Eric and Pinky are back with another session of the Hackle Box—a monthly conversation between the information security experts about new and noteworthy exploits. Discussed this month: Microsoft Word vulnerability goes public https://projecthyphae.com/threat/microsoft-word-vulnerability-goes-public-users-wondering-if-a-rtf-means-risky-text-file/ Emotet is back (again) after another hiatus https://www.darkreading.com/threat-intelligence/emotet-resurfaces-yet-again-after-three-month-hiatus Security concerns over employees feeding ChatGPT sensitive data https://www.darkreading.com/risk/employe ..read more

Oscar, Eric, and Pinky are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, security breaches, and exploits. Discussed this month: Rackspace Ransomware Incident Highlights Risks of Relying on Mitigation Alone https://www.darkreading.com/vulnerabilities-threats/rackspace-ransomware-incident-highlights-risks-mitigation-alone Attackers Are Already Exploiting ChatGPT to Write Malicious Code https://www.darkreading.com/attacks-breaches/attackers-are-already-exploiting-chatgpt-to-write-malicious-co ..read more

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them. Discussed this month: Critical Citrix, VMware Bugs threaten remote workspaces https://www.darkreading.com/vulnerabilities-threats/patch-asap-critical-citrix-vmware-bugs-remote-workspaces-takeover Long Island midterm votes delayed due to cyberattack https://www.darkreading.com/attacks-breaches/long-island-midterm-votes-delayed-due-to-cyberattack-after-effects Mic ..read more

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them. Discussed this month: Fortinet Authentication Bypass ZeroDay: ProxyShell 2 (or 3?) Microsoft Addresses Zero-Days, Exchange Server Exploit Chain Remains Unpatched Phishing Attacks Improving Dramatically Emotet is Back Please like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/ Twitter: https://twitter.com/frsecure/ Instagram: http ..read more

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them. This month's episode includes: Defcon Recap EvilProxy TeslaGun Broken Ice Cream Machines and McDonalds Please like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/ Twitter: https://twitter.com/frsecure/ Instagram: https://www.instagram.com/frsecure/ LinkedIn: https://www.linkedin.com/company/frsecure ..read more

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them. This month's episode includes: NPM supply chain attack impacts hundreds of websites and apps https://www.bleepingcomputer.com/news/security/npm-supply-chain-attack-impacts-hundreds-of-websites-and-apps/ PyPi sending stolen AWS keys to unsecured sites https://www.bleepingcomputer.com/news/security/pypi-python-packages-caught-sending-stolen-aws-keys-to-unsecured-si ..read more

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them. This month's episode includes: 02:14 Atlassian Confluence – CVE-2022-26134 https://packetstormsecurity.com/files/167430/Confluence-OGNL-Injection-Remote-Code-Execution.html 13:25 Follina https://threatpost.com/follina-exploited-by-state-sponsored-hackers/179890/ 32:40 Paid a ransom? Now you’re a target. https://threatpost.com/paying-ransomware-bullseye-back/1799 ..read more

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them. Please like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/ Twitter: https://twitter.com/frsecure/ Instagram: https://www.instagram.com/frsecure/ LinkedIn: https://www.linkedin.com/company/frsecure ..read more

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them. This month's episode includes: - Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests” - Forged Signatures: Not Just For Troubled Youths Anymore. #Nvidia - Sophos firewalls require an URGENT new flame shield - CISA Warns of Active Exploitation of Critical Spring4Shell Vulnerability Please like, subscribe, and follow us on social! Facebook: https ..read more

Oscar, Pinky, and Eric are back with another session of the Hackle Box—a monthly conversation between the three cybersecurity experts about new and noteworthy threats, attacks, breaches, exploits, and (of course) how to avoid them. This month's episode includes: - AutoWarp vulnerability in Microsoft Azure - APC's Burning Down - Dirty Pipe - Russian Attack on Ukraine Please like, subscribe, and follow us on social! Facebook: https://www.facebook.com/frsecure/ Twitter: https://twitter.com/frsecure/ Instagram: https://www.instagram.com/frsecure/ LinkedIn: https://www.linkedin.com/company/frsec ..read more