- Malware and Breaches
- International Authorities Take Down Flubot Malware Network [Elizabeth Montalbano, Threatpost]
- Conti spotted working on exploits for Intel Management Engine flaws [Jessica Lyons Hardcastle, The Register]
- 12K Misconfigured Elasticsearch Buckets Ravaged by Extortionists [Tara Seals, Dark Reading]
- EnemyBot Malware Targets Web Servers, CMS Tools and Android OS [Sagar Tiwari, Threatpost]
- New ChromeLoader malware surge threatens browsers worldwide [Bill Toulas, Bleeping Computer]
- Airline in Turkey Exposes Flight and Crew Info in 6.5TB Leak [Phil Muncaster, Infosecurity]
- Zero-Day ‘Follina’ Bug Lays Microsoft Office Open to Attack [Sagar Tiwari, Threatpost]
- NDIS case management system provider breached [Justin Hendry, iTnews]
- Vulnerabilities and Patches
- Microsoft Publishes Workaround for One-Click 0 Day Under Active Attack [ITsec Bureau, ITSecurityWire]
- Industrial IoT ransomware attacks control systems directly [Joe Uchill, SC Magazine]
- Critical UNISOC Chip Vulnerability Affects Millions of Android Smartphones [Ravie Lakshmanan, The Hacker News]
- Scammers Target NFT Discord Channel [Sagar Tiwari, Threatpost]
- Critical Atlassian Confluence zero-day actively used in attacks [Lawrence Abrams, Bleeping Computer]
- Other
- Phishers Having a Field Day on WhatsApp, Telegraph [Dark Reading Staff, Dark Reading]
C410 A2BE CB73 EF77 746E 9682 E2C4 91CE D20D 800F