By security practitioners, for security practitioners innovate | novacoast federal | novaSOC | novacoast
By security practitioners, for security practitioners

Weekly Top Ten Cybersecurity Stories – 6.17.2022

WEEKLY TOP TEN | JUNE 17, 2022 12:55 GMT

Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:

  1. Threat Actors Are Abusing Atlassian Confluence Vulnerabilities to Deploy AvosLocker and Cerber2021 Ransomware
    https://www.bleepingcomputer.com/news/security/confluence-servers-hacked-to-deploy-avoslocker-cerber2021-ransomware/
  2. Microsoft Fortifies Azure Data Factory and Synapse Pipelines Against “SynLapse” Vulnerability
    https://thehackernews.com/2022/06/technical-details-released-for-synlapse.html
  3. HelloXD Ransomware Found Deploying MicroBackdoor Alongside Ransomware Payloads
    https://securityaffairs.co/wordpress/132207/malware/helloxd-ransomware-installs-microbackdoor.html
  4. Avast Security Researchers Discover “Syslogk” Linux Rootkit Using “Magic Packets” To Activate Backdoors on Networks
    https://securityaffairs.co/wordpress/132232/malware/syslogk-linux-rootkit.html
  5. JFrog Security Researchers Discover RCE Vulnerability in Fastjson Library
    https://securityaffairs.co/wordpress/132333/security/fastjson-library-rce.html
  6. Akamai Security Researchers Discover Panchan Peer-to-Peer Botnet Attacking Linux Servers
    https://www.akamai.com/blog/security/new-p2p-botnet-panchan
  7. Travis CI Logs Found Storing User Tokens in Plaintext, Vulnerable to Compromise
    https://blog.aquasec.com/travis-ci-security
  8. Proofpoint Discovers Potential Flaw in Office365 Allowing for Encryption of Cloud-based Data
    https://www.proofpoint.com/us/blog/cloud-security/proofpoint-discovers-potentially-dangerous-microsoft-office-365-functionality
  9. Microsoft Releases Patch for “Follina” Zero Day Flaw
    https://techcrunch.com/2022/06/15/follina-windows-zero-day/
  10. Citrix Patches CVE-2022-27511 Vulnerability Affecting Application Delivery Management (ADM)
    https://securityaffairs.co/wordpress/132299/security/citrix-application-delivery-management-flaw.html
Previous Post

Fortinet Training

Next Post

Weekly Top Ten Cybersecurity Stories – 6.24.2022

Innovate uses cookies to give you the best online experience. If you continue to use this site, you agree to the use of cookies. Please see our privacy policy for details.