This Week’s Top 5 Cybersecurity News Stories August 2024 | 01

Cybersecurity threats are evolving constantly as threat actors look to gain access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small, as we look at threats from espionage to security flaws in every day devices:

 

1. New Windows Backdoor BITSLOTH Exploits BITS for Stealthy Communication

Researchers have uncovered a new Windows backdoor, BITSLOTH, using the Background Intelligent Transfer Service (BITS) for command-and-control. Discovered in June 2024 by Elastic Security Labs, this malware targets a South American Foreign Ministry and has extensive capabilities including keylogging and screen capture. Likely linked to Chinese actors, BITSLOTH evades detection through advanced techniques and encrypted communication. For more about this story click here

 

2. Cybercriminals Abusing Cloudflare Tunnels to Evade Detection and Spread Malware

Cybersecurity firms eSentire and Proofpoint report increased abuse of Cloudflare’s TryCloudflare service for malware delivery. Attackers use TryCloudflare to create tunnels relaying traffic from their servers to victims’ machines, facilitating the delivery of various malware families via phishing emails. This technique leverages WebDAV servers, decoy PDFs, and sophisticated evasion methods, complicating detection and mitigation efforts. For more about this story click here

 

3. Hackers Distributing Malicious Python Packages via Popular Developer Q&A Platform

Threat actors have exploited Stack Exchange to direct developers to fake Python packages designed to drain cryptocurrency wallets. These packages, downloaded over 2,000 times, target Raydium and Solana users, stealing sensitive data and providing remote access to attackers. The campaign highlights the risks of malware distribution through trusted platforms, emphasizing the need for robust security strategies. For more about this story click here

 

4. New Android Banking Trojan BingoMod Steals Money, Wipes Devices

Cybersecurity researchers discovered a new Android remote access trojan (RAT) called BingoMod, which performs fraudulent money transfers and wipes compromised devices to erase evidence. Identified by Cleafy in May 2024, BingoMod is attributed to likely Romanian-speaking threat actors. The malware exploits on-device fraud techniques, masquerades as legitimate apps, and uses real-time control and phishing capabilities for financial theft. For more about this story click here

 

5. Facebook Ads Lead to Fake Websites Stealing Credit Card Information

Facebook users are being targeted by a scam e-commerce network called ERIAKOS, using over 600 fake websites to steal personal and financial data. Detected by Recorded Future on April 17, 2024, the campaign exploits mobile users through Facebook ad lures and brand impersonation. Registered in China, the network uses sophisticated tactics, including fake user comments and malvertising, to evade detection. For more about this story click here

 

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information please contact us now!