- Security News:
- Microsoft Breaks Silence on Barrage of ProxyShell Attacks [Elizabeth Montalbano, Threatpost]
- Hackers Could Increase Medication Doses Through Infusion Pump Flaws [Lily Hay Newman, WIRED]
- Ragnarok ransomware releases master decryptor after shutdown [Ionut Ilascu, Bleeping Computer]
- Poly Network Recoups $610M Stolen from DeFi Platform [Becky Bracken, Threatpost]
- Biggest Linux security exploits revealed [Hanno Labuschagne, MyBroadband]
- Email-Borne Threats:
- False Payment Promises Lead To Microsoft Credential Phish [Nathaniel Sagibanda, Cofense]
- Phishing campaign uses UPS.com XSS vuln to distribute malware [Lawrence Abrams, Bleeping Computer]
- Vulnerabilities & Patches:
- F5 Releases Critical Security Patches for BIG-IP and BIG-IQ Devices [Ravie Lakshmanan, The Hacker News]
- VMware Patches High-Severity Vulnerabilities in vRealize Operations [Ionut Arghire, SecurityWeek]
- Cisco Security Advisories [Cisco]
- Atlassian warns of critical Confluence flaw [Simon Sharwood, The Register]
- Others:
- Threat Modeling: Making the Right Moves [Doug Olenick, Bank Info Security]
- Ransomware gang’s script shows exactly the files they’re after [Lawrence Abrams, Bleeping Computer]
-
Data breaches now cost SA firms 15% more per incident [ITWeb]
- Cybercrime Losses Triple to £1.3bn in 1H 2021 [Phil Muncaster, Infosecurity Magazine]
- Nigerian Gang Asks for Insider Help to Plant Ransomware [Doug Olenick, Bank Info Security]
C410 A2BE CB73 EF77 746E 9682 E2C4 91CE D20D 800F