IT Security Weekend Catch Up – November 9, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. [VIDEO] Fighting APTs, espionage and cybercriminals
  2. Addicted to love: how dating apps ‘exploit’ their users
  3. Russia fines Google $20 decillion (that’s 20 billion trillion trillion dollars)
  4. Ukraine slams Google for revealing location of military sites
  5. Schneider Electric confirms dev platform breach after hacker steals data
  6. German police arrest two for alleged ties to DDoS-for-hire platform
  7. Canadian man arrested in Snowflake data extortions
  8. INTERPOL cyber operation takes down 22,000 malicious IP addresses

For the more technical

  1. Zero-click flaw exposes potentially millions of popular storage devices to attack
  2. “CrossBarking” — exploiting a 0-day Opera vulnerability with a cross-browser extension store attack
  3. One weird trick to get the whole planet to send abuse complaints to your best friend(s)
  4. Phish ’n’ Ships fakes online shops to steal money and credit card information
  5. Malicious Python package typosquats popular ‘fabric’ SSH library, exfiltrates AWS credentials
  6. Threat campaign spreads Winos4.0 through game application
  7. More models, more probLLMs
  8. LightSpy: Implant for iOS
  9. ClickFix tactic: Revenge of detection
  10. EDR evasion testing reveals extortion actor’s toolkit
  11. SmokeBuster: Keeping systems SmokeLoader free
  12. ToxicPanda: a new banking trojan from Asia hit Europe and LATAM
  13. CopyRh(ight)adamantys campaign: Rhadamantys exploits intellectual property infringement baits
  14. CRON#TRAP: Emulated Linux environments as the latest tactic in malware staging
  15. An introduction to Operational Relay Box (ORB) networks – unpatched, forgotten, and obscured
  16. Malware by the (Bit)Bucket: Unveiling AsyncRAT
  17. Cloudy with a chance of RATs: Unveiling APT36 and the evolution of ElizaRAT
  18. Unmasking the SYS01 infostealer threat
  19. BlueNoroff hidden risk: Threat actor targets Macs with fake crypto news and novel persistence
  20. From Pyongyang to your payroll: The rise of North Korean remote workers in the West

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *