TheCyberThrone Security Week in Review -September 17th 2022

Welcome to TheCyberThrone cybersecurity week in review will be posted covering the important security happenings . This review is for the week ending Saturday, September 17th, 2022.

This week started with the coverage on a Chinese cyberespionage group named Bronze President, which also goes by the name Mustang Panda, has been using a malware named PlugX to target the computers of political leaders across the Europe, West Asia, South America.

Google Cloud has announced the general availability of Certificate Manager, a service to acquire, manage, and deploy TLS certificates for use with Google Cloud workloads. AWS also introduced a API service for IAM Identity center

WordPress is in to center of series of attack, the first one is Researchers have publicized a six-year-old blind SSRF vulnerability in a WordPress Pingback Core feature that could enable DDoS attacks. WPGateway a popular WordPress plugin has been under attack due to Zero-Day Vulnerability and is actively exploited potentially allowing malicious actors to completely take over of 2.8M affected sites.

Researchers has disclosed six high severity firmware vulnerabilities affecting HP EliteBook devices. In another event, Apple has patched five security fixes including two vulnerabilities in its iPhones, iPads and Mac operating systems that are already being exploited.

Volaris Group, a private equity firm announced that it has acquired identity management solutions company Hitachi ID Systems for an undisclosed price and renamed the company Bravura Security. McAfee has also announced the launch of McAfee+, a new product line that encompasses privacy and identity protections.

Researches from Group-IB has came with a report about sophisticated Browser-in-the-Browser phishing technique is snaring Steam users. North American moving and storage rental company U-Haul has suffered a data breach in which certain sensitive customer data was stolen.

Microsoft patched 62 CVEs (excluding CVEs for chromium bugs) in its September 2022 Patch Tuesday release, with five rated as critical and 57 rated as important. Google has released the stable version of Chrome 105 update that resolves 11 vulnerabilities, including seven high-severity bugs reported by external researchers.

FishPig, a UK-based maker of e-commerce software used by as many as 200,000 websites, is urging customers to reinstall or update all existing program extensions after discovering a security breach of its distribution server that allowed criminals to surreptitiously backdoor customer systems.

Uber said that it reached out to law enforcement after a hacker apparently breached its network. A security engineer said the intruder provided evidence of obtaining access to crucial systems at the ride-hailing service.

Tanium has announced several integrations with Microsoft and the Tanium XEM platform to deliver enhanced security, performance, and automation at a large scale. Akamai has thwarted record-breaking DDoS assault in Europe with attack traffic spiking to 704.8 Mpps to cripple the organization’s business operations.

Bitdefender has released a free decryptor to allow LockerGoga ransomware victims to recover their encrypted files without paying a ransom. Researchers have revealed that threat actors may abuse Notepad++ plugins to bypass security mechanism and achieve persistence on their victim machine.

This brings end of this week in review security coverage. Thanks for visiting TheCyberThrone. If you like us please follow us on Facebook, Twitter