The State of Stalkerware in 2021
The state of stalkerware in 2021 (PDF) Main findings of 2021 Every year Kaspersky analyzes the use of stalkerware around...
News
Microsoft Partch Tuesday for April 2022 fixed 10 critical vulnerabilities
Microsoft Partch Tuesday security updates for April 2022 fixed 128 vulnerabilities, including an actively exploited zero-day reported by NSA. Microsoft...
Malwarebytes Evaluation of the MITRE ENGENUITY ATT&CK Round 4 Emulations
The results of the MITRE Engenuity ATT&CK Evaluation of the Wizard Spider and Sandworm adversaries were officially released1 last week....
Operation TOURNIQUET: Authorities shut down dark web marketplace RaidForums
The dark web marketplace RaidForums has been shut down and its infrastructure seized as a result of Operation TOURNIQUET. The...
Russia-linked Sandworm APT targets energy facilities in Ukraine with wipers
Russia-linked Sandworm APT group targeted energy facilities in Ukraine with INDUSTROYER2 and CADDYWIPER wipers. Russia-linked Sandworm threat actors targeted energy...
NGINX project maintainers fix flaws in LDAP Reference Implementation
The maintainers of the NGINX web server project addressed a zero-day vulnerability in the Lightweight Directory Access Protocol (LDAP) Reference...
Conti ransomware offshoot targets Russian organizations
Thanks to the Threat Intelligence team for their help with this article. Conti, the infamous ransomware created by a group of Russian...
How to password protect a folder
There are times when you would like a folder to be accessible by you alone. Financial information, personal documents, or...
Apps removed from Google Play for harvesting user data
Dozens of apps were removed from the Google Play Store after they were found to be harvesting the data of...
USPS “Your package could not be delivered” text is a smishing scam
A scam is doing the rounds which begins with a text from what claims to be the US Postal Service....
Why identity management matters
Today is Identity Management Day, which aims to inform the public about the dangers of casually or improperly managing and...
CISA adds WatchGuard flaw to its Known Exploited Vulnerabilities Catalog
The U.S. CISA added the CVE-2022-23176 flaw in WatchGuard Firebox and XTM appliances to its Known Exploited Vulnerabilities Catalog. The U.S....
Anonymous hacked Russia’s Ministry of Culture and leaked 446 GB
The Anonymous collective has hacked Russia’s Ministry of Culture and leaked 446 GB of data through the DDoSecrets platform. Data...
US-CERT Bulletin (SB22-101):Vulnerability Summary for the Week of April 4, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
FFDroider, a new information-stealing malware disguised as Telegram app
Cybersecurity researchers spotted a new Windows information-stealing malware, named FFDroider, designed to steal credentials and cookies. Cybersecurity researchers from Zscaler...
Ransomware: March 2022 review
The Malwarebytes Threat Intelligence team continuously monitors the threat landscape to stay on top of existing and emerging attacks. In...
SuperCare Health discloses a data breach that Impacted +300K people
SuperCare Health, a leading respiratory care provider in the Western U.S, disclosed a data breach that impacted more than 300,000...
Denonia cryptominer is first malware to target AWS Lambda
Security researchers at Cado Security, a cybersecurity forensics company, recently discovered the first publicly-known malware targeting Lambda, the serverless computing...
Old Play Store apps served notice by upcoming API level changes
Starting very soon, old and outdated apps on the Google Play Store will no longer be available to download. A...
Credential-stealing malware disguises itself as Telegram, targets social media users
A credential-stealing Windows-based malware, Spyware.FFDroider, is after social media credentials and cookies, according to researchers at ThreatLabz. The version analyzed...
A week in security (April 4 – 10)
Last week on Malwarebytes Labs: Why data protection and privacy are not the same, and why that matters: Lock and...
Microsoft’s Autopatch feature improves the patch management process
Microsoft announced a feature called Autopatch that will allow organizations to keep their systems up-to-date starting with Windows Enterprise E3 (July 2022)....
Dependency Review GitHub Action prevents adding known flaws in the code
Dependency Review GitHub Action scans users’ pull requests for dependency changes and will raise an error if any new dependencies...
Securing Easy Appointments and earning CVE-2022-0482
Easy Appointments contained a very dangerous Broken Access Control vulnerability tracked as CVE-2022-0482 that was exposing PII. Another day, another...
