ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Ouvir "Cyber Morning Call - #596 - 02/08/2024"
Sinopse do Episódio
[Referências do Episódio]
Quartet of Trouble: XWorm, AsyncRAT, VenomRAT, and PureLogs Stealer Leverage TryCloudflare - https://www.esentire.com/blog/quartet-of-trouble-xworm-asyncrat-venomrat-and-purelogs-stealer-leverage-trycloudflare
Threat Actor Abuses Cloudflare Tunnels to Deliver RATs - https://www.proofpoint.com/us/blog/threat-insight/threat-actor-abuses-cloudflare-tunnels-deliver-rats
BITS and Bytes: Analyzing BITSLOTH, a newly identified backdoor - https://www.elastic.co/security-labs/bits-and-bytes-analyzing-bitsloth
Detecting evolving threats: NetSupport RAT campaign - https://blog.talosintelligence.com/detecting-evolving-threats-netsupport-rat/
APT41 likely compromised Taiwanese government-affiliated research institute with ShadowPad and Cobalt Strike - https://blog.talosintelligence.com/chinese-hacking-group-apt41-compromised-taiwanese-government-affiliated-research-institute-with-shadowpad-and-cobaltstrike-2/
Over 20,000 internet-exposed VMware ESXi instances vulnerable to CVE-2024-37085 - https://securityaffairs.com/166432/hacking/vmware-esxi-cve-2024-37085-vulnerable-instances.html
VMSA-2024-0013:VMware ESXi and vCenter Server updates address multiple security vulnerabilities (CVE-2024-37085, CVE-2024-37086, CVE-2024-37087) - https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24505
StackExchange Abused to Spread Malicious Python Package That Drains Victims’ Crypto Wallets - https://checkmarx.com/blog/stackexchange-abused-to-spread-malicious-python-package-that-drains-victims-crypto-wallets/
BlankBot - a new Android banking trojan with screen recording, keylogging and remote control capabilities - https://intel471.com/blog/blankbot-a-new-android-banking-trojan-with-screen-recording-keylogging-and-remote-control-capabilities
Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia
Quartet of Trouble: XWorm, AsyncRAT, VenomRAT, and PureLogs Stealer Leverage TryCloudflare - https://www.esentire.com/blog/quartet-of-trouble-xworm-asyncrat-venomrat-and-purelogs-stealer-leverage-trycloudflare
Threat Actor Abuses Cloudflare Tunnels to Deliver RATs - https://www.proofpoint.com/us/blog/threat-insight/threat-actor-abuses-cloudflare-tunnels-deliver-rats
BITS and Bytes: Analyzing BITSLOTH, a newly identified backdoor - https://www.elastic.co/security-labs/bits-and-bytes-analyzing-bitsloth
Detecting evolving threats: NetSupport RAT campaign - https://blog.talosintelligence.com/detecting-evolving-threats-netsupport-rat/
APT41 likely compromised Taiwanese government-affiliated research institute with ShadowPad and Cobalt Strike - https://blog.talosintelligence.com/chinese-hacking-group-apt41-compromised-taiwanese-government-affiliated-research-institute-with-shadowpad-and-cobaltstrike-2/
Over 20,000 internet-exposed VMware ESXi instances vulnerable to CVE-2024-37085 - https://securityaffairs.com/166432/hacking/vmware-esxi-cve-2024-37085-vulnerable-instances.html
VMSA-2024-0013:VMware ESXi and vCenter Server updates address multiple security vulnerabilities (CVE-2024-37085, CVE-2024-37086, CVE-2024-37087) - https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24505
StackExchange Abused to Spread Malicious Python Package That Drains Victims’ Crypto Wallets - https://checkmarx.com/blog/stackexchange-abused-to-spread-malicious-python-package-that-drains-victims-crypto-wallets/
BlankBot - a new Android banking trojan with screen recording, keylogging and remote control capabilities - https://intel471.com/blog/blankbot-a-new-android-banking-trojan-with-screen-recording-keylogging-and-remote-control-capabilities
Roteiro e apresentação: Carlos Cabral e Bianca Oliveira
Edição de áudio: Paulo Arruzzo
Narração de encerramento: Bianca Garcia
Mais episódios do podcast Cyber Morning Call
925 - Apple corrige dois 0-days sob ataque
15/12/2025
In God we trust