🐛 COMMON VULNERABILITIES AND EXPOSURES 2[−]
22 JulOver 15K Citrix servers likely vulnerable to CVE-2023-3519 attacksThousands of Citrix Netscaler ADC and Gateway servers exposed online are likely vulnerable against a critical remote code execution (RCE) bug exploited by unauthenticated attackers in the wild as a zero-day. [...]BLEEPINGCOMPUTER.COM
22 JulOver 15K Citrix servers vulnerable to CVE-2023-3519 RCE attacksThousands of Citrix Netscaler ADC and Gateway servers exposed online are likely vulnerable against a critical remote code execution (RCE) bug exploited by unauthenticated attackers in the wild as a zero-day. [...]BLEEPINGCOMPUTER.COM
⚠️ VULNERABILITY DISCLOSURE 2[−]
22 JulDHL Investigating MOVEit Breach as Number of Victims Surpasses 20 MillionThe United Kingdom arm of shipping giant DHL said it is investigating a data breach sourced back to its use of the MOVEit software, which has been exploited by a Russia-based ransomware group for nearly two months.THERECORD.MEDIA
22 JulMicrosoft force-migrating Windows Mail & Calendar apps to Outlook app in AugustMicrosoft will retire the Windows Mail and Calendar applications on Windows 10 and Windows 11 at the end of the year, first auto-migrating users to the new Outlook for Windows app in August. [...]BLEEPINGCOMPUTER.COM
🔥 INCIDENT REPORTING 2[−]
22 JulCoastal Mississippi County Recovering From Ransomware AttackThe local government in George County, Mississippi, was thrown into chaos this weekend when ransomware actors used a discrete phishing email to gain deep access to the county’s systems.THERECORD.MEDIA
22 JulCl0p Gang to Earn Over $75 Million From MOVEit Extortion AttacksIn a new report released today, Coveware explains that the number of victims paying ransoms has fallen to a record low of 34%, causing ransomware gangs to switch strategies to make their attacks more profitable.BLEEPINGCOMPUTER.COM
🕵️ THREAT INTELLIGENCE 1[−]
22 JulCouple Charged in Laundering Bitfinex Heist to Plead GuiltyRussian Entrepreneur, Would-Be Rapper to Seal Plea Deal in NY Federal Court A U.S. couple is set to file a plea deal for their role in laundering $4.5 billion in cryptocurrency from the Bitfinex virtual currency exchange in 2016. Federal prosecutors say they moved crypto to hide …DATABREACHTODAY.CO.UK
📡 INFOSEC NEWS 5[−]
22 JulGlobal CDN Service ‘jsdelivr’ Exposed Users to Phishing AttacksThe malicious NPM package, which masqueraded as a legitimate alternative to a popular package, downloaded a phishing HTML code from the jsdelivr CDN service to steal users' credentials.HACKREAD.COM
22 JulWindows 11 23H2 to give you greater control over power consumptionMicrosoft is making it easier to see how much energy your apps use in Windows 11 over a given period by introducing a detailed power consumption page in the latest 23H2 update. [...]BLEEPINGCOMPUTER.COM
22 JulApple Threatens to Pull iMessage and FaceTime from U.K. Amid Surveillance DemandsApple has warned that it would rather stop offering iMessage and FaceTime services in the U.K. than bowing down to government pressure in response to new proposals that seek to expand digital surveillance powers available to state intelligence agencies. The development, first rep…THEHACKERNEWS.COM
22 JulYARA Error Codes, (Sat, Jul 22nd)I recently had to help out a friend with a YARA error. I&#;x26;#;39;ve never seen this before, but the YARA error was just a number, not an error description.
ISC.SANS.EDU
22 JulWindows 11 23H2 getting an energy report with app's power usageMicrosoft is making it easier to see how much energy your apps use in Windows 11 over a given period by introducing a detailed power consumption page in the latest 23H2 update. [...]BLEEPINGCOMPUTER.COM