Top Security News for 29/07/2022

U.S. Offers $10 Million Reward for Information on North Korean Hackers
https://thehackernews.com/2022/07/us-offers-10-million-reward-for.html

Attacks using Office macros decline in wake of Microsoft action
https://www.csoonline.com/article/3668532/attacks-using-office-macros-decline-in-wake-of-microsoft-action.html#tk.rss_all

ISC Stormcast For Friday, July 29th, 2022 https://isc.sans.edu/podcastdetail.html?id=8108, (Fri, Jul 29th)
https://malware.news/t/isc-stormcast-for-friday-july-29th-2022-https-isc-sans-edu-podcastdetail-html-id-8108-fri-jul-29th/62224/1

Hackers Opting New Attack Methods After Microsoft Blocked Macros by Default
https://thehackernews.com/2022/07/hackers-opting-new-attack-methods-after.html

nanopb Protobuf Decompiler - Anvil Secure
https://www.reddit.com/r/netsec/comments/waly67/nanopb_protobuf_decompiler_anvil_secure/

Radioactivity monitoring and warning system hacked, disabled by attackers
https://blog.malwarebytes.com/reports/2022/07/radioactivity-monitoring-and-warning-system-hacked-disabled-by-attackers/

Signals & Space: Space Force acquisitionplans. Wartime lessons about space capability. Rogozin is out at Roscosmos. The starry heavens above (seen through the Webb telescope);
https://thecyberwire.com/newsletters/signals-and-space/6/13

ISC StormCast for Friday, July 29th, 2022
https://isc.sans.edu/podcastdetail.html?id=8108

WordFly data breach impacts clients in the arts. Wawa reaches settlement for 2019 cyberattack. New PhaaS platform boasts 24/7 customer service.
https://thecyberwire.com/podcasts/privacy-briefing/635/notes

APT trends report Q2 2022
https://securelist.com/apt-trends-report-q2-2022/106995/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 30/07/2022

US DOJ investigating Federal court records data breach. CNIL ends investigation into Facebook’s cookie settings. Daughter of Rwandan activist testifies in spyware hearing. New report on consumer identity theft.
https://thecyberwire.com/podcasts/privacy-briefing/636/notes

Researchers Warns of Increase in Phishing Attacks Using Decentralized IPFS Network
https://thehackernews.com/2022/07/researchers-warns-of-increase-in.html

July was a hot month for cybersecurity research
https://www.csoonline.com/article/3668070/july-was-a-hot-month-for-cybersecurity-research.html#tk.rss_all

Music streaming platform victim of a crypto theft – Week in security with Tony Anscombe
https://malware.news/t/music-streaming-platform-victim-of-a-crypto-theft-week-in-security-with-tony-anscombe/62256/1

ImHex - A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM
https://www.reddit.com/r/netsec/comments/wbbyfn/imhex_a_hex_editor_for_reverse_engineers/

Threat Actors Pivot Around Microsoft's Macro-Blocking In Office
https://packetstormsecurity.com/news/view/33682/Threat-Actors-Pivot-Around-Microsofts-Macro-Blocking-In-Office.html

Microsoft experts linked the Raspberry Robin malware to Evil Corp operation
https://securityaffairs.co/wordpress/133810/cyber-crime/raspberry-robin-linked-evil-corp.html

BrandPost: Understanding SSE: Components, Process, and Advantages
https://www.csoonline.com/article/3668691/understanding-sse-components-process-and-advantages.html#tk.rss_all

Ransomware Hit The American Dental Association
https://packetstormsecurity.com/news/view/33680/Ransomware-Hit-The-American-Dental-Association.html

The global Anti Chip Coating
https://www.bleepingcomputer.com/forums/t/775245/the-global-anti-chip-coating/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 31/07/2022

Treebox - Python AST sandbox challenge from Google CTF 2022
https://gynvael.coldwind.pl/?id=751

Reading the “ENISA THREAT LANDSCAPE FOR RANSOMWARE ATTACKS” report
https://securityaffairs.co/wordpress/133827/malware/enisa-threat-landscape-for-ransomware-attacks.html

Sitecore third party form inside the sitecore form
https://www.bleepingcomputer.com/forums/t/775251/sitecore-third-party-form-inside-the-sitecore-form/

Stop Putting Your Accounts At Risk, and Start Using a Password Manager
https://thehackernews.com/2022/07/stop-putting-your-accounts-at-risk-and.html

Wireshark 3.6.7 Released, (Sat, Jul 30th)
https://isc.sans.edu/diary/rss/28896

Malware Analysis - Using Hybrid Analysis for Initial Malware Assessment
https://malware.news/t/malware-analysis-using-hybrid-analysis-for-initial-malware-assessment/62257/1

CISA orders to patch an actively exploited flaw in Confluence servers
https://securityaffairs.co/wordpress/133819/security/cisa-confluence-cve-2022-26138-catalog.html

Prima Weight Loss UK Dragons Den Reviews- Capsules Price or Ingredients
https://www.bleepingcomputer.com/forums/t/775260/prima-weight-loss-uk-dragons-den-reviews-capsules-price-or-ingredients/

Microsoft Links Raspberry Robin USB Worm to Russian Evil Corp Hackers
https://thehackernews.com/2022/07/microsoft-links-raspberry-robin-usb.html

Running Exploit As Protected Process Ligh From Userland
https://www.reddit.com/r/netsec/comments/wc6euk/running_exploit_as_protected_process_ligh_from/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 01/08/2022

Free cybercrime intelligence tool - check any company domain and see how many of their employees and clients were compromised by info-stealers
https://www.reddit.com/r/Malware/comments/wci0ty/free_cybercrime_intelligence_tool_check_any/

ISC StormCast for Monday, August 1st, 2022
https://isc.sans.edu/podcastdetail.html?id=8110

ISC Stormcast For Monday, August 1st, 2022 https://isc.sans.edu/podcastdetail.html?id=8110, (Mon, Aug 1st)
https://malware.news/t/isc-stormcast-for-monday-august-1st-2022-https-isc-sans-edu-podcastdetail-html-id-8110-mon-aug-1st/62265/1

A flaw in Dahua IP Cameras allows full take over of the devices
https://securityaffairs.co/wordpress/133877/security/dahua-severe-flaw.html

17 Android Apps on Google Play Store, dubbed DawDropper, were serving banking malware
https://securityaffairs.co/wordpress/133853/malware/dawdropper-apps-google-play.html

Weekend Wrap-up of Infosec News
https://www.reddit.com/r/netsec/comments/wcm8z3/weekend_wrapup_of_infosec_news/

ISC Stormcast For Monday, August 1st, 2022 https://isc.sans.edu/podcastdetail.html?id=8110, (Mon, Aug 1st)
https://isc.sans.edu/diary/rss/28898

Threat actor claims to have hacked European manufacturer of missiles MBDA
https://securityaffairs.co/wordpress/133881/data-breach/mbda-alleged-data-breach.html

CQ, a code security scanner
https://www.reddit.com/r/netsec/comments/wcjt86/cq_a_code_security_scanner/

Orchestrating the security stack and cybersecurity first principles, with Rick Howard.
https://thecyberwire.com/podcasts/cso-perspectives-public/55/notes


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 02/08/2022

A week in security (July 25 – July 31)
https://blog.malwarebytes.com/a-week-in-security/2022/08/a-week-in-security-july-25-july-31/

ALPHV/BlackCat ransomware gang claims to have stolen data from Creos Luxembourg S.A.
https://securityaffairs.co/wordpress/133899/cyber-crime/alphv-blackcat-ransomware-creos-luxembourg.html

Australian man charged with creating and selling the Imminent Monitor spyware
https://securityaffairs.co/wordpress/133893/cyber-crime/imminent-monitor-spyware-author-arrested.html

Why cybercriminals are flocking to Telegram
https://malware.news/t/why-cybercriminals-are-flocking-to-telegram/62298/1

ISC Stormcast For Tuesday, August 2nd, 2022 https://isc.sans.edu/podcastdetail.html?id=8112, (Tue, Aug 2nd)
https://isc.sans.edu/diary/rss/28902

Word File Provided as External Link When Replying to Attacker’s Email (Kimsuky)
https://malware.news/t/word-file-provided-as-external-link-when-replying-to-attacker-s-email-kimsuky/62297/1

Malicious Npm Packages Tapped Again To Target Discord Users
https://packetstormsecurity.com/news/view/33683/Malicious-Npm-Packages-Tapped-Again-To-Target-Discord-Users.html

BrandPost: How to Minimize Misconfigurations Across Your Systems
https://www.csoonline.com/article/3668648/how-to-minimize-misconfigurations-across-your-systems.html#tk.rss_all

ISC StormCast for Tuesday, August 2nd, 2022
https://isc.sans.edu/podcastdetail.html?id=8112

Why TikTok Is Obsessed With Pink Sauce
https://www.vice.com/en_us/article/epzzzk/why-tiktok-is-obsessed-with-pink-sauce


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 03/08/2022

Making Faster Javascript — BUN Intended!
https://malware.news/t/making-faster-javascript-bun-intended/62330/1

Using process creation properties to catch evasion techniques
https://www.reddit.com/r/netsec/comments/weozh7/using_process_creation_properties_to_catch/

Detection Rules for Lightning Framework (and How to Make Them With Osquery)
https://malware.news/t/detection-rules-for-lightning-framework-and-how-to-make-them-with-osquery/62331/1

LockBit Ransomware Abuses Windows Defender to Deploy Cobalt Strike Payload
https://thehackernews.com/2022/08/lockbit-ransomware-abuses-windows.html

German power electronics manufacturer Semikron has disclosed that it was hit by a ransomware attack that partially encrypted the company's network.
https://www.reddit.com/r/Malware/comments/weuxix/german_power_electronics_manufacturer_semikron/

BrandPost: Security Leaders Share 5 Steps to Strengthening Cyber Resilience
https://www.csoonline.com/article/3668555/security-leaders-share-5-steps-to-strengthening-cyber-resilience.html#tk.rss_all

Android security advisory – August 2022 monthly rollup (AV22-430)
https://malware.news/t/android-security-advisory-august-2022-monthly-rollup-av22-430/62325/1

Chinese Hackers Using New Manjusaka Hacking Framework Similar to Cobalt Strike
https://thehackernews.com/2022/08/chinese-hackers-using-new-manjusaka.html

Verizon's Mobile Security Index. New attack framework. Ransomware report.
https://thecyberwire.com/newsletters/research-briefing/4/31

ASEC Weekly Malware Statistics (July 25th, 2022 – July 31st, 2022)
https://malware.news/t/asec-weekly-malware-statistics-july-25th-2022-july-31st-2022/62328/1


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 04/08/2022

ISC Stormcast For Thursday, August 4th, 2022 https://isc.sans.edu/podcastdetail.html?id=8116, (Thu, Aug 4th)
https://malware.news/t/isc-stormcast-for-thursday-august-4th-2022-https-isc-sans-edu-podcastdetail-html-id-8116-thu-aug-4th/62369/1

NEW 'Off The Hook' ONLINE
https://www.2600.com/hook/03-08-2022

Researchers Warns of Large-Scale AiTM Attacks Targeting Enterprise Users
https://thehackernews.com/2022/08/researchers-warns-of-large-scale-aitm.html

ISC StormCast for Thursday, August 4th, 2022
https://isc.sans.edu/podcastdetail.html?id=8116

How to detect Brute Ratel C2 (beacons & server deployments)
https://www.reddit.com/r/netsec/comments/wf1kbn/how_to_detect_brute_ratel_c2_beacons_server/

IcedID leverages PrivateLoader
https://malware.news/t/icedid-leverages-privateloader/62370/1

Old Men Confused Gen Z Isn’t Making TikToks About Assassination of al-Zawahri
https://www.vice.com/en_us/article/k7bbxw/old-men-confused-gen-z-isnt-making-tiktoks-about-assassination-of-al-zawahri

VirusTotal Reveals Most Impersonated Software in Malware Attacks
https://thehackernews.com/2022/08/virustotal-reveals-most-impersonated.html

Google fixed Critical Remote Code Execution flaw in Android
https://securityaffairs.co/wordpress/133956/security/android-critical-flaw-cve-2022-20345.html

How to protect yourself and your kids against device theft
https://blog.malwarebytes.com/awareness/2022/08/how-to-protect-yourself-and-your-kids-against-device-theft/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 05/08/2022

Ransomware review: July 2022
https://blog.malwarebytes.com/threat-intelligence/2022/08/ransomware-review-july-2022/

Hackers Exploited Atlassian Confluence Bug to Deploy Ljl Backdoor for Espionage
https://thehackernews.com/2022/08/hackers-exploited-atlassian-confluence.html

Ransomware protection with Malwarebytes EDR: Your FAQs, answered!
https://blog.malwarebytes.com/business/2022/08/ransomware-protection-with-malwarebytes-edr-your-faqs-answered/

Three Common Mistakes That May Sabotage Your Security Training
https://thehackernews.com/2022/08/three-common-mistakes-that-may-sabotage.html

ISC StormCast for Friday, August 5th, 2022
https://isc.sans.edu/podcastdetail.html?id=8118

Wordfence Intelligence Launching at Black Hat 2022 in Las Vegas Next Week
https://malware.news/t/wordfence-intelligence-launching-at-black-hat-2022-in-las-vegas-next-week/62397/1

Ransomware review: July 2022
https://malware.news/t/ransomware-review-july-2022/62398/1

Ransomware Task Force Releases SMB Blueprint For Defense And Mitigation
https://packetstormsecurity.com/news/view/33695/Ransomware-Task-Force-Releases-SMB-Blueprint-For-Defense-And-Mitigation.html

How To Implement JSON Web Token (JWT) in Java Spring Boot
https://www.reddit.com/r/netsec/comments/wgd157/how_to_implement_json_web_token_jwt_in_java/

11 stakeholder strategies for red team success
https://www.csoonline.com/article/3668536/11-stakeholder-strategies-for-red-team-success-from-a-red-teamer.html#tk.rss_all


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 06/08/2022

Nancy Pelosi’s Beijing Arrest for 'Hooliganism' Is Trending on Weibo
https://www.vice.com/en_us/article/7k883e/nancy-pelosis-beijing-arrest-for-hooliganism-is-trending-on-weibo

Cyber Insurance Market 2022: FAQs & Updates with iBynd
https://malware.news/t/cyber-insurance-market-2022-faqs-updates-with-ibynd/62415/1

How Passwordless Works
https://www.reddit.com/r/netsec/comments/wh4dcq/how_passwordless_works/

A Growing Number of Malware Attacks Leveraging Dark Utilities 'C2-as-a-Service'
https://thehackernews.com/2022/08/a-growing-number-of-malware-attacks.html

Vulnerable Antivirus Driver Used by Ransomware - We Reverse Engineer How!?
https://malware.news/t/vulnerable-antivirus-driver-used-by-ransomware-we-reverse-engineer-how/62418/1

New Linux botnet RapperBot brute-forces SSH servers
https://securityaffairs.co/wordpress/134023/malware/rapperbot-linux-botnet.html

CISA Alert AA22-216A – 2021 top malware strains.
https://thecyberwire.com/podcasts/cisa-cybersecurity-alerts/26/notes

Digital censorship in democratic nations. New York becomes first state to require cybersecurity training for attorneys.
https://thecyberwire.com/newsletters/policy-briefing/4/150

Reverse Engineering Windows Printer Drivers (Part 1)
https://www.reddit.com/r/netsec/comments/wh1wzr/reverse_engineering_windows_printer_drivers_part_1/

Ukraine claims to have taken down a massive Russian bot farm. Cyberattacks affect three official sites in Taiwan. Major cryptocurrency thefts.
https://thecyberwire.com/newsletters/week-that-was/6/31


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 08/08/2022

Amazon’s One-Stop Shop for Identity Thieves
https://www.reddit.com/r/netsec/comments/wihywi/amazons_onestop_shop_for_identity_thieves/

Serious cyberattack hits German Chambers of Industry and Commerce (DIHK)
https://securityaffairs.co/wordpress/134121/hacking/dihk-cyberattack.html

WinAPi Search - Recursively Search PE Binaries by Win32 Function Name
https://www.reddit.com/r/netsec/comments/wiqjjn/winapi_search_recursively_search_pe_binaries_by/

Fintech Ecosystem
https://thecyberwire.com/podcasts/cso-perspectives/83/notes

Monero CoinMiner Being Distributed via Webhards
https://malware.news/t/monero-coinminer-being-distributed-via-webhards/62426/1

ISC Stormcast For Monday, August 8th, 2022 https://isc.sans.edu/podcastdetail.html?id=8120, (Mon, Aug 8th)
https://isc.sans.edu/diary/rss/28918

GwisinLocker ransomware exclusively targets South Korea
https://securityaffairs.co/wordpress/134105/cyber-crime/gwisinlocker-ransowmare-south-korea.html

Patch now! Cisco VPN routers are vulnerable to remote control
https://malware.news/t/patch-now-cisco-vpn-routers-are-vulnerable-to-remote-control/62424/1

Orchestrating the security stack around the Hash Table, with Rick Howard, Bob Turner, and Kevin Magee.
https://thecyberwire.com/podcasts/cso-perspectives-public/56/notes

Codewarrior - open source SAST
https://www.reddit.com/r/netsec/comments/wizih6/codewarrior_open_source_sast/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 09/08/2022

A week in security (August 1 - August 7)
https://www.malwarebytes.com/blog/news/2022/08/a-week-in-security-august-1-august-7

SimpleX Chat - the first messaging platform that has no user identifiers (not even random numbers) - v3.1 of iOS and Android apps released - with secret chat groups and server access via Tor.
https://www.reddit.com/r/netsec/comments/wjczks/simplex_chat_the_first_messaging_platform_that/

Security Guide for Startups: How to think about security while moving quickly | LunaSec
https://www.reddit.com/r/netsec/comments/wjdkej/security_guide_for_startups_how_to_think_about/

Pivoting on a SharpExt to profile Kimusky panels for great good
https://malware.news/t/pivoting-on-a-sharpext-to-profile-kimusky-panels-for-great-good/62462/1

Hacker Finds Kill Switch for Submachine Gun–Wielding Robot Dog
https://www.vice.com/en_us/article/akeexk/hacker-finds-kill-switch-for-submachine-gun-wielding-robot-dog

Patch now! Cisco VPN routers are vulnerable to remote control
https://www.malwarebytes.com/blog/news/2022/08/patch-now-cisco-vpn-routers-are-vulnerable-to-remote-control

Cybersecurity is a team sport.
https://thecyberwire.com/podcasts/cyberwire-x/35/notes

ISC Stormcast For Tuesday, August 9th, 2022 https://isc.sans.edu/podcastdetail.html?id=8122, (Tue, Aug 9th)
https://isc.sans.edu/diary/rss/28922

A week in security (August 1 – 7)
https://blog.malwarebytes.com/a-week-in-security/2022/08/a-week-in-security-august-1-7/

LogoKit update – The phishing kit leveraging Open Redirect Vulnerabilities
https://securityaffairs.co/wordpress/134141/hacking/logokit-phishing-open-redirect.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 10/08/2022

Twilio discloses a data breach. Social engineering at Klaviyo exposes customer data.
https://thecyberwire.com/podcasts/privacy-briefing/643/notes

Cyberespionage targets industrial entities. Woody RAT used against Russian organizations. Dark Utilities facilitates attacks.
https://thecyberwire.com/newsletters/research-briefing/4/32

Security Best Practices in PHP
https://www.reddit.com/r/netsec/comments/wjzhso/security_best_practices_in_php/

Recommended methods for a physical lab with 3 PCs
https://www.reddit.com/r/Malware/comments/wkd922/recommended_methods_for_a_physical_lab_with_3_pcs/

BrandPost: Choosing the Right Security Service Edge Platform
https://www.csoonline.com/article/3668636/choosing-the-right-security-service-edge-platform.html#tk.rss_all

ISC StormCast for Wednesday, August 10th, 2022
https://isc.sans.edu/podcastdetail.html?id=8124

Control Panel Version 6.30.0.0 (upcoming release)
https://malware.news/t/control-panel-version-6-30-0-0-upcoming-release/62510/1

Discovering Domains via a Timing Attack on Certificate Transparency
https://www.reddit.com/r/netsec/comments/wkczlq/discovering_domains_via_a_timing_attack_on/

5 cybersecurity tips for students going back to school
https://www.malwarebytes.com/blog/news/2022/08/5-cybersecurity-tips-for-students-going-back-to-school

A Novel SIP Based Distributed Reflection Denial-of-Service Attack and an Effective Defense Mechanism
https://www.reddit.com/r/netsec/comments/wklym3/a_novel_sip_based_distributed_reflection/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 11/08/2022

HPE security advisory (AV22-449)
https://malware.news/t/hpe-security-advisory-av22-449/62545/1

CISA should split from DHS or made part of broader ‘Digital Agency’: Fmr Director Chris Krebs
https://malware.news/t/cisa-should-split-from-dhs-or-made-part-of-broader-digital-agency-fmr-director-chris-krebs/62547/1

8 tips to secure printers on your network
https://www.csoonline.com/article/3669233/8-tips-to-secure-printers-on-your-network.html#tk.rss_all

Get Dashlane Premium password manager for 3 mo for $1
https://malware.news/t/get-dashlane-premium-password-manager-for-3-mo-for-1/62546/1

Former Twitter Employee Found Guilty of Spying for Saudi Arabia
https://thehackernews.com/2022/08/former-twitter-employee-found-guilty-of.html

NEW 'Off The Hook' ONLINE
https://www.2600.com/hook/10-08-2022

Ex Twitter employee found guilty of spying for Saudi Arabian government
https://securityaffairs.co/wordpress/134266/intelligence/ex-twitter-employee-guilty.html

Cyber Threats Warrant a Government Reorganization, Former CISA Head Says
https://malware.news/t/cyber-threats-warrant-a-government-reorganization-former-cisa-head-says/62548/1

ISC StormCast for Thursday, August 11th, 2022
https://isc.sans.edu/podcastdetail.html?id=8126

The quantum state of Linux kernel garbage collection CVE-2021-0920 (Part I)
https://googleprojectzero.blogspot.com/2022/08/the-quantum-state-of-linux-kernel.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 12/08/2022

Critical Flaws Disclosed in Device42 IT Asset Management Software
https://thehackernews.com/2022/08/critical-flaws-disclosed-in-device42-it.html

Update now! Microsoft fixes two zero-days in August's Patch Tuesday
https://www.malwarebytes.com/blog/news/2022/08/update-now-patch-tuesday-august-2022

Slack flaw exposed users' hashed passwords
https://www.malwarebytes.com/blog/news/2022/08/slack-flaw-exposed-users-hashed-passwords

CISA Alert AA22-223A – #StopRansomware: Zeppelin Ransomware.
https://thecyberwire.com/podcasts/cisa-cybersecurity-alerts/27/notes

Summer of exploitation leads to healthcare under fire
https://www.malwarebytes.com/blog/news/2022/08/summer-of-exploitation-leads-to-healthcare-under-fire

How a Venezuelan disinformation campaign swayed voters in Colombia
https://www.csoonline.com/article/3669392/how-a-venezuelan-disinformation-campaign-swayed-voters-in-colombia.html#tk.rss_all

DHS says to update your Emergency Alert Systems immediately
https://www.malwarebytes.com/blog/news/2022/08/dhs-says-to-update-your-emergency-alert-systems-immediately

NHS IT Supplier Held To Ransom By Hackers
https://packetstormsecurity.com/news/view/33724/NHS-IT-Supplier-Held-To-Ransom-By-Hackers.html

Monster Libra (TA551/Shathak) pushes IcedID (Bokbot) with Dark VNC and Cobalt Strike, (Fri, Aug 12th)
https://malware.news/t/monster-libra-ta551-shathak-pushes-icedid-bokbot-with-dark-vnc-and-cobalt-strike-fri-aug-12th/62585/1

Cisco Confirms It's Been Hacked by Yanluowang Ransomware Gang
https://thehackernews.com/2022/08/cisco-confirms-its-been-hacked-by.html


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 13/08/2022

Twitter exploit may have compromised more than 5 million accounts. Cyberattack disrupts NHS 111. Twilio discloses data breach.
https://thecyberwire.com/newsletters/week-that-was/6/32

Seller, beware. College network intrusion results in data compromise. AT&T denies stolen data came from an internal breach.
https://thecyberwire.com/podcasts/privacy-briefing/646/notes

‘It Could Be Anything’: Experts Tell Us What Kind of Nuclear Secrets Could Trump Steal
https://www.vice.com/en_us/article/wxnjz9/it-could-be-anything-experts-tell-us-what-kind-of-nuclear-secrets-could-trump-steal

Matthew Warner from Blumira CTO discusses avoiding burnout in the IT industry.
https://thecyberwire.com/podcasts/interview-selects/123/notes

CISA orders civilian agencies to patch Zimbra bug after mass exploitation
https://malware.news/t/cisa-orders-civilian-agencies-to-patch-zimbra-bug-after-mass-exploitation/62605/1

Ukraine at D+169: Partisans, both kinetic and cyber.
https://thecyberwire.com/stories/c311954525a64eaaa0d316de77a3e302/ukraine-at-d169-partisans-both-kinetic-and-cyber

‘We Plan to Run Over the Child on Saturday’: Elon Musk Stans Are Trying to Debunk a Tesla Full Self-Driving Safety Video
https://www.vice.com/en_us/article/88qx8z/tesla-fans-mad-over-video-of-tesla-mowing-down-toddler-mannequin-in-full-self-driving-mode

AT&T denies connection to database of 23 million SSNs, says it may be tied to credit agency breach
https://malware.news/t/at-t-denies-connection-to-database-of-23-million-ssns-says-it-may-be-tied-to-credit-agency-breach/62602/1

Researchers Warn of Ongoing Mass Exploitation of Zimbra RCE Vulnerability
https://thehackernews.com/2022/08/researchers-warn-of-ongoing-mass.html

Black Hat 2022‑ Cyberdefense in a global threats era
https://malware.news/t/black-hat-2022-cyberdefense-in-a-global-threats-era/62607/1


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 14/08/2022

How I Hacked my Car
https://www.reddit.com/r/netsec/comments/wneyca/how_i_hacked_my_car/

Christian Lees: it's not always textbook. [CTO]
https://thecyberwire.com/podcasts/career-notes/112/notes

Starlink-FI: Starlink User Terminal Modchip
https://www.reddit.com/r/lowlevel/comments/wnxvi0/starlinkfi_starlink_user_terminal_modchip/

Malware sandbox evasion in x64 assembly by checking ram size - Part 1
https://www.reddit.com/r/Malware/comments/wnmsik/malware_sandbox_evasion_in_x64_assembly_by/

Phishing HTML Attachment as Voicemail Audio Transcription, (Sat, Aug 13th)
https://malware.news/t/phishing-html-attachment-as-voicemail-audio-transcription-sat-aug-13th/62611/1

Chinese Hackers Backdoored MiMi Chat App to Target Windows, Linux, macOS Users
https://thehackernews.com/2022/08/chinese-hackers-backdoored-mimi-chat.html

How Can I be a Professional Hacker
https://0x00sec.org/t/how-can-i-be-a-professional-hacker/30680

Three flaws allow attackers to bypass UEFI Secure Boot feature
https://securityaffairs.co/wordpress/134334/hacking/uefi-secure-boot-feature-flaw.html

Send raw requests via sockets
https://0x00sec.org/t/send-raw-requests-via-sockets/30670

Who "Owns" Your Infrastructure?
https://malware.news/t/who-owns-your-infrastructure/62610/1


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 15/08/2022

Adversary playbooks and cybersecurity first principles, with Rick Howard.
https://thecyberwire.com/podcasts/cso-perspectives-public/57/notes

Process injection: breaking all macOS security layers with a single vulnerability
https://www.reddit.com/r/netsec/comments/woki2o/process_injection_breaking_all_macos_security/

Privilege escalation.
https://thecyberwire.com/stories/5f7c0bc7edba4759b0ba1935a9aa1992/privilege-escalation

From Oscilloscope to Wireshark
https://www.reddit.com/r/netsec/comments/wojl4m/from_oscilloscope_to_wireshark/

wtfis - A commandline tool that gathers information about a domain or FQDN using various OSINT services and displays them formatted for human consumption.
https://www.reddit.com/r/netsec/comments/wojqnv/wtfis_a_commandline_tool_that_gathers_information/

ISC StormCast for Monday, August 15th, 2022
https://isc.sans.edu/podcastdetail.html?id=8130

Just starting out
https://www.reddit.com/r/Malware/comments/woicue/just_starting_out/

HijackLibs: an open-source, community-driven project tracking DLL Hijacking opportunities in in Windows
https://www.reddit.com/r/netsec/comments/wonmht/hijacklibs_an_opensource_communitydriven_project/

The 5 best identity theft protection and credit monitoring services of 2022
https://malware.news/t/the-5-best-identity-theft-protection-and-credit-monitoring-services-of-2022/62615/1

NthLink VPN found to be regular shadowsocks using same pre-shared keys for all users
https://www.reddit.com/r/netsec/comments/wolk9s/nthlink_vpn_found_to_be_regular_shadowsocks_using/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 15/08/2022

Privilege escalation.
https://thecyberwire.com/stories/5f7c0bc7edba4759b0ba1935a9aa1992/privilege-escalation

Adversary playbooks and cybersecurity first principles, with Rick Howard.
https://thecyberwire.com/podcasts/cso-perspectives-public/57/notes

NthLink VPN found to be regular shadowsocks using same pre-shared keys for all users
https://www.reddit.com/r/netsec/comments/wolk9s/nthlink_vpn_found_to_be_regular_shadowsocks_using/

Just starting out
https://www.reddit.com/r/Malware/comments/woicue/just_starting_out/

ISC StormCast for Monday, August 15th, 2022
https://isc.sans.edu/podcastdetail.html?id=8130

wtfis - A commandline tool that gathers information about a domain or FQDN using various OSINT services and displays them formatted for human consumption.
https://www.reddit.com/r/netsec/comments/wojqnv/wtfis_a_commandline_tool_that_gathers_information/

ISC Stormcast For Monday, August 15th, 2022 https://isc.sans.edu/podcastdetail.html?id=8130, (Mon, Aug 15th)
https://isc.sans.edu/diary/rss/28942

STrace: MIT Licensed Windows Reimplementation of DTrace
https://www.reddit.com/r/netsec/comments/won53u/strace_mit_licensed_windows_reimplementation_of/

Tornado Cash Developer Arrested After U.S. Sanctions the Cryptocurrency Mixer
https://thehackernews.com/2022/08/tornado-cash-developer-arrested-after.html

Process injection: breaking all macOS security layers with a single vulnerability
https://www.reddit.com/r/netsec/comments/woki2o/process_injection_breaking_all_macos_security/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 16/08/2022

Attacking Google's Titan M Security Key with Only One Byte
https://www.reddit.com/r/netsec/comments/woqida/attacking_googles_titan_m_security_key_with_only/

SOVA Android Banking Trojan Returns With New Capabilities and Targets
https://thehackernews.com/2022/08/sova-android-banking-trojan-returns-new.html

EvilPLC Attack: Using a PLC to Gain Code Execution on Engineering Workstation
https://www.reddit.com/r/netsec/comments/woybqk/evilplc_attack_using_a_plc_to_gain_code_execution/

Iron Tiger's supply chain campaign. TikTok and espionage. Shuckworm's focus on Ukraine. Killnet's dubious proof-of-work.
https://thecyberwire.com/newsletters/daily-briefing/11/156

SOVA Android malware now also encrypts victims’ files
https://securityaffairs.co/wordpress/134392/malware/sova-android-malware-v5.html

Shuckworm and Killnet continue to hack in the interest of Russia. Iron Tiger's supply chain campaign. TikTok and national security. And an arrest in the case of the Tornado Cash crypto mixer.
https://thecyberwire.com/podcasts/daily-podcast/1641/notes

A week in security (August 8 - August 14)
https://www.malwarebytes.com/blog/news/2022/08/a-week-in-security-august-8-august-14

Google pays up for misrepresenting customer data handling. Update on the alleged AT&T data breach. Outdated Veterans Affairs platform putting patient data at risk.
https://thecyberwire.com/newsletters/privacy-briefing/4/156

Signals and Space: USAF and NRO coordinate space operations as they expand use of commercial services. Space conflict. Small business opportunities.
https://thecyberwire.com/newsletters/signals-and-space/6/15

Tracking Internet facing Industrial Control System devices
https://www.reddit.com/r/netsec/comments/wp5dhh/tracking_internet_facing_industrial_control/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 16/08/2022

Credential Theft Is (Still) A Top Attack Method
https://thehackernews.com/2022/08/credential-theft-is-still-top-attack.html

3 ways China's access to TikTok data is a security risk
https://www.csoonline.com/article/3670110/3-ways-chinas-access-to-tiktok-data-is-a-security-risk.html#tk.rss_all

Why Action Bias Is Damaging Your Security Response
https://www.reddit.com/r/netsec/comments/wp32zn/why_action_bias_is_damaging_your_security_response/

Signals and Space: USAF and NRO coordinate space operations as they expand use of commercial services. Space conflict. Small business opportunities.
https://thecyberwire.com/newsletters/signals-and-space/6/15

Top 5 security risks of Open RAN
https://www.csoonline.com/article/3670078/top-5-security-risks-of-open-ran.html#tk.rss_all

Newly Uncovered PyPI Package Drops Fileless Cryptominer to Linux Systems
https://thehackernews.com/2022/08/newly-uncovered-pypi-package-drops.html

EvilPLC Attack: Using a PLC to Gain Code Execution on Engineering Workstation
https://www.reddit.com/r/netsec/comments/woybqk/evilplc_attack_using_a_plc_to_gain_code_execution/

Viral video drives malvertising on social media platform
https://www.malwarebytes.com/blog/threat-intelligence/2022/08/viral-video-drives-malvertising-on-social-media-platform

IT threat evolution in Q2 2022. Mobile statistics
https://securelist.com/it-threat-evolution-in-q2-2022-mobile-statistics/107123/

Tracking Internet facing Industrial Control System devices
https://www.reddit.com/r/netsec/comments/wp5dhh/tracking_internet_facing_industrial_control/


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for 17/08/2022

RubyGems Makes Multi-Factor Authentication Mandatory for Top Package Maintainers
https://thehackernews.com/2022/08/rubygems-makes-multi-factor.html

ASEC Weekly Malware Statistics (August 1st, 2022 – August 7th, 2022)
https://malware.news/t/asec-weekly-malware-statistics-august-1st-2022-august-7th-2022/62673/1

Russian State Hackers Continue to Attack Ukrainian Entities with Infostealer Malware
https://thehackernews.com/2022/08/russian-state-hackers-continue-to.html

Microsoft Warns About Phishing Attacks by Russia-linked Hackers
https://thehackernews.com/2022/08/microsoft-warns-about-phishing-attacks.html

Two more malicious Python packages in the PyPI
https://securelist.com/two-more-malicious-python-packages-in-the-pypi/107218/

Signal informs customers of third-party data breach. North Carolina healthcare system says Meta Pixel exposed patient data. Shanghai COVID-19 app allegedly hacked.
https://thecyberwire.com/podcasts/privacy-briefing/648/notes

U.K. Water Supplier Hit With Clop Ransomware Attack
https://packetstormsecurity.com/news/view/33738/U.K.-Water-Supplier-Hit-With-Clop-Ransomware-Attack.html

New Evil PLC Attack Weaponizes PLCs to Breach OT and Enterprise Networks
https://thehackernews.com/2022/08/new-evil-plc-attack-weaponizes-plcs-to.html

A Deep Dive Into Black Basta Ransomware
https://www.reddit.com/r/netsec/comments/wpv3r0/a_deep_dive_into_black_basta_ransomware/

RedAlpha targets think tanks and humanitarian organizations. Golden Chickens operator discovered. BlueSky ransomware rapidly encrypts data.
https://thecyberwire.com/podcasts/research-briefing/130/notes


Follow Top Cyber News at https://t.me/TopCyberTechNews
Feel free to DM me at https://twitter.com/ShayaFeedman