Infosec bits for 2023 week 50

Heloise Meyer | Dec. 13, 2024, 5:27 p.m.

Cybersecurity News:

AI & Cybersecurity: KnowBe4 Predictions for 2025 Emerging Trends [Mamsi Nkosi, IT News Africa]

8 Trends Reshaping Network Security in 2025 [Anand Oswal, Palo Alto Networks]

Bad news about cyberattacks in South Africa [Jan Vermeulen, MyBroadband]

Data Breaches & Cyber Attacks:

Phishing: The Silent Precursor to Data Breaches [Torsten George, SecurityWeek]

Inside the incident: Uncovering an advanced phishing attack [Varonis, BleepingComputer]

Hackers find hole in Krispy Kreme Doughnuts' cyber-security [Tom Gerken, BBC]

QR codes bypass browser isolation for malicious C2 communication [Bill Toulas, BleepingComputer]

Key electricity distributor in Romania warns of ‘cyber attack in progress’ [Alexander Martin, The Record]

Malware:

The Stealthy Stalker: Remcos RAT [Sakshi Jaiswal, McAfee]

Black Basta Ransomware Evolves with Email Bombing, QR Codes, and Social Engineering [Ravie Lakshmanan, The Hacker News]

New stealthy Pumakit Linux rootkit malware spotted in the wild [Bill Toulas, BleepingComputer]

Vulnerabilities & Patches:

Actively Exploited Zero-Day, Critical RCEs Lead Microsoft Patch Tuesday [Tara Seals, Dark Reading]

Adobe Patches Over 160 Vulnerabilities Across 16 Products [Eduard Kovacs, SecurityWeek]

Dell Urges Immediate Update to Fix Critical Power Manager Vulnerability [Deeba Ahmed, Hackread]