Feed de Noticias de Ciberseguridad [02/12/2022]

Este reporte corresponde a una selección de las últimas noticias, alertas de seguridad, vulnerabilidades, ataques y casos de estudio observados durante las últimas horas. Esta información ha sido recopilada para entregar un panorama general de las amenazas más importantes del momento. El objetivo principal es dar visibilidad rápida sobre los cambios en la tendencia y la evolución del cibercrimen para generar conciencia y estrategias de protección en base a estos riesgos emergentes.

Noticias y Casos de Estudio

• A year later, Log4Shell still lingers – Help Net Security
• Emotet Detection: Infamous Botnet Resurfaces to the Email Threat Landscape – SOC Prime
• British police ‘overwhelmed and ineffective’ at digital forensics, inspectorate report finds – The Record by Recorded Future
• New DuckLogs malware service claims having thousands of ‘customers’ (bleepingcomputer.com)
• #StopRansomware: Cuba Ransomware  | CISA
• Should Ukraine rein in its patriotic hackers? – The Record by Recorded Future
• French Electricity Provider Fined for Storing Users’ Passwords with Weak MD5 Algorithm (thehackernews.com)
• Mitsubishi Electric FA Engineering Software | CISA
• Purpose Built Criminal Proxy Services and the Malicious Activity They Enable – DomainTools | Start Here. Know Now.
• Spanish police arrest 55 people involved in wide-ranging cyberscam operation – The Record by Recorded Future
• Newsroom Sues NSO Group for Pegasus Spyware Compromise (darkreading.com)
• Binance freezes $3 million worth of crypto stolen in Ankr hack – The Record by Recorded Future

Ciberataques e Incidentes

• LastPass Sufre Una Nueva Violación De Seguridad Crítica Que Expuso Cierta Información De Sus Clientes | CronUp Ciberseguridad
• Ransomware group may have stolen customer bank details from British water company – The Record by Recorded Future
• Brazil, debt collection company pays $500,000 ransom to hacker group Hive (suspectfile.com)
• Important Public Notice – LRSD Network Issue
• Manitoba Health reports privacy breach | CTV News
• Source – FBI investigating cyberattack of online sportsbooks (espn.com)
• Hackers Selling Personal Data Of 150,000 Patients From TN Hospital On Dark Web (indiatimes.com)
• Cyber event timeline | Medibank
• Cloud provider Rackspace hit by ongoing 12-hour Exchange outage (bleepingcomputer.com)

Vulnerabilidades

• Quarkus 2.14.2.Final and 2.13.5.Final released – Fix for CVE-2022-4116 – Quarkus
• IBM Cloud Databases for PostgreSQL was affected by a security vulnerability

Malware

• Accidentally Crashing a Botnet | Akamai
• Schoolyard Bully Trojan Facebook Credential Stealer – Zimperium
• Aqua Nautilus Discovers Redigo — New Redis Backdoor Malware (aquasec.com)
• New CryWiper data wiper targets Russian courts, mayor’s offices (bleepingcomputer.com)

Ransomware (nuevas víctimas publicadas)

Camilo Mix

Ingeniero en Ciberseguridad por la Universidad Tecnológica de Chile, Speaker, Analista de Ciberinteligencia, Investigador y Redactor para CronUp Ciberseguridad.