IT Security Weekend Catch Up – September 26, 2021

Afraid of missing important security news during the week? We’re here to help! Every week we put together a curated list of all important security news in one place, for your reading pleasure. Enjoy!

For the less technical

  1. Winged microchip is smallest-ever human-made flying structure
  2. Hackers release data trove from Belarus in bid to overthrow Lukashenko regime
  3. How data brokers sell access to the backbone of the Internet
  4. Bitcoin.org hackers steal $17,000 in ‘double your cash’ scam
  5. OFAC sanctions Russian cryptocurrency OTC Suex that received over $160 million from ransomware attackers, scammers, and Darknet markets
  6. Illinois man convicted of federal criminal charges for operating subscription-based computer attack platforms
  7. Epik data breach impacts 15 million users, including non-customers
  8. 106 Italian mafia members arrested for SIM swapping, BEC scams, phishing
  9. He escaped the dark web’s biggest bust. Now he’s back
  10. Former NSA hacker describes being recruited for UAE spy program

For the more technical

  1. AMD chipset driver information disclosure vulnerability (PDF)
  2. Proof-on-concept exploit for CVE-2021-38647 (OMIGOD)
  3. iOS 15 iCloud Private Relay vulnerability identified
  4. New macOS zero-day bug lets attackers run commands remotely
  5. Remote Code Execution vulnerability in NETGEAR routers
  6. Autodiscovering the great leak
  7. If you copied any of these popular StackOverflow encryption code snippets, then you coded it wrong
  8. Peirates – a Kubernetes penetration tool
  9. Google: Manifest V2 Chrome extensions to stop working in 2023
  10. Evil Mass Storage + development details
  11. Assessment of cybersecurity of mobile devices supporting 5G technology sold in Lithuania (PDF)
  12. Catching the big fish: Analyzing a large-scale phishing-as-a-service operation
  13. Abusing smart contracts to steal $600 million: How the Poly Network hack actually happened
  14. Data exposure discovered at EventBuilder, the global specialists in webinar conference planning
  15. Conti ransomware (PDF)
  16. Ransomware hackers using tactics and techniques borrowed from Chinese espionage groups
  17. Cring ransomware group exploits ancient ColdFusion server
  18. REvil ransomware devs added a backdoor to cheat affiliates
  19. FBI held back ransomware decryption key from businesses to run operation targeting hackers
  20. FamousSparrow: A suspicious hotel guest
  21. Financially motivated actor breaks certificate parsing to avoid detection
  22. TinyTurla – Turla deploys new malware to keep a secret backdoor on victim machines

Did you enjoy this list? You can subscribe to one of our feeds on Twitter, Facebook or RSS.

Leave a Reply

Your email address will not be published. Required fields are marked *