News
Hi folks,
Another Friday, another issue! Nothing Earth-shattering, just the usual rumblings. And a very cathartic post titled "Your security program is shit", which I highly recommend :-)
Have a good one!
OpenAI blocks state-sponsored hackers from using ChatGPT
OpenAI has removed accounts from Iran, North Korea, China, and Russia, who were using ChatGPT to further their goals. OpenAI got this information from Microsoft's Threat Intelligence team. They even list what each hacking group used ChatGPT for.
New Wi-Fi authentication bypass vulnerabilities found
Another bit of research by Mathy Vanhoef (and team), who know what they're talking about when it comes to Wi-Fi security. The new vulnerabilities have been found in Wpa_supplicant (present in Android, Linux and ChromeOS) and Intel’s iNet Wireless Daemon (IWD) software. The issue in Wpa_supplicant allows an attacker to trick a user into connecting to their malicious access point, the one in IWD allows an attacker to gain full access to the Wifi network.
Are you looking to make your API security program stronger?
Explore Escape’s API security checklist (ungated), built to help you improve your API security posture. Feel free to adapt these guidelines to match your specific needs. After all, no two organizations are exactly the same. (Sponsored)
Canada declares Flipper Zero public enemy No. 1 in car-theft crackdown
Another round in the old "let's ban the tools, that'll stop the criminals".
US offers $10 million reward for info on Hive ransomware gang members
A whole different kind of bounty hunting, if you're up for it ;-) There's a similar bounty outstanding for the ALPHV ransomware group too: link.
CEO of Ukraine's largest telecom operator describes Russian cyberattack
The explanation remains pretty high-level, but it's interesting to read nonetheless. In short: compromise of an employee, lateral movement to other accounts until they were able to compromise the AD.
Your security program is shit.
Sometimes you need a good rant to get through the day. This is a beautiful example, and the blog seems filled with them. Enjoy!
Breaches and leaks
- Ransomware attack forces 100 Romanian hospitals to go offline: link.
- Health insurance data breach affects nearly half of France’s population, privacy regulator warns: link.
- Integris Health says data breach impacts 2.4 million patients: link.
- 200,000 Facebook Marketplace user records leaked on hacking forum: link.
- Hyundai Motor Europe hit by Black Basta ransomware attack: link.
- ExpressVPN bug has been leaking some DNS requests for years: link.
- Funerals reportedly canceled due to ransomware attack on Austrian town: link.
- Bank of America warns customers of data breach after vendor hack: link.
- Hackers mint 1.79 billion crypto tokens from PlayDapp gaming platform: link.
- Prudential Financial breached in data theft cyberattack: link.
- Trans-Northern Pipelines investigating ALPHV ransomware attack claims: link.
- German battery maker Varta halts production after cyberattack: link.
- DOD notifying more than 26,000 people who may be impacted by a year-old data breach: link.
Issues and fixes
- New Fortinet RCE bug is actively exploited, CISA confirms: link.
- Roundcube email server bug now exploited in attacks: link.
- Microsoft February 2024 Patch Tuesday fixes 2 zero-days, 73 flaws: link.
- New critical Microsoft Outlook RCE bug is trivial to exploit: link.
- Zoom patches critical privilege elevation flaw in Windows apps: link.
1Password: the password manager with (to me) the best UX
I'm not going to write a long marketing-heavy paragraph on this one. I just love using 1Password. The UX, the support, the integrations, it all works wonderfully. Highly recommended. (Sponsored)