DiscoverThe Cybersecurity DigestPhishing Scams for CrowdStrike Customers Continue, GitHub Vulnerabilities, and North Korea’s Ransomware Shift
Phishing Scams for CrowdStrike Customers Continue, GitHub Vulnerabilities, and North Korea’s Ransomware Shift

Phishing Scams for CrowdStrike Customers Continue, GitHub Vulnerabilities, and North Korea’s Ransomware Shift

Update: 2024-07-26
Share

Description

Cybersecurity Digest for 26 July 2024




Today we discuss the following items:



Notable News

Crowdstrike Post Incident Report:

Falcon Content Update Remediation and Guidance Hub | CrowdStrike



Crowdstrike Phishing Campaigns:

Malicious Inauthentic Falcon Crash Reporter Installer Distributed to German Entity (crowdstrike.com)

Malware Distributed Using Falcon Sensor Update Phishing Lure | CrowdStrike

Threat Actor Distributes Python-Based Info Stealer Using Fake Update (crowdstrike.com)



Apparent CrowdStrike Threat Actor List Leak:

Hacktivist Entity USDoD Claims to Have Leaked CrowdStrike’s Threat Actor List



Meta Ousts 63,000 accounts linked to Sextortion :

Combating Financial Sextortion Scams From Nigeria | Meta (fb.com)



Darknet Diaries Episode related to the Sextortion Scams:

The Pig Butcher – Darknet Diaries



Rapid7 Malware Campaign using Fake W2:

Malware Campaign Lures Users With Fake W2 Form | Rapid7 Blog



GitHub Deleted and Private Repo Access:

Anyone can Access Deleted and Private Repository Data on GitHub ◆ Truffle Security Co.



GitHub Accounts Distributing Malware:

Over 3,000 GitHub accounts used by malware distribution service (bleepingcomputer.com)



Windows SmartScreen Flaw:

Windows SmartScreen Flaw Enabling Data Theft in Major Stealer Attack (hackread.com)


 


Apt45 Shifts from Espionage to Ransomware:

APT45: North Korea’s Digital Military Machine | Google Cloud Blog



Related CISA Advisory:

North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs | CISA




Prevalent Patches

Google Chrome Fixes Vulnerabilities:

Chrome Releases: Stable Channel Update for Desktop (googleblog.com)



Docker Fixes Authentication Bypass:

Docker Security Advisory: AuthZ Plugin Bypass Regression in Docker Engine | Docker



Siemens Fixes Closes Backdoors:

SSA-071402 (siemens.com)



Progress Telerik Vulnerability:

Insecure Deserialization Vulnerability - Telerik Report Server




CISA Alert:



BIND 9:

ISC Releases Security Advisories for BIND 9 | CISA

Related news:

BIND DNS Server Vulnerability Lets Attackers Flood Server (cybersecuritynews.com)

Comments 
In Channel
Tickler, Voldemort, and Roblox Supply Chain Attack

Tickler, Voldemort, and Roblox Supply Chain Attack

2024-09-0232:06

Locked out of GSuite, ALBeast, Qilin Stealing Chrome Creds, and Velvet Ants!

Locked out of GSuite, ALBeast, Qilin Stealing Chrome Creds, and Velvet Ants!

2024-08-2630:03

Newsletter Announcement

Newsletter Announcement

2024-08-1802:03

Vulnerable IP Cameras, BITSLOTH, and a Discord DDoS Campaign

Vulnerable IP Cameras, BITSLOTH, and a Discord DDoS Campaign

2024-08-0630:22

Revoked Certs, Microsoft Outage, and Sitting Ducks

Revoked Certs, Microsoft Outage, and Sitting Ducks

2024-08-0228:33

Outlook C2 Framework, VMWare ESXi Vuln, and PKFail leads to UEFI Supply Chain Attacks.

Outlook C2 Framework, VMWare ESXi Vuln, and PKFail leads to UEFI Supply Chain Attacks.

2024-07-3024:03

Phishing Scams for CrowdStrike Customers Continue, GitHub Vulnerabilities, and North Korea’s Ransomware Shift

Phishing Scams for CrowdStrike Customers Continue, GitHub Vulnerabilities, and North Korea’s Ransomware Shift

2024-07-2625:07

Telegram EvilVideo, PlayRansomWare targets ESXi, and a North Korean Infiltration Attempt

Telegram EvilVideo, PlayRansomWare targets ESXi, and a North Korean Infiltration Attempt

2024-07-2419:23

CrowdStrike Catastrophe, GTA6 Beta Scam, and FractalID Data Breach

CrowdStrike Catastrophe, GTA6 Beta Scam, and FractalID Data Breach

2024-07-2215:51

Chrome Vulns, Cisco Catastrophes, and Ransomware Revelations: Your Friday Cybersecurity Digest

Chrome Vulns, Cisco Catastrophes, and Ransomware Revelations: Your Friday Cybersecurity Digest

2024-07-1916:50

MuddyWater’s Cyber Onslaught, AT&T Pays, Trello Leak, and Sys01 Malvertising Campaign

MuddyWater’s Cyber Onslaught, AT&T Pays, Trello Leak, and Sys01 Malvertising Campaign

2024-07-1715:16

AT&T Data Leak, Millions of Email Servers Vulnerable, and Disney's Slack Leaked?

AT&T Data Leak, Millions of Email Servers Vulnerable, and Disney's Slack Leaked?

2024-07-1512:20

Cybersecurity Digest for week of 12 July 2024

Cybersecurity Digest for week of 12 July 2024

2024-07-1212:27

The Cybersecurity Digest Trailer

The Cybersecurity Digest Trailer

2024-07-0601:10

Google Play
Download from Google Play
Castbox
Download from App Store
usUnited States
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

Phishing Scams for CrowdStrike Customers Continue, GitHub Vulnerabilities, and North Korea’s Ransomware Shift

Phishing Scams for CrowdStrike Customers Continue, GitHub Vulnerabilities, and North Korea’s Ransomware Shift

The Cybersecurity Digest LLC