IT Security Weekend Catch Up – October 29, 2022

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Hive claims ransomware attack on Tata Power, begins leaking data
  2. Iran’s atomic energy agency confirms hack after stolen data leaked online
  3. Hacker and Dark Market operator arraigned on federal charges
  4. Elon Musk closes Twitter deal, immediately fires top executives
  5. Chrome won’t support Windows 7 or Windows 8.1 in 2023

For the more technical

  1. Stranger Strings: An exploitable flaw in SQLite
  2. Critical OpenSSL fix due Nov 1—what you need to know
  3. Upcoming critical OpenSSL vulnerability: What will be affected?
  4. Google fixes seventh Chrome zero-day exploited in attacks this year
  5. How an attacker can achieve persistence in Google Cloud Platform (GCP) with cloud shell
  6. A bug in Apple MacOS Ventura breaks third-party security tools
  7. Hope of delivery: Extracting user locations from mobile instant messengers (PDF)
  8. Ring0VBA – Getting Ring0 using a goddamn Word document
  9. How security professionals are being attacked: A study of malicious CVE proof of concept exploits in GitHub (PDF)
  10. Sysdig TRT uncovers massive cryptomining operation leveraging GitHub Actions
  11. Hackers use Microsoft IIS web server logs to control malware
  12. Mirai, RAR1Ransom, and GuardMiner – multiple malware campaigns target VMware vulnerability
  13. Fodcha DDoS botnet reaches 1Tbps in power, injects ransoms in packets
  14. “Dormant Colors”: Live campaign with over 1M data stealing extensions installed
  15. From Gozi to ISFB: The history of a mythical malware family
  16. ERMAC Android malware increasingly active
  17. Where is the origin?: Qakbot uses valid code signing
  18. Archive sidestepping: Self-unlocking password-protected RAR
  19. Raspberry Robin worm part of larger ecosystem facilitating pre-ransomware activity
  20. Exbyte: BlackByte ransomware attackers deploy new exfiltration tool
  21. DEV-0832 (Vice Society) opportunistic ransomware campaigns impacting US education sector
  22. Pro-PRC DragonBridge influence campaign leverages new TTPs to aggressively target U.S. interests, including midterm elections
  23. APT27 – One year to exfiltrate them all: Intrusion in-depth analysis
  24. Gremlins’ prey, secrets, and dirty tricks: the ransomware gang OldGremlin set new records
  25. Unattributed RomCom threat actor spoofing popular apps now hits Ukrainian militaries
  26. WarHawk: the new backdoor in the arsenal of the SideWinder APT group

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *