Infosec bits for 2024 week 46

Heloise Meyer | Nov. 15, 2024, 7:33 p.m.

Cybersecurity News:

Zero-days from top security vendors were most exploited CVEs in 2023 [Matt Kapko, Cybersecurity Dive]

Liquid C2 Launches Secure360 to Strengthen Cybersecurity Across Africa [Aayushya Ranjan, TechAfrica News]

Vulnerabilities & Patches:

4,000,000 WordPress Sites Using Really Simple Security Free and Pro Versions Affected by Critical Authentication Bypass Vulnerability [Istvan Marton, Wordfence]

2 Zero-Day Bugs in Microsoft's Nov. Update Under Active Exploit [Jai Vijayan, Dark Reading]

Windows Zero-Day Exploited by Russia Triggered With File Drag-and-Drop, Delete Actions [Ionut Arghire, SecurityWeek]

Hackers Exploiting Veeam RCE Flaw to Deploy New Frag Ransomware [Guru Baran, Cybersecurity News]

Attacks & Data Breaches:

Google Warns of Rising Cloaking Scams, AI-Driven Fraud, and Crypto Schemes [Ravie Lakshmanan, The Hacker News]

Flexible Structure of Zip Archives Exploited to Hide Malware Undetected [Elizabeth Montalbano, Dark Reading]

Microsoft Visio Files Used in Sophisticated Phishing Attacks [Email Alessandro, Infosecurity Magazine]

Experts Uncover 70,000 Hijacked Domains in Widespread 'Sitting Ducks' Attack Scheme [Ravie Lakshmanan, The Hacker News]

Phishing Tool GoIssue Targets Developers on GitHub [Alessandro Mascellino, Infosecurity Magazine]

New Ymir Ransomware Exploits Memory for Stealthy Attacks; Targets Corporate Networks [Ravie Lakshmanan, The Hacker News]

More data stolen in 2023 MOVEit attacks comes to light [Alex Scroxton, Computer Weekly]

Tooling:

VMware makes Workstation and Fusion free for everyone [Sergiu Gatlan, Bleeping Computer]