Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories)

Welcome to this week’s Cybersecurity Newsletter, bringing you the latest updates and insights on the rapidly evolving digital landscape.

Stay informed on industry approaches to securing remote work, mitigating vulnerabilities, and adapting to new global cybersecurity regulations. Join us weekly for insights to help you stay ahead in the fast-changing world of cybersecurity.

1 Cyber Attacks

1.1 OilRig Hackers Breach Microsoft Exchange

The Iranian state-sponsored hacking group OilRig exploited a critical vulnerability in Microsoft Exchange servers, emphasizing the importance of timely patch management for enterprise email systems.

1.2 Microsoft Faces 600M Cyber Attacks Daily

Microsoft has revealed that its customers face an overwhelming 600 million cyber attacks each day, underscoring the relentless nature of cyber threats and the urgent need for robust security defenses.

1.3 macOS Gatekeeper Security Feature Bypassed

Researchers have uncovered a method to bypass Apple’s Gatekeeper security in macOS, underscoring the need for multi-layered security measures.

2 Threats

2.1 Website Hacks Occur 3-5 Times Per Hour

Recent reports reveal a startling trend of frequent website hacks, with an estimated 3 to 5 incidents happening every hour, stressing the need for improved website security measures.

2.2 Mobile Devices: Prime Target for Cybercriminals

Mobile devices continue to be a top target for cybercriminals. Users are encouraged to implement strong security measures to protect their smartphones and tablets.

3 Vulnerabilities

3.1 Splunk Vulnerabilities Expose Systems to Remote Code Execution

Critical vulnerabilities in Splunk software allow attackers to execute remote code, placing affected systems at serious risk. Organizations are urged to patch immediately.

3.2 Critical Jetpack Vulnerability Threatens WordPress Sites

A severe flaw in the Jetpack plugin for WordPress has been discovered, potentially impacting millions of websites. Immediate updates are recommended.

3.3 Proof-of-Concept Exploit Targets Windows Kernel-Mode Drivers

Security researchers have developed a proof-of-concept exploit for Windows kernel-mode drivers, emphasizing the importance of regular system updates and strong security measures.

3.4 Chrome 130 Released with Key Security Fixes

Google has released Chrome 130, addressing several vulnerabilities. Users should update their browsers to protect against security threats.

3.5 Kubernetes Image Builder Vulnerabilities Patched

Multiple vulnerabilities have been patched in Kubernetes image builder tools. Organizations are advised to update their infrastructures promptly to mitigate risks.

3.6 Internet Explorer Zero-Day Flaw Discovered

A new zero-day vulnerability has been found in Internet Explorer, despite its discontinuation, highlighting the risks of using outdated software.

4 Data Breach

4.1 Cisco Data Breach: Attackers Claim to Have Stolen Sensitive Data

Cisco has experienced a significant breach, with attackers claiming to have stolen sensitive data now being sold on the dark web. While the company continues its investigation, this breach emphasizes the need for robust security measures.

CyberForte, one of Australia’s leading cybersecurity companies, offers top-tier cyber defense solutions to protect your business—without the in-house costs. Stay secure with expert, scalable protection tailored to your needs.