<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 6/21/2023

SHARE

Top News

US puts $10M bounty on Clop as federal agencies confirm data compromises

The U.S. State Department is offering a $10 million bounty related to information on the Clop ransomware gang, which is attributed to broad exploits of the MOVEit transfer vulnerabilities with victims that include federal agencies. The Department of Energy confirmed data was impacted by an attack, and reports from CNN indicate a possible attack is being investigated against the Office of Personnel Management. The U.S. Department of Agriculture is also dealing with a third-party vendor data breach. READ MORE...

Breaches

Hackers warn University of Manchester students' of imminent data leak

The ransomware operation behind a cyberattack on the University of Manchester has begun to email students, warning that their data will soon be leaked after an extortion demand was not paid. The threat actors claim to have stolen 7 TB of data from the University of Manchester during a June 6th cyberattack in an email sent to students and shared with BleepingComputer. READ MORE...

Malware

Black Cat ransomware group wants $4.5m from Reddit or will leak stolen files

The ramifications of a Reddit breach which occurred back in February are now being felt, with the attackers threatening to leak the stolen data. The February attack, billed as a "sophisticated phishing campaign" by Reddit, involved an attempt to swipe credentials and two-factor authentication tokens. One employee was tricked into handing over details, and then reported what had happened to Reddit. Its security team locked things down and began investigating. READ MORE...


Chinese APT15 hackers resurface with new Graphican malware

The Chinese state-sponsored hacking group tracked as APT15 has been observed using a novel backdoor named 'Graphican' in a new campaign between late 2022 and early 2023. APT15, also known as Nickel, Flea, Ke3Chang, and Vixen Panda, are Chinese state hackers targeting important public and private organizations worldwide since at least 2004. Today, the Threat Hunter Team at Symantec, part of Broadcom, reports that APT15's latest campaign targets foreign affairs ministries in Central and South America. READ MORE...

Exploits/Vulnerabilities

Researchers Flag Account Takeover Flaw in Microsoft Azure AD OAuth Apps

Researchers at security startup Descope have discovered a major misconfiguration in Microsoft Azure AD OAuth applications and warned that any business using 'Log in with Microsoft' could be exposed to full account takeover exploits. The security defect, nicknamed nOAuth, is described as an authentication implementation flaw that can affect Microsoft Azure AD multi-tenant OAuth applications. READ MORE...


Chrome and Its Vulnerabilities - Is the Web Browser Safe to Use?

Like all major applications, Google's Chrome suffers from vulnerabilities. During 2022, SecurityWeek reported on 456 vulnerabilities (averaging 38 per month), including nine zero-days. The high number of flaws needing to be patched poses a simple question: is Chrome safe to use? The list is so long it almost becomes boringly repetitive - but it will undoubtedly continue growing through the rest of the year and beyond. The questions raised, however, are not boring. READ MORE...


Schneider Power Meter Vulnerability Opens Door to Power Outages

A security vulnerability in the Schneider Electric ION and PowerLogic power meters has been disclosed: They transmit a user ID and password in plaintext with every message. Given a CVSS vulnerability-severity rating of 8.8 out of 10, the bug would allow an attacker with passive interception capabilities to obtain these credentials, authenticate to the ION/TCP engineering interface (as well as SSH and HTTP interfaces), and change configuration settings or potentially modify firmware. READ MORE...

On This Date

  • ...in 1788, New Hampshire ratifies the U.S. Constitution and is admitted as the ninth state.
  • ...in 1903, artist Al Hirschfeld, famous for his caricatures of stage and screen actors, is born in St. Louis, MO.
  • ...in 1932, film and TV composer Lalo Schifrin ("Mission: Impossible", "Enter the Dragon") is born in Buenos Aires, Argentina.
  • ...in 2004, engineer Burt Rutan's SpaceShipOne becomes the first privately-funded manned vehicle to pass the boundary of space.