CyberSec Roundup
A synopsis of the Latest Cybersecurity News

Attack With the Rhythm

Janet Jackson’s hit music video from 1989 can be used to cause a denial-of-service attack!  Tracked as CVE-2022-38392, the audio from the Rhythm Nation video contains natural resonant frequencies that can cause older 5400 rpm hard drives to crash. However, these have to be older drives from around 2005, and the systems need to be close enough to the sound being played. Modern hard drives don’t have this vulnerability.

Bitcoin ATM Hacked

Hackers discovered a zero-day vulnerability in General Bytes Bitcoin ATM servers. These Crypto Application Servers control the ATMs, and the hackers were able to exploit the vulnerability in these servers to cause the ATMs to funnel transactions to their wallets instead of the customers’. General Bytes released a patch for the servers and warns that the ATMs should be not operated until the patch is applied.

Hotels being Targeted

As tourism starts to pick back up, Proofpoint noticed the threat actor, tracked as TA558, has been running sophisticated phishing campaigns aimed at the hospitality industry with increased frequency. The goal is to compromise systems with malicious URLs and malware, then steal company and customer information. Organizations in this sector need to be on the alert.

By: David Pinder
IT & Cybersecurity Consultant
Certified Ethical Hacker (Master)