Last week cyber news
- Critical Exim bug bypasses security filters on 1.5 million mail servers. Censys warns that over 1.5 million Exim mail transfer agent instances are unpatched against a critical vulnerability that lets threat actors bypass security filters. Tracked as CVE-2024-39929 and patched by Exim developers on Wednesday, the security flaw impacts Exim releases up to and including version 4.97.1.
- The CertiK company summarizes half a year of thefts in the crypto field. In the report published by the company, it states that in the second quarter of 2024 digital currencies worth 688 million dollars were stolen from crypto projects. In the first half of 2024, digital currencies worth almost 1.2 billion were stolen in 408 different attacks.
- Alert! There is a new phishing campaign impersonating Bit, which uses the real ID of the Bit service in SMS messages. Link to the report on the ScanMySms site – here. The site is already classified as malicious.
- Frankfurt University reports that it is suffering from a widespread cyber-attack. Following the attack, the university shut down the computer systems and noted that they were also forced to shut down other services, including the elevators operating in the university complex and the telephone lines.
- Clay County in the state of Indiana has declared a disaster situation following a ransomware attack. According to the district, the attack caused limitations and disruptions in the ability to provide critical services required for the daily operation of various institutions in the district, including the court, the health department, and more.
- Disney Slack correspondence available for download, as published by attack group called NullBulge. According to the group, this is content taken from 10k channels, including correspondence, files and more. A total of 1.1TB of information is available for download via torrent. The group claims that it received help from the inside and that a Disney employee connected them to Slack.
- Hackers use PoC exploits in attacks 22 minutes from release – Cloudflare publishes the Application Security report for 2024.
Microsoft February 2024 Patch Tuesday fixes 142 flaws, 4 zero-days
On the 9th of the month, Microsoft published 142 security updates for vulnerabilities in supported software, and another 4 related to third-party products. The details of 2 vulnerabilities have been made public. 2 vulnerabilities are actually exploited by attackers. 5 vulnerabilities are classified as critical. 59 vulnerabilities can be exploited by a remote attacker for code execution (RCE).
It is highly recommended to test the updates in a test environment and install them as soon as possible.
