Security Sunday 2023 | Week 35

MSSQL Databases Under Fire From FreeWorld Ransomware.
https://www.darkreading.com/attacks-breaches/mssql-databases-under-fire-from-freeworld-ransomware

Identity services provider Okta on Friday warned of social engineering attacks orchestrated by threat actors to obtain elevated administrator permissions.
https://thehackernews.com/2023/09/okta-warns-of-social-engineering.html

Exploit released for critical VMware SSH auth bypass vulnerability.
https://www.bleepingcomputer.com/news/security/exploit-released-for-critical-vmware-ssh-auth-bypass-vulnerability/

Contain Yourself: Staying Undetected Using the Windows Container Isolation Framework
https://www.deepinstinct.com/blog/contain-yourself-staying-undetected-using-the-windows-container-isolation-framework

Hackers Exploit Adobe ColdFusion Vulnerabilities to Deploy Malware.
https://www.hackread.com/hackers-adobe-coldfusion-vulnerabilities-malware/

Czech banks under attack, Polish banks also reported outages. A cyber DDoS attack from Russia is behind it.
https://czechdaily.cz/two-czech-banks-experience-service-outages-due-to-cyber-attacks/

Chinese Hacking Group Exploits Barracuda Zero-Day to Target Government, Military, and Telecom.
https://www.mandiant.com/resources/blog/unc4841-post-barracuda-zero-day-remediation

Hacking campaign brute-forces Cisco VPNs to breach networks.
https://www.rapid7.com/blog/post/2023/08/29/under-siege-rapid7-observed-exploitation-of-cisco-asa-ssl-vpns/

Hackers exploit critical Juniper RCE bug chain after PoC release
https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-juniper-rce-bug-chain-after-poc-release/

Russian APT Intensifies Cyber Espionage Activities Amid Ukrainian Counter-Offensive.
https://www.infosecurity-magazine.com/news/russian-apt-cyber-espionage/