InfoSec News 20230803
Top News
-
"Mysterious Team Bangladesh" Targeting India with DDoS Attacks and Data Breaches
"A hacktivist group known as Mysterious Team Bangladesh has been linked to over 750 distributed denial-of-service (DDoS) attacks and 78 website defacements since June 2022."
TLP1 : Green
-
Microsoft Exposes Russian Hackers' Sneaky Phishing Tactics via Microsoft Teams Chats
"Microsoft on Wednesday disclosed that it identified a set of highly targeted social engineering attacks mounted by a Russian nation-state threat actor using credential theft phishing lures sent as Microsoft Teams chats."
TLP1 : Green
-
New type of polymorphic fully autonomous malware uses AI
"HYAS Infosec, whose adversary infrastructure platform provides unparalleled visibility, protection and security against all kinds of malware and attacks, has announced its EyeSpy proof-of-concept (PoC), an entirely new type of polymorphic, fully autonomous malware."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Anonymous Sudan attacks Nigeria’s digital infrastructure over involvement in Niger
"Nigeria’s recent involvement in neighbouring Niger’s political crisis has caught the attention of the popular hacktivist group Anonymous Sudan. The group has revealed that it had kickstarted a series of Distributed Denial of Service (DDoS) attacks on the country’s digital infrastructure. "
TLP1 : Green
-
PH authorities strike a major blow against cybercrime
"Joint operation by DOJ, PAOCC and DICT-CICC nets thousands of SIM cards, 650 persons of interest, 800 computers, 2000 smartphones and several units of spamming equipment in cyber scam hub raid"
TLP1 : Green
Breaches: Data Breaches and Hacks
-
Brazilian man arrested for hacking into judicial system claimed that former President Jair Bolsonaro asked him if he could hack electronic voting machines
"Brazilian hacker who was arrested Wednesday had previously told Federal Police investigators that he was once approached by former President Jair Bolsonaro about tampering with electronic voting machines."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Phishers Exploit Salesforce's Email Services Zero-Day in Targeted Facebook Campaign
"A sophisticated Facebook phishing campaign has been observed exploiting a zero-day flaw in Salesforce's email services, allowing threat actors to craft targeted phishing messages using the company's domain and infrastructure."
TLP1 : Green
-
Industrial Control Systems Vulnerabilities Soar: Over One-Third Unpatched in 2023
"About 34% of security vulnerabilities impacting industrial control systems (ICSs) that were reported in the first half of 2023 have no patch or remediation, registering a significant increase from 13% the previous year."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
Forescout's new risk and exposure management solution delivers streamlined, quantitative approach to cyber asset risk management
"Dubai, United Arab Emirates – Forescout, a global leader in cybersecurity, today unveiled Risk and Exposure Management, its cloud-native product designed to collate all data sources associated with an enterprise’s connected assets and calculate a unique multifactor risk score for each asset offering a more intuitive and quantitative approach to risk prioritization."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
KRBUACBypass - UAC Bypass By Abusing Kerberos Tickets
"By adding a KERB-AD-RESTRICTION-ENTRY to the service ticket, but filling in a fake MachineID, we can easily bypass UAC and gain SYSTEM privileges by accessing the SCM to create a system service."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.