- Vulnerabilities
- HPE fixes maximum severity remote auth bypass bug in SSMC console [Sergiu Gatlan, Bleeping Computer]
- Microsoft warns of ongoing attacks using Windows Zerologon flaw [Sergiu Gatlan, Bleeping Computer]
- Multiple vulnerabilities in Synology SRM [Claudio Bozzato and Jon Munshaw, Cisco Talos]
- If you haven’t patched WebLogic server console flaws in the last eight days ‘assume it has been compromised’ [Iain Thomson, The Register]
- SMBGhost – the critical vulnerability many seem to have forgotten to patch [Jan Kopriva, SANS]
- Attackers finding new ways to exploit and bypass Office 365 defenses [HelpNet Security]
- Easily exploitable RCE in Oracle WebLogic Server under attack [Zeljka Zorz, HelpNet Security]
- Academic and Education Sector
- UK colleges face testing times with ageing kit, iffy connectivity, and some IT staff supporting 1k+ users [Richard Speed, The Register]
- New ransomware attack targets K-12 teachers [Christine Barry, Barracuda]
- Fake COVID-19 survey hides ransomware in Canadian university attack [Malware Bytes Labs]
- Community College Continues to Investigate Cyberattack [Security Week]
- Threat Spotlight: Spear-phishing attacks targeting education sector [Mike Flouton, Barracuda]
- Botnet News
- Botnet Infects Hundreds of Thousands of Websites [Robert Lemos, DARKReading]
- Katana: a new variant of the Mirai botnet [Avira]
- KashmirBlack botnet behind attacks on CMSs like WordPress, Joomla, Drupal, others [Catalin Cimpanu, ZDNet]
- Even in Test Mode, New Mirai Variant Infecting IoT Devices [Doug Olenick, Data Breach Today]
- Ransomware News
- CISA Ransomware Guide [CISA]
- Maze Ransomware Gang to Shut Down Operations [David Bisson, Tripwire]
- Awareness and Conferences
- SecTorCa Conference Talk Writeups [InfoSecurity Magazine]
- Employee Awareness Recognized as Biggest Lockdown Security Failing [Phil Muncaster, InfoSecurity Magazine]
C410 A2BE CB73 EF77 746E 9682 E2C4 91CE D20D 800F