IT Security Weekend Catch Up – November 11, 2023

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. TikTok’s ‘For You’ feed risks pushing children and young people towards harmful mental health content
  2. Signal tests usernames that keep your phone number private
  3. Oracle further reduces your attack surface by requiring multifactor authentication at cloud sign-in
  4. Discord will switch to temporary file links to block malware delivery
  5. Court rules automakers can record and intercept owner text messages
  6. Who’s behind the SWAT USA reshipping service?
  7. World’s largest commercial bank ICBC confirms ransomware attack
  8. How SIM swappers straight-up rob T-Mobile stores
  9. Ransomed.vc gang claims to shut down after six affiliates allegedly arrested

For the more technical

  1. QNAP warns of critical command injection flaws in QTS OS, apps
  2. Looney Tunables vulnerability exploited by Kinsing
  3. SysAid on-prem software CVE-2023-47246 vulnerability
  4. Veeam warns of critical bugs in Veeam ONE monitoring platform
  5. TellMeTheTruth: Exploitation of CVE-2023-46604 leading to ransomware
  6. Python obfuscation traps
  7. [VIDEO] What types of DoS bugs will get you a bounty? Case study of 138 DoS bug bounty reports
  8. Weather forecast: Money is going to rain from the cloud
  9. Malvertiser copies PC news site to deliver infostealer
  10. BlueNoroff strikes again with new macOS malware
  11. Cerber ransomware exploits Atlassian Confluence vulnerability CVE-2023-22518
  12. BiBi-Linux: A new wiper dropped by pro-Hamas hacktivist group
  13. Sandworm disrupts power in Ukraine using a novel attack against operational technology
  14. Unlucky Kamran: Android malware spying on Urdu-speaking residents of Gilgit-Baltistan
  15. Bypassing Android 13 restrictions with SecuriDropper
  16. Ducktail fashion week
  17. Jupyter rising: An update on Jupyter infostealer
  18. Unveiling Socks5Systemz: The rise of a new proxy service via PrivateLoader and Amadey
  19. Modern Asian APT groups’ tactics, techniques and procedures
  20. Chinese APT targeting Cambodian government
  21. Imperial Kitten deploys novel malware families in Middle East-focused operations

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *