January 21, 2024 at 09:37PM
“Pompourin,” former admin of BreachForums, sentenced to 20 years supervised release after pleading guilty to running a site facilitating sales of stolen data, hacking tools, and illegal materials. New UEFI vulnerabilities, PixieFail, impact network booting, involving several vendors. Also critical Chrome and Ivanti Endpoint Manager Mobile vulnerabilities. Researchers discover iOS log files as consistent method to detect Pegasus and Predator spyware. US Department of Health and Human Services hit by $7.5 million spearphishing attack, leaving grant recipients unfunded.
In brief, here are the key points from the meeting notes:
1. Conor Brian Fitzpatrick, also known as “Pompourin,” and a former administrator of BreachForums, has been sentenced to 20 years of supervised release for running a notorious leak site accused of facilitating the sale of stolen data, hacking tools, and child sexual abuse material.
2. A new UEFI flaw known as PixieFail has been discovered, which affects systems configured for PXE network booting. The vulnerabilities can be exploited through the NetworkPkg module in the EDK II UEFI implementation and can allow remote attackers to execute code, leak information, and perform other malicious activities.
3. Critical vulnerabilities, including a Chrome zero-day vulnerability in the V8 JavaScript engine (CVE-2024-0519), and an authentication bypass vulnerability in Ivanti Endpoint Manager Mobile (CVE-2023-35078) under active exploitation, require immediate patching.
4. Kaspersky researchers have found that iOS devices’ Shutdown.log files can be used to detect infections from spyware such as Pegasus, Predator, and Reign.
5. The US Department of Health and Human Services (HHS) was hit by a spearphishing attack, resulting in the theft of $7.5 million in grant money intended for high-need communities in the US.
These are the main takeaways from the meeting notes.