Jorge Laurel
Friday Wrap Up

Friday Wrap Up: 22 March 2024

Jorge Laurel ยท ยท3 min read ยทIssue #11

It’s been a busy week in cybersecurity and time for a Saturday aka Friday Wrap Up. Here are some of the interesting stories from this past week.


๐Ÿ” Microsoft steps up security, deprecating 1024-bit RSA keys in Windows TLS. A significant move! (3/18/2024, BleepingComputer) Read more

๐ŸŒ Chinese ‘Earth Krahang’ hackers breach 70 orgs in a global campaign. (3/18/2024, BleepingComputer) Read more

๐Ÿ’ป Malware distributed via fake Google Sites using HTML smuggling technique. Beware! (3/18/2024, The Hacker News) Read more

๐Ÿ›ก๏ธ Fujitsu suffers data breach, affecting personal and customer info. (3/18/2024, SecurityWeek) Read more

๐Ÿค– Sam Altman candidly critiques ChatGPT’s performance. Eye-opening! (3/18/2024, Gizmodo) Read more

๐Ÿ“ง Clever phishing attack deploys NetSupport RAT via Microsoft Office. Stay vigilant! (3/18/2024, The Hacker News) Read more

๐Ÿ”’ 19 million plaintext passwords leaked due to Firebase misconfigurations. (3/19/2024, BleepingComputer) Read more

๐Ÿšฐ US warns of hackers targeting water systems’ infrastructure. (3/19/2024, BleepingComputer) Read more

๐Ÿš— GM & LexisNexis face lawsuit over nontransparent sale of driver data to insurers. (3/19/2024, Techdirt) Read more

๐Ÿ‡จ๐Ÿ‡ณ Chinese APT group hacks 48 government organizations worldwide. (3/19/2024, SecurityWeek) Read more

๐Ÿ”ง Fortra updates critical RCE flaw with a 9.8 CVSS rating. Upgrade advised! (3/19/2024, Dark Reading) Read more

๐Ÿšฑ US warns of cyber threats to water systems by Iran and China. (3/20/2024, Dark Reading) Read more

๐Ÿ•ต๏ธ After LockBit and ALPHV takedowns, RaaS groups seek new recruits. (3/20/2024, Dark Reading) Read more

๐Ÿ›‘ 1 in 4 organizations forced to shut down OT operations due to cyberattacks. (3/20/2024, SecurityWeek) Read more

๐Ÿ› ๏ธ Atlassian fixes over 2 dozen security flaws, including a critical Bamboo bug. (3/20/2024, The Hacker News) Read more

๐Ÿฐ New BunnyLoader malware variant emerges with stealth and modular tactics. (3/20/2024, The Hacker News) Read more

๐Ÿ’ป Microsoft addresses Windows Server issue causing domain controller crashes. (3/21/2024, BleepingComputer) Read more

๐Ÿ”“ Sign1 malware infects 39,000 WordPress sites with ads and redirects. (3/21/2024, BleepingComputer) Read more

๐Ÿจ Hackers could unlock millions of hotel doors due to Unsaflok flaw. (3/21/2024, BleepingComputer) Read more

๐Ÿ“ฑ Kenya challenges TikTok on privacy law compliance. (3/22/2024, Dark Reading) Read more

๐Ÿ Apple Silicon’s hardware exploit could leak sensitive data. (3/22/2024, Engadget) Read more

๐Ÿ“ก Cable ISP fined $10k for misleading FCC about broadband coverage. (3/22/2024, Ars Technica) Read more

๐ŸฆŠ Mozilla patches two exploited Firefox zero-days from Pwn2Own. (3/22/2024, BleepingComputer) Read more

and finally in non-cyber or tech news…

๐Ÿช Check out the best space images of the week, including bizarre Martian dunes and more! (3/22/2024, Gizmodo) Read more


Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!


Disclaimer: The views and opinions expressed in this newsletter are solely those of the author and do not necessarily reflect the official policy or position of any agency of the U.S. government or any other organization. This content is provided for informational purposes only and is not meant to represent the strategies or opinions of any aforementioned entities.