Infosec bits for 2024 week 30
Heloise Meyer | July 26, 2024, 4:49 p.m.
Cybersecurity News:
Phish-Friendly Domain Registry “.top” Put on Notice [Brian Krebs, KrebsonSecurity]
QR Codes: Convenience or Cyberthreat? [Sara Atie, Trend Micro]
Unexpected Lessons Learned From the CrowdStrike Event [Chip Stewart, Dark Reading]
CrowdStrike Explains Friday Incident Crashing Millions of Windows Devices [Newsroom, The Hacker News]
Beyond the blue screen of death: Why software updates matter [The Editor, We Live Security]
Vulnerabilities & Patches:
ConfusedFunction: A Privilege Escalation Vulnerability Impacting GCP Cloud Functions [Liv Matan, Tenable]
Docker fixes critical 5-year old authentication bypass flaw [Bill Toulas, BleepingComputer]
Chrome 127 Patches 24 Vulnerabilities [Ionut Arghire, SecurityWeek]
Data Breaches & Attacks:
Data breach exposes US spyware maker behind Windows, Mac, Android and Chromebook malware [Zack Whittaker, Tech Crunch]
Threat Actors Use Telegram APIs for Harvesting Credentials [Hassan Faizan, Forcepoint]
Novel ICS Malware Sabotaged Water-Heating Services in Ukraine [Jai Vijayan, Dark Reading]
Tooling:
Shuffle Automation: Open-source security automation platform [Mirko Zorz, Help Net Security]
Microsoft releases Windows repair tool to remove CrowdStrike driver [Lawrence Abrams, BleepingComputer]