Short Summary
The video discusses major cybersecurity vulnerabilities and incidents including a critical exploit affecting VMware ESXi hypervisor, updates on CrowdStrike’s service outage, the discovery of a sophisticated malware distribution network, and a malicious Python package targeting specific computers.
Keypoints
- CVE of the Week: Microsoft highlights CVE-2024-37085 affecting VMware ESXi, allowing admin access via a newly created ESX admins group.
- Widespread Exploitation: Attackers have already used this vulnerability in production, leading to ransomware deployments.
- CrowdStrike Update: 97% of Windows sensors are back online after an outage; company issued food delivery gift cards, which were canceled due to fraud flags.
- Whiz IPO: Cloud security company Whiz opts for an IPO instead of selling to Google for billion amidst market fluctuations.
- Stargazers Ghost Network: Checkpoint Research uncovers a network of over 3,000 GitHub accounts distributing malware, specifically the Atlantia Steeler targeting user credentials and cryptocurrency wallets.
- Automated Malware Distribution: The network employs automated processes and various account types to evade detection and maintain operations.
- Malicious Python Package: A Python package disguised as legitimate targets 64 specific computers for a supply chain attack, revealing social engineering tactics through a fake LinkedIn account.
- Upcoming Events: The host will attend Defcon, engaging in contests and encouraging viewers to participate in related activities.
Youtube Video: https://www.youtube.com/watch?v=kOBqk6kBL6U
Youtube Channel: Hak5
Video Published: 2024-07-31T16:00:48+00:00
Video Description:
Keypoints for EndingWithAli’s Latest Update
Follow Ali:
Collaborate with Ali: endingwithalicollabs@gmail.com
Join the Patreon: Patreon
Video Breakdown
- 0:00 – Intro
- 00:06 – Group Leads to Direct Admin
- 01:27 – CrowdStrike Update
- 02:13 – GitHub Ghost Network
- 04:17 – GCP Creds Stolen Via Supply Chain
- 05:35 – Outro
Relevant Links
- Story 1: Domain Group Leads to Direct Admin
- Story 2: CrowdStrike Update
- Story 3: GitHub Ghost Network
- Story 4: GCP Creds Stolen Via Supply Chain
About Hak5
Founded in 2005, Hak5’s mission is to advance the InfoSec industry. We do this through our award-winning educational podcasts, leading pentest gear, and inclusive community – where all hackers belong.
Explore More:
This HTML document organizes key points from the description you provided, including links to articles, Ali’s social media, collaboration details, and information about Hak5.