IT Security Weekend Catch Up – January 19, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Ambient light sensor privacy constraints, GDPR Data Protection by Design, GDPR state-of-the-art…
  2. [VIDEO] What actually happened in the Post Office scandal?
  3. UK government urged to review £2bn in Fujitsu contracts amid Horizon scandal
  4. Cryptojacker arrested in Ukraine over EUR 1.8 million mining scheme
  5. Attack of the copycats: How fake messaging apps and app mods could bite you
  6. Each Facebook user is monitored by thousands of companies
  7. Swiss government accused of massive online surveillance
  8. Literary prize winner says ChatGPT wrote some of her sci-fi novel which judges described as ‘almost flawless’
  9. OpenAI policies got a quiet update, removing ban on military and warfare applications
  10. British Library restores access to online collection following ransomware attack

For the more technical

  1. CISA: Critical Microsoft SharePoint bug now actively exploited
  2. Chinese espionage group UNC3886 found exploiting CVE-2023-34048 since late 2021
  3. Suspected APT targets Ivanti Connect Secure VPN in new zero-day exploitation
  4. PixieFail: Nine vulnerabilities in Tianocore’s EDK II IPv6 network stack
  5. It’s 2024 and over 178,000 SonicWall firewalls are publicly exploitable
  6. “MyFlaw” — cross platform 0-day RCE vulnerability discovered in Opera’s browser
  7. CVE-2024-21591 – Juniper J-Web OOB write vulnerability
  8. Volt Typhoon compromises 30% of Cisco RV320/325 Devices in 37 days
  9. GitLab warns of critical zero-click account hijacking vulnerability
  10. LeftoverLocals: Listening to LLM responses through leaked GPU local memory
  11. A lightweight method to detect potential iOS malware
  12. Detailed analysis of DarkGate; Investigating new top-trend backdoor malware
  13. Enter the gates: An analysis of the DarkGate AutoIt loader
  14. Java-based sophisticated stealer using Discord bot as EventListener
  15. CISA and FBI release known IOCs associated with Androxgh0st malware
  16. Containerised Clicks: Malicious use of 9hits on vulnerable docker hosts
  17. Bigpanzi exposed: The hidden cyber threat behind your set-top box
  18. Clearing the Fog of War – A critical analysis of recent energy sector cyberattacks in Denmark and Ukraine

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *