News – November 2023


  • AeroBlade on the hunt targeting the U.S. Aerospace industry

    November 30, 2023

    BlackBerry has uncovered a previously unknown threat actor targeting an aerospace organization in the United States, with the apparent goal of conducting commercial and competitive cyber espionage. The BlackBerry Threat Research and Intelligence team is tracking this threat actor as AeroBlade. The actor used spear-phishing as a delivery mechanism: A weaponized document, sent as an email ...

  • Booking.com hackers increase attacks on customers

    November 30, 2023

    Hackers are increasing their attacks on Booking.com customers by posting adverts on dark web forums asking for help finding victims. Cyber-criminals are offering up to $2,000 (£1,600) for login details of hotels as they continue to target the people who are staying with them. Since at least March, customers have been tricked into sending money to ...

  • France bans ministers from WhatsApp, Signal; demands French alternatives

    November 30, 2023

    French Prime Minister Élisabeth Borne has banned widely used messaging apps WhatsApp, Telegram and Signal for ministers and their teams due to security vulnerabilities, according to a memo obtained by French news outlet Le Point. “These digital tools are not devoid of security flaws, and therefore cannot guarantee the security of conversations and information shared via ...

  • Egypt Hosts The 3rd Edition of Defence Exhibition to Showcase the Latest Global Military Advancements

    November 29, 2023

    Under the patronage of His Excellency President Abdel Fattah El-Sisi   Cairo, Egypt, November 29, 2023: Under the patronage of His Excellency President Abdel Fattah El-Sisi, President of Egypt’s Arab Republic and Supreme Commander of the Armed Forces, Egypt is set to host the 3rd edition of Egypt Defence Expo (EDEX), taking place from 4 to 7 December 2023, ...

  • Japan space agency server likely hit by unauthorized access attack

    November 29, 2023

    Japan’s space agency was likely hit by an unauthorized access attack to a network server, the government said Wednesday, adding the incident did not involve sensitive information pertaining to rockets or satellites. Sources close to the matter said the Japan Aerospace Exploration Agency was not aware that the breach may have occurred sometime during the summer ...

  • Medical test company’s ‘serious and systemic failures’ led to cyber-attack, watchdog says

    November 29, 2023

    Medical testing company Australian Clinical Labs had “serious and systemic failures” that resulted in a cyber-attack that led to more than 200,000 customer health records and credit card details being published on the dark web, the Australian information commissioner has alleged. In October last year, in the midst of the Medibank and Optus cyber-attacks, Medlab’s parent ...

  • Maldives explores increasing cybersecurity cooperation with Türkiye

    November 29, 2023

    The Maldives and Türkiye have discussed increasing cooperation on cybersecurity. The discussion was held during a meeting between the Minister of Interior of Türkiye, Ali Yerlikaya, and President Dr. Mohamed Muizzu. The Turkish minister thanked President Muizzu for making his first official visit as President of Maldives to Türkiye. Discussions between the President and the Turkish ...

  • Spyware Employs Various Obfuscation Techniques to Bypass Static Analysis

    November 29, 2023

    With the surging popularity of mobile applications, the landscape of cybersecurity is encountering increasingly intricate and discreet forms of malicious software. One common strategy in the realm of cybersecurity is code obfuscation. This practice involves the deliberate alteration of various elements within the code, such as variables, functions, and class names, rendering them virtually indecipherable. This ...

  • ownCloud vulnerability can be used to extract admin passwords

    November 28, 2023

    ownCloud has warned users about three critical security flaws in its file-sharing software which, if exploited, could reveal sensitive information and modify files. An especially and potentially impactful one is a vulnerability that could lead to disclosure of sensitive credentials and configuration in containerized deployments. ownCloud is a very widely used open-source project that allows users ...

  • GoTitan Botnet – Ongoing Exploitation on Apache ActiveMQ

    November 28, 2023

    This past October, Apache issued a critical advisory addressing CVE-2023-46604, a vulnerability involving the deserialization of untrusted data in Apache. On November 2, the Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2023-46604 to its known exploited list, KEV Catalog, indicating this vulnerability’s high risk and impact. Fortiguard Labs also released an outbreak alert and a threat ...