Cyber Bits · · 2 min read

Cyber Bits: July 29, 2024

This week, we explore vulnerabilities in popular software, a significant security breach affecting millions, an interesting HR decision, and of course more CrowdStrike!

Cyber Bits: July 29, 2024

This week, we explore vulnerabilities in popular software, a significant security breach affecting millions, an interesting HR decision, and of course more CrowdStrike!

WhatsApp for Windows Allows Python and PHP Scripts to Execute Without Warning

Link: Bleeping Computer

A recent vulnerability in WhatsApp for Windows has been discovered, allowing Python and PHP scripts to execute without warning. This critical flaw poses a significant risk as it can be exploited to run malicious code on users' systems without their knowledge.

Millions of Devices Vulnerable to Secure Boot Bypass Issue

Link: Dark Reading

A new vulnerability dubbed "PKFail" has been identified, affecting the secure boot process on millions of devices. This flaw allows attackers to bypass secure boot protections, potentially leading to unauthorized access and control over affected systems.

CrowdStrike Outage and Financial Impact

Links: Dark Reading Dark Reading

You may have heard that CrowdStrike recently experienced a major outage due to a flawed Falcon update, leading to an estimated loss of $54 billion. Companies using CrowdStrike's services are struggling to recover from the disruption, highlighting the critical nature of reliable cybersecurity solutions.

Acronis Warns of Cyber Infrastructure Default Password Abuse

Link: Bleeping Computer

Acronis has issued a warning about attackers exploiting default passwords in their cyber infrastructure. This security oversight has led to successful breaches, emphasizing the importance of changing default credentials to prevent unauthorized access.

Security Firm Accidentally Hires North Korean Hacker

Link: Dark Reading

A recent incident reported by Dark Reading highlights how a security firm inadvertently hired a North Korean hacker as a software engineer for its AI team. The hacker, posing as a legitimate candidate, quickly began deploying malware on the company-issued workstation. The firm's internal detection mechanisms identified the malicious activity, leading to the discovery of the hacker's true identity. This incident underscores the importance of thorough background checks and continuous monitoring to safeguard against insider threats and sophisticated cyber attacks.

Read next

Cyber Bits: October 21
Cyber Bits ·

Cyber Bits: October 21

In this week's Cyber Bits, Internet Archive faces another breach, Microsoft sets up Azure tenant honeypots, ransomware attacks are using ESET's name, Microsoft may have lost some security logs, and North Korea is targeting companies looking for temporary IT workers.

Cyber Bits: October 14
Cyber Bits ·

Cyber Bits: October 14

In this weeks Cyber Bits, Microsoft deprecates VPN protocols, OpenAI confirms what everyone already knew about bad guys using ChatGPT for malware, SOC teams lament alert fatigue, qualified personnel gaps in cloud and cyber, and how to build cyber resilience for SMB's.