Infosec bits for 2024 week 14

Heloise Meyer | April 8, 2024, 8:04 a.m.

Cybersecurity News:

How Ukraine’s volunteer hackers have created a ‘coordinated machine’ around low-level attacks [Daryna Antoniuk, The Record]

AI weaponization becomes a hot topic on underground forums [Help Net Security, Help Net Security]

XZ Utils Backdoor Attack Brings Another Similar Incident to Light [Eduard Kovacs, SecurityWeek]

10 Steps to Detect, Prevent, and Remediate the Terrapin Vulnerability [Dotan Nahum, Dark Reading]

Vulnerabilities & Patches:

Easy-to-use make-me-root exploit lands for recent Linux kernels. Get patching [Jessica Lyons, The Register]

Google fixes one more Chrome zero-day exploited at Pwn2Own [Sergiu Gatlan, Bleeping Computer]

New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks [Newsroom, Newsroom]

Critical Vulnerability in Progress Flowmon Allows Remote Access to Systems [Ionut Arghire, SecurityWeek]

Breaches & Attacks:

AT&T confirms legitimacy of leak involving information of 73 million people [Jonathan Greig, The Record]

Behind the Attack: Evasive HTML Spear Phishing [Rafa Lopez, Perception Point]

SurveyLama data breach exposes info of 4.4 million users [Bill Toulas, Bleeping Computer]

Tooling:

Mantis: Open-source framework that automates asset discovery, reconnaissance, scanning [Mirko Zorz, Help Net Security]