Open database leaves major Chinese ports exposed to shipping chaos
The freight logs of two major Chinese shipping ports have been leaking data, a problem which if left unresolved could...
News
Lapsus$ Ransomware Group is hiring, it announced recruitment of insiders
Lapsus$ Ransomware gang is looking for insiders willing to sell remote access to major technology corporations and ISPs. Thursday, March...
Vodafone investigates claims of a data breach made by Lapsus$ gang
Vodafone is investigating a recently suffered cyberattack, after a ransomware gang Lapsus$ claimed to have stolen its source code. Vodafone...
Crooks target Ukraine’s IT Army with a tainted DDoS tool
Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Cisco Talos researchers have...
Ransomware: February 2022 review
The Malwarebytes Threat Intelligence team continuously monitors the threat landscape to stay on top of existing and emerging attacks. In...
CISA added 98 domains to the joint alert related to Conti ransomware gang
The U.S. CISA has updated the alert on Conti ransomware and added 98 domain names used by the criminal gang....
Extortion scheme impersonates government officials, law enforcement
The FBI issued a public warning this week about a fraud scheme wherein scammers impersonate government officials and law enforcement...
Brave browser goes the extra mile to block third party cookies
Brave is testing a new feature to stop bounce tracking, a sneaky method that websites use to load third-party tracking...
New Emotet botnet is rapidly growing, with +130K unique bots spread across 179 countries
A few months after its return the Emotet botnet has already infected over 130,000 unique bots spread across 179 countries....
TLStorm flaws allow to remotely manipulate the power of millions of enterprise UPS devices
Three flaws in APC Smart-UPS devices, tracked as TLStorm, could be exploited by remote attackers to hack and destroy them. Researchers from...
New Nokoyawa Ransomware Possibly Related to Hive
In March 2022, we came across evidence that another, relatively unknown, ransomware known as Nokoyawa is likely connected with Hive,...
Google blocked China-linked APT31’s attacks targeting U.S. Government
Google has blocked a phishing campaign conducted by China-linked group APT31 aimed at Gmail users associated with the U.S. government....
Twitter makes the leap to Tor
Tor is getting another visibility boost for people who may not otherwise come into contact with it. The reason: an...
Update now! Microsoft patches three zero-day vulnerabilities on Patch Tuesday
The updates for Microsoft’s March 2022 Patch Tuesday should fix 92 vulnerabilities, including three zero-day vulnerabilities. Of the 92 vulnerabilities,...
FormBook spam campaign targets citizens of Ukraine️
Our Threat Intelligence team has been closely monitoring cyber threats related to the war in Ukraine. Today, we discovered a...
Multiple Russian government websites hacked in a supply chain attack
Threat actors hacked Russian federal agencies’ websites in a supply chain attack involving the compromise of a stats widget. Some...
Anonymous hacked Russian cams, websites, announced a clamorous leak
The collective Anonymous has hacked public cameras in Russia and transmitted their live feed on a website, it also announced a...
HP addressed 16 UEFI firmware flaws impacting laptops, desktops, PoS systems
Researchers disclosed 16 high-severity flaws in different implementations of Unified Extensible Firmware Interface (UEFI) firmware impacting multiple HP enterprise devices. Researchers...
RagnarLocker ransomware gang breached 52 critical infrastructure organizations
In a FLASH publication issued by the FBI in coordination with DHS/CISA, the FBI says it has identified at least...
Azure AutoWarp brings automation headaches
Azure is Microsoft’s cloud computing service providing a wide range of features for businesses worldwide. It’s particularly popular for its...
Samsung data breach: Lapsus$ gang stole Galaxy devices’ source code
Samsung confirmed that threat actors had access to the source code of its Galaxy smartphones in recent security breach. Samsung...
Microsoft March 2022 Patch Tuesday updates fix 89 vulnerabilities
Microsoft March 2022 Patch Tuesday security updates address 89 vulnerabilities in multiple products, including 3 zero-days. Microsoft March 2022 Patch...
New RURansom Wiper Targets Russia
We analyze RURansom, a malware variant discovered to be targeting Russia. Originally suspected to be a ransomware because of its...
US-CERT Bulletin (SB22-066):Vulnerability Summary for the Week of February 28, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
