[Referências do Episódio]

- Atualizações de Segurança de outubro de 2023 - https://msrc.microsoft.com/update-guide/releaseNote/2023-Oct

- Citrix Hypervisor Multiple Security Updates - https://support.citrix.com/article/CTX575089/citrix-hypervisor-multiple-security-updates

- NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-4966 and CVE-2023-4967 - https://support.citrix.com/article/CTX579459/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20234966-and-cve20234967 

- GNOME Linux systems exposed to RCE attacks via file downloads - https://www.bleepingcomputer.com/news/security/gnome-linux-systems-exposed-to-rce-attacks-via-file-downloads/

- Thread da Microsoft sobre ataques explorando a CVE-2023-22515 - https://twitter.com/MsftSecIntel/status/1711871732644970856

- Microsoft Warns of Nation-State Hackers Exploiting Critical Atlassian Confluence Vulnerability - https://thehackernews.com/2023/10/microsoft-warns-of-nation-state-hackers.html

- Assessed Cyber Structure and Alignments of North Korea in 2023 - https://www.mandiant.com/resources/blog/north-korea-cyber-structure-alignment-2023

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- The Israel-Hamas War Erupts in Digital Chaos - https://www.wired.com/story/israel-hamas-war-hacktivism/

- Hackers Send Fake Rocket Alerts to Israelis via Hacked Red Alert App - https://www.hackread.com/hackers-fake-rocket-alerts-red-alert-app-israel/ 

- Gaza-Linked Cyber Threat Actor Targets Israeli Energy and Defense Sectors - https://thehackernews.com/2023/10/gaza-linked-cyber-threat-actor-targets.html

- HACKTIVISTS IN PALESTINE AND ISRAEL AFTER SCADA AND OTHER INDUSTRIAL CONTROL SYSTEMS - https://securityaffairs.com/152224/hacktivism/hacktivists-palestine-israel-after-scada-ics.html

- Hackers hijack Citrix NetScaler login pages to steal credentials - https://www.bleepingcomputer.com/news/security/hackers-hijack-citrix-netscaler-login-pages-to-steal-credentials/

- Security Patch for Two New Flaws in Curl Library Arriving on October 11 - https://thehackernews.com/2023/10/security-patch-for-two-new-flaws-in.html 

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- Microsoft Digital Defense Report 2023 - https://www.microsoft.com/en-us/security/security-insider/microsoft-digital-defense-report-2023

- ANDROID DEVICES SHIPPED WITH BACKDOORED FIRMWARE AS PART OF THE BADBOX NETWORK - https://securityaffairs.com/152124/malware/badbox-network-backdoored-firmware.html

- Record $7 billion in crypto laundered through cross-chain services - https://www.elliptic.co/blog/record-7-billion-in-crypto-laundered-through-cross-chain-services 

- ANNOUNCING THE $12K NIST ELLIPTIC CURVES SEEDS BOUNTY - https://words.filippo.io/dispatches/seeds-bounty/ 

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- CVE-2023-22515 - Broken Access Control Vulnerability in Confluence Data Center and Server - https://confluence.atlassian.com/security/cve-2023-22515-privilege-escalation-vulnerability-in-confluence-data-center-and-server-1295682276.html

- About the security content of iOS 17.0.3 and iPadOS 17.0.3 - https://support.apple.com/en-us/HT213961

- Qakbot-affiliated actors distribute Ransom Knight malware despite infrastructure takedown - https://blog.talosintelligence.com/qakbot-affiliated-actors-distribute-ransom/ 

- Let's dig deeper: dissecting the new Android Trojan GoldDigger with Group-IB Fraud Matrix - https://www.group-ib.com/blog/golddigger-fraud-matrix/ 

- Cisco Emergency Responder Static Credentials Vulnerability - https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cer-priv-esc-B9t3hqk9 

- Operation Jacana: Foundling hobbits in Guyana - https://www.welivesecurity.com/en/eset-research/operation-jacana-spying-guyana-entity/ 

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- TEMPEST TALKS 2023 - https://www.tempest.com.br/tempest_talk/tempest-talks-2023/

- Looney Tunables: Local Privilege Escalation in the glibc's ld.so (CVE-2023-4911) - https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege-escalation-glibc-ld-so.txt

- EvilProxy Phishing Attack Strikes Indeed - https://www.menlosecurity.com/blog/evilproxy-phishing-attack-strikes-indeed/ 

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- TEMPEST TALKS 2023 - https://www.tempest.com.br/tempest_talk/tempest-talks-2023/

- Critical Vulnerabilities in WS_FTP Server - https://www.rapid7.com/blog/post/2023/09/29/etr-critical-vulnerabilities-in-ws_ftp-server/

- Malicious Packages Hidden in NPM - https://www.fortinet.com/blog/threat-research/malicious-packages-hiddin-in-npm 

- Mali GPU Kernel Driver allows improper GPU memory processing operations - https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

- Android Security Bulletin—October 2023 - https://source.android.com/docs/security/bulletin/2023-10-01

- Alerta da Prodaft sobre ataques explorando a CVE-2023-42793 - https://twitter.com/PRODAFT/status/1708586257444430019

- Source Code at Risk: Critical Code Vulnerability in CI/CD Platform TeamCity - https://www.sonarsource.com/blog/teamcity-vulnerability/

- CVE-2023-42793 Vulnerability in TeamCity: Post-Mortem - https://blog.jetbrains.com/teamcity/2023/09/cve-2023-42793-vulnerability-post-mortem/ 

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- TEMPEST TALKS 2023 - https://www.tempest.com.br/tempest_talk/tempest-talks-2023/

- Lazarus luring employees with trojanized coding challenges: The case of a Spanish aerospace company - https://www.welivesecurity.com/en/eset-research/lazarus-luring-employees-trojanized-coding-challenges-case-spanish-aerospace-company/

- BunnyLoader, the newest Malware-as-a-Service - https://www.zscaler.com/blogs/security-research/bunnyloader-newest-malware-service 

- New Critical Security Flaws Expose Exim Mail Servers to Remote Attacks - https://thehackernews.com/2023/09/new-critical-security-flaws-expose-exim.html 

- APT34 Deploys Phishing Attack With New Malware - https://www.trendmicro.com/en_us/research/23/i/apt34-deploys-phishing-attack-with-new-malware.html 

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- TEMPEST TALKS 2023 - https://www.tempest.com.br/tempest_talk/tempest-talks-2023/

- Budworm: APT Group Uses Updated Custom Tool in Attacks on Government and Telecoms Org - https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/budworm-tool-update-telecoms-govt 

- Cisco Warns of Vulnerability in IOS and IOS XE Software After Exploitation Attempts - https://thehackernews.com/2023/09/cisco-warns-of-vulnerability-in-ios-and.html 

- A QUIC Shutdown: DoS Vulnerability in Windows Servers Running SMB over QUIC - https://www.akamai.com/blog/security-research/2023/sep/smb-over-quic-dos-windows-servers

- Malicious ad served inside Bing's AI chatbot - https://www.malwarebytes.com/blog/threat-intelligence/2023/09/malicious-ad-served-inside-bing-ai-chatbot 

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- TEMPEST TALKS 2023 - https://www.tempest.com.br/tempest_talk/tempest-talks-2023/

- Critical libwebp Vulnerability Under Active Exploitation - Gets Maximum CVSS Score - https://thehackernews.com/2023/09/new-libwebp-vulnerability-under-active.html

- CISA, NSA, FBI and Japan Release Advisory Warning of BlackTech, PRC-Linked Cyber Activity  - https://content.govdelivery.com/accounts/USDHSCISA/bulletins/372c1e7

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia

[Referências do Episódio]

- TEMPEST TALKS 2023 - https://www.tempest.com.br/tempest_talk/tempest-talks-2023/

- Luxury Hotels Remain Major Target of Ongoing Social Engineering Attack - https://cofense.com/blog/luxury-hotels-remain-target-of-social-engineering-attack/

- A new spin on the ZeroFont phishing technique - https://isc.sans.edu/diary/A+new+spin+on+the+ZeroFont+phishing+technique/30248/ 

- Hackers actively exploiting Openfire flaw to encrypt servers - https://www.bleepingcomputer.com/news/security/hackers-actively-exploiting-openfire-flaw-to-encrypt-servers/ 

Roteiro e apresentação: Carlos Cabral 

Edição de áudio: Paulo Arruzzo

Narração de encerramento: Bianca Garcia