Tesla, TikTok, Karakurt, VISS, Cozy Bear, GambleForce, Aaran Leyland, and More – SWN #349
Tesla, TikTok, Karakurt, VISS, Volt Typhoon, Cozy Bear, GambleForce, Aaran Leyland, and More News on the Security Weekly News.
Hosts
Doug White
Professor at Roger Williams University
- 1. Zoom Unveils Open Source Vulnerability Impact Scoring System
- 2. Chinese APT Volt Typhoon Linked to Unkillable SOHO Router Botnet
- 3. Echoes of SolarWinds: JetBrains TeamCity servers under attack by Russia-backed hackers
- 4. Hiring? New scam campaign means ‘resume’ downloads may contain malware
- 5. New ‘GambleForce’ Threat Actor Behind String of SQL Injection Attacks
- 6. US reveals email addresses used to send ransomware demands
- 7. Support for TikTok ban crumbles, even among Republicans
- 8. Tesla conducts largest-ever recall for ‘insufficient’ safety controls after exclusive Post report on Autopilot
Aaran Leyland
Cyber security lead EMEA at Defence
- 1. 2023 Holiday Season API Report reveals spike in cyberthreats to retailers
A new report released today by application programming interface security company Cequence Security Inc. warns that retail fraud is up nearly 700% as cybercriminals exploit the holiday shopping season.
The report is based on anonymized traffic and attack data from billions of transactions from Cequence’s customer base, which includes Fortune 500 and Global 2000 companies. It found that threat actors are evolving tactics and opting for a more nuanced approach that spreads attacks across a broader timeframe to blend in with legitimate traffic and evade detection.