π What's the latest in the cyber world today? π¨ #CyberAlerts Linux Kernel Vulnerabilities Found in Multiple Ubuntu Versions Dell issues security advisory for critical vulnerabilities in EMC Data Protection and PowerProtect DP Series New All-In-One Info Stealer for Windows Available for Sale on Dark Web Active Exploitation of PaperCut Vulnerability Linked to TrueBot Malware Russian-Speaking Threat Actor, Tomiris, Focused on Intelligence Gathering in Central Asia Discarded Enterprise Network Equ...
Apr 25, 2023β’9 min
π What are the latest cybersecurity advisories, alerts and incidents? π¨ #CyberAlerts Oracle's April 2023 Security Update: Patch Now or Risk Breach! Drupal Vulnerability Allows for System Takeover: CISA Urges Patching "GhostToken" flaw in Google Cloud Platform (GCP) allows account backdoors RBAC Buster: Hackers Hijack Kubernetes Clusters for Crypto-mining Outdated Plugin Used in Malicious Campaign to Infect WordPress Sites Beware of Bumblebee Malware Masquerading as Zoom, Cisco, and ChatGPT π₯ ...
Apr 24, 2023β’9 min
Welcome to Cyber Briefing , the newsletter that informs you about the latest cybersecurity advisories, alerts, incidents and news every weekday. First time seeing this? Please subscribe . 1. CISA Reports on ICONICSTEALER Trojan 2. BrokenSesame Flaws in Alibaba Cloud Services 3. Microsoft Edge update fixes critical vulnerability...
Apr 21, 2023β’9 min
π What's going on in the cyber world today? π¨ #CyberAlerts Play Ransomware Group Develops Custom Tools for More Effective Cyberattacks CISA adds new exploited vulnerability to catalog Red Hat releases security updates for multiple products Google releases emergency Chrome update to fix zero-day vulnerability PaperCut Printing Software Flaws Exploited by Hackers: Urgent Update Required NCSC Warns of Heightened Risk from Russian Hacktivists in the UK π₯ #CyberIncidents DoNot APT targets Kashmiri...
Apr 20, 2023β’9 min
π What's trending in cybersecurity today? π¨ #CyberAlerts API Attacks Surge Due to Poorly Coded Web Apps New Sandbox Escape Flaw in VM2 Library Puts Millions of Downloads at Risk Sophisticated Loader Delivers Aurora Info Stealer Malware MuddyWater hacks victims with SimpleHelp Russian State-Sponsored Hackers Deploy 'Jaguar Tooth' Malware on Cisco Routers, Warns US and UK π₯ #CyberIncidents Sensitive data stolen from UK government tech supplier Capita now up for sale by Black Basta Affinity Foru...
Apr 19, 2023β’9 min
π What's the latest in the cyber world today? π¨ #CyberAlerts QBot malware is being distributed in phishing campaigns using PDFs and Windows Script Files CISA Adds Two Known Exploited Vulnerabilities to Catalog New Android trojan "Chameleon" steals user credentials, evades detection CISA Releases SBOM Sharing Lifecycle Report to Assist Cybersecurity and Supply Chain Communities FIN7 and Conti Join Forces with New Domino Malware Chinese Hackers Abusing Google Tool in Data Theft Attacks π₯ #Cyber...
Apr 18, 2023β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Google Issues Emergency Chrome Update to Address Zero-Day Vulnerability ABB Releases ICS Advisory to Address Vulnerabilities in B&R VC4 Visualization Zaraza Bot: The Latest Credential-Stealing Malware on Telegram That Targets 38 Web Browsers LockBit Ransomware Targets macOS: A New Threat for Apple Users Stealthy Data Exfiltration: How Vice Society Automates Attacks Microsoft warns of new Remcos RAT campaign targeting US accounting a...
Apr 17, 2023β’9 min
π What's trending in cybersecurity today? π¨ #CyberAlerts CISA Adds Two Newly Exploited Vulnerabilities to Catalog Lazarus Group Evolves: DeathNote Campaign Targets New Sectors Outlook Bug Prevents Access to Emails and Calendars for Microsoft 365 Users Hikvision fixes critical vulnerability in video surveillance storage products Critical Control! CISA Issues 16 Advisories on Latest ICS Security Threats Beyond the Radar: Unveiling the Stealthy RTM Locker Ransomware Group π₯ #CyberIncidents North...
Apr 14, 2023β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts SAP Fixes Critical Bugs in Diagnostics Agent and BusinessObjects Platform Microsoft releases security updates for software flaws, including ransomware attack exploit Fortinet Issues Security Updates and Patches for Multiple Products, Including Critical Vulnerability in FortiPresence Hackers Inject Malicious Code in Websites to Serve Fake Chrome Updates with Malware, Expanding Target to Japanese, Korean and Spanish Users Microsoft warns o...
Apr 13, 2023β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts CISA Updates Zero Trust Maturity Model to Help Agencies Transition to Zero-Trust Architecture Ubuntu Addresses Kernel Vulnerabilities in Latest Security Notices IBM Issues Critical Security Advisories for Multiple Products Microsoft Azure Flaw Allows Attackers to Execute Remote Code Beware Android malware! Criminals sell loaders to evade Google Play Hackers can access your information via USB ports, warns FBI π₯ #CyberIncidents South Kor...
Apr 12, 2023β’9 min
π What's the latest in the cyber world today? π¨ #CyberAlerts Sophos patches critical code execution flaw in web appliance Iran-Linked MERCURY Group Behind Destructive Ransomware Attacks on Hybrid Environments High-Risk Vulnerability in Mastodon Social Network Allows Data Reading Attack Cryptocurrency Stealer Malware Exposed in Supply Chain Attack on .NET Developers π₯ #CyberIncidents US intelligence leak investigation leads to criminal investigation by Department of Justice HR Giant SD Worx su...
Apr 11, 2023β’9 min
π What's happening in cybersecurity today? π¨ #CyberAlerts CISA Adds Five New Vulnerabilities to Known Exploited Vulnerabilities Catalog FBI warns of for-profit companies targeting sextortion victims Beware of BEC 3.0: Hackers Use QuickBooks to Send Fake Invoice Critical vulnerability found in popular VM2 library Killnet hacker group causes massive increase in DDoS attacks worldwide Apple issues security updates to fix actively exploited zero-day vulnerabilities in iPads, iPhones, and Macs π₯ #...
Apr 10, 2023β’9 min
CyberBriefing *** 2023-04-07 π What are the latest cybersecurity advisories, alerts and incidents? π¨ #CyberAlerts Red Hat Releases Security Updates for Multiple Linux Products Cisco Patches High-Sev Bugs Across Products Thieves Can Steal Your Car with a Hacking Device: Automotive Cybersecurity Experts Issue Warning Tesla's Retail Tool app vulnerability allowed researcher to take over former employee accounts storing financial and enterprise information The US Cybersecurity and Infrastructure S...
Apr 07, 2023β’9 min
π What's going on in the cyber world today? π¨ #CyberAlerts HP printers vulnerable to critical CVE-2023-1707 flaw North Korean hackers target US and South Korea government and military personnel "CryptoClippy" Malware Steals Cryptocurrency from Portuguese Users Typhon Reborn malware returns with V2 update, new capabilities Google's Chrome 112 Update Addresses 16 Vulnerabilities, Earns Researchers $26K in Bug Bounties π₯ #CyberIncidents TAFE SA Data Breach: Credentials of 2224 Students Stolen Al...
Apr 06, 2023β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts CISA issues advisory on vulnerabilities in Nexx Smart Home Device Trellix Agent Vulnerabilities: Urgent Updates Required Android Devices at Risk: Security Update Urgently Needed! Rorschach: The Fastest Ransomware Yet" - New Cyber Threat Discovered with Unique Encryption Capabilities ALPHV Ransomware Affiliate Exploits Veritas Backup Flaws for Initial Access π₯ #CyberIncidents Uber Drivers' Personal Info Stolen Again in Third-Party Securi...
Apr 05, 2023β’9 min
π What's the latest in the cyber world today? π¨ #CyberAlerts Beware of Tax-Related Email Scams Spread by TACTICAL#OCTOPUS Hackers CISA Adds New Exploited Vulnerability to Catalog Hackers are creating self-extracting archives (SFX) using WinRAR that contain a decoy file along with malicious functionality Ubuntu Releases Security Notices to Address Linux Kernel Vulnerabilities Bank of England Warns Financial Sector of Potential Major Cyber Attack by Russian-Linked Hackers π₯ #CyberIncidents Capi...
Apr 04, 2023β’10 min
π What's happening in cybersecurity today? π¨ #CyberAlerts Samba Vulnerabilities Could Allow Remote Control of Systems, Urgent Security Updates Released Apple releases Security Update for Xcode Eleven Million Websites at Risk: Exploit Found in Elementor Pro WordPress Plugin 10-Year-Old Windows Vulnerability Still Exploited, Microsoft Fix "Opt-In" and Removed in Windows 11 Upgrade OpcJacker: The New Information-Stealing Malware on the Loose! Money Message Ransomware: Demanding Million-Dollar Ran...
Apr 03, 2023β’9 min
π What are the latest cybersecurity advisories, alerts and incidents? π¨ #CyberAlerts CISA Adds 10 New Vulnerabilities to Known Exploited Vulnerabilities Catalog, Urges Timely Remediation by All Organizations Moobot and ShellBot Malware Target Critical Vulnerabilities in Cacti and Realtek Devices New Modular Malware Kit 'AlienFox' Steals Cloud Credentials Chinese State-Sponsored Group RedGolf Uses Custom Backdoor KEYPLUG for Cyber Espionage Super FabriXss": Azure Service Fabric Vulnerability Al...
Mar 31, 2023β’57 sec
π What's going on in the cyber world today? π¨ #CyberAlerts Mozilla's Thunderbird Software Vulnerable to DoS Attack: Update Required Chinese State-Sponsored Group Linked to Linux Malware MΓ©lofΓ©e QNAP Warns Customers of High-Severity Sudo Vulnerability Affecting Its NAS Devices Google TAG Discovers Multiple Zero-Day Exploits in Android, iOS and Chrome Attacks Targeting Specific Regions OpenAI's ChatGPT Vulnerabilities Allowed Account Takeover and Chat History Viewing 3CX working on software upda...
Mar 30, 2023β’10 min
π What's trending in cybersecurity today? π¨ #CyberAlerts Apple Releases Security Updates to Address Device Vulnerabilities Source: Apple Dell Releases Security Updates for PowerProtect DD Products Source: Dell ABB addresses vulnerability in RCCMD product Source: ABB Europol Warns of Chatbot ChatGPT's Potential for Cybercrime Source: Europol Researchers Discover Flaw in WiFi Protocol Standard: Frames Can Be Intercepted Source: Northeastern University Crypto Theft Alert: Clipper Malware Hidden i...
Mar 29, 2023β’2 min
CyberBriefing *** 2023-03-27 π What's happening in cybersecurity today? π¨ #CyberAlerts Emotet Malware Targets US Taxpayers with Phishing Scam Source: Malwarebytes Microsoft Fixes Acropalypse Bug in Windows Snipping Tool with Emergency Update Source: Microsoft Silent Attack: Researchers Develop Inaudible Trojan to Hack Voice Assistants Source: UTSA New MacStealer Malware Targets Apple's macOS to Steal Sensitive Data Source: Uptycs Microsoft warns of Outlook flaw exploited by Russian threat acto...
Mar 27, 2023β’2 min
π What's going on in the cyber world today? π¨ #CyberAlerts Beware of the Trojanized ChatGPT Extension for Chrome Stealing Facebook Accounts Source: Guardio Labs Netgear Orbi Vulnerabilities: Cisco Talos Team Discovers Flaws and Releases PoC Exploits Source: Talos Intelligence North Korean Hackers Use Chrome Extensions to Steal Gmail Emails Source: The German Bundesamt fΓΌr Verfassungsschutz (BfV) Google Suspends Pinduoduo App Over Malware Concerns Source: SCMP CISA Warns of Critical Flaws in De...
Mar 23, 2023β’57 sec
π What's trending in cybersecurity today? π¨ #CyberAlerts IBM Releases Critical Security Updates for Multiple Products Source: IBM European Transport Sector at Risk of Targeted Cyber Attacks, Warns EU Cybersecurity Agency Source: ENISA New ShellBot malware targets poorly managed Linux SSH servers Source: ASEC "Red Pill Attacks" Expose Vulnerabilities in Coinbase Crypto Wallet and Other Dapps Source: Zengo Streamlined Cybersecurity Goals for Stronger Protection Source: CISA .NET Developers Bewar...
Mar 22, 2023β’58 sec
π What's the latest in the cyber world today? π¨ #CyberAlerts CatB ransomware uses DLL search order hijacking to evade detection and launch its payload Source: SentinelOne Ubuntu releases Security Notices for Linux kernel vulnerabilities in multiple products Source: Ubuntu "Acropalypse" Vulnerability: Google Pixel Markup Flaw Leaves Edited Images Recoverable Source: Simon Aarons (twitter) DotRunpeX: The New Malware Injector Distributing Numerous Malware Families Source: Check Point Emotet Malwa...
Mar 21, 2023β’58 sec
π What's happening in cybersecurity today? π¨ #CyberAlerts Adobe Warns of Critical Vulnerabilities in Multiple Products Source: Adobe Magniber Ransomware Group Exploits Zero-Day in Windows OS Source: Microsoft Google Finds Samsung Exynos Chip Flaws Source: Google China-Linked Group Exploits Fortinet Zero-Day in Govt. Attacks Source: Mandiant Cryptocurrency Clipper Malware Spreads via Fake Telegram and WhatsApp Sites Source: ESET HinataBot: A New Golang-Based Botnet Exploits Flaws for DDoS Attac...
Mar 20, 2023β’54 sec
π What are the latest cybersecurity advisories, alerts and incidents? π¨ #CyberAlerts Red Hat issues security advisories for Linux Kernel Source: Red Hat TeamTNT Suspected of Deploying Malware to Mine Monero on Compromised Systems Source: Cado Security Winter Vivern: The Resourceful APT Targeting European Governments and Telcos Source: Sentinel LABS Beware of Scammers Impersonating Banks on Twitter Source: BleepingComputer Chinese and Russian cybercriminals use new malware to load Cobalt Strike...
Mar 17, 2023β’57 sec
CyberBriefing *** 2023-03-16 π What's trending in cybersecurity today? What's going on in the cyber world today? π¨ #CyberAlerts WaterISAC warns of potential disruption to SCADA due to mandatory Microsoft DCOM patch Source: WaterISAC CISA Warns of APT Actor Exploiting Telerik UI Vulnerability at Federal Agency Source: CISA Dero Cryptocurrency Draws Attention of Cryptojackers Source: CrowdStrike Mozilla releases security updates for Firefox browsers Source: Mozilla CISA adds Adobe ColdFusion vul...
Mar 16, 2023β’57 sec
π What's trending in cybersecurity today? π¨ #CyberAlerts Cybercriminals exploit Silicon Valley Bank collapse Source: SANS Microsoft Tracks Dev-1101's Open-Source AiTM Phishing Kit as Cybercriminals Ramp Up Campaigns Source: Microsoft CISA Adds Three New Vulnerabilities to Known Exploited Vulnerabilities Catalog Source: CISA CISA Releases Four New ICS Advisories on Critical Vulnerabilities Source: CISA Microsoft Releases Security Updates for Edge Browser Source: Microsoft FBI Warns of Rising 'P...
Mar 15, 2023β’57 sec
π What's the latest in the cyber world today? π¨ #CyberAlerts Critical Security Update: IBM Robotic Process Automation for Cloud Pak Source: IBM Dell security advisories for product vulnerabilities Source: Dell Experts Warn of Employee Data Leaks to ChatGPT AI Chatbot Source: Cyber Heaven Russian hackers shift tactics in Ukraine from disruption to espionage Source: State Service of Special Communications and Information Protection of Ukraine CISA Launches Ransomware Vulnerability Warning Pilot ...
Mar 15, 2023β’58 sec
π What's happening in cybersecurity today? π¨ #CyberAlerts GoBruteforcer: The New Botnet Malware Targeting Web Servers with Weak Passwords Source : Palo Alto North Korean Hackers Target Security Researchers and Media Outlets with Fake Job Offers and New Malware Families Source : Mandiant CISA Adds Two Critical Vulnerabilities to its Catalog of Known Exploits CISA OpenSea Fixes Cross-Site Search Vulnerability, Preventing Deanonymization of Users and Protecting Against Exploitation of Largest NFT...
Mar 13, 2023β’57 sec
