Table of Contents
Do not index
Do not index
Here’s your daily dose of cybersecurity for 12th July 2023.
- Beware of Big Head Ransomware: Spreading Through Fake Windows Updates. A developing piece of ransomware called Big Head is being distributed as part of a malvertising campaign that takes the form of bogus Microsoft Windows updates and Word installers. Big Head was first documented by Fortinet FortiGuard Labs last month, when it discovered multiple variants of the ransomware that are designed to encrypt files on victims' machines in exchange for a cryptocurrency Read the article here : https://ofofo.news/newsblog/?title=Beware-of-Big-Head-Ransomware-Spreading-Through-Fake-Windows-Updates&id=27c2f758-20a0-4e9e-8ae8-518f15346fd6 Youtube : https://youtu.be/BNaBFUTBMG8 Twitter : https://twitter.com/tryofofo/status/1679801796800450561 Instagram : https://www.instagram.com/reel/CurF_MurH_j/ Reddit : https://www.reddit.com/r/securityupdates/comments/14zd2wv/beware_of_big_head_ransomware_spreading_through/
- SCARLETEEL Cryptojacking Campaign Exploiting AWS Fargate in Ongoing Campaign. Cloud environments are under attack by SCARLETEEL, which has now set its sights on Amazon Web Services (AWS) Fargate. SCARLETEEL was first exposed in February 2023 and involved a sophisticated attack chain that resulted in the theft of proprietary data from AWS infrastructure and the illegal deployment of cryptocurrency miners. The attack starts with the exploitation of JupyterLab Notebook containers deployed in a Kubernetes cluster. The attacker then conducts reconnaissance and gathers AWS credentials to access the victim's environment. The attacker installs the AWS command line tool and a framework called Pacu for subsequent exploitation. The attack also uses shell scripts to retrieve AWS credentials, some of which target AWS Fargate compute engine instances. Read the article here : https://ofofo.news/newsblog/?title=SCARLETEEL-Cryptojacking-Campaign-Exploiting-AWS-Fargate-in-Ongoing-Campaign&id=80456579-0e61-42f0-a837-3bde6069b3cc Youtube : https://youtube.com/shorts/3RZrxpnb_Jk?feature=share Twitter : https://twitter.com/tryofofo/status/1679801801133166594 Instagram : https://www.instagram.com/reel/CurGgEhpCB1/ Reddit : https://www.reddit.com/r/securityupdates/comments/14zd3ii/scarleteel_cryptojacking_campaign_exploiting_aws/
- RomCom Spies Target NATO Summit Ahead of Zelensky’s Arrival. RomCom, a known threat actor targeting pro-Ukraine organizations, has launched a new campaign. Researchers at BlackBerry Threat Research and Intelligence discovered two malicious documents, attributed to RomCom, targeting attendees of a NATO Summit in Lithuania. One document impersonates the Ukrainian World Congress organization, and the other is a fake lobbying document in support of Ukraine. The campaign seems to be aimed at attendees of the NATO Summit in Vilnius to discuss Ukraine's potential membership in NATO. Read the article here : https://ofofo.news/newsblog/?title=RomCom-Spies-Target-NATO-Summit-Ahead-of-Zelensky-s-Arrival&id=b9ca34f2-b6a9-416b-bdaa-ec961ac9c44b Youtube : https://youtu.be/oCOimwN2-T4 Twitter : https://twitter.com/tryofofo/status/1679801805616848896 Instagram : https://www.instagram.com/reel/CurGx81vRX_/ Reddit : https://www.reddit.com/r/securityupdates/comments/14zd40m/romcom_spies_target_nato_summit_ahead_of/
- Bangladesh Government Website Leaks Personal Data. Bitcrack Cyber Security researcher Viktor Markopoulos discovered a leak of data belonging to millions of Bangladeshi citizens. The data leak was discovered in late June and taken down five days later. Markopoulos found records dating back to at least 2021, but it is unclear if the data had been compromised or used. The Bangladeshi e-Government Computer Incident Response Team is investigating the matter. The vulnerable API appeared as a Google search result and was easy to exploit. TechCrunch was able to verify the leaked data using the public search tool of the government website. The leaked data included the name of the person who applied to register and, in some cases, their parents' names. Read the article here :https://ofofo.news/newsblog/?title=Bangladesh-Government-Website-Leaks-Personal-Data&id=ec50b7f5-6486-4604-9847-b2507163c1d7 Youtube : https://youtu.be/0Uzm3QTOnDM Twitter : https://twitter.com/tryofofo/status/1679801809333018624 Instagram : https://www.instagram.com/reel/CurHL65vxeT/ Reddit : https://www.reddit.com/r/securityupdates/comments/14zd4ua/bangladesh_government_website_leaks_personal_data/
- Tracy Resident Charged With Computer Attack On Discovery Bay Water Treatment Facility. Rambler Gallo has been indicted for intentionally causing damage to a protected computer. He accessed the computer network for the Discovery Bay Water Treatment Facility and uninstalled the main operational and monitoring system, causing a threat to public health and safety. Gallo was a full-time employee of a private company that contracted with Discovery Bay to operate the town's wastewater treatment facility. He installed software on his own personal computer and on the company's internal network to gain remote access to Discovery Bay's Water Treatment facility computer network. The charges against Gallo carry a maximum statutory penalty of 10 years in prison and a fine of $250,000. Gallo has made his initial federal court appearance and is scheduled to appear again on July 20, 2023. The case is being investigated by the FBI. Read the article here : https://ofofo.news/newsblog/?title=Tracy-Resident-Charged-With-Computer-Attack-On-Discovery-Bay-Water-Treatment-Facility&id=e7dc24ee-d1fe-498a-8f9e-b118f5a109ac Youtube : https://youtu.be/n8ksJmMPKe8 Twitter : https://twitter.com/tryofofo/status/1679801814160666628 Instagram : https://www.instagram.com/reel/CurHjz5OeJr/ Reddit : https://www.reddit.com/r/securityupdates/comments/14zd5sj/tracy_resident_charged_with_computer_attack_on/
Written by
