Every week I publish interesting articles and ways to improve your understanding of cybersecurity.

Project

TryHackMe – Upload Vulnerabilities

Webinar

• Bright Talk – Verizon Threat Research Advisory Center MIB

Articles

• New ‘Loop DoS’ attack may impact up to 300,000 online systems – A new denial-of-service attack dubbed ‘Loop DoS’ targeting application layer protocols can pair network services into an indefinite communication loop that creates large volumes of traffic.
• Saflok Lock Vulnerability Can Be Exploited to Open Millions of Doors – Vulnerability in Dormakaba’s Saflok electronic locks allow hackers to forge keycards and open millions of doors.
• U.S. Justice Department Sues Apple Over Monopoly and Messaging Security – The U.S. Department of Justice (DoJ), along with 16 other state and district attorneys general, on Thursday accused Apple of illegally maintaining a monopoly over smartphones, thereby undermining, among other things, the security and privacy of users when messaging non-iPhone users.
• KDE advises extreme caution after theme wipes Linux user’s files – On Wednesday, the KDE team warned Linux users to exercise “extreme caution” when installing global themes, even from the official KDE Store, because these themes run arbitrary code on devices to customize the desktop’s appearance.
• New MFA-bypassing phishing kit targets Microsoft 365, Gmail accounts – Cybercriminals have been increasingly using a new phishing-as-a-service (PhaaS) platform named ‘Tycoon 2FA’ to target Microsoft 365 and Gmail accounts and bypass two-factor authentication (2FA) protection.
• Unmasking the Online Persona: A Guide to Username Investigation – Shows other professional investigators the parts of a username, some special username subtypes, how to investigate them, and ways to improve personal operational security.
• TheMoon malware infects 6,000 ASUS routers in 72 hours for proxy service – A new variant of “TheMoon” malware botnet has been spotted infecting thousands of outdated small office and home office (SOHO) routers and IoT devices in 88 countries.
• US fines man $9.9 million for thousands of disturbing robocalls – A U.S. federal court has issued a $9,918,000 penalty and an injunction against an individual named Scott Rhodes for making thousands of “spoofed” robocalls to consumers across the country.
• Apple Security Bug Opens iPhone, iPad to RCE – CVE-2024-1580 allows remote attackers to execute arbitrary code on affected devices.
• Corporations With Cyber Governance Create Almost 4X More Value – Those with special committees that include a cyber expert rather than relying on the full board are more likely to improve security and financial performance.
• Retail chain Hot Topic hit by new credential stuffing attacks – American retailer Hot Topic disclosed that two waves of credential stuffing attacks in November exposed affected customers’ personal information and partial payment data.
• Cisco warns of password-spraying attacks targeting VPN services – Cisco has shared a set of recommendations for customers to mitigate password-spraying attacks that have been targeting Remote Access VPN (RAVPN) services configured on Cisco Secure Firewall devices.
• Splunk Patches Vulnerabilities in Enterprise Product – Splunk patches high-severity vulnerabilities in Enterprise, including an authentication token exposure issue.

Podcasts

• Smashing Security – 365: Hacking hotels, Google’s AI goof, and cyberflashing.