Cyber Bits · · 2 min read

Cyber Bits: September 23

This week, we cover software-breaking updates, major security vulnerabilities including a Mediatek 0day, data breaches at Deloitte and Dell, cyber-espionage activities and Disney affected by Slack.

Cyber Bits: September 23

This week, we cover software-breaking updates, major security vulnerabilities including a Mediatek 0day, data breaches at Deloitte and Dell, cyber-espionage activities and Disney affected by Slack.

macOS Sequoia Update Breaking Security Tools

Links: Cybersecurity News Bleeping Computer

The recent macOS Sequoia update has caused significant issues for VPNs and antivirus tools, disrupting their networking capabilities. This break in security tools is leading to concerns over system vulnerabilities as users seek fixes.

Global InfoStealer Malware Operation Targets Crypto Users and Gamers

Link: Bleeping Computer

A global malware campaign is targeting cryptocurrency users and gamers. This operation uses info-stealers to obtain sensitive data, posing a threat to online transactions and digital assets.

0-Click Mediatek Vulnerability Exposes Phones to Wi-Fi Takeover

Links: Cybersecurity News Dark Reading

A zero-click remote code execution (RCE) vulnerability in Mediatek chips could allow attackers to take over devices via Wi-Fi. This critical flaw puts millions of smartphones at risk.

IntelBroker Exposes Deloitte Data

Link: Cybersecurity News

IntelBroker, a notorious data-leak group, has exposed sensitive data from Deloitte, one of the world’s largest professional services firms. The breach raises questions about the security of major consulting companies.

Dell Employee Data Leak Investigated After Hacker Claims

Links: Cybersecurity News Bleeping Computer

Dell is investigating claims of a data breach that allegedly exposed sensitive employee information. Hackers claim responsibility for leaking this data, sparking concerns over potential exploitation.

Disney to Stop Using Slack After Massive Data Breach

Links: Cybersecurity News Bleeping Computer

Following a massive data breach in July, Disney plans to discontinue using Slack as its primary communication platform, citing security concerns and vulnerabilities in the tool.

North Korean APT Bypasses DMARC in Email Espionage Attacks

Link: Dark Reading

A North Korean Advanced Persistent Threat (APT) group is bypassing DMARC email authentication protocols to conduct cyber espionage. These attacks are focused on gathering sensitive information via email-based intrusions.

Read next

Cyber Bits: November 25
Cyber Bits ·

Cyber Bits: November 25

Welcome to this week's edition of Cyber Bits, where we cover the latest in malware campaigns, advanced persistent threats, data breaches, vulnerabilities in enterprise systems from Fortinet and Palo Alto, and the economic impact of cyberattacks. Here's what you need to know this week:

Cyber Bits: October 21
Cyber Bits ·

Cyber Bits: October 21

In this week's Cyber Bits, Internet Archive faces another breach, Microsoft sets up Azure tenant honeypots, ransomware attacks are using ESET's name, Microsoft may have lost some security logs, and North Korea is targeting companies looking for temporary IT workers.

Cyber Bits: October 14
Cyber Bits ·

Cyber Bits: October 14

In this weeks Cyber Bits, Microsoft deprecates VPN protocols, OpenAI confirms what everyone already knew about bad guys using ChatGPT for malware, SOC teams lament alert fatigue, qualified personnel gaps in cloud and cyber, and how to build cyber resilience for SMB's.