C410 A2BE CB73 EF77 746E 9682 E2C4 91CE D20D 800F

Infosec bits for 2023 week 14

2023-04-06 14:48 - Maajied Moos

Security News:
- 15 million public-facing services vulnerable to CISA KEV flaws [Bill Toulas, BleepingComputer.com logo]
- Is Decentralized Identity About to Reach an Inflection Point? [Don Tait, Dark Reading]
- Malware and machine learning: A match made in hell [Mikko Hyppönen, Help Net Security]
- Unapproved Apps Used By 32% of Remote Workers [Alessandro Mascellino, Info Security]
- Designing Tabletop Exercises That Actually Thwart Attacks [Nate Nelson, Dark Reading]
Breaches & Leaks:
- Lewis & Clark College cyberattack claimed by notorious ransomware gang [JONATHAN GREIG, The Record]
- Uber driver info stolen yet again: This time from law firm [Jessica Lyons Hardcastle, The Register]
- UK outsourcing services provider Capita suffered a cyber incident [Pierluigi Paganini, Security Affairs]
Vulnerabilities & Patches:
- HP to patch critical bug in LaserJet printers within 90 days [Bill Toulas, BleepingComputer.com logo]
Malware
- New Cylance Ransomware Targets Linux and Windows, Warn Researchers [WAQAS, Hack Read]
- The Rising Trend of OneNote Documents for Malware delivery [Anandeshwar Unnikrishnan,Sakshi Jaiswal,Anuradha M, McAfee]
- Chinese E-Commerce Giant Pinduoduo Allegedly Spies on Users [Prajeet Nair, Bank Info Security]
- eFile Tax Return Software Found Serving Up Malware [Dark Reading Staff, Dark Reading]
- New Rilide Malware Targeting Chromium-Based Browsers to Steal Cryptocurrency [Ravie Lakshmanan, The Hacker News]

Contact Us:	csirt { a } sanren.ac.za

PGP Keys:
CSIRT		0xE2C491CED20D800F
Renier		0x11A7B70A4B81468E
Kgwadi		0x9FF01A35A5726937
Sicelo		0xA6CCD44FD770057B
Heloise		0x96371C4C9FA23CAC
Maajied		0xEE9BE86AD16D89C2