ISC StormCast for Friday, April 1st, 2022
Spring Vulnerability Update – Exploitation Attempts CVE-2022-22965
https://isc.sans.edu/forums/diary/Spring+Vulnerability+Update+Exploitation+Attempts+CVE202222965/28504/
Apple Patches 0 Day Vulnerability
https://isc.sans.edu/forums/diary/Apple+Patches+Actively+Exploited+Vulnerability+in+macOS+iOS+and+iPadOS/28506/
Wyze Cam Vulnerabilities
https://www.bitdefender.com/files/News/CaseStudies/study/413/Bitdefender-PR-Whitepaper-WCam-creat5991-en-EN.pdf
Zyxel Security Advisory
https://www.zyxel.com/support/forgery-vulnerabilities-of-select-Armor-home-routers.shtml
Michigan school safety task force focuses on mental health
The Michigan state government’s School Safety Task Force has released a progress report including initial school security recommendations for K-12 environments.
Reduce data breach risk on World Backup Day 2022
March 31st is World Backup Day. Cybersecurity leaders discuss the importance of backing up enterprise data to prevent data loss and reduce cyberattack effects.
ISC StormCast for Thursday, March 31st, 2022
Java Springtime Confusion: What Vulnerabilty are We Talking About
https://isc.sans.edu/forums/diary/Java+Springtime+Confusion+What+Vulnerability+are+We+Talking+About/28500/
Quickie: Parsing XLSB Documents
https://isc.sans.edu/forums/diary/Quickie+Parsing+XLSB+Documents/28496/
Pwning 3CX Phone Management Backends from the Internet
https://medium.com/@frycos/pwning-3cx-phone-management-backends-from-the-internet-d0096339dd88
32% of world’s largest enterprises suffer a CMS security breach every week
Nearly a third of the world’s largest business websites suffer a security and/or data breach every single week due to their content management systems (CMS), according to new Storyblok research.
3 reasons to reconsider automating cybersecurity
With the number of cyberattacks faced by enterprise organizations, security teams need to rely on artificial intelligence to mitigate risk. However, a fully automated approach to cybersecurity presents challenges as well.
ISC StormCast for Wednesday, March 30th, 2022
More Fake/Typosquatting Twitter Accounts Asking for Ukraine Cryptocurrency Donations
https://isc.sans.edu/forums/diary/More+FakeTyposquatting+Twitter+Accounts+Asking+for+Ukraine+Crytocurrency+Donations/28492/
Mitigating Attacks Against Uninterruptible Power Supply Devices
https://www.cisa.gov/sites/default/files/publications/CISA-DOE_Insights-Mitigating_Vulnerabilities_Affecting_Uninterruptible_Power_Supply_Devices_Mar_29.pdf
MFA Bypass Attacks
https://blog.talosintelligence.com/2022/03/transparent-tribe-new-campaign.html
Google Advertises Mars Stealer
https://blog.morphisec.com/threat-research-mars-stealer
Hackers Gaining Power of Subpoena Via Fake “Emergency Data Requests”
https://krebsonsecurity.com/2022/03/hackers-gaining-power-of-subpoena-via-fake-emergency-data-requests/
Philips e-Alert
This advisory contains mitigations for Missing Authentication for Critical Function vulnerability in the Philips e-Alert MRI system monitoring platform.
Cyber competition trains future security talent
Hack the Port 22 allowed students interested in hacking and cybersecurity to hone their skills in cyber competitions and learn from industry and government cyber professionals.
