💾 Archived View for gemini.tuxmachines.org › n › 2023 › 03 › 19 › Security_Leftovers.gmi captured on 2023-03-20 at 17:58:32. Gemini links have been rewritten to link to archived content
-=-=-=-=-=-=-
Tux Machines
Posted by Roy Schestowitz on Mar 19, 2023
Games: Steam, Godot, and RetroArch
=> https://www.securityweek.com/latitude-financial-services-data-breach-impacts-300000-customers/ ↺ Latitude Financial Services Data Breach Impacts 300,000 Customers
Latitude Financial Services says the personal information of 300,000 customers was stolen in a cyberattack.
=> https://siliconangle.com/2023/03/17/google-discovers-18-vulnerabilities-multiple-samsung-chips/ ↺ Google discovers 18 vulnerabilities in multiple Samsung chips
Google LLC’s Project Zero cybersecurity research team has discovered 18 vulnerabilities in mobile and auto chips made by Samsung Electronics Co. Ltd. The search giant disclosed the vulnerabilities on Thursday.
=> https://isc.sans.edu/diary/rss/29646 ↺ Old Backdoor, New Obfuscation, (Sat, Mar 18th)
When you're hunting, sometimes you feel lucky because you spotted something that looks brand new, but sometimes it's not new or... the code has been changed to bypass existing detections.
=> https://www.securityweek.com/us-government-warns-organizations-of-lockbit-3-0-ransomware-attacks/ ↺ US Government Warns Organizations of LockBit 3.0 Ransomware Attacks
Three US government agencies have issued a joint warning to organizations about LockBit 3.0 ransomware attacks.
=> https://www.securityweek.com/new-trigona-ransomware-targets-us-europe-australia/ ↺ New ‘Trigona’ Ransomware Targets US, Europe, Australia
The recently identified Trigona ransomware has been highly active, targeting tens of organizations globally.
=> https://www.securityweek.com/new-espionage-group-yorotrooper-targeting-entities-in-european-cis-countries/ ↺ New Espionage Group ‘YoroTrooper’ Targeting Entities in European, CIS Countries
A newly identified threat actor named YoroTrooper is targeting organizations in Europe and the CIS region for espionage and data theft.
=> https://www.securityweek.com/exploitation-of-recent-fortinet-zero-day-linked-to-chinese-cyberspies/ ↺ Exploitation of Recent Fortinet Zero-Day Linked to Chinese Cyberspies
Mandiant links exploitation of the Fortinet zero-day CVE-2022-41328, exploited in government attacks, to a Chinese cyberespionage group.
=> https://www.ghacks.net/2023/03/16/thunderbird-102-9-0-is-a-security-update-for-the-open-source-email-client/ ↺ Thunderbird 102.9.0 is a security update for the open source email client
The Thunderbird team has released a new stable version of the open source email client. Thunderbird 102.9.0 is a security and bug fix update.
The new version of the email client is available already. Existing Thunderbird installations should receive the update automatically, if the automatic updates functionality has not been disabled by the administrator.