1395 5E65 0C7A 5CEF 0373 F6E2 8982 15F5 6081 EBEB

Infosec bits for 2024 week 19

Sicelo Ncekana | May 10, 2024, 3:42 p.m.

Cybersecurity News:

  • Malicious Android Apps Pose as Google, Instagram, WhatsApp, to Steal Credentials [Newsroom, The Hacker News]
  • Ransomware Attack on Wichita.gov Causes City Network Outage [Matthew Kelly, Goverment Technology]
  • Malware campaign attempts abuse of defender binaries [Sophos News, Sophos News]

    • Vulnerabilities & Patches:

  • Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability [Newsroom, The Hacker News]
  • Orange Cyberdefense reveals new vulnerabilities in credit card machines and electronic access control devices at exclusive client briefing [IT Web, IT Web]
  • RSAC: Log4J Still Among Top Exploited Vulnerabilities, Cato Finds [Kevin Poireault, Infosecurity Magazine]
  • Citrix quietly fixes a new critical vulnerability similar to Citrix Bleed [Shweta Sharma, CSO]

    • Breaches & Attacks:

  • Dell warns of data breach, 49 million customers allegedly affected [Lawrence Abrams, Bleeping Computer]

    • Malware

  • New Malware Attacking Windows & MS Office Users [Dhivya, Cyber Security News]
  • Hijack Loader Malware Employs Process Hollowing, UAC Bypass in Latest Version [Newsroom, The Hacker News]
  • Mac and MacBook hit with 'Cuckoo' malware stealing sensitive data [Kurt Knutsson, Fox News]

    • Contact Us:

    csirt {at} sanren.ac.za

    CSIRT:

    0x898215F56081EBEB

    Heloise:

    0xD367253D12C5BBBC

    Kgwadi:

    0xDD7E5C2E539972EB

    Sicelo:

    0x2346D2ACE7F536B6

    Maajied:

    0xEE9BE86AD16D89C2