Welcome to Security Sunday – Week 35,

our weekly IT Security Recap (28. 8. — 3. 9. 2023)

We compile noteworthy news incidents and vulnerabilities from the past week, shedding light on the ongoing challenges in maintaining digital security.

Data Leak

  1. IT Contractor Data Breach Affects 47,000 Met Police Personnel
    https://www.hackread.com/it-contractor-data-breach-met-police-personnel/

  2. Paramount discloses data breach following security incident.
    https://www.bleepingcomputer.com/news/security/paramount-discloses-data-breach-following-security-incident/

  3. Personal, Health Information of 1.2 Million Stolen in PurFoods Ransomware Attack.
    https://www.securityweek.com/personal-health-information-of-1-2-million-stolen-in-purfoods-ransomware-attack/

zakpatrikcz IT Contractor Data Breach f1ce6ff2 41d2 4ab7 87f6 5490e69a95e0
zakpatrikcz database system under ransomware atttack 42296248 49a8 49eb 8b97 4b5b0782529b

Ransomware

  1. MSSQL Databases Under Fire From FreeWorld Ransomware.
    https://www.darkreading.com/attacks-breaches/mssql-databases-under-fire-from-freeworld-ransomware

Vulnerability

  1. Identity services provider Okta on Friday warned of social engineering attacks orchestrated by threat actors to obtain elevated administrator permissions.
    https://thehackernews.com/2023/09/okta-warns-of-social-engineering.html

  2. Exploit released for critical VMware SSH auth bypass vulnerability.
    https://www.bleepingcomputer.com/news/security/exploit-released-for-critical-vmware-ssh-auth-bypass-vulnerability/

  3. Contain Yourself: Staying Undetected Using the Windows Container Isolation Framework
    https://www.deepinstinct.com/blog/contain-yourself-staying-undetected-using-the-windows-container-isolation-framework

  4. Hackers Exploit Adobe ColdFusion Vulnerabilities to Deploy Malware.
    https://www.hackread.com/hackers-adobe-coldfusion-vulnerabilities-malware/

zakpatrikcz Exploit for critical vulnerability e7dcf2e4 b423 4fba 9ac4 b7588d7fd406
zakpatrikcz DDoS cyber attack af95381d a94e 49b2 ba0b f9ce1ef88f2c

Cyber Attack

  1. Czech banks under attack, Polish banks also reported outages. A cyber DDoS attack from Russia is behind it.
    https://czechdaily.cz/two-czech-banks-experience-service-outages-due-to-cyber-attacks/

  2. Chinese Hacking Group Exploits Barracuda Zero-Day to Target Government, Military, and Telecom.
    https://www.mandiant.com/resources/blog/unc4841-post-barracuda-zero-day-remediation

  3. Hacking campaign brute-forces Cisco VPNs to breach networks.
    https://www.rapid7.com/blog/post/2023/08/29/under-siege-rapid7-observed-exploitation-of-cisco-asa-ssl-vpns/

  4. Hackers exploit critical Juniper RCE bug chain after PoC release
    https://www.bleepingcomputer.com/news/security/hackers-exploit-critical-juniper-rce-bug-chain-after-poc-release/

  5. Russian APT Intensifies Cyber Espionage Activities Amid Ukrainian Counter-Offensive.
    https://www.infosecurity-magazine.com/news/russian-apt-cyber-espionage/

Social Engineering

  1. New Research Exposes Airbnb as Breeding Ground For Cybercrime.
    https://slashnext.com/blog/how-cybercriminals-abuse-airbnb-for-fraudulent-activities/
zakpatrikcz social engineering 8f2bb24f 03f0 43c0 9520 875075d9a504

 

Interested in cyber security? Check out other episodes of our weekly Security Sunday series at sysnetshield.com