Ransomware updates & 1-day exploits
Introduction In our crimeware reporting service, we analyze the latest crime-related trends we come across. Last month, we again posted...
News
Plex discloses data breach and urges password reset
The streaming media platform Plex is urging its users to reset passwords after threat actors gained access to its database....
Ransomware Actor Abuses Genshin Impact Anti-Cheat Driver to Kill Antivirus
We investigate mhyprot2.sys, a vulnerable anti-cheat driver for the popular role-playing game Genshin Impact. The driver is currently being abused...
AiTM phishing campaign also targets G Suite users
The threat actors behind a large-scale adversary-in-the-middle (AiTM) phishing campaign now target Google G Suite users The threat actors behind a large-scale...
VMware fixed a privilege escalation issue in VMware Tools
VMware this week released patches to address an important-severity vulnerability in the VMware Tools suite of utilities. The virtualization giant...
France hospital Center Hospitalier Sud Francilien suffered ransomware attack
A French hospital, the Center Hospitalier Sud Francilien (CHSF), suffered a cyberattack on Sunday and was forced to refer patients...
Microsoft publicly discloses details on critical ChromeOS flaw
Microsoft shared technical details of a critical ChromeOS flaw that could be exploited to trigger a DoS condition or for...
4 Cybersecurity Budget Management Tips
Learn how CISOs can use automation, strategic budgeting and internal training to run more productive cybersecurity teams amid a skills...
GitLab fixed a critical Remote Code Execution (RCE) bug in CE and EE releases
DevOps platform GitLab fixed a critical remote code execution flaw in its GitLab Community Edition (CE) and Enterprise Edition (EE)...
Over 80,000 Hikvision cameras can be easily hacked
Experts warn that over 80,000 Hikvision cameras are vulnerable to a critical command injection vulnerability. Security researchers from CYFIRMA have...
CISA adds Palo Alto Networks PAN-OS to its Known Exploited Vulnerabilities Catalog
US Cybersecurity and Infrastructure Security Agency (CISA) added a flaw, tracked as CVE-2022-0028, affecting Palo Alto Networks PAN-OS to its...
Counterfeit versions of popular mobile devices target WhatsApp and WhatsApp Business
Experts found backdoors in budget Android device models designed to target WhatsApp and WhatsApp Business messaging apps. Researchers from Doctor...
Lockbit leak sites hit by mysterious DDoS attack after Entrust hack
LockBit ransomware gang claims to have hacked the IT giant Entrust and started leaking the stolen files. Entrust Corp., provides...
US-CERT Bulletin (SB22-234):Vulnerability Summary for the Week of August 15, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
European Cybersecurity in Context: A Policy-Oriented Comparative Analysis
I’m proud to have contributed to the “European Cybersecurity in Context: A Policy-Oriented Comparative Analysis“ Worldwide connectivity has unleashed global...
8-year-old Linux Kernel flaw DirtyCred is nasty as Dirty Pipe
Researchers shared details of an eight-year-old flaw dubbed DirtyCred, defined as nasty as Dirty Pipe, in the Linux kernel. Researchers...
Group-IB CEO will remain in jail – complaint denied
On August 18, a Russian judge decided that Ilya Sachkov, founder and CEO of the Russian-led Group-IB, will remain in...
Escanor Malware delivered in Weaponized Microsoft Office Documents
Researchers spotted a new RAT (Remote Administration Tool) advertised in Dark Web and Telegram called Escanor Resecurity, a Los Angeles-based...
Donot Team cyberespionage group updates its Windows malware framework
The Donot Team threat actor, aka APT-C-35, has added new capabilities to its Jaca Windows malware framework. The Donot Team has been active since...
Fake DDoS protection pages on compromised WordPress sites lead to malware infections
Threat actors compromise WordPress sites to display fake Cloudflare DDoS protection pages to distribute malware. DDoS Protection pages are associated with...
Threat actors are stealing funds from General Bytes Bitcoin ATM
Threat actors have exploited a zero-day vulnerability in the General Bytes Bitcoin ATM servers to steal BTC from multiple customers....
Grandoreiro banking malware targets Mexico and Spain
A new Grandoreiro banking malware campaign is targeting organizations in Mexico and Spain, Zscaler reported. Zscaler ThreatLabz researchers observed a...
White hat hackers broadcasted talks and hacker movies through a decommissioned satellite
Hackers took control of a decommissioned satellite and broadcasted hacking conference talks and hacker movies. During the latest edition of...
Security Affairs newsletter Round 380
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
