By security practitioners, for security practitioners novacoast federal | Pillr | novacoast | about innovate
By security practitioners, for security practitioners

Weekly Top Ten Cybersecurity Stories – 8.26.2022

WEEKLY TOP TEN | AUGUST 26, 2022 17:25 GMT

Our Threat Operations and Intelligence team compiles a daily digest of new cybersecurity threats from around the Internet. This top 10 has been culled from the 40+ unique stories we found relevant over the week, ranked by highest risk:

  1. Palo Alto Warns of 1100% Uptick in Phishing Abusing SaaS Platforms to Evade Detection
    https://www.bleepingcomputer.com/news/security/phishing-attacks-abusing-saas-platforms-see-a-massive-1-100-percent-growth/

  2. “Oktapus” Phishing Campaign Hits 130+ Companies, Steal 9,900 Credentials
    https://www.bleepingcomputer.com/news/security/twilio-hackers-hit-over-130-orgs-in-massive-okta-phishing-attack/

  3. Cybereason Alerts of HavanaCrypt Campaign Masquerading as Google Updater
    https://www.cybereason.com/blog/threat-alert-havanacrypt-ransomware-masquerading-as-google-update

  4. Cisco Patches AsyncOS CVE-2022-20871 Vulnerability Allowing for Privilege Escalation
    https://securityaffairs.co/wordpress/134580/security/cisco-secure-web-appliance-flaw.html

  5. FBI Warns of Increasing Use of Residential IP Proxies To Complicate Detection While Performing Credential Stuffing Attacks
    https://www.bleepingcomputer.com/news/security/fbi-warns-of-residential-proxies-used-in-credential-stuffing-attacks/

  6. “DirtyCred” Linux Vulnerability Discovered by Security Researchers, Called “As Nasty As Dirty Pipe”
    https://thehackernews.com/2022/08/as-nasty-as-dirty-pipe-8-year-old-linux.html

  7. Cozy Bear APT Using Dormant Accounts to Bypass MFA and Harvest Emails
    https://www.zdnet.com/article/hackers-are-using-this-sneaky-trick-to-exploit-dormant-microsoft-cloud-accounts-and-bypass-multi-factor-authentication/

  8. Researchers Discover Escanor RAT Targeting IoT and Devices within Banking Industry
    https://securityaffairs.co/wordpress/134697/malware/escanor-malware-ms-docs.html

  9. XCSSET macOS Malware Updates to Better Target Monterey Distro
    https://thehackernews.com/2022/08/xcsset-malware-updates-with-python-3-to.html

  10. CISA Adds PAN-OS CVE-2022-0028 Denial of Service Vulnerability to Known Exploited Vulnerability Catalog
    https://securityaffairs.co/wordpress/134749/security/palo-alto-networks-pan-os-flaw-2.html

Previous Post

CISA Warns of Exploited DDoS Vulnerability Impacting Palo Alto Firewalls

Next Post

Fire Eye Training and Certification

Innovate uses cookies to give you the best online experience. If you continue to use this site, you agree to the use of cookies. Please see our privacy policy for details.