InfoSecBulletin Cybersecurity for mankind
The banking trojan “Grandoreiro” is spreading widely through a phishing campaign in over 60 countries, aiming at customer accounts of about 1,500 banks. In January 2024, a joint international law enforcement operation involving Brazil, Spain, Interpol, ESET, and Caixa Bank revealed the disruption of a malware operation. The malware had …
Read More »TimeLine Layout
May, 2024
-
18 May
Australian gov.t warns of ‘large-scale ransomware data breach’
Australian police are investigating a big data breach in a healthcare company after a ransomware attack on Thursday. The website and hotline of MediSecure, a company based in Melbourne, were offline after a breach occurred. This was confirmed by a statement from the electronic prescription service provider. No group has …
Read More » -
18 May
Patch Now: CISA Warns of Actively Exploited D-Link Router Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced that two security flaws in D-Link routers have been added to its list of actively exploited vulnerabilities. The list of vulnerabilities is as follows: CVE-2014-100005 : A vulnerability that allows an attacker to manipulate D-Link DIR-600 router configurations by taking over …
Read More » -
18 May
New “Antidot” Banking Trojan disguised Fake Google Play Updates
The “Antidot” Android Banking Trojan pretends to be a Google Play update app and targets Android users in different regions. It uses VNC and overlay techniques to steal credentials. Cyble Research and Intelligence Labs (CRIL) found that the new Android Banking Trojan, called “Antidot,” pretends to be a Google Play …
Read More » -
18 May
CISA Published Encrypted DNS Implementation Guidance
CISA published a guide on using Encrypted Domain Name System (DNS) for federal civilian agencies to improve cybersecurity and meet OMB Memorandum M-22-09 requirements. Traditionally, the DNS protocol didn’t have ways to make sure requests and responses were confidential, secure, or authentic. However, the M-22-09 guideline requires agencies to encrypt …
Read More » -
17 May
Cyble Research
Transparent Tribe & SideCopy: A Cyber Alliance Targeting India
Cyble Research and Intelligence Labs found that two cyber threat groups, Transparent Tribe (APT36) and SideCopy, are using advanced strategies to target India, putting both public and private sectors at risk. Cyble Research and Intelligence Labs (CRIL) found that two APT groups, Transparent Tribe (APT36) and SideCopy, are using advanced …
Read More » -
17 May
Recordedfuture report
Hackers Exploit GitHub to Spread Malware targeting operating systems
Recorded Future’s Insikt Group has discovered a major cyber threat campaign carried out by Russian-speaking hackers, possibly located in the Commonwealth of Independent States (CIS). This campaign misuses GitHub, a platform for software development, to spread different malware. The report explains how attackers pretend to be popular software like 1Password, …
Read More » -
17 May
ALERT
CISA issued Seventeen Industrial Control Systems Advisories
CISA issued seventeen advisories about Industrial Control Systems (ICS) on May 16, 2024. These advisories give important information about security problems, weaknesses, and attacks related to ICS. ICSA-24-137-01 Siemens Parasolid ICSA-24-137-02 Siemens SICAM Products ICSA-24-137-03 Siemens Teamcenter Visualization and JT2Go ICSA-24-137-04 Siemens Polarion ALM ICSA-24-137-05 Siemens Simcenter Nastran ICSA-24-137-06 Siemens …
Read More » -
16 May
Intel released 41 Security Advisories Over 90 Vulnerabilities
Intel released 41 security advisories this Patch Tuesday, which contain information about over 90 vulnerabilities in their products. The company has fixed most of the vulnerabilities with patches and provided some mitigations for others. The most significant flaw is CVE-2024-22476. It is rated as ‘critical’ and has a severity score …
Read More » -
16 May
Adobe Patches Multiple Code Execution Flaws
Adobe released security updates for the vulnerabilities in Adobe software. Bad actors could exploit some of these vulnerabilities taking control of an affected system. Adobe encourage the users to review the following Adobe Security Bulletins and apply necessary updates: Adobe Acrobat and Reader Adobe Illustrator Substance 3D Painter Adobe Aero …
Read More »