Weekly Top Ten Cybersecurity Stories – 3.17.2023 – Innovate Cybersecurity

WEEKLY TOP TEN | MARCH 17, 2023 15:42 GMT

Happy Saint Patrick’s Day! Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 11 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:

Microsoft Fixes Two Zero-Days Actively Exploited By State-Sponsored Threat Actors
https://innovatecybersecurity.com/security-threat-advisory/march-2023-patch-tuesday-closes-two-zero-days-actively-exploited-by-state-sponsored-actors/
CISA Issues Urgent Warning: Adobe ColdFusion Vulnerability Exploited in the Wild
https://thehackernews.com2023/03/cisa-issues-urgent-warning-adobe.html
Multiple Hacker Groups Exploit 3-Year-Old Vulnerability to Breach U.S. Federal Agency
https://thehackernews.com/2023/03/multiple-hacker-groups-exploit-3-year.html
SAP releases security updates fixing five critical vulnerabilities
https://www.bleepingcomputer.com/news/security/sap-releases-security-updates-fixing-five-critical-vulnerabilities/
GoBruteforcer: New Golang-Based Malware Breaches Web Servers Via Brute-Force Attacks
https://thehackernews.com/2023/03/gobruteforcer-new-golang-based-malware.html
BATLOADER Malware Uses Google Ads to Deliver Vidar Stealer and Ursnif Payloads
https://thehackernews.com/2023/03/batloader-malware-uses-google-ads-to.html
First-known Dero cryptojacking operation seen targeting Kubernetes
https://www.bleepingcomputer.com/news/security/first-known-dero-cryptojacking-operation-seen-targeting-kubernetes/
BianLian Ransomware Pivots From Encryption to Pure Data-Theft Extortion
https://www.darkreading.com/risk/bianlian-ransomware-pivots-encryption-pure-data-theft-extortion
Chinese and Russian Hackers Using SILKLOADER Malware to Evade Detection
https://thehackernews.com/2023/03/chinese-and-russian-hackers-using.html
GoatRAT Android Banking Trojan Targets Mobile Automated Payment System
https://www.darkreading.com/attacks-breaches/goatrat-android-trojan-targets-mobile-banking-automated-payment-system
Analysts Spot a Wave of SVB-Related Cyber Fraud Striking the Business Sector
https://www.darkreading.com/threat-intelligence/analysts-wave-svb-cyber-fraud-striking-business-sector

Hand-Picked Top-Read Stories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

What Happened To The Internet Archive?

Trending Tags

Weekly Top Ten Cybersecurity Stories – 3.17.2023

Previous Post

AI Use Cases For The Modern Cybersecurity Professional

Next Post

Pain in the Supply Chain

Threat Advisories

Palo Alto Recommends Urgent Mitigation For Authentication Bypass Vulnerability in PAN-OS

Weekly Top 10: 11.18.2024: Microsoft Exchange Adds Warning to Emails Abusing Spoofing Flaw; Evasive ZIP Concatenation: Trojan Targets Windows Users; Microsoft November 2024 Patch Tuesday Fixes 4 Zero-Days, 89 Flaws, and More.

Weekly Top 10: 11.11.2024: Veeam Backup Exploit Used by Frag Ransomware; North Korean Hackers Use macOS Malware to Steal Crypto; Palo Alto PAN-OS May be Vulnerable to RCE, and More.

Weekly Top 10: 11.04.2024: Android Malware ‘FakeCall’ Hijacks Outgoing Calls; PTZ Cameras Being Targeted Using Two Zero-Days; Hacker Group TeamTNT Targets Docker Environments, and More.

Weekly Top 10: 10.28.2024: Severe Flaws in E2EE Cloud Storage Platforms Used by Millions; ClickFix Tactic: The Phantom Meet; Firm Hacked After Accidentally Hiring North Korean Cyber Criminal, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware