Secjuice Squeeze Volume 48

Welcome to the Secjuice Squeeze, a curated selection of interesting security articles and infosec news that you may have missed, lovingly curated for you every week. This week's volume was curated by Secjuice writers Prasanna, Muhammad Luqman, Thunder-Son, Sinwindie, and Miguel Calles.

Articles

Unsecured Azure blob exposed 500,000+ highly confidential docs from UK firm's CRM customers

Medical records, insurance claim docs, promotion process feedback... you name it, Probase bared it.

Source & Link: theregister.com
Curator: Prasanna

"If it Hadn't Been for the Prompt Work of the Medics": FSB Officer Inadvertently Confesses Murder Plot to Navalny

Bellingcat and its partners reported that Russia’s Federal Security Service (FSB) was implicated in the near-fatal nerve-agent poisoning of Alexey Navalny on 20 August 2020.

Source & Link: bellingcat.com
Curator: Prasanna

CoderWare Ransomware Masks Itself As Cyberpunk 2077 Mobile Game

CoderWare ransomware is under distribution as Cyberpunk 2077 mobile game app via fake websites mimicking Google Play Store.

Source & Link: latesthackingnews.com
Curator: Muhammad Luqman

New SUPERNOVA backdoor found in SolarWinds cyberattack analysis

While analyzing artifacts from the SolarWinds Orion supply-chain attack, security researchers discovered another backdoor that is likely from a second threat actor.

Source & Link: bleepingcomputer.com
Curator: Muhammad Luqman