News Roundup — May 22nd 2024 edition.

Published in

BCK Security Weekly Newsletter

3 min readMay 23, 2024

This week in cybersecurity, a new Bibi wiper version emerged, destroying disk partition tables. Breach Forums plans to return to the dark web despite an FBI crackdown, and LockBit attacked London Drugs. A 23-year-old was arrested for running the Incognito dark web market. GitHub warned of a SAML auth bypass flaw, and Zoom added post-quantum encryption to its meetings.

The DOJ targeted North Korea’s IT scam operation, and the EPA issued a cyber alert for water inspections. Vulnerabilities were found in the Fluent Bit tool and a washing machine app. ARRL’s Logbook of the World was taken offline by a cyberattack, and CISOs faced challenges with IBM’s market exit.

Intel disclosed a critical AI software bug, and Microsoft will enforce Azure MFA in July 2024. The SEC introduced new incident response rules. Five individuals were charged with aiding North Korea’s weapons program, and a $73 million laundering scheme was disrupted. GE’s ultrasound equipment are riddled with bugs and Medisecure’s e-script firm were hit by ransomware.

New BiBi Wiper version also destroys the disk partition table

A new version of the BiBi Wiper malware is now deleting the disk partition table to make data restoration harder…

www.bleepingcomputer.com

Breach Forums Plans Dark Web Return This Week Despite FBI Crackdown

Breach Forums is making a comeback! The dark web return is confirmed with a new Onion domain, while the clearnet site…

www.hackread.com

LockBit says they stole data in London Drugs ransomware attack

Today, the LockBit ransomware gang claimed they were behind the April cyberattack on Canadian pharmacy chain London…

www.bleepingcomputer.com

Researchers spot cryptojacking attack that disables endpoint protections

A key component: Installing known vulnerable drivers from Avast and IOBit.

arstechnica.com

23-Year-Old Arrested for Running 100M Incognito Dark Web Market

Rui-Siang Lin, 23 from Taiwan. Lin, is accused of operating Incognito Market, one of the largest illegal dark web…

www.hackread.com

GitHub warns of SAML auth bypass flaw in Enterprise Server

GitHub has fixed a maximum severity (CVSS v4 score: 10.0) authentication bypass vulnerability tracked as CVE-2024-4985…

www.bleepingcomputer.com

Zoom adds post-quantum end-to-end encryption to video meetings

Zoom has announced the global availability of post-quantum end-to-end encryption (E2EE) for Zoom Meetings, with Zoom…

www.bleepingcomputer.com

DoJ Targets North Korea's Widespread IT Freelance Scam Operation

Fraudsters based in the US and Europe indicted for helping North Korea's nation-state groups establish fake freelancer…

www.darkreading.com

EPA will step up inspections of water sector cybersecurity

A new enforcement alert said that the majority of inspected water systems do not fully comply with federal…

cyberscoop.com

Fluent Bit Tool Vulnerability Threatens Billions of Cloud Deployments

Tenable Research team has discovered a critical memory corruption vulnerability tracked as CVE-2024-4323 and dubbed…

www.hackread.com

Students Spot Washing Machine App Flaw That Gives Out Free Cycles

UCSC students say that after reporting the bug months ago, they're still able to rack up unlimited free wash loads at…

www.darkreading.com

American Radio Relay League cyberattack takes Logbook of the World offline

The American Radio Relay League (ARRL) warns it suffered a cyberattack, which disrupted its IT systems and online…

www.bleepingcomputer.com

CISOs Grapple With IBM's Unexpected Cybersecurity Software Exit

IBM's abrupt divestiture of QRadar SaaS underscores the consolidation of SIEM, XDR, and AI technologies into unified…

www.darkreading.com

Intel Discloses Max Severity Bug in Its AI Model Compression Software

The improper input validation issue in Intel Neural Compressor enables remote attackers to execute arbitrary code on…

www.darkreading.com

Microsoft to start enforcing Azure multi-factor authentication in July

Starting in July, Microsoft will begin gradually enforcing multi-factor authentication (MFA) for all users signing into…

www.bleepingcomputer.com

SEC Adds New Incident Response Rules for Financial Sector

Financial firms covered under new regulations will be required to establish a clear response and communications plan…

www.darkreading.com

US woman allegedly aided North Korean IT workers infiltrate 300 firms

The U.S. Justice Department charged five individuals today, a U.S. Citizen woman, a Ukrainian man, and three foreign…

www.bleepingcomputer.com

US arrests suspects behind $73M 'pig butchering' laundering scheme

The U.S. Department of Justice charged two suspects for allegedly leading a crime ring that laundered at least $73…

www.bleepingcomputer.com

GE Ultrasound Gear Riddled With Bugs, Open to Ransomware & Data Theft

Thankfully, GE ultrasounds aren't Internet-facing. Exploiting most of the bugs to cause serious damage to patients…

www.darkreading.com

News Roundup — May 22nd 2024 edition.

New BiBi Wiper version also destroys the disk partition table

A new version of the BiBi Wiper malware is now deleting the disk partition table to make data restoration harder…

Breach Forums Plans Dark Web Return This Week Despite FBI Crackdown

Breach Forums is making a comeback! The dark web return is confirmed with a new Onion domain, while the clearnet site…

LockBit says they stole data in London Drugs ransomware attack

Today, the LockBit ransomware gang claimed they were behind the April cyberattack on Canadian pharmacy chain London…

Researchers spot cryptojacking attack that disables endpoint protections

A key component: Installing known vulnerable drivers from Avast and IOBit.

23-Year-Old Arrested for Running 100M Incognito Dark Web Market

Rui-Siang Lin, 23 from Taiwan. Lin, is accused of operating Incognito Market, one of the largest illegal dark web…

GitHub warns of SAML auth bypass flaw in Enterprise Server

GitHub has fixed a maximum severity (CVSS v4 score: 10.0) authentication bypass vulnerability tracked as CVE-2024-4985…

Zoom adds post-quantum end-to-end encryption to video meetings

Zoom has announced the global availability of post-quantum end-to-end encryption (E2EE) for Zoom Meetings, with Zoom…

DoJ Targets North Korea's Widespread IT Freelance Scam Operation

Fraudsters based in the US and Europe indicted for helping North Korea's nation-state groups establish fake freelancer…

EPA will step up inspections of water sector cybersecurity

A new enforcement alert said that the majority of inspected water systems do not fully comply with federal…

Fluent Bit Tool Vulnerability Threatens Billions of Cloud Deployments

Tenable Research team has discovered a critical memory corruption vulnerability tracked as CVE-2024-4323 and dubbed…

Students Spot Washing Machine App Flaw That Gives Out Free Cycles

UCSC students say that after reporting the bug months ago, they're still able to rack up unlimited free wash loads at…

American Radio Relay League cyberattack takes Logbook of the World offline

The American Radio Relay League (ARRL) warns it suffered a cyberattack, which disrupted its IT systems and online…

CISOs Grapple With IBM's Unexpected Cybersecurity Software Exit

IBM's abrupt divestiture of QRadar SaaS underscores the consolidation of SIEM, XDR, and AI technologies into unified…

Intel Discloses Max Severity Bug in Its AI Model Compression Software

The improper input validation issue in Intel Neural Compressor enables remote attackers to execute arbitrary code on…

Microsoft to start enforcing Azure multi-factor authentication in July

Starting in July, Microsoft will begin gradually enforcing multi-factor authentication (MFA) for all users signing into…

SEC Adds New Incident Response Rules for Financial Sector

Financial firms covered under new regulations will be required to establish a clear response and communications plan…

US woman allegedly aided North Korean IT workers infiltrate 300 firms

​The U.S. Justice Department charged five individuals today, a U.S. Citizen woman, a Ukrainian man, and three foreign…

US arrests suspects behind $73M 'pig butchering' laundering scheme

​The U.S. Department of Justice charged two suspects for allegedly leading a crime ring that laundered at least $73…

GE Ultrasound Gear Riddled With Bugs, Open to Ransomware & Data Theft

Thankfully, GE ultrasounds aren't Internet-facing. Exploiting most of the bugs to cause serious damage to patients…

MediSecure e-script firm hit by 'large-scale' ransomware data breach

Electronic prescription provider MediSecure in Australia has shut down its website and phone lines following a…

Published in BCK Security Weekly Newsletter

Written by BCK Security Inc

No responses yet

The U.S. Justice Department charged five individuals today, a U.S. Citizen woman, a Ukrainian man, and three foreign…

The U.S. Department of Justice charged two suspects for allegedly leading a crime ring that laundered at least $73…