InfoSec News 20231025
Top News
-
Malvertising Campaign Targets Brazil's PIX Payment System with GoPIX Malware
"The popularity of Brazil's PIX instant payment system has made it a lucrative target for threat actors looking to generate illicit profits using a new malware called GoPIX."
TLP1 : Green
-
Samsung Galaxy S23 hacked twice on first day of Pwn2Own Toronto
"Security researchers hacked the Samsung Galaxy S23 twice during the first day of the consumer-focused Pwn2Own 2023 hacking contest in Toronto, Canada."
TLP1 : Green
-
Crypto Exchange Loses Over $6M XRP In Major Exploit
"Cryptocurrency exchange Coins.ph, based in the Philippines, is facing rumors of a significant loss. It’s said to have lost a substantial $6 million worth of XRP due to an exploit."
TLP1 : Green
Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism
-
Nation State Hackers Exploiting Zero-Day in Roundcube Webmail Software
"The threat actor known as Winter Vivern has been observed exploiting a zero-day flaw in Roundcube webmail software on October 11, 2023, to harvest email messages from victims' accounts."
TLP1 : Green
-
Hamas hackers are trying to scare Israelis with fake SMS messages and news sites
"Rocket attacks on Dimona', 'Enter the protected area and put on gas masks': many Israelis received SMS messages, emails or links to fake news sites; The source? Apparently Hamas, Iran or both; Israel National Cyber Directorate calls it a 'cynical intimidation attempt'"
TLP1 : Green
-
Hackers uncover new evidence of Cubans joining Russian Forces
"A hacking group was able to intercept new data regarding the recruitment of Cubans into the Russian military."
TLP1 : Green
Breaches: Data Breaches and Hacks
-
D-Link Confirms Data Breach From a Phishing Attack, Accuses Hacker of Exaggerating Details
"Taiwanese networking giant D-Link has confirmed a data breach after an employee fell victim to a phishing attack."
TLP1 : Green
Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits
-
Critical OAuth Flaws Uncovered in Grammarly, Vidio, and Bukalapak Platforms
"Critical security flaws have been disclosed in the Open Authorization (OAuth) implementation of popular online services such as Grammarly, Vidio, and Bukalapak, building upon previous shortcomings uncovered in Booking[.]com and Expo."
TLP1 : Green
-
Alert: PoC Exploits Released for Citrix and VMware Vulnerabilities
"Virtualization services provider VMware has alerted customers to the existence of a proof-of-concept (PoC) exploit for a recently patched security flaw in Aria Operations for Logs."
TLP1 : Green
Incident Response: Infrastructure, Training, SIEM and Incident Handling
-
The Rise of S3 Ransomware: How to Identify and Combat It
"In today's digital landscape, around 60% of corporate data now resides in the cloud, with Amazon S3 standing as the backbone of data storage for many major corporations."
TLP1 : Green
Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography
-
Puncia - Subdomain And Exploit Hunter Powered By AI
"Puncia utilizes two of our intelligent APIs - Subdomain Center & Exploit Observer, to gather the results. Please note that although these results can sometimes be pretty inaccurate & unreliable, they can greatly differ from time to time due to their self-improvement capabilities."
TLP1 : Green
1Traffic Light Protocol (TLP) [1] for information sharing:
- Red:Not for disclosure, restricted to participants only.
- Amber: Limited disclosure, restricted to participants organizations.
- Green: Limited disclosure, restricted to the community.