Weekly Digest

Reading Time: 4 minutes Google Chrome emergency update fixes 6th zero-day exploited in 2023 – Okta Discloses Broader Impact Linked to October 2023 Support System Breach – Hackers Exploit Critical Vulnerability in ownCloud – Warning: Multiple vulnerabilities in Foxit PDF, Patch Immediately! –

Reading Time: 3 minutes SafeOnWeb @Work – Attention: Black Friday Week – Microsoft Patch Tuesday November 2023 – Fake Browser Updates Targeting Mac Systems With Infostealer

Reading Time: 5 minutes Microsoft Warns of Critical Bugs Being Exploited in the Wild –
Critical flaw fixed in SAP Business One product – ICS Patch Tuesday: 90 Vulnerabilities Addressed by Siemens and Schneider Electric – PyPI Packages Found to Expose Thousands of Secrets – Safeonweb to become big sister!

Reading Time: 4 minutes Zero-Day Alert: Lace Tempest Exploits SysAid IT Support Software Vulnerability – NEW RCE VULNERABILITY AFFECTING APACHE ACTIVEMQ, CVE-2023-46604 IS ACTIVELY EXPLOITED, Patch Immediately! –
Warning: Multiple Vulnerabilities In VEAAM One, Patch Immediately! –
CVSS 4.0 Offers Significantly More Patching Context – Beware: fake vacancies in circulation

Reading Time: 6 minutes Atlassian Warns of New Critical Confluence Vulnerability Threatening Data Loss – Threat Actors Actively Exploit F5 BIG-IP Flaws CVE-2023-46747 and CVE-2023-46748 – StripedFly, A Complex Malware That Infected One Million Devices Without Being Noticed – Trojanized PyCharm Software Version Delivered via Google Search Ads – Okta Data Compromised Through Third-Party Vendor

Reading Time: < 1 minute VMware fixes critical code execution flaw in vCenter Server – F5 Issues Warning: BIG-IP Vulnerability Allows Remote Code Execution –
Citrix Bleed exploit lets hackers hijack NetScaler accounts –
1Password Becomes Latest Victim of Okta Customer Service Breach- -Warning: Multiple Critical vulnerabilities affect the SolarWinds Access Rights Manager tool, Patch immediately!

Reading Time: < 1 minute Over 10,000 Cisco Devices Hacked In IOS XE Zero-Day Attacks – New Phishing Campaign Uses LinkedIn Smart Links in Blanket Attack – DarkGate Operator Uses Skype, Teams Messages to Distribute Malware – Dozens of Squid Proxy Vulnerabilities Remain Unpatched 2 Years After Disclosure – Several websites of Belgian Institutions Disrupted Earlier This Week By DDoS Attack

Reading Time: < 1 minute Critical SOCKS5 Vulnerability in cURL Puts Enterprise Systems at Risk – A critical vulnerability in Metabase Open Source and in Metabase Enterprise. Patch immediately – CISA Warns of Actively Exploited Adobe Acrobat Reader Vulnerability -Citrix Patches Critical NetScaler ADC, Gateway Vulnerability –
Microsoft patch Tuesday October 2023 patches 103 vulnerabilities

Reading Time: < 1 minute Atlassian Confluence Hit by New Actively Exploited Zero-Day – Patch Now – ‘Looney Tunables’ Bug Opens Millions of Linux Systems to Root Takeover – Police Issue “Quishing” Email Warning – Apple Warns of Newly Exploited iOS 17 Kernel Zero-Day – False subpoena emails circulating

Reading Time: < 1 minute Researchers Release Details of New RCE Exploit Chain for SharePoint Server – Critical libwebp Vulnerability Under Active Exploitation – Gets Maximum CVSS Score – Progress Software Patches Critical Pre-Auth Flaws in WS_FTP Server Product – Xenomorph Malware Is Back After Months Of Hiatus And Expand The List Of Targets – ZenRAT Malware Uncovered in Bitwarden Impersonation –

Reading Time: < 1 minute Apple Rolled Out Emergency Updates To Address 3 New Actively Exploited Zero-day Flaws – Trend Micro Patches Exploited Zero-Day Vulnerability in Endpoint Security Products – GitLab Users Advised to Update Against Critical Flaw Immediately – Microsoft AI Researchers Leak 38TB of Private Data

Reading Time: < 1 minute Warning: Microsoft Patch Tuesday September 2023 Patches 61 Vulnerabilities ( 5 Critical, 2 0-Day, 2 Actively Exploited) – Warning: Microsoft Patch Tuesday September 2023 Patches 61 Vulnerabilities ( 5 Critical, 2 0-Day, 2 Actively Exploited) – Kubernetes Vulnerability Leads to Remote Code Execution –
Adobe Releases Security Updates for Multiple Products – Expecting a parcel? Watch out for suspicious messages –

Reading Time: < 1 minute Apple Rushes to Patch Zero-Day Flaws Exploited for Pegasus Spyware on iPhones – Mac Users Beware: Malvertising Campaign Spreads Atomic Stealer macOS Malware – Researchers Discover Critical Vulnerability in PHPFusion CMS – API Vulnerabilities: 74% of Organizations Report Multiple Breaches – Beware: the “sextortion” scam is back!

Reading Time: < 1 minute Unauthenticated Stack Buffer Overflows in Ivanti Avalanche – Warning – An unauthenticated attacker could gain access to a Zimbra account – 10 Million Likely Impacted by Data Breach at French Unemployment Agency – Akira ransomware gang targets Cisco Asa without multi-factor authentication

Reading Time: < 1 minute Remote Code Execution Vulnerability In WinRAR – Researchers released PoC exploit for Ivanti Sentry flaw CVE-2023-38035 – New Variant of XLoader macOS Malware Disguised as ‘OfficeNote’ Productivity App
– First Weekly Chrome Security Update Patches High-Severity Vulnerabilities – Beware techscams (Microsoft scams) are back again

Reading Time: < 1 minute Citrix ADC, Gateways Still Backdoored, Even After Being Patched – Cyber Alert: Global Campaign Targets LinkedIn Accounts
– Critical Flaws in PowerShell Gallery Enable Malicious Exploits – New QwixxRAT Trojan Spreads Through Messaging Apps – New phone scam targeting Itsme users

Reading Time: < 1 minute Emerging Attacker Exploit: Microsoft Cross-Tenant Synchronization – EvilProxy Cyberattack Flood Targets Execs via Microsoft 365 – Statc Stealer, a new sophisticated info-stealing malware – Your life is in danger! Hitman scam makes the rounds again

Reading Time: < 1 minute Warning: Multiple vulnerabilities in Foxit PDF Reader and Editor products can lead to Remote Code Execution – AI-Enhanced Phishing Driving Ransomware Surge – Experts warn attackers started exploiting Citrix ShareFile RCE flaw CVE-2023-24489 – Be aware of exposure of sensitive data on Wi-Fi settings for Canon inkjet printers – Malware Analysis News: July 2023

Reading Time: < 1 minute Ivanti Releases Urgent Patch for EPMM Zero-Day Vulnerability Under Active Exploitation – Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks – Apple Patches Another Kernel Flaw Exploited in ‘Operation Triangulation’ Attacks –
Stolen Microsoft Key: The Impact Is Higher Than Expected – Beware of false warning about unpaid taxes

Reading Time: < 1 minute Zero-Day Alert! Critical Flaw in Citrix ADC and Gateway Exploited in the Wild – SophosEncrypt Ransomware Fools Security Researchers – Dozens of reports of CEO fraud –
Two Jira Plugin Vulnerabilities in Attacker Crosshairs – Microsoft Relents, Offers Free Critical Logging to All 365 Customers

Reading Time: < 1 minute Microsoft Releases Patches for 132 Vulnerabilities, Including 6 Under Active Attack – Apple re-released Rapid Security Response to fix recently disclosed zero-day –
Warning: critical RCE vulnerability CVE-2023-33308 in FortiOS and FortiProxy products, Patch Immediately! – Python-Based PyLoose Fileless Attack Targets Cloud Workloads for Cryptocurrency Mining – Beware of message that appears to come from Safeonweb

Reading Time: < 1 minute BlackCat Operators Distributing Ransomware Disguised as WinSCP via Malvertising – WordPress sites using the Ultimate Member plugin are under attack –
Over Two-Thirds of FortiGate Firewalls Still at Risk – Microsoft Teams Exploit Tool Auto-Delivers Malware – Applying for a premium through Engie? Beware!

Reading Time: < 1 minute Mockingjay Slips By EDR Tools With Process Injection Technique – Cl0p in Your Network? Here’s How to Find Out – Fortinet Patches Critical RCE Vulnerability in FortiNAC – Chrome 114 Update Patches High-Severity Vulnerabilities

Reading Time: < 1 minute Azure AD ‘Log in With Microsoft’ Authentication Bypass Affects Thousands – Warning – Apple released a security update fixing multiple vulnerabilities in iOS, iPadOS, macOS & watchOS, which are being actively exploited in the wild! – Alert: Million of GitHub Repositories Likely Vulnerable to RepoJacking Attack – Going on vacation soon? Stay one step ahead of travel scammers

Reading Time: < 1 minute MOVEit mayhem 3: “Disable HTTP and HTTPS traffic immediately” – Microsoft Patch Tuesday for June 2023 fixes 6 critical flaws –
Critical RCE Flaw Discovered in Fortinet FortiGate Firewalls – Patch Now! – New scam: your iCloud space is full – Swiss Government Targeted by Series of Cyber-Attacks

Reading Time: < 1 minute CISA and FBI Release #StopRansomware: CL0P Ransomware Gang Exploits MOVEit Vulnerability – Barracuda Urges Customers to Replace Hacked Email Security Appliances – Google fixed the third Chrome zero-day of 2023 – VMware Plugs Critical Flaws in Network Monitoring Product –
Do you fear that your passwords are circulating on the Internet? Take action now!

Reading Time: < 1 minute Warning: Critical actively exploited remote code execution vulnerability affects Barracuda Email Security Gateway appliances. – MOVEit transfer tool vulnerability actively exploited – MOVEit transfer tool vulnerability actively exploited – Zeroclick hack targets IOS users – Proximus warns of suspicious telephone calls that seem to come from the police, banks or other authorities

Reading Time: < 1 minute Meta Fined €1.2bn for Violating GDPR – Google’s .zip, .mov Domains Give Social Engineers a Shiny New Tool – Backup repositories targeted in 93% of Ransomware Attacks – Barracuda Email Security Gateway (ESG) hacked via zero-day bug –
Sextortion scam is still ongoing

Reading Time: < 1 minute WordPress Plug-in Used in 1M+ Websites Patched to Close Critical Bug – New Ransomware Gang RA Group Hits U.S. and South Korean Organizations – KeePass Vulnerability Imperils Master Passwords – CISA: Several Old Linux Vulnerabilities Exploited in Attacks – CISA: Several Old Linux Vulnerabilities Exploited in Attacks

Reading Time: < 1 minute Microsoft Patch Tuesday: 40 Vulnerabilities, 2 Zero-Days – Beware of suspicious message that appears to come from a bank – Microsoft: Iranian APTs Exploiting Recent PaperCut Vulnerability – Babuk Source Code Sparks 9 Different Ransomware Strains Targeting VMware ESXi Systems

Reading Time: < 1 minute Major vulnerability discovered in iPadOS, macOS and iOS: update your device now! –
Ransomware Actors Are Actively Exploiting A Critical Remote Code Execution Vulnerability In Papercut Print Software, Patch Immediately! – Proportion of Malicious HTML Attachments Doubles Within a Year – New ‘Lobshot’ hVNC Malware Used by Russian Cybercriminals – New Decoy Dog Malware Toolkit Uncovered: Targeting Enterprise Networks

Reading Time: < 1 minute Security Benefits of Enhanced Cloud Visibility – The Decline in Ransomware: Does It Actually Increase Risks for Organizations? – Security Benefits of Enhanced Cloud Visibility – The Decline in Ransomware: Does It Actually Increase Risks for Organizations? – Security Benefits of Enhanced Cloud Visibility – The Decline in Ransomware: Does It Actually Increase Risks for Organizations? – Fake messages appearing to come from itsme are making the rounds again

Reading Time: < 1 minute Google Chrome Hit by Second Zero-Day Attack – Recycled Network Devices Exposing Corporate Secrets – Reveal IT and Online Services Emails Drive Dangerous Attack Trend –
Twitter’s 2FA Policy Is a Call for Passkey Disruption – Warning: phishing attempt in the name of Safeonweb

Reading Time: < 1 minute Experts warn that Telegram is becoming a privileged platform for phishers that use it to automate their activities and for providing various services.