Cyber Morning Call Tempest Security Intelligence

[Referências do Episódio]
“Dirty stream” attack: Discovering and mitigating a common vulnerability pattern in Android apps - https://www.microsoft.com/en-us/security/blog/2024/05/01/dirty-stream-attack-discovering-and-mitigating-a-common-vulnerability-pattern-in-android-apps/
HPE Aruba Networking Product Security Advisory - Advisory ID: ARUBA-PSA-2024-004 - https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-004.txt
Uncharmed: Untangling Iran's APT42 Operations - https://cloud.google.com/blog/topics/threat-intelligence/untangling-iran-apt42-operations/
Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia

[Referências do Episódio]
Eight Arms to Hold You: The Cuttlefish Malware - https://blog.lumen.com/eight-arms-to-hold-you-the-cuttlefish-malware/
JFrog Security research discovers coordinated attacks on Docker Hub that planted millions of malicious repositories - https://jfrog.com/blog/attacks-on-docker-with-millions-of-malicious-repositories-spread-malware-and-phishing-scams/
DEFENDING OT OPERATIONS AGAINST ONGOING PRO-RUSSIA HACKTIVIST ACTIVITY - https://media.defense.gov/2024/May/01/2003454817/-1/-1/0/DEFENDING-OT-OPERATIONS-AGAINST-ONGOING-PRO-RUSSIA-HACKTIVIST-ACTIVITY.PDF
A recent security incident involving Dropbox Sign - https://sign.dropbox.com/blog/a-recent-security-incident-involving-dropbox-sign
Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia

[Referências do Episódio]
Zloader Learns Old Tricks - https://www.zscaler.com/blogs/security-research/zloader-learns-old-tricks
MUDDLING MEERKAT: THE GREAT FIREWALL MANIPULATOR- https://blogs.infoblox.com/threat-intelligence/a-cunning-operator-muddling-meerkat-and-chinas-great-firewall/
Smart devices: new law helps citizens to choose secure products - https://www.ncsc.gov.uk/blog-post/smart-devices-law

Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia

[Referências do Episódio]
How to Block Residential Proxies using Okta - https://sec.okta.com/blockanonymizers
Cisco warns of large-scale brute-force attacks against VPN services - https://www.bleepingcomputer.com/news/security/cisco-warns-of-large-scale-brute-force-attacks-against-vpn-services/
Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia

[Referências do Episódio]
Brokewell: do not go broke from new banking malware! -
https://www.threatfabric.com/blogs/brokewell-do-not-go-broke-by-new-banking-malware
WP Automatic WordPress plugin hit by millions of SQL injections attacks - https://www.bleepingcomputer.com/news/security/wp-automatic-wordpress-plugin-hit-by-millions-of-sql-injection-attacks/#google_vignette
CVE-2024-2389: Command Injection Vulnerability In Progress Flowmon - https://rhinosecuritylabs.com/research/cve-2024-2389-in-progress-flowmon/
Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia

[Referências do Episódio]
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices - https://blog.talosintelligence.com/arcanedoor-new-espionage-focused-campaign-found-targeting-perimeter-network-devices/
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Web Services Denial of Service Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-websrvs-dos-X8gNucD2
Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-persist-rce-FLsNXF4h
Stable Channel Update for Desktop - Wednesday, April 24, 2024 - https://chromereleases.googleblog.com/2024/04/stable-channel-update-for-desktop_24.html
Securonix Threat Research Security Advisory: Analysis of Ongoing FROZEN#SHADOW Attack Campaign Leveraging SSLoad Malware and RMM Software for Domain Takeover - https://www.securonix.com/blog/securonix-threat-research-security-advisory-frozenshadow-attack-campaign/
Unplugging PlugX: Sinkholing the PlugX USB worm botnet - https://blog.sekoia.io/unplugging-plugx-sinkholing-the-plugx-usb-worm-botnet/
Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia