Daily Cybersecurity News - 31.07.23

Here’s your daily dose of cybersecurity for 31.07.23

Do not index
Do not index
Here’s your daily dose of cybersecurity for 31.07.23
  1. Fruity Trojan uses deceptive software installers to spread RAMCOS RAT Fruity Trojan uses deceptive software installers to spread RAMCOS RAT. Cybersecurity threat actors are tricking users into downloading the Fruity Downloader malware by disguising it in software installers on fake websites. The ultimate goal is to install remote Trojans like RAMCOS RAT. The targeted software includes tools for fine-tuning CPUs, graphic cards and BIOS, as well as PC hardware monitoring tools and other applications. Read the article here : https://ofofo.news/newsblog/?title=Fruity-Trojan-Uses-Deceptive-Software-Installers-to-Spread-Remcos-RAT&id=295518b6-40b7-4029-9fc5-31048d9eede4 Youtube : https://youtube.com/shorts/aCa-CRKWJk0 Twitter : https://twitter.com/tryofofo/status/1686648645226303488 Instagram : https://www.instagram.com/reel/CvbnyUpxvPw/ Reddit : https://www.reddit.com/r/securityupdates/comments/15g228e/fruity_trojan_uses_deceptive_software_installers/
  1. Microsoft Edge is getting a darker dark mode theme Microsoft Edge is getting a darker dark mode theme. Microsoft has quietly announced an enhancement to the Edge browser's dark mode, making it even darker. The current dark mode, characterized by its grey tones, is set to be replaced with a richer black version, providing users with an even darker browsing experience. This update is currently available for testing in Edge Canary, Microsoft experimental version of the Edge browser. It is used to test and develop new features before they are rolled out to the general public. Read the article here : https://ofofo.news/newsblog/?title=Microsoft-Edge-is-getting-a-darker-dark-mode-theme&id=9de71769-5a3e-4b31-b547-262f642f10bb Youtube : https://youtube.com/shorts/83PVO_em8f8 Twitter : https://twitter.com/tryofofo/status/1686648648728563712 Instagram : https://www.instagram.com/reel/CvbpR9pPXUF/ Reddit : https://www.reddit.com/r/securityupdates/comments/15g2317/microsoft_edge_is_getting_a_darker_dark_mode_theme/
  1. Google: Android patch gap makes n-days as dangerous as zero-days Google has published its annual 0-day vulnerability report, presenting in-the-wild exploitation stats from 2022 and highlighting a long-standing problem in the Android platform that elevates the value and use of disclosed flaws for extended periods. More specifically, Google's report highlights the problem of n-days in Android functioning as 0-days for threat actors. Read the article here : https://ofofo.news/newsblog/?title=Google-Android-patch-gap-makes-n-days-as-dangerous-as-zero-days&id=3fdcfac7-b05a-43bf-8088-f740e6c83d99 Youtube : https://youtube.com/shorts/u194bYSBY2M Twitter : https://twitter.com/tryofofo/status/1686648652629266432 Instagram : https://www.instagram.com/reel/CvbplAaummn/ Reddit : https://www.reddit.com/r/securityupdates/comments/15g259p/google_android_patch_gap_makes_ndays_as_dangerous/
  1. Hackers Deploy SUBMARINE Backdoor in Barracuda Email Security Gateway Attacks The U.S. Cybersecurity and Infrastructure Security Agency (CISA) revealed information about a novel persistent backdoor named SUBMARINE, used by hackers in attacks on Barracuda Email Security Gateway (ESG) appliances. Consisting of several artifacts, including a SQL trigger, shell scripts, and a loaded library for a Linux daemon, SUBMARINE showcases the complex strategies employed by modern cyber threats. Read the article here : https://ofofo.news/newsblog/?title=Hackers-Deploy-SUBMARINE-Backdoor-in-Barracuda-Email-Security-Gateway-Attacks&id=b57df0dd-0f19-41cd-bf40-34cfb7b844bb Youtube : https://youtube.com/shorts/Pu5NhgP5YIA Twitter : https://twitter.com/tryofofo/status/1686648656051757057 Instagram : https://www.instagram.com/reel/Cvbqa6bMnkZ/ Reddit : https://www.reddit.com/r/securityupdates/comments/15g26eg/hackers_deploy_submarine_backdoor_in_barracuda/
  1. Stark#Mule Malware Campaign Targets Koreans, Uses US Army Documents North Korean attackers are suspected behind the Stark#Mule malware campaign that targets Koreans using U.S. Army documents. The techniques used mirror those in previous attacks from the region and could be associated with notorious cyber-espionage organizations, showcasing the persistent nature of state-sponsored cyber threats. Read the article here : https://ofofo.news/newsblog/?title=Stark-Mule-Malware-Campaign-Targets-Koreans-Uses-US-Army-Documents&id=3261f42d-ca97-4974-9cb4-1278dd7fb514 Youtube : https://youtube.com/shorts/jQWQ328ver8 Twitter : https://twitter.com/tryofofo/status/1686648659604369408 Instagram : https://www.instagram.com/reel/Cvbq1PVNGVt/ Reddit : https://www.reddit.com/r/securityupdates/comments/15g26x6/starkmule_malware_campaign_targets_koreans_uses/
  1. Apple rejects new name 'X' for Twitter iOS app because of rules Despite Elon Musk pushing for Twitter's new name and logo, 'X', Apple's App Store has rejected it. The new name fails to meet the App Store's minimum character requirements, shedding light on the challenges inherent in rebranding, particularly within the constraints of various online platforms. Read the article here : https://ofofo.news/newsblog/?title=Apple-rejects-new-name-X-for-Twitter-iOS-app-because-rules&id=65a0e261-9d53-4096-bd0a-089060aca0c0 Youtube : https://youtube.com/shorts/RbdpEWCvFHU Twitter : https://twitter.com/tryofofo/status/1686665310198517762 Instagram : https://www.instagram.com/reel/Cvb2j5bN0q1/ Reddit : https://www.reddit.com/r/securityupdates/comments/15g3ezw/apple_rejects_new_name_x_for_twitter_ios_app/
  1. AV Recon Botnet Leveraging Compromised Routers to Fuel Illegal Proxy Service Researchers have discovered further details about the AV Recon botnet, which has been using compromised small office routers since at least May 2021. The botnet, initially revealed by Lumen Black Lotus Labs, uses the stolen bandwidth of victims to fuel an illegal proxy service, showcasing the increasingly creative tactics employed by cybercriminals. Read the article here : https://ofofo.news/newsblog/?title=AVRecon-Botnet-Leveraging-Compromised-Routers-to-Fuel-Illegal-Proxy-Service&id=a590fe86-1ea4-4abc-b87f-abc25b5795bc Youtube : https://youtube.com/shorts/O8pF5mKTBG0 Twitter : https://twitter.com/tryofofo/status/1686665317232369665 Instagram : https://www.instagram.com/reel/Cvb3VzPNF9J/ Reddit : https://www.reddit.com/r/securityupdates/comments/15g3gbb/av_recon_botnet_leveraging_compromised_routers_to/
  1. Microsoft fixes WSUS servers not pushing Windows 11 22H2 updates Microsoft has resolved a known issue affecting WSUS servers upgraded to Windows Server 2022, which previously prevented them from pushing Windows 11 22H2 updates to enterprise endpoints. This fix ensures the continuity of Microsoft's update services for its corporate users. Read the article here : https://ofofo.news/newsblog/?title=Microsoft-fixes-WSUS-servers-not-pushing-Windows-H-updates&id=a86a83ac-0495-456c-b09d-edac108a961a Youtube : https://youtube.com/shorts/M4eLvErEHMM Twitter : https://twitter.com/tryofofo/status/1686665320340332544 Instagram : https://www.instagram.com/reel/Cvb4BUrsdWK/ Reddit : https://www.reddit.com/r/securityupdates/comments/15g3gog/microsoft_fixes_wsus_servers_not_pushing_windows/

Ready to secure your business?

Join other 2000+ Subscribers now!


Written by

Mohan Gandhi Ponnaganti
Mohan Gandhi Ponnaganti

Co-founder and CEO, Ofofo.io