It's been a busy week in cybersecurity and time for a Friday Wrap Up. Here are some of the interesting stories from this past week.

Cybersecurity Threats and Exploits

Newly discovered vulnerabilities and sophisticated hacking campaigns reveal the ongoing evolution of cyber threats across platforms and technologies.

🔓 Chinese hackers exploit a Fortinet VPN zero-day vulnerability using the DeepData toolkit to steal credentials. (Published on 11/18/2024, BleepingComputer). Read More

🎯 Fake discount sites mimic legitimate brands to exploit Black Friday shopping activity and steal customer information. (Published on 11/18/2024, The Hacker News). Read More

🛡 WhatsApp reveals that NSO Group operates Pegasus spyware for clients, as detailed in newly released court documents. (Published on 11/18/2024, Dark Reading). Read More

🔑 Apple rushes out critical updates to patch macOS and iOS zero-day vulnerabilities actively exploited in the wild. (Published on 11/19/2024, SecurityWeek). Read More

📂 A new Linux backdoor, WolfsBane, targeting Linux systems, has been attributed to the Chinese Gelsemium hacking group. (Published on 11/21/2024, BleepingComputer). Read More

💻 Ubuntu Linux faces privilege escalation vulnerabilities due to flaws in the needrestart utility, allowing attackers root access. (Published on 11/20/2024, BleepingComputer). Read More

📉 Microsoft seizes 240 domains tied to ONNX, a phishing-as-a-service operation targeting individuals and companies globally since 2017. (Published on 11/21/2024, BleepingComputer). Read More

Malware Campaigns and Emerging Threats

Cybercriminals exploit emerging techniques and vulnerabilities, demonstrating the need for robust defenses against advanced threats.

📡 The Water Barghest group hijacks 20,000+ IoT devices using zero-day vulnerabilities, selling them for proxy misuse. (Published on 11/20/2024, Dark Reading). Read More

📉 Malware bypasses Microsoft Defender and 2FA, stealing $24K in cryptocurrency via a fake NFT game app. (Published on 11/22/2024, Hackread). Read More

📦 Malicious Python packages impersonating ChatGPT and Claude deliver JarkaStealer malware, targeting Python developers. (Published on 11/21/2024, The Hacker News). Read More

Legal and Policy Developments

Law enforcement and regulatory updates highlight global efforts to tackle cybercrime and espionage.

👮 Russian hacker Evgenii Ptitsyn, linked to Phobos ransomware, extradited to the US to face extortion and hacking charges. (Published on 11/19/2024, Hackread). Read More

🛠 Russian ransomware gangs seek pen testers, posting job ads to enhance their ransomware deployment capabilities. (Published on 11/19/2024, Dark Reading). Read More

🏢 China's cyber capabilities leverage private firms and academia in a vast offensive strategy for espionage and warfare. (Published on 11/22/2024, Dark Reading). Read More

Vulnerabilities in Critical Infrastructure

Critical weaknesses in legacy systems and enterprise technologies pose significant risks to users and organizations.

📡 D-Link warns of an unpatched RCE vulnerability affecting six discontinued router models. (Published on 11/20/2024, SecurityWeek). Read More

🛠 Over 2,000 Palo Alto firewalls compromised due to vulnerabilities, despite decreasing exposure rates. (Published on 11/21/2024, SecurityWeek). Read More

Stay informed and secure in the tech and cybersecurity world. Have a great weekend, and remember to patch and protect your systems!