Facebook users wary of security mail find themselves locked out of accounts
It’s not unusual for sites and services to offer additional forms of protection on top of regular security features. Some...
News
Three critical RCE flaws affect hundreds of HP printer models
Three critical RCE flaws affect hundreds of HP LaserJet Pro, Pagewide Pro, OfficeJet, Enterprise, Large Format, and DeskJet printer models....
Lapsus$ extortion gang claims to have stolen sensitive data from Okta
The Lapsus$ extortion group claims to have stolen sensitive data from the identity and access management giant Okta solutions. The gang...
Lapsus$ extortion gang leaked the source code for some Microsoft projects
The Lapsus$ extortion group claims to have hacked Microsoft ‘s internal Azure DevOps server and leaked the source code for...
Serpent backdoor targets French entities with high-evasive attack chain
A new email campaign aimed at French entities leverages the Chocolatey Windows package manager to deliver the Serpent backdoor. Proofpoint...
Russia-linked InvisiMole APT targets state organizations of Ukraine
Ukraine CERT (CERT-UA) warns of spear-phishing attacks conducted by UAC-0035 group (aka InvisiMole) on state organizations of Ukraine. The Government...
US-CERT Bulletin (SB22-080):Vulnerability Summary for the Week of March 14, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Lapsus$ gang claims to have hacked Microsoft source code repositories
Microsoft is investigating claims that the Lapsus$ hacking group breached its internal Azure DevOps source code repositories. Microsoft announced that...
Fake Esports voting sites looking to phish Steam users
We’ve seen Esports occasionally become the focus of gaming or Steam scams. One particular tactic of note was to claim...
AvosLocker ransomware uses Microsoft Exchange Server vulnerabilities, says FBI
The FBI has issued an advisory about the AvosLocker ransomware. Notably the FBI has noticed that several victims have reported...
Italy’s data privacy watchdog investigates how Kaspersky manages Italian users’ data
Italy’s data privacy watchdog launched an investigation into the “potential risks” associated with the use of Russian antivirus software Kaspersky....
Hacker leaked a new version of Conti ransomware source code on Twitter
A Ukrainian security researcher has leaked more source code from the Conti ransomware operation to protest the gang’s position on...
Facebook phish claims “Someone tried to log into your account”
Watch out for bogus Facebook phishing messages winging their way to your mailbox. The ruse is quite simple: The mail...
A week in security (March 14 – 20)
Last week on Malwarebytes Labs: Beware of this bogus (and phishy) “Instagram Support” emailMeet Exotic Lily, access broker for ransomware...
DirtyMoe modules expand the bot using worm-like techniques
The DirtyMoe botnet continues to evolve and now includes a module that implements wormable propagation capabilities. In June 2021, researchers from...
Anonymous leaked data stolen from Russian pipeline company Transneft
Anonymous hacked Omega Company, the in-house R&D unit of Transneft, the Russian oil pipeline giant, and leaked stolen data. Anonymous...
Mar 13- Mar 19 Ukraine – Russia the silent cyber conflict
This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective....
Security Affairs newsletter Round 358 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
EU and US agencies warn that Russia could attack satellite communications networks
FBI, CISA, and the European Union Aviation Safety Agency (EASA) warn of possible threats to international satellite communication (SATCOM) networks....
Avoslocker ransomware gang targets US critical infrastructure
The Federal Bureau of Investigation (FBI) reported that AvosLocker ransomware is being used in attacks targeting US critical infrastructure. The Federal...
Crooks claims to have stolen 4TB of data from TransUnion South Africa
TransUnion South Africa discloses a data breach, threat actors who stolen sensitive data, demanded a ransom payment not to release...
Exotic Lily initial access broker works with Conti gang
Google’s Threat Analysis Group (TAG) uncovered a new initial access broker, named Exotic Lily, that is closely affiliated with the Conti ransomware...
Emsisoft releases free decryptor for the victims of the Diavol ransomware
Cybersecurity firm Emsisoft released a free decryptor that allows the victims of the Diavol ransomware to recover their files without...
Beware of this bogus (and phishy) “Instagram Support” email
Recently, a fake Instagram email successfully bypassed Google’s email filters and made it into hundreds of employee inboxes used by...
