Top News

• Technical Glitch Causes Global Disruption for Meta Users

"In a recent setback for Meta users, a widespread service outage occurred on March 5th, affecting hundreds of thousands worldwide. Meta’s spokesperson, Andy Stone, attributed the disruption to a “technical issue,” apologising for any inconvenience caused."

Link

TLP¹ : Green

• Crypto phishers stole $47M last month, impersonators on X to blame

"Fake accounts on social media platform X were the leading cause for over 57,000 victims of crypto phishing scams in February."

Link

TLP¹ : Green

• Apple made big App Store changes over new EU rules. Could iPhones be more vulnerable to hacking now?

"Apple is opening small cracks in the iPhone's digital fortress as part of a regulatory clampdown in Europe that is striving to give consumers more choices - at the risk of creating new avenues for hackers to steal personal and financial information stored on the devices."

Link

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• Exclusive: Government officials around the globe targeted for hacking through WhatsApp - sources

"Senior government officials in multiple U.S.-allied countries were targeted earlier this year with hacking software that used Facebook Inc's <FB.O> WhatsApp to take over users' phones, according to people familiar with the messaging company's investigation."

Link

TLP¹ : Green

• Magnet Goblin Hacker Group Leveraging 1-Day Exploits to Deploy Nerbian RAT

"A financially motivated threat actor called Magnet Goblin is swiftly adopting one-day security vulnerabilities into its arsenal in order to opportunistically breach edge devices and public-facing services and deploy malware on compromised hosts."

Link

TLP¹ : Green

• Microsoft Confirms Russian Hackers Stole Source Code, Some Customer Secrets

"Microsoft on Friday revealed that the Kremlin-backed threat actor known as Midnight Blizzard (aka APT29 or Cozy Bear) managed to gain access to some of its source code repositories and internal systems following a hack that came to light in January 2024."

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

• Hackers Breach CIPC Systems, Exposing Sensitive Data

"Based on a recent report, the Companies and Intellectual Property Commission (CIPC), South Africa’s regulator for business registrations and intellectual property rights, has fallen victim to a major cybersecurity breach. Last week, the CIPC disclosed that an attempted intrusion may have exposed personal information of staff and clients."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• BianLian Threat Actors Exploiting JetBrains TeamCity Flaws in Ransomware Attacks

"The threat actors behind the BianLian ransomware have been observed exploiting security flaws in JetBrains TeamCity software to conduct their extortion-only attacks."

Link

TLP¹ : Green

• Proof-of-Concept Exploit Released for Progress Software OpenEdge Vulnerability

"Technical specifics and a proof-of-concept (PoC) exploit have been made available for a recently disclosed critical security flaw in Progress Software OpenEdge Authentication Gateway and AdminServer, which could be potentially exploited to bypass authentication protections."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• Independent Cybersecurity Audits Are Powerful Tools for Boards

"One of the most effective ways to do so is through independent cybersecurity audits. This essential component of responsible organizational governance can demonstrate proactive leadership and reveal possible blind spots. Cybersecurity audits are also necessary for compliance with regulations that hold the board and C-suite accountable for verifying the efficacy of their company’s cybersecurity program."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• Some-Tweak-To-Hide-Jwt-Payload-Values - A Handful Of Tweaks And Ideas To Safeguard The JWT Payload

"A handful of tweaks and ideas to safeguard the JWT payload, making it futile to attempt decoding by constantly altering its value, ensuring the decoded output remains unintelligible while imposing minimal performance overhead."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp