8-19-22 Week in Review: Password Snooping, Supply Chain, Cl0p Ransomware

by: SpencerPosted on: August 19, 2022August 18, 2022

<span data-mce-type="bookmark" style="display: inline-block; width: 0px; overflow: hidden; line-height: 0;" class="mce_SELRES_start"></span>

In this week’s review

Cleartext Shenanigans: Gifting User Passwords to Adversaries With NPPSPY
Realtek SDK Vulnerability Exposes Routers
- InfoSec Handlers Diary Blog – SANS Internet Storm Center
- CVE-2022-27255 – Realtek eCos SDK SIP ALG buffer overflow
Clop Ransomware Gang Breaches Water Utility, Just Not the Right One
- https://twitter.com/malwrhunterteam/status/1559244860636413952?s=20&t=ixiTRaQ9aflHzI37D_VlwQ
- https://twitter.com/UK_Daniel_Card/status/1559252446320500741?s=20&t=ixiTRaQ9aflHzI37D_VlwQ

If you’re on the go, listen here or on your favorite podcast app:

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/channel/UCCWmudG_CTNAFBaV48vIcfw
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com