Börzel IT
Updates
- Cisco Squashes Critical Bugs In Small Biz Switches
- Warning: Samsung Devices Under Attack! New Security Flaw Exposed
- WebKit Under Attack: Apple Issues Emergency Patches for 3 New Zero-Day Vulnerabilities
- HP rushes to fix bricked printers after faulty firmware update
- NetApp Products Multiple Vulnerabilities
Threats
- Lemon Group’s Cybercriminal Businesses Built on Preinfected Devices
- Cybercrime gang pre-infects millions of Android devices with malware
- KeePass Vulnerability Imperils Master Passwords
- KeePass flaw allows retrieval of master password, PoC is public (CVE-2023-32784) - Help Net Security
- 3 Common Initial Attack Vectors Account for Most Ransomware Campaigns
- 10 Types of AI Attacks CISOs Should Track
- Malware turns home routers into proxies for Chinese state-sponsored hackers
- Searching for AI Tools? Watch Out for Rogue Sites Distributing RedLine Malware
- Developer Alert: NPM Packages for Node.js Hiding Dangerous TurkoRat Malware
- Ducktail Malware Focuses on Targeting HR and Marketing Professionals
- Ongoing Facebook phishing campaign without a sender and (almost) without links, (Mon, May 15th)
- Malicious Microsoft VSCode extensions steal passwords, open remote shells
- China's Mustang Panda Hackers Exploit TP-Link Routers for Persistent Attacks
- Industrial Cellular Routers at Risk: 11 New Vulnerabilities Expose OT Networks
- Microsoft Azure VMs Hijacked in Cloud Cyberattack
- Escalating China-Taiwan Tensions Fuel Alarming Surge in Cyber Attacks
- New Ransomware Gang RA Group Hits U.S. and South Korean Organizations
- Serious Unpatched Vulnerability Uncovered in Popular Belkin Wemo Smart Plugs
- 8220 Gang Exploiting Oracle WebLogic Flaw to Hijack Servers and Mine Cryptocurrency
- ASUS routers knocked offline worldwide by bad security update
- npm packages hide TurkoRAT malware in what looks like a NodeJS EXE
- Hackers use Azure Serial Console for stealthy access to VMs
- MalasLocker ransomware targets Zimbra servers, demands charity donation
Cyber Crime
- Russian IT guy sent to labor camp for DDoSing Kremlin websites
- Meet 'Jack' from Romania! Mastermind Behind Golden Chickens Malware
- A different kind of ransomware demand: Donate to charity to get your data back
- Russian IT worker jailed for participating in pro-Ukraine DDoS attacks
- Microsoft: Notorious FIN7 hackers return in Clop ransomware attacks
- 18-year-old charged with hacking 60,000 DraftKings betting accounts
- FBI confirms BianLian ransomware switch to extortion only attacks
Malware
- Visualizing QakBot Infrastructure
- CopperStealer Malware Crew Resurfaces with New Rootkit and Phishing Kit Modules
- New 'MichaelKors' Ransomware-as-a-Service Targeting Linux and VMware ESXi Systems
- CLR SqlShell Malware Targets MS SQL Servers for Crypto Mining and Ransomware
- Open-source Cobalt Strike port 'Geacon' used in macOS attacks
- Malspam campaign delivering PowerDash – a tiny PowerShell backdoor
Misc.
- Microsoft pulls Defender update fixing Windows LSA Protection bug
- Microsoft is scanning the inside of password-protected zip files for malware
- Microsoft investigates slow Windows VPN speeds after May updates
- Pakistan Shut Down The Internet - But That Didn't Stop Protests
- How to Switch to Using Passkeys With Your Google Accounts
- How to Reduce Exposure on the Manufacturing Attack Surface
- XM Cyber Announces Partnership With SAP to Deliver Robust Security for Hybrid Environments
- Brave unveils new "Forgetful Browsing" anti-tracking feature
- Ukraine, Ireland, Iceland and Japan officially join NATO’s cyber defense center
- New ZIP domains spark debate among cybersecurity experts
- A Quick Survey of .zip Domains: Your highest risk is running into Rick Astley., (Thu, May 18th)
- WhatsApp now lets you lock chats with a password or fingerprint
- Phishing-resistant MFA 101: What you need to know
