Infosec bits for 2024 week 38

Heloise Meyer | Sept. 20, 2024, 3:36 p.m.

Cybersecurity News:

Infostealers: An Early Warning for Ransomware Attacks [Nate Nelso, DarkReading]

Critical Infrastructure at Risk From Email Security Breaches [Stephen Pritchard, Infosecurity Magazine]

AI security bubble already springing leaks [Cameron Camp, ESET]

Europol takes down "Ghost" encrypted messaging platform used for crime [Bill Toulas, BleepingComputer]

Vulnerabilities & Patches:

Critical Exploit in MediaTek Wi-Fi Chipsets: Zero-Click Vulnerability (CVE-2024-20017) Threatens Routers and Smartphones [Security News, SonicWall]

Chrome 129 Patches High-Severity Vulnerability in V8 Engine [Ionut Arghire, SecurityWeek]

GitLab releases fix for critical SAML authentication bypass flaw [Bill Toulas, BleepingComputer]

D-Link addressed three critical RCE in wireless router models [Pierluigi Paganini, SecurityAffairs]

Broadcom fixes critical RCE bug in VMware vCenter Server [Sergiu Gatlan, BleepingComputer]

Google Fixes GCP Composer Flaw That Could've Led to Remote Code Execution [Ravie Lakshmanan, The Hacker News]

Threat Campaigns:

Clever 'GitHub Scanner' campaign abusing repos to push malware [Ax Sharma, BleepingComputer]

New Phishing Campaign Exploiting Google App Scripts: What Organizations Need to Know [Check Point Team, CheckPoint]

Breaches:

Hacker Claims “Minor” Data Breach at DELL; Leaks Over 10,000 Employee Details [HackRead, HackRead]

Tooling:

CrowdSec: Open-source security solution offering crowdsourced protection [Mirko Zorz, Help Net Security]