Weekday Digest – 4/13/2022 (Wednesday)

News/Intelligence/IOCs Stories

  • New Meta information stealer distributed in malspam campaign – LINK
  • EU officials were targeted with Israeli surveillance software – LINK
  • FBI, Europol Seize RaidForums Hacker Forum and Arrest Admin – LINK
  • Enemybot: a new Mirai, Gafgyt hybrid botnet joins the scene – LINK
  • Clueless hackers spent months inside a network and nobody noticed. Then a ransomware gang took over – LINK

Government/Regulation Related Stories

  • (Australia) – Defence calls in KPMG for mammoth data uplift – LINK
  • CISA Adds Eight Known Exploited Vulnerabilities to Catalog – LINK
  • Vulnerability Summary for the Week of April 4, 2022 – LINK

Russia/Ukraine War Related Stories

  • Apr 03 – Apr 09 Ukraine – Russia the silent cyber conflict – LINK
  • Huawei reportedly furloughs Russian staff and stops taking orders – LINK
  • Russian Hackers Tried Attacking Ukraine’s Power Grid with Industroyer2 Malware – LINK

Vulnerability Related

  • Apache Struts 2 RCE – (CVE-2021-31805) – LINK
  • Citrix Releases Security Updates for Multiple Products – LINK
  • Microsoft Releases April 2022 Security Updates – LINK
  • Google Releases Security Updates for Chrome – LINK
  • SAP Releases Patches for Spring4Shell Vulnerability – LINK
  • ICS Patch Tuesday: Siemens, Schneider Fix Several Critical Vulnerabilities – LINK
  • JekyllBot:5 flaws allow hacking TUG autonomous mobile robots in hospitals – LINK
  • NGINX zero-day vulnerability: Check if you’re affected – LINK