FBI warns of growing risks of Russia-linked attacks on US energy firms
The FBI is warning of risks related to cyber attacks aimed at energy companies of Russia-linked threat actors. The FBI...
News
China-linked GIMMICK implant now targets macOS
Gimmick is a newly discovered macOS implant developed by the China-linked APT Storm Cloud and used to target organizations across...
It’s official, Lapsus$ gang compromised a Microsoft employee’s account
Microsoft confirmed that Lapsus$ extortion group has hacked one of its employees to access and steal the source code of...
Anonymous hacked Nestlè and leaked 10 GB of sensitive
The popular Anonymous hacktivist collective announced to have hacked Nestlè and leaked 10 GB of sensitive data because the food...
Mitigate Top 5 Common Cybersecurity Vulnerabilities
Vulnerabilities in software and infrastructure are a fact of life for developers and SREs. But when you understand vulnerabilities, you...
A new rootkit comes to an ATM near you
It’s not unusual to hear about malware created to affect automated teller machines (ATMs). Malware can be planted at the...
A new wave of DeadBolt Ransomware attacks hit QNAP NAS devices 
Internet search engine Censys reported a new wave of DeadBolt ransomware attacks targeting QNAP NAS devices. Internet search engine Censys...
Facebook users wary of security mail find themselves locked out of accounts
It’s not unusual for sites and services to offer additional forms of protection on top of regular security features. Some...
Three critical RCE flaws affect hundreds of HP printer models
Three critical RCE flaws affect hundreds of HP LaserJet Pro, Pagewide Pro, OfficeJet, Enterprise, Large Format, and DeskJet printer models....
Lapsus$ extortion gang claims to have stolen sensitive data from Okta
The Lapsus$ extortion group claims to have stolen sensitive data from the identity and access management giant Okta solutions. The gang...
Lapsus$ extortion gang leaked the source code for some Microsoft projects
The Lapsus$ extortion group claims to have hacked Microsoft ‘s internal Azure DevOps server and leaked the source code for...
Serpent backdoor targets French entities with high-evasive attack chain
A new email campaign aimed at French entities leverages the Chocolatey Windows package manager to deliver the Serpent backdoor. Proofpoint...
Russia-linked InvisiMole APT targets state organizations of Ukraine
Ukraine CERT (CERT-UA) warns of spear-phishing attacks conducted by UAC-0035 group (aka InvisiMole) on state organizations of Ukraine. The Government...
US-CERT Bulletin (SB22-080):Vulnerability Summary for the Week of March 14, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Lapsus$ gang claims to have hacked Microsoft source code repositories
Microsoft is investigating claims that the Lapsus$ hacking group breached its internal Azure DevOps source code repositories. Microsoft announced that...
Fake Esports voting sites looking to phish Steam users
We’ve seen Esports occasionally become the focus of gaming or Steam scams. One particular tactic of note was to claim...
AvosLocker ransomware uses Microsoft Exchange Server vulnerabilities, says FBI
The FBI has issued an advisory about the AvosLocker ransomware. Notably the FBI has noticed that several victims have reported...
Italy’s data privacy watchdog investigates how Kaspersky manages Italian users’ data
Italy’s data privacy watchdog launched an investigation into the “potential risks” associated with the use of Russian antivirus software Kaspersky....
Hacker leaked a new version of Conti ransomware source code on Twitter
A Ukrainian security researcher has leaked more source code from the Conti ransomware operation to protest the gang’s position on...
Facebook phish claims “Someone tried to log into your account”
Watch out for bogus Facebook phishing messages winging their way to your mailbox. The ruse is quite simple: The mail...
A week in security (March 14 – 20)
Last week on Malwarebytes Labs: Beware of this bogus (and phishy) “Instagram Support” emailMeet Exotic Lily, access broker for ransomware...
DirtyMoe modules expand the bot using worm-like techniques
The DirtyMoe botnet continues to evolve and now includes a module that implements wormable propagation capabilities. In June 2021, researchers from...
Anonymous leaked data stolen from Russian pipeline company Transneft
Anonymous hacked Omega Company, the in-house R&D unit of Transneft, the Russian oil pipeline giant, and leaked stolen data. Anonymous...
Mar 13- Mar 19 Ukraine – Russia the silent cyber conflict
This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective....
