Security Culture Matters when IT is Decentralized
Decentralization can make enterprises more agile but it also makes IT and network security more complex. Creating a strong security...
News
WannaRen Returns as Life Ransomware, Targets India
This blog entry looks at the characteristics of a new WannaRen ransomware variant, which we named Life ransomware after its...
Pro-Russian group Killnet claims responsibility for DDoS attack that has taken down the European Parliament site
Pro-Russian hacker collective Killnet took down the European Parliament website with a DDoS cyberattack. The Pro-Russia group of hacktivists Killnet...
Ducktail information stealer continues to evolve
The operators behind the Ducktail information stealer continue to improve their malicious code, operators experts warn. In late July 2022,...
Experts claim that iPhone’s analytics data is not anonymous
Researchers discovered that analytics data associated with iPhone include Directory Services Identifier (DSID) that could allow identifying users. Researchers at...
Microsoft releases out-of-band update to fix Kerberos auth issues caused by a patch for CVE-2022-37966
Microsoft released an out-of-band update to fix problems tied to a recent Windows security patch that caused Kerberos authentication issues....
Exclusive – Quantum Locker lands in the Cloud
The gang behind Quantum Locker used a particular modus operandi to target large enterprises relying on cloud services in the...
ICS cyberthreats in 2023 – what to expect
Cybersecurity incidents were plentiful in 2022, causing many problems for industrial infrastructure owners and operators. However, luckily, we did not...
Policy trends: where are we today on regulation in cyberspace?
This is the first edition of our policy analysis and observations of trends in the regulation of cyberspace, and cybersecurity,...
Crimeware and financial cyberthreats in 2023
A look back on the year 2022 and what to expect in 2023 Every year, as part of the Kaspersky...
5 API Vulnerabilities That Get Exploited by Criminals
Let’s give a look at API vulnerabilities by reading the API Security Top 10 published by the Open Web Application...
US-CERT Bulletin (SB22-325):Vulnerability Summary for the Week of November 14, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Researcher warns that Cisco Secure Email Gateways can easily be circumvented
A researcher revealed how to bypass some of the filters in Cisco Secure Email Gateway appliance and deliver malware using...
Aurora Stealer Malware is becoming a prominent threat in the cybercrime ecosystem
Researchers warn of threat actors employing a new Go-based malware dubbed Aurora Stealer in attacks in the wild. Aurora Stealer...
Two Estonian citizens arrested in $575M cryptocurrency fraud scheme
Two Estonian citizens were arrested in Tallinn for allegedly running a $575 million cryptocurrency fraud scheme. Two Estonian nationals were...
Emotet is back and delivers payloads like IcedID and Bumblebee
The Emotet malware is back and experts warn of a high-volume malspam campaign delivering payloads like IcedID and Bumblebee. Proofpoint...
Expert published PoC exploit code for macOS sandbox escape flaw
A researcher published details and proof-of-concept (PoC) code for High-Severity macOS Sandbox escape vulnerability tracked as CVE-2022-26696. Researcher Wojciech Reguła...
Google won a lawsuit against the Glupteba botnet operators
Google won a lawsuit filed against two Russian nationals involved in the operations of the Glupteba botnet. This week, Google...
Google provides rules to detect tens of cracked versions of Cobalt Strike
Researchers at Google Cloud identified 34 different hacked release versions of the Cobalt Strike tool in the wild. Cobalt Strike...
Octocrypt, Alice, and AXLocker Ransomware, new threats in the wild
Experts from Cyble Research and Intelligence Labs (CRIL) discovered three new ransomware families: AXLocker, Octocrypt, and Alice Ransomware. Threat intelligence...
Security Affairs newsletter Round 394
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
PoC exploit code for ProxyNotShell Microsoft Exchange bugs released online
Proof-of-concept exploit code for two actively exploited Microsoft Exchange ProxyNotShell flaws released online. Proof-of-concept exploit code has been released online...
DEV-0569 group uses Google Ads to distribute Royal Ransomware
Microsoft warns that a threat actor, tracked as DEV-0569, is using Google Ads to distribute the recently discovered Royal ransomware....
Black Friday and Cyber Monday, crooks are already at work
Every year during Black Friday and Cyber Monday, crooks take advantage of the bad habits of users with fraudulent schema....
