- Security News:
- Australian Health Insurer Medibank Suffers Breach Exposing 3.9 Million Customers’ Data [Ravie Lakshmanan, The Hacker News]
- Threat Actors Target AWS EC2 Workloads to Steal Credentials [Nitesh Surana, Thrend Micro]
- Phishing and Malware
- CZ warns traders about phishing sites in CMC search [Cloud Wallet, Cloud Wallet]
- Phishing scammer Monkey Drainer has pilfered as much as $1M in ETH – Aitrades [Russell Martiniperez, Aitrades Blog]
- Twilio Reveals Further Security Breach [Phil Muncaster, Infosecurity]
- Hive claims ransomware attack on Tata Power, begins leaking data [Ax Sharma, Bleeping Computer]
- Vice Society Ransomware Campaigns Continue to Impact US Education Sector [OODA loop, OODA loop]
- Drinik Android malware now targets users of 18 Indian banks – Bleeping Computer [JN-66 Data Analytics, JN-66 Data Analytics]
- Microsoft SQL servers hacked in TargetCompany ransomware attacks [Bill Toulas, Bleeping Computer]
- Vulnerabilities & Patches:
- Google Issues Urgent Chrome Update to Patch Actively Exploited Zero-Day Vulnerability [Ravie Lakshmanan, The Hacker News]
- Hackers Actively Exploiting Cisco AnyConnect and GIGABYTE Drivers Vulnerabilities [Vulners, Vulners]
- Your Siri conversations may have been recorded without your permission [Fionna Agomuoh, Digital Trends]
- Windows Mark of the Web Zero-Days Remain Patchless, Under Exploit [Jai Vijayan, Dark Reading]
- High-severity vulnerability in GitHub was susceptible to Repo Jacking [Steve Zurier, SC Media]
C410 A2BE CB73 EF77 746E 9682 E2C4 91CE D20D 800F