A security vendor's investigation of infrastructure associated with a new, crypto-focused Magecart skimmer leads to discovery of cryptoscam sites, malware distribution marketplace, Bitcoin mixers, and more.

#CoSoSec

(Magecart is a notorious — and constantly evolving — syndicate of multiple groups that specializes in placing card skimmers on e-commerce sites to steal payment card information)

https://www.darkreading.com/threat-intelligence/digital-crime-haven-investigating-magecart-activity

PSA

make sure Chrome stable build is updated

Google on Tuesday announced the release of Chrome 109 in the stable channel with patches for 17 vulnerabilities, including 14 bugs reported by external researchers - Most of the externally reported security defects are medium- and low-severity flaws, with only two of them rated ‘high severity’.

#CoSoSec

https://chromereleases.googleblog.com/2023/01/stable-channel-update-for-desktop.html

This is the company that claims: 'Privacy

Wiretap lawsuit accuses Apple of tracking iPhone users who opted out

(PDF URL)

https://regmedia.co.uk/2023/01/10/apple_pa_complaint_wiretap.pdf

#CoSoSec

Six malicious packages on PyPI, the Python Package Index, were found installing information-stealing and RAT (remote access trojan) malware while using Cloudflare Tunnel to bypass firewall restrictions for remote access.

#CoSoSec

https://www.bleepingcomputer.com/news/security/malicious-pypi-packages-create-cloudflare-tunnels-to-bypass-firewalls/

What is the Flipper Zero campaign?

Experts have found a new phishing campaign that targets cybersecurity professionals and hacking enthusiasts. The campaign steals cryptocurrency and the personal information of victims.

Flipper Zero is behind the attack

Stealing crypto and data via Flipper Zero

#CoSoSec

https://www.cysecurity.news/2023/01/phishing-campaign-uses-flipper-zero-to.html

Fake Flipper Zero websites look to cause a big splash

high demand means more scams

A world of fake Flippers
Security researcher Dominic Alvieri warns of fake Flipper Zero websites claiming to offer the product for sale

https://twitter.com/AlvieriD/status/1609945425871609858

The good news is that the official Twitter account is linked from the official Flipper Zero website, so it's likely to be the real thing

https://twitter.com/flipper_zero

#CoSoSec

PSA

do a manual check for Android security update if you have not got one << it should be waiting

First #Android update of 2023 patches 60 vulnerabilities

#CoSoSec

https://www.malwarebytes.com/blog/news/2023/01/first-android-update-of-2023-patches-60-vulnerabilities

Kingston’s New IronKey Encrypted Drive Sports USB-C

although

If the USB-C connection is a must, you’ll have to wait until later in 2023 for the updated IronKey or get a USB-A one now

#CoSoSec

https://www.howtogeek.com/859218/kingstons-new-ironkey-encrypted-drive-sports-usb-c/

Yet another software supply chain attack to target open source repositories

The popular PyTorch Python project for data scientists and machine learning developers has become the latest open source project to be targeted with a dependency confusion attack.

#CoSoSec

https://www.darkreading.com/application-security/cyberattackers-torch-python-machine-learning-project

“pig butchering,” the new scam on the block

Pig butchering scams originated in China, where they came to be known by the Chinese version of the phrase shāzhūpán because of an approach in which attackers essentially fatten victims up and then take everything they’ve got

Hacker Lexicon: What Is a Pig Butchering Scam?

#CoSoSec

https://www.wired.com/story/what-is-pig-butchering-scam/

A previously unknown Linux malware has been exploiting 30 vulnerabilities in multiple outdated WordPress plugins and themes to inject malicious JavaScript

#CoSoSec

/nosanitze

https://news.drweb.com/show/

Parental control apps may do more harm than good, according to researchers who found 18 bugs in eight Android apps with more than 20 million total downloads that could be exploited to, among many nefarious acts, control other devices on the parents' network

SEC Consult Vulnerability Lab discovered the vulnerabilities and found that the parent web dashboards were susceptible to cross-site request forgery (CSRF) and cross-site scripting (XSS) attacks

#CoSoSec

https://sec-consult.com/blog/detail/the-hidden-costs-of-parental-control-apps/

Threat Intelligence Through Web Scraping

Bright Data CEO Or Lenchner discusses how security teams are utilizing public Web data networks to safeguard their organizations from digital risks.

#CoSoSec

https://www.darkreading.com/threat-intelligence/threat-intelligence-through-web-scraping

Modern Phishing Attacks; Fingerprints of Social Engineering

#CoSoSec

https://gbhackers.com/modern-phishing-attacks-fingerprints-of-social-engineering/

New details about a hack from last month show that tens of thousands of users happily gambling away on DraftKings may have had their personal information stolen thanks to account info purchased off the sports gambling site.

Some users reportedly found that hackers drained their accounts last month, though the company claimed that there was ‘no evidence’ its systems were breached.

#CoSoSec

https://gizmodo.com/draftkings-hackers-sports-gambling-1849911810

Hand caught in the cookie jar

you can't then ask for milk

Hacker Halts Sale of FBI's High-Profile InfraGard Database

The hacker continued expressing his regret, stating that they did not want to ‘‘cause any more trouble.’’

#CoSoSec

https://www.hackread.com/hacker-halt-sale-fbi-infragard-database/

Facebook Infrastructure Used by Hackers in Phishing Attack Chain

This recent phishing campaign tricks victims by using Facebook posts in its chain of attacks. The emails that were sent to the targets made it appear as though one of the recipients’ Facebook posts violated copyright, and they threatened to remove their accounts if no appeal was made within 48 hours.

#CoSoSec

https://gbhackers.com/facebook-infrastructure-used-by-hackers/

A new cross-platform malware botnet named 'MCCrash' is infecting Windows, Linux, and IoT devices to conduct distributed denial of service attacks on Minecraft servers.

#CoSoSec

https://www.bleepingcomputer.com/news/security/microsoft-warns-of-new-minecraft-ddos-malware-infecting-windows-linux/

Another day, another data breach at Uber – This time around, a hacker has leaked stolen data on a prominent cybercrime and hacking forum.

the data has been leaked on BreachForums, which surfaced as an alternative to the now-defunct now-sized Raidforums

#CoSoSec

https://www.hackread.com/new-uber-data-breach/

Google Launches Largest Distributed Database of Open Source Vulnerabilities

#CoSoSec

The Go-based tool,

https://github.com/google/osv-scanner

powered by the Open Source Vulnerabilities (OSV) database, is designed to connect "a project's list of dependencies with the vulnerabilities that affect them," Google software engineer Rex Pan in a post shared with The Hacker News.

https://thehackernews.com/2022/12/google-launches-largest-distributed.html