Latest News Articles
--- TLP:WHITE ---
News
− A Data Exfiltration Attack Scenario: The Porsche Experience
As part of Checkmarx's mission to help organizations develop and deploy secure software, the Security Research team started looking at the security posture of major car manufacturers. Porsche has a well-established Vulnerability Reporting Policy (Disclosure Policy).
https://thehackernews.com/2023/07/a-data-exfiltration-attack-scenario.html− CISA Analyzes Malware Used in Barracuda ESG Attacks
CISA has shared analysis reports on three malware families obtained from an organization hacked via a recent Barracuda ESG vulnerability.
https://www.cisa.gov/news-events/alerts/2023/07/28/cisa-releases-malware-analysis-reports-barracuda-backdoors− China's APT31 Suspected in Attacks on Air-Gapped Systems in Eastern Europe
A nation-state actor with links to China is suspected of being behind a series of attacks against industrial organizations in Eastern Europe that took place last year to siphon data stored on air-gapped systems. Cybersecurity company Kaspersky attributed the intrusions with medium to high confidence to a hacking crew called APT31, which is also tracked under the monikers Bronze Vinewood.
https://thehackernews.com/2023/08/chinas-apt31-suspected-in-attacks-on.htmlVulnerabilities
− Exploitation of Recent Citrix ShareFile RCE Vulnerability Begins
The first attempts to exploit CVE-2023-24489, a recent critical Citrix ShareFile remote code execution vulnerability, have been observed.
https://www.securityweek.com/exploitation-of-recent-citrix-sharefile-rce-vulnerability-begins/− Second Ivanti EPMM Zero-Day Vulnerability Exploited in Targeted Attacks
Ivanti EPMM customers have been warned of CVE-2023-35081, a second zero-day vulnerability that has been exploited in targeted attacks.
https://www.securityweek.com/second-ivanti-epmm-zero-day-vulnerability-exploited-in-targeted-attacks/− Researchers say more than 900,000 MikroTik routers vulnerable to hackers
Latvia-based MikroTik is a major network equipment manufacturer that produces some of the most popular routers in the world. On July 20, the company patched a vulnerability – CVE-2023-30799 – in its latest update, but didn’t publish an advisory about the fixes.
https://therecord.media/more-than-900000-mikrotik-routers-vulnerable-to-new-bugCommunity News
− Inside the fight against hackers who disrupted hospitals and jeopardized lives
Researchers in Microsoft discuss their campaign against Cobalt Strike used as malware.
https://news.microsoft.com/source/features/work-life/inside-the-fight-against-hackers-who-disrupted-hospitals-and-jeopardized-lives/--- TLP:WHITE ---