Top Security News for 22/06/2023

Using Threat Intelligence to Counter Ransomware
https://malware.news/t/using-threat-intelligence-to-counter-ransomware/70718#post_1

Targeting Core OPC UA Components
https://www.reddit.com/r/netsec/comments/14f7822/targeting_core_opc_ua_components/

Risky chat applications.
https://thecyberwire.com/podcasts/hacking-humans/248/notes

BrandPost: Reducing Cyber Risks by Upskilling Your Security Talent
https://www.csoonline.com/article/3700648/reducing-cyber-risks-by-upskilling-your-security-talent.html#tk.rss_all

Apple patches exploited zero-days
https://malware.news/t/apple-patches-exploited-zero-days/70719#post_1

Android Malware on the Rise – A case study of AhMyth RAT
https://www.reddit.com/r/netsec/comments/14f8ix2/android_malware_on_the_rise_a_case_study_of/

GitHub Dataset Reveals Millions Potentially Vulnerable to RepoJacking
https://www.reddit.com/r/netsec/comments/14famln/github_dataset_reveals_millions_potentially/

extsyncrequest.com unknown
https://www.reddit.com/r/Malware/comments/14fh6ig/extsyncrequestcom_unknown/

ScarCruft Hackers Exploit Ably Service for Stealthy Wiretapping Attacks
https://thehackernews.com/2023/06/scarcruft-hackers-exploit-ably-service.html

Alert! Hackers Exploiting Critical Vulnerability in VMware's Aria Operations Networks
https://thehackernews.com/2023/06/alert-hackers-exploiting-critical.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 23/06/2023

Secfault Security - LibreOffice Arbitrary File Write (CVE-2023-1883)
https://www.reddit.com/r/netsec/comments/14fwsfz/secfault_security_libreoffice_arbitrary_file/

Apple Patches Exploited Vulnerabilities in iOS/iPadOS, macOS, watchOS and Safari, (Thu, Jun 22nd)
https://isc.sans.edu/diary/rss/29972

UPS warns customers of phishing attempts after data accessed
https://www.malwarebytes.com/blog/news/2023/06/ups-warns-customers-of-phishing-attempts-after-data-accessed

Hybrid Microsoft network/cloud legacy settings may impact your future security posture
https://www.csoonline.com/article/3700529/hybrid-microsoft-network-cloud-legacy-settings-may-impact-your-future-security-posture.html#tk.rss_all

Word Document with an Online Attached Template, (Fri, Jun 23rd)
https://isc.sans.edu/diary/rss/29976

Callisto - Automated Binary Vulnerability Discovery Tool
https://www.reddit.com/r/netsec/comments/14fvrzh/callisto_automated_binary_vulnerability_discovery/

Reducing your attack surface is more effective than playing patch-a-mole
https://www.malwarebytes.com/blog/news/2023/06/reducing-your-attack-surface-is-more-effective-than-playing-patch-a-mole

6 tips for a cybersecure honeymoon
https://www.malwarebytes.com/blog/personal/2023/06/6-tips-for-a-cybersecure-honeymoon

Need Help Identifying this Malware
https://www.reddit.com/r/Malware/comments/14em9zf/need_help_identifying_this_malware/

Malwarebytes only vendor to win every MRG Effitas award in 2022 & 2023
https://www.malwarebytes.com/blog/business/2023/06/malwarebytes-only-vendor-to-win-every-mrg-effitas-certification-award-in-2022


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 24/06/2023

US, India subjected to phishing attacks with RATs
https://malware.news/t/us-india-subjected-to-phishing-attacks-with-rats/70807#post_1

Fortinet fixes critical RCE flaw in FortiNAC zero-trust product
https://malware.news/t/fortinet-fixes-critical-rce-flaw-in-fortinac-zero-trust-product/70806#post_1

Emergency review of Japan's My Number cards. CalPERS and CalSTRS hit by third-party MOVEit breach. Extortionists threaten to expose plastic surgery photos.
https://thecyberwire.com/newsletters/privacy-briefing/5/120

JavaScript Dropper Delivers Bumblebee And IcedID Malware
https://packetstormsecurity.com/news/view/34748/JavaScript-Dropper-Delivers-Bumblebee-And-IcedID-Malware.html

A brief summary about a SSTI to RCE in Bagisto
https://www.reddit.com/r/netsec/comments/14gvrkp/a_brief_summary_about_a_ssti_to_rce_in_bagisto/

VMware fixed five memory corruption issues in vCenter Server
https://securityaffairs.com/147774/hacking/vmware-vcenter-server-memory-corruption-bugs.html

New Cryptocurrency Mining Campaign Targets Linux Systems and IoT Devices
https://thehackernews.com/2023/06/new-cryptocurrency-mining-campaign.html

The Week that Was: 6.24.23
https://thecyberwire.com/newsletters/week-that-was/7/24

Powerful JavaScript Dropper PindOS Distributes Bumblebee and IcedID Malware
https://thehackernews.com/2023/06/powerful-javascript-dropper-pindos.html

Karen Worstell from VMware discusses technical debt.
https://thecyberwire.com/podcasts/interview-selects/164/notes


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 25/06/2023

Someone is sending mysterious smartwatches to the US Military personnel
https://securityaffairs.com/147788/intelligence/unsolicited-smartwatches-us-army.html

Email Spam with Attachment Modiloader, (Sat, Jun 24th)
https://malware.news/t/email-spam-with-attachment-modiloader-sat-jun-24th/70813#post_1

DFIR Core Principles
https://malware.news/t/dfir-core-principles/70812#post_1

Ukraine at D+485: “We are dying for the Russian people.”
https://thecyberwire.com/stories/bf07fd1eec87497a88e1a7704c42bce6/ukraine-at-d487

Slavik Markovich: Time is of the essence. [CEO]
https://thecyberwire.com/podcasts/career-notes/155/notes

Twitter Hacker Sentenced to 5 Years in Prison for $120,000 Crypto Scam
https://thehackernews.com/2023/06/twitter-hacker-sentenced-to-5-years-in.html

Google pledges $20M for cyber clinic expansion
https://malware.news/t/google-pledges-20m-for-cyber-clinic-expansion/70810#post_1

NYC DOE Hacked.
https://www.reddit.com/r/Malware/comments/14i6eab/nyc_doe_hacked/

Email Spam with Attachment Modiloader, (Sat, Jun 24th)
https://isc.sans.edu/diary/rss/29978

U.S. Cybersecurity Agency Adds 6 Flaws to Known Exploited Vulnerabilities Catalog
https://thehackernews.com/2023/06/us-cybersecurity-agency-adds-6-flaws-to.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 26/06/2023

Cybersecurity Is a Social, Policy, and Wicked Problem
https://taosecurity.blogspot.com/2023/06/cybersecurity-is-social-policy-and.html

Security Affairs newsletter Round 425 by Pierluigi Paganini – International edition
https://securityaffairs.com/147797/breaking-news/security-affairs-newsletter-round-425-by-pierluigi-paganini-international-edition.html

Ukraine at D+486: The march on Moscow is over.
https://thecyberwire.com/stories/8de9e9d7525146818e428fcc90c3f1fe/ukraine-at-d486

BSides Athens 2023 Wrap-Up
https://blog.rootshell.be/2023/06/25/bsides-athens-2023-wrap-up/

Bejtlich Skills and Interest Radar from July 2005
https://taosecurity.blogspot.com/2023/06/bejtlich-skills-and-interest-radar-from.html

Five ways to get the board to think more seriously about OT security
https://malware.news/t/five-ways-to-get-the-board-to-think-more-seriously-about-ot-security/70817#post_1

ISC StormCast for Monday, June 26th, 2023
https://isc.sans.edu/podcastdetail/8550

My Last Email with W. Richard Stevens
https://taosecurity.blogspot.com/2023/06/my-last-email-with-w-richard-stevens.html

HWL Ebsworth hack: sensitive information from dozens of government agencies may be compromised
https://www.theguardian.com/australia-news/2023/jun/26/hwl-ebsworth-hack-sensitive-information-from-dozens-of-government-agencies-may-be-compromised

Core Writing Word and Page Counts
https://taosecurity.blogspot.com/2023/06/core-writing-word-and-page-counts.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 27/06/2023

How CISOs can balance the risks and benefits of AI
https://www.csoonline.com/article/3700152/the-challenge-of-balancing-risks-and-benefits-of-ai-for-cisos.html#tk.rss_all

OpenSSH trojan campaign targets Linux systems and IoT devices
https://www.malwarebytes.com/blog/news/2023/06/openssh-trojan-campaign-targets-linux-systems-and-iot-devices

All About PowerShell Attacks: The No. 1 ATT&CK Technique
https://securityintelligence.com/articles/all-about-powershell-attacks/

2023-06-23 - 30 days of Formbook: Day 19, Friday 2023-06-23 - "P1A4"
https://malware.news/t/2023-06-23-30-days-of-formbook-day-19-friday-2023-06-23-p1a4/70854#post_1

The Importance of Malware Triage, (Tue, Jun 27th)
https://malware.news/t/the-importance-of-malware-triage-tue-jun-27th/70857#post_1

How cybercrime is impacting SMBs in 2023
https://securelist.com/smb-threat-report-2023/110097/

How Generative AI Can Dupe SaaS Authentication Protocols — And Effective Ways To Prevent Other Key AI Risks in SaaS
https://thehackernews.com/2023/06/how-generative-ai-can-dupe-saas.html

9 basic security tips for seniors
https://www.malwarebytes.com/blog/news/2023/06/9-basic-security-tips-for-seniors

The Importance of Malware Triage, (Tue, Jun 27th)
https://isc.sans.edu/diary/rss/29984

BrandPost: What is the key to optimized DevSecOps?
https://www.csoonline.com/article/3700611/what-is-the-key-to-optimized-devsecops.html#tk.rss_all


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 28/06/2023

Mockingjay process injection technique allows EDR bypass
https://securityaffairs.com/147887/hacking/mockingjay-process-injection-technique.html

Why endpoint management is key to securing an AI-powered future
https://www.microsoft.com/en-us/security/blog/2023/06/26/why-endpoint-management-is-key-to-securing-an-ai-powered-future/

New Mockingjay Process Injection Technique Could Let Malware Evade Detection
https://thehackernews.com/2023/06/new-mockingjay-process-injection.html

Time and Expectations
https://dale-peterson.com/2023/06/27/time-and-expectations/?utm_source=rss&utm_medium=rss&utm_campaign=time-and-expectations

Securing the Store of the Future & Intel Briefing
https://thecyberwire.com/podcasts/rh-isac/30/notes

ISC StormCast for Wednesday, June 28th, 2023
https://isc.sans.edu/podcastdetail/8554

Survey reveals mass concern over generative AI security risks
https://www.csoonline.com/article/3700613/survey-reveals-mass-concern-over-generative-ai-security-risks.html#tk.rss_all

Siemens Energy, UCLA Latest Confirmed Victims In MOVEit Hack
https://packetstormsecurity.com/news/view/34756/Siemens-Energy-UCLA-Latest-Confirmed-Victims-In-MOVEit-Hack.html

SupremeBot and Mario cross the finish line together
https://www.malwarebytes.com/blog/news/2023/06/supremebot-and-mario-cross-the-finish-line-together

Prominent Cryptocurrency Exchange Infected With Previously Unseen Mac Malware
https://packetstormsecurity.com/news/view/34757/Prominent-Cryptocurrency-Exchange-Infected-With-Previously-Unseen-Mac-Malware.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 29/06/2023

Andariel’s silly mistakes and a new malware family
https://securelist.com/lazarus-andariel-mistakes-and-easyrat/110119/

The spy becomes the spied-upon. Genworth Financial suffers third-party data breach. Siemens and UCLA become latest victims of MOVEit bug.
https://thecyberwire.com/podcasts/privacy-briefing/858/notes

8Base Ransomware Spikes in Activity, Threatens U.S. and Brazilian Businesses
https://thehackernews.com/2023/06/8base-ransomware-spikes-in-activity.html

Critical cyber threats persist on federal networks despite recent directives
https://malware.news/t/critical-cyber-threats-persist-on-federal-networks-despite-recent-directives/70936#post_1

Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution
https://thehackernews.com/2023/06/critical-sql-injection-flaws-expose.html

A Software Bill of Materials Helps Secure Your Supply Chain
https://securityintelligence.com/posts/a-software-bill-of-materials-helps-secure-your-supply-chain/

Alert: New Electromagnetic Attacks on Drones Could Let Attackers Take Control
https://thehackernews.com/2023/06/alert-new-electromagnetic-attacks-on.html

Log-in lookout: Verosint CTO details how adaptive identity proofing curbs account fraud
https://malware.news/t/log-in-lookout-verosint-cto-details-how-adaptive-identity-proofing-curbs-account-fraud/70935#post_1

Andariel’s silly mistakes and a new malware family
https://securelist.com/lazarus-andariel-mistakes-and-easyrat/110119/

High-severity Chrome vulnerabilities addressed
https://malware.news/t/high-severity-chrome-vulnerabilities-addressed/70932#post_1


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 30/06/2023

Log Centralization: The End Is Nigh?
https://medium.com/anton-on-security/log-centralization-the-end-is-nigh-b28efaa98379?source=rss----8e8c3ed26c4c---4

Top contenders in Endpoint Security revealed: G2 Summer 2023 results
https://www.malwarebytes.com/blog/business/2023/06/top-contenders-in-endpoint-security-revealed-g2-summer-2023-results

Malware Execution Method Using DNS TXT Record
https://malware.news/t/malware-execution-method-using-dns-txt-record/70981#post_1

2023-06-29 - 30 days of Formbook: Day 25, Thursday 2023-06-29 - "CS94"
https://malware.news/t/2023-06-29-30-days-of-formbook-day-25-thursday-2023-06-29-cs94/70978#post_1

Hacking Auto-GPT and escaping its docker container
https://www.reddit.com/r/netsec/comments/14m6uv9/hacking_autogpt_and_escaping_its_docker_container/

Webcrawlers copying my site
https://0x00sec.org/t/webcrawlers-copying-my-site/35803

New developments in the ransomware threat. Lazarus needs some AI? Charming Kitten spearphishes. Updates from the hybrid war.
https://thecyberwire.com/newsletters/daily-briefing/12/124

ISC Stormcast For Friday, June 30th, 2023 https://isc.sans.edu/podcastdetail/8558, (Fri, Jun 30th)
https://isc.sans.edu/diary/rss/29996

NoMoreCookies: Protection against stealers/rats
https://www.reddit.com/r/netsec/comments/14mmkok/nomorecookies_protection_against_stealersrats/

Discover the Power of OSINT: 350+ Integrated Tools for Passive Online Investigation and Analysis
https://www.reddit.com/r/netsec/comments/14lwi38/discover_the_power_of_osint_350_integrated_tools/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 01/07/2023

The Week that Was: Vulcan’s Q2 2023 Vulnerability Watch report details notable issues. Russia's hybrid war against Ukraine: lessons learned.
https://thecyberwire.com/newsletters/week-that-was/7/25

Manoj Sharma of Symantec to discuss trends he's hearing about generative AI.
https://thecyberwire.com/podcasts/interview-selects/165/notes

OpenAI faces lawsuit for scraping of internet data. Study shows 25% of kids apps violate COPPA. UoM attack reportedly exposed over one million NHS patients.
https://thecyberwire.com/newsletters/privacy-briefing/5/125

Reversing Citrix Gateway for XSS
https://www.reddit.com/r/netsec/comments/14n28jb/reversing_citrix_gateway_for_xss/

Sandfly Security, (Sat, Jul 1st)
https://malware.news/t/sandfly-security-sat-jul-1st/71013#post_1

Beware: New 'Rustbucket' Malware Variant Targeting macOS Users
https://thehackernews.com/2023/07/beware-new-rustbucket-malware-variant.html

3 Reasons SaaS Security is the Imperative First Step to Ensuring Secure AI Usage
https://thehackernews.com/2023/06/3-reasons-saas-security-is-imperative.html

Sandfly Security, (Sat, Jul 1st)
https://isc.sans.edu/diary/rss/29998

"Free" Evil Dead Rise movie scam lurks in Amazon listings
https://www.malwarebytes.com/blog/news/2023/06/free-evil-dead-rise-movie-scam-lurks-in-amazon-listings

Most fucked up redirect
https://www.reddit.com/r/Malware/comments/14ng7df/most_fucked_up_redirect/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 03/07/2023

The Fifth Domain - Richard Clarke - BSW Vault
https://malware.news/t/the-fifth-domain-richard-clarke-bsw-vault/71027#post_1

HHS compromised in massive MOVEit hack
https://malware.news/t/hhs-compromised-in-massive-moveit-hack/71025#post_1

New ThirdEye infostealer, SeroXen RAT examined
https://malware.news/t/new-thirdeye-infostealer-seroxen-rat-examined/71021#post_1

Seven ways to prepare for double extortion ransomware
https://malware.news/t/seven-ways-to-prepare-for-double-extortion-ransomware/71026#post_1

DEFC: simple enumeration tool for detect AV/EDR
https://malware.news/t/defc-simple-enumeration-tool-for-detect-av-edr/71028#post_1

Security Affairs newsletter Round 426 by Pierluigi Paganini – International edition
https://securityaffairs.com/148038/breaking-news/security-affairs-newsletter-round-426-by-pierluigi-paganini-international-edition.html

WordPress plugin vulnerability puts user accounts at risk
https://malware.news/t/wordpress-plugin-vulnerability-puts-user-accounts-at-risk/71019#post_1

New C2 framework leveraged by MuddyWater
https://malware.news/t/new-c2-framework-leveraged-by-muddywater/71024#post_1

BlackCat Operators Distributing Ransomware Disguised as WinSCP via Malvertising
https://thehackernews.com/2023/07/blackcat-operators-distributing.html

Fully Undetected shellcode loader featuring EDR killer PoC
https://www.reddit.com/r/netsec/comments/14olph5/fully_undetected_shellcode_loader_featuring_edr/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 04/07/2023

Evasive Meduza Stealer Targets 19 Password Managers and 76 Crypto Wallets
https://thehackernews.com/2023/07/evasive-meduza-stealer-targets-19.html

A week in security (June 26 - July 2)
https://www.malwarebytes.com/blog/news/2023/07/a-week-in-security-june-26-july-2

SmugX: Chinese APT uses HTML smuggling to target European Ministries and embassies
https://securityaffairs.com/148091/apt/china-linked-apt-html-smuggling-europe.html

Chinese Hackers Use HTML Smuggling to Infiltrate European Ministries with PlugX
https://thehackernews.com/2023/07/chinese-hackers-use-html-smuggling-to.html

Brave browser will prevent websites from port scanning visitors
https://www.malwarebytes.com/blog/news/2023/07/brave-browser-will-prevent-websites-from-port-scanning-visitors

2023-07-01 - 30 days of Formbook: Day 27, Saturday 2023-07-01 - "NES8"
https://malware.news/t/2023-07-01-30-days-of-formbook-day-27-saturday-2023-07-01-nes8/71051#post_1

Hiring a Reverse Engineer
https://0x00sec.org/t/hiring-a-reverse-engineer/35864

A week in security (June 26 - July 2)
https://malware.news/t/a-week-in-security-june-26-july-2/71047#post_1

Live: Życie po Google, czyli co dalej
https://gynvael.coldwind.pl/?id=769

Of sharks, surveillance, and spied-on emails: This is Section 702, with Matthew Guariglia
https://www.malwarebytes.com/blog/podcast/2023/07/of-sharks-surveillance-and-spied-on-emails


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 05/07/2023

TeamsPhisher: Send phishing messages and attachments to Microsoft Teams users
https://www.reddit.com/r/netsec/comments/14pzz86/teamsphisher_send_phishing_messages_and/

MOVEit attack on Aon exposed data of the staff at the Dublin Airport
https://securityaffairs.com/148152/data-breach/dublin-airport-data-breach.html

Mexico-Based Hacker Targets Global Banks with Android Malware
https://thehackernews.com/2023/07/mexico-based-hacker-targets-global.html

Fake reviewers face big fines
https://www.malwarebytes.com/blog/news/2023/07/fake-reviewers-face-big-fines

How to Achieve AWS Operational Excellence in Your Cloud Workload
https://malware.news/t/how-to-achieve-aws-operational-excellence-in-your-cloud-workload/71057#post_1

Fake reviewers face big fines
https://malware.news/t/fake-reviewers-face-big-fines/71063#post_1

Dell security advisory (AV23-374)
https://malware.news/t/dell-security-advisory-av23-374/71058#post_1

Elderly targeted in car accident scam, kingpin arrested
https://www.malwarebytes.com/blog/news/2023/07/elderly-targeted-in-car-accident-scam-kingpin-arrested

Find GraphQL API vulnerabilities, with Burp Suite Professional
https://portswigger.net/blog/find-graphql-api-vulnerabilities-with-burp-suite-professional

DDoSia Attack Tool Evolves with Encryption, Targeting Multiple Sectors
https://thehackernews.com/2023/07/ddosia-attack-tool-evolves-with.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 06/07/2023

ISC Stormcast For Thursday, July 6th, 2023 https://isc.sans.edu/podcastdetail/8560, (Thu, Jul 6th)
https://isc.sans.edu/diary/rss/30004

Four Must-haves to Strengthen Your Endpoint Security
https://malware.news/t/four-must-haves-to-strengthen-your-endpoint-security/71106#post_1

NEW 'Off The Hook' ONLINE
https://www.2600.com/hook/05-07-2023

Chinese cyberespionage described. SEO poisoning. Html smuggling. DDoS alert in the US. Hacktivist auxiliary in Russia's hybrid war.
https://thecyberwire.com/newsletters/daily-briefing/12/126

Actively Exploited ICS Hardware: SolarView Series
https://www.reddit.com/r/netsec/comments/14r5ki9/actively_exploited_ics_hardware_solarview_series/

Microsoft refutes Anonymous Sudan's massive data breach claims
https://malware.news/t/microsoft-refutes-anonymous-sudans-massive-data-breach-claims/71102#post_1

RedEnergy Stealer-as-a-Ransomware Threat Targeting Energy and Telecom Sectors
https://thehackernews.com/2023/07/redenergy-stealer-as-ransomware-threat.html

Extending Burp Suite for fun and profit - The Montoya way - Part 1
https://www.reddit.com/r/netsec/comments/14r66m2/extending_burp_suite_for_fun_and_profit_the/

StackRot (CVE-2023-3269): Linux kernel privilege escalation vulnerability
https://www.reddit.com/r/netsec/comments/14rcfi0/stackrot_cve20233269_linux_kernel_privilege/

0day RCE in open source browsergame
https://0x00sec.org/t/0day-rce-in-open-source-browsergame/35895


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 07/07/2023

Researchers Uncover New Linux Kernel 'StackRot' Privilege Escalation Vulnerability
https://thehackernews.com/2023/07/researchers-uncover-new-linux-kernel.html

Two Stories for "What is CHERI?"
https://www.reddit.com/r/netsec/comments/14s3ibm/two_stories_for_what_is_cheri/

Methods of countering disinformation. False personae with traction. Disinformation in Russia's hybrid war.
https://thecyberwire.com/newsletters/disinformation-briefing/5/27

Iranian Hackers' Sophisticated Malware Targets Windows and macOS Users
https://thehackernews.com/2023/07/iranian-hackers-sophisticated-malware.html

Threads' Instagram 'Trap' Shows Why Facebook Should Have Been Broken Up Years Ago
https://www.vice.com/en_us/article/bvjvb5/threads-instagram-trap-shows-why-facebook-should-have-been-broken-up-years-ago

Windows Installer arbitrary content manipulation Elevation of Privilege (CVE-2020-0911)
https://www.reddit.com/r/netsec/comments/14saj80/windows_installer_arbitrary_content_manipulation/

Silentbob Campaign: Cloud-Native Environments Under Attack
https://thehackernews.com/2023/07/silentbob-campaign-cloud-native.html

Backdooring NPM Modules via Hijacking S3 Buckets
https://www.reddit.com/r/netsec/comments/14rxqlr/backdooring_npm_modules_via_hijacking_s3_buckets/

Surviving the 800 Gbps Storm: Gain Insights from Gcore's 2023 DDoS Attack Statistics
https://thehackernews.com/2023/07/surviving-800-gbps-storm-gain-insights.html

Beware of the Growing Scourge of Job Recruitment Scams
https://securityintelligence.com/articles/beware-the-growing-scourge-of-job-recruitment-scams/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 08/07/2023

2023-07-04 - 30 days of Formbook: Day309, Tuesday 2023-07-04 - Formbook "MF6W"
https://malware.news/t/2023-07-04-30-days-of-formbook-day309-tuesday-2023-07-04-formbook-mf6w/71183#post_1

A man has been charged with a cyber attack on the Discovery Bay water treatment facility
https://securityaffairs.com/148258/cyber-crime/discovery-bay-water-treatment-facility-attck.html

Cybersecurity Agencies Sound Alarm on Rising TrueBot Malware Attacks
https://thehackernews.com/2023/07/cybersecurity-agencies-sound-alarm-on.html

More than ChatGPT: Privacy and Confidentiality in the Age of LLMs
https://modernciso.com/2023/06/01/more-than-chatgpt-privacy-and-confidentiality-in-the-age-of-llms/

Close Security Gaps with Continuous Threat Exposure Management
https://thehackernews.com/2023/07/close-security-gaps-with-continuous.html

Mike Hamilton, former CISO from Seattle and CISO of cybersecurity firm, Critical Insight, discusses what you need to know about NIST 2.0.
https://thecyberwire.com/podcasts/interview-selects/166/notes

BlackByte 2.0 Ransomware: Infiltrate, Encrypt, and Extort in Just 5 Days
https://thehackernews.com/2023/07/blackbyte-20-ransomware-infiltrate.html

Joint advisory warns of Truebot. Operation Brainleaches in the supply chain. API key reset at Jumpcloud. More MOVEit vulnerability exploitation.
https://thecyberwire.com/podcasts/daily-podcast/1858/notes

Google Releases Android Patch Update for 3 Actively Exploited Vulnerabilities
https://thehackernews.com/2023/07/google-releases-android-patch-update.html

The Week that Was: LockBit 3.0 claims responsibility for Nagoya ransomware attack. BlackCat and SEO poisoning.
https://thecyberwire.com/newsletters/week-that-was/7/26


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 09/07/2023

Iran-linked APT TA453 targets Windows and macOS systems
https://securityaffairs.com/148275/apt/ta453-malware-windows-macos.html

Which router malware is capable of getting into wifi connected Android phones using vulnurability
https://www.reddit.com/r/Malware/comments/14ucvml/which_router_malware_is_capable_of_getting_into/

Eric Tillman: A creative way into cyber. [Intelligence]
https://thecyberwire.com/podcasts/career-notes/157/notes

Hiding In The Windows Event Log
https://malware.news/t/hiding-in-the-windows-event-log/71187#post_1

Google addressed 3 actively exploited flaws in Android
https://securityaffairs.com/148286/mobile-2/android-actively-exploited-flaws-fixed.html

Over $50M in cyber, CX investments awarded to federal agencies
https://malware.news/t/over-50m-in-cyber-cx-investments-awarded-to-federal-agencies/71185#post_1

Pentest Mapper Burp Suite extension 1.7 is released.
https://www.reddit.com/r/netsec/comments/14u5yhq/pentest_mapper_burp_suite_extension_17_is_released/

Security Affairs newsletter Round 427 by Pierluigi Paganini – International edition
https://securityaffairs.com/148291/breaking-news/security-affairs-newsletter-round-427-by-pierluigi-paganini-international-edition.html

Novel Linux kernel vulnerability exploitable for elevated privileges
https://malware.news/t/novel-linux-kernel-vulnerability-exploitable-for-elevated-privileges/71186#post_1

EasyScan: A Lightweight Web Vulnerability Scanner to Secure Your Website
https://www.reddit.com/r/netsec/comments/14ufxia/easyscan_a_lightweight_web_vulnerability_scanner/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 10/07/2023

ISC StormCast for Monday, July 10th, 2023
https://isc.sans.edu/podcastdetail/8564

Dig Security bolsters data security solution with optical character recognition
https://malware.news/t/dig-security-bolsters-data-security-solution-with-optical-character-recognition/71188#post_1

Overflows Exploitation
https://0x00sec.org/t/overflows-exploitation/35958

EdgeRouters's & AirCube's vulnerability allows LAN attackers to cause the service to overflow an internal heap and potentially execute arbitrary code
https://www.reddit.com/r/netsec/comments/14uszq0/edgerouterss_aircubes_vulnerability_allows_lan/

Widespread MOVEit hack impacts more organizations
https://malware.news/t/widespread-moveit-hack-impacts-more-organizations/71189#post_1

Sophisticated iOS malware, likely state backed.
https://www.reddit.com/r/Malware/comments/14vj1xq/sophisticated_ios_malware_likely_state_backed/

Why CISOs need enhanced legal protections in the age of breach lawsuits
https://malware.news/t/why-cisos-need-enhanced-legal-protections-in-the-age-of-breach-lawsuits/71191#post_1

ISC Stormcast For Monday, July 10th, 2023 https://isc.sans.edu/podcastdetail/8564, (Mon, Jul 10th)
https://malware.news/t/isc-stormcast-for-monday-july-10th-2023-https-isc-sans-edu-podcastdetail-8564-mon-jul-10th/71190#post_1

ISC Stormcast For Monday, July 10th, 2023 https://isc.sans.edu/podcastdetail/8564, (Mon, Jul 10th)
https://isc.sans.edu/diary/rss/30010

+Protecting Linux at Kernel Level Why and How
https://www.reddit.com/r/netsec/comments/14vil1d/protecting_linux_at_kernel_level_why_and_how/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 11/07/2023

New Mozilla Feature Blocks Risky Add-Ons on Specific Websites to Safeguard User Security
https://thehackernews.com/2023/07/new-mozilla-feature-blocks-risky-add.html

Analysis of the Rekoobe Backdoor Being Used In Attacks Against Linux Systems in Korea
https://malware.news/t/analysis-of-the-rekoobe-backdoor-being-used-in-attacks-against-linux-systems-in-korea/71225#post_1

ISC StormCast for Tuesday, July 11th, 2023
https://isc.sans.edu/podcastdetail/8566

A week in security (July 3 - 9)
https://www.malwarebytes.com/blog/news/2023/07/a-week-in-security-july-3-9

Windows kernel driver signing - any way to only allow my drivers?
https://www.reddit.com/r/lowlevel/comments/14w2pdq/windows_kernel_driver_signing_any_way_to_only/

RomCom RAT Targeting NATO and Ukraine Support Groups
https://thehackernews.com/2023/07/romcom-rat-targeting-nato-and-ukraine.html

New German cybersecurity chief addresses reporters on policy. CIA head speaks on the future of US intelligence.
https://thecyberwire.com/newsletters/policy-briefing/5/129

Privacy Briefing for 07.10.23
https://thecyberwire.com/newsletters/privacy-briefing/5129/129

Cybercriminals Evolve Antidetect Tooling for Mobile OS-Based Fraud
https://securityaffairs.com/148341/cyber-crime/antidetect-tooling-mobile-fraud.html

New phishing campaigns. Big Head ransomware. Multichain bridge compromised. CISA adds a KEV. Progress Software issues MOVEit patches. Telegram's role in Russia's war.
https://thecyberwire.com/newsletters/daily-briefing/12/129


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 12/07/2023

"TootRoot" Mastodon vulnerabilities fixed: Admins, patch now!
https://www.malwarebytes.com/blog/news/2023/07/tootroot-mastodon-vulnerabilities-fixed-admins-patch-now

Cl0p's use of MOVEit exploits. RedDelta focuses on Eastern Europe. TOITOIN Trojan targets Latin America. Big Head ransomware.
https://thecyberwire.com/newsletters/research-briefing/5/28

Collective defense in cyberspace. Notes on gangs, privateers, and hacktivist auxiliaries. Amazon Prime Day is now a commercial holiday (like Black Friday): crooks have noticed–stay safe.
https://thecyberwire.com/podcasts/daily-podcast/1860/notes

Loader activity for Formbook "QM18", (Wed, Jul 12th)
https://malware.news/t/loader-activity-for-formbook-qm18-wed-jul-12th/71284#post_1

Are we doomed to make the same security mistakes with AI?
https://securityintelligence.com/articles/are-we-doomed-to-make-the-same-security-mistakes-with-ai/

Scarleteel operation ups their cloud game with new targets and tools
https://www.reddit.com/r/netsec/comments/14wqud1/scarleteel_operation_ups_their_cloud_game_with/

SCARLETEEL Cryptojacking Campaign Exploiting AWS Fargate in Ongoing Campaign
https://thehackernews.com/2023/07/scarleteel-cryptojacking-campaign.html

Apple issued Rapid Security Response updates to fix a zero-day but pulled them due to a Safari bug
https://securityaffairs.com/148360/security/apple-issued-rapid-security-response.html

Security Alert: Microsoft Releases July 2023 Security Updates
https://malware.news/t/security-alert-microsoft-releases-july-2023-security-updates/71283#post_1

VMware warns customers of exploit available for critical vRealize RCE flaw CVE-2023-20864
https://securityaffairs.com/148346/hacking/vmware-vmware-rce-exploit.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 13/07/2023

The Risks and Preventions of AI in Business: Safeguarding Against Potential Pitfalls
https://thehackernews.com/2023/07/the-risks-and-preventions-of-ai-in.html

Chinese Hackers Deploy Microsoft-Signed Rootkit to Target Gaming Sector
https://thehackernews.com/2023/07/chinese-hackers-deploy-microsoft-signed.html

Using MiTMProxy as a scriptable pre-proxy for BurpSuite
https://www.reddit.com/r/netsec/comments/14xzstx/using_mitmproxy_as_a_scriptable_preproxy_for/

Here’s how security and DevOps can collaborate and shift left
https://malware.news/t/here-s-how-security-and-devops-can-collaborate-and-shift-left/71337#post_1

SonicWall security advisory (AV23-402)
https://malware.news/t/sonicwall-security-advisory-av23-402/71332#post_1

How the EU's new cyber regs could affect ports. NSA and CyberCom chief nominee follows in predecessor’s footsteps. Hate crime grants highlight cybersecurity.
https://thecyberwire.com/newsletters/policy-briefing/5/131

Patch Tuesday retrospective: July 2023.
https://thecyberwire.com

Laws, lawsuits, and privacy.
https://thecyberwire.com/podcasts/caveat/179/notes

Python-Based PyLoose Fileless Attack Targets Cloud Workloads for Cryptocurrency Mining
https://thehackernews.com/2023/07/python-based-pyloose-fileless-attack.html

Could compiled code in dynamically linked libraries be statically baked into an executable?
https://www.reddit.com/r/lowlevel/comments/14xsxch/could_compiled_code_in_dynamically_linked/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman