Mass Exploitation of NetScaler Vulnerabilities! Major Week for AI Systems! New Cloud PCs!

On this week’s episode I give an update on the NetScaler and Confluence vulnerabilities and explore a new strategy being used by a cyber gang plus much more!

This episode is brought to you in large part thanks to my sponsors:

Episode 306 is available on Soundcloud:

And on YouTube:

If you’d like to play the Podcast on a different podcast service such as Apple Podcasts, Google Podcasts or Spotify. You can find this episode at 5BytesPodcast.com

Here are this episode’s links as shown in the YouTube video:

Scripts, Tricks and Tips:

Curated List of Links for Azure VMware Solution:

https://cloud.fskelly.com/post/2023/azure-vmware-solution-starter-links/

My Blog Post on Containers:

https://twitter.com/Rorymon/status/1719768287150526485

Giveaway Draw:

https://vimeo.com/880494589

News:

Citrix Netscaler Vulnerabilities Under Mass Exploitation:

https://arstechnica.com/security/2023/10/critical-citrix-bleed-vulnerability-allowing-mfa-bypass-comes-under-mass-exploitation/

Command for Clearing Persistent Sessions:

https://twitter.com/Deyda84/status/1719683499974693003

Copilot Soft Launch:

https://www.theverge.com/2023/11/1/23942155/microsoft-365-copilot-ai-office-documents-launch-business-enterprise-pricing-release-date

Copilot Causing Shortcut Issue on Windows 11:

https://www.bleepingcomputer.com/news/microsoft/microsoft-windows-copilot-makes-desktop-icons-jump-between-displays/

US Passes First AI Regulations:

https://arstechnica.com/information-technology/2023/10/biden-ai-executive-order-requires-safety-testing-for-ai-that-poses-serious-risk/

Guardian Call Out Microsoft for Horrible AI Generated Poll:

https://www.theguardian.com/media/2023/oct/31/microsoft-accused-of-damaging-guardians-reputation-with-ai-generated-poll

Windows 11 23H2 Now Available:

https://www.bleepingcomputer.com/news/microsoft/windows-11-23h2-new-features-in-the-windows-11-2023-update/

New Cloud PC Specs Available:

https://techcommunity.microsoft.com/t5/windows-it-pro-blog/higher-configuration-offerings-available-in-windows-365/ba-p/3968118

Confluence Vulnerability Under Exploitation:

https://viz.greynoise.io/query?gnql=tags%3A%22Atlassian%20Confluence%20Server%20Privilege%20Escalation%20Attempt%22

Malicious URL Shortening Service Exposed:

https://www.bleepingcomputer.com/news/security/massive-cybercrime-url-shortening-service-uncovered-via-dns-data/

Cyber Gang Uses New Tactics for Attacks:

https://arstechnica.com/security/2023/10/microsoft-profiles-new-threat-group-with-unusual-but-effective-practices/?utm_medium=social&utm_brand=ars&utm_source=twitter&utm_social-type=owned

Chrome Adds New HTTPS-Upgrades Feature:

https://www.bleepingcomputer.com/news/google/google-chrome-now-auto-upgrades-to-secure-connections-for-all-users/

Malicious Nuget Packages Raise Package Manager Security Concerns:

https://www.bleepingcomputer.com/news/security/malicious-nuget-packages-abuse-msbuild-to-install-malware/

F5 Vulnerabilities Under Attack:

https://www.bleepingcomputer.com/news/security/hackers-exploit-recent-f5-big-ip-flaws-in-stealthy-attacks/

Multi-Session Support for App Stream 2.0 Fleets:

https://aws.amazon.com/about-aws/whats-new/2023/10/amazon-appstream-2-0-session-fleets-windows-server-os/

Full Podcast Episode Guide:
5bytespodcast.com

Check out my site:
Rorymon.com

Twitter:
@Rorymon