Infosec bits for 2023 week 31

Sicelo Ncekana | Aug. 5, 2024, 8:30 a.m.

Cybersecurity News:

Ransomware Gangs Exploiting VMware ESXi Auth Bypass Flaw for Mass Attack [Guru Baran, Cybersecurity News]

Google enhances Chrome security on Windows with app-bound encryption to fight cookie theft [Paul, AlternativeTo]

Microsoft Confirms Global Azure Outage Caused by DDoS Attack [Fiona Jackson, TechRepublic]

Vulnerabilities & Patches:

Weekly Vulnerability Report: Cyble Urges Fixes in ServiceNow, Outlook, Docker Engine [Paul Shread, The Cyber Express]

Researchers Reveal ConfusedFunction Vulnerability in Google Cloud Platform [Ravie Lakshmanan, The Hacker News]

Bitdefender Vulnerability Let Attackers Trigger SSRF Attacks [Guru Baran, Cybersecurity News]

Proofpoint Vulnerability Exploited for Phishing Campaign [Anuj Mudaliar, Spiceworks]

Malware:

Telegram App Flaw Exploited to Spread Malware Hidden in Videos [Ravie Lakshmanan, The Hacker News]

Record-Breaking $75 Million Ransom Paid To Dark Angels Gang [Davey Winder, Forbes]

Android spyware 'Mandrake' hidden in apps on Google Play since 2022 [Bill Toulas, Bleeping Computer]

Google Ads spread Mac malware disguised as popular browser [Kurt Knutsson, Fox News]

Walmart Discovers New PowerShell Backdoor Linked to Zloader Malware [James Coker, Infosecurity Magazine]

Stargazer Goblin' Creates 3,000 Fake GitHub Accounts for Malware Spread [Ravie Lakshmanan, The Hacker News]

StackExchange abused to spread malicious PyPi packages as answers [Bill Toulas, Bleeping Computer]

Telegram-Controlled TgRat Trojan Now Targets Linux Servers [WAQAS, Hackread]

Breaches & Leaks:

4.3 million people hit in massive healthcare data breach with full names, addresses and SSNs exposed online — what to do now [Tom's guide, Anthony Spadafora]

Canada launches investigation into Ticketmaster data breach [Ismail Shakil, XM]

Millions more victims exposed in debt collection agency data breach [Sead Fadilpašić, Techrador]