RansomBoggs Ransomware hit several Ukrainian entities, experts attribute it to Russia
Several Ukrainian organizations were hit by Russia-based RansomBoggs Ransomware in the last week, ESET reports. Researchers from ESET observed multiple...
News
Security Affairs newsletter Round 395
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
US FCC bans the import of electronic equipment from Chinese firms
The U.S. Federal Communications Commission announced it will completely ban the import of electronic equipment from Huawei, ZTE, Hytera, Hikvision,...
Data from 5.4M Twitter users obtained from multiple threat actors and combined with data from other breaches
The massive data breach suffered by Twitter that exposed emails and phone numbers of its customers may have impacted more...
Who tracked internet users in 2021–2022
Every time you go online, someone is watching over you. The services you use, the websites you visit, the apps...
Devices from Dell, HP, and Lenovo used outdated OpenSSL versions
Researchers discovered that devices from Dell, HP, and Lenovo are still using outdated versions of the OpenSSL cryptographic library. Binarly researchers discovered...
Google fixed the eighth actively exploited #Chrome #zeroday this year
Google on Thursday released security updates to address a new zero-day vulnerability, tracked as CVE-2022-4135, impacting the Chrome web browser....
Experts investigate WhatsApp data leak: 500M user records for sale
Cybernews investigated a data sample available for sale containing up-to-date mobile phone numbers of nearly 500 million WhatsApp users. Original...
An international police operation dismantled the spoofing service iSpoof
An international law enforcement operation has dismantled an online phone number spoofing service called iSpoof. An international law enforcement operation that...
UK urges to disconnect Chinese security cameras in government buildings
The British government banned the installation of Chinese-linked security cameras at sensitive facilities due to security risks. Reuters reports that...
RansomExx Ransomware upgrades to Rust programming language
RansomExx ransomware is the last ransomware in order of time to have a version totally written in the Rust programming...
An aggressive malware campaign targets US-based companies with Qakbot to deliver Black Basta Ransomware
Researchers warn of an ongoing aggressive Qakbot malware campaign that leads to Black Basta ransomware infections in the US. Experts...
Threat actors exploit discontinues Boa web servers to target critical infrastructure
Microsoft reported that hackers have exploited flaws in a now-discontinued web server called Boa in attacks against critical industries. Microsoft experts...
Black Friday shoppers beware: online threats so far in 2022
The shopping event of the year, Black Friday, is almost here, and while the big day does not officially arrive...
Security Culture Matters when IT is Decentralized
Decentralization can make enterprises more agile but it also makes IT and network security more complex. Creating a strong security...
WannaRen Returns as Life Ransomware, Targets India
This blog entry looks at the characteristics of a new WannaRen ransomware variant, which we named Life ransomware after its...
Pro-Russian group Killnet claims responsibility for DDoS attack that has taken down the European Parliament site
Pro-Russian hacker collective Killnet took down the European Parliament website with a DDoS cyberattack. The Pro-Russia group of hacktivists Killnet...
Ducktail information stealer continues to evolve
The operators behind the Ducktail information stealer continue to improve their malicious code, operators experts warn. In late July 2022,...
Experts claim that iPhone’s analytics data is not anonymous
Researchers discovered that analytics data associated with iPhone include Directory Services Identifier (DSID) that could allow identifying users. Researchers at...
Microsoft releases out-of-band update to fix Kerberos auth issues caused by a patch for CVE-2022-37966
Microsoft released an out-of-band update to fix problems tied to a recent Windows security patch that caused Kerberos authentication issues....
Exclusive – Quantum Locker lands in the Cloud
The gang behind Quantum Locker used a particular modus operandi to target large enterprises relying on cloud services in the...
ICS cyberthreats in 2023 – what to expect
Cybersecurity incidents were plentiful in 2022, causing many problems for industrial infrastructure owners and operators. However, luckily, we did not...
Policy trends: where are we today on regulation in cyberspace?
This is the first edition of our policy analysis and observations of trends in the regulation of cyberspace, and cybersecurity,...
Crimeware and financial cyberthreats in 2023
A look back on the year 2022 and what to expect in 2023 Every year, as part of the Kaspersky...
