IT Security Weekend Catch Up – February 3, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Google will no longer back up the Internet: Cached webpages are dead
  2. How a mistakenly published password exposed Mercedes-Benz source code
  3. New ransomware reporting requirements kick in as victims increasingly avoid paying
  4. Energy giant Schneider Electric hit by Cactus ransomware attack
  5. Funds stolen from crypto platforms fall more than 50% in 2023, but hacking remains a significant threat as number of incidents rises
  6. Vastaamo hacker traced via ‘untraceable’ Monero transactions, police says
  7. China’s hackers have entire nation in their crosshairs, FBI director warns
  8. Authorities secure $2 billion in Bitcoin from pirate site operators
  9. NSA finally admits to spying on Americans by purchasing sensitive data
  10. Japan government accepts it’s no longer the ’90s, stops requiring floppy disks

For the more technical

  1. How memory forensics revealed exploitation of Ivanti Connect Secure VPN zero-day vulnerabilities
  2. Cutting edge, part 2: Investigating Ivanti Connect Secure VPN zero-day exploitation
  3. Zyxel VPN series pre-auth remote command execution
  4. Excessive expansion: Uncovering critical security vulnerabilities in Jenkins
  5. Thanksgiving 2023 security incident
  6. Code audit for the Tor Project completed by Radically Open Security
  7. Mastodon vulnerability allows attackers to take over accounts
  8. Rook to XSS: How I hacked chess.com with a rookie exploit
  9. Unveiling the intricacies of DiceLoader
  10. ESET takes part in global operation to disrupt the Grandoreiro banking trojan
  11. VajraSpy: A Patchwork of espionage apps
  12. Between a hack and a hard place: How Pegasus spyware crushes civic space in Jordan
  13. Backdoor activator malware running rife through torrents of macOS apps
  14. PurpleFox malware infects thousands of computers in Ukraine
  15. ApateWeb: An evasive large-scale scareware and PUP delivery campaign
  16. Ars Technica used in malware campaign with never-before-seen obfuscation
  17. Pawn Storm uses brute force and stealth against high-value targets
  18. Evolution of UNC4990: Uncovering USB malware’s hidden depths
  19. Buzzing on Christmas Eve: Trigona ransomware in 3 hours
  20. Python’s byte: The rise of scripted ransomware
  21. Info stealing packages hidden in PyPI

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *