IT Security Weekend Catch Up – August 16, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. OUCH! Newsletter: Guard your heart (and wallet) against romance scams
  2. Twitter’s AI plans hit with 9 more GDPR complaints
  3. AI-powered human extermination is no longer science fiction. It is the reality
  4. City Attorney sues most-visited websites that create nonconsensual deepfake pornography
  5. Apple prototypes and corporate secrets are for sale online – if you know where to look
  6. Suspected head of prolific cybercrime groups arrested and extradited
  7. International investigation leads to shutdown of ransomware group
  8. Russian citizen sentenced to 40 months for selling stolen financial information on the criminal Internet marketplace Slilpp
  9. Disrupting Russian cybercrime: WWH-Club admins arrested

For the more technical

  1. The advanced in-the-wild malware test: Recent results in July 2024
  2. NIST announces post-quantum cryptography standards: Three security standards are ready for use, with a fourth on the way
  3. Study finds 94% of business spreadsheets have critical errors
  4. Microsoft August 2024 Patch Tuesday
  5. Zero-click Windows TCP/IP RCE impacts all systems with IPv6 enabled, patch now
  6. New Windows SmartScreen bypass exploited as zero-day since March
  7. [VIDEO] Going full-time bug bounty, privilege escalation bugs and more with Douglas Day
  8. uBO Lite (uBOL), a permission-less MV3 API-based content blocker
  9. ArtiPACKED: Hacking giants through a race condition in GitHub actions artifacts
  10. QuickShell: Sharing is caring about an RCE attack chain on Quick Share
  11. Chained for attack: OpenVPN vulnerabilities discovered leading to RCE and LPE
  12. Compromising Microsoft’s AI healthcare chatbot service
  13. Leaked secrets and unlimited miles: Hacking the largest airline and hotel rewards platform
  14. Ransomware attackers introduce new EDR killer to their arsenal
  15. Turning the screws: The pressure tactics of ransomware gangs
  16. No symbols? No problem!
  17. Cyclops: a likely replacement for BellaCiao
  18. Threat actors’ toolkit: Leveraging Sliver, PoshC2 & Batch scripts
  19. APT trends report Q2 2024
  20. Iranian backed group steps up phishing campaigns against Israel, U.S.
  21. EastWind campaign: new CloudSorcerer attacks on government organizations in Russia
  22. Rivers of phish: Sophisticated phishing targets Russia’s perceived enemies around the globe
  23. The i-Soon-leaks: Industrialization of cyber espionage

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *