π What’s the latest in the cyber world today?
CatDDoS, Botnet, Exploits, DDoS Attacks, XLab, macOS, Sonoma, Vulnerability, Check Point, VPN Devices, Breach, Enterprise Networks, Critical Security Flaw, TP-Link Archer C5400X Gaming Router, Onekey, Remcos RAT, UUEncoding, AhnLab Security Intelligence Center, Normie Memecoin, Exploit, Quick Intel, ABN Amro Bank, Supplier Hack, Claims Journal, Islamabad Safe City Authority, Cyber Breach, DAWN, Internet Archive, Wales’ Rugby Union, Exposes, Member Data, US Federal Agencies, Data Routing Security, NextGov, Greek Personal Data Protection Authority, Penalizes, Ekathimerini, Every Child Online, Donated Devices, IT Training, Malaysia, Semiconductors Industry Investment, GameStop’s, Share Sales
Listen to the full podcast
π¨Β Cyber Alerts
The CatDDoS malware botnet has exploited over 80 known security flaws in various software to infiltrate vulnerable devices and use them for DDoS attacks. This widespread exploitation affects devices from numerous vendors, including Apache, Cisco, and TP-Link. First documented in late 2023, CatDDoS has primarily targeted countries like China, the U.S., and Japan, with attacks focusing on multiple industries.
A vulnerability in macOS Sonoma, CVE-2024-27842, allows privilege escalation via the UDF filesystem. This issue, linked to IOCTL functions, enables arbitrary code execution with kernel privileges, leading to potential kernel panic. Apple advises users to update to macOS 14.5 to address this vulnerability.
Threat actors target Check Point Remote Access VPN devices, exploiting old local accounts with insecure passwords. The ongoing campaign aims to breach enterprise networks, emphasizing the importance of secure authentication methods. Check Point advises customers to update authentication methods or delete vulnerable accounts to mitigate risks.
A maximum-severity security flaw in the TP-Link Archer C5400X gaming router can lead to remote code execution on vulnerable devices. Tracked as CVE-2024-5035 with a CVSS score of 10.0, this flaw impacts all firmware versions up to 1_1.1.6. TP-Link has patched the vulnerability in version 1_1.1.7 released on May 24, 2024.
AhnLab’s Security Intelligence Center (ASEC) has substantiated the presence of Remcos RAT malware distributed through UUE (UUEncoding) files compressed with Power Archiver. This novel method of malware dissemination has surfaced within phishing campaigns camouflaged as export/import shipment-related emails or quotations, underscoring the importance of vigilant scrutiny by email recipients.
π₯ Cyber Incidents
Normie memecoin’s market cap nosedives after a smart contract vulnerability leads to a $41.7 million loss. Hacker exploits a flaw, causing a 96% price drop. Uncertainty looms over fund recovery timeline for 72,000 affected holders.
ABN Amro Bank NV falls victim to a data breach via a supplier, highlighting the vulnerability of adjacent links in the banking chain to cyber threats. Criminals exploited a ransomware attack on AddComm, potentially compromising client data. While ABN Amro assures clients that their systems remain unaffected, the incident underscores the ongoing challenge banks face in safeguarding sensitive financial information amidst a rising tide of cyberattacks.
A significant disruption occurred when hackers breached Islamabadβs Safe City Authority online system, raising concerns over security vulnerabilities. The breach exposed systemic weaknesses within the digital infrastructure, compromising critical databases containing criminal records and sensitive information. Law enforcement officials are now racing to assess the damage and restore operations amidst escalating concerns over the project’s effectiveness and security measures.
The renowned digital library, the Internet Archive, faced a significant DDoS attack, rendering most of its services temporarily inaccessible. While data remained secure, the disruption sparked frustration within the digital preservation community. Despite ongoing efforts to restore services, the incident underscores the vulnerability of vital online platforms to cyber threats.
Wales’ rugby governing body, WRU, inadvertently exposed personal details of nearly 70,000 members, raising cybersecurity concerns. The data leak, discovered by Cybernews researchers, revealed sensitive information stored in a publicly accessible AWS S3 bucket. Despite WRU’s assurance of no compromise in payment or password details, the incident underscores the importance of robust cyber defenses in safeguarding member information.
White House official reveals plans to fortify over 50% of federal IP addresses against hijacking threats. Enhanced measures target Border Gateway Protocol, safeguarding data transmission pathways. The Commerce Department leads with route origin authorizations, setting precedent for broader adoption.
The Greek Data Authority penalizes the Ministry of Interior and MEP Asimakopoulou for “email-gate” breaches, resulting in significant financial repercussions. Asimakopoulou, accused of sending unsolicited emails, faces a 40,000-euro fine, while the Ministry of Interior is fined 400,000 euros. Opposition parties demand Interior Minister’s resignation amid heightened scrutiny over data protection violations.
At Infosecurity Europe 2024, Every Child Online offers free IT asset disposal services, nurturing future cybersecurity talent and providing refurbished devices to underprivileged children. With corporate partnerships, they aim to bridge the cybersecurity skills gap, turning college students’ work placements into career opportunities. Every donation not only secures data removal but also paves the way for a better-skilled workforce.
Prime Minister Anwar Ibrahim aims to attract $107 billion in semiconductor investments, positioning Malaysia as a global manufacturing hub. With a focus on integrated circuit design and advanced packaging, Malaysia seeks to establish local companies and allocate fiscal support to drive industry growth. Anwar emphasizes Malaysia’s capacity for high-end manufacturing and semiconductor design to move up the value chain.
Meme stock GameStop rises nearly 20% in premarket trading after raising over $900 million from share sales. The surge, fueled by the return of “Roaring Kitty,” follows a steep decline in stock value amid e-commerce competition. Short sellers could face challenges as the company seeks to rebound from its recent struggles.
Copyright Β© 2024 CyberMaterial. All Rights Reserved.
