IT Security Weekend Catch Up – July 2, 2023

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. ChatGPT creator OpenAI sued for theft of private data in ‘AI arms race’
  2. France’s browser-based website blocking proposal will set a disastrous precedent for the open internet
  3. Casualties keep growing in this month’s mass exploitation of MOVEit 0-day
  4. Over 1500 gas stations disrupted in Canada, after energy giant hacked
  5. Dismantling encrypted criminal EncroChat communications leads to over 6 500 arrests and close to EUR 900 million seized
  6. Citizen of Croatia and Serbia charged with running Monopoly drug market on the darknet
  7. Russian cybersecurity executive arrested for alleged role in 2012 megahacks

For the more technical

  1. CWE Top 25 Most Dangerous Software Weaknesses
  2. Zyxel security advisory for multiple vulnerabilities of firewalls and APs
  3. Unpatched critical privilege escalation vulnerability in Ultimate Member plugin being actively exploited
  4. Process Mockingjay: Echoing RWX in userland to achieve code execution
  5. Proxyjacking: The latest cybercriminal side hustle
  6. IoT devices and Linux-based systems targeted by OpenSSH trojan campaign
  7. Trojanized Super Mario game installer spreads SupremeBot malware
  8. Anatsa banking Trojan hits UK, US and DACH with new campaign
  9. 8Base ransomware: A heavy hitting player
  10. Free Akira ransomware decryptor helps recover your files
  11. Unveiling Wagner Group’s cyber-recruitment
  12. Malvertising used as entry vector for BlackCat, actors also leverage SpyBoy terminator
  13. New fast-developing ThirdEye infostealer pries open system information
  14. BlackMamba – The AI-powered, keylogging malware (PDF)
  15. PindOS: New JavaScript dropper delivering Bumblebee and IcedID
  16. The DPRK strikes using a new variant of RUSTBUCKET
  17. Initial research exposing JOKERSPY
  18. Falcon Complete MDR thwarts novel VANGUARD PANDA (Volt Typhoon) tradecraft
  19. Traveling the world on Camaro Dragon’s USB flash drives
  20. Following NoName057(16) DDoSia Project’s targets

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *