IT Security Weekend Catch Up – December 14, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Telegram moderation overview
  2. Kremlin doubled its blocking of independent media sites this year, researchers say
  3. [VIDEO] How China hacked America’s phone network
  4. Chatbots urged teen to self-harm, suggested murdering parents, lawsuit says
  5. Back where it started: “Do Not Track” removed from Firefox after 13 years
  6. PIN number analysis
  7. Law enforcement shuts down 27 DDoS booters ahead of annual Christmas attacks
  8. International operation against ‘phone phishing’ gang in Belgium and the Netherlands

For the more technical

  1. [VIDEO] CONFidence 2024 conference recordings
  2. “Pwned”, the book, is now available for free
  3. Microsoft Patch Tuesday: December 2024
  4. Microsoft Warbird and PMP security research + more information
  5. Oasis security research team discovers Microsoft Azure MFA bypass
  6. BadRAM: Breaching processor security via rogue memory modules
  7. Supply-chain attack analysis: Ultralytics
  8. (QR) coding my way out of here: C2 in browser isolation environments
  9. Where there’s smoke, there’s fire – Mitel MiCollab CVE-2024-35286, CVE-2024-41713 and an 0day
  10. Compromising OpenWrt supply chain via truncated SHA-256 collision and command injection
  11. Unauthorized plugin installation/activation in Hunk Companion
  12. Black Basta ransomware campaign drops Zbot, DarkGate, and custom malware
  13. Inside Zloader’s latest trick: DNS tunneling
  14. Meeten malware: A cross-platform threat to crypto wallets on macOS and Windows
  15. Declawing PUMAKIT
  16. The stealthy stalker: Remcos RAT
  17. PROXY.AM powered by Socks5Systemz botnet
  18. The fascinating security model of dark web marketplaces
  19. New Chinese surveillance tool used by public security bureaus
  20. Operation Digital Eye: Chinese APT compromises critical digital infrastructure via Visual Studio Code tunnels
  21. Frequent freeloader part II: Russian actor Secret Blizzard using tools of other groups to attack Ukraine

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *