IT Security Weekend Catch Up – August 10, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. UK’s first AI traffic cameras that detect mobile phone use rolled out in Devon and Cornwall
  2. Argentina will use AI to ‘predict future crimes’ but experts worry for citizens’ rights
  3. Stolen data from scraping service National Public Data leaked online
  4. Major leak exposes S. Korean intelligence agents
  5. Phish-friendly domain registry “.top” put on notice
  6. US dismantles laptop farm used by undercover North Korean IT workers
  7. Low-drama ‘Dark Angels’ reap record ransoms
  8. NASA likely to significantly delay the launch of Crew 9 due to Starliner issues
  9. A deep dive into how developers trick App Store review into approving malicious apps
  10. SEC decides against penalizing MOVEit software maker
  11. Indonesia bans search engine DuckDuckGo on gambling, pornography concerns
  12. Iran targeting 2024 US election
  13. Signal has been blocked by Venezuela and Russia
  14. Russian spies hacked UK government systems earlier this year, stole data and emails
  15. Police recover over USD 40 million from international email scam

For the more technical

  1. Microsoft discloses Office zero-day, still working on a patch
  2. Windows Downdate: Downgrade attacks using Windows Updates
  3. Dismantling Smart App Control
  4. Over 20,000 Ubiquiti cameras and routers are vulnerable to amplification attacks and privacy risks
  5. Anyone can access deleted and private repository data on GitHub
  6. Government emails at risk: Critical cross-site scripting vulnerability in Roundcube Webmail
  7. Container breakouts: Escape techniques in cloud environments
  8. 0.0.0.0 Day: Exploiting localhost APIs from the browser
  9. How someone I don’t know hacked the scammers back
  10. Announcing Swift homomorphic encryption
  11. Zola ransomware: The many faces of the Proton family
  12. Mimic ransomware campaign against organizations in India
  13. Unmasking Cronus: How fake PayPal documents deliver fileless ransomware via PowerShell
  14. New widespread extension trojan malware campaign
  15. PureHVNC deployed via Python multi-stage loader
  16. Chameleon is now targeting employees: Masquerading as a CRM app
  17. BlankBot – a new Android banking trojan with screen recording, keylogging and remote control capabilities
  18. LianSpy: new Android spyware targeting Russian users
  19. Botnet 7777: Are you betting on a compromised router?
  20. Panamorfi: A new Discord DDoS campaign
  21. New APT group Actor240524: A closer look at its cyber tactics against Azerbaijan and Israel
  22. A dive into Earth Baku’s latest campaign

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *