WhatsApp fixed critical and high severy vulnerabilities
WhatsApp has addressed two severe Remote Code Execution vulnerabilities affecting the mobile version of the software. WhatsApp has published three security...
News
Erbium info-stealing malware, a new option in the threat landscape
The recently discovered Erbium information-stealer is being distributed as fake cracks and cheats for popular video games. Threat actors behind...
Mandiant identifies 3 hacktivist groups working in support of Russia
Researchers are tracking multiple self-proclaimed hacktivist groups working in support of Russia, and identified 3 groups linked to the GRU....
NullMixer: oodles of Trojans in a single dropper
Executive Summary NullMixer is a dropper leading to an infection chain of a wide variety of malware families. NullMixer spreads...
Russia prepares massive cyberattacks on the critical infrastructure of Ukraine and its allies
The Ukrainian military intelligence warns that Russia is planning to escalate cyberattacks targeting Ukraine and Western allies. The Main Directorate...
China-linked TA413 group targets Tibetan entities with new backdoor
China-linked cyberespionage group TA413 exploits employ a never-before-undetected backdoor called LOWZERO in attacks aimed at Tibetan entities. A China-linked cyberespionage group, tracked...
Metador, a never-before-seen APT targeted ISPs and telco for about 2 years
A previously undetected hacking group, tracked as Metador, has been targeting telecommunications, internet services providers (ISPs), and universities for about...
Exmatter exfiltration tool used to implement new extortion tactics
Ransomware operators switch to new extortion tactics by using the Exmatter malware and adding new data corruption functionality. The data...
Attackers impersonate CircleCI platform to compromise GitHub accounts
Threat actors target GitHub users to steal credentials and two-factor authentication (2FA) codes by impersonating the CircleCI DevOps platform. GitHub...
OpIran: Anonymous declares war on Teheran amid Mahsa Amini’s death
OpIran: Anonymous launched Operation Iran against Teheran due to the ongoing crackdown on dissent after Mahsa Amini’s death. Anonymous launched...
Security Affairs newsletter Round 385
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
ISC fixed high-severity flaws in the BIND DNS software
The Internet Systems Consortium (ISC) fixed six remotely exploitable vulnerabilities in the BIND DNS software. The Internet Systems Consortium (ISC)...
Ukraine: SSU dismantled cyber gang that stole 30 million accounts
The cyber department of Ukraine ‘s Security Service (SSU) dismantled a gang that stole accounts of about 30 million individuals....
London Police arrested a teen suspected to be behind Uber, Rockstar Games breaches
The City of London Police this week announced the arrest of a 17-year-old teenager on suspicion of hacking. Is he...
Mass email campaign with a pinch of targeted spam
Most mass malicious mailing campaigns are very primitive and hardly diverse, with the content limited to several sentences offering the...
Sophos warns of a new actively exploited flaw in Firewall product
Sophos warns that a critical code injection security vulnerability in its Firewall product is actively exploited in the wild. Sophos...
Simplify with Network Security as a Service (NSaaS)
Learn more on how network security as a service (NSaaS) employs the latest technologies to counter unknown threats and detect...
Anonymous claims to have hacked the website of the Russian Ministry of Defense
The popular collective Anonymous claims to have hacked the website of the Russian Ministry of Defense and leaked data of...
CISA adds Zoho ManageEngine flaw to its Known Exploited Vulnerabilities Catalog
CISA added a security flaw in Zoho ManageEngine, tracked as CVE-2022-35405, to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and...
Surge in Magento 2 template attacks exploiting the CVE-2022-24086 flaw
Sansec researchers warn of a surge in hacking attempts targeting a critical Magento 2 vulnerability tracked as CVE-2022-24086. Sansec researchers...
Australian Telecoms company Optus discloses security breach
Australian telecoms company Optus disclosed a data breach, threat actors gained access to former and current customers. Optus, one of...
AttachMe: a critical flaw affects Oracle Cloud Infrastructure (OCI)
A critical vulnerability in Oracle Cloud Infrastructure (OCI) could be exploited to access the virtual disks of other Oracle customers....
How to Prevent Ransomware as a Service (RaaS) Attacks
Explore key insights on how ransomware as a service (RaaS) operators work and how to prevent ransomware attacks. If you...
A 15-Year-Old Unpatched Python bug potentially impacts over 350,000 projects
More than 350,000 open source projects can be potentially affected by a 15-Year-Old unpatched Python vulnerability More than 350,000 open...
