Güvenlik TV'den Herkese Merhaba, SolarWinds tedarik zinciri saldırısı gölgesinde girdiğimiz 2021 yılının son günlerinde, bu yılın önemli olaylarını değerlendirdiğimiz yeni bir bölümle tekrar karşınızdayız. Bu bölümde üzerinde durduğumuz başlıklardan bazıları;
- Microsoft attributes new SolarWinds attack to a Chinese hacker group ( https://www.theverge.com/2021/7/14/22577471/microsoft-solarwinds-hack-zero-day-serv-u ) - Kaseya: More than 1,500 downstream businesses impacted by ransomware attack (https://therecord.media/kaseya-more-than-1500-downstream-businesses- -by-ransomware-attack/ <https://therecord.media/kaseya-more-than-1500-downstream-businesses-impacted-by-ransomware-attack/> ) - REvil gang asks for $70 million to decrypt systems locked in Kaseya attack ( https://therecord.media/revil-gang-asks-70-million-to-decrypt-systems-locked-in-kaseya-attack/ ) - Kaseya obtains REvil decryptor, starts customer data recovery operations ( https://therecord.media/kaseya-obtains-revil-decryptor-starts-customer-data-recovery-operations/ ) - Netherlands can use intelligence or armed forces to respond to ransomware attacks ( https://therecord.media/netherlands-can-use-intelligence-or-armed-forces-to-respond-to-ransomware-attacks/ ) - Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies ( https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610) - Two NPM Packages With 22 Million Weekly Downloads Found Backdoored ( https://thehackernews.com/2021/11/two-npm-packages-with-22-million-weekly.html ) - Hacktivists leak videos of abuse in Iran Evin prison ( https://therecord.media/hacktivists-leak-videos-of-abuse-in-iran-evin-prison/ ) - Man who bribed AT&T employees to install malware on the company’s network gets 12 years in prison ( https://www.pcmag.com/news/man-gets-12-years-for-planting-malware-on-att-systems-to-unlock-phones ) - Official FBI email server hacked, used to send fake threat ( https://therecord.media/official-fbi-email-server-hacked-used-to-send-fake-threat/ ) - ProxyLogon Zafiyeti: The latest pre-authenticated Remote Code Execution vulnerability on Microsoft Exchange Server – CVE-2021-26855 ( https://proxylogon.com) Bu bölümü çekerken, diğer bölümlerde de olduğu gibi güldük, eğlendik ve keyifli bir program olmasına özen gösterdik, umarız sizler de izlerken keyif alırsınız. *60. Bölüm: *https://www.guvenliktv.org/2021/11/guvenlik-tv-bolum-60.html Keyifli seyirler :) https://www.mertsarica.com https://twitter.com/mertsarica https://tr.linkedin.com/in/mertsarica CCISO, CISSP, SSCP, OSCP, OPST, CREA & CEREA
------------------------------------------------- Üyelikten ayrılmak için [email protected] adresine mail atabilirsiniz. -------------------------------------------------
