Weekly Top Ten Cybersecurity Stories – 5.5.2023 – Innovate Cybersecurity

WEEKLY TOP TEN | MAY 5, 2023 16:10 GMT

Happy Cinco De Mayo! Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:

City of Dallas hit by Royal ransomware attack impacting IT services
https://www.bleepingcomputer.com/news/security/city-of-dallas-hit-by-royal-ransomware-attack-impacting-it-services/

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-061a
Ransomware gang hijacks university alert system to issue threats https://www.bleepingcomputer.com/news/security/ransomware-gang-hijacks-university-alert-system-to-issue-threats/
The beginning of the end of the password
https://blog.google/technology/safety-security/the-beginning-of-the-end-of-the-password/
Alert: Active Exploitation of TP-Link, Apache, and Oracle Vulnerabilities Detected https://thehackernews.com/2023/05/active-exploitation-of-tp-link-apache.html
Google will remove secure website indicators in Chrome 117 https://www.bleepingcomputer.com/news/google/google-will-remove-secure-website-indicators-in-chrome-117/

https://blog.chromium.org/2023/05/an-update-on-lock-icon.html
Not quite an Easter egg: a new family of Trojan subscribers on Google Play
https://securelist.com/fleckpe-a-new-family-of-trojan-subscribers-on-google-play/109643/
A doubled “Dragon Breath” adds new air to DLL sideloading attacks
https://news.sophos.com/en-us/2023/05/03/doubled-dll-sideloading-dragon-breath/
When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities https://ermetic.com/blog/azure/when-good-apis-go-bad-uncovering-3-azure-api-management-vulnerabilities/
Attack on Security Titans: Earth Longzhi Returns With New Tricks https://www.trendmicro.com/en_us/research/23/e/attack-on-security-titans-earth-longzhi-returns-with-new-tricks.html
New LOBSHOT malware gives hackers hidden VNC access to Windows devices https://www.bleepingcomputer.com/news/security/new-lobshot-malware-gives-hackers-hidden-vnc-access-to-windows-devices/

Hand-Picked Top-Read Stories

Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.

Weekly Top 10 – 04.15.2024- Google Bug Bounties, Medusa Ransomware Returns, LG Smart TVs Vulnerable, and More.

Weekly Top 10 – 04.9.2024- XZ Utils Backdoor, Vultur Banking Trojan, New Chrome Features, and More.

Trending Tags

Weekly Top Ten Cybersecurity Stories – 5.5.2023

Previous Post

Facing the Cybersecurity Talent Crisis with Innovative Solutions

Next Post

Weekly Top Ten Cybersecurity Stories – 5.12.2023

The New Standard of

Cybersecurity
Education

Innovate Cybersecurity Summit

Threat Advisories

Weekly Top 10 – 04.22.2024- MITRE breach, Hackers Exploit Fortinet Flaw, UNDP investigates ransomware attack, and More.

Weekly Top 10 – 04.15.2024- Google Bug Bounties, Medusa Ransomware Returns, LG Smart TVs Vulnerable, and More.

Weekly Top 10 – 04.9.2024- XZ Utils Backdoor, Vultur Banking Trojan, New Chrome Features, and More.

Weekly Top 10 – 04.2.2024- SharePoint and AMD Vulnerabilities, Password Spraying VPN Attacks, Tycoon 2FA, and More.

Weekly Top 10 – 03.25.2024- AI Enhanced Cyber Attacks Rising, Microsoft Warns Taxpayers of Tax Return Phishing Scams, “Fluffy Wolf” Stealer Malware Targets Corporate Environments, and More.

Education

Protecting Microsoft Teams From Data Exfiltration – A Tactical DLP Rule

Anatomy of a Data Breach

OpenAI Cybersecurity Research

Breach Report: Healthcare

Analysis of GalComm Chrome Extension Malware