<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 7/10/2023

SHARE

Hacking

BreachForums replacement emerges as robust forum for criminal hackers to trade their spoils

Even before the FBI seized domains related to BreachForums, the notorious online bazaar where cybercriminals bought and sold hacked or stolen data, a replacement marketplace was taking shape. Now, less than a month after that high-profile takedown on June 23 involving a consortium of U.S. and law enforcement agencies, the new version of BreachForums is active, growing and facilitating illicit trade in the most sensitive information about millions of individuals and hundreds of organizations. READ MORE...

Software Updates

After Zero-Day Attacks, MOVEit Turns to Security Service Packs

Faced with a barrage of ransomware attacks hitting zero-days in its MOVEit product line, Progress Software late Thursday announced plans to release regular service packs promising a "predictable, simple and transparent process for product and security fixes." Less than a month after the notorious Cl0p ransomware gang started naming organizations hit by MOVEit zero-day exploits, Progress Software rolled out its first service pack with patches for at least three critical security defects. READ MORE...

Malware

Hackers using TrueBot malware for phishing attacks in US, Canada, officials warn

Federal authorities are warning that hackers are leveraging TrueBot malware, also known as Silence Downloader, in phishing attacks against U.S. and Canadian targets, officials including the FBI and Cybersecurity and Infrastructure Security Agency said Thursday. Since late May, malicious actors have been exploiting a known vulnerability in Netwrix Auditor, identified as CVE-2022-31199, for initial access to deliver new TrueBot variants and steal data from targeted entities. READ MORE...


Iranian Cyberspies Target US-Based Think Tank With New macOS Malware

In a recent attack against a US-based think tank, Iranian cyberespionage group Charming Kitten was observed porting a PowerShell backdoor to macOS, Proofpoint reports. The attack started in mid-May with a lure sent to the public media contact for a nuclear security expert at the think tank, requesting feedback on a project and permissions to send a draft for review. READ MORE...


New 'Big Head' ransomware displays fake Windows update alert

Security researchers have dissected a recently emerged ransomware strain named 'Big Head' that may be spreading through malvertising that promotes fake Windows updates and Microsoft Word installers. Two samples of the malware have been analyzed before by cybersecurity company Fortinet, who looked at the infection vector and how the malware executes. READ MORE...

Exploits/Vulnerabilities

CISA warns govt agencies to patch actively exploited Android driver

CISA ordered federal agencies today to patch a high-severity Arm Mali GPU kernel driver privilege escalation flaw added to its list of actively exploited vulnerabilities and addressed with this month's Android security updates. The flaw (tracked as CVE-2021-29256) is a use-after-free weakness that can let attackers escalate to root privileges or gain access to sensitive information on targeted Android devices by allowing improper operations on GPU memory. READ MORE...

On This Date

  • ...in 1850, Vice President Millard Fillmore is sworn in as the 13th president of the United States, following the death of Zachary Taylor the previous day.
  • ...in 1940, Germany begins the first in a three-and-a-half month series of bombing raids against the UK, known as the Battle of Britain.
  • ...in 1943, the U.S. 7th Army, led by General George S. Patton Jr., begins the invasion of Sicily.
  • ...in 1989, Mel Blanc, the voice of dozens of cartoon characters from Warner Brothers, Hanna-Barbera, and more, passes away at the age of 81.