Börzel IT
Updates
- Synology: Kritische Lücken in NAS erlauben Angreifern Ausführen von Schadcode
- Cisco Releases Security Update for Cisco Identity Services Engine | CISA
- Oracle October 2022 Critical Patch Update Addresses 179 CVEs
- CVE-2022-28762: Zoom for macOS contains a debugging port misconfiguration
- Zimbra Releases Patch for Actively Exploited Vulnerability in its Collaboration Suite
- Windows Mark of the Web bypass zero-day gets unofficial patch
Vorfälle
- Wholesale giant METRO hit by IT outage after cyberattack
- Hackers stole sensitive data from Iran’s atomic energy agency
- Sabotage von Infrastruktur: Zwei Schnitte, schon ist das Internet weg
- Kabelschäden in Frankreich und England stören Internet- und Telefonverbindungen
- Microsoft data breach exposes customers’ contact info, emails
- Microsoft “BlueBleed” data breach: customer details and email content exposed
- Krankenversicherer gehackt: Angreifer wollen 1000 betroffene Promis kontaktieren
- Ransomware-Attacke: Hacker greifen IT-Dienstleister der dpa an
- Hackers Threaten to Release Medical Info of Australian Actors, Politicians, Activists, and More
- Peek&Cloppenburg: Konfigurationsfehler führt zu Datenpanne
- Retail giant Woolworths discloses data breach of MyDeal online marketplace
Schwachstellen und Bedrohungen
- Cisco ISE: Angreifer könnten Kontrolle übernehmen
- Exploited Windows zero-day lets JavaScript files bypass security warnings
- Microsoft pfuscht bei Windows-Kernel-Sicherheit – und Ransomware profitiert
- Spyware-Verdacht: WM-Apps in Katar ermöglichen Überwachung
- Dangerous hole in Apache Commons Text – like Log4Shell all over again
Cyber Crime
- CISA Warns of Daixin Team Hackers Targeting Health Organizations With Ransomware
- SideWinder APT Using New WarHawk Backdoor to Target Entities in Pakistan
- Suspected LAPSUS$ group member arrested in Brazil
- Domestic Kitten campaign spying on Iranian citizens with new FurBall malware | WeLiveSecurity
- Hackers target Asian casinos in lengthy cyberespionage campaign
- Warning: "FaceStealer" iOS and Android apps steal your Facebook login
- Ransom Cartel linked to Colonial Pipeline attacker REvil, says infosec crew
- Bulgaria hit by a cyber attack originating from Russia
- Venus Ransomware targets publicly exposed Remote Desktop services
- Black Basta Ransomware Hackers Infiltrate Networks via Qakbot to Deploy Brute Ratel C4
- Police dismantles criminal ring that hacked keyless cars
- Hackers exploit critical VMware flaw to drop ransomware, miners
Malware
- Thousands of GitHub repositories deliver fake PoC exploits with malware
- Emotet Botnet Distributing Self-Unlocking Password-Protected RAR Files to Drop Malware
- Hackers use new stealthy PowerShell backdoor to target 60+ victims
- Experts Warn of Stealthy PowerShell Backdoor Disguising as Windows Update
- Critical Remote Code Execution issue impacts popular post-exploitation toolkit Cobalt Strike
- Fileless Powershell Dropper, (Mon, Oct 17th)
- MafiaWare666 Ransomware Decryption Tool Released
Sonstiges
- Millennials, Gen Z blamed for poor company security
- Microsoft finally releases tabbed File Explorer for Windows 11
- Bundesjustizamt: 5 Millionen Euro Strafe gegen Telegram
- Bericht: Innenministerium stellt BSI-Chef Schönbohm frei
- Support-Ende für VMware ESXi 6.5 und 6.7 - noch viele Alt-Systeme aktiv
- AI-generated imagery is the new clip art as Microsoft adds DALL-E to its Office suite
- Zeek is Now a Component of Microsoft Windows
- Google sued over biometric data collection without consent
