[Pkg-mailman-hackers] CyberSecAlert: AT&T Breach, Advance Auto Parts Breach, OS Command Injection, ViperSoftX Malware, GitLab Bug, and Huione Guarantee Marketplace

Sat Jul 13 15:10:41 BST 2024

The BRRR: (https://thebrrr.beehiiv.com/subscribe?_bhba=bf0b6b11-140c-4ec7-a518-a25cbfcf93b1)

View image: (https://media.beehiiv.com/cdn-cgi/image/fit=scale-down,format=auto,onerror=redirect,quality=80/uploads/asset/file/e6fbd832-7fd1-4e57-9781-f436a10a894c/image.png?t=1720801825)
Caption: 

The Cheat Code: (https://cheatcodenl.com/subscribe?_bhba=bf0b6b11-140c-4ec7-a518-a25cbfcf93b1)

# CyberSecAlert: AT&T Breach, Advance Auto Parts Breach, OS Command Injection, ViperSoftX Malware, GitLab Bug, and Huione Guarantee Marketplace

## Massive AT&T Data Breach Exposes Call Logs of 109 Million Customers

A massive data breach at AT&T has exposed the call logs of 109 million customers. This incident highlights the critical need for robust security measures to protect sensitive customer information and maintain trust.

## Advance Auto Parts Data Breach Impacts 2.3 Million People

Advance Auto Parts has reported a data breach affecting 2.3 million individuals. The breach compromised sensitive personal information, underscoring the importance of stringent data protection practices and timely notifications to those affected.

## CISA Urges Devs to Weed Out OS Command Injection Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) is urging developers to eliminate OS command injection vulnerabilities in their software. These vulnerabilities can allow attackers to execute arbitrary commands on a server, posing significant security risks.

## ViperSoftX Malware Covertly Runs PowerShell Using AutoIt Scripting

ViperSoftX malware has been discovered covertly running PowerShell scripts using AutoIt scripting. This method enables the malware to execute malicious commands stealthily, highlighting the need for vigilant monitoring and securing of PowerShell usage within networks.

## GitLab Warns of Critical Bug That Lets Attackers Run Pipelines as an Arbitrary User

GitLab has issued a warning about a critical bug that allows attackers to run pipelines as an arbitrary user. This vulnerability poses a serious risk to CI/CD environments and emphasizes the importance of prompt patching and securing development pipelines.

## Huione Guarantee Exposed as an $11 Billion Marketplace for Cybercrime

Huione Guarantee has been exposed as an $11 billion marketplace for cybercrime. This marketplace facilitates a wide range of illegal activities, underscoring the scale and sophistication of cybercriminal operations and the need for global efforts to combat cybercrime.

———————————————————————————

### Fun Technology Fact

Did you know that the first computer virus for MS-DOS, named "Brain," was created in 1986 by two brothers in Pakistan? It was originally intended to protect their medical software from piracy but inadvertently spread globally, marking the beginning of widespread computer viruses.

Stay informed and secure with CyberSecAlert.

———

You are reading a plain text version of this post. For the best experience, copy and paste this link in your browser to view the post online:
https://cyber-sec-alert.beehiiv.com/p/cybersecalert-att-breach-advance-auto-parts-breach-os-command-injection-vipersoftx-malware-gitlab-bu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/pkg-mailman-hackers/attachments/20240713/1f59261d/attachment-0001.htm>