ITSEC News @itsecbot@schleuss.online

Awesome ChatGPT Prompts -  https://prompts.chat/ https://tech-wreckblog.blogspot.com/2023/03/awesome-chatgpt-prompts.html

Synopsys discover new vulnerability in Pluck Content Management System - Software security company Synopsys have discovered a new remote code execution vulnerabil... https://www.itsecurityguru.org/2023/03/24/synopsys-discover-new-vulnerability-in-pluck-content-management-system/?utm_source=rss&utm_medium=rss&utm_campaign=synopsys-discover-new-vulnerability-in-pluck-content-management-system #cybercrime #hacking #insight

'Bitter' espionage hackers target Chinese nuclear energy orgs - A cyberespionage hacking group tracked as 'Bitter APT' was recently seen targeting the Ch... https://www.bleepingcomputer.com/news/security/bitter-espionage-hackers-target-chinese-nuclear-energy-orgs/ #security

The Ultimate Guide to SaaS User Onboarding - User onboarding, in particular for SaaS organisations, may raise the bar for your product... https://tech-wreckblog.blogspot.com/2023/03/the-ultimate-guide-to-saas-user.html

Dole confirms employee data was breached following February ransomware attack - This week, Dole Food Company revealed that hackers behind a February ransomware attack ha... https://www.itsecurityguru.org/2023/03/24/dole-confirms-employee-data-was-breached-following-february-ransomware-attack/?utm_source=rss&utm_medium=rss&utm_campaign=dole-confirms-employee-data-was-breached-following-february-ransomware-attack #featured

The Life and Death of Passwords: The Tipping Point in Passwordless Adoption - Our documentary, “The Life and Death of Passwords,” explores with industry ... https://duo.com/blog/tipping-point-passwordless-adoption-christi-volny #industrynews

Phishing, Brute Force Attacks Rise in Expanded Threat Landscape - Phishing attacks and brute force attacks are on the rise as cybercriminals evolve ... https://tech-wreckblog.blogspot.com/2023/03/phishing-brute-force-attacks-rise-in.html

Blackfield HacktheBox Walkthrough - Summary
Blackfield is a windows Active Directory machine and is considered as hard... https://www.hackingarticles.in/blackfield-hackthebox-walkthrough/ #ctfchallenges

Analysis: Will ChatGPT’s Perfect English Change the Game For Phishing Attacks? - By John E. Dunn 
Nobody predicted how rapidly AI chatbots would change perception... https://blog.isc2.org/isc2_blog/2023/03/analysis-will-chatgpts-perfect-english-change-the-game-for-phishing-attacks.html

China and India present new Challenges and Opportunities for Mobile App Developers - Pinduoduo Malware highlights the need for App Attestation on a Global ScaleThe rec... https://tech-wreckblog.blogspot.com/2023/03/china-and-india-present-new-challenges.html

Become a cloud security hero - On March 14, 2023, security expert, Nicolau Lawand, led a session discussing how Solvo he... https://tech-wreckblog.blogspot.com/2023/03/become-cloud-security-hero.html

LATEST CYBERTHREATS AND ADVISORIES - MARCH 24, 2023 - By John Weiler  
FBI arrests Breached hacking forum leader, smartphones hijacked ... https://blog.isc2.org/isc2_blog/2023/03/latest-cyberthreats-and-advisories-march-24-2023.html

AD Security 101: SIEM Tools and AD Monitoring - Before we dive into technical tips that I mentioned in my previous post, I want to raise ... https://tech-wreckblog.blogspot.com/2023/03/ad-security-101-siem-tools-and-ad.html

GitHub.com rotates its exposed private SSH key - GitHub has rotated its private SSH key for GitHub.com after the secret was was accidental... https://www.bleepingcomputer.com/news/security/githubcom-rotates-its-exposed-private-ssh-key/ #security

Microsoft Teams, Virtualbox, Tesla zero-days exploited at Pwn2Own - During the second day of Pwn2Own Vancouver 2023, competitors successfully exploited zero-... https://www.bleepingcomputer.com/news/security/microsoft-teams-virtualbox-tesla-zero-days-exploited-at-pwn2own/ #security

BlackGuard stealer now targets 57 crypto wallets, extensions - A new variant of the BlackGuard stealer has been spotted in the wild, featuring new capab... https://www.bleepingcomputer.com/news/security/blackguard-stealer-now-targets-57-crypto-wallets-extensions/ #security

WordPress force patching WooCommerce plugin with 500K installs - Automattic, the company behind the WordPress content management system, is force installi... https://www.bleepingcomputer.com/news/security/wordpress-force-patching-woocommerce-plugin-with-500k-installs/ #security

City of Toronto confirms data theft, Clop claims responsibility - City of Toronto is among Clop ransomware gang's latest victims hit in the ongoing GoAnywh... https://www.bleepingcomputer.com/news/security/city-of-toronto-confirms-data-theft-clop-claims-responsibility/ #security

Threat Source newsletter (March 23, 2023) — Meta is threatening to ban news sharing in Canada. Good. - Welcome to this week’s edition of the Threat Source newsletter.After asking ChatGPT to wr... https://blog.talosintelligence.com/threat-source-newsletter-march-23-2023-meta-is-threatening-to-ban-news-sharing-in-canada-good/ #threatsourcenewsletter

New CISA tool detects hacking activity in Microsoft cloud services - The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has released a new ope... https://www.bleepingcomputer.com/news/security/new-cisa-tool-detects-hacking-activity-in-microsoft-cloud-services/ #microsoft #security