Cyber Daily highlights daily news and trending threats provided by Recorded Future
Cyber Daily Header
Today's Cyber Daily covers how the EU plans to fund bug bounty programs for five open source projects and a recent threat actor who exploited a vulnerability in the internet's largest NFT marketplace.

Four attorneys general sue Google for allegedly deceiving users over location data

Emma Vail
Google sign

A three-year-long investigation into Google’s privacy practices prompted four separate lawsuits filed on Monday by the attorneys general of the District of Columbia, Texas, Washington, and Indiana, claiming that the tech giant misled users by continuing to track their information even when told not to. 

The post Four attorneys general sue Google for allegedly deceiving users over location data appeared first on The Record by Recorded Future.

Cyber Partisans hacktivists claim credit for cyberattack on Belarusian Railways

Andrea Peterson
hacker-keyboard-computer-cybercrime

Attack on networks and databases related to the national rail system in Belarus Monday comes as tensions mount in Eastern Europe. 

The post Cyber Partisans hacktivists claim credit for cyberattack on Belarusian Railways appeared first on The Record by Recorded Future.

EU to fund bug bounty programs for LibreOffice, Mastodon, three others

Catalin Cimpanu
LibreOffice

The European Union will fund a bug bounty program for five open source projects that are heavily used by public services across the EU, such as LibreOffice and Mastodon.

The post EU to fund bug bounty programs for LibreOffice, Mastodon, three others appeared first on The Record by Recorded Future.

Hacker abuses OpenSea to buy NFTs at older, cheaper prices

Catalin Cimpanu
OpenSea

A threat actor has exploited a vulnerability in the backend of OpenSea, the internet's largest NFT marketplace, to buy products at previous (lower) prices and then resell them at higher values, defrauding legitimate asset owners.

The post Hacker abuses OpenSea to buy NFTs at older, cheaper prices appeared first on The Record by Recorded Future.

The People’s Liberation Army in the South China Sea: An Organizational Guide

Insikt Group®

This report profiles the organizational structure of the People's Liberation Army (PLA) on China's outposts in the South China Sea.

The post The People’s Liberation Army in the South China Sea: An Organizational Guide appeared first on Recorded Future.

2021 Adversary Infrastructure Report

Insikt Group®

Recorded Future tracks creation of and changes to infrastructure for post-exploitation toolkits, malware, and remote access trojans.

The post 2021 Adversary Infrastructure Report appeared first on Recorded Future.

FIN7 Uses Flash Drives to Spread Remote Access Trojan

Gemini Advisory

Recorded Future analysts continue to monitor the activities of the FIN7 group as they adapt and expand their cybercrime operations.

The post FIN7 Uses Flash Drives to Spread Remote Access Trojan appeared first on Recorded Future.

Exploited Vulnerabilities

Hits: 37 | Related products: Log4j, Apache HTTP Server, Java, Python, VMware Horizon View
Hits: 7 | Related products: Linux, Linux Kernel, Ubuntu, Kubernetes, Red Hat Enterprise Linux
Hits: 6 | Related products: Microsoft .NET Framework, Microsoft Internet Explorer, MSHTML, Microsoft Windows, Windows HTML
Hits: 4 | Related products: Laravel, Sesin.at, Azure Operations Management Suite, Log4j, Cortex XDR
Hits: 4 | Related products: Linux Kernel, Red Hat Enterprise Linux, Tenable Nessus, MITRE ATT&CK Framework , Linux

Malware

Hits: 120 | Targets: Slovakia, abuse.ch, Financial Institutions, Microsoft Windows, Government of India
Hits: 79 | Targets: Unified Extensible Firmware Interface, System BIOS Processor, Microsoft Windows, t.co
Hits: 57 | Targets: Ukraine, United Kingdom, A.P. Moller-Maersk, FedEx , Russia
Hits: 47 | Targets: Ukraine, Microsoft, Computer network, Microsoft Windows, Ukrainian Government
Hits: 19 | Targets: Apple iPhone, Android, Poland, iOS, Southern Asia

Suspicious IP Addresses

Hits: 443 | First seen in Recorded Future on 24 Mar 2021 17:52:51
Hits: 335 | First seen in Recorded Future on 03 Dec 2021 00:37:15
Hits: 17 | First seen in Recorded Future on 10 Jan 2022 16:24:46
Hits: 16 | First seen in Recorded Future on 20 Oct 2021 00:06:11
Hits: 16 | First seen in Recorded Future on 08 Jan 2022 19:43:04