Jorge Laurel
Friday Wrap Up

Friday Wrap Up: 30 August 2024

Jorge Laurel Β· Β·3 min read Β·Issue #41

It’s been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.


Cybersecurity Incidents and Alerts:

🚨 Seattle-Tacoma Airport cyberattack disrupts IT systems, causing flight delays and reservation check-in issues. (Published on 8/26/2024, BleepingComputer). Read More

πŸ‘₯ 750M fake Microsoft accounts created as cybercriminals exploit Greasy Opal to bypass security measures. (Published on 8/26/2024, Dark Reading). Read More

πŸ”’ Patelco Credit Union data breach impacts 726,000 customers due to a ransomware attack. (Published on 8/26/2024, BleepingComputer). Read More

⚠️ Chinese Volt Typhoon group exploits security flaw in Versa Director, targeting global IT sectors. (Published on 8/27/2024, The Hacker News). Read More

Software Vulnerabilities and Threat Intelligence:

πŸ”„ Windows Downdate tool allows attackers to ‘unpatch’ systems, reintroducing vulnerabilities. (Published on 8/27/2024, BleepingComputer). Read More

πŸ’» WPML WordPress plugin vulnerability allows remote code execution on over 1 million websites. (Published on 8/27/2024, SecurityWeek). Read More

πŸ’° Google raises Chrome bug bounty rewards to a maximum of $250,000 for critical security flaw discoveries. (Published on 8/28/2024, BleepingComputer). Read More

Data Exposures and Corporate Security:

πŸ–₯️ Hundreds of exposed LLM servers threaten corporate and health data security, highlighting vulnerability risks. (Published on 8/28/2024, Dark Reading). Read More

πŸ” Censys finds exposed servers as Volt Typhoon APT exploits vulnerabilities, posing significant risks to service providers. (Published on 8/28/2024, SecurityWeek). Read More

Browser Security and Espionage:

πŸ›‘οΈ Russian hackers exploit Safari and Chrome flaws, launching sophisticated malware attacks. (Published on 8/29/2024, The Hacker News). Read More

πŸ’Ό Dick’s Sporting Goods discloses data breach, exposing sensitive information in its IT systems. (Published on 8/29/2024, SecurityWeek). Read More

πŸ“‰ Google identifies Russian APT reusing exploits from spyware vendors like NSO Group and Intellexa. (Published on 8/29/2024, SecurityWeek). Read More

🌐 North Korean hackers exploit Chrome zero-day to deploy a rootkit after gaining SYSTEM privileges. (Published on 8/30/2024, BleepingComputer). Read More

Emerging Threats and Cyber Tactics:

πŸ•΅οΈβ€β™‚οΈ Russia’s Midnight Blizzard APT mirrors commercial spyware tactics, targeting Mongolian government websites. (Published on 8/30/2024, Dark Reading). Read More

🧩 β€˜Voldemort’ malware campaign uses tax authority impersonation to target organizations globally. (Published on 8/30/2024, Dark Reading). Read More

and finally in some non-cyber news…we all need a little break from the overwhelming cyber news…

Entertainment and Culture:

🎬 George R.R. Martin discusses issues with ‘House of the Dragon’, reflecting on the series’ development challenges. (Published on 8/30/2024, Gizmodo). Read More

πŸ“Έ Explore the best nature images of the year, featuring stunning captures of wildlife like jaguars, spiders, and jackdaws. (Published on 8/28/2024, Gizmodo). Read More

Business and Innovation:

πŸ›‹οΈ Ikea launches classifieds platform to compete with Craigslist, offering a space for customers to buy and sell used furniture. (Published on 8/26/2024, Ars Technica). Read More


Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!


Disclaimer: The views and opinions expressed in this newsletter are solely those of the author and do not necessarily reflect the official policy or position of any agency of the U.S. government or any other organization. This content is provided for informational purposes only and is not meant to represent the strategies or opinions of any aforementioned entities.