Read Time:7 Second
FEDORA-2024-53b69fdd40
Packages in this update:
emacs-29.3-1.fc38
Update description:
New upstream release 29.3, fixes rhbz#2271287
Monthly Archives: March 2024
Kimsuky Malware Attack
Read Time:49 Second
What is the Kimsuky Malware Attack?
Kimsuky, officially known as the Kim Suky Group, is a cyber-espionage group linked to North Korea. The group has been active since at least 2012 and is primarily focused on gathering intelligence targeting South Korean government entities. According to a recent observation by Rapid7, the group launched an attack leveraging weaponized Microsoft Office documents, ISO files, Windows shortcut (LNK), and CHM files, or Compiled HTML Help files.
What is the recommended Mitigation?
Maintain general awareness and training about the risk of phishing and social engineering attacks in the organization. And, ensuring that all systems and software are kept up-to-date with the latest patches.
What FortiGuard Coverage is available?
FortiGuard Labs has existing AV signatures to block all the known malware variants used by Kimsuky group and has blocked related IoCs via Web filtering service. AI-based Behavior detection engine by FortiGuard can detect and block unknown variants of the malware and other sophisticated threats.
emacs-29.3-1.fc39
Read Time:7 Second
FEDORA-2024-de10068888
Packages in this update:
emacs-29.3-1.fc39
Update description:
New upstream release 29.3, fixes rhbz#2271287
emacs-29.3-1.fc40
Read Time:7 Second
FEDORA-2024-c28562640b
Packages in this update:
emacs-29.3-1.fc40
Update description:
New upstream release 29.3, fixes rhbz#2271287
New Tycoon 2FA Phishing Kit Raises Cybersecurity Concerns
Read Time:5 Second
Discovered by Sekoia in 2023, the kit is associated with Adversary-in-The-Middle (AiTM) attacks
Notorious Nemesis Market zapped by video game-loving German police
Read Time:12 Second
Nemesis Market, a notorious corner of the darknet beloved by cybercriminals and drug dealers, has been suddenly shut down after German police seized control of its systems.
Read more in my article on the Tripwire State of Security blog.
Fake Ozempic Deals on the Rise as Experts Warn of Phishing Scams
Read Time:4 Second
Kaspersky’s findings revealed phishing pages posing as vendors, enticing users with discounts
UK Blames China for 2021 Hack Targeting Millions of Voters’ Data
Read Time:6 Second
The UK’s NCSC assesses that China-backed APT31 was “almost certainly” responsible for hacking the email accounts of UK parliamentarians
USN-6714-1: Debian Goodies vulnerability
Read Time:8 Second
It was discovered that debmany in Debian Goodies incorrectly handled certain
deb files. An attacker could possibly use this issue to execute arbitrary shell
commands.
biosig4c++-2.6.0-3.fc40
Read Time:21 Second
FEDORA-2024-ff6a72d8e9
Packages in this update:
biosig4c++-2.6.0-3.fc40
Update description:
2.6.0 – Security Update
BrainVisionMarker
fixes CVE-2024-23305
BrainVision: proved parser and sanity checks
fixes CVE-2024-22097, CVE-2024-23809
EGI
fixes CVE-2024-21795
FAMOS: disabled, support can be enabled by setting BIOSIG_FAMOS_TRUST_INPUT=1
mitigate vulnerabilities CVE-2024-21812, CVE-2024-23313, CVE-2024-23310, CVE-2024-23606