News

CloudMensis spyware went undetected for many years

July 19, 2022

Researchers spotted previously undocumented spyware, dubbed CloudMensis, that targets the Apple macOS systems. Researchers from ESET discovered a previously undetected...

Russia-linked APT29 relies on Google Drive, Dropbox to evade detection

July 19, 2022

Russia-linked threat actors APT29 are using the Google Drive cloud storage service to evade detection. Palo Alto Networks researchers reported...

Crooks create rogue cryptocurrency-themed apps to steal crypto assets from users

July 19, 2022

The U.S. FBI has warned of crooks developing malicious cryptocurrency-themed apps to steal crypto assets from the users. The U.S....

Pacific Islander woman with shadow of bar code on her face

The FTC will go after companies misusing location, health, and other sensitive data

July 19, 2022

After the overturning of Roe V Wade, many feared that using, having access to, and sharing reproductive and sexual health...

Several apps on the Play Store used to spread Joker, Facestealer and Coper malware

July 19, 2022

Google blocked dozens of malicious apps from the official Play Store that were spreading Joker, Facestealer, and Coper malware families....

MLNK Builder 4.2 released in Dark Web – malicious shortcut-based attacks are on the rise

July 18, 2022

Cybercriminals released a new MLNK Builder 4.2 tool for malicious shortcuts (LNK) generation with an improved Powershell and VBS Obfuscator...

Tor Browser 11.5 is optimized to automatically bypass censorship

July 18, 2022

The Tor Project team has announced the release of Tor Browser 11.5, which introduces functionalities to automatically bypass censorship. The...

A massive cyberattack hit Albania

July 18, 2022

A synchronized criminal attack from abroad hit Albania over the weekend, all Albanian government systems shut down following the cyberattack....

Watch out for the CVE-2022-30136 Windows NFS Remote Code Execution flaw

July 18, 2022

Researchers published an analysis of the Windows remote code execution vulnerability CVE-2022-30136 impacting the Network File System. Trend Micro Research...

Graff paid a $7.5M ransom and sued its insurance firm for refusing to cover this payment

July 18, 2022

The high-end British jeweler Graff paid a £6 million ransom after the ransomware attack it suffered in 2021. In September...

Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever

July 17, 2022

Threat actors hacked the popular NFT platform, Premint NFT and stole 314 NFTs. The popular NFT platform, Premint NFT, was...

Google is going to remove App Permissions List from the Play Store

July 17, 2022

Google is going to remove the app permissions list from the official Play Store for both the mobile app and...

Security Affairs newsletter Round 374 by Pierluigi Paganini

July 17, 2022

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs for...

APT groups target journalists and media organizations since 2021

July 17, 2022

Researchers from Proofpoint warn that various APT groups are targeting journalists and media organizations since 2021. Proofpoint researchers warn that...

Critical flaw in Netwrix Auditor application allows arbitrary code execution

July 16, 2022

A vulnerability in the Netwrix Auditor software can be exploited to execute arbitrary code on affected devices. Bishop Fox discovered...

CISA urges to fix multiple critical flaws in Juniper Networks products

July 16, 2022

CISA urges admins to apply recently released fixes in Juniper Networks products, including Junos Space, Contrail Networking and NorthStar Controller....

Threat actors exploit a flaw in Digium Phone Software to target VoIP servers

July 16, 2022

Threat actors are targeting VoIP servers by exploiting a vulnerability in Digium’s software to install a web shell, Palo Alto...

Tainted password-cracking software for industrial systems used to spread P2P Sality bot

July 16, 2022

Dragos researchers uncovered a small-scale campaign targeting industrial engineers and operators with Sality malware. During a routine vulnerability assessment, Dragos...

Top 5 Infrastructure as Code Security Challenges

July 15, 2022

Learn how to counteract the top five challenges of IaC and discover how these obstacles pose a threat to security...

Experts warn of attacks on sites using flawed Kaswara Modern WPBakery Page Builder Addons

July 15, 2022

Researchers spotted a massive campaign that scanned close to 1.6 million WordPress sites for vulnerable Kaswara Modern WPBakery Page Builder...

Holy Ghost ransomware operation is linked to North Korea

July 15, 2022

Microsoft researchers linked the Holy Ghost ransomware (H0lyGh0st) operation to North Korea-linked threat actors. The Microsoft Threat Intelligence Center (MSTIC)...

RedAlert, LILITH, and 0mega, 3 new ransomware in the wild

July 15, 2022

Cyble researchers warn of three new ransomware operations named Lilith, RedAlert and 0mega targeting organizations worldwide. Researchers from threat intelligence...

Friends group having addicted fun together using smartphones - Hands detail sharing content on social network with mobile smart phone - Technology concept with people millennials online with cellphone

WhatsApp warns users: Fake versions of WhatsApp are trying to steal your personal info

July 15, 2022

WhatsApp boss Will Cathcart is warning users of the popular messaging app to be on their guard after the WhatsApp...

Mantis botnet powered the largest HTTPS DDoS attack in June

July 14, 2022

The largest HTTPS DDoS attack recently mitigated by Cloudflare was launched by the Mantis botnet. In June 2022, DDoS mitigation...

News

CloudMensis spyware went undetected for many years

Russia-linked APT29 relies on Google Drive, Dropbox to evade detection

Crooks create rogue cryptocurrency-themed apps to steal crypto assets from users

The FTC will go after companies misusing location, health, and other sensitive data

Several apps on the Play Store used to spread Joker, Facestealer and Coper malware

MLNK Builder 4.2 released in Dark Web – malicious shortcut-based attacks are on the rise

Tor Browser 11.5 is optimized to automatically bypass censorship

A massive cyberattack hit Albania

Watch out for the CVE-2022-30136 Windows NFS Remote Code Execution flaw

Graff paid a $7.5M ransom and sued its insurance firm for refusing to cover this payment

Crooks stole $375k from Premint NFT, it is one of the biggest NFT hacks ever

Google is going to remove App Permissions List from the Play Store

Security Affairs newsletter Round 374 by Pierluigi Paganini

APT groups target journalists and media organizations since 2021

Critical flaw in Netwrix Auditor application allows arbitrary code execution

CISA urges to fix multiple critical flaws in Juniper Networks products

Threat actors exploit a flaw in Digium Phone Software to target VoIP servers

Tainted password-cracking software for industrial systems used to spread P2P Sality bot

Top 5 Infrastructure as Code Security Challenges

Experts warn of attacks on sites using flawed Kaswara Modern WPBakery Page Builder Addons

Holy Ghost ransomware operation is linked to North Korea

RedAlert, LILITH, and 0mega, 3 new ransomware in the wild

WhatsApp warns users: Fake versions of WhatsApp are trying to steal your personal info

Mantis botnet powered the largest HTTPS DDoS attack in June

CISA: CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware

CISA: CISA Releases Nine Industrial Control Systems Advisories

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA: CISA Partners with ASD’s ACSC, CCCS, NCSC-UK, and Other International and US Organizations to Release Guidance on Edge Devices

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

You may have missed