1395 5E65 0C7A 5CEF 0373 F6E2 8982 15F5 6081 EBEB

Infosec bits for 2024 week 9

Kgwadi Matenche | March 1, 2024, 1:44 p.m.

Cybersecurity News:

  • NIST Releases Cybersecurity Framework 2.0 [Dark Reading Staff, Dark Reading]
  • New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems [Newsroom, The Hacker News]
  • Japan warns of malicious PyPi packages created by North Korean hackers [Bill Toulas, Bleeping Computer]

    • Vulnerabilities & Patches:

  • Cisco Patches High-Severity Vulnerabilities in Data Center OS [Ionut Arghire, SecurityWeek]

    • Breaches & Leaks:

  • Discount Retail Giant Pepco Loses €15 Million to Cybercriminals [Eduard Kovacs, SecurityWeek]
  • Pharmaceutical giant Cencora says data was stolen in a cyberattack [Lawrence Abrams, Bleeping Computer]
  • Rhysida ransomware wants $3.6 million for children’s stolen data [Bill Toulas, Bleeping Computer]

    • Others:

  • Citrix, Sophos software impacted by 2024 leap year bugs [Bill Toulas, Bleeping Computer]
  • Vulnerabilities in business VPNs under the spotlight [Márk Szabó, WeLiveSecurity]

    • Contact Us:

    csirt {at} sanren.ac.za

    CSIRT:

    0x898215F56081EBEB

    Heloise:

    0xD367253D12C5BBBC

    Kgwadi:

    0xDD7E5C2E539972EB

    Sicelo:

    0x2346D2ACE7F536B6

    Maajied:

    0xEE9BE86AD16D89C2