Top News

• The damage caused by the hacking of Vitalik Buterin’s account is named

"The damage from hacking the account of the creator of the Ethereum cryptocurrency Vitalik Buterin at X (Twitter) was estimated at $691,000."

Link

TLP¹ : Green

• SECOND HACKING GROUP CLAIMS ACCESS TO CORE DESKTOP DATA AND CUSTOMER RECORDS

"Core Desktop is the third-party supplier involved in last week’s TissuPath hack, which saw diagnostic and patient records posted on the dark web leak site of notorious ransomware gang LockBit. Real estate agent Barry Plant and strata provider Strata Plan were also impacted by the data breach."

Link

TLP¹ : Green

• Avoid Using Atlas VPN Until A Fix Arrives For The Zero-Day

"A serious zero-day flaw affects the Atlas VPN Linux client, risking the systems. While the bug has been reported, the VPN providers haven’t patched the flaw yet, assuring the fix in an upcoming release. Until the patch arrives, VPN users, particularly Linux users, should avoid using the software to remain safe."

Link

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• Cybercriminals Weaponizing Legitimate Advanced Installer Tool in Crypto-Mining Attacks

"A legitimate Windows tool used for creating software packages called Advanced Installer is being abused by threat actors to drop cryptocurrency-mining malware on infected machines since at least November 2021."

Link

TLP¹ : Green

• New HijackLoader Modular Malware Loader Making Waves in the Cybercrime World

"A new malware loader called HijackLoader is gaining traction among the cybercriminal community to deliver various payloads such as DanaBot, SystemBC, and RedLine Stealer."

Link

TLP¹ : Green

• Cybercriminals Using PowerShell to Steal NTLMv2 Hashes from Compromised Windows

"A new cyber attack campaign is leveraging the PowerShell script associated with a legitimate red teaming tool to plunder NTLMv2 hashes from compromised Windows systems primarily located in Australia, Poland, and Belgium."

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

• Dymocks discloses breach after dark web data leak

"Australian book retailer Dymocks is the latest large organisation to disclose a data breach, with information on up to 836,000 accounts compromised."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• Vulnerabilities Allow Hackers to Hijack, Disrupt Socomec UPS Devices

"Some uninterruptible power supply (UPS) products made by Socomec are affected by several vulnerabilities that can be exploited to hijack and disrupt devices."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• How to Prevent API Breaches: A Guide to Robust Security

"With the growing reliance on web applications and digital platforms, the use of application programming interfaces (APIs) has become increasingly popular. If you aren't familiar with the term, APIs allow applications to communicate with each other and they play a vital role in modern software development."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• EmploLeaks - Finding Leaked Employees Info for the Win

"Developed by Faraday security researchers, this cutting-edge tool utilizes the power of OpenSource Intelligence techniques. EmploLeaks extracts valuable insights by scouring various platforms, to compile a comprehensive list of employees associated with a given company and cross-reference these email with databases like COMB and other internet sources, checking for potential password exposure."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp