Auch diese Woche wurden wieder kritische Sicherheitslücken entdeckt, diesmal sind Samba Installationen unter Linux betroffen.
Apple zahlt $100.500 Belohnung für einen Webcam Hack, Cyberangriffe auf Häfen in der EU und Ransomware legt ein deutsches Tanklager lahm...
Vulnerabilities & Patches
- New Samba Bug Allows Remote Attackers to Execute Arbitrary Code as Root
- Hackers Exploited 0-Day Vulnerability in Zimbra Email Platform to Spy on Users
- Expert releases PoC for CVE-2022-21882 Windows local privilege elevation issue
- ESET antivirus bug let attackers gain Windows SYSTEM privileges
- ESET releases fixes for local privilege escalation bug in Windows Applications
- Two Dozen UEFI Vulnerabilities Impact Millions of Devices From Major Vendors | SecurityWeek.Com
- Apple Pays $100.5K Bug Bounty for Mac Webcam Hack
Incidents
- Cyberangriff auf Oiltanking legt Tanklager lahm, Shell auch betroffen
- Cyberangriffe auf Häfen in Deutschland, Belgien und Niederlande
- HHS: Conti ransomware encrypted 80% of Ireland's HSE IT systems
- Fox News, Wall Street Journal and New York Post employees hacked by Chinese APT group
- That's a signature move: How $320m in Ether was stolen from crypto biz Wormhole
- Telco fined €9 million for hiding cyberattack impact to customers
Cybercrime
- What’s happening in Ukraine? The truth about the potential Russian invasion
- Microsoft Uncovers New Details of Russian Hacking Campaign Targeting Ukraine
- Russian APT Primitive Bear attacks Western government department in Ukraine through job hunt
- LockBit ransomware gang claims to have stolen data from PayBito crypto exchange
- Antlion APT group used a custom backdoor that allowed them to fly under the radar for months
- Experts warn of a spike in APT35 activity and a possible link to Memento ransomware op
- Iranian APT MuddyWater targets Turkish users via malicious PDFs, executables
- Hybrid cloud campaign OiVaVoii targets company executives
Malware
- Low-Detection Phishing Kits Increasingly Bypass MFA
- BlackCat ransomware - what you need to know | The State of Security
- FBI shares Lockbit ransomware technical details, defense tips
- Sugar Ransomware, a new RaaS in the threat landscape
- Powerful new Oski variant ‘Mars Stealer’ grabbing 2FAs and crypto
- New Iranian hacker backdoor evades security products
- Iranian Hackers Using New PowerShell Backdoor in Cyber Espionage Attacks
Cybernews
- BSI-Grundschutz-Kompendium 2022: Neue Bausteine, schlankere Struktur
- German Court Rules Websites Embedding Google Fonts Violates GDPR
- Microsoft disables MSIX protocol handler abused in Emotet attacks
- North Korea Hacked Him. So He Took Down Its Internet
- FBI Confirms It Bought Spyware From Israel's NSO Group
- Microsoft Defender now detects Android and iOS vulnerabilities
- Another Secretive Spyware Firm Has Been Helping Hack iPhones