Here are this week’s highlights in cybersecurity:

  • Nimbuspwn, a set of vulnerabilities in Linux’s networkd-dispatcher allow an attacker to escalate privileges to root. More
  • A remote code execution was discovered by Checkpoint in Qualcomm & MediaTek chipsets that handle music decoding for Apple lossless format. More
  • Cryptographic blunder in Java, tracked as CVE-2022-21449 allows attackers to forge ECDSA signatures. More
  • According to KrebsonSecurity, leaked Lapsus chats show they stole T-Mobile source code. More
  • LemonDuck group targets Docker for cryptomining attacks. More
  • Bitdefender released a white-paper on a payload delivered by RIG Exploit Kit. The RedLine Stealer Trojan captured in January uses 6 layers of encryption to hinder analysis and aims to steal information stored in browsers (password, credit cards, cookies), cryptocurrency wallets, Discord, Telegram, Steam logins & more. More
  • A report shows Quantum ransomware gang go from initial access to domain wide encryption in under 4 hours. More

Don’t have time to check this page? You can get the news summary every week in your email inbox by subscribing to my newsletter.