Cyberespionage by several intelligence services, some of contracted out. Developments in the cyber underworld. Vulnerabilities reported in CPUs. Some notes on Patch Tuesday.
Reports of a Wide-ranging cyberespionage campaign by China's Ministry of State Security. EvilProxy phishing tool targets executives, and defeats multifactor authentication. Vulnerabilities in CPUs. Yashma ransomware targets a wide range of countries. MacOS threat trends. Is there a Russian attempt to disrupt British elections? Rob Boyce from Accenture checks in from the Black Hat conference. Maria Varmazis talking with Black Hat Aerospace Village's Kaylin Trychon and Steve Luczynski. Ukraine claims to have stopped a Russian spyware campaign. And Patch Tuesday has come and gone, but the vulnerabilities remain–unless, of course, you’ve applied the patches.
New Inception attack leaks sensitive data from all AMD Zen CPUs (BleepingComputer)
‘Hostile actors’ hacked British voter registry, electoral agency says (Washington Post)
Patch Tuesday: Adobe Patches 30 Acrobat, Reader Vulns (SecurityWeek)
Microsoft Releases August 2023 Security Updates (Cybersecurity and Infrastructure Security Agency CISA)
Fortinet Releases Security Update for FortiOS (Cybersecurity and Infrastructure Security Agency CISA)
Adobe Releases Security Updates for Multiple Products (Cybersecurity and Infrastructure Security Agency CISA)
Patch Tuesday review: August 2023. (CyberWire)