09/29

Lazarus Group Impersonates Recruiter from Meta to Target Spanish Aerospace Firm

https://thehackernews.com/2023/09/lazarus-group-impersonates-recruiter.html
Lazarus Group Impersonates Recruiter from Meta to Target Spanish Aerospace Firm

Cisco Warns of Vulnerability in IOS and IOS XE Software After Exploitation Attempts

https://thehackernews.com/2023/09/cisco-warns-of-vulnerability-in-ios-and.html
Cisco Warns of Vulnerability in IOS and IOS XE Software After Exploitation Attempts

WS_FTP Server Critical Vulnerability - (September 2023) - Progress Community

https://community.progress.com/s/article/WS-FTP-Server-Critical-Vulnerability-September-2023
WS_FTP Server Critical Vulnerability - (September 2023) - Progress Community

Cybercriminals Using New ASMCrypt Malware Loader to Fly Under the Radar

https://thehackernews.com/2023/09/cybercriminals-using-new-asmcrypt.html
Cybercriminals Using New ASMCrypt Malware Loader to Fly Under the Radar

Lazarus hackers breach aerospace firm with new LightlessCan malware

https://www.bleepingcomputer.com/news/security/lazarus-hackers-breach-aerospace-firm-with-new-lightlesscan-malware/
Lazarus hackers breach aerospace firm with new LightlessCan malware

Flare-On 10

https://flare-on10.ctfd.io/register
Flare-On 10

ZDI-23-1469 | Zero Day Initiative

https://www.zerodayinitiative.com/advisories/ZDI-23-1469/
ZDI-23-1469 | Zero Day Initiative

NIST Publishes Final Version of 800-82r3 OT Security Guide - SecurityWeek

https://www.securityweek.com/nist-publishes-final-version-of-800-82r3-ot-security-guide/
NIST Publishes Final Version of 800-82r3 OT Security Guide - SecurityWeek

Microsoft's AI-Powered Bing Chat Ads May Lead Users to Malware-Distributing Sites

https://thehackernews.com/2023/09/microsofts-ai-powered-bing-chat-ads-may.html
Microsoft's AI-Powered Bing Chat Ads May Lead Users to Malware-Distributing Sites

Discord is investigating cause of ‘You have been blocked’ errors

https://www.bleepingcomputer.com/news/security/discord-is-investigating-cause-of-you-have-been-blocked-errors/
Discord is investigating cause of ‘You have been blocked’ errors

Bing Chat responses infiltrated by ads pushing malware

https://www.bleepingcomputer.com/news/security/bing-chat-responses-infiltrated-by-ads-pushing-malware/
Bing Chat responses infiltrated by ads pushing malware

Exploit released for Microsoft SharePoint Server auth bypass flaw

https://www.bleepingcomputer.com/news/security/exploit-released-for-microsoft-sharepoint-server-auth-bypass-flaw/
Exploit released for Microsoft SharePoint Server auth bypass flaw

Log in to Twitter / X

https://twitter.com/i/broadcasts/1RDGlleEWLmGL
Log in to Twitter / X

Progress Software Releases Urgent Hotfixes for Multiple Security Flaws in WS_FTP Server

https://thehackernews.com/2023/09/progress-software-releases-urgent.html
Progress Software Releases Urgent Hotfixes for Multiple Security Flaws in WS_FTP Server

Progress warns of maximum severity WS_FTP Server vulnerability

https://www.bleepingcomputer.com/news/security/progress-warns-of-maximum-severity-ws-ftp-server-vulnerability/
Progress warns of maximum severity WS_FTP Server vulnerability

Good-bye ESNI, hello ECH!

https://blog.cloudflare.com/encrypted-client-hello/
Good-bye ESNI, hello ECH!

I Tested an HDMI Adapter That Demands Your Location, Browsing Data, Photos, and Spams You with Ads

https://www.404media.co/i-tested-an-hdmi-adapter-that-demands-your-location-browsing-data-photos-and-spams-you-with-ads/
I Tested an HDMI Adapter That Demands Your Location, Browsing Data, Photos, and Spams You with Ads

Misconfigured WBSC server leaks thousands of passports

https://securityaffairs.com/151666/data-breach/misconfigured-wbsc-server-leaks-thousands-of-passports.html
Misconfigured WBSC server leaks thousands of passports

VirusTotal - IP address - 193.33.195.86

https://www.virustotal.com/gui/ip-address/193.33.195.86/detection
VirusTotal - IP address - 193.33.195.86

AWS Using MadPot Decoy System to Disrupt APTs, Botnets - SecurityWeek

https://www.securityweek.com/aws-using-madpot-decoy-system-to-disrupt-apts-botnets/
AWS Using MadPot Decoy System to Disrupt APTs, Botnets - SecurityWeek

OSINT is A State of Mind

http://dlvr.it/Swl7dl
OSINT is A State of Mind

Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company

https://www.welivesecurity.com/en/eset-research/lazarus-luring-employees-trojanized-coding-challenges-case-spanish-aerospace-company/
Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company

Google’s Bard conversations turn up in search results

https://www.malwarebytes.com/blog/news/2023/09/googles-bard-conversations-turn-up-in-search-results
Google’s Bard conversations turn up in search results

FBI Warns Organizations of Dual Ransomware, Wiper Attacks - SecurityWeek

https://www.securityweek.com/fbi-warns-organizations-of-dual-ransomware-wiper-attacks/
FBI Warns Organizations of Dual Ransomware, Wiper Attacks - SecurityWeek

Johnson Controls Hit by Ransomware - SecurityWeek

https://www.securityweek.com/johnson-controls-hit-by-ransomware/
Johnson Controls Hit by Ransomware - SecurityWeek