TLDR Information Security 2024-07-05

Twilio numbers leaked 📞,Supply chain risk on Apple 🍎, Proton releases doc 📝

Attacks & Vulnerabilities

3 Million iOS and macOS Apps Were Exposed to Potent Supply-Chain Attacks (3 minute read)

Latest Intel CPUs Impacted by New Indirector Side-Channel Attack (2 minute read)

Twilio Confirms Data Breach After Hackers Leak 33M Authy User Phone Numbers (1 minute read)

Strategies & Tactics

The Runtime Secrets' Security Gap (6 minute read)

Amazon DocumentDB Announces IAM Database Authentication (2 minute read)

Vulnerabilities in CocoaPods Open the Door to Supply Chain Attacks Against Thousands of iOS and macOS Applications (12 minute read)

Launches & Tools

fileless-elf-exec (GitHub Repo)

Declare Your AIndependence: Block AI Bots, Scrapers, and Crawlers With a Single Click (7 minute read)

DNStwist (GitHub Repo)


Mallox Ransomware: Linux Variant Decryptor Found (10 minute read)

Introducing Docs in Proton Drive (3 minute read)

New Golang-Based Zergeca Botnet Capable of Powerful DDoS Attacks (2 minute read)

Quick Links

Europol Announces Crackdown on Cobalt Strike Servers Used by Cybercriminals (2 minute read)

Study: nearly 60% of Google searches end with zero clicks (2 minute read)

OVHcloud blames record-breaking DDoS attack on MikroTik botnet (3 minute read)

Curated news 📰, research 🧑‍🔬, and tools 🔒 for information security professionals
Join 300,000 readers for