Jorge Laurel
Friday Wrap Up

Friday Wrap Up: 31 May 2024

Jorge Laurel Β· Β·3 min read Β·Issue #24

It’s been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.


πŸš€ TP-Link fixes a critical RCE bug in its popular C5400X gaming router. Stay updated! (Published on 5/27/2024, BleepingComputer). Read More

πŸ”’ Hackers are targeting Check Point VPNs in a campaign to breach enterprise networks. Stay secure! (Published on 5/27/2024, BleepingComputer). Read More

πŸ’³ A Moroccan cybercrime group is stealing up to $100K daily through sophisticated gift card fraud. Be cautious! (Published on 5/27/2024, The Hacker News). Read More

πŸ›‘οΈ New phishing tricks using Cloudflare Workers and HTML smuggling target user credentials. Stay informed! (Published on 5/27/2024, The Hacker News). Read More

🐱 Researchers warn of the CatDDoS botnet exploiting over 80 security flaws for DDoS attacks. Stay alert! (Published on 5/28/2024, The Hacker News). Read More

πŸ” A 4-step approach to mapping and securing your organization’s most critical assets. Enhance your security! (Published on 5/28/2024, The Hacker News). Read More

πŸ“Ί YouTube’s crackdown on adblockers is making videos unwatchable. What’s your take? (Published on 5/28/2024, Gizmodo). Read More

πŸ’» Microsoft links North Korean hackers to new FakePenny ransomware. Stay protected! (Published on 5/28/2024, BleepingComputer). Read More

πŸ”“ Vulnerabilities in Eclipse ThreadX could lead to denial-of-service and code execution. Update now! (Published on 5/29/2024, SecurityWeek). Read More

πŸ“‰ Cooler Master hit by a data breach, exposing 500,000 customers’ information. Stay vigilant! (Published on 5/29/2024, BleepingComputer). Read More

πŸ›‘οΈ Cybercriminals are posing as helpful Stack Overflow users to spread malware. Be cautious! (Published on 5/29/2024, BleepingComputer). Read More

πŸ’° Researchers crack an 11-year-old password, recovering $3 million in bitcoin. Incredible feat! (Published on 5/29/2024, Ars Technica). Read More

🌩️ UniSuper experienced a week-long outage due to a cloud misconfiguration. Learn from their lessons! (Published on 5/30/2024, InformationWeek). Read More

πŸ”§ Critical WordPress plugin flaws are being exploited to inject malicious scripts and backdoors. Patch now! (Published on 5/30/2024, SecurityWeek). Read More

⛏️ RedTail crypto-mining malware now exploiting Palo Alto Networks firewall vulnerability. Stay updated! (Published on 5/30/2024, The Hacker News). Read More

πŸ”’ Data of 560 million Ticketmaster customers for sale after alleged breach. Protect your information! (Published on 5/30/2024, BleepingComputer). Read More

πŸ› οΈ The Pumpkin Eclipse botnet bricked 600,000 routers in a mysterious 2023 event. Stay informed! (Published on 5/30/2024, BleepingComputer). Read More

🚨 OpenAI, Meta, and TikTok disrupt covert influence campaigns from China, Iran, Israel, and Russia using AI tools to manipulate public discourse. (Published on 5/31/2024, The Hacker News). Read More

πŸ”’ ShinyHunters claims to sell Santander Bank data for 30 million customers after a recent data breach. (Published on 5/31/2024, BleepingComputer). Read More

βš–οΈ Law student disciplined for reporting a data breach exposing sensitive files on nearly 800 students at ICCA. (Published on 5/31/2024, ComputerWeekly). Read More

🎣 FlyingYeti APT uses Cookbox malware in phishing campaigns exploiting Ukrainian financial stress. (Published on 5/31/2024, Dark Reading). Read More

and finally in non-cyber or tech news…

⚑ Porsche finally builds a hybrid 911 as part of the 992-generation refresh. Exciting times! (Published on 5/28/2024, Ars Technica). Read More

πŸš— Tesla’s Cybertruck faces 12 more embarrassing fails, turning the futuristic vehicle into a punchline. Watch the viral moments! (Published on 5/30/2024, Gizmodo). Read More


Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!


Disclaimer: The views and opinions expressed in this newsletter are solely those of the author and do not necessarily reflect the official policy or position of any agency of the U.S. government or any other organization. This content is provided for informational purposes only and is not meant to represent the strategies or opinions of any aforementioned entities.