Börzel IT
Updates
- Apple Updates Everything (again) - SANS Internet Storm Center
- Atlassian Patches Remote Code Execution Vulnerabilities in Confluence, Bamboo
- Ivanti Releases Urgent Patch for EPMM Zero-Day Vulnerability Under Active Exploitation
- Multiple Security Issues Identified in Peloton Fitness Equipment
- New OpenSSH Vulnerability Exposes Linux Systems to Remote Command Injection
- Almost 40% of Ubuntu users vulnerable to new privilege elevation flaws
- Super Admin elevation bug puts 900,000 MikroTik devices at risk
- VMware fixes bug exposing CF API admin credentials in audit logs
- Zimbra fixed actively exploited zero-day CVE-2023-38750 in ZCS
Threats
- Backdoor in TETRA Police Radios - Schneier on Security
- New AI Tool 'FraudGPT' Emerges, Tailored for Sophisticated Attacks
- macOS Under Attack: Examining the Growing Threat and User Perspectives
- Critical Zero-Days in Atera Windows Installers Expose Users to Privilege Escalation Attacks
- Hackers Abusing Windows Search Feature to Install Remote Access Trojans
- Hackers Target Apache Tomcat Servers for Mirai Botnet and Crypto Mining
- Lazarus hackers hijack Microsoft IIS servers to spread malware
- New Malvertising Campaign Distributing Trojanized IT Tools via Google and Bing Search Ads
- Scammers Follow the Rebranding of Twitter to X, to Distribute Malware | McAfee Blog
Incidents
- US senator blasts Microsoft for “negligent cybersecurity practices”
- Polizei greift weiterhin illegal auf personenbezogene Daten zu
- Microsoft Sharepoint outage caused by use of wrong TLS certificate
- 8 million people hit by data breach at US govt contractor Maximus
- BreachForums database and private chats for sale in hacker data breach
Cyber Crime
- APT trends report Q2 2023
- BlueBravo Deploys GraphicalProton Backdoor Against European Diplomatic Entities
- The Week in Ransomware - July 28th 2023 - New extortion tactics
Malware
- Casbaneiro Banking Malware Goes Under the Radar with UAC Bypass Technique
- Linux version of Abyss Locker ransomware targets VMware ESXi servers
- Realst: A New Malware Targeting macOS and the Escalating Threat of Information Stealers
- ALPHV ransomware adds data leak API in new extortion strategy
Misc.
- How to Perform Compromise Assessments on NetScaler / Citrix ADC Appliances Using THOR - Nextron Systems
- FraudGPT, DarkBert, BratGPT, WormGPT: The Rise of Blackhat AI
- Google blocks staff's internet access to reduce attacks - but will it work?
- Apple rejects new name 'X' for Twitter iOS app because... rules
