Ukraine’s CERT-UA warns of phishing attacks against Ukrainian citizens
Ukraine’s CERT-UA warned citizens of new phishing attacks launched through compromised email accounts belonging to Indian entities. Ukraine’s Computer Emergency...
News
When fake dating profiles try the military approach
I’ve run into many romance scams over the years. You’ll find them lurking on social media, instant messaging, chatrooms/forums, and...
Dirty Pipe Linux flaw allows gaining root privileges on major distros
Dirty Pipe is a Linux vulnerability, tracked as CVE-2022-0847, that can allow local users to gain root privileges on all...
Coinbase blocked 25,000 crypto addresses linked to Russian individuals and entities
Coinbase announced that it’s blocking access to more than 25,000 blockchain addresses linked to Russian individuals and entities. The popular...
Update now! Mozilla patches two actively exploited vulnerabilities
Mozilla has announced it has fixed security vulnerabilities in Firefox 97.0.2, Firefox ESR 91.6.1, Firefox for Android 97.3.0, and Focus...
The struggle to reduce bug-fixing time is real
There are many reasons why we want a bug fixed as soon as we can, but there are also plenty...
SharkBot, the new generation banking Trojan distributed via Play Store
SharkBot banking malware was able to evade Google Play Store security checks masqueraded as an antivirus app. SharkBot is a banking...
A week in security (February 28 – March 6)
Last week on Malwarebytes Labs: Beware of malware offering “Warm greetings from Saudi Aramco”Update now! Cisco fixes several vulnerabilitiesHermeticWiper: A...
Anonymous hacked Russian streaming services to broadcast war footage
Anonymous hacked into the most popular Russian streaming services to broadcast war footage from Ukraine. The popular hacker collective Anonymous...
Mozilla addresses two actively exploited zero-day flaws in Firefox
Mozilla fixed two critical actively exploited zero-day bugs in Firefox with the release of 97.0.2, ESR 91.6.1, Firefox for Android...
Anonymous offers $52,000 worth of Bitcoin to Russian troops for surrendered tank. Is it fake news?
The popular hacker collective Anonymous is offering to Russian troops $52,000 in BTC for each surrendered tank. The popular hacker...
CVE-2022-0492 flaw in Linux Kernel cgroups feature allows container escape
A Linux kernel flaw, tracked as CVE-2022-0492, can allow an attacker to escape a container to execute arbitrary commands on...
Security Affairs newsletter Round 356
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Feb 27- Mar 05 Ukraine – Russia the silent cyber conflict
This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective....
Charities and NGOs providing support in Ukraine hit by malware
Malware based attacks are targeting charities and non-governmental organizations (NGOs) providing support in Ukraine Charities and non-governmental organizations (NGOs) that...
Lapsus$ gang leaks data allegedly stolen from Samsung Electronics
The Lapsus$ ransomware group claimed to have hacked Samsung Electronics and leaked alleged stolen confidential data. The Lapsus$ ransomware gang...
Beware of malware offering “Warm greetings from Saudi Aramco”
Recently, the Malwarebytes Threat Intelligence Team found a Formbook campaign targeting oil and gas companies. The campaign was delivered by...
Anonymous #OpRussia Thousands of sites hacked, data leaks and more
Anonymous and its affiliates continue to target Russia and Belarus, it is also targeting the Russian disinformation machine. Anonymous announced...
Thousands of satellite users offline in Europe following a cyberattack, is it a conflict spillover?
Thousands of satellite internet users across Europe were disconnected from the internet by a cyber-event, experts suspect a cyber attack....
Russian watchdog Roskomnadzor also blocked Facebook in Russia
State communications watchdog Roskomnadzor has ordered to block access to Facebook in Russia amid the ongoing invasion of Ukraine. State...
This Week in Security News March 4, 2022
Global Cyberattacks: How to manage risk in times of chaos, and Ukraine-Russia cyber warzone splits cyber underground If you like...
CISA adds 95 flaws to the Known Exploited Vulnerabilities Catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added 95 vulnerabilities to its Known Exploited Vulnerabilities Catalog. The U.S. Cybersecurity and...
Update now! Cisco fixes several vulnerabilities
Cisco has released a security advisory about two vulnerabilities in the API and web-based management interfaces of Cisco Expressway Series...
HermeticWiper: A detailed analysis of the destructive malware that targeted Ukraine
This blog post was authored by Hasherezade, Ankur Saini and Roberto Santos Disk wipers are one particular type of malware...
