Australia Investigates Data Breach at National Electronic Prescriptions Provider; Health Data Potentially Compromised (www.bitdefender.com)
Ransomware gang targets Windows admins via PuTTy, WinSCP malvertising (www.bleepingcomputer.com)
A ransomware operation targets Windows system administrators by taking out Google ads to promote fake download sites for Putty and WinSCP.
CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog - RedPacket Security (www.redpacketsecurity.com)
CISA Adds Three Known Exploited Vulnerabilities to Catalog
American Radio Relay League cyberattack takes Logbook of the World offline (www.bleepingcomputer.com)
The American Radio Relay League (ARRL) warns it suffered a cyberattack, which disrupted its IT systems and online operations, including email and the Logbook of the World.
Banking malware Grandoreiro returns after police disruption (www.bleepingcomputer.com)
The banking trojan “Grandoreiro” is spreading in a large-scale phishing campaign in over 60 countries, targeting customer accounts of roughly 1,500 banks.
Microsoft to start enforcing Azure multi-factor authentication in July (www.bleepingcomputer.com)
Starting in July, Microsoft will begin gradually enforcing multi-factor authentication (MFA) for all users signing into Azure to administer resources.
Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002) (www.helpnetsecurity.com)
Norway recommends replacing SSL VPN to prevent breaches (www.bleepingcomputer.com)
The Norwegian National Cyber Security Centre (NCSC) recommends replacing SSLVPN/WebVPN solutions with alternatives due to the repeated exploitation of related vulnerabilities in edge network devices to breach corporate networks.
Employee Personal GitHub Repos Expose Internal Azure and Red Hat Secrets (www.aquasec.com)
Llama Drama: Critical Flaw in AI Python Package Can Lead to System and Data Compromise (CVE-2024-34359) (www.securityweek.com)
US AI experts targeted in cyberespionage campaign using SugarGh0st RAT (www.csoonline.com)
Threat actors use phishing techniques to obtain non-public information about generative artificial intelligence.
Russian hackers use new Lunar malware to breach a European govt's agencies (www.bleepingcomputer.com)
Kimsuky hackers deploy new Linux backdoor in attacks on South Korea (www.bleepingcomputer.com)
Threat actors misusing Quick Assist in social engineering attacks leading to ransomware (www.microsoft.com)
Microsoft fixes three zero-day vulnerabilities, two actively exploited (www.csoonline.com)
The company’s Patch Tuesday includes fixes for flaws in Windows Desktop Window Manager, Windows MSHTML, and Visual Studio, among others, that IT security orgs should prioritize.
Google patches third exploited Chrome zero-day in a week (www.bleepingcomputer.com)
Google has released a new emergency Chrome security update to address the third zero-day vulnerability exploited in attacks within a week.
BreachForums, an online bazaar for stolen data, seized by FBI (arstechnica.com)
cross-posted from: lemmy.zip/post/15519717...
Linux maintainers were infected for 2 years by SSH-dwelling backdoor with huge reach (arstechnica.com)
Russian Actors Weaponize Legitimate Services in Multi-Malware Attack (www.infosecurity-magazine.com)
Dangerous Google Chrome Zero-Day Allows Sandbox Escape (www.darkreading.com)
Log4Shell shows no sign of fading, spotted in 30% of CVE exploits (www.helpnetsecurity.com)
Zero-day alert! Apple security updates are out, including 0-day fixes for iOS 16 and macOS 13 (pducklin.com)
VMware Patches Severe Security Flaws in Workstation and Fusion Products (thehackernews.com)
Researchers have uncovered a critical vulnerability in VMware’s Bluetooth device, allowing code execution by malicious actors.
Backlogs at National Vulnerability Database prompt action from NIST and CISA (www.csoonline.com)
A crisis at the key US service for ranking vulnerabilities has been fueled by short resources and an explosion of security flaws as the volume of software production increases.