Feed de Noticias de Ciberseguridad [30/11/2022]

Este reporte corresponde a una selección de las últimas noticias, alertas de seguridad, vulnerabilidades, ataques y casos de estudio observados durante las últimas horas. Esta información ha sido recopilada para entregar un panorama general de las amenazas más importantes del momento. El objetivo principal es dar visibilidad rápida sobre los cambios en la tendencia y la evolución del cibercrimen para generar conciencia y estrategias de protección en base a estos riesgos emergentes.

Noticias y Casos de Estudio

• Vulnerabilities found affecting OT products from German companies Festo and CODESYS – The Record by Recorded Future
• Espionage group using USB devices to hack targets in Southeast Asia – The Record by Recorded Future
• Commercial prospecting and rights of individuals: EDF fined 600 000 euros | CNIL
• Délibération SAN-2022-021 du 24 novembre 2022 – Légifrance (legifrance.gouv.fr)
• Trigona ransomware spotted in increasing attacks worldwide (bleepingcomputer.com)
• Let’s Encrypt Ha Logrado Asegurar Más De 300 Millones De Páginas Webs De Manera Gratuita | CronUp Ciberseguridad
• ¿Qué Tan Seguras Son Tus Contraseñas?: Descubrelas Combinaciones Más Débiles Y Cómo Robustecerlas | CronUp Ciberseguridad
• La Policía Nacional desarticula una organización criminal que defraudó más de 12 millones de euros mediante phishing. (policia.es)
• Adjusting pricing, introducing annual plans, and accelerating innovation (cloudflare.com)
• Medibank hackers announce ‘case closed’ and dump huge data file on dark web | Medibank | The Guardian
• UK introducing mandatory cyber incident reporting for managed service providers – The Record by Recorded Future

Ciberataques e Incidentes

• Killnet Gloats About DDoS Attacks Downing Starlink, White House (darkreading.com)
• IKEA investigating cyberattacks on outlets in Kuwait, Morocco – The Record by Recorded Future
• Sandworm hacking group linked to new ransomware deployed in Ukraine – The Record by Recorded Future
• Always Another Secret: Lifting the Haze on China-nexus Espionage in Southeast Asia | Mandiant
• Threat actors are offering access to corporate networks via unauthorized Fortinet VPN accessSecurity Affairs
• Cyberattackers Selling Access to Networks Compromised via Recent Fortinet Flaw (darkreading.com)
• Keralty ransomware attack impacts Colombia’s health care system (bleepingcomputer.com)
• Guatemala’s Foreign Ministry investigating ransomware attack – The Record by Recorded Future
• Liability for cyber attacks clarified by Ontario Court of Appeal (databreaches.net)

Vulnerabilidades

• Alerta De Seguridad Por Explotación Activa De Vulnerabilidad Crítica En Oracle Fusion Middleware – CVE-2021-35587 | CronUp Ciberseguridad
• New details on commercial spyware vendor Variston (blog.google)
• CyRC Vulnerability Advisory: Remote code execution vulnerabilities in mouse and keyboard apps | Synopsys
• Researchers find bugs allowing access, remote control of cars – The Record by Recorded Future
• Critical Quarkus Flaw Threatens Cloud Developers With Easy RCE (darkreading.com)

Malware

• This Malicious App Abused Hacked Devices to Create Fake Accounts on Multiple Platforms (thehackernews.com)
• TikTok’s ‘Invisible Challenge’ Abused by Hackers (gbhackers.com)
• KmsdBot: The Attack and Mine Malware (akamai.com)

Ransomware (nuevas víctimas publicadas)

CronUp Ciberseguridad

Alerta Temprana de Riesgos Cibernéticos (ATRc®)
Attack Surface Management
Cyber Threat Intelligence