Afternoon Dessert - 2022-10-10

Welcome to another Afternoon Dessert breakout:

New Report Uncovers Emotet's Delivery and Evasion Techniques Used in Recent Attacks
Threat actors associated with the notorious Emotet malware are continually shifting their tactics and command-and-control (C2) infrastructure to escape detection, according to new research from VMware. Emotet is the work of a threat actor tracked as Mummy Spider (aka TA542), emerging in June 2014 as a banking trojan before morphing into an all-purpose loader in 2016 that's capable of delivering
Read more....

US airports taken down in DDoS attacks by pro-Russian hackers
The pro-Russian hacktivist group 'KillNet' has carried out large-scale DDoS (distributed denial of service) attacks against several U.S. airports' websites, taking many of them offline. [...]
Read more....

Serious Security: OAuth 2 and why Microsoft is finally forcing you into it
Microsoft calls it "Modern Auth", though it's a decade old, and is finally forcing Exchange Online customers to switch to it.
Read more....

Researchers Detail Malicious Tools Used by Cyberespionage Group Earth Aughisky
A new piece of research has detailed the increasingly sophisticated nature of the malware toolset employed by an advanced persistent threat (APT) group named Earth Aughisky. "Over the last decade, the group has continued to make adjustments in the tools and malware deployments on specific targets located in Taiwan and, more recently, Japan," Trend Micro disclosed in a technical profile last week
Read more....

Fortinet says critical auth bypass bug is exploited in attacks
Fortinet has confirmed today that a critical authentication bypass security vulnerability patched last week is being exploited in the wild. [...]
Read more....

Toyota discloses data leak after access key exposed on GitHub
Toyota Motor Corporation is warning that customers' personal information may have been exposed after an access key was publicly available on GitHub for almost five years. [...]
Read more....