IT Security Weekend Catch Up – May 31, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. European Court of Human Rights: secret surveillance in Poland violates citizens’ privacy rights
  2. Google might have accidentally published docs about how Search works
  3. Multi-day DDoS storm batters Internet Archive
  4. Spyware found on US hotel check-in computers
  5. Ticketmaster hacked, personal data of 560 million customers leaked, ShinyHunters claim
  6. Largest ever operation against botnets hits dropper malware ecosystem
  7. Europol identifies 8 cybercriminals tied to malware loader botnets
  8. How researchers cracked an 11-year-old password to a $3 million crypto wallet
  9. 911 S5 botnet dismantled and its administrator arrested in coordinated international operation
  10. Trump pledges to free Silk Road creator Ross Ulbricht if re-elected

For the more technical

  1. Arbitrary file read in Check Point VPN gateways [CVE-2024-24919]
  2. Arbitrary command execution on TP-Link Archer C5400X
  3. Exploit released for maximum severity Fortinet RCE bug, patch now
  4. CISA warns of actively exploited Linux privilege elevation flaw
  5. [VIDEO] $203,000 bounties for 4 bugs in Azure Health Bot – 2x RCE, path traversal, memory leak
  6. PyPI crypto-stealer targets Windows users, revives malware campaign
  7. Technical analysis of Anatsa campaigns: An Android banking malware active in the Google Play store
  8. LightSpy: Implant for macOS
  9. Silent Push uses IP diversity queries to map out CryptoChameleon fast flux IOFAs. Hundreds of domains, IPs, and ASNs discovered
  10. Newly discovered ransomware uses BitLocker to encrypt victim data
  11. Threat landscape for industrial automation systems, Q1 2024
  12. The Pumpkin Eclipse
  13. By whose authority? Pegasus targeting of Russian & Belarusian-speaking opposition activists and independent media in Europe
  14. GRU’s BlueDelta targets key networks in Europe with multi-phase espionage campaigns
  15. Disrupting FlyingYeti’s campaign targeting Ukraine
  16. IOC extinction? China-nexus cyber espionage actors use ORB networks to raise cost on defenders
  17. Hellhounds: Operation Lahat
  18. LilacSquid: The stealthy trilogy of PurpleInk, InkBox and InkLoader
  19. Moonstone Sleet emerges as new North Korean threat actor with new bag of tricks
  20. Decoding Water Sigbin’s latest obfuscation tricks

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *