IT Security Weekend Catch Up – June 14, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. “Software installed by hackers”- how the Polish Press Agency lies about the Newag scandal
  2. Former IT employee gets 2.5 years for wiping 180 virtual servers
  3. Ukrainian police identify suspected affiliate of Conti, LockBit groups
  4. London hospitals cancel over 800 operations after ransomware attack
  5. Spam blocklist SORBS closed by its owner, Proofpoint
  6. Two people arrested in connection with investigation into homemade mobile antenna used to send thousands of smishing text messages to the public
  7. Adobe clarifies Terms of Service change, says it doesn’t train AI on customer content
  8. YouTube tests harder-to-block server-side ad injection in videos
  9. US and Poland to fight together against Russian disinformation

For the more technical

  1. Microsoft Patch Tuesday June 2024
  2. Update on the Recall preview feature for Copilot+ PCs
  3. Ransomware attackers may have used privilege escalation vulnerability as zero-day
  4. Update now! Google Pixel vulnerability is under active exploitation
  5. Cinterion EHS5 3G UMTS/HSPA module research
  6. Semiconductor giants Nvidia and Arm warn of new flaws in their graphics processors
  7. How we hacked multi-billion dollar companies in 30 minutes using a fake VSCode extension
  8. Nasty bug with very simple exploit hits PHP just in time for the weekend
  9. Updates for security issue affecting IntelliJ-based IDEs 2023.1+ and JetBrains GitHub Plugin
  10. Exposing malicious extensions: Shocking statistics from the VS Code Marketplace
  11. A letter to Microsoft: Uncovering design flaws of Visual Studio Code extensions
  12. Arid Viper poisons Android apps with AridSpy
  13. Technical analysis of the latest variant of ValleyRAT
  14. IcedID brings ScreenConnect and CSharp Streamer to ALPHV ransomware deployment
  15. Noodle RAT: Reviewing the backdoor used by Chinese-speaking groups
  16. 2024: Old CVEs, new targets – active exploitation of ThinkPHP
  17. Dipping into danger: The WarmCookie backdoor
  18. APT attacks using cloud storage
  19. UNC5537 targets Snowflake customer instances for data theft and extortion

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *