TheCyberThrone week in review – August 6th 2022
Welcome to TheCyberThrone cybersecurity week in review will be blogged covering the important security happenings . This review is for the week ending Saturday, August 6th, 2022.
Starting this week, XSS vulnerabilities found in Google cloud and Google play for which Google played a hefty bounty. In another event North Korean linked spytounge uses chromium malicious extensions to spy on users. Google also released new chrome browser in which more critical issues are been addressed. In another event involving chromium project, site isolation feature is used to introduce array of attack.
Western Australia University affected by a data breach in which sensitive PII stolen. USA Federal commission warns on smishing attacks.
In another event Blackcat claims responsible for Luxembourg endeavour attack. While locking 3.0 introduced bug bounty program to enhance its attack suite and Zcash payments with new exortion techniques using cobalt strike.
In an array of events involving Twitter, illegal use of API keys exposed 3000 mobile apps leaks data and Twitter confirms, due to the existence of zeroday in its platform data breach has occurred last month.
Taiwan government sites cripped by DDoS attacks from China followed by a missle attack on Japan following american high commissioner visit which created cyber tensions.
The major news of the week comes, Indian government withdrawn Data protection bill seemed to add more amendments that was recommended by parliamentary panel.
Virustotal has revealed most commonly exploited apps comprising vlc media playe, Skype Adobe. VMware releases patches for authentication bypass bug in its products. In another event VMware releases Carbon Black product for AWS workloads.
The major acquisition the week is private firm Thoma bravo acquires ping identity. Also a researcher co firms 35k malicious codes inserted to github via typo squatting.
Ukraine shuts down bots that’s reads Russian propaganda. Atlassian Confluence recently patched Question bug exploited in wild to deploy Ljl backdoor.
Mandiant accuses Iran for an attack on Albanian government last month. Major WordPress plugin Download manager affected by a vulnerability that inturn affects 1 lakh sites.
Korean pharma and industrial sectors are affected by Gwisinlocker ransomware. We also seen campaigns that spread roadsweep ransomware
This brings end of this week in review security coverage.Thanks for visiting TheCyberThrone. If you like us please follow us on Facebook, Twitter