IT Security Weekend Catch Up – September 14, 2024

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Google Search will take you ‘Wayback’ with links to the Internet Archive
  2. Ford seeks patent for tech that listens to driver conversations to serve ads
  3. A practical way to bring more women to cybersecurity
  4. Arrest made in NCA investigation into Transport for London cyber attack
  5. Russian dark web marketplace admins indicted after arrest in Miami
  6. Fortinet admits miscreant got hold of customer data in the cloud
  7. Payment-processing company says data breach potentially affected 1.7 million people
  8. 23andMe to pay $30 million in genetics data breach settlement

For the more technical

  1. Microsoft September 2024 Patch Tuesday
  2. Adobe fixes Acrobat Reader zero-day with public PoC exploit
  3. Critical account takeover vulnerability patched in LiteSpeed Cache plugin
  4. Threat actors exploit GeoServer vulnerability CVE-2024-36401
  5. Watch the typo: Our PoC exploit for typosquatting in GitHub Actions
  6. RAMBO: Leaking secrets from air-gap computers by spelling covert radio signals from cmputer RAM (PDF)
  7. PIXHELL attack: Leaking sensitive information from air-gap computers via ‘singing pixels’ (PDF)
  8. Akira ransomware campaign targeting SonicWall SSLVPN accounts
  9. Atomic macOS Stealer leads sensitive data theft on macOS
  10. A glimpse into the Quad7 operators’ next moves and associated botnets
  11. Hacking misconfigured AWS S3 buckets: A complete guide
  12. Fake recruiter coding tests target devs with malicious Python packages
  13. We spent $20 to achieve RCE and accidentally became the admins of .mobi
  14. Earth Preta evolves its attacks with new malware and strategies
  15. BlindEagle targets Colombian insurance sector with BlotchyQuasar
  16. Loki: a new private agent for the popular Mythic framework
  17. Threat assessment: North Korean threat groups
  18. Tidrone targets military and satellite industries in Taiwan
  19. Chinese APT abuses VSCode to target government in Asia
  20. Crimson Palace returns: New tools, tactics, and targets

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *