FEMA: Vulnerabilities in Emergency Alert System (EAS) can allow bad actors to issue “alerts” over TV, radio and cable networks

https://therecord.media/fema-issues-warning-to-emergency-alert-system-managers-that-devices-could-be-hacked/

QNAP warns of Checkmate Ransomware via public internet exposure of SMB services

https://www.qnap.com/en/security-advisory/QSA-22-21

Single packet can cause terabytes of traffic via DDoS attack in misconfigured Mitel MiCollab and MiVoice Business Express systems

https://www.zdnet.com/article/in-the-wild-ddos-attack-can-be-launched-from-a-single-packet-to-create-terabytes-of-traffic/

Ukraine-Russia War: Another reason to keep WordPress sites updated

https://securityaffairs.co/wordpress/128613/cyber-warfare-2/ukrainian-wordpress-sites-attacks.html

Sentinel Labs is tracking active exploitations of Log4j against VMware Horizon from the middle east

https://www.sentinelone.com/labs/log4j2-in-the-wild-iranian-aligned-threat-actor-tunnelvision-actively-exploiting-vmware-horizon/

In the wild: Bad actors exploring vulnerability GitLab unauthenticated RCE

https://thehackernews.com/2021/11/alert-hackers-exploiting-gitlab.html

Have an Android device (who doesn’t)? New malware can root the device and tries to evade detection (and does do for now). Currently in 19 apps in Google Play

https://www.bleepingcomputer.com/news/security/new-abstractemu-malware-roots-android-devices-evades-detection/

Thingiverse hacked potentially exposing OAUTH tokens, 2 over million usernames and takeover of 50k Makerbot 3D Printers and their cameras

https://www.databreachtoday.com/thingiverse-breach-50000-printers-could-have-been-hijacked-a-17749

Python script is encrypting VMware ESXi servers

VMware ESXi Servers Encrypted by Lightning-Fast Python Script

Twitch incident exposed PayPal Chargebacks, emails, passwords, and more… in plain text

Twitch Leak Included Emails, Password: Researcher

https://media.threatpost.com/wp-content/uploads/sites/103/2021/10/07152654/chargebacks_twitch-e1633634830378.jpg