Weekly Top Ten Cybersecurity Stories – 4.22.2022 – Innovate Cybersecurity

WEEKLY TOP TEN | APRIL 22, 2022 12:15 GMT

Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:

Vulnerability CVE-2022-20685 Disclosed That Can Render Snort Ineffective
https://securityaffairs.co/wordpress/130436/security/snort-bug-makes-it-unusable.html
Lenovo Discloses UEFI Firmware Vulnerabilities Affecting 100+ Laptop Models
https://www.bleepingcomputer.com/news/security/lenovo-uefi-firmware-driver-bugs-affect-over-100-laptop-models/
Fortinet Tracks New DDoS Botnet EnemyBot Abusing Dozens of Vulnerabilities To Infect Routers and IoT Devices
https://securityaffairs.co/wordpress/130291/cyber-crime/enemybot-botnet-ddos.html
REvil Infrastructure Reactivates, Lists Old and New Victims on Leak Website
https://www.computing.co.uk/news/4048545/revil-ransomware-infrastructure-appears-restarted-months-inactivity
Fake Windows 11 Download Page Installing InnoStealer Credential Stealer
https://www.windowscentral.com/windows-11-download-page-imitator-spreading-malware-pcs
CISA Adds Print Spooler, 2 Other Vulnerabilities To Known Exploited Vulnerabilities Catalog
https://securityaffairs.co/wordpress/130401/hacking/win-print-spooler-known-exploited-vulnerabilities-catalog.html
QNAP Advises Customers to Disable UPnP Port Forwarding to Protect NAS Devices
https://securityaffairs.co/wordpress/130393/security/qnap-nas-disable-upnp-port-forwarding.html
Oracle Releases Critical Patch Update for April 2022, Addressing 520 Vulnerabilities
https://www.cisa.gov/uscert/ncas/current-activity/2022/04/19/oracle-releases-april-2022-critical-patch-update
CISA Warns of Potential Russian State-Sponsored Cyber Operations In Response to Ukraine War Developments
https://www.cisa.gov/uscert/ncas/alerts/aa22-110a
AdvIntel Provides Technical Analysis of Conti Ransomware Group Infrastructure
https://www.advintel.io/post/enter-karakurt-data-extortion-arm-of-prolific-ransomware-group

Hand-Picked Top-Read Stories

The Risks of Cybersecurity Vulnerabilities: How They’re Impacting Public Utilities

Why is DDoS Still So Effective After 20 Years?

Weekly Top 10: 12.16.2024: OpenWrt Flaw Allows Distribution of Malicious Firmware; Vulnerability in WPForms Allows for Arbitrary Stripe Refunds; AuthQuake Attack Allows MFA Bypass for Microsoft Accounts, and More.

Trending Tags

Weekly Top Ten Cybersecurity Stories – 4.22.2022

Previous Post

Why Scheduled Patch Windows Are Bad Practice

Next Post

The Return of Emotet Malware

Threat Advisories

Weekly Top 10: 12.16.2024: OpenWrt Flaw Allows Distribution of Malicious Firmware; Vulnerability in WPForms Allows for Arbitrary Stripe Refunds; AuthQuake Attack Allows MFA Bypass for Microsoft Accounts, and More.

Weekly Top 10: 12.9.2024: New Windows Zero-Day Exposes NTLM Credentials, Gets Unofficial Patch; Supply Chain Attack Detected in Solana’s web3.js Library; Snowblind: The Invisible Hand of Secret Blizzard, and More.

Weekly Top 10: 11.25.2024: Critical Flaw in End-of-Life D-Link VPN Routers; Actively Exploited RCE Flaw Impacting VMware vCenter; Russian Linked Threat Actor Linked in Cyber Espionage Campaign, and More.

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware