IT Security Weekend Catch Up – October 5, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Russia, Iran, China expected to use AI to try to influence US election, report says
  2. Apple quietly deletes nearly a hundred VPNs that allowed Russians to get around censorship
  3. CJEU: Meta must “minimise” use of personal data for ads
  4. Famous AI artist says he’s losing millions of dollars from people stealing his work
  5. Patent troll Sable pays up, dedicates all its patents to the public
  6. Agence France-Presse says cyberattack targeted IT systems
  7. Rackspace internal monitoring web servers hit by zero-day
  8. Two foreign nationals sentenced for multimillion-dollar scheme to defraud Apple Inc. out of 6,000 iPhones
  9. Organizer of hitmen from FSB’s Vympel unit, along with six other Russians, accused of collaborating with hacker group Evil Corp
  10. LockBit power cut: four new arrests and financial sanctions against affiliates

For the more technical

  1. Zimbra – Remote Command Execution (CVE-2024-45519)
  2. Breaking into DrayTek routers before threat actors do it again
  3. CosmicSting attack & defense overview
  4. CVE-2024-38200 – Microsoft Office NTLMv2 disclosure vulnerability
  5. Breaking boundaries: Investigating vulnerable drivers and mitigating risks
  6. Modded cartridge bypasses HP printers’ DRM defenses with man-in-the-middle attack
  7. When CUPS runneth over: The threat of DDoS
  8. How Cloudflare auto-mitigated world record 3.8 Tbps DDoS attack
  9. DCRat targets users with HTML Smuggling
  10. Case of attack targeting MS-SQL servers abusing GotoHTTP
  11. perfctl: A stealthy malware targeting millions of Linux servers
  12. Threat actor believed to be spreading new MedusaLocker variant since 2022
  13. FIN7 hosting honeypot domains with malicious AI DeepNude Generators
  14. SHROUDED#SLEEP: A deep dive into North Korea’s ongoing campaign against Southeast Asia
  15. Stonefly: Extortion attacks continue against U.S. targets
  16. Separating the bee from the panda: CeranaKeeper making a beeline for Thailand

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *