Text-based fraud: from 419 scams to vishing
E-mail scammers typically combine social engineering with technical skills to bypass spam filters and persuade the recipient to reply. But...
News
Private 5G Network Security Expectations Part 3
How to secure your private 5G networks; The challenge of complex ecosystem in DX. If you like the site, please...
How Shady Code Commits Compromise the Security of the Open-Source Ecosystem
In this blog entry, we discuss how open-source code has been subjected to protest-driven code modifications by its maintainers or...
Private 5G Network Security Expectations Part 2
The importance of proof of “security” concepts in private 5G networks: Are verifications of system operations and new functions sufficient...
A fake job offer via LinkedIn allowed to steal $540M from Axie Infinity
Threat actors used a fake job offer on LinkedIn to target an employee at Axie Infinity that resulted in the theft...
Anubis Networks is back with new C2 server
A large-scale phishing campaign leveraging the Anubis Network is targeting Brazil and Portugal since March 2022. A large-scale phishing campaign...
Europe threatens to ban Facebook over data transfers to the US
If regulators have their way, data transfers from Facebook and Instagram between Europe and the United States could stop this...
BlackCat (aka ALPHV) Ransomware is Increasing Stakes up to $2,5M in Demands
BlackCat (aka ALPHV) Ransomware gang introduced an advanced search by stolen victim’s passwords, and confidential documents. The notorious cybercriminal syndicate...
How the FBI quietly added itself to criminals’ instant message conversations
Motherboard has disclosed some information about Operation Trojan Shield, in which the FBI intercepted messages from thousands of encrypted phones...
Experts warn of the new 0mega ransomware operation
BleepingComputer reported a new ransomware operation named 0mega that is targeting organizations worldwide. 0mega is a new ransomware operation that...
Experts demonstrate how to unlock several Honda models via Rolling-PWN attack
Bad news for the owners of several Honda models, the Rolling-PWN Attack vulnerability can allow unlocking their vehicles. A team...
French telephone operator La Poste Mobile suffered a ransomware attack
French virtual mobile telephone operator La Poste Mobile was hit by a ransomware attack that impacted administrative and management services. ...
Security Affairs newsletter Round 373 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for...
Apple Lockdown Mode will protect users against highly targeted cyberattacks
Apple plans to introduce a security feature, called Lockdown Mode, to protect its users against “highly targeted cyberattacks.” The recent wave of...
Fortinet addressed multiple vulnerabilities in several products
Fortinet released security patches to address multiple High-Severity vulnerabilities in several products of the vendor. Fortinet addressed multiple vulnerabilities in...
Previously undocumented Rozena backdoor delivered by exploiting the Follina bug
Threat actors are exploiting the disclosed Follina Windows vulnerability to distribute the previously undocumented Rozena backdoor. Fortinet FortiGuard Labs researchers...
Ongoing Raspberry Robin campaign leverages compromised QNAP devices
Cybereason researchers are warning of a wave of attacks spreading the wormable Windows malware Raspberry Robin. Raspberry Robin is a Windows...
Fake job offer leads to $600 million theft
Back in March, popular NFT battler Axie Infinity lay at the heart of a huge cryptocurrency theft inflicted on the...
Report: Brazil must do more to encrypt, back up data
Federal government organisations in Brazil may need to reassess their approach to cyberthreats, according to a new report by the...
Evolution of the LockBit Ransomware operation relies on new techniques
Experts documented the evolution of the LockBit ransomware that leverages multiple techniques to infect targets and evade detection. The Cybereason Global...
Cisco fixed a critical arbitrary File Overwrite flaw in Enterprise Communication solutions
Cisco fixed a critical vulnerability in the Cisco Expressway series and TelePresence Video Communication Server (VCS) products. Cisco released security...
Emsisoft: Victims of AstraLocker and Yashma ransomware can recover their files for free
Emsisoft has released a free decryption tool that allows victims of the AstraLocker and Yashma ransomware to recover their files...
Discussing the risks of bullying for anonymous social app NGL
This is a transcription of my complete interview with the program NEWSFEED at TRT, during which we discussed NGL software...
Russian Cybercrime Trickbot Group is systematically attacking Ukraine
The operators behind the TrickBot malware are systematically targeting Ukraine since the beginning of the war in February 2022. IBM...
