Börzel IT
Updates
- Cisco fixed CVE-2023-20049 DoS flaw affecting enterprise routers
- Veeam fixes bug that lets hackers breach backup infrastructure
- Fortinet warns of new critical unauthenticated RCE vulnerability
- Jenkins Security Alert: New Security Flaws Could Allow Code Execution Attacks
- CISA warns of actively exploited Plex bug after LastPass breach
- Apache Patches Two Important Bugs in Web Server
- Expert released PoC exploit code for critical Microsoft Word RCE flaw
Incidents
- Acronis downplays cyberattack after 12GB trove leaks online
- Blackbaud agrees to pay $3m to settle SEC ransomware probe
- AT&T alerts 9 million customers of data breach after vendor hack
- LastPass hack caused by an unpatched Plex software on an employee’s PC
- Acer confirms breach after 160GB of data for sale on hacking forum
- Hospital Clínic de Barcelona severely impacted by ransomware attack
- Vorbereitung für Ransomware erkennbar: Hackerangriff auf Stadtwerke Karlsruhe
- Stadtwerke Rodgau: Kompletter Systemausfall
- Ransomware-Angriff auf H-Hotels: Ausweis-Dokumente geleakt
Threats
- CASPER attack steals data using air-gapped computer's internal speaker
- Unpatched Zero-Day Bugs in Smart Intercom Allow Eavesdropping
- North Korean hackers used polished LinkedIn profiles to target security researchers
- ChatGPT Browser Extension Hijacks Facebook Business Accounts
- Bitwarden flaw can let hackers steal passwords using iframes
- InfoSec Handlers Diary Blog - SANS Internet Storm Center
- Clop ransomware gang begins extorting GoAnywhere zero-day victims
- Transparent Tribe Hackers Distribute CapraRAT via Trojanized Messaging Apps
- Proof-of-Concept released for critical Microsoft Word RCE bug
- Shein's Android App Caught Transmitting Clipboard Data to Remote Servers
- Critical Vulnerabilities Allow Hackers to Take Full Control of Wago PLCs
- How to prevent Microsoft OneNote files from infecting Windows with malware
Malware
- KamiKakaBot Malware Used in Latest Dark Pink APT Attacks on Southeast Asian Targets
- IceFire ransomware now encrypts both Linux and Windows systems
- China-linked Hackers Targeting Unpatched SonicWall SMA Devices with Malware
- Xenomorph Android Banking Trojan Returns with a New and More Powerful Variant
- SYS01stealer: New Threat Using Facebook Ads to Target Critical Infrastructure Firms
- Emotet malware attacks return after three-month break
- Old Windows ‘Mock Folders’ UAC bypass used to drop malware
- Colour-Blind, a fully featured info stealer and RAT in PyPI
Cyber Crime
- Megaline / Masterlines nach Verfolgungsjagd festgenommen
- North Korea-linked Lazarus APT used a 0-day in a recent attack
- Police seize Netwire RAT malware infrastructure, arrest admin
- International Law Enforcement Takes Down Infamous NetWire Cross-Platform RAT
- Germany and Ukraine hit two high-value ransomware targets | Europol
