IT Security Weekend Catch Up – June 4, 2022

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. FBI warns of hackers selling credentials for U.S. college networks
  2. Russian credit card data floods the market following the Russo-Ukrainian war
  3. and related domain names seized
  4. [VIDEO] Bank scams: How far would cyber criminals go?
  5. Takedown of SMS-based FluBot spyware infecting Android phones
  6. Foxconn confirms ransomware attack disrupted production in Mexico
  7. The faces from China’s Uyghur detention camps
  8. Brave joins Mozilla in declaring Google’s First-Party Sets feature harmful to privacy
  9. The underground company that hacks iPhones for ordinary consumers

For the more technical

  1. Follina – a Microsoft Office code execution vulnerability
  2. Confluence Server and Data Center – CVE-2022-26134 – Critical severity unauthenticated remote code execution vulnerability
  3. CVE-2022-0337 System environment variables leak on Google Chrome, Microsoft Edge and Opera
  4. New Windows Search zero-day added to Microsoft protocol nightmare
  5. Hackers steal WhatsApp accounts using call forwarding trick
  6. Android apps with millions of downloads exposed to high-severity vulnerabilities
  7. Vulnerability within the UNISOC baseband opens mobile phones communications to remote hacker attacks
  8. Over 3.6 million exposed MySQL servers on IPv4 and IPv6
  9. Unsecured Elasticsearch data replaced with ransom note
  10. ServiceNSW’s digital drivers licence security appears to be super bad
  11. ESET Threat Report T 1 2022 (PDF)
  12. Rapidly evolving IoT malware EnemyBot now targeting Content Management System servers and Android devices
  13. Conti targets critical firmware
  14. YourCyanide: A CMD-based ransomware with multiple layers of obfuscation
  15. Karakurt data extortion group
  16. Trend Micro partners with Interpol and Nigeria’s EFCC for Operation Killer Bee, takes down Nigerian BEC actors
  17. To HADES and back: UNC2165 shifts to LOCKBIT to evade sanctions
  18. Exposing POLONIUM activity and infrastructure targeting Israeli organizations
  19. Clipminer botnet makes operators at least $1.7 million

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *