Top News

• Rust-Written 3AM Ransomware: A Sneak Peek into a New Malware Family

"A new ransomware family called 3AM has emerged in the wild after it was detected in a single incident in which an unidentified affiliate deployed the strain following an unsuccessful attempt to deploy LockBit (aka Bitwise Spider or Syrphid) in the target network."

Link

TLP¹ : Green

• Microsoft Warns of New Phishing Campaign Targeting Corporations via Teams Messages

"Microsoft is warning of a new phishing campaign undertaken by an initial access broker that involves using Teams messages as lures to infiltrate corporate networks."

Link

TLP¹ : Green

• Pegasus Infection of Galina Timchenko, exiled Russian Journalist and Publisher

"The Citizen Lab has analyzed forensic artifacts from the iPhone of award-winning exiled Russian investigative journalist Galina Timchenko and found with high confidence that on or around February 10th, 2023 it was infected with NSO Group’s Pegasus spyware."

Link

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• How Cyberattacks Are Transforming Warfare

"There is a new battlefield. It is global and challenging to defend. What began with a high-profile incident back in 2007, when Estonia was hit by hackers targeting its government and commercial sector, has evolved into cyber warfare that is being waged constantly worldwide. Today, cyberattacks have become the norm, transforming how we think about war and international conflict as a whole."

Link

TLP¹ : Green

• More than S$330 million lost to scammers in first half of 2023; cases continue to rise

"Scam victims in Singapore lost slightly less money in the first half of 2023 as compared to the same period last year, even as the number of scam cases increased by 64.5 per cent, according to data released by the police on Wednesday (Sep 13)."

Link

TLP¹ : Green

• Dutch football association pays ransom to Russian cybercriminals

"The Royal Dutch Football Association (KNVB) has paid an undisclosed sum to Russian cybercriminals who stole personal data from players of the country’s national football team, the organisation said on Tuesday."

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

• Airbus investigates data leak allegedly involving thousands of suppliers

"The European aerospace giant Airbus said on Tuesday that it is investigating a cybersecurity incident following reports that a hacker posted information on 3,200 of the company’s vendors to the dark web."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• Microsoft Releases Patch for Two New Actively Exploited Zero-Days Flaws

"Microsoft has released software fixes to remediate 59 bugs spanning its product portfolio, including two zero-day flaws that have been actively exploited by malicious cyber actors."

Link

TLP¹ : Green

• Mozilla Rushes to Patch WebP Critical Zero-Day Exploit in Firefox and Thunderbird

"Mozilla on Tuesday released security updates to resolve a critical zero-day vulnerability in Firefox and Thunderbird that has been actively exploited in the wild, a day after Google released a fix for the issue in its Chrome browser."

Link

TLP¹ : Green

• Update Adobe Acrobat and Reader to Patch Actively Exploited Vulnerability

"Adobe's Patch Tuesday update for September 2023 comes with a patch for a critical actively exploited security flaw in Acrobat and Reader that could permit an attacker to execute malicious code on susceptible systems."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• Fortinet and Wiz team up to protect enterprise cloud workload environments

"The two companies have jointly developed an integrated solution to help enterprises protect their cloud workload environments with leading network security from Fortinet and leading cloud security from Wiz.se cloud workload environments"

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• KaliPackergeManager - Kali Packerge Manager

"kalipm.sh is a powerful package management tool for Kali Linux that provides a user-friendly menu-based interface to simplify the installation of various packages and tools. It streamlines the process of managing software and enables users to effortlessly install packages from different categories. "

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp