IT Security Weekend Catch Up – October 7, 2022

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Russians dodging mobilization behind flourishing scam market
  2. Big data trove dumped after LA Unified School District says no to ransomware crooks
  3. Ferrari denies data breach and ransomware attack following gang’s online claims
  4. Man arrested for alleged data breach SMS scam
  5. Two former eBay executives sentenced to prison for cyberstalking
  6. Romance and BEC scammer sentenced to 25 years over $9.5 million fraud
  7. [AUDIO] What can we learn from firefighters?
  8. Mexican journalists targeted by zero-click spyware infections
  9. More details on the transition to Manifest V3

For the more technical

  1. Analyzing attacks using the Exchange vulnerabilities CVE-2022-41040 and CVE-2022-41082
  2. Fake Microsoft Exchange ProxyNotShell exploits for sale on GitHub
  3. Thousands of Hikvision cameras are still vulnerable and can be potentially exploited (PDF)
  4. Fortinet warns admins to patch critical auth bypass bug immediately
  5. Top CVEs actively exploited by people’s Republic of China state-sponsored cyber actors
  6. ESET Threat Report T2 2022 (PDF)
  7. A look at the 2020–2022 ATM/PoS malware landscape
  8. Uncommon infection and malware propagation methods
  9. Some notes on VIRTUALGATE
  10. Securing developer tools: A new supply chain attack on PHP
  11. CrowdStrike Falcon platform identifies supply chain attack via a trojanized Comm100 Chat installer
  12. Worldwide server-side cache poisoning on all Akamai edge nodes ($50K+ bounty earned)
  13. Impacket and exfiltration tool used to steal sensitive information from defense industrial base organization
  14. MSSQL, meet Maggie
  15. Fargo (Mallox) ransomware being distributed to unsecured MS-SQL servers
  16. Exmatter: Clues to the future of data extortion
  17. Avast releases free decryptor for MafiaWare666 ransomware variants
  18. Analysis of LilithBot malware and Eternity threat group
  19. Remove all the callbacks – BlackByte ransomware disables EDR via RTCore64.sys abuse
  20. Revealing Emperor Dragonfly: Night sky and Cheerscrypt – a single ransomware group
  21. Phishing campaigns targeting KFC and McDonald’s
  22. Exposing a polyglot file that delivers IcedID
  23. OnionPoison: infected Tor Browser installer distributed through popular YouTube channel
  24. Water Labbu abuses malicious dApps to steal cryptocurrency
  25. We smell a RatMilad Android spyware
  26. DeftTorero: tactics, techniques and procedures of intrusions revealed
  27. Seychelles, Seychelles, on the C(2) Shore

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *