Talk With an Expert

Internet Storm Center Tech Corner

More Brazil Malspam Pushing Astaroth (Guildma) in January 2023

https://isc.sans.edu/diary/More+Brazil+malspam+pushing+Astaroth+Guildma+in+January+2023/29404

Update to RTRBK - Diff and File Dates in PowerShell

https://isc.sans.edu/diary/Update+to+RTRBK+Diff+and+File+Dates+in+PowerShell/29400

NTP Fingerprinting

https://isc.sans.edu/diary/Its+about+time+OS+Fingerprinting+using+NTP/29394

CircleCI Breach

https://circleci.com/blog/january-4-2023-security-alert/

Twitter Leak

https://www.bleepingcomputer.com/news/security/200-million-twitter-users-email-addresses-allegedly-leaked-online/

Slack Source Code Leak

https://slack.com/blog/news/slack-security-update

Control Web Panel Patch CVE-2022-44877

https://github.com/numanturle/CVE-2022-44877

Turla: A Galaxy of Opportunity

https://www.mandiant.com/resources/blog/turla-galaxy-opportunity

SHC used to compile cryptominer malware

https://asec.ahnlab.com/en/45182/

Google Chrome Sunsetting Legacy Windows Support

https://support.google.com/chrome/thread/185534985/sunsetting-support-for-windows-7-8-8-1-in-early-2023?hl=en

ManageEngine Password Manager Pro SQL Injection

https://pitstop.manageengine.com/portal/en/community/topic/manageengine-security-advisory—important-security-fix-released-for-manageengine-password-manager-pro-2-1-2023

FortiADC Command Injection in Web Interface

https://www.fortiguard.com/psirt/FG-IR-22-061

Raspberry Robin Developments

https://www.securityjoes.com/post/raspberry-robin-detected-itw-targeting-insurance-financial-institutes-in-europe

Misc Car Vulnerabilities

https://samcurry.net/web-hackers-vs-the-auto-industry/

Flipper Zero Phishing

https://twitter.com/AlvieriD/status/1609945425871609858

Trend Micro Patch

https://helpcenter.trendmicro.com/en-us/article/TMKA-11252

Packet Tuesday: IP Options

https://www.youtube.com/watch?v=HldNL3SLLwM

View Older Issues

Catch up on recent editions of NewsBites or browse our full archive of expert-curated cybersecurity news.

Browse Archive