Xavier «X» Santolaria :verified_paw: :donor:<p>📨 Latest issue of my curated <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> and <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosec</span></a> list of resources for week #31/2023 is out! It includes the following and much more:</p><p>➝ 🐛 ✂️ Researchers Uncover New High-Severity <a href="https://infosec.exchange/tags/Vulnerability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Vulnerability</span></a> in <a href="https://infosec.exchange/tags/PaperCut" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PaperCut</span></a> Software<br>➝ 🇮🇱 🦠 <a href="https://infosec.exchange/tags/Israel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Israel</span></a> cybersecurity agency says no breach after senior official self-infects home PC with <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>malware</span></a><br>➝ 🇺🇸 CISA’s strategic plan adheres to overall Biden administration direction on cybersecurity<br>➝ 🩹 ❌ Top 12 vulnerabilities list highlights troubling reality: many organizations still aren’t <a href="https://infosec.exchange/tags/patching" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>patching</span></a><br>➝ 🐬 🔓 Hacking tool <a href="https://infosec.exchange/tags/FlipperZero" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FlipperZero</span></a> tracked by intelligence agencies, which fear white nationalists may deploy it against power grid<br>➝ 🔥 🔓 Hundreds of <a href="https://infosec.exchange/tags/Citrix" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Citrix</span></a> NetScaler ADC and Gateway Servers Hacked in Major Cyber Attack<br>➝ ⚡️ 🔓 Researchers jailbreak a <a href="https://infosec.exchange/tags/Tesla" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tesla</span></a> to get free in-car feature upgrades<br>➝ 🏭 📊 Industrial Control Systems Vulnerabilities Soar: Over One-Third Unpatched in 2023<br>➝ 🇷🇺 👥 Russian hackers target govt orgs in <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Microsoft</span></a> Teams <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>phishing</span></a> attacks<br>➝ 🩹 🔓 <a href="https://infosec.exchange/tags/Rapid7" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rapid7</span></a> found a bypass for the recently patched actively exploited <a href="https://infosec.exchange/tags/Ivanti" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ivanti</span></a> EPMM bug<br>➝ 🙈🔓 <a href="https://infosec.exchange/tags/Tenable" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tenable</span></a> CEO accuses Microsoft of negligence in addressing security flaw<br>➝ 🎣 📨 Hackers exploited <a href="https://infosec.exchange/tags/Salesforce" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Salesforce</span></a> zero-day in <a href="https://infosec.exchange/tags/Facebook" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Facebook</span></a> phishing attack<br>➝ 🇺🇸 ☁️ US internet hosting company appears to facilitate global <a href="https://infosec.exchange/tags/cybercrime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybercrime</span></a>, researchers say<br>➝ 🇨🇳 🇪🇺 <a href="https://infosec.exchange/tags/China" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>China</span></a>'s <a href="https://infosec.exchange/tags/APT31" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APT31</span></a> Suspected in Attacks on Air-Gapped Systems in Eastern Europe<br>➝ 🦠 💸 Schools Are Now the Leading Target for Cyber Gangs as Ransom Payments Encourage Attacks<br>➝ 🇺🇸 🇨🇳 Possible Chinese Malware in US Systems - a ‘Ticking Time Bomb’<br>➝ 🇮🇹 🏦 Cybercriminals Renting <a href="https://infosec.exchange/tags/WikiLoader" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WikiLoader</span></a> to Target Italian Organizations with Banking Trojan<br>➝ 🇺🇸 🇨🇳 Microsoft downplays damaging report on Chinese hacking its own engineers vetted<br>➝ 🇯🇴 💬 <a href="https://infosec.exchange/tags/Jordan" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Jordan</span></a> adopts cybercrime law seen as threat to <a href="https://infosec.exchange/tags/freespeech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freespeech</span></a><br>➝ 🇪🇬 🏥 Hacker Claims to Have Stolen Sensitive Medical Records from <a href="https://infosec.exchange/tags/Egypt" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Egypt</span></a>'s Ministry of Health<br>➝ 🔓 💰 <a href="https://infosec.exchange/tags/BankCard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BankCard</span></a> USA surrenders and pays <a href="https://infosec.exchange/tags/ransom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ransom</span></a></p> <p>📚 This week's recommended reading is: "Art of Software Security Assessment, The: Identifying and Preventing Software Vulnerabilities" by Mark Dowd, John McDonald, and Justin Schuh</p> <p>Subscribe to the <a href="https://infosec.exchange/tags/infosecMASHUP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>infosecMASHUP</span></a> newsletter to have it piping hot in your inbox every week-end ⬇️</p><p><a href="https://infosec-mashup.santolaria.net/p/infosec-mashup-week-312023" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec-mashup.santolaria.net/</span><span class="invisible">p/infosec-mashup-week-312023</span></a></p>