Top News

• Beware! YouTube Videos Promoting Cracked Software Distribute Lumma Stealer

"Threat actors are resorting to YouTube videos featuring content related to cracked software in order to entice users into downloading an information stealer malware called Lumma."

Link

TLP¹ : Green

• Toronto Zoo Defends Against Ransomware Attack, Investigation Underway

"The Toronto Zoo finds itself struggling with a cyber incident. The zoo management recently discovered that some of its systems were accessed and locked by an unauthorized user last week. However, despite the intrusion, the officials have released an official notification claiming that no sensitive information has been exposed in the Toronto Zoo Cyberattack."

Link

TLP¹ : Green

• Netgear and Hyundai MEA Twitter Accounts Hacked

"In the most recent wave of cyber threats, the official X accounts (formerly known as Twitter) of technology giant Netgear and Hyundai MEA (Middle East & Africa) have fallen victim to hackers orchestrating scams to disseminate cryptocurrency wallet drainer malware."

Link

TLP¹ : Green

Cybersecurity State: Surveillance, Cyberwarfare, Cybercriminality and Hacktivism

• SWISS AIR FORCE SENSITIVE FILES STOLEN IN THE HACK OF ULTRA INTELLIGENCE & COMMUNICATIONS

"Documents belonging to the Swiss Air Force were leaked on the dark web as a result of cyberattack on a US security provider."

Link

TLP¹ : Green

• Ransomware gang takes credit for Christmas attack on global Lutheran organization

"Details about a Christmas-season ransomware attack on a global Christian organization became clearer this week as a cybercrime gang took credit for what appears to be a related theft of data."

Link

TLP¹ : Green

• INTERPOL seizes $300 million in international financial crime operation

"On December 19, INTERPOL announced the conclusion of a transcontinental police operation against online financial crime called HAECHI IV. "

Link

TLP¹ : Green

Breaches: Data Breaches and Hacks

• Personal information of more than 112,000 people exposed in data breach

"The personal data of more than 112,000 customers of a Melbourne-based travel agency has been exposed in a data breach."

Link

TLP¹ : Green

Vulnerabilities: Vulnerability Advisories, Zero-Days,Patches and Exploits

• Alert: New Vulnerabilities Discovered in QNAP and Kyocera Device Manager

"A security flaw has been disclosed in Kyocera's Device Manager product that could be exploited by bad actors to carry out malicious activities on affected systems."

Link

TLP¹ : Green

Incident Response: Infrastructure, Training, SIEM and Incident Handling

• AT&T, IBM, Verizon Named Leaders in Managed SIEM Services

"The managed security information and event management (SIEM) services market will present significant growth opportunities for partners in the years ahead."

Link

TLP¹ : Green

Technical Articles: Forensics, Reverse Engineering, Malware, Phishing, Pentesting, Software Security and Cryptography

• Nysm - A Stealth Post-Exploitation Container

"With the raise in popularity of offensive tools based on eBPF, going from credential stealers to rootkits hiding their own PID, a question came to our mind: Would it be possible to make eBPF invisible in its own eyes? From there, we created nysm, an eBPF stealth container meant to make offensive tools fly under the radar of System Administrators, not only by hiding eBPF, but much more..."

Link

TLP¹ : Green

¹Traffic Light Protocol (TLP) [1] for information sharing:

• Red:Not for disclosure, restricted to participants only.
• Amber: Limited disclosure, restricted to participants organizations.
• Green: Limited disclosure, restricted to the community.

[1]https://www.first.org/tlp