Infosec bits for 2024 week 21

Heloise Meyer | May 24, 2024, 12:19 p.m.

Cybersecurity News:

New Frontiers, Old Tactics: Chinese Espionage Group Targets Africa & Caribbean Govts [Newsroom, The Hacker News]

Zero-Day Attacks and Supply Chain Compromises Surge, MFA Remains Underutilized: Rapid7 Report [Kevin Townsend, SecurityWeek]

Hacker shows how to steal someone’s payment card details and buy a tank of petrol [Jan Vermeulen, MyBroadband]

Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses [Newsroom, The Hacker News]

Why We Need to Get a Handle on AI [Marc Solomon, SecurityWeek]

Vulnerabilities & Patches:

Chrome 125 Update Patches High-Severity Vulnerabilities [Ionut Arghire, SecurityWeek]

WordPress Unauthenticated Arbitrary SQL Execution Vulnerability [Security News, SonicWall]

High-severity GitLab flaw lets attackers take over accounts [Sergiu Gatlan, BleepingComputer]

Researchers Uncover Flaws in Python Package for AI Models and PDF.js Used by Firefox [Newsroom, The Hacker News]

Veeam warns of critical Backup Enterprise Manager auth bypass bug [Sergiu Gatlan, BleepingComputer]

Cyber Attacks & Data Breaches:

OmniVision Says Personal Information Stolen in Ransomware Attack [Ionut Arghire, SecurityWeek]

MS Exchange Server Flaws Exploited to Deploy Keylogger in Targeted Attacks [Newsroom, The Hacker News]

Ongoing Malvertising Campaign leads to Ransomware [Tyler McGraw, Rapid7]

Beware of HTML Masquerading as PDF Viewer Login Pages [Hassan Faizan, Forcepoint]

Report Reveals 341% Rise in Advanced Phishing Attacks [Alessandro Mascellino, Infosecurity Magazine]

Tooling:

Grafana: Open-source data visualization platform [Mirko Zorz, Help Net Security]