QNAP wieder einmal von kritischen Bugs betroffen. Wer noch seine QNAP direkt aus dem Internet erreichbar hat, sollte diese besser nur noch via VPN erreichbar machen. In letzter Zeit geraten diese Geräte immer mehr in den Fokus der Angreifer. Auch Atlassian mit Jira hatte diese Woche mit einer Authentification Bypass Schwachstelle schwer zu kämpfen.

Vulnerabilities & Patches

• ALHACK: Apples Audio-Codec ALAC macht Millionen Android-Geräte angreifbar
• Atlassian fixes critical Jira authentication bypass vulnerability
• QNAP warns of new bugs in its Network Attached Storage devices
• Are you using Java 15/16/17 or 18 in production? Patch them now!
• Lenovo UEFI firmware driver bugs affect over 100 laptop models

  Incidents

• T-Mobile confirms Lapsus$ had access its systems
• Okta: Lapsus$ breach lasted only 25 minutes, hit 2 customers

  Cybercrime

• REvil appears to return after 14 of its members were arrested in January
• LinkedIn Brand Now the Most Abused in Phishing Attempts
• North Korean State-Sponsored APT Targets Blockchain Companies | CISA

  Malware

• 6 Malware Tools Designed to Disrupt Industrial Control Systems (ICS)
• Unofficial Windows 11 upgrade installs info-stealing malware

  Cybernews

• EU: Einigung auf Digital-Gesetz gegen Hass und Hetze (Digital Services Act, DSA)
• FBI warns agricultural sector of heightened risk of ransomware attacks

  Tipps & Links

• Data Exfiltration using ICMP (and how to detect it).