Tag: Cyber Alerts 2023

Google Cloud swiftly addressed a medium-severity security flaw, leveraging Fluent Bit in Kubernetes clusters, preventing privilege escalation.

Kimsuky, a North Korean APT group, utilizes spear-phishing with tools like AppleSeed and Meterpreter for cyber espionage, per AhnLab.

Financial threat groups exploit MSIX ms-appinstaller, leading Microsoft to disable it again due to widespread malware infiltration on Windows.

The Juniper Secure Analytics platform has been identified with multiple critical vulnerabilities that have now been addressed in a new released update.

Meduza password-stealing software releases version 2.2 with significant upgrades, expanding capabilities and improving user interface features.

Ukraine's CERT warns of a Russian APT28 phishing campaign (Fancy Bear) from Dec 15-25, 2023, deploying sophisticated malware rapidly.

Barracuda Networks discovered critical zero-days (CVE-2023-7102, CVE-2023-7101) in Spreadsheet::ParseExcel library, posing a significant challenge.

IBM Cognos Dashboards on Cloud Pak for Data 4.8.1 resolved vulnerabilities in GNU gcc, GNU glibc, shadow-utils, and RabbitMQ.

The Mallox ransomware group updates its PowerShell script to bypass Anti-Malware Scan Interface (AMSI) detection, aiming to evade antivirus software.

Newly found Win/TrojanDownloader.Rugmi delivers multiple info stealers: Lumma, Vidar, RecordBreaker, Rescoms, in cyberthreat campaigns.