{"uuid": "a70c597d-a49e-4030-ae36-6fb68e3529e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28253", "type": "seen", "source": "https://t.me/TomCyberDaily/38", "content": "So here we are again.... ;) \n#TomCyberDaily #14 \nReady? Set? READ!\n\n1) Chinese Hackers Go Cryptomining on OpenMetadata, Leave Funny Note!\nMicrosoft is sounding the alarm: alleged Chinese hackers are exploiting vulnerabilities in OpenMetadata (CVE-2024-28255, CVE-2024-28847, CVE-2024-28253, CVE-2024-28848, and CVE-2024-28254) to install cryptomining malware on Kubernetes clusters. It's like a digital gold rush, but with more code and fewer pickaxes!\nThese crafty criminals are bypassing authentication and executing remote code, all while leaving a humorous note pleading with victims not to remove the malware. They claim they just want to buy a car and help their poor family in China. It's like a cybercriminal's version of a GoFundMe campaign, but with less empathy and more illegal activity!\n\n\n\n2) Moldovan man charged for running botnet used to push ransomware!\nAlexander Lefterov, aka Alipako, Uptime, and Alipatime, is in hot water with the U.S. Justice Department for allegedly running a massive botnet that infected thousands of computers across the U.S. It's like a digital puppet master, but instead of entertaining, he's accused of stealing credentials and money!\nThe indictment reads like a cybercriminal's rap sheet: aggravated identity theft, computer fraud, and conspiracy to commit wire fraud. Lefterov and his digital gang allegedly used malware to steal login info and access victims' online accounts.\n\n\n\n3) LabHost PhaaS Platform Busted, 37 Arrested in Global Crackdown!\nThe LabHost phishing-as-a-service (PhaaS) platform has been taken down in a year-long, worldwide law enforcement operation that's like a plotline straight out of a cybercrime thriller! The infrastructure was compromised, and 37 suspects were arrested, including the mastermind behind the scheme. It's like a game of \"Guess Who?\" but with more handcuffs and fewer funny faces!\nLabHost, launched in 2021, was like a one-stop-shop for aspiring cybercriminals. For a monthly subscription fee, even the most technologically challenged crooks could launch phishing attacks using pre-made kits for banks and services in North America. \n\n\n\n4) FIN7 Phishes U.S. Automaker's IT Staff, Aims for High-Octane Access!\nThe notorious FIN7 gang is back at it again, and this time they've set their sights on a big fish in the U.S. automotive industry! These financially motivated masterminds targeted the IT department of a large car manufacturer with some sneaky spear-phishing emails, hoping to infect systems with the Anunak backdoor. It's like a cybercriminal version of \"Gone in 60 Seconds,\" but instead of stealing cars, they're after your data!", "creation_timestamp": "2026-07-16T03:00:04.186398Z"}