ISC StormCast for Friday, September 16th, 2022
Malicous Word Document With a Frameset
https://isc.sans.edu/diary/Malicious+Word+Document+with+a+Frameset/29052
CVE-2022-34721 Exploit
https://github.com/78ResearchLab/PoC/tree/main/CVE-2022-34721
Trojaned Putty Used in Attacks
https://www.mandiant.com/resources/blog/dprk-whatsapp-phishing
Lenovo BIOS Updates
https://support.lenovo.com/us/en/product_security/LEN-94953#Desktop
$2.5 million grant funds intelligence & national security career center
The Office of the Director of National Intelligence (ODNI) has awarded a $2.5 million grant to Saint Louis University (SLU) to create a career center for national intelligence and security.
ISC StormCast for Thursday, September 15th, 2022
Easy Process Injection within Python
https://isc.sans.edu/diary/Easy+Process+Injection+within+Python/29048
Queen Elizabeth Related Phishing
https://twitter.com/threatinsight/status/1570092339984584705
Microsoft 365 Auto Updates Apps on Locked or Idle Devices
https://techcommunity.microsoft.com/t5/microsoft-365-blog/update-under-lock-improved-update-experience-for-microsoft-365/ba-p/3618901
ISC StormCast for Wednesday, September 14th, 2022
Microsoft Patch Tuesday
https://isc.sans.edu/forums/diary/Microsoft+September+2022+Patch+Tuesday/29044/
Adobe Patches
https://helpx.adobe.com/security/security-bulletin.html
Magento Vendor Fishpig Hacked, Backdoors Added
https://sansec.io/research/rekoobe-fishpig-magento
Applications open for rail transit safety grants worth up to $20,000
Government and transit agencies can apply for $20,000 grants to improve rail safety education in their transit systems.
Why is healthcare a top target for cybersecurity threats?
Healthcare organizations have been targeted by ransomware due to numerous factors, including theft of valuable health data and inadequate security.
The impact of a data breach
Data breaches ranging from credential phishing to ransomware extortion affect organizations widely. Cybersecurity leaders can prevent breaches using these security strategies.
ISC StormCast for Tuesday, September 13th, 2022
VirusTotal Result Comparisons for Honeypot Malware
https://isc.sans.edu/diary/VirusTotal+Result+Comparisons+for+Honeypot+Malware/29040
Apple Patches
https://support.apple.com/en-us/HT201222
Lorenz Ransomware Group Cracks MiVoice and Calls Back For Free
https://arcticwolf.com/resources/blog/lorenz-ransomware-chiseling-in/
ISC StormCast for Monday, September 12th, 2022
Malware Abusing File Exchange Site
https://isc.sans.edu/diary/Phishing+Word+Documents+with+Suspicious+URL/29034
Bypassing GitHub Required Reviewers to Submit Malicious Code
https://www.legitsecurity.com/blog/bypassing-github-required-reviewers-to-submit-malicious-code
Crimeware Trends: Ransomware Developers Turn to Intermittent Encryption
https://www.sentinelone.com/labs/crimeware-trends-ransomware-developers-turn-to-intermittent-encryption-to-evade-detection/
Lets Encrypt Reviving Certificate Revocation Lists
https://letsencrypt.org/2022/09/07/new-life-for-crls.html
