application” from the targeted system.
Oracle has released a security patch to address CVE-2024-21287 and strongly recommends that customers apply the updates this Security Alert provides as soon as possible.
The company emphasizes the situation’s urgency, given the active exploitation of the vulnerability.
Affected organizations should:
This incident highlights the critical importance of prompt patch management and organizations’ ongoing challenges in securing enterprise software.
As attackers continue to target vulnerabilities in widely used business applications, timely response to security alerts becomes crucial in preventing data breaches and unauthorized access.
Oracle customers are advised to stay vigilant and prioritize the application of this security update to mitigate the risk posed by this actively exploited zero-day vulnerability in the Agile PLM Framework.
Are you from SOC/DFIR Teams? – Analyse Malware Files & Links with ANY.RUN -> Try for Free
The post Oracle Agile PLM Zero-Day Vulnerability Exploited In The Wild appeared first on Cyber Security News.
Social media influencers targeted by identity thieves
[[{“value”:”
Social media influencers are attractive targets for identity thieves. With large followings and a literal influence on their followers, it’s no wonder they are targeted by scammers and spreaders of fake news.
A subset of influencers are the so-called “finfluencers”: influencers that provide their followers with financial advice. Such a person influences the financial investment decisions of their followers by doling out advice or recommendations. This comes in the form of get-rich-quick schemes, cryptocurrency related advice, stock investment, financial planning, or just about anything people can do to make money.
On the platforms that matter these days, like YouTube, TikTok and Instagram, the number of followers of some of the well-known finfluencers far exceeds the numbers of followers of some of the biggest broking houses. In May of 2023, India banned a YouTube finfluencer with over a million followers from the securities markets for a year for allegedly providing advisory services—daily stock investment/trading calls—without registering with the regulator.
With enough followers that heed their advice, these finfluencers also can have an effect on the financial markets. With enough demand, prices go up and if you know that’s going to happen, making money is indeed easy.
And as an exit scam in which you make one big whopper and then disappear, that’s a very profitable strategy. But most influencers are in it for the long run and don’t want to ruin the reputation they built. Unless their account falls into the wrong hands.
In October of 2023, the Federal Trade Commission warned people with a lot of social media followers they might be the target of scammers. These scammers would come up with fake job offers of offering to pay them for product promotion as “brand ambassadors.” But in reality the scammers are after personal and financial information.
Typically, the scammers say they’ll send you free products and pay you large amounts of money to promote those products in your social media posts. All you have to do is to accept the offer and give them your personal and banking information so they can pay you.
What the scammers are really after can vary from cleaning out the influencers’ bank accounts to taking over their social media accounts. “If you provide us with your login credentials, you don’t have to do the work, we’ll post the promotional content ourselves.”
The scammers will then leave the influencer behind with an account that has a bad reputation and lost a good part of its followers.
Some good news might come from the regulation side. The governments of ten nations have called on social media operators to improve their ability to detect and prevent fraud on their platforms. Australia, Canada, France, Germany, Italy, Japan, New Zealand, the Republic of Korea, Singapore, the United Kingdom, and the United States did this because:
“Fraudsters operate at scale, exploiting telecommunications networks, cyberspace and a population that spends an increasing amount of time online.”
In a communiqué issued as a result of the Global Fraud Summit, which also included representatives from INTERPOL, the Financial Action Task Force, the UN Office on Drugs and Crime, and the European Union, the partakers listed 29 action points that should help reduce online fraud.
It will be hard to accomplish this goal but as we have seen, similar actions led to a promising decline in robocalls. Australia also reported progress towards their vision of making Australia the world’s hardest target for scammers with, for example, a 38% decrease in losses due to investment scams.
Always assume that if it’s too good to be true, then it’s probably not true.
Never give out your personal or financial information without doing proper research first.
Contact the company directly to confirm the offer. Use a phone number or contact method you know to be legitimate.
Check if the person contacting you is using an email address that’s affiliated with the company they claim to represent.
Don’t let any person or app create posts on social media on your behalf.
Don’t let scammers rush you into decisions. They will always claim it’s urgent or you need to act fast.
If you want to find out how much of your data has been exposed online, you can try our free Digital Footprint scan. Fill in the email address you’re curious about (it’s best to submit the one you most frequently use) and we’ll send you a free report.
We don’t just report on threats – we help protect your social media
Cybersecurity risks should never spread beyond a headline. Protect your social media accounts by using Cyrus, powered by Malwarebytes.
“}]] Read More
Malwarebytes