New BMC Supply Chain Vulnerabilities Affect Servers from Dozens of Manufacturers

The Hacker News Daily Updates [Newsletter]( [cover]( [Industrial Cybersecurity Pulse Protecting Critical Infrastructure eBook]( Featured articles in this eBook include stories on how a desert water authority added new tech to shore up its systems, whether government regulations are helping keep critical infrastructure safe and how to protect the power grid through cyber-physical threat response. [Download Now]( Sponsored LATEST NEWS Dec 6, 2022 [Darknet's Largest Mobile Malware Marketplace Threatens Users Worldwide]( Cybersecurity researchers have shed light on a darknet marketplace called InTheBox that's designed to specifically cater to mobile malware operators. The actor behind the criminal storefront, believed to be available since at least January 2020, has been offering over 400 custom web injects grouped by geography that can be purchased by other adversaries looking to mount attacks of their own. ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Understanding NIST CSF to assess your organization's Ransomware readiness]( Ransomware attacks keep increasing in volume and impact largely due to organizations' weak security controls. Mid-market companies are targeted as they possess a significant amount of valuable data but lack the level of protective controls and staffing of larger organizations. According to a recent RSM survey, 62% of mid-market companies believe they are at risk of ransomware in the next ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Telcom and BPO Companies Under Attack by SIM Swapping Hackers]( A persistent intrusion campaign has set its eyes on telecommunications and business process outsourcing (BPO) companies at lease since June 2022. "The end objective of this campaign appears to be to gain access to mobile carrier networks and, as evidenced in two investigations, perform SIM swapping activity," CrowdStrike researcher Tim Parisi said in an analysis published last week. ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Open Source Ransomware Toolkit Cryptonite Turns Into Accidental Wiper Malware]( A version of an open source ransomware toolkit called Cryptonite has been observed in the wild with wiper capabilities due to its "weak architecture and programming." Cryptonite, unlike other ransomware strains, is not available for sale on the cybercriminal underground, and was instead offered for free by an actor named CYBERDEVILZ until recently through a GitHub repository. The source code ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [New BMC Supply Chain Vulnerabilities Affect Servers from Dozens of Manufacturers]( Three different security flaws have been disclosed in American Megatrends (AMI) MegaRAC Baseboard Management Controller (BMC) software that could lead to remote code execution on vulnerable servers. "The impact of exploiting these vulnerabilities include remote control of compromised servers, remote deployment of malware, ransomware and firmware implants, and server physical damage ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [Russian Courts Targeted by New CryWiper Data Wiper Malware Posing as Ransomware]( A new data wiper malware called CryWiper has been found targeting Russian government agencies, including mayor's offices and courts. "Although it disguises itself as a ransomware and extorts money from the victim for 'decrypting' data, [it] does not actually encrypt, but purposefully destroys data in the affected system," Kaspersky researchers Fedor Sinitsyn and Janis Zinchenko said in ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [When Being Attractive Gets Risky - How Does Your Attack Surface Look to an Attacker?]( In the era of digitization and ever-changing business needs, the production environment has become a living organism. Multiple functions and teams within an organization can ultimately impact the way an attacker sees the organization's assets, or in other words, the external attack surface. This dramatically increases the need to define an exposure management strategy. To keep up with ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [SiriusXM Vulnerability Lets Hackers Remotely Unlock and Start Connected Cars]( Cybersecurity researchers have discovered a security vulnerability that exposes cars from Honda, Nissan, Infiniti, and Acura to remote attacks through a connected vehicle service provided by SiriusXM. The issue could be exploited to unlock, start, locate, and honk any car in an unauthorized manner just by knowing the vehicle's vehicle identification number (VIN), researcher Sam Curry said in ... [Read More]( [Twitter]( [Facebook]( [LinkedIn]( [cover]( [Industrial Cybersecurity Pulse Protecting Critical Infrastructure eBook]( Featured articles in this eBook include stories on how a desert water authority added new tech to shore up its systems, whether government regulations are helping keep critical infrastructure safe and how to protect the power grid through cyber-physical threat response. [Download Now]( Sponsored This email was sent to {EMAIL}. You are receiving this newsletter because you opted-in to receive relevant communications from The Hacker News. To manage your email newsletter preferences, please [click here](. Contact The Hacker News: info@thehackernews.com [Unsubscribe]( The Hacker News | Pearls Omaxe, Netaji Subash Place, Pitampura, Delhi 110034 India