News
Hi folks!
Today marks the end of the summer holiday where I live, our kids had to go back to school. Queue the sad trombone, or the Mariachi band, depending on where you stand. Either way, the peace and quiet felt nice :-) Now here's your weekly dose of infosec news. Cheers!
Hackers threatening to leak more data stolen from Dutch laboratory
Sharing this here because it's making pretty big headlines where I live, and rightfully so. Clinical Diagnostics, a company that handles medical screening, was breached. The data breach affects 485,000 women who participated in cervical cancer screening. The company has paid up already, but the ransomware group is coming back for more.
Opinion piece on recent Microsoft security fails
Oof, some strong opinions in this one, consider yourself warned. Although it'll be no surprise to regular readers that I tend to share most of them.
Abusing Entra OAuth for fun and access to internal Microsoft applications
Alright look, I'm not targeting Microsoft on purpouse here, I swear. But this is a very interesting and well written post on how a security researcher got access to a bunch of sensitive internal applications. The first part is easy to follow even if you're not deeply technical, it's a good read for everyone. Hackernews discussion here.
Docker Hub still hosts dozens of Linux images with the XZ backdoor
The article highlights an interesting discussion. The researchers would prefer any vulnerable image to be taken offline, but Debian states that it will leave the older, vulnerable images online, citing low risk and importance of archiving continuity. Feel free to discuss at your next coffeebreak (if you have nothing else to talk about).
Quick links
- Cisco discloses maximum-severity defect in firewall software: link.
- Fortinet warns of FortiSIEM pre-auth RCE flaw with exploit in the wild: link.
- Norway police believe pro-Russian hackers were behind April dam sabotage link.
- Microsoft reminds of Windows 10 support ending in two months: link.
- Water sector expands partnership with volunteer hackers: link.
- Black Hat/DEF CON: AI more useful for defense than hacking: link.
- Booking.com phishing campaign uses sneaky 'ん' character to trick you: link.
1Password for developers: secrets, SSH keys, and more
I don't think most developers realise how valuable 1Password can be. It doesn't just hold passwords, it also hold your SSH keys, signs your Git commits, injects token and other secrets in CLI scripts when you want, and much more. (Sponsored)