IT Security Weekend Catch Up – April 13, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Bielik-7B-v0.1, the Polish LLM based on Mistral
  2. Kremlin Leaks: How Putin’s regime is building AI surveillance operations
  3. Meta in Myanmar
  4. ‘The machine did it coldly’: Israel used AI to identify 37,000 Hamas targets
  5. Attempted audio deepfake call targets LastPass employee
  6. Why CISA is warning CISOs about a breach at Sisense

For the more technical

  1. Command injection and backdoor account in D-Link NAS devices
  2. How an old bug in Lighttpd gained new life in AMI BMC, including Lenovo and Intel products
  3. InSpectre Gadget: Inspecting the residual attack surface of cross-privilege Spectre v2
  4. April 2024 Microsoft Patch Tuesday Summary
  5. Smoke and (screen) mirrors: A strange signed backdoor
  6. Sidestepping SharePoint security: Two new techniques to evade exfiltration detection
  7. CVE-2024-3400 PAN-OS: OS command injection vulnerability in GlobalProtect gateway
  8. Operation MidnightEclipse, post-exploitation activity related to CVE-2024-3400
  9. Zero-day exploitation of unauthenticated remote code execution vulnerability in GlobalProtect (CVE-2024-3400)
  10. Vulnerabilities identified in LG WebOS
  11. XZ backdoor story – Initial analysis
  12. An in-depth analysis of the xz backdoor
  13. Persistent Magento backdoor hidden in XML
  14. BatBadBut: You can’t securely execute commands on Windows
  15. Hackers hijacked Notepad++ plugin to execute malicious code
  16. An IRC client in your motherboard
  17. CoralRaider targets victims’ data and social media accounts
  18. New technique to trick developers detected in an open source supply chain attack
  19. TA547 targets German organizations with Rhadamanthys stealer

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *