■□□□□ Israeli Hospital Hit By Ransomware Attack, 1TB Data Stolen

Vital medical equipment was unaffected, but attackers stole and leaked lots of personal data.

The Ragnar Locker gang hit the Mayanei Hayeshua Medical Center in Bnei Brak, just outside Tel Aviv, in early August. In recent posts on X, formerly known as Twitter, the group claimed that it did not "run any encryption to avoid equipment malfunctions, or necessary instruments," as the victim was a medical facility.

However, they were able to take 1TB of data, which included a full SQL database and a large volume of .pst files with internal correspondence. The attackers said they were posting the first batch of files taken from the hospital, which included "a lot of personal information, internal email, finances, medical cards," and more highly sensitive data.

Reports from August claimed the attack disabled the hospital's computer systems in record keeping, and left the hospital unable to accept new patients to outpatient clinics and imaging centers at the hospital.

■□□□□ Cyber-Attack; India: Tamil Nadu police website hacked by cyber criminals.

https://www.thehindu.com/news/national/tamil-nadu/tamil-nadu-police-website-hacked-by-cyber-criminals/article67296670.ece

■■■■■ URL Infection Exploit Silent Java Drive by downloads may happen when visiting a site, opening an e-mail message.

https://github.com/bestjectr/Slient-Url-Exploit-New-Cve-Chrome-Exploit-Html-Downloader

In a first, spyware is found on phone of prominent Russian journalist.

● This is highly likely that Russia deployed the same Zero-Day vulnerability in the (almost) publicly available mobile application hosting a false flag Cyber-Attack on the victim.

https://www.washingtonpost.com/technology/2023/09/13/pegasus-infection-meduza-founder/

■■■■■ Four major browsers impacted by a single zero-day vulnerability.

Microsoft Edge, Mozilla Firefox, Google Chrome and Apple's Safari browser have all released patches for CVE-2023-4863.

https://techmonitor.ai/technology/cybersecurity/four-big-tech-browsers-hit-by-one-zero-day-vulnerability

■■■■□ NASA Operational Simulator for Small Satellites.

https://github.com/nasa/nos3

■■■■■ Autorize is a Burpsuite extension to help you automate authorization vulnerabilities!

It auto-repeats all the requests as an authenticated user as well one without a session.

https://github.com/portswigger/autorize

■■■□□ Caesars reportedly paid millions to stop hackers releasing its data.

https://www.engadget.com/caesars-reportedly-paid-millions-to-stop-hackers-releasing-its-data-081052820.html

■■■■□ Bypassing UAC with SSPI Datagram Contexts.

https://splintercod3.blogspot.com/p/bypassing-uac-with-sspi-datagram.html

Technical response by the hackers of MGM.

■■■■■ Data-Leak: 38TB of data accidentally exposed by Microsoft AI researchers

Wiz Research found a data exposure incident on Microsoft’s AI GitHub repository, including over 30,000 internal Microsoft Teams messages – all caused by one misconfigured SAS token.

https://www.wiz.io/blog/38-terabytes-of-private-data-accidentally-exposed-by-microsoft-ai-researchers

■■■■■ Fileless Remote Code Execution on Juniper Firewalls - Blog - VulnCheck.

https://vulncheck.com/blog/juniper-cve-2023-36845

● Real world OSINT challenge.

United States' military loses F35B over its territory. Unable to track, the US government has requested civilian help to find the missing plane.

https://twitter.com/flightradar24/status/1703827299412455459

https://twitter.com/TeamCharleston/status/1703523385475534968

https://www.businessinsider.com/missing-f35-flying-after-pilot-ejected-soviet-jet-cold-war-2023-9