Security Digest for 6 August 2024:

Podcast Requested Feedback: https://forms.gle/w2RB5DRzbbvu3ziS7 Notable News: Over 20,000 Ubiquiti Cameras and Routers are Vulnerable to Amplification Attacks and Privacy Risks - Check Point Blog

BITS and Bytes: Analyzing BITSLOTH, a newly identified backdoor — Elastic Security Labs

Panamorfi: A New Discord DDoS Campaign (aquasec.com)

4.6 Million Voter and Election Documents Exposed Online by Technology Contractor (vpnmentor.com)

StormBamboo Compromises ISP to Abuse Insecure Software Update Mechanisms | Volexity

Israeli hacker group takes responsibility for collapse of Wi-Fi in Ira - The Jerusalem Post (jpost.com)

TgRAT malware returns with a Linux variant (broadcom.com)

Linux kernel impacted by new SLUBStick cross-cache attack (bleepingcomputer.com)

Fighting Ursa Luring Targets With Car for Sale (paloaltonetworks.com)

Keytronic reports losses of over $17 million after ransomware attack (bleepingcomputer.com)

Justice Department sues TikTok for alleged violations of children’s privacy (therecord.media)

Prevalent Patches: Critical Bitdefender Patch for GravityZone Update Server: CVE-2024-6980 Could Lead to SSRF Attacks - SOCRadar® Cyber Intelligence Inc. SonicWall Discovers Second Critical Apache OFBiz Zero-Day Vulnerability | SonicWall CISA Corner: CISA Adds One Known Exploited Vulnerability to Catalog | CISA

NVD - CVE-2018-0824 (nist.gov)