Infosec bits for 2024 week 19
Sicelo Ncekana | May 10, 2024, 3:42 p.m.
Cybersecurity News:
Malicious Android Apps Pose as Google, Instagram, WhatsApp, to Steal Credentials [Newsroom, The Hacker News]
Ransomware Attack on Wichita.gov Causes City Network Outage [Matthew Kelly, Goverment Technology]
Malware campaign attempts abuse of defender binaries [Sophos News, Sophos News]
Vulnerabilities & Patches:
Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability [Newsroom, The Hacker News]
Orange Cyberdefense reveals new vulnerabilities in credit card machines and electronic access control devices at exclusive client briefing [IT Web, IT Web]
RSAC: Log4J Still Among Top Exploited Vulnerabilities, Cato Finds [Kevin Poireault, Infosecurity Magazine]
Citrix quietly fixes a new critical vulnerability similar to Citrix Bleed [Shweta Sharma, CSO]
Breaches & Attacks:
Dell warns of data breach, 49 million customers allegedly affected [Lawrence Abrams, Bleeping Computer]
Malware
New Malware Attacking Windows & MS Office Users [Dhivya, Cyber Security News]
Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version [Newsroom, The Hacker News]
Mac and MacBook hit with 'Cuckoo' malware stealing sensitive data [Kurt Knutsson, Fox News]