Top News

• Sophisticated Phishing Campaign Deploying Agent Tesla, OriginBotnet, and RedLine Clipper

"A sophisticated phishing campaign is using a Microsoft Word document lure to distribute a trifecta of threats, namely Agent Tesla, OriginBotnet, and OriginBotnet, to gather a wide range of information from compromised Windows machines."

Link

TLP¹ : Green

• New WiKI-Eve attack can steal numerical passwords over WiFi

"A new attack dubbed 'WiKI-Eve' can intercept the cleartext transmissions of smartphones connected to modern WiFi routers and deduce individual numeric keystrokes at an accuracy rate of up to 90%, allowing numerical passwords to be stolen."

Link

TLP¹ : Green

• Teenage crypto hacker to return $5.2m and forfeited sports car

"US judge sentenced a teenage crypto hacker to return stolen BTC worth nearly $5.2 million and a sports car he bought with the illicit funds."

Link

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• Chinese Redfly Group Compromised a Nation's Critical Grid in 6-Month ShadowPad Campaign

"A threat actor called Redfly has been linked to a compromise of a national grid located in an unnamed Asian country for as long as six months earlier this year using a known malware referred to as ShadowPad."

Link

TLP¹ : Green

• New Zealanders experience fraud, theft via banks: survey

"Large numbers of New Zealanders are falling victim to thefts via their bank accounts and cards, according to a Horizon Research Bank Fraud and Cybercrime survey on Tuesday."

Link

TLP¹ : Green

• Canadian Nurses Association confirms data theft after group dumps stolen info

"The Canadian Nurses Association (CNA) confirmed that it is working with its members to respond to a leak of sensitive data stolen by a group of hackers earlier this year."

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

• Nookazon data breach is caused by another Akrew website

"The Nookazon data breach is all over the internet right now as bad actors have stolen people’s information. Actually, the data breach started on another Akrew website named Traderie. Here is everything you need to know about it!"

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• Google Rushes to Patch Critical Chrome Vulnerability Exploited in the Wild - Update Now

"Google on Monday rolled out out-of-band security patches to address a critical security flaw in its Chrome web browser that it said has been exploited in the wild."

Link

TLP¹ : Green

• Critical GitHub Vulnerability Exposes 4,000+ Repositories to Repojacking Attack

"A new vulnerability disclosed in GitHub could have exposed thousands of repositories at risk of repojacking attacks, new findings show."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• 7 Steps to Kickstart Your SaaS Security Program

"SaaS applications are the backbone of modern businesses, constituting a staggering 70% of total software usage. Applications like Box, Google Workplace, and Microsoft 365 are integral to daily operations."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• VTScanner - A Comprehensive Python-based Security Tool For File Scanning, Malware Detection, And Analysis In An Ever-Evolving Cyber Landscape

"VTScanner is a versatile Python tool that empowers users to perform comprehensive file scans within a selected directory for malware detection and analysis."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp