From malwarebytes.com
In the April 2023 Android security bulletin, Google announced security updates which include fixes for two critical remote code execution (RCE) vulnerabilities and one vulnerability that has been exploited in the wild. The vulnerabilities are impacting Android systems running versions 11, 12, 12L, and 13. Users should update as soon as they can.
From thehackernews.com
A North Korean government-backed threat actor has been linked to attacks targeting government and military personnel, think tanks, policy makers, academics, and researchers in South Korea and the U.S.
Google’s Threat Analysis Group (TAG) is tracking the cluster under the name ARCHIPELAGO, which it said is a subset of another threat group tracked by Mandiant under the name APT43.
From theregister.com
Less than three weeks after Samsung lifted a ban on employees using ChatGPT, the chaebol has reportedly leaked its own secrets at least three times – including sensitive in-development semiconductor information.
The ban was originally intended to protect company data, but was lifted on March 11 to enhance productivity and keep staff engaged with the world’s latest cool tech tools.
According to a Korean local media report those now-leaked secrets include equipment measurement and yield data from the conglomerate’s device solution and semiconductor business unit.
From cyware.com
A threat actor group is using a comprehensive toolset named AlienFox to steal sensitive information such as API keys, authentication secrets, and credentials from cloud service providers and popular services. Adversaries are using security scanning platforms, such as LeakIX and SecurityTrails, to discover misconfigured servers with popular web frameworks.
From cyware.com
Since the beginning of this year, cybercriminals have been targeting Cacti and Realtek vulnerabilities on exploitable Windows and Linux servers. In two different attacks, threat actors infected victims with ShellBot (aka PerlBot) and Moobot botnet malware. The overlapping attack techniques indicate that the same attackers are behind both attacks.
From paloaltonetworks.com
Healthcare organizations have been embracing digital transformation to provide higher levels of care and near universal access to underserved populations. The pandemic greatly accelerated these efforts, forcing providers to expand their efforts around remote clinics, telemedicine and other key transformation initiatives. As we approach the annual HIMSS conference this month in Chicago, let’s take a moment to look at three key areas and respective security capabilities critical to healthcare providers in 2023 and beyond.
From bleepingcomputer.com
HP announced in a security bulletin this week that it would take up to 90 days to patch a critical-severity vulnerability that impacts the firmware of certain business-grade printers.
The security issue is tracked as CVE-2023-1707 and it affects about 50 HP Enterprise LaserJet and HP LaserJet Managed Printers models.
The company calculated a severity score of 9.1 out of 10 using the CVSS v3.1 standard and notes that exploiting it could potentially lead to information disclosure.