Apple releases updates to address zero-day flaws
Apple has released security updates for iOS, iPadOS, macOS, and Safari web browser to manage two zero-day flaws that are already being exploited in the wild. They are numbered CVE-2023-28205, a “use after free issue in WebKit that could lead to arbitrary code execution when processing specially crafted web content,” and 2023-28206, an “out-of-bounds write issue in IOSurfaceAccelerator that could enable an app to execute arbitrary code with kernel privileges.” Both of these bugs have been addressed by Apple.
Amazon bans Flipper Zero for being a ‘card skimming device’
Following up on a story we brought you in January, Amazon has now banned the sale of the Flipper Zero portable multi-tool for pen-testers, since it considers the tool to be a card-skimming device. According to Bleeping Computer, “the Flipper Zero is a compact, portable, and programmable pen-testing tool that can help experiment with and debug various digital and hardware devices via multiple protocols, including RFID, radio, NFC, infrared, Bluetooth, and others.” The CEO of Flipper Devices, Pavel Zhovner has asked Amazon to reconsider the ban, since, he says, “the device is not capable of skimming bank cards.”
China to investigate Micron over cybersecurity
The Chinese government is in reviewing the products manufactured by US-based memory chip maker Micron, that are being sold in China. This is the latest action in a semiconductor trade dispute between China and the US and its allies. This dispute is causing chip supply chain disruptions that threaten many of the fastest-growing parts of the technology sector including AI and cloud technology, as well as impacting other sectors such as auto manufacturing. A statement issued on March 31 by the Chinese government said that the review is being undertaken “in order to ensure the security of the key information infrastructure supply chain, prevent network security risks caused by hidden product problems, and maintain national security.”
UK outsourcing services provider Capita suffered a cyber incident
Capita is a supplier of public sector contracts to the UK government – one of its biggest, , according to The Guardian newspaper. This includes numerous contracts with the Ministry of Defense. In an update shared on April 3 about the incident, the company announced it has experienced a cyber incident primarily impacting access to internal Microsoft Office 365 applications. The attack disrupted some services provided to individual clients, but the company pointed out that the majority of its client services was not impacted.
Thanks to this week’s episode sponsor, AppOmni
Cardboard drones running open source flight software take off in Ukraine and beyond
The Australian engineering company Corvo has created a cardboard drone that runs on open source software, standard hardware, and can be assembled and flown with no prior experience. The Corvo Precision Payload Delivery System (PPDS) costs less than $3,500 apiece. With a body of waxed cardboard, the drone takes around an hour to assemble and its lithium-ion batteries give it a range of up to 62 miles with a 6.6lb payload. The craft ships in a flat pack complete with tape, glue, and instructions as well as a tablet computer used to enter a GPS based flight plan that the craft then flies independently.
Clop releases student documents in Tasmania
Tasmanian government officials confirmed on Friday that more than 16,000 sensitive documents have been leaked by the Clop ransomware group. This follows a data theft incident that occurred two weeks ago. Minister for Science and Technology Madeleine Ogilvie told reporters that “the information released includes financial invoices, statements and information relating to student assistance applications. This may include names and addresses and this is an evolving situation.” She added, the data had been accessed through a third party file transfer service, and that there is no evidence that Tasmanian government IT systems have been breached.
New Jersey county police department confirms ransomware attack
The police department serving Camden County, New Jersey has confirmed ta ransomware attack last month that it is still investigating. The department serves the county’s 523,000 residents, and a spokesperson told Recorded Future News that the attack took place on March 13. According to The Record, “NBC News reported on Thursday that several law enforcement sources told them that the attack ‘has been locking many criminal investigative files and day-to-day internal administration abilities.’”
Last week in ransomware
Last week we brought you stories about a ransomware attack as Lewis & Clark College, DISH network being slapped with multiple lawsuits claiming “securities fraud” after a ransomware cyberattack, ALPHV ransomware exploits Veritas Backup Exec bugs, and Money Message ransomware gang claiming to have breached computer hardware manufacturer MSI. In addition, Rorschach is now rated as the fastest ransomware encryptor.