Hackers are abusing the MSBuild environment to embedded malicious code into applications to evade detection. Attackers are abusing MSBuild to evade defences and implant Cobalt Strike beacons – SANS Internet Storm Centre
Another Bluetooth security – this time in a child’s toy
Fisher Price Chatter Special Edition Rather than children using their imagination to make a call with these toys – an adult, with little care for security added Bluetooth for that real call experience on the playschool toy. Bluetooth reboot of pre-school play phone has privacy flaw • The Register
Phishing campaigns – Indeed
One of the things we advise people to do on our Phishing and Social Engineering training, is to be very aware of the look and feel of any login pages and web sites they are directed to, as bad actors may not get it completely right – so if they …
Bluetooth security flawed but fixed
The Ellume – COVID-19 Home Test (ellumehealth.com) was tested and found to not be very secure. Worse compromised data was passed onto an agency vetting people entering into the USA depending on their COVID-19 status. Of course a Bluetooth-using home COVID test was cracked to fake results • The Register
Belgian defence ministry systems exploited via Log4j flaw
Belgian defence ministry admits attackers accessed its computer network by exploiting Log4j vulnerability • The Register As if you needed reminding that if the Log4j vulnerability impacts you, you need to take action.
