IT Security Weekend Catch Up – May 10, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Council claims database pain forced it to drop apostrophes from street names
  2. Google rolls back reCaptcha update to fix Firefox issues
  3. An insulin pump software bug has injured over 200 people
  4. Microsoft launches AI chatbot for spies
  5. Counterfeit Cisco gear ended up in US military bases, used in combat operations
  6. U.S. charges Russian man as boss of LockBit ransomware group
  7. Children’s mental health data published after cyber attack
  8. Dell API abused to steal 49 million customer records in data breach

For the more technical

  1. APT28 campaign targeting Polish government institutions
  2. Detecting browser data theft using Windows Event Logs
  3. TunnelVision (CVE-2024-3661): How attackers can decloak routing-based VPNs for a total VPN leak
  4. Over half of exposed Tinyproxy instances potentially vulnerable to trivial exploit CVE-2023-49606
  5. Big vulnerabilities in next-gen BIG-IP
  6. Exploits and vulnerabilities in Q1 2024
  7. Protecting networks from opportunistic Ivanti Pulse Secure vulnerability exploitation
  8. Stealing your Telegram account in 10 seconds flat
  9. DNS traffic can leak outside the VPN tunnel on Android
  10. Graph: Growing number of threats leveraging Microsoft API
  11. Cuckoo behaves like cross between infostealer and spyware
  12. HijackLoader updates
  13. Financial cyberthreats in 2023
  14. Malicious Google ad redirects to FakeBat, dropping zgRAT
  15. zEus stealer distributed via crafted Minecraft source pack
  16. LNK file disguised as certificate distributing RokRAT malware
  17. Dissecting REMCOS RAT: An in- depth analysis of a widespread 2024 malware, part one, part two, part three
  18. APT trends report Q1 2024
  19. North Korean actors exploit weak DMARC security policies to mask spearphishing efforts
  20. BogusBazaar: A criminal network of webshop fraudsters

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *