By security practitioners, for security practitioners innovate | novacoast federal | novaSOC | novacoast
By security practitioners, for security practitioners

Weekly Top Ten Cybersecurity Stories – 5.20.2022

WEEKLY TOP TEN | MAY 20, 2022 14:00 GMT

Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:

  1. CISA Orders Emergency Patch of VMWare CVE-2022-22972 and 22973
    https://securityaffairs.co/wordpress/131436/security/cisa-orders-federal-agencies-to-vmware-flaws.html
  2. CISA Removes CVE-2022-26925 From Catalog After Discovering Flaw in Domain Controller Installations
    https://www.cisa.gov/uscert/ncas/current-activity/2022/05/13/cisa-temporarily-removes-cve-2022-26925-known-exploited
  3. CISA Discloses Routinely Exploited Threat Actor Initial Access Techniques
    https://www.cisa.gov/uscert/ncas/alerts/aa22-137a
  4. Security Researchers Discover Flaw in Bluetooth Physical Architecture Allowing for Compromise Even if Turned Off
    https://securityaffairs.co/wordpress/131336/hacking/malware-execution-iphone-turned-off.html
  5. Microsoft Warns Sysrv-K Botnet Abusing WordPress Vulnerabilities and VMWare Spring Cloud CVE to Propagate
    https://www.zdnet.com/article/microsoft-warns-this-botnet-has-new-tricks-to-target-linux-and-windows-systems/
  6. CISA Adds CVE-2022-30525 Vulnerability for Zyxel Firewall to Catalog
    https://thehackernews.com/2022/05/watch-out-hackers-begin-exploiting.html
  7. Jamf Threat Labs Team Discovers Variant of MacOS Malware “UpdateAgent” Written in Swift
    https://securityaffairs.co/wordpress/131391/malware/updateagent-macos-malware-swift.html
  8. Microsoft Warns of Threat Actors Abusing SQLPS to Brute Force Externally-Facing MSSQL Server Databases
    https://www.techradar.com/news/brute-force-attacks-targeting-mssql-servers-microsoft-warns
  9. Italian Security Researchers Report That APT Groups Overwhelmingly Utilize Existing Vulnerabilities Over Zero Day Exploits
    https://threatpost.com/apts-overwhelmingly-share-known-vulnerabilities-rather-than-attack-o-days/179657/
  10. PRODAFT Intelligence Team Performs Deep Dive on WIZARD SPIDER Technical Playbook
    https://www.zdnet.com/article/wizard-spider-hacking-group-hires-cold-callers-to-scare-ransomware-victims-into-paying-up/

Previous Post

May 2022 Windows Patches Could Cause Auth Issues On Domain Controllers

Next Post

Deep Dive into SOC-as-a-Service

Innovate uses cookies to give you the best online experience. If you continue to use this site, you agree to the use of cookies. Please see our privacy policy for details.