Threat Intelligence Bulletin – Spectre Attacks, Impersonations, and Bypassing MFA
Phishing campaign leveraging Follina vulnerability to deploy backdoor on Windows systems
Details on modus operandi of current phishing campaign
Microsoft temporarily removes automatic blocking of VBA macros in downloaded Office documents
Large-scale phishing campaign that bypasses MFA has attacked over 10,000 organizations
- https://thehackernews.com/2022/07/microsoft-warns-of-large-scale-aitm.html
- https://www.helpnetsecurity.com/2022/07/13/office-365-phishing-mfa/
Qakbot malware transforms delivery method to evade detection by using both common and unknown extensions, code obfuscation, and multiple URLs
Older AMD and Intel microprocessors vulnerable to Retbleed speculative execution attack
Sandbox escape bug affecting Apple OS’s with potential for privilege escalation
Orbit Linux malware creates backdoor to steal passwords and log terminal commands
Threat actors posing as cybersecurity companies (including CrowdStrike) to phish users and compromise symptoms
UEFI firmware in several Lenovo laptops vulnerable to buffer overflow vulnerabilities