Afternoon Dessert - 2022-08-18

Welcome to another Afternoon Dessert breakout:

LibreOffice 7.4 released with MS Office compatibility improvements
LibreOffice 7.4 has been released, bringing multiple improvements, fixes, and the introduction of minor productivity-focused features across the entire suite's programs. [...]
Read more....

Microsoft Sysmon 14 can now block the creation of executables
Microsoft has released Sysmon 14 with a new 'FileBlockExecutable' option that lets you block the creation of executables for better protection against malware. [...]
Read more....

Amazon fixes Ring Android app flaw exposing camera recordings
Amazon has fixed a high-severity vulnerability in the Amazon Ring app for Android that could have allowed hackers to download customers' saved camera recordings. [...]
Read more....

China-backed APT41 Hackers Targeted 13 Organisations Worldwide Last Year
The Chinese advanced persistent threat (APT) actor tracked as Winnti (aka APT41) has targeted at least 13 organizations geographically spanning across the U.S, Taiwan, India, Vietnam, and China against the backdrop of four different campaigns in 2021. "The targeted industries included the public sector, manufacturing, healthcare, logistics, hospitality, education, as well as the media and
Read more....

S3 Ep96: Zoom 0-day, AEPIC leak, Conti reward, heathcare security [Audio + Text]
Latest episode - listen now (or read if you prefer!)
Read more....

Winnti hackers splits Cobalt Strike into 154 pieces to evade detection
​The Chinese Winnti hacking group, also known as 'APT41' or 'Wicked Spider,' targeted at least 80 organizations last year and successfully breached the networks of at least thirteen. [...]
Read more....

Google blocks largest HTTPS DDoS attack 'reported to date'
A Google Cloud Armor customer was hit with a distributed denial-of-service (DDoS) attack over the HTTPS protocol that reached 46 million requests per second (RPS), making it the largest ever recorded of its kind. [...]
Read more....

Janet Jackson's music video is now a vulnerability for crashing hard disks
Janet Jackson's Rhythm Nation music video of 1989 has officially been declared a security vulnerability as it freezes some models of hard drives on older computers. [...]
Read more....

Apple patches double zero-day in browser and kernel – update now!
Double 0-day exploits - one in WebKit (to break in) and the other in the kernel (to take over). Patch now!
Read more....

Researchers Detail Evasive DarkTortilla Crypter Used to Deliver Malware
A .NET-based evasive crypter named DarkTortilla has been used by threat actors to distribute a broad array of commodity malware as well as targeted payloads like Cobalt Strike and Metasploit, likely since 2015. "It can also deliver 'add-on packages' such as additional malicious payloads, benign decoy documents, and executables," cybersecurity firm Secureworks said in a Wednesday report. "It
Read more....

Researchers Link Multi-Year Mass Credential Theft Campaign to Chinese Hackers
A Chinese state-sponsored threat activity group named RedAlpha has been attributed to a multi-year mass credential theft campaign aimed at global humanitarian, think tank, and government organizations. "In this activity, RedAlpha very likely sought to gain access to email accounts and other online communications of targeted individuals and organizations," Recorded Future disclosed in a new
Read more....

China-backed APT41 Hackers Targeted 13 Organisations Worldwide Last Year
The Chinese advanced persistent threat (APT) actor tracked as Winnti (aka APT41) has targeted at least 13 organizations geographically spanning across the U.S, Taiwan, India, Vietnam, and China against the backdrop of four different campaigns in 2021. "The targeted industries included the public sector, manufacturing, healthcare, logistics, hospitality, education, as well as the media and
Read more....