Web3 workers found themselves in the crosshairs of a cunning new ploy. Cybercriminals used a fake video conferencing platform, Meeten, to infect both Windows and Mac systems with the Realst cryptostealer. BlueAlpha embraced stealth with Cloudflare Tunnels in its latest campaign to deliver GammaDrop malware. In other news, open-source machine learning tools revealed cracks in their armor. Vulnerabilities in platforms like MLflow, H2O, PyTorch, and MLeap exposed users to risks of code execution and data theft. Read on for the top 10 highlights from the past 24 hours.
01
Cybercriminals are using a fake video conferencing platform, Meeten, to target Web3 workers, infecting Windows and Mac systems with the Realst cryptostealer.
02
BlueAlpha, a Russian state-sponsored APT group, has updated its malware delivery methods to exploit Cloudflare Tunnels, aiming to infect victims with GammaDrop malware.
03
A multi-stage campaign targeting the manufacturing industry was identified, leveraging deceptive LNK files and LOLBins to bypass security mechanisms. It deployed Lumma stealer and Amadey bot.
04
SailPoint issued a warning about a critical vulnerability (CVE-2024-10905) in its IdentityIQ platform, which could allow unauthorized access to restricted files.
05
Multiple security flaws in open-source ML tools like MLflow, H2O, PyTorch, and MLeap could allow attackers to achieve code execution and access sensitive information.
06
Europol and international law enforcement took down the Manson Market cybercrime platform, disrupting phishing networks and seizing over 50 servers across multiple countries, yielding 200TB of evidence.
07
The Romanian Intelligence Service (SRI) reported that the country's election infrastructure was targeted by over 85,000 cyberattacks that originated from 33 countries.
08
A zero-day arbitrary file read vulnerability in Mitel MiCollab, can be combined with a now-patched critical bug to access sensitive files.
09
Cybersecurity startup System Two Security raised $7 million in a funding round led by Costanoa Ventures, with participation from Runtime Ventures, The Hive, and others.
10
CyberProof announced the acquisition of Interpres Security, a provider of Continuous Threat Exposure Management and Automated Security Control Assessments. Terms of the deal were undisclosed.
