Analyzing the DICT reported “China-linked’ cyber attack; Volt Typhoon threat group preparing for destructive cyberattacks; Fortinet SIEM two CVSS level 10 vulnerabilities; Cybersecurity engineering tools
Open source threat intel feeds; a 26 billion records data breach collection; Microsoft hacked yet again by Russian intelligence group; Authentication bypass in GoAnywhere; New government office for cyber threats in the Philippines
United Nations names Philippines in cyber fraud networks; a collection of AI exploits; Microsoft SharePoint actively exploited; Ivanti actively exploited; GitLab zero-click account hijack; Juniper pre-auth RCE
Philippines Government Works With Hackers; Apple AirDrop broken By Chinese Authorities; Reconnaissance Framework for Telegram; Ivanti Vulnerabilities; Nation State Weaponization of Software Vulnerabilities
Undocumented MultiLogin Google OAuth endpoint; Actively exploited vulnerabilities in Chrome and MS Excel parser; Online scams in Philippines highest in Asia; Awesome Nuclei Templates Collection
Extraordinary iPhone hack exploited hidden hardware feature; Another Chrome zero-day; Peach Sandstorm password spray; More Android malware on Google Play
Instagram Phishing; DevSecOps-Playbook; Shadow Play foreign influence; Microsoft OAuth abuse; Interpol arrest in Manila
Cyber crime scam compounds in South East Asia; Security Baselines for Google; JetBrains exploited by Russian foreign intelligence; Log4j vulnerabilities exploited by Lazarus
Spy loan malware; Fake Wordpress security advisories; Shodan search dorks; Never ending Atlassian critical vulnerbilities
Philippines considering TikTok ban; ownCloud gets a CVSS 10 vulnerability; 25+ industrial control system vulnerabilities this month; tools for cybersecurity engineering
Zimbra zero-day impacts governments; WinRAR used to exploit embassies; Tools for cybersecurity practitioners
Known exploited Microsoft vulnerabilities; Infostealer utility uses ChatGPT; ICBC pays Lockbit ransom