boB Rudis’ Post

Security Bulletin: Cleo File Transfer Products - CVE-2024-50623 Bypass is a critical vulnerability in Cleo's file transfer products—Harmony, VLTrader, and LexiCom—prior to version 5.8.0.24. The vulnerability has been actively exploited, with attackers establishing persistence, conducting reconnaissance, and executing arbitrary code on compromised systems. #ThreatIntel #CTI #RedLeggSecure https://hubs.ly/Q02_t1C80

Veriti Research exposes surge in #Androxgh0st attacks, exploiting CVEs and building botnets for credential theft. Patch systems, monitor for web shells, and use behavioral analysis to protect yourself.

📖 ON THE BLOG 📖 : Imagine a thief scoping a target's home before they make their move. In the digital world, cybercriminals engage in a similar tactic called reconnaissance. It's the first step in many cyberattacks that often goes unnoticed - where attackers essentially 'assess' your environment for potential vulnerabilities before swooping in. This post delves further into what reconnaissance is, why it matters and how businesses can protect themselves from it. 🛡 Read it here. ⤵ https://lnkd.in/gEY9vVtP

Imagine a burglar who doesn't just break in, grab what they can, and run. Instead, they sneak in, hide, and live in your house, watching your every move👀 That's what APTs are—Advanced Persistent Threats. They are executed by skilled hackers who often work for governments or organized crime groups. Once inside, they steal sensitive information, such as: - personal data - financial records - (or even national secrets 🤫) The longer they stay, the more damage they do. But how can you protect your business? Awareness. This is your first line of defense. Educate your employees about APTs' dangers—and the ways that hackers might access the system. That's why I'm writing this post... To help you stay safe 😊 ---- Found it useful? Hit 👍 and Follow for more.

Security isn't a one-time test. Lares keeps you ahead. 🔒 Lares Red Team Services isn't trusting of scans or automated output, CVE reports or other without checking and verifying the actual risk to a client, and how it affects their business. We're also very aware of the logistics behind the resources needed to patch vulns we report, because we're all a mix of the people who had to patch/fix stuff. Let's clear the air now --- We're not just hackers who listen to EDM and drink IRN BRU. We're customers of the companies we are engaged with, so we're interested in helping too. Don't settle for mediocrity. Schedule a consultation with Lares today and let's outmaneuver the hackers together. It's your move. 💥 https://buff.ly/3TfJ4Gh

Join us @ 10:30 ET for GreyNoise Storm⚡️Watch! https://stormwatch.ing/ Today, we start off with a follow-up from last week's episode, specifically the Columbus, Ohio, ransomware attack debacle. The City Council is back from break and has added some fuel to the already blazing fire. 1/5 We then MOVEit MOVEit along to cover the TDECU MOVEit incident and try to figure out why it took 13 months for discovery and disclosure. Routing right along, we also shine some light on the White House's new BGP roadmap, aimed at enhancing internet routing security. https://stormwatch.ing/ 2/5 The roadmap addresses vulnerabilities in the Border Gateway Protocol (BGP), which is a foundational protocol that enables over 70,000 independent networks to operate as the internet. https://stormwatch.ing/ 3/5 We discuss the key components of the roadmap, including the adoption of Resource Public Key Infrastructure (RPKI), the federal government's role in implementing RPKI, and the importance of public-private collaboration in securing BGP. https://stormwatch.ing/ 4/5 And, ofc, we'll cover the latest in GreyNoise tags and CISA KEV releases. Join live to heckle/contribute or on demand 🎧📺! https://stormwatch.ing/ 5/5

Recently, our analyst team shared their research into a zero-day attack involving the use of corrupted malicious files to bypass static detection systems. Now, we present a technical analysis of this method and its mechanics. In this article, we will: Demonstrate how attackers corrupt archives, office documents, and other files // Explain how this method successfully evades detection by security systems // Show how corrupted files get recovered by their native applications. https://lnkd.in/dVTx4QZ6

Malicious social engineering tactics are becoming increasingly sophisticated, putting your organization at risk for data breaches and financial losses. Our comprehensive report, based on real vishing call data and ethical social engineering practices, will provide you with valuable insights and strategies to combat these threats. And the best part? It's completely FREE! Simply fill out the form and receive the 2024 State of Vishing Report within minutes. https://lnkd.in/gMtXcip3 Don't let vishing attacks catch you off guard - arm yourself with the information and resources you need to stay protected. #SocialEngineering #VishingAttacks #DataBreachPrevention #CyberSecurityInsights #EthicalHacking #InfoSecStrategies #CyberThreats #FreeReport #ProtectYourself

IT teams are well versed on how to protect their enterprises against conventional forms of cyberthreats. But as cybercriminals become more sophisticated, IT decision-makers must stay vigilant about even the most benign incidents. What Is an Advanced Persistent Threat?............

Smarttech247 and Egress Software Technologies news! 🔥 The 2024 Email Security Risk Report is here 🔥 Be the first to read about the latest email security trends, how risks are evolving, and the lasting impact of incidents in our brand-new report. Alongside expert commentary from Egress Software Technologies’ Jack Chapman, find out how global Cybersecurity leaders view the threat landscape and some astonishing statistics on: - Inbound and outbound attacks - Changing attitudes towards SEGs and existing defenses - The stress brought by AI and deepfakes (unsurprisingly, it's keeping Cybersecurity leaders awake at night 👀) Download the report now here or reach out to me directly by email and let's chat! ivan.rados@smarttech247.com