Daily Cyber Brief

Brazilian police arrest alleged Lapsus$ member, Chinese APT targets online casinos, and a new PowerShell backdoor is being used by threat actors for cyberespionage...

Cybersecurity

Brazilian police announce arrest of alleged Lapsus$ member

Federal Police in Brazil said they arrested an alleged member of the notorious Lapsus$ hacking group on Wednesday. In a statement, police officials explained that they arrested someone in the Brazilian city of Feira de Santana. Little information was shared about…

Democracies are having a reckoning with mercenary spyware

Off-the-shelf spyware has long been associated with abuses by autocratic regimes, but in recent years it’s democracies who are reckoning with the their own potential abuse of such surveillance tools. Sophisticated digital surveillance tools were once only available to a…

Microsoft Customer Data Exposed by Misconfigured Server

Sensitive information for some Microsoft customers were exposed by a misconfigured server, Microsoft Security Response Center said on Wednesday. The misconfigured endpoint was accessible on the Internet and did not require authentication. The exposed information…

CISA warns of security holes in industrial Advantech, Hitachi kit

This week, the US government's Cybersecurity and Infrastructure Security Agency (CISA) expanded its ever-growing list of vulnerability in industrial control systems (ICS) and critical infrastructure technology. The latest warnings flag up severe flaws in products from…

Experts downplay reach of Apache bug ‘Text4Shell’

Cybersecurity researchers are tamping down concerns around a recently discovered vulnerability affecting the popular Apache Commons Text library. In a security bulletin on October 13, the Apache Commons Text team recommended users update to v1.10.0, which…

Chinese Hackers Targeting Online Casinos with GamePlayerFramework Malware

An advanced persistent threat (APT) group of Chinese origin codenamed DiceyF has been linked to a string of attacks aimed at online casinos in Southeast Asia for years. Russian cybersecurity company Kaspersky said the activity aligns with another set of intrusions…

Deadbolt Ransomware Extorts Vendors and Customers

A prolific ransomware group targeting network-attached storage (NAS) devices this year monetizes its efforts by extorting both vendors and their end customers, according to a new report. Group-IB’s study, Deadbolt ransomware: nothing but NASty, is based on its analysis…

Microsoft Azure SFX bug let hackers hijack Service Fabric clusters

Attackers could exploit a now-patched spoofing vulnerability in Service Fabric Explorer to gain admin privileges and hijack Azure Service Fabric clusters. Service Fabric is a platform for business-critical applications that hosts over 1 million apps and powers many Microsoft…

Hackers use new stealthy PowerShell backdoor to target 60+ victims

A previously undocumented, fully undetectable PowerShell backdoor is being actively used by a threat actor who has targeted at least 69 entities. Based on its features, the malware is designed for cyberespionage, mainly engaging in data exfiltration from the compromised…

Daily Cyber Brief

Brazilian police arrest alleged Lapsus$ member, Chinese APT targets online casinos, and a new PowerShell backdoor is being used by threat actors for cyberespionage...

Cybersecurity

Join the conversation

Overt Operator