Table of Contents
Do not index
Do not index
Here’s your daily dose of cybersecurity for 11th July 2023.
- Razer Investigates Data Breach Claims, Resets User Sessions. Information about a potential data breach at the popular gaming gear company emerged on Saturday, when someone posted on a hacker forum that they had stolen the source code, database, encryption keys, and backend access logins for Razer.com, the company's main website. The user offered to sell that data for $100,000 worth of Monero (XMR) cryptocurrency and urged interested individuals to contact him directly to close the deal. The publisher of the post has not set any limitations or exclusivity, meaning anyone willing to pay the requested amount would get the entire data set. Read the article here : https://ofofo.news/newsblog/?title=Razer-investigates-potential-data-breach-resets-user-sessions&id=69a7852a-3801-48a1-82e1-759d2db62ea6 Youtube : https://youtube.com/shorts/wTDl9e0zb-c Twitter : https://twitter.com/tryofofo/status/1678778270156992512 Instagram : https://www.instagram.com/reel/Cuj2_GIsCg6/ Reddit : https://www.reddit.com/r/securityupdates/comments/14wtm8z/razer_investigates_data_breach_claims_resets_user/
- Banking Firms Under Attack by Sophisticated 'Toitoin' Campaign. A sophisticated and evasive malware campaign is targeting businesses in Latin America with a multi-stage attack that starts with phishing and ends with the deployment of a novel Trojan dubbed Toitoin that steals critical system information and data from financial institutions. Researchers from Zscaler discovered the elaborate campaign, which features a multistage infection chain that uses custom-built modules throughout each stage, to inject harmful code into remote processes and circumvent user account control (UAC), among other activities. Read the article here : https://ofofo.news/newsblog/?title=Banking-Firms-Under-Attack-by-Sophisticated-Toitoin-Campaign&id=6007a2ac-dccb-4575-a224-e592875acd7e Youtube : https://youtu.be/8zqmIo1qD0s Twitter : https://twitter.com/tryofofo/status/1678778275781578752 Instagram : https://www.instagram.com/reel/CukCGYQtYrI/ Reddit : https://www.reddit.com/r/securityupdates/comments/14wtq3s/banking_firms_under_attack_by_sophisticated/
- Apple Releases Emergency Update to Fix Zero-Day Exploited in Attacks. Apple has issued a new round of Rapid Security Response (RSR) updates to address a new zero-day bug exploited in attacks and impacting fully-patched iPhones, Macs, and iPads. RSR patches have been introduced as compact updates designed to address security concerns on the iPhone, iPad, and Mac platforms, and they serve the purpose of resolving security issues that arise between major software updates, according to this support document. Furthermore, some out-of-band security updates may also be employed to counter security vulnerabilities actively exploited in attacks. If you turn off automatic updates or don't install Rapid Security Responses when offered, your device will be patched as part of future software upgrades. Read the article here : https://ofofo.news/newsblog/?title=Apple-releases-emergency-update-to-fix-zero-day-exploited-in-attacks&id=7244dcf1-afc7-4013-b470-ef1d30dbde0b Youtube : https://youtu.be/8n9hbCv3tkE Twitter : https://twitter.com/tryofofo/status/1678778281091538945 Instagram : https://www.instagram.com/reel/CukCm4ruHVH/ Reddit : https://www.reddit.com/r/securityupdates/comments/14wu2e9/apple_releases_emergency_update_to_fix_zeroday/
- Amazon Prime Day Draws out Cyber Scammers. In the days leading up to the Amazon Prime Day sale, cybersecurity experts are already warning they have seen an uptick in malicious activity aimed at both shoppers and retailers. Currently Trend Micro is tracking an Amazon Prime Day-themed SMS-text phishing lure asking shoppers to click a malicious link to fix an issue with their account, claim a gift card, or receive free shipping and other deals, prompting targets to share details like emails, phone numbers of other personal information, the company said. Besides scamming shoppers, experts including Antoine Vastel, head of research at DataDome, have been tracking the ramp up of bad bot activity, which, heading into Amazon Prime Day, currently accounts for about 30% of all website traffic, he said. These retail bots are poised to snap up popular items quickly, so they can be re-sold at a markup. Read the article here : https://ofofo.news/newsblog/?title=Amazon-Prime-Day-Draws-out-Cyber-Scammers&id=c541d51f-cd82-4e18-a4b8-90d8b32003e2 Youtube : https://youtube.com/shorts/QJDmBAHlu6c Twitter : https://twitter.com/tryofofo/status/1678778286896451584 Instagram : https://www.instagram.com/reel/CukDLOUu361/ Reddit : https://www.reddit.com/r/securityupdates/comments/14wuiz3/amazon_prime_day_draws_out_cyber_scammers/
- RomCom Hackers Target NATO Summit Attendees in Phishing Attacks. A threat actor referred to as 'RomCom' has been targeting organizations supporting Ukraine and guests of the upcoming NATO Summit set to start tomorrow in Vilnius, Lithuania. BlackBerry's research and intelligence team recently discovered two malicious documents that impersonated the Ukranian World Congress organization and topics related to the NATO Summit to lure selected targets. The attackers used a replica of the Ukrainian World Congress website hosted on an ".info" domain instead of the real one that uses an ".org" top-level domain. The downloaded documents come with malicious code that exploits the RTF file format to initiate connections to external resources, eventually loading malware onto the victim's system. Read the article here : https://ofofo.news/newsblog/?title=RomCom-hackers-target-NATO-Summit-attendees-in-phishing-attacks&id=bbc26352-5f5e-4622-b8a7-0a4e0c6e16cb Youtube : https://youtu.be/vJw6r1njHNA Twitter : https://twitter.com/tryofofo/status/1678778292277747712 Instagram : https://www.instagram.com/reel/CukD5LZLiPR/ Reddit : https://www.reddit.com/r/securityupdates/comments/14wup2h/romcom_hackers_target_nato_summit_attendees_in/
Written by
