Here are this week’s highlights in cybersecurity:

  • OpenSSL patched two high-severity vulnerabilities in its cryptographic library. Issues happen when parsing X509 certificates and can cause a denial-of-service or even remote-code execution. More
  • A report shows that hackers have 570 network access listings for sale, with a cumulative requested price of around USD 4 million. More
  • Dropbox was hacked and attackers made of with 130 code repositories. Code was stolen from GitHub using employee credentials stolen in a phishing attack. More
  • A French-speaking hacker group carried over 30 successful attacks on banks, financial services and telecommunications companies, mainly located in Africa. During this period OPERA1ER is confirmed to have stolen at least $11 million. More
  • Researchers discovered dozens of PyPI packages to delivering the W4SP information stealer in an ongoing supply-chain attack. More

Don’t have time to check this page? You can get the news summary every week in your email inbox by subscribing to my newsletter.