Infosec bits for 2024 week 15

Sicelo Ncekana | April 15, 2024, 1:38 a.m.

Cybersecurity News:

CoralRaider Hackers Steals Login Credentials, Financial Data & Social Media Logins [Guru Baran, GB Hackers]

Hackers Using Malware-Driven Scanning Attacks To Pinpoint Vulnerabilities [Guru Baran, Cybersecurity News]

CROOKS MANIPULATE GITHUB’S SEARCH RESULTS TO DISTRIBUTE MALWARE [Pierluigi Paganini, Security Affairs]

Vulnerabilities & Patches:

Hackers Deploy Python Backdoor in Palo Alto Zero-Day Attack [Newsroom, The Hacker News]

Change Healthcare Faces Another Ransomware Threat—and It Looks Credible [Andy Greenberg, Wired]

Fortinet patches FortiClientLinux critical RCE vulnerability [Laura French, SC magazine]

A vulnerability in Linux distributions may allow unauthorized access [Security Staff, Security Magazine]

Microsoft Releases Fixes for Two Actively Exploited Flaws [Sumeet Wadhwani, Spiceworks]

Breaches & Attacks:

Roku Breach Hits 567,000 Users | WIRED [Andy Greenberg, Wired]

Hacker claims Giant Tiger data breach, leaks 2.8M records online [Ax Sharma, Bleeping Computer]

CISA warns about Sisense data breach [Zeljka Zorz, Help Net Security]

Malware

Apple warns iPhone users of a dangerous new malware attack found in 92 countries [José Adorno, MSN]

Malicious PowerShell script pushing malware looks AI-written [Ionut Ilascu, Bleeping Computer]

Raspberry Robin Returns: New Malware Campaign Spreading Through WSF Files [Newsroom, The Hacker News]

Two new stealthy malware threats are targeting those of you who use Macs [Kurt Knutsson, Fox News]

Attackers Using Obfuscation Tools to Deliver Multi-Stage Malware via Invoice Phishing [Newsroom, The Hacker News]

Malicious Visual Studio projects on GitHub push Keyzetsu malware [Bill Toulas, ]