IT Security Weekend Catch Up – August 26, 2023

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Lapsus$: Court finds teenagers carried out hacking spree
  2. The secret weapon hackers can use to dox nearly anyone in America for $15
  3. Tornado Cash founders charged with money laundering and sanctions violations
  4. How a hacking crew overtook a satellite from inside a Las Vegas convention center and won $50,000
  5. Disinformation and the resilience of democratic societies (PDF)
  6. Why US tech giants are threatening to quit the UK
  7. MOVEit, the biggest hack of the year, by the numbers
  8. Japanese watchmaker Seiko breached by BlackCat ransomware gang
  9. Too many users abused unlimited Dropbox plans, so they’re getting limits

For the more technical

  1. WinRAR 0-day that uses poisoned JPG and TXT files under exploit since April
  2. CVE-2020-19909 is everything that is wrong with CVEs
  3. [VIDEO] How to turn SQL injection into an RCE or a file read? Case study of 128 bug bounty reports
  4. Pixel Binary Transparency: verifiable security for Pixel devices
  5. Switching from Chrome to Firefox? Here are some tips
  6. You can now code websites with SQL
  7. Critical vulnerabilities patched in Jupiter X Core plugin
  8. Kali Linux 2023.3 release (Internal Infrastructure & Kali Autopilot)
  9. Announcing Python in Excel: Combining the power of Python and the flexibility of Excel
  10. New Python URL parsing flaw could enable command execution attacks
  11. Suspected PRC cyber actors continue to globally exploit Barracuda ESG zero-day vulnerability (CVE-2023-2868)
  12. Exploitation of Openfire CVE-2023-32315
  13. Smoke Loader drops Whiffy Recon Wi-Fi scanning and geolocation malware
  14. Scarabs colon-izing vulnerable servers
  15. Lockbit leak, research opportunities on tools leaked from TAs
  16. From Conti to Akira: Decoding the latest Linux & ESXi Ransomware families
  17. Agniane Stealer: Dark web’s crypto threat
  18. No rest for the wicked: HiatusRAT takes little time off in a return to action
  19. Chinese entanglement: DLL hijacking in the Asian gambling sector

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *