Tainted CCleaner Pro Cracker spreads via Black Seo campaign
Threat actors spread info-stealing malware through the search results for a pirated copy of the CCleaner Pro Windows optimization program....
News
Router security in 2021
A router is a gateway from the internet to a home or office — despite being conceived quite the opposite....
0Patch released unofficial security patch for new DogWalk Windows zero-day
0patch researchers released an unofficial security patch for a Windows zero-day vulnerability dubbed DogWalk. 0patch released an unofficial security patch...
Cuba Ransomware Group’s New Variant Found Using Optimized Infection Techniques
Trend Micro Research observed the resurgence of the Cuba ransomware group that launched a new malware variant using different infection...
MakeMoney malvertising campaign adds fake update template
Malware authors and distributors are following the ebbs and flow of the threat landscape. One campaign we have tracked for...
Awful 4chan chat bot spouts racial slurs and antisemitic abuse
“A robot may not injure a human being or, through inaction, allow a human being to come to harm” Science...
US dismantled and seized SSNDOB cybercrime marketplace
An international operation led by the US authorities dismantled and seized the infrastructure of the online marketplace SSNDOB. US DoJ announced...
5 Linux malware families SMBs should protect themselves against
There’s no shortage of reasons why an SMB might use Linux to run their business: There are plenty of distros...
SSNDOB stolen data marketplace shut down by global law enforcement operation
The United States Department of Justice has announced a major takedown of a criminal marketplace that traded Personally Identifiable Information...
China-linked threat actors have breached telcos and network service providers
China-linked threat actors have breached telecommunications companies and network service providers to spy on the traffic and steal data. US...
Coffee app in hot water for constant tracking of user location
A mobile app violated Canada’s privacy laws via some pretty significant overreach with its tracking of device owners. The violation...
Black Basta ransomware now supports encrypting VMware ESXi servers
Black Basta ransomware gang implemented a new feature to encrypt VMware ESXi virtual machines (VMs) running on Linux servers. The...
Ransomware Task Force priorities see progress in first year
This blog is part of our live coverage from RSA Conference 2022: US President Joseph R. Biden Jr., The White...
Hackers can take over accounts you haven’t even created yet
Account hijacking has sadly become a regular, everyday occurrence. But when it comes to hijacking accounts before they are even...
Evil Corp gang starts using LockBit Ransomware to evade sanctions
Mandiant researchers associate multiple LockBit ransomware attacks with the notorious Evil Corp Cybercrime Group. Mandiant researchers have investigated multiple LOCKBIT ransomware attacks...
Rotten apples banned from the App store
Apple’s App Review process may have received ill wishes from many benevolent developers, but Apple has now revealed how effective...
Black Basta ransomware operators leverage QBot for lateral movements
The QBot malware operation has partnered with Black Basta ransomware group to target organizations worldwide. Researchers from NCC Group spotted...
CVE-2022-30190 (Follina) vulnerability in MSDT: description and counteraction
At the end of May, researchers from the nao_sec team reported a new zero-day vulnerability in Microsoft Support Diagnostic Tool...
RSA 2022: Prometheus ransomware’s flaws inspired researchers to try to build a near-universal decryption tool
Prometheus—a ransomware build based on Thanos that locked up victims’ computers in the summer of 2021—included a major “vulnerability” that...
Lockbit ransomware gang claims to have hacked cybersecurity giant Mandiant
LockBit ransomware gang claims to have hacked the cybersecurity firm Mandiant, which is investigating the alleged security breach. Today the...
Closing the Door: DeadBolt Ransomware Locks Out Vendors With Multitiered Extortion Scheme
In this report, we investigate the reasons that the DeadBolt ransomware family is more problematic for its victims than other...
Why It’s Time to Map the Digital Attack Surface
Trend Micro research reveals struggle to control cyber risks against mounting digital attack surfaces. If you like the site, please...
Why It’s Time to Map the Digital Attack Surface
Trend Micro research reveals struggle to control cyber risks against mounting digital attack surfaces. If you like the site, please...
Microsoft Autopatch is here…but can you use it?
Updating endpoints on a network can be a daunting task. Testing before rollout can take time. Delays to patches going...
