- Mycomputerspot Security Newsletter
- Posts
- Weekly One-Shot: December 7, 2024
In partnership with
Before we dive in, I would like to thank all of you for supporting us with your subscription! My goal is to bring both actionable insights and easy-to-digest information regarding cybersecurity threats to non-tech and technical professionals alike. If this sounds like something that would help someone you know, please share the newsletter!
Start learning AI in 2025
Everyone talks about AI, but no one has the time to learn it. So, we found the easiest way to learn AI in as little time as possible: The Rundown AI.
It's a free AI newsletter that keeps you up-to-date on the latest AI news, and teaches you how to apply it in just 5 minutes a day.
Plus, complete the quiz after signing up and they’ll recommend the best AI tools, guides, and courses – tailored to your needs.
Cybersecurity sometimes feels like riding a rollercoaster in the dark. You don’t know where the next twist or drop will come from, but you know it’s there, waiting. This week brought no shortage of adrenaline—ransomware campaigns, phishing-as-a-service operations, and critical vulnerabilities kept defenders on their toes.
Let’s break it down and arm you with the knowledge to stay ahead!
This week in Cybersecurity
1. Black Basta Ransomware Leveraging RMM Tools
Black Basta exploits legitimate RMM software to bypass defenses, execute ransomware, and establish persistence.
December 5 Newsletter
2. Critical RCE Vulnerability in Veeam Service Provider Console
An RCE vulnerability (CVE-2024-12345) in Veeam’s console allows attackers to execute arbitrary commands on servers.
December 5 Newsletter
3. Cloudflare Developer Domains Used in Phishing Campaigns
Threat actors use trusted Cloudflare domains to host phishing pages, bypassing security filters.
December 5 Newsletter
4. Deloitte’s Data Breach Linked to 'Brain Cipher' Attack
The Brain Cipher group exploited vulnerabilities in Deloitte’s email systems, exposing client data.
December 5 Newsletter
5. Rockstar 2FA Phishing-as-a-Service Platform
Rockstar 2FA allows attackers to bypass two-factor authentication via automated phishing kits.
December 3 Newsletter
6. SpyLoan Malware Infecting Android Devices
SpyLoan malware disguised as loan apps exfiltrates personal data from Android devices.
December 3 Newsletter
7. SmokeLoader Malware Targets Taiwanese Organizations
SmokeLoader drops ransomware and credential stealers on systems in Taiwan.
December 3 Newsletter
8. HORNS Campaign Distributing RATs
The HORNS campaign uses fake installers to deploy Remote Access Trojans.
December 3 Newsletter
9. NachoVPN Exploiting VPN Vulnerabilities
NachoVPN hijacks VPN sessions by exploiting vulnerabilities in popular VPN servers.
December 3 Newsletter
10. CISA Adds New Vulnerabilities to Exploited Catalog
CISA warns about active exploits in CyberPanel, Zyxel Firewalls, and more, urging patching.
December 5 Newsletter
Biggest Threat This Week
Black Basta Ransomware Leveraging RMM Tools
The Black Basta ransomware group (STORM-1811) stands out as this week’s most significant threat. By exploiting legitimate RMM tools, the group gains unauthorized access, executes ransomware, and establishes persistence. Their ability to blend into normal IT activity makes detection difficult, posing a high risk to organizations of all sizes.
Training Recommendation
New to Cybersecurity? Start Here!
Embarking on your cybersecurity journey can be daunting, but it doesn’t have to be. TryHackMe’s free learning path is perfect for beginners, offering essential lessons and hands-on skills to combat modern threats like phishing and ransomware.
Get started here: TryHackMe Free Learning Path
Wrapping Up:
Cybersecurity never takes a holiday; this week proves why vigilance is key.
From ransomware abusing trusted tools to phishing campaigns evading security filters, attackers are innovating daily.
Remember: your best defense is preparation—update systems, train your teams, and never underestimate the basics.
See you next week as we unravel more cybersecurity drama!
(P.S. Supporting our partners helps keep this newsletter running!)