Microsoft Increases OneNote Security with Auto-Blocking
Microsoft is taking action to enhance security in OneNote by automatically blocking 120 risky file extensions. This update comes as a response to the increasing use of OneNote for malware delivery. The new security measures will apply only to OneNote for Microsoft 365 devices running Windows and are expected to roll out in Version 2304.
Discord Leaks Concern White House
The Biden administration is investigating the leak of classified intelligence documents on Discord, a messaging service. The leaked information, which spread through various social media platforms, includes sensitive details about U.S. intelligence visibility into Russian military planning. Experts predict the impact of these leaks to be similar to the Snowden Files, Vault 7, and Shadow Brokers leaks, potentially affecting critical infrastructure security, government, and industry.
Estonian Man Indicted for Procuring Electronics for Russian Military
Andrey Shevlyakov, an Estonian citizen, has been arrested and indicted on 18 counts of conspiracy and other charges related to purchasing U.S.-made electronics on behalf of the Russian government and military. Shevlyakov allegedly used false names and front companies to circumvent export restrictions and smuggle sensitive electronics across the Russian border. If convicted in the U.S., he could face up to 20 years in prison.
Balada Injector Malware Infects Over One Million WordPress Sites
GoDaddy’s Sucuri has reported that the Balada Injector malware campaign has infected over one million WordPress websites since 2017. The campaign leverages known theme and plugin vulnerabilities and executes in waves every few weeks. WordPress users are urged to keep their website software up-to-date, remove unused plugins and themes, and use strong admin passwords.
Apple Addresses Zero-Day Flaws with Updates
Apple has released security updates for iOS, iPadOS, macOS, and Safari to address two zero-day flaws that were being exploited in the wild. The company has addressed the issues with improved memory management and better input validation.
Amazon Bans Flipper Zero for Being a ‘Card Skimming Device’
Amazon has banned the sale of Flipper Zero, a portable multi-tool for pen-testers, after classifying it as a card-skimming device. Flipper Devices’ CEO Pavel Zhovner has requested Amazon reconsider the ban.
China Launches Cybersecurity Review of Micron Products
The Chinese government has initiated a cybersecurity review of U.S.-based memory chip maker Micron’s products sold in China. This move is the latest development in the ongoing semiconductor trade dispute between China and the U.S. and its allies.
UK’s Capita Hit by Cyber Incident
Capita, a major UK outsourcing services provider, has suffered a cyber incident impacting access to internal Microsoft Office 365 applications. While some services provided to clients were disrupted, the majority of client services remain unaffected.
Corvo’s Cardboard Drones Run Open Source Flight Software
Australian engineering company Corvo has developed a cardboard drone that runs on open source software, standard hardware, and requires no prior experience to assemble and fly. The Corvo Precision Payload Delivery System (PPDS) costs less than $3,500 and can be assembled in about an hour.
Clop Ransomware Group Leaks Student Documents in Tasmania
The Clop ransomware group has leaked over 16,000 sensitive documents following a data theft incident in Tasmania. The leaked information includes financial invoices, statements, and student assistance application details.
New Jersey County Police Department Confirms Ransomware Attack
The police department in Camden County, New Jersey, has confirmed a ransomware attack that occurred in March. The attack has locked many criminal investigative files and impacted the department’s day-to-day internal administration abilities. The incident is still under investigation, and law enforcement sources have expressed concern about the potential consequences of the attack on the county’s 523,000 residents.
That wraps up todays cybersecurity brief. As always stay safe, stay vigilant and we’ll see you tomorrow with another update!