Tag: December 2023

Google Cloud swiftly addressed a medium-severity security flaw, leveraging Fluent Bit in Kubernetes clusters, preventing privilege escalation.

Kimsuky, a North Korean APT group, utilizes spear-phishing with tools like AppleSeed and Meterpreter for cyber espionage, per AhnLab.

Financial threat groups exploit MSIX ms-appinstaller, leading Microsoft to disable it again due to widespread malware infiltration on Windows.

The Juniper Secure Analytics platform has been identified with multiple critical vulnerabilities that have now been addressed in a new released update.

Meduza password-stealing software releases version 2.2 with significant upgrades, expanding capabilities and improving user interface features.

Ukraine's CERT warns of a Russian APT28 phishing campaign (Fancy Bear) from Dec 15-25, 2023, deploying sophisticated malware rapidly.

Levana on Osmosis blockchain faces a severe 13-day exploit, losing $1.1 million, with 10% of liquidity pools drained from Dec 13 to Dec 26.

Lulz Security Indonesia claims Australian PM's website breach. Experts doubt legitimacy, suspect fear incitement over genuine compromise.

Thunder Terminal faces exploit, compromising user wallets. Quick response halts attack in 9 mins; funds secured despite ransom demand.

Eagers Automotive faces major cyber attack, halting stock exchange trading. Widespread impact on operations in Australia and New Zealand.