Weekly Top Ten Cybersecurity Stories – 2.10.2023 – Innovate Cybersecurity

WEEKLY TOP TEN | FEBRUARY 10, 2023 20:22 GMT

Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:

Royal Ransomware Pivots to Targeting Linux and ESXi, Matching Greater ESXiArgs Campaign
https://blog.cyble.com/2023/02/09 /the-royal-menace-spreads-to-linux-a-deep-dive-into-this-new-ransomware/
Multiple National CERTs Warn of Active ESXi Ransomware Campaign in Progress Abusing CVE-2021-21974
https://securityaffairs .com/141804/cyber-crime/vmware-esxi-ransomware.html
OpenSSH Patches CVE-2023-25136 Arbitrary Code Execution Vulnerability
https://securityaffairs.com/141907/hacking/openssh-pre-auth-double-free-bug.html
OpenSSL Patches Multiple Vulnerabilities, Several Allowing for RCE
https://thehackernews.com/2023/02/openssl-fixes-multiple-new-security.html
BYOVD for Sunlogin Abused to Deploy Sliver Cobalt Strike-alternative
https://thehackernews.com/2023/02/hackers-exploit-vulnerabilities-in.html
Threat Actors Leverage Longer Time-to-Infect, Better Information and Management Relationships to Craft Increasingly Convincing Spearphishing Emails
https://www.zdnet.com/article/theres-been-a-big-rise-in-phishing-attacks-this-one-worked/#ftag=RSSbaffb68
New Vulnerabilities Discovered Affecting Industrial Internet of Things (IIOT)
https://thehackernews.com/2023/02/critical-infrastructure-at-risk-from.html
CISA Adds Multiple Vulnerabilities Related to SugarCRM and Oracle to the Known Exploited Vulnerabilities Catalog
https://securityaffairs.com/141838/security/oracle-sugarcrm-known-exploited-vulnerabilities-catalog.html
Multi-purpose Linux-centric Medusa Botnet Found Deploying via Mirai Botnet Infrastructure
https://blog.cyble.com/2023/02/03/new-medusa-botnet-emerging-via-mirai-botnet-targeting-linux-users/
Cl0p Linux-variant Ransomware Found to Have Reversible Encryption Scheme
https://thehackernews.com/2023/02/linux-variant-of-clop-ransomware.html

Hand-Picked Top-Read Stories

Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.

Weekly Top 10 – 04.15.2024- Google Bug Bounties, Medusa Ransomware Returns, LG Smart TVs Vulnerable, and More.

Weekly Top 10 – 04.9.2024- XZ Utils Backdoor, Vultur Banking Trojan, New Chrome Features, and More.

Trending Tags

Weekly Top Ten Cybersecurity Stories – 2.10.2023

Previous Post

Zero Trust Inside and Out

Next Post

Roundup—The Rundown On 7 Recent High-Profile Data Breaches

The New Standard of

Cybersecurity
Education

Innovate Cybersecurity Summit

Threat Advisories

Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.

Weekly Top 10 – 04.15.2024- Google Bug Bounties, Medusa Ransomware Returns, LG Smart TVs Vulnerable, and More.

Weekly Top 10 – 04.9.2024- XZ Utils Backdoor, Vultur Banking Trojan, New Chrome Features, and More.

Weekly Top 10 – 04.2.2024- SharePoint and AMD Vulnerabilities, Password Spraying VPN Attacks, Tycoon 2FA, and More.

Weekly Top 10 – 03.25.2024- AI Enhanced Cyber Attacks Rising, Microsoft Warns Taxpayers of Tax Return Phishing Scams, “Fluffy Wolf” Stealer Malware Targets Corporate Environments, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware