CyberSecNews Weekly - 0x24-W1622
Tools trufflesecurity/trufflehogFind credentials all over the place. kris-nova/boopkitLinux eBPF backdoor (TCP) for spawning reverse shells. A curated list...
CyberSecNews Weekly - 0x23-W1522
News KA-SAT Network cyber attack overviewViasat is providing an overview and incident report on the cyber-attack against the KA-SAT network, which occurred...
CyberSecNews Weekly - 0x22-W1422
News A Closer Look at the LAPSUS$ Data Extortion GroupThe news of the week: Microsoft and identity management platform Okta both disclosed this week breaches...
CyberSecNews Weekly - 0x21-W1322
News The Discovery and Exploitation of CVE-2022-25636 Learn how a Linux kernel bug was discovered OpenSSL Security AdvisoryA bug in OpenSSL can cause an...
CyberSecNews Weekly - 0x20-W1222
News The Dirty Pipe Vulnerability A new Linux kernel vulnerability that can drive to root priviledge escalation Put an io_uring on it: Exploiting the Linux...
CyberSecNews Weekly - 0x19-W1022
News Cyber threat activity in Ukraine: analysis and resources A must read analysis from Microsoft about cyber threat in the Ukraine war scenario Tools...
CyberSecNews Weekly - 0x18-W0922
News New Destructive Malware Used In Cyber Attacks on Ukraine Tools Security-Datasets: Re-play Security Events AzureADAssessmentTooling for assessing an...
CyberSecNews Weekly - 0x17-W0822
News MikroTik Authentication RevealedMikrotik is a well know Latvian company that produces Linux based routers for SOHO and WISP. In this article, the...
CyberSecNews Weekly - 0x16-W0722
News QR codes on Twitter deliver malicious Chrome extensionISO file downloads are advertised via QR codes on Twitter and on supposedly free gaming sites, but...
CyberSecNews Weekly - 0x15-W0622
News Expert Analyst Insight into North Korean 'Internet Outages'An analysis of the three DDoS attacks against the North Korean internet during January 2022....
CyberSecNews Weekly - 0x14-W0522
News Malicious app on Google Play drops banking malware on users’ devicesPradeo’s researchers discovered a malicious mobile application called 2FA...
CyberSecNews Weekly - 0x13-W0422
News Linux kernel heap buffer overflow in fs_context.c since version 5.1 Tools threat-matrix-cicdThreat matrix for CI/CD Pipeline. crowdsecCrowdSec - an...
CyberSecNews Weekly - 0x12-W0322
News Dutch athletes warned to keep phones and laptops out of ChinaDutch athletes competing in next month’s Beijing Winter Olympics will need to leave their...
CyberSecNews Weekly - 0x11-W0222
News Vulnerability in log4j 2.17.0 more hype than substanceNot all CVEs are created equal. Understanding what is important to focus on when fixing Log4j...
CyberSecNews Weekly - 0x10-W0122
News LastPass confirms credential stuffing attack against some of its usersPassword manager app LastPass said today that a threat actor has launched a...
CyberSecNews Weekly - 0x09-W5121
News Polish opposition senator hacked with spywareSecurity researchers say they’ve confirmed that a third Polish opposition figure had his phone hacked with...
CyberSecNews Weekly - 0x08-W5021
News Log4Shell Update: Second log4j Vulnerability Published (CVE-2021-44228 + CVE-2021-45046)A quick update on the situation now that a new log4j CVE has...
CyberSecNews Weekly - 0x07-W4921
News RCE 0-day exploit found in log4j, a popular Java logging packageThis is the hot topic of the week: Lunasec has discovered a RCE on log4j package, a very...
CyberSecNews Weekly - 0x06-W4821
News Hackers Increasingly Using RTF Template Injection Technique in Phishing AttacksHackers have been increasingly using RTF Template Injection method in...
CyberSecNews Weekly - 0x05-W4721
News New Linux malware hides in cron jobs with invalid datesSecurity researchers have discovered a new remote access trojan (RAT) for Linux that keeps an...
CyberSecNews Weekly - 0x04-W4621
News New secret-spilling hole in Intel CPUs sends company patching (again) | Ars TechnicaResearchers figure out how to obtain the “fuse encryption key”...
CyberSecNews Weekly - 0x03-W4521
News Lightweight Cryptography | CSRC | CSRCNIST has published a call for algorithms (test vector generation code) to be considered for lightweight...
0x02-W4421.md
News Predicting the Next OWASP API Security Top 10API security risk has dramatically evolved in the last two years. Jason Kent, Hacker-in-Residence at...
CyberSecNews Weekly - 0x01-W4321
CyberSecNews Weekly Intro CyberSecNews Weekly is a newsletter to share news and other interesting articles that I found online. This is the first issue, so...