News

Weekly Malware Roundup – November 13, 2023

greykeep · November 13, 2023 ·

GreyKeep Security Malware Roundup - September 5, 2023

This is the GreyKeep Security Malware Roundup for November 13, 2023. Here’s a summary of what’s in this week’s edition:

Targets

Windows / PowerShell
Linux
MacOS
Android
Google Calendar / Cloud

Atlassian Confluence
Python / PyPI
MOVEit
WinRAR

Organizations

Boeing
Cogdell Memorial Hospital
Isreali Tech Sector
Indian Government

Ukranian Power Grid
Cambodian Government
Fashion Industry
DP World

Threat Actors

BlueNoroff / Lazarus
CIOp
LockBit
Lorenz
Imperial Kitten
Ryuk Ransomware Group

SideCopy
Sandworm
Farnetwork
Saphire Sleet
BulletProofLink
Royal

[Read more…]

Cybersecurity Daily: November 2, 2023

greykeep · November 2, 2023 ·

GreyKeep Security Cybersecurity Daily News

Your daily dose of relevant cybersecurity advisories, industry news, and product updates for November 2, 2023.

Alerts & Advisories

[Read more…]

Cybersecurity Daily: October 12, 2023

greykeep · October 12, 2023 ·

Your daily dose of relevant cybersecurity advisories, industry news, and product updates for October 12, 2023.

Alerts & Advisories

[Read more…]

Google Issues Maximum-Severity libwebp Vulnerability

greykeep · September 26, 2023 ·

Photo by Mitchell Luo

Google has submitted a new CVE for a vulnerability identified in libwebp, an open-source library for handling images in WebP format. WebP allows for smaller image sizes, reducing download times and improving website performance, and is supported by popular web browsers.

Google initially reported the issue as a flaw in Google Chrome (CVE-2023-4863) with a severity rating of 8.8 (High), but the company subsequently issued the WebP vulnerability under CVE-2023-5129 assigning the maximum severity rating possible – 10/10 (Critical).

[Read more…]