Each week, we will curate and present a collection of noteworthy developments, ranging from the latest vulnerability discoveries and emerging attack techniques to significant policy changes and industry reports.
Ukrainian hackers target major Russian water utility.
In revenge for the recent Russian attack on Kyivstar, Ukraine's largest mobile network operator, Ukrainian hackers claim to have launched an attack on Rosvodokanal, the largest private water utility in Russia.
The hackers claim to have stolen documents, encrypted 6,000 computers, and deleted 50 Tb of data, disrupting operations.
Rosvodokanal is responsible for providing water to millions of consumers, but there do not appear to be any reports of the water supply being impacted by the attack.
Former security engineer admits hacking two cryptocurrency exchanges.
The US Justice Department announced that Shakeeb Ahmed has pleaded guilty to hacking two decentralized cryptocurrency exchanges, stealing over $12 million worth of cryptocurrency.
The attacks were carried out in 2022 and targeted Nirvana Finance and Crema Finance.
Apple and Adobe have each released patches for a single vulnerability.
Adobe released an Experience Manager Forms update to address an Apache Struts vulnerability that has been exploited in the wild.
Hundreds of TeamCity instances still vulnerable to attacks.
Hundreds of TeamCity instances are vulnerable to attacks exploiting CVE-2023-42793, according to Censys.
The Russian cyberespionage group known as APT29 has been exploiting the vulnerability on a large scale since September 2023, according to government agencies.
GWT vulnerability remains unpatched 8 years after discovery.
A potentially serious vulnerability affecting GWT, a popular open source web application framework, remains unpatched eight years after it was discovered, according to Bishop Fox.
Bishop Fox has published a blog post describing how the vulnerability can be exploited and how developers can check if their GWT-based application is affected.
AI vulnerability rating taxonomy for LLMs. Bug bounty platform Bugcrowd has updated its Vulnerability Rating Taxonomy to define how AI vulnerabilities in Large Language Models are classified, reported, and prioritized on its platform in an effort to enable hackers and customers to have a shared understanding of how these types of flaws are handled.
Recorded Future has published its 2023 Payment Fraud report, which reveals that the payment fraud underground is showing signs of recovery following Russia's crackdown on domestic cybercriminals and its invasion of Ukraine.
The report also shows that the volume of stolen payment cards on carding shops has started to rebound.
Cisco has published a new report detailing the evolution of Intellexa, 'an intelligence agency-grade spyware vendor' that emerged from the ashes of Cytrox, after it was bought.
This Cyber News was published on www.securityweek.com. Publication date: Fri, 22 Dec 2023 14:43:17 +0000