Let's Talk About IT 17 - 5th June 2024

Live Streams
1

Vulnerabilities

  1. Tripwire Enterprise Flaw Let Attackers Bypass Authentication
  2. Telerik Report Server Flaw Let Remote Attackers Bypass Authentication
  3. Zyxel issues emergency RCE patch for end-of-life NAS devices
  4. XSS Flaws In Multiple WordPress Plugins Exploited To Deploy Malware
  5. Critical wpDataTables Vulnerability Let Attackers Perform SQL Injection
  6. Confluence Data Center & Server Flaw Allows Remote Code Execution
  7. 13,800+ Internet-Exposed Check Point Gateways Vulnerable To 0-Day Attacks: Poc Released
  8. Malware botnet bricked 600,000 routers in mysterious 2023 attack
  9. PoC Exploit Released for Microsoft Edge Information Disclosure Vulnerability
  10. Microsoft Azure Vulnerability Let Attackers Bypass Firewall Rules
  11. CISA warns of actively exploited Linux privilege elevation flaw

TTP

  1. Beware Of Phishing Emails Prompting Execution Via Paste (CTRL+V)
  2. Hacker Tool Extracts All the Data Collected By Windows’ New Recall AI
  3. Threat Actors Weaponize Excel Files To Attack Windows Machines
  4. Cracked Microsoft Office Version Delivers Multiple Pronged Malware
  5. Hackers Exploiting Amazon, Google & IBM Cloud Services To Steal Customer Data
  6. Cisco Webex Meetings Meeting Flaw Let Attackers Gain Unauthorized Access
  7. New V3B phishing kit targets customers of 54 European banks

Breaches

  1. 361 Million Unique Email Credentials Leaked On Telegram Channels
  2. Major London hospitals disrupted by Synnovis ransomware attack
  3. Threat Actors Claiming Breach Of Heineken Employees Data
  4. Ticketmaster confirms massive breach after stolen data for sale online
  5. Snowflake account hacks linked to Santander, Ticketmaster breaches

Noteworthy

  1. Police seize over 100 malware loader servers, arrest four cybercriminals
  2. TikTok fixes zero-day bug used to hijack high-profile accounts
  3. Google Chrome change that weakens ad blockers begins June 3rd
  4. Kaspersky releases free tool that scans Linux for known threats
  5. ANY RUN Sandbox Added New Features to Analyse Sophisticated Malware
  6. OPNsense 24.1.8 Release
  7. FreeBSD 14.1-RELEASE Announcement

Miscellaneous

  1. NSA Warns iPhone & Android Users to Restart Devices Once Every Week
  2. Microsoft deprecates Windows NTLM authentication protocol

Stream Link:

https://www.youtube.com/live/IqcH69cFu0M?feature=shared