swn188

Security Weekly News Episode #188 – February 18, 2022

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. Iranian Code, WordPress Vuln, MFA Fatigue, & Free Crypto! (Scams) – Wrap Up – 12:00 PM-12:30 PM

Description

Ukraine accuses Russia of cyber-attack on two banks and its defence
ministry
https://www.theguardian.com/world/2022/feb/16/ukraine-accuses-russia-of-
cyber-attack-on-two-banks-and-its-defence-ministry

Iranian State Broadcaster Clobbered by ‘Clumsy, Buggy’ Code
https://threatpost.com/iranian-state-broadcaster-clumsy-buggy-code/178524/

Phishers Spoof Power BI to Visualize Your Credential Data
https://cofensestaging.wpengine.com/blog/phishers-spoof-power-bi-to-visualize-
your-credential-data?web_view=true

Vulnerability found in WordPress plugin with over 3 million installations
https://www.zdnet.com/article/vulnerability-found-in-wordpress-plugin-with-over-
3-million-installations/?&web_view=true

MFA fatigue attacks: Users tricked into allowing device access due to overload of
push notifications
https://portswigger.net/daily-swig/mfa-fatigue-attacks-users-tricked-into-
allowing-device-access-due-to-overload-of-push-notifications?&web_view=true

FreeCryptoScam – A New Cryptocurrency Scam That Leads to Installation of
Backdoors and Stealers
https://www.zscaler.com/blogs/security-research/freecryptoscam-new-
cryptocurrency-scam-leads-installation-backdoors-and?&web_view=true

Hosts

AaranLeyland

Aaran Leyland

CEO at Restricted Access, Ltd