IT Security Weekend Catch Up – March 12, 2023

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Losing Signal
  2. Twitter’s privacy-preserving Tor service goes dark
  3. New Pegasus spyware abuses identified in Mexico
  4. The FBI just admitted it bought US location data
  5. The gender-equal cybercriminal underground
  6. Germany and Ukraine hit two high-value ransomware targets
  7. Police seize Netwire RAT malware infrastructure, arrest admin
  8. Acer confirms server intrusion after miscreant offers 160GB cache of stolen files
  9. Facebook’s powerful large language model leaks online

For the more technical

  1. An ultra-rare Radeon driver bug is breaking PCs. This exotic fix revived mine
  2. TCG TPM2.0 implementations vulnerable to memory corruption
  3. Traveling with OAuth – Account takeover on Booking.com
  4. Cobalt Strike 4.8: (System) Call me maybe
  5. GoBruteforcer: Golang-based botnet actively harvests web servers
  6. Prometei botnet improves modules and exhibits new capabilities in recent updates
  7. How cybercriminals are abusing OneNote – Part 1, Part 2
  8. OneNote spear-phishing campaign
  9. Malvertising through search engines
  10. New HiatusRAT router malware covertly spies on victims
  11. Suspected Chinese campaign to persist on SonicWall Devices, highlights importance of monitoring edge devices
  12. Emotet sending malicious emails after three-month hiatus
  13. FiXS the new ATM malware in LATAM
  14. Xenomorph v3: a new variant with ATS targeting more than 400 institutions
  15. A border-hopping PlugX USB worm takes its act on the road
  16. A look back at 2022 and insight on what 2023 could hold for healthcare data breaches (PDF)
  17. The state of stalkerware in 2022 (PDF)
  18. Scarleteel: Operation leveraging Terraform, Kubernetes, and AWS for data theft
  19. IceFire ransomware now encrypts both Linux and Windows systems
  20. Old cyber gang uses new crypter – ScrubCrypt
  21. Threat landscape for industrial automation systems. Statistics for H2 2022
  22. Russia-aligned TA499 beleaguers targets with video call requests
  23. DBatLoader and Remcos RAT sweep Eastern Europe
  24. Stealing the LIGHTSHOW (Part One) — North Korea’s UNC2970
  25. Stealing the LIGHTSHOW (Part Two) — LIGHTSHIFT and LIGHTSHOW

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *