News

Hi folks,

I hope you're doing well. We've got a nice balance of interesting articles and plenty of breaches this week :-) Enjoy the read!

Cheers,

Dieter






Quick stories

  • New Windows Server 2012 zero-day gets free, unofficial patches: link.
  • BootKitty UEFI malware exploits LogoFAIL to infect Linux systems: link.
  • Police seize Matrix encrypted chat service after spying on criminals: link.
  • Microsoft reiterates “non-negotiable” TPM 2.0 requirement for Windows 11: link.
  • UN, international orgs create advisory body for submarine cables after incidents: link.

Breaches and leaks

  • Romania's election systems targeted in over 85,000 cyberattacks: link.
  • Costa Rica state energy company calls in US experts to help with ransomware attack: link.
  • Hoboken government recovering from ransomware attack as Conti-linked gang takes credit: link.
  • Bologna FC confirms data breach after RansomHub ransomware attack: link.
  • Vodka maker Stoli files for bankruptcy in US after ransomware attack: link.
  • BT unit took servers offline after Black Basta ransomware breach: link.
  • U.S. org suffered four month intrusion by Chinese hackers: link.
  • Japanese crypto service shuts down after theft of bitcoin worth $308 million: link.
  • Solana Web3.js library backdoored to steal secret, private keys: link.

Issues and fixes

  • Veeam warns of critical RCE bug in Service Provider Console: link.
  • Exploit released for critical WhatsUp Gold RCE flaw, patch now: link.
  • Japan warns of IO-Data zero-day router flaws exploited in attacks: link.
  • Mitel MiCollab zero-day flaw gets proof-of-concept exploit: link.
  • CISA and German cyber authorities warn Zyxel firewalls facing active exploitation: link.