<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 6/1/2023

SHARE

Top News

Yet Another Toyota Cloud Data Breach Jeopardizes Thousands of Customers

Toyota Motor Corp. today announced its discovery of yet another data breach - this time, two misconfigured cloud services were found leaking 260,000 car owners' personal information over a seven-year period. This discovery comes after the car manufacturer conducted an investigation of its cloud features in the wake of announcing earlier in the month that the data of 2.15 million customers was available for over 10 years to anyone on the Internet, also due to a misconfigured cloud bucket. READ MORE...

Hacking

SAS Airlines hit by $3 million ransom demand following DDoS attacks

Scandinavian Airlines (SAS) has received a US $3 million ransom demand following a prolonged campaign of distributed denial-of-service (DDoS) attacks against its online services. As Cybernews reports, the Anonymous Sudan hacktivist group published their financial demand on its Telegram channel after disrupting the airline's website and smartphone app. READ MORE...

Software Updates

Moxa Patches MXsecurity Vulnerabilities That Could Be Exploited in OT Attacks

Organizations using Moxa's MXsecurity product have been informed about two potentially serious vulnerabilities that could be exploited by malicious hackers targeting operational technology (OT) networks. MXsecurity is an industrial network security management software designed for OT environments. Moxa patched the security holes with the release of version 1.0.1. READ MORE...

Malware

Terminator antivirus killer is a vulnerable Windows driver in disguise

A threat actor known as Spyboy is promoting a tool called "Terminator" on a Russian-speaking hacking forum that can allegedly terminate any antivirus, XDR, and EDR platform. However, CrowdStrike says that it's just a fancy Bring Your Own Vulnerable Driver (BYOVD) attack. Terminator is allegedly capable of bypassing 24 different antivirus (AV), Endpoint Detection and Response (EDR), and Extended Detection and Response (XDR) security solutions, including Windows Defender. READ MORE...

Exploits/Vulnerabilities

Organizations Warned of Backdoor Feature in Hundreds of Gigabyte Motherboards

Researchers at firmware and hardware security company Eclypsium discovered that hundreds of motherboard models made by Taiwanese computer components giant Gigabyte include backdoor functionality that could pose a significant risk to organizations. The backdoor was discovered by Eclypsium based on behavior associated with the functionality, which triggered an alert in the company's platform. READ MORE...


Researchers tell owners to "assume compromise" of unpatched Zyxel firewalls

Firewalls made by Zyxel are being wrangled into a destructive botnet, which is taking control of them by exploiting a recently patched vulnerability with a severity rating of 9.8 out of a possible 10. "At this stage if you have a vulnerable device exposed, assume compromise," officials from Shadowserver, an organization that monitors Internet threats in real time, warned four days ago. The officials said the exploits are coming from a botnet that's similar to Mirai. READ MORE...


Exploit released for RCE flaw in popular ReportLab PDF library

A researcher has published a working exploit for a remote code execution (RCE) flaw impacting ReportLab Toolkit, a popular Python library used by numerous projects to generate PDF files from HTML input. The proof-of-concept (PoC) exploit for the flaw, tracked as CVE-2023-33733, was published yesterday on GitHub along with a write-up that provides technical details about the vulnerability, thus increasing the likelihood of in-the-wild exploitation. READ MORE...

On This Date

  • ...in 1779, the court-martial of Benedict Arnold convenes in Philadelphia, PA.
  • ...in 1812, President Madison asks Congress to declare war on England.
  • ...in 1958, During a French political crisis over the military and civilian revolt in Algeria, Charles de Gaulle is called out of retirement to head a new emergency government.
  • ...in 1980, CNN (Cable News Network), the world's first 24-hour television news network, makes its debut.