Börzel IT
Updates
- Fortinet fixes critical FortiNAC RCE, install updates asap
- Alert! Hackers Exploiting Critical Vulnerability in VMware's Aria Operations Networks
- Exploit released for Cisco AnyConnect bug giving SYSTEM privileges
- Apple fixes zero-days used to deploy Triangulation spyware via iMessage
- Western Digital blocks unpatched My Cloud devices
- Zyxel Releases Urgent Security Updates for Critical Vulnerability in NAS Devices
- Critical Flaw Found in WordPress Plugin for WooCommerce Used by 30,000 Websites
- ASUS Releases Patches to Fix Critical Security Bugs Impacting Multiple Router Models
Threats
- Over Half of Malicious Files are HTML Attachments
- Critical 'nOAuth' Flaw in Microsoft Azure AD Enabled Complete Account Takeover
- Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware
- NSA Releases Guide to Combat Powerful BlackLotus Bootkit Targeting Windows Systems
- Microsoft Teams vulnerability allows attackers to deliver malware to employees - Help Net Security
- Free VPN App with 5 Million Downloads Acts as DDoS Botnet
- Microsoft: Hackers hijack Linux systems using trojanized OpenSSH version
- Hackers use fake OnlyFans pics to drop info-stealing malware
- More than a million GitHub repositories potentially vulnerable to RepoJacking
- Someone is sending mysterious smartwatches to the US Military personnel
Incidents
- SSD mit Mitarbeiterdaten aus SAP-Rechenzentrum auf eBay aufgetaucht
- Over 100,000 Stolen ChatGPT Account Credentials Sold on Dark Web Marketplaces
- Experts Uncover Year-Long Cyber Attack on IT Firm Utilizing Custom Malware RDStealer
- Reddit hackers threaten to leak data stolen in February breach
- Snack food company Mondelez warns employees of data theft
- Chinese state-backed hackers accidentally infected a European hospital with malware
Cyber Crime
- Twitter Hacker Sentenced to 5 Years in Prison for $120,000 Crypto Scam
- Russian APT28 hackers breach Ukrainian govt email servers
- FBI seizes BreachForums after arresting its owner Pompompurin in March
- Russian APT Group Caught Hacking Roundcube Email Servers
Malware
- Malware Delivered Through .inf File
- Chinese malware accidentally infects networked storage
- Analyzing a YouTube Sponsorship Phishing Mail and Malware Targeting Content Creators
- Powerful JavaScript Dropper PindOS Distributes Bumblebee and IcedID Malware
- New Mystic Stealer Malware Targets 40 Web Browsers and 70 Browser Extensions
- New RDStealer malware steals from drives shared over Remote Desktop
- New Condi malware builds DDoS botnet out of TP-Link AX21 routers
