ICYMI: 2023-08-17
Latest Headlines
NoFilter Attack: Sneaky Privilege Escalation Method Bypasses Windows Security
China-Linked Bronze Starlight Group Targeting Gambling Sector with Cobalt Strike Beacons
New Apple iOS 16 Exploit Enables Stealthy Cellular Access Under Fake Airplane Mode
New LABRAT Campaign Exploits GitLab Flaw for Cryptojacking and Proxyjacking Activities
Russian Hackers Use Zulip Chat App for Covert C&C in Diplomatic Phishing Attacks
CISA Adds Citrix ShareFile Flaw to KEV Catalog Due to In-the-Wild Attacks
HHS Launches ‘Digiheals’ Project to Better Protect US Hospitals From Ransomware
ProjectDiscovery Lands $25M Investment for Cloud Security Tech
Google Brings AI Magic to Fuzz Testing With Eye-Opening Results
Rapid7 Says ROI for Ransomware Remains High; Zero-Day Usage Expands
Malicious QR Codes Used in Phishing Attack Targeting US Energy Company
Cisco Patches High-Severity Vulnerabilities in Enterprise Applications
Thousands of Systems Turned Into Proxy Exit Nodes via Malware
CISA Releases Cyber Defense Plan to Reduce RMM Software Risks
Exploitation of Citrix ShareFile Vulnerability Spikes as CISA Issues Warning
Cisco Duo Device Health App Flaw Allows Directory Traversal Attacks
IBM Security Guardium Flaw Let Attacker to Execute Arbitrary Commands
New Phishing Attack Exploits Cloudflare R2 Hosting Service to Steal Cloud Passwords
Microsoft: BlackCat’s Sphynx ransomware embeds Impacket, RemCom
Hackers ask $120,000 for access to multi-billion auction house
Microsoft PowerShell Gallery vulnerable to spoofing, supply chain attacks
Phishing campaign steals accounts for Zimbra email servers worlwide
Thousands of Android APKs use compression trick to thwart analysis
– MTZ