05 July 2024 WEEKLY NEWSLETTER

BOCRA website

     

NEWSLETTER

 

The Emerging Role of AI in Open-Source Intelligence

                                                     LATEST CYBER HACKS 
 
 
icon

TeamViewer says Russia’s ‘Cozy Bear’ hackers attacked corporate IT system

In an updated statement, the company attributed a recently announced incident to APT29, also known as Cozy Bear, BlueBravo and Midnight Blizzard. The group, allegedly housed within Russia’s Foreign Intelligence Service (SVR), has been implicated in several of the most consequential hacks of the last decade —including the 2020 SolarWinds hack  and the 2016 attack on the Democratic National Committee.
icon

Microsoft MSHTML Flaw Exploited to Deliver MerkSpy Spyware Tool

Unknown threat actors have been observed exploiting a now-patched security flaw in Microsoft MSHTML to deliver a surveillance tool called MerkSpy as part of a campaign primarily targeting users in Canada, India, Poland, and the U.S.

                                                      VULNERABILITIES
 
 
icon

RCE, DoS Exploits Found in Rockwell PanelView Plus: Patch Now

Microsoft has discovered and disclosed two significant vulnerabilities in Rockwell Automation’s PanelView Plus devices. These vulnerabilities could be remotely exploited by unauthenticated attackers, enabling them to execute remote code and initiate denial-of-service (DoS) attacks.
icon

Dark Web Actors Exploiting a Critical Account Takeover Vulnerability Targeting NPM Accounts

A threat actor identified as Alderson1337 has surfaced on BreachForums offering to sell an exploit designed to target ‘npm’ accounts through a critical account takeover vulnerability. ‘npm’ stands as a pivotal package manager for JavaScript, managed by npm, Inc., a subsidiary of GitHub.
icon

New Intel CPU Vulnerability 'Indirector' Exposes Sensitive Data

Modern CPUs from Intel, including Raptor Lake and Alder Lake, have been found vulnerable to a new side-channel attack that could be exploited to leak sensitive information from the processors.

                                     MALWARES
 
 
icon

New ransomware group uses phone calls to pressure victims, researchers say

Researchers say they have discovered a new ransomware group named Volcano Demon that has carried out at least two successful attacks in the past two weeks.
icon

FakeBat Loader Malware Spreads Widely Through Drive-by Download Attacks

The loader-as-a-service (LaaS) known as FakeBat has become one of the most widespread loader malware families distributed using the drive-by download technique this year, findings from Sekoia reveal.
icon

New Orcinius Trojan Uses VBA Stomping to Mask Infection

This week, the SonicWall Capture Labs threat research team investigated a sample of Orcinius malware. This is a multi-stage trojan that is using Dropbox and Google Docs to download second-stage payloads and stay updated.

                               GENERAL NEWS
 
 
icon

Starlink Mini brings space internet to backpackers

SpaceX’s Starlink internet-from-space service is already available for boats, planes, vanlifers, Amazonian villages and rural homes in over 75 countries — now it’s coming to backpackers.
icon

The Internet Might Actually Be Good for Us After All

Scrolling your phone sounds like the opposite of self-care, but new research suggests that internet use and access actually boost one’s happiness.