TheCyberWire.com Newsletters

 "GPS interference (and other forms of deception)."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 04 December 2023, 1326 UTC.

Content and Source:  https://thecyberwire.com/newsletters/daily-briefing ("TheCyberWire.com Newsletters").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

ISSUES

V12 | Issue 228 | 12.1.23

GPS interference (and other forms of deception).

GPS interference is attributed to Iran. Meta identifies and removes Chinese and Russian accounts and groups for coordinated inauthenticity. Twisted Spider observed conducting new ransomware campaigns. A new ScrubCrypt variant. Staples sustains a cyberattack. Ukraine inserts a speech by President Zelenskyy into Russian television programming in Crimea.

V12 | Issue 227 | 11.30.23

The ongoing convergence of crime and espionage.

"SugarGh0st" RAT prospects targets in Uzbekistan and South Korea. cam steals travel company customer credentials. ScamClub's bogus alert pop-ups. Okta breach update. Cryptomixer taken down in international law enforcement operation. "SugarGh0st" RAT prospects targets in Uzbekistan and South Korea. Black Basta's take to-date. CERT-EU warns member states of Russian cyber threat. NATO cyber exercise runs against the background of Russia's hybrid war. NoName057(16)'s DDoSia project is looking for volunteers.

V12 | Issue 226 | 11.29.23

Control systems and business systems under attack at utilities.

Qlik Sense installations hit with Cactus ransomware. Report: Google Workspace vulnerability discovered. CISA and the WaterISAC respond to the Aliquippa cyberattack. Attacks against infrastructure operators hit business systems. Major ransomware gang taken down in international sweep. Hacktivist auxiliary compromises Russian media site.

V12 | Issue 225 | 11.28.23

Target selection, by criminals, hacktivists, and intelligence services.

WildCard deploys SysJoker malware. DPRK cryptocurrency theft. Ransomware attacks against healthcare organizations. The status of Ukraine's IT Army. Russian news outlet outs Killmilk. Former deputy head of SSSCIP arrested. Smartphones as a source of battlefield OSINT. Generative AI and security. A snapshot of global threats.

V12 | Issue 224 | 11.27.23

Bots, botnets, and supply-chain attacks.

Neanderthals and the Telekopye bot. Mirai-based botnet activity. North Korea's increased attention to supply-chain attacks. Rhysida's action against British, Chinese targets. Iranian hacktivists claim an attack on a Pennsylvania water utility. Sandworm activity puts European power utilities on alert. Russia places Meta spokesman on its wanted list. Former director of SSSCIP arrested, released on bail.

Load More

BleepingComputer.com

"New proxy malware targets Mac users through pirated software."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.

Accessed on 03 December 2023, 1544 UTC.

Content and Source:  https://www.bleepingcomputer.com/ ("BleepingComputer.com").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

LATEST ARTICLES

• 
   
  SECURITY, APPLE

New proxy malware targets Mac users through pirated software

• Cybercriminals are targeting Mac users with a new proxy trojan malware bundled with popular, copyrighted macOS software being offered on warez sites.

  • BILL TOULAS
   
  • DECEMBER 03, 2023
   
  • 10:12 AM
   
  •  0
• 
   
  SECURITY

Over 20,000 vulnerable Microsoft Exchange servers exposed to attacks

• Tens of thousands of Microsoft Exchange email servers in Europe, the U.S., and Asia exposed on the public internet are vulnerable to remote code execution flaws.

  • IONUT ILASCU
   
  • DECEMBER 02, 2023
   
  • 01:54 PM
   
  •  0
• 
   
  GOOGLE, SECURITY

Google Chrome's new cache change could boost performance

• Google is introducing a significant change to Chrome's Back/Forward Cache (BFCache) behavior, allowing web pages to be stored in the cache, even if a webmaster specifies not to store a page in the browser's cache.

  • MAYANK PARMAR
   
  • DECEMBER 02, 2023
   
  • 11:09 AM
   
  •  1
• 
   
  SECURITY, HEALTHCARE

US Health Dept urges hospitals to patch critical Citrix Bleed bug

• The U.S. Department of Health and Human Services (HHS) warned hospitals this week to patch the critical 'Citrix Bleed' Netscaler vulnerability actively exploited in attacks.

  • SERGIU GATLAN
   
  • DECEMBER 02, 2023
   
  • 10:09 AM
   
  •  0
• 
   
  SECURITY

The Week in Ransomware - December 1st 2023 - Police hits affiliates

• An international law enforcement operation claims to have dismantled a ransomware affiliate operation in Ukraine, which was responsible for attacks on organizations in 71 countries.

  • LAWRENCE ABRAMS
   
  • DECEMBER 01, 2023
   
  • 05:11 PM
   
  •  1
• 
   
  SECURITY

TrickBot malware dev pleads guilty, faces 35 years in prison

• On Thursday, a Russian national pleaded guilty to charges related to his involvement in developing and deploying the Trickbot malware, which was used in attacks against hospitals, companies, and individuals in the United States and worldwide.

  • SERGIU GATLAN
   
  • DECEMBER 01, 2023
   
  • 04:51 PM
   
  •  0
• 
   
  SECURITY

Hackers use new Agent Raccoon malware to backdoor US targets

• A novel malware named 'Agent Raccoon' (or Agent Racoon) is being used in cyberattacks against organizations in the United States, the Middle East, and Africa.

  • BILL TOULAS
   
  • DECEMBER 01, 2023
   
  • 02:15 PM
   
  •  0
• 
   
  SECURITY

French government recommends against using foreign chat apps

• Prime Minister of France Élisabeth Borne signed a circular last week requesting all government employees to uninstall foreign communication apps such as Signal, WhatsApp, and Telegram by December 8, 2023, in favor of a French messaging app named 'Olvid.'

  • BILL TOULAS
   
  • DECEMBER 01, 2023
   
  • 01:12 PM
   
  •  5
• 
   
  SECURITY

VMware fixes critical Cloud Director auth bypass unpatched for 2 weeks

• VMware has fixed a critical authentication bypass vulnerability in Cloud Director appliance deployments, a bug that was left unpatched for over two weeks since it was disclosed on November 14th.

  • SERGIU GATLAN
   
  • DECEMBER 01, 2023
   
  • 12:58 PM
   
  •  0
• 
   
  MICROSOFT

Windows 10 KB5032278 update adds Copilot AI assistant, fixes 13 bugs

• Microsoft has started rolling out its Copilot AI assistant to Windows 10 with the KB5032278 November 2023 non-security preview update for systems running Windows 10, version 22H2.

  • SERGIU GATLAN
   
  • DECEMBER 01, 2023
   
  • 12:10 PM
   
  •  2
• 
   
  SECURITY

LogoFAIL attack can install UEFI bootkits through bootup logos

• Multiple security vulnerabilities collectively named LogoFAIL affect image-parsing components in the UEFI code from various vendors. Researchers warn that they could be exploited to hijack the execution flow of the booting process and to deliver bootkits.

  • BILL TOULAS
   
  • NOVEMBER 30, 2023
   
  • 10:08 PM
   
  •  0
• 
   
  SECURITY

US govt sanctions North Korea’s Kimsuky hacking group

• The Treasury Department's Office of Foreign Assets Control (OFAC) has sanctioned the North Korean-backed Kimsuky hacking group for stealing intelligence in support of the country's strategic goals.

  • SERGIU GATLAN
   
  • NOVEMBER 30, 2023
   
  • 05:08 PM
   
  •  2
• 
   
  SECURITY

WhatsApp's new Secret Code feature hides your locked chats

• WhatsApp has introduced a new Secret Code feature that allows users to hide their locked chats by setting a custom password.

  • SERGIU GATLAN
   
  • NOVEMBER 30, 2023
   
  • 04:32 PM
   
  •  0
• 
   
  SECURITY

Get 20% off Emsisoft's Enterprise Security EDR solution for the holidays

• Emsisoft is having a holiday deal where you can get 20% off 1-year licenses of the Emsisoft Enterprise Security EDR solution through December 17th, 2023, with no license limits.

  • LAWRENCE ABRAMS
   
  • NOVEMBER 30, 2023
   
  • 04:24 PM
   
  •  0
• 
   
  APPLE, SECURITY

Apple fixes two new iOS zero-days in emergency updates

• Apple released emergency security updates to fix two zero-day vulnerabilities exploited in attacks and impacting iPhone, iPad, and Mac devices, reaching 20 zero-days patched since the start of the year.

  • SERGIU GATLAN
   
  • NOVEMBER 30, 2023
   
  • 02:42 PM
   
  •  0
• 
   
  SECURITY, HEALTHCARE

Capital Health Hospitals hit by cyberattack causing IT outages

• Capital Health hospitals and physician offices across New Jersey are experiencing IT outages after a cyberattack hit the non-profit organization's network earlier this week.

  • SERGIU GATLAN
   
  • NOVEMBER 30, 2023
   
  • 02:12 PM
   
  •  0

• 1
 
• 2
 
• 3
 
• 4
 
• 5
 

VIEW MORE