Security Brief: TeamViewer, Medus, Snowblind malware, CoinStats, Polyfil, Neiman Marcus breach, CISA

Welcome to Security brief for week 26
#cybernews #cybersecurity #informationsecurity #infosec

_______

OUTLINE:
00:00:00 - Welcome
00:00:05 - CoinStats says North Korean hackers breached 1,590 crypto wallets
00:01:50 - Chemical facilities warned of possible data theft in CISA CSAT breach
00:03:38 - Neiman Marcus confirms data breach after Snowflake account hack
00:05:36 - New Medusa malware variants target Android users in seven countries
00:08:40 - Polyfill.io JavaScript supply chain attack impacts over 100K sites
00:11:15 - Snowblind malware abuses Android security feature to bypass security
00:13:40 - TeamViewer's corporate network was breached in alleged APT hack
00:15:40 - The End
_______
Sources:

CoinStats says North Korean hackers breached 1,590 crypto wallets
https://www.bleepingcomputer.com/news/cryptocurrency/coinstats-says-north-korean-hackers-breached-1-590-crypto-wallets/

Chemical facilities warned of possible data theft in CISA CSAT breach
https://www.bleepingcomputer.com/news/security/chemical-facilities-warned-of-possible-data-theft-in-cisa-csat-breach/

Neiman Marcus confirms data breach after Snowflake account hack
https://www.bleepingcomputer.com/news/security/neiman-marcus-confirms-data-breach-after-snowflake-account-hack/

New Medusa malware variants target Android users in seven countries
https://www.bleepingcomputer.com/news/security/new-medusa-malware-variants-target-android-users-in-seven-countries/

Polyfill.io JavaScript supply chain attack impacts over 100K sites
https://www.bleepingcomputer.com/news/security/polyfillio-javascript-supply-chain-attack-impacts-over-100k-sites/

Polyfill claims it has been 'defamed', returns after domain shut down
https://www.bleepingcomputer.com/news/security/polyfill-claims-it-has-been-defamed-returns-after-domain-shut-down/

Cloudflare: We never authorized polyfill.io to use our name
https://www.bleepingcomputer.com/news/security/cloudflare-we-never-authorized-polyfillio-to-use-our-name/

Polyfill.io, BootCDN, Bootcss, Staticfile attack traced to 1 operator
https://www.bleepingcomputer.com/news/security/polyfillio-bootcdn-bootcss-staticfile-attack-traced-to-1-operator/

Snowblind malware abuses Android security feature to bypass security
https://www.bleepingcomputer.com/news/security/snowblind-malware-abuses-android-security-feature-to-bypass-security/

TeamViewer's corporate network was breached in alleged APT hack
https://www.bleepingcomputer.com/news/security/teamviewers-corporate-network-was-breached-in-alleged-apt-hack/

TeamViewer links corporate cyberattack to Russian state hackers
https://www.bleepingcomputer.com/news/security/teamviewer-links-corporate-cyberattack-to-russian-state-hackers/

----------
Follow me:
youtube @kevnowledgy
instagram.com @kevnowledgyy
X.com @kevnowledgy