PwnKit Vulnerability
Researches at Qualys have discovered a local privilege escalation vulnerability in all distributions of Linux. This vulnerability appears to be trivial to exploit, though it does require some level of “local” access (could potentially be used with SSH or other remote-control methods) for execution.
Proof of Concept exploits have been developed and released. Exploitation is likely at this point. Patches have been released and should be applied.
Oracle Confirms “Obsolete Servers” Hacked Article link: https://www.bleepingcomputer.com/news/security/oracle-says-obsolete-servers-hacked-denies-cloud-breach/ Phishing Kits Now Vet Victims in Real-Time Before Stealing Credentials Article link: https://www.bleepingcomputer.com/news/security/phishing-kits-now-vet-victims-in-real-time-before-stealing-credentials/ Neptune RAT
Criminal Group Claims Responsibility for Cyberattack on Minnesota Casino Article Link: https://cdcgaming.com/brief/cybersecurity-incident-at-minnesota-tribal-community-casino-prompts-shutdown/ As CISA Downsizes, Where Can Enterprises Get Support? Article Link: https://www.darkreading.com/cybersecurity-operations/roundtable-cisa-downsizes-where-can-enterprises-look-support Oracle Privately
