<img src="https://secure.ruth8badb.com/159098.png" alt="" style="display:none;">

IT Security Newsletter - 8/22/2024

SHARE

Breaches

Hacker leaks upcoming episodes of Netflix shows online following security breach

A production partner of Netflix has suffered a serious security breach which has resulted in yet-to-be-released episodes of popular shows to be leaked online. As Variety reports, the security breach occurred at media localisation company Iyuno which confirmed on August 9 that it had suffered a "security issue, involving unauthorized access to confidential content." Low-resolution footage with timestamps and visible watermarks have been posted on Twitter, 4Chan, and torrent sites. READ MORE...


Microchip Technology operations, order fulfillment disrupted by cyberattack

Microchip Technology's manufacturing facilities, IT systems and order fulfillment were disrupted by a cyberattack, the Arizona-based chipmaker said Tuesday in a securities filing. "As a result of the incident, certain of the company's manufacturing facilities are operating at less than normal levels and the company's ability to fulfill orders is currently impacted," Microchip President and CEO Ganesh Moorthy said in the filing with the Securities and Exchange Commission. READ MORE...

Hacking

U.S. charges Karakurt extortion gang's "cold case" negotiator

A member of the Russian Karakurt ransomware group has been charged in the U.S. for money laundering, wire fraud, and extortion crimes. An investigation from the FBI uncovered that 33-year old Deniss Zolotarjovs was a member of the Karakurt extortion operation that compromised company systems, stole data, and then demanded a ransom from the victims under the threat of leaking the data publicly or selling it to other cybercriminals. READ MORE...


Taiwan University Under Fire From Unique DLL Backdoor

A never-before-seen backdoor, dubbed Msupedge, is targeting victims in Taiwan, using a unique communications technique. After Symantec researchers caught the malware being deployed in an attack on a Taiwan university, they determined it communicates with its command-and-control (C2) server via DNS traffic - which is a known, but infrequently seen technique, according to a Symantec blog post this week. READ MORE...

Software Updates

Cisco Patches High-Severity Vulnerability Reported by NSA

Cisco on Wednesday announced patches for multiple vulnerabilities across its products, including a high-severity bug in its enterprise collaboration solutions. Tracked as CVE-2024-20375, the high-severity issue (CVSS score of 8.6) impacts the SIP call processing function of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) and can be exploited remotely, without authentication. READ MORE...


Atlassian Patches Vulnerabilities in Bamboo, Confluence, Crowd, Jira

Atlassian has published its August 2024 security bulletin, which details nine high-severity vulnerabilities impacting Bamboo, Confluence, Crowd, and Jira products. Bamboo Data Center and Server received patches for two high-severity flaws, including an authenticated remote code execution bug tracked as CVE-2024-21689. The second issue, a denial-of-service (DoS) security defect, impacts the Bouncy Castle Java dependency used by the product. READ MORE...

Malware

Chinese Threat Actors Use MSI Files to Bypass Windows, VT Detection

Chinese language hackers are taking advantage of the Windows Installer (MSI) file format to bypass standard security checks. Hackers are known to deliver malware in the same sorts of familiar formats: executables, archive and Microsoft Office files, and so on. A new malware loader targeting Chinese and Korean speakers, which researchers from Cyberint have labeled "UULoader," comes in the somewhat less common MSI form. READ MORE...

Information Security

Google patches actively exploited zero-day in Chrome. Update now!

Google has released an update for its Chrome browser which includes a patch for a vulnerability that Google says is already being exploited, known as a zero-day vulnerability. Google has fixed that zero-day with the release of versions 128.0.6613.84/.85 for Windows/macOS and 128.0.6613.84 for Linux that will be rolled out to all users over the coming weeks. Besides the zero-day, this update contains 37 other security fixes, as well as Google Lens for desktop. READ MORE...

Exploits/Vulnerabilities

Novel technique allows malicious apps to escape iOS and Android guardrails

Phishers are using a novel technique to trick iOS and Android users into installing malicious apps that bypass safety guardrails built by both Apple and Google to prevent unauthorized apps. Both mobile operating systems employ mechanisms designed to help users steer clear of apps that steal their personal information, passwords, or other sensitive data. iOS bars the installation of all apps other than those available in its App Store, an approach widely known as the Walled Garden. READ MORE...

On This Date

  • ...in 1776, British troops land at Long Island in preparation for the capture and occupation of New York City, lasting until the end of the Revolutionary War in 1783.
  • ...in 1864, the International Red Cross is founded as part of the first Geneva Convention, to provide humanitarian aid in times of war.
  • ...in 1902, the Cadillac Motor Car Division is founded from the remnants of the Henry Ford Company.
  • ...in 1989, Texas Ranger Nolan Ryan becomes the first MLB pitcher to record 5,000 strikeouts.