North Korea-linked SharpTongue spies on email accounts with a malicious browser extension
North Korea-linked threat actor SharpTongue is using a malicious extension on Chromium-based web browsers to spy on victims’ email accounts....
News
Reading the “ENISA THREAT LANDSCAPE FOR RANSOMWARE ATTACKS” report
I’m proud to announce the release of the “ENISA THREAT LANDSCAPE FOR RANSOMWARE ATTACKS” report, Enjoy it! Ransomware has become...
CISA orders to patch an actively exploited flaw in Confluence servers
US Critical Infrastructure Security Agency (CISA) adds the critical Confluence flaw, tracked as CVE-2022-26138, to its Known Exploited Vulnerabilities Catalog. US...
Criminals using compromised social media accounts to “post indecent images of children” says UK cybercrime organization
Action Fraud, the UK’s national reporting center for fraud and cybercrime, is warning of a very disturbing scam involving social...
Google delays Chrome third party cookie sunsetting…again
We’ve seen many examples of third-party cookies being tackled by browsers recently. It’s not so long ago that Firefox effectively...
To settle with the DoJ, Uber must confess to a cover-up. And it did.
Uber covered up the 2016 data breach that affected its 57 million customers and drivers. The confession came as part...
Examining New DawDropper Banking Dropper and DaaS on the Dark Web
In this blog post, we discuss the technical details of a new banking dropper that we have dubbed DawDropper, give...
Transport Layer Security (TLS): Issues & Protocol
Although Transport layer security (TLS) provides enhanced security, cybercriminals have become increasingly savvy, finding ways to circumvent many of these...
Microsoft experts linked the Raspberry Robin malware to Evil Corp operation
Microsoft linked the recently discovered Raspberry Robin Windows malware to the notorious Evil Corp operation. On July 26, 2022, Microsoft...
Strong Authentication – Robust Identity and Access Management Is a Strategic Choice
Passwords no longer meet the demands of today’s identity and access requirements. Therefore, strong authentication methods are needed. “Usernames and...
Exploitation is underway for a critical flaw in Atlassian Confluence Server and Data Center
Threat actors are actively exploiting the recently patched critical flaw in Atlassian Confluence Server and Data Center Recenlty Atlassian released...
TikTok owner ByteDance pushed a pro-China agenda to Americans, say former employees
Controversy over supposed pro-China messaging in apps from TikTok owner Bytedance continues to grow. Tales are emerging relating to a...
“Orwellian in the extreme” food store installs facial recognition cameras to stop crime, faces backlash
A convenience shop chain is under fire and facing legal charges for installing cameras with facial recognition software in 35...
Radioactivity monitoring and warning system hacked, disabled by attackers
The Spanish police arrested two people under the accusation of tampering with the Red de Alerta a la Radiactividad (RAR)....
Malware-laced npm packages used to target Discord users
Threat actors used multiple npm packages to target Discord users with malware designed to steal their payment card data. A...
LofyLife: malicious npm packages steal Discord tokens and bank card data
On July 26, using the internal automated system for monitoring open-source repositories, we identified four suspicious packages in the Node...
APT trends report Q2 2022
For five years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent...
Akamai blocked the largest DDoS attack ever on its European customers
This month Akamai blocked the largest distributed denial-of-service (DDoS) attack that hit an organization in Europe. On July 21, 2022,...
LibreOffice fixed 3 flaws, including a code execution issue
LibreOffice maintainers addressed three security flaws in their productivity software, including an arbitrary code execution issue. LibreOffice is an open-source office...
Threat actors use new attack techniques after Microsoft blocked macros by default
Threat actors are devising new attack tactics in response to Microsoft’s decision to block Macros by default. In response to...
ENISA provides data related to major telecom security incidents in 2021
ENISA published a report that includes anonymised and aggregated information about major telecom security incidents in 2021. ENISA published a...
European firm DSIRF behind the attacks with Subzero surveillance malware
Microsoft linked a private-sector offensive actor (PSOA) to attacks using multiple zero-day exploits for its Subzero malware. The Microsoft Threat...
In post-Roe US, experts share how to keep your data private
In the weeks since the Supreme Court of the United States removed a nationwide right to choose to have an...
Anti-vaxxer dating site exposes user data
An anti-vax dating site has been revealed as shockingly easy to compromise by security researchers. Many major aspects of the...
