InfoSec / Cyber Security News

thehackernews.com

• Apple's New iCloud Private Relay Service Leaks Users' Real IP Addresses
• Google Warns of a New Way Hackers Can Make Malware Undetectable on Windows
• Cisco Releases Patches 3 New Critical Flaws Affecting IOS XE Software
• Urgent Apple iOS and macOS Updates Released to Fix Actively Exploited Zero-Days
• Microsoft Exchange Bug Exposes ~100,000 Windows Domain Credentials
• A New Bug in Microsoft Windows Could Let Hackers Easily Install a Rootkit

bleepingcomputer.com

• Researcher drops three iOS zero-days that Apple refused to fix
• Cisco fixes highly critical vulnerabilities in IOS XE Software
• SonicWall fixes critical bug allowing SMA 100 device takeover
• Google: Manifest V2 Chrome extensions to stop working in 2023
• Microsoft gets Windows 11 ready for release with new build
• Hacking group used ProxyLogon exploits to breach hotels worldwide

wired.com

• Ransomware Isn't Back. It Never Left
• He Escaped the Dark Web's Biggest Bust. Now He's Back
• The iOS 15 Privacy Settings You Should Change Right Now
• How to Set Up a NAS to Securely Share Files
• Former US Intelligence Operatives Admit They Hacked for UAE
• Apple and Google Go Further Than Ever to Appease Russia

krebsonsecurity.com

• Indictment, Lawsuits Revive Trump-Alfa Bank Story
• Does Your Organization Have a Security.txt File?
• Trial Ends in Guilty Verdict for DDoS-for-Hire Boss
• Customer Care Giant TTEC Hit By Ransomware
• Microsoft Patch Tuesday, September 2021 Edition
• KrebsOnSecurity Hit By Huge New IoT Botnet “Meris”

zerodayinitiative.com

• CVE-2021-26084: Details on the Recently Exploited Atlassian Confluence OGNL Injection Bug
• The September 2021 Security Update Review
• Analysis of a Parallels Desktop Stack Clash Vulnerability and Variant Hunting using Binary Ninja
• CVE-2021-2429: A Heap-based Buffer Overflow Bug in the MySQL InnoDB memcached Plugin
• ProxyToken: An Authentication Bypass in Microsoft Exchange Server
• From Pwn2Own 2021: A New Attack Surface on Microsoft Exchange - ProxyShell!

reddit.com/r/InfoSecNews

• 3.8 billion Clubhouse and Facebook user records allegedly scraped and merged, put for sale online
• New FamousSparrow APT group used ProxyLogon exploits in its attacks
• Lawsuits, Indictments Revive Trump-Alfa Bank Story
• Crystal Valley hit by ransomware attack, it is the second farming cooperative shut down in a week
• Peeking into CVE-2021-40444 | MS Office Zero-Day Vulnerability Exploited in the Wild
• REVil ransomware devs added a backdoor to cheat affiliates

threatpost.com

• Apple Patches 3 More Zero-Days Under Active Attack
• REvil Affiliates Confirm: Leadership Were Cheating Dirtbags
• 5 Tips for Achieving Better Cybersecurity Risk Management
• 100M IoT Devices Exposed By Zero-Day Bug
• FamousSparrow APT Wings in to Spy on Hotels, Governments
• Google Report Spotlights Uptick in Controversial ‘Geofence Warrants’ by Police

reddit.com/r/cybersecurity

• Mentorship Monday
• AMA Series - Ask a CISO Anything
• Disclosure of three 0-day iOS vulnerabilities and critique of Apple Security Bounty program
• New macOS zero-day bug lets attackers run commands remotely
• Rant: Client Pitched Cyber Solutions from Non-Technical Staff
• Hit Me with a Wrench All You Want, I Can’t Tell You My Password

reddit.com/r/netsec

• /r/netsec's Q3 2021 Information Security Hiring Thread
• Disclosure of three 0-day iOS vulnerabilities and critique of Apple Security Bounty program
• Financially motivated actor breaks certificate parsing to avoid detection
• IAM Vulnerable - Assessing the AWS Assessment Tools
• Analysis of products made by Huawei, Xiaomi and OnePlus
• Saved by the log: Building IR support into software design

reddit.com/r/websec

• Docker for CTFs (Application Virtualization)
• Very simple example of an SSRF (Server Side Request Forgery) vulnerability
• URL Filter Subversion
• I made a video trying to explain XSS. Please feel free to leave any constructive criticism.
• Beginner trying to understand WSDL, SOAP, and SOAP messages for a "Secure Web Development" course
• Burp Suite Certification

reddit.com/r/pwned

• Geico data breach exposed customers' driver's license numbers
• Codecov.io: "Unauthorized access and alterations to our Bash Uploader since Jan 31, 2021, which enabled them to potentially export information stored in our users' continuous integration (CI) environments"
• Mobikwik (India) KYC data leaked
• $5.7 Million Crypto Stolen Due To A Security Breach at Cryptocurrency platform Roll
• American Armed Forces Mutual Aid Association hack impacted more than 161,000

embracethered.com

• Video: Web Application Security Fundamentals
• Backdoor users on Linux with uid=0
• Using Microsoft Counterfit to create adversarial examples for Husky AI
• Using procdump on Linux to dump credentials
• The Silver Searcher - search through code and files quickly
• Automating Microsoft Office to Achieve Red Teaming Objectives

darkreading.com

• UK MoD Data Breach Shows Cybersecurity Must Protect Both People and Data
• FragAttacks Foil 2 Decades of Wireless Security
• Researchers Call for 'CVE' Approach for Cloud Vulnerabilities
• HTTP/2 Implementation Errors Exposing Websites to Serious Risks
• CISA Launches JCDC, the Joint Cyber Defense Collaborative
• Incident Responders Explore Microsoft 365 Attacks in the Wild

trendmicro.com

• Virtual Event: Google Cloud Next | October 12 – 14
• Cyberattacks from all Angles: 2021 Midyear Report
• CISA Reports Top Vulnerabilities From Remote Work
• Cryptominer z0Miner Uses Newly Discovered Vulnerability CVE-2021-26084 to Its Advantage
• Reduce Risk with an Open Source Code Scanner

welivesecurity.com

• Bug in macOS Finder allows remote code execution
• FamousSparrow: A suspicious hotel guest
• Plugging the holes: How to prevent corporate data leaks in the cloud
• European police dismantle cybercrime ring with ties to Italian Mafia
• Week in security with Tony Anscombe
• Numando: Count once, code twice

helpnetsecurity.com

• A new zero-day is being exploited to compromise Macs (CVE-2021-30869)
• New infosec products of the week: September 24, 2021
• Implementing risk quantification into an existing GRC program
• The evolution of DRaaS
• Policy and patience key in Biden’s cybersecurity battle

nakedsecurity.sophos.com

• STILL ALIVE! iOS 12 gets 3 zero-day security patches – update now
• How Outlook “autodiscover” could leak your passwords – and how to stop it
• VMware patch bulletin warns: “This needs your immediate attention.”
• iOS 15 launches with 22 documented security patches – including a Face ID bypass using a “3D model”
• “Back to basics” as courier scammers skip fake fees and missed deliveries

insights.infosec-jobs.com

• A first update on our salary survey
• Share your salary and see what everyone else is making in InfoSec / the Cyber Security space
• The 10 most in-demand roles in the Information Security domain
• 2021 so far – A few Updates
• We launched “jobmarks”
• We now have “Dark Mode”

securityweek.com

• LG to Acquire Vehicle Cybersecurity Firm Cybellum
• CISA Opens IPv6 Guidance to Public Feedback
• Port of Houston Target of Suspected Nation-State Hack
• F5 to Acquire Threat Stack for $68 Million in Cash
• Working Securely From Anywhere With Zero Trust

securityboulevard.com

• Check: that Republican audit of Maricopa
• Cybersecurity Leaders on Insider Threat Awareness Month
• Apple Digital Driver’s License Part 2
• THE 2021 OWASP TOP TEN EMPHASIZES SECURITY CONTROL AREAS OVER INDIVIDUAL VULNERABILITIES FOR IMPROVED RISK MANAGEMENT
• Why Developers Need More than SAST and DAST for Real Code Security

siliconrepublic.com

• Microsoft security team detects major phishing-as-a-service operation
• Only 3pc of Ireland was worried about healthcare data security before HSE breach
• The future of printing: Are we facing a paperless world?
• VMware issues critical patch for ransomware vulnerability
• Meet the students representing Ireland in ‘the Eurovision of cybersecurity’

csoonline.com

• Security Recruiter Directory
• Breach reporting required for health apps and devices, FTC says
• 10 top API security testing tools
• Exchange Autodiscover feature can cause Outlook to leak credentials
• Yes, the FBI held back REvil ransomware keys
• US cryptocurrency exchange sanctions over ransomware likely not the last

kitploit.com

• Reconky - A Great Content Discovery Bash Script For Bug Bounty Hunters Which Automate Lot Of Task And Organized It
• JSPanda - Client-Side Prototype Pullution Vulnerability Scanner
• Wordlistgen - Quickly Generate Context-Specific Wordlists For Content Discovery From Lists Of URLs Or Paths
• AES256_Passwd_Store - Secure Open-Source Password Manager
• DirSearch - A Go Implementation Of Dirsearch

grahamcluley.com

• Lithuania warns firms not to use Xiaomi and Huawei smartphones after investigation finds security and censorship concerns
• Smashing Security podcast #244: Facebook Ray-Bans, VPN spies, and AI camouflage
• US Government tells firms not to give in to ransomware demands, as first crypto exchange sanctioned for laundering cyber ransoms
• Predict 21 – the intelligence summit from Recorded Future you cannot afford to miss, October 12-13 2021
• Facebook’s Ray-Ban Stories glasses have got a problem