Fresh KB (26 Oct) with fix printing problems

https://support.microsoft.com/en-us/topic/october-26-2021-kb5006738-os-builds-19041-1320-19042-1320-and-19043-1320-preview-ccbce6bf-ae00-4e66-9789-ce8e7ea35541

ZDI-21-1049 | Zero Day Initiative
https://www.zerodayinitiative.com/advisories/ZDI-21-1049/

APT trends report Q3 2021 | Securelist
https://securelist.com/apt-trends-report-q3-2021/104708/

Rooting Malware Makes a Comeback: Lookout Discovers Global Campaign

https://blog.lookout.com/lookout-discovers-global-rooting-malware-campaign

Agent 007: Pre-Auth Takeover of Build Pipelines in GoCD

In this blog post, we detail a vulnerability that lets unauthenticated attackers leak highly sensitive information from a vulnerable GoCD Server instance, including all encrypted secrets stored on the server

https://blog.sonarsource.com/gocd-pre-auth-pipeline-takeover

Avast releases decryptor for AtomSilo and LockFile ransomware

https://decoded.avast.io/threatintel/decryptor-for-atomsilo-and-lockfile-ransomware/

New Quishing Campaign Shows How Threat Actors Innovate to Bypass Security

https://abnormalsecurity.com/blog/qr-code-campaign-bypass-security

Microsoft finds new macOS vulnerability, Shrootless, that could bypass System Integrity Protection

https://www.microsoft.com/security/blog/2021/10/28/microsoft-finds-new-macos-vulnerability-shrootless-that-could-bypass-system-integrity-protection/

SECURITY GUIDANCE FOR 5G
CLOUD INFRASTRUCTURES

Windows User Profile Service 0day LPE

https://halove23.blogspot.com/2021/10/windows-user-profile-service-0day.html?m=1

Documents reveal Facebook targeted children as young as 6 for consumer base

https://www.nbcnews.com/tech/social-media/facebook-documents-reveal-company-targeted-children-young-6-rcna4021

Trojan Source: Invisible Vulnerabilities

paper describing cool new tricks for crafting targeted vulnerabilities that are invisible to human code reviewers

https://www.lightbluetouchpaper.org/2021/11/01/trojan-source-invisible-vulnerabilities/

up

https://trojansource.codes
https://github.com/nickboucher/trojan-source#trojan-source

GitLab Unauthenticated Remote Code Execution CVE-2021-22205 Exploited in the Wild

https://www.rapid7.com/blog/post/2021/11/01/gitlab-unauthenticated-remote-code-execution-cve-2021-22205-exploited-in-the-wild/

Worth the wait: Fedora Linux 35 is here! - Fedora Magazine
https://fedoramagazine.org/announcing-fedora-35/

Phishing emails seemingly coming from a Kaspersky email address

https://support.kaspersky.com/general/vulnerability.aspx?el=12430#01112021_phishing

Pink, a botnet that competed with the vendor to control the massive infected devices

https://blog.netlab.360.com/pink-en/

Tactics, Techniques, and Indicators of Compromise Associated
with Hello Kitty/FiveHands Ransomware

Ransomware attack to Toronto transport infrastructure

Attack to city infrastructure it is a good signal about of severity thread and defense levels...

https://therecord.media/ransomware-attack-disrupts-torontos-public-transportation-system/

What’s new in RHEL 9

Beta release is now-available

https://developers.redhat.com/articles/2021/11/03/red-hat-enterprise-linux-9-beta-here

Credit card skimmer evades Virtual Machines - Malwarebytes Labs | Malwarebytes Labs
https://blog.malwarebytes.com/threat-intelligence/2021/11/credit-card-skimmer-evades-virtual-machines/