Friday Wrap Up: 22 March 2024
It’s been a busy week in cybersecurity and time for a Saturday aka Friday Wrap Up. Here are some of the interesting stories from this past week.
๐ Microsoft steps up security, deprecating 1024-bit RSA keys in Windows TLS. A significant move! (3/18/2024, BleepingComputer) Read more
๐ Chinese ‘Earth Krahang’ hackers breach 70 orgs in a global campaign. (3/18/2024, BleepingComputer) Read more
๐ป Malware distributed via fake Google Sites using HTML smuggling technique. Beware! (3/18/2024, The Hacker News) Read more
๐ก๏ธ Fujitsu suffers data breach, affecting personal and customer info. (3/18/2024, SecurityWeek) Read more
๐ค Sam Altman candidly critiques ChatGPT’s performance. Eye-opening! (3/18/2024, Gizmodo) Read more
๐ง Clever phishing attack deploys NetSupport RAT via Microsoft Office. Stay vigilant! (3/18/2024, The Hacker News) Read more
๐ 19 million plaintext passwords leaked due to Firebase misconfigurations. (3/19/2024, BleepingComputer) Read more
๐ฐ US warns of hackers targeting water systems’ infrastructure. (3/19/2024, BleepingComputer) Read more
๐ GM & LexisNexis face lawsuit over nontransparent sale of driver data to insurers. (3/19/2024, Techdirt) Read more
๐จ๐ณ Chinese APT group hacks 48 government organizations worldwide. (3/19/2024, SecurityWeek) Read more
๐ง Fortra updates critical RCE flaw with a 9.8 CVSS rating. Upgrade advised! (3/19/2024, Dark Reading) Read more
๐ฑ US warns of cyber threats to water systems by Iran and China. (3/20/2024, Dark Reading) Read more
๐ต๏ธ After LockBit and ALPHV takedowns, RaaS groups seek new recruits. (3/20/2024, Dark Reading) Read more
๐ 1 in 4 organizations forced to shut down OT operations due to cyberattacks. (3/20/2024, SecurityWeek) Read more
๐ ๏ธ Atlassian fixes over 2 dozen security flaws, including a critical Bamboo bug. (3/20/2024, The Hacker News) Read more
๐ฐ New BunnyLoader malware variant emerges with stealth and modular tactics. (3/20/2024, The Hacker News) Read more
๐ป Microsoft addresses Windows Server issue causing domain controller crashes. (3/21/2024, BleepingComputer) Read more
๐ Sign1 malware infects 39,000 WordPress sites with ads and redirects. (3/21/2024, BleepingComputer) Read more
๐จ Hackers could unlock millions of hotel doors due to Unsaflok flaw. (3/21/2024, BleepingComputer) Read more
๐ฑ Kenya challenges TikTok on privacy law compliance. (3/22/2024, Dark Reading) Read more
๐ Apple Silicon’s hardware exploit could leak sensitive data. (3/22/2024, Engadget) Read more
๐ก Cable ISP fined $10k for misleading FCC about broadband coverage. (3/22/2024, Ars Technica) Read more
๐ฆ Mozilla patches two exploited Firefox zero-days from Pwn2Own. (3/22/2024, BleepingComputer) Read more
and finally in non-cyber or tech news…
๐ช Check out the best space images of the week, including bizarre Martian dunes and more! (3/22/2024, Gizmodo) Read more
Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!
Disclaimer: The views and opinions expressed in this newsletter are solely those of the author and do not necessarily reflect the official policy or position of any agency of the U.S. government or any other organization. This content is provided for informational purposes only and is not meant to represent the strategies or opinions of any aforementioned entities.