Guardio’s Email Protection has detected a sophisticated email phishing campaign exploiting a 0-day vulnerability in Salesforce’s legitimate email services and SMTP servers. Guardio Labs’ research team has uncovered an actively exploited vulnerability enabling threat actors to craft targeted phishing emails under the Salesforce domain and infrastructure. Those phishing campaigns cleverly evade conventional detection methods by chaining the Salesforce vulnerability and legacy quirks in Facebook’s web games platform. Guardio Labs has disclosed these findings and worked with Salesforce and Meta to close the vulnerabilities and misuse.
The data stolen from CDHE is significant, impacting the following students, past students, and teachers who:
Attended a public institution of higher education in Colorado between 2007-2020.
Attended a Colorado public high school between 2004-2020.
Had a Colorado K-12 public school educator license between 2010-2014.
Participated in the Dependent Tuition Assistance Program from 2009-2013.
Participated in Colorado Department of Education’s Adult Education Initiatives programs between 2013-2017.
Obtained a GED between 2007-2011 may be impacted by this incident.
The stolen information includes full names, social security numbers, dates of birth, addresses, proof of addresses (statements/bills), photocopies of government IDs, and for some, police reports or complaints regarding identity theft.
If you are affected, please freeze your credit through the website of the three major credit reporting agencies. Freezing is free but they might spam you. Also if you need to do something that require a credit check, you have to plan ahead and unfreeze your credit. All three services can refreeze your credit after you specify a time frame.
What if I told you that credit agencies have already sold off your data several times over? They keep track of people better than any government could.
The less people that have my data the better. Credit companies are only a part of the puzzle of sold data. The social media companies are the biggest piece.
France aside, TransUnion, Equifax, Experian, etc. do sell our data to third parties and access to that data can be available on black markets. The reason for this is that when data is sold to third parties the controls around that data inherently start to degrade. This is not including all the high profile data breaches they experience and get slapped on the wrist for.
When I was working at some larger financial companies, we had a few people that specifically searched for and in some cases, bought this data.
My original quip was more focused on my frustration based on my country and my experience and slightly off topic, to be fair.
I’m not clear on the specifics but I’ve FWD’d this to someone I know in this exact scenario currently. Unsure if it’s the same Russian group, or if this is “breaking news” or not (aka if friends have already seen this decrypt solution before this article posted today), but this could make a huge difference to someone out there, even if not them. Thanks for posting.
Thursday Apple issued three emergency patches for a vulnerability that could be exploited to install spyware. The patches affect macOS Ventura 13.5.2, iOS 16.6.1 and iPadOS 16.6.1, and watchOS 9.6.2. “A maliciously crafted attachment may result in arbitrary code execution,” the company said in its advisories. “Apple is aware of a report that this issue may have been actively exploited.” The report of active exploitation came from the University of Toronto’s Citizen Lab, which found evidence that NSO Group’s Pegasus spyware was being installed in vulnerable devices through a zero-click exploit the Lab calls “BLASTPASS.” The attacks used PassKit attachments sent as iMessage images. These carried the malicious payload. The patches will protect users against BLASTPASS; so will enabling Apple’s Lockdown Mode on the device.
Not only does it allow the banks to monitor everything we buy, not only does it allow the banks to lock us out of society if we don’t obey, but it’s also hackable.
I said all this because the nanny-state known as Australia went cashless recently and implemented digital currency made by the banks
It’s so complicated. I see it more and more as you frame it here but of course the main selling points are “decentralization” “privacy” focused so it’s kind of twisted and you wonder who is really fleecing who here.
That’s the thing. Crypto by its nature is somewhat murky and we’ve never really known who hold what or how many whale institutional investors have been pumping and dumping coins to circumvent troubling anti money laundering KYC regs etc
Now that you have actually central banks getting into the mix, pushes for global digital ids and mandating that citizens participate or not have access to free trade is truly dystopian imo though this too was written long ago
Ultimately I am optimistic but I understand the real hardships being faced by global citizens stuck behind the curtain of oppressive regimes. I watched the shift in the EU and it’s like night and day where things are now compared to a decade ago
Crypto by its nature is somewhat murky and we’ve never really known who hold what or how many whale institutional investors have been pumping and dumping coins to circumvent troubling anti money laundering KYC regs etc
Many crypto currencies that no one has ever heard of are worthless and will always be worthless, but bitcoin, manero and dogecoin are worth something. bitcoin and manero are worth A LOT, dogecoin is worth almost nothing, but its value goes up and down really fast and really drastically every time it changes.
Also it’s a good thing that no one can track who has what amounts of which crypto currency, don’t you think? That way the banks can’t monitor or control it.
It’s a good selling point but I believe the whales have always been able to manipulate markets as a result of these supply chain issues not to say its very different from central banking but I truly question how decentralized control is across the cryptolandscape.
The countermeasure to the attacks we describe in this paper is well known: implementations should validate signatures before sending them. OpenSSH, the most common SSH implementation we observed in this data, implements this countermeasure because it uses OpenSSL to generate signatures, and OpenSSL has included countermeasures against RSA fault attacks since 2001.
To minimize firmware risk in general, users should stay updated with manufacturer advisories and promptly apply firmware updates, as they often address critical security flaws.
securitynews
Oldest
This magazine is from a federated server and may be incomplete. Browse more on the original instance.