<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 1/6/2023

SHARE

Top News

First LastPass, now Slack and CircleCI. The hacks go on (and will likely worsen)

In the past 24 hours, the world has learned of serious breaches hitting chat service Slack and software testing and delivery company CircleCI, though giving the companies' opaque wording-"security issue" and "security incident," respectively-you'd be forgiven for thinking these events were minor. The compromises come two weeks after password manager LastPass disclosed its own security failure. READ MORE...

Breaches

Rackspace: Customer email data accessed in ransomware attack

Rackspace revealed on Thursday that attackers behind last month's incident accessed some of its customers' Personal Storage Table (PST) files which can contain a wide range of information, including emails, calendar data, contacts, and tasks. This update comes after Rackspace confirmed that the Play ransomware operation was behind the cyberattack that took down its hosted Microsoft Exchange environment in December. READ MORE...


Burger Chain Five Guys Discloses Data Breach Impacting Job Applicants

US burger chain Five Guys has disclosed a data breach impacting job applicants, and the company may be facing a lawsuit over the cybersecurity incident. Five Guys appears to have started informing customers on December 29, when it also notified state authorities about the incident. It's not uncommon for companies to disclose cybersecurity incidents just before or during major holidays in an effort to avoid too much media coverage. READ MORE...

Hacking

Russian Turla Cyberspies Leveraged Other Hackers' USB-Delivered Malware

In a recent attack against a Ukrainian organization, Russian state-sponsored threat actor Turla leveraged legacy Andromeda malware likely deployed by other hackers via an infected USB drive, Mandiant reports. Active since at least 2006 and linked to the Russian government, the cyberespionage group is also tracked as Snake, Venomous Bear, Krypton, and Waterbug, and has been historically associated with the use of the ComRAT malware. READ MORE...

Software Updates

January 2023 Patch Tuesday forecast: Procrastinate at your own risk

The start of a new year means it's time to start working towards achieving your annual resolutions. Based on the headlines from the December news media, perhaps the most important point is don't procrastinate! We should all have some sort of goal around improving the speed or efficiency in securing our systems so let's get too it. Microsoft disclosed two zero-day vulnerabilities back in September associated with the ProxyNotShell attacks. READ MORE...


First Android update of 2023 patches 60 vulnerabilities

Google has published its first security bulletin of 2023 with details of security vulnerabilities affecting Android devices. Patch level 2023-01-01 includes 20 issues and patch level 2023-01-05 includes fixes for another 40 issues. The Android security patch level refers to a monthly manifest of security patches rolled out by Google in an effort to close up security holes and malicious code exploits in the Android OS. READ MORE...

Malware

Bitdefender releases free MegaCortex ransomware decryptor

Antivirus company Bitdefender has released a decryptor for the MegaCortex ransomware family, making it possible for victims of the once notorious gang to restore their data for free. The creation of the decryptor was the combined work of Bitdefender analysts and experts from Europol, the NoMoreRansom Project, and the Zürich Public Prosecutor's Office and Cantonal Police. READ MORE...

Exploits/Vulnerabilities

ChatGPT Artificial Intelligence: An Upcoming Cybersecurity Threat?

ChatGPT will not write a malware code if asked to write one, it does have guardrails, such as security protocols to identify inappropriate requests. But in the past few days, developers have tried various ways to bypass the protocols and succeeded to get the desired output. If a prompt is detailed enough to explain to the bot steps of writing the malware instead of a direct prompt, it will answer the prompt, effectively constructing malware on demand. READ MORE...


Qualcomm UEFI Flaws Expose Microsoft, Lenovo, Samsung Devices to Attacks

Many devices made by Microsoft, Lenovo, Samsung and likely others are affected by potentially serious UEFI firmware vulnerabilities in Qualcomm Snapdragon chips. Qualcomm announced this week the availability of patches for a dozen vulnerabilities, including five connectivity- and boot-related issues discovered by researchers at firmware security company Binarly. READ MORE...

On This Date

  • ...in 1838, Samuel Morse first demonstrates the telegraph.
  • ...in 1907, Maria Montessori opens her first school and daycare center in Rome, Italy.
  • ...in 1912, German geophysicist Alfred Wegener first presents his theory of continental drift at a lecture in Frankfurt.
  • ...in 1936, Porky Pig makes his world debut in a Warner Brothers cartoon, "Gold Diggers of '49."