Updates
- Fortiguard
- Nessus Version 10.4.1 Fixes Multiple Vulnerabilities
- Splunk Patches 9 High-Severity Vulnerabilities in Enterprise Product | SecurityWeek.Com
- Cisco Patches High-Severity Bugs in Email, Identity, Web Security Products | SecurityWeek.Com
- Apple Releases Security Update for Xcode
- Cisco Releases Security Updates for Multiple Products
- Multiple Vulnerabilities Reported in Checkmk IT Infrastructure Monitoring Software
- OpenSSL fixes two high severity vulnerabilities, what you need to know
- VMware warns of the public availability of CVE-2021-39144 exploit code
- Firefox 106.0.3 freigegeben
- Bitdefender: Löschen von Registry-Keys durch Sicherheitslücke möglich
Vorfälle
- Cyberattack Causes Trains to Stop in Denmark | SecurityWeek.Com
- Crime group hijacks hundreds of US news websites to push malware
- Dropbox Breach: Hackers Unauthorizedly Accessed 130 GitHub Source Code Repositories
- Instagram confirms outage following stream of user suspensions
- ALMA Observatory shuts down operations due to a cyberattack
- LockBit ransomware claims attack on Continental automotive giant
- Rhein-Pfalz-Kreis: Angreifer melden sich nach Hackerangriff auf Verwaltung
- Thales: Hacker wollen Daten von großem Rüstungskonzern gestohlen haben
- Möglicher Hackerangriff: Hochschule Heilbronn kappt Internetverbindung
Schwachstellen und Bedrohungen
- Eat What You Kill :: Pre-authenticated Remote Code Execution in VMWare NSX Manager
- OpenSSL-2022/README.md at main · NCSC-NL/OpenSSL-2022 · GitHub
- Everything you need to know about the OpenSSL 3.0.7 Patch (CVE-2022-3602 & CVE-2022-3786) - MalwareTech
- Experts warn of critical RCE in ConnectWise Server Backup Solution
- Google ad for GIMP.org served info-stealing malware via lookalike site
- Engineering workstation attacks on industrial control systems double: Report
- CISA Releases Guidance on Phishing-Resistant and Numbers Matching Multifactor Authentication | CISA
- Unofficial Patch Released for New Actively Exploited Windows MotW Vulnerability
Cyber Crime
- As Twitter brings on $8 fee, phishing emails target verified accounts
- OPERA1ER hackers steal over $11 million from banks and telcos
- RomCom RAT malware campaign impersonates KeePass, SolarWinds NPM, Veeam
- Former Apple worker pleads guilty to $17m fraud charges
- Experts link the Black Basta ransomware operation to FIN7 cybercrime gang
- Emotet botnet starts blasting malware again after 5 month break
- Accused ‘Raccoon’ Malware Developer Fled Ukraine After Russian Invasion
- W4SP Stealer Stings Python Developers in Supply Chain Attack