Friday Wrap Up: 31 May 2024
It’s been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.
π TP-Link fixes a critical RCE bug in its popular C5400X gaming router. Stay updated! (Published on 5/27/2024, BleepingComputer). Read More
π Hackers are targeting Check Point VPNs in a campaign to breach enterprise networks. Stay secure! (Published on 5/27/2024, BleepingComputer). Read More
π³ A Moroccan cybercrime group is stealing up to $100K daily through sophisticated gift card fraud. Be cautious! (Published on 5/27/2024, The Hacker News). Read More
π‘οΈ New phishing tricks using Cloudflare Workers and HTML smuggling target user credentials. Stay informed! (Published on 5/27/2024, The Hacker News). Read More
π± Researchers warn of the CatDDoS botnet exploiting over 80 security flaws for DDoS attacks. Stay alert! (Published on 5/28/2024, The Hacker News). Read More
π A 4-step approach to mapping and securing your organization’s most critical assets. Enhance your security! (Published on 5/28/2024, The Hacker News). Read More
πΊ YouTube’s crackdown on adblockers is making videos unwatchable. Whatβs your take? (Published on 5/28/2024, Gizmodo). Read More
π» Microsoft links North Korean hackers to new FakePenny ransomware. Stay protected! (Published on 5/28/2024, BleepingComputer). Read More
π Vulnerabilities in Eclipse ThreadX could lead to denial-of-service and code execution. Update now! (Published on 5/29/2024, SecurityWeek). Read More
π Cooler Master hit by a data breach, exposing 500,000 customers’ information. Stay vigilant! (Published on 5/29/2024, BleepingComputer). Read More
π‘οΈ Cybercriminals are posing as helpful Stack Overflow users to spread malware. Be cautious! (Published on 5/29/2024, BleepingComputer). Read More
π° Researchers crack an 11-year-old password, recovering $3 million in bitcoin. Incredible feat! (Published on 5/29/2024, Ars Technica). Read More
π©οΈ UniSuper experienced a week-long outage due to a cloud misconfiguration. Learn from their lessons! (Published on 5/30/2024, InformationWeek). Read More
π§ Critical WordPress plugin flaws are being exploited to inject malicious scripts and backdoors. Patch now! (Published on 5/30/2024, SecurityWeek). Read More
βοΈ RedTail crypto-mining malware now exploiting Palo Alto Networks firewall vulnerability. Stay updated! (Published on 5/30/2024, The Hacker News). Read More
π Data of 560 million Ticketmaster customers for sale after alleged breach. Protect your information! (Published on 5/30/2024, BleepingComputer). Read More
π οΈ The Pumpkin Eclipse botnet bricked 600,000 routers in a mysterious 2023 event. Stay informed! (Published on 5/30/2024, BleepingComputer). Read More
π¨ OpenAI, Meta, and TikTok disrupt covert influence campaigns from China, Iran, Israel, and Russia using AI tools to manipulate public discourse. (Published on 5/31/2024, The Hacker News). Read More
π ShinyHunters claims to sell Santander Bank data for 30 million customers after a recent data breach. (Published on 5/31/2024, BleepingComputer). Read More
βοΈ Law student disciplined for reporting a data breach exposing sensitive files on nearly 800 students at ICCA. (Published on 5/31/2024, ComputerWeekly). Read More
π£ FlyingYeti APT uses Cookbox malware in phishing campaigns exploiting Ukrainian financial stress. (Published on 5/31/2024, Dark Reading). Read More
and finally in non-cyber or tech news…
β‘ Porsche finally builds a hybrid 911 as part of the 992-generation refresh. Exciting times! (Published on 5/28/2024, Ars Technica). Read More
π Teslaβs Cybertruck faces 12 more embarrassing fails, turning the futuristic vehicle into a punchline. Watch the viral moments! (Published on 5/30/2024, Gizmodo). Read More
Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!
Disclaimer: The views and opinions expressed in this newsletter are solely those of the author and do not necessarily reflect the official policy or position of any agency of the U.S. government or any other organization. This content is provided for informational purposes only and is not meant to represent the strategies or opinions of any aforementioned entities.