PyPi, WordPress, Hikvision, Zimbra, Palo Alto, & LED Morse Code – SWN #234
This week, Dr. Doug talks: Tempus Fugit, PyPI, WordPress, Hikvision, Zimbra, Palo Alto, led morse code, and is joined by Expert Commentator Jason Wood on the Security Weekly News!
Hosts
Doug White
Professor at Roger Williams University
- 1. 241 npm and PyPI packages caught dropping Linux cryptominers
- 2. WordPress sites hacked with fake Cloudflare DDoS alerts pushing malware
- 3. LockBit Ransomware Site Hit by DDoS Attack as Hackers Start Leaking Entrust Data
- 4. Over 80,000 exploitable Hikvision cameras exposed online
- 5. US government really hopes you’ve patched your Zimbra server
- 6. Firewall Bug Under Active Attack Triggers CISA Warning
- 7. ETHERLED: Air-gapped systems leak data via network card LEDs
- 8. The First Time Gizmodo Ever Mentioned a Piece of Groundbreaking Tech
Jason Wood
Security Researcher
- 1. Ex-Twitter exec blows the whistle, alleging reckless and negligent cybersecurity policiesWhistleblower report filed with Congress - https://www.washingtonpost.com/technology/interactive/2022/twitter-whistleblower-sec-spam/whistleblower_disclosure.pdf