IT Security Weekend Catch Up – June 17, 2022

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Internet Explorer 11 has retired and is officially out of support—what you need to know
  2. Firefox rolls out Total Cookie Protection by default to all users worldwide
  3. New Vytal Chrome extension hides location info that your VPN can’t
  4. UK approves WikiLeaks chief Julian Assange’s extradition to the US
  5. California man known as “icloudripper4you” sentenced to nine years in federal prison
  6. Illinois man sentenced to 2 years in federal prison for operating subscription-based computer attack platforms
  7. Hundreds arrested and millions seized in global INTERPOL operation against social engineering scams
  8. Russian botnet disrupted in international cyber operation
  9. Binance: The crypto money laundering myth and the machine working overtime to sell a false narrative

For the more technical

  1. PACMAN – attacking ARM pointer authentication with speculative execution
  2. New Hertzbleed side-channel attack affects Intel, AMD CPUs
  3. Microsoft June 2022 Patch Tuesday
  4. Microsoft Azure Synapse pwnalytics
  5. CVE-2022-25845 – Analyzing the Fastjson “Auto Type Bypass” RCE vulnerability
  6. Probing for passwords – privacy implications of SSIDs in probe requests (PDF)
  7. Zimbra email – stealing clear-text credentials via memcache injection
  8. DriftingCloud: Zero-day Sophos Firewall exploitation and an insidious breach
  9. Potentially dangerous Microsoft Office 365 functionality that can ransom files stored on SharePoint and OneDrive
  10. 730K WordPress sites force-updated to patch critical plugin bug
  11. Russian hackers start targeting Ukraine with Follina exploits
  12. 15 vulnerabilities discovered in Siemens industrial control management system
  13. Emulating Phineas Phisher attacks in modern EDR environments
  14. New MaliBot Android malware found stealing personal, banking data
  15. How Emotet is changing tactics in response to Microsoft’s tightening of Office macro security makr pakietu Office
  16. Confluence servers hacked to deploy AvosLocker, Cerber2021 ransomware
  17. The many lives of BlackCat ransomware
  18. Technical analysis of PureCrypter: A fully-functional loader distributing remote access trojans and information stealers
  19. How much does access to corporate infrastructure cost?
  20. Panchan’s mining rig: New Golang peer-to-peer botnet says “Hi!”
  21. Cloudflare mitigates 26 million request per second DDoS attack

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *