Google TAG: Russia, Belarus-linked APTs targeted Ukraine
Google TAG observed Russian, Belarusian, and Chinese threat actors targeting Ukraine and European government and military orgs. Google Threat Analysis...
News
Access:7 flaws impact +150 device models from over 100 manufacturers
Many IoT and medical devices are affected by seven serious flaws, collectively tracked as Access:7, in widely used Axeda platform....
CISA urges to fix actively exploited Firefox zero-days by March 21
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added recently disclosed Firefox zero-days to its Known Exploited Vulnerabilities Catalog. The Cybersecurity...
Ragnar Locker ransomware group breached at least 52 organizations across 10 critical infrastructure sectors
The US FBI warns that the Ragnar Locker ransomware gang has breached the networks of at least 52 organizations from...
Ukraine’s CERT-UA warns of phishing attacks against Ukrainian citizens
Ukraine’s CERT-UA warned citizens of new phishing attacks launched through compromised email accounts belonging to Indian entities. Ukraine’s Computer Emergency...
When fake dating profiles try the military approach
I’ve run into many romance scams over the years. You’ll find them lurking on social media, instant messaging, chatrooms/forums, and...
Dirty Pipe Linux flaw allows gaining root privileges on major distros
Dirty Pipe is a Linux vulnerability, tracked as CVE-2022-0847, that can allow local users to gain root privileges on all...
Coinbase blocked 25,000 crypto addresses linked to Russian individuals and entities
Coinbase announced that it’s blocking access to more than 25,000 blockchain addresses linked to Russian individuals and entities. The popular...
Update now! Mozilla patches two actively exploited vulnerabilities
Mozilla has announced it has fixed security vulnerabilities in Firefox 97.0.2, Firefox ESR 91.6.1, Firefox for Android 97.3.0, and Focus...
The struggle to reduce bug-fixing time is real
There are many reasons why we want a bug fixed as soon as we can, but there are also plenty...
SharkBot, the new generation banking Trojan distributed via Play Store
SharkBot banking malware was able to evade Google Play Store security checks masqueraded as an antivirus app. SharkBot is a banking...
A week in security (February 28 – March 6)
Last week on Malwarebytes Labs: Beware of malware offering “Warm greetings from Saudi Aramco”Update now! Cisco fixes several vulnerabilitiesHermeticWiper: A...
Anonymous hacked Russian streaming services to broadcast war footage
Anonymous hacked into the most popular Russian streaming services to broadcast war footage from Ukraine. The popular hacker collective Anonymous...
Mozilla addresses two actively exploited zero-day flaws in Firefox
Mozilla fixed two critical actively exploited zero-day bugs in Firefox with the release of 97.0.2, ESR 91.6.1, Firefox for Android...
Anonymous offers $52,000 worth of Bitcoin to Russian troops for surrendered tank. Is it fake news?
The popular hacker collective Anonymous is offering to Russian troops $52,000 in BTC for each surrendered tank. The popular hacker...
CVE-2022-0492 flaw in Linux Kernel cgroups feature allows container escape
A Linux kernel flaw, tracked as CVE-2022-0492, can allow an attacker to escape a container to execute arbitrary commands on...
Security Affairs newsletter Round 356
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Feb 27- Mar 05 Ukraine – Russia the silent cyber conflict
This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective....
Charities and NGOs providing support in Ukraine hit by malware
Malware based attacks are targeting charities and non-governmental organizations (NGOs) providing support in Ukraine Charities and non-governmental organizations (NGOs) that...
Lapsus$ gang leaks data allegedly stolen from Samsung Electronics
The Lapsus$ ransomware group claimed to have hacked Samsung Electronics and leaked alleged stolen confidential data. The Lapsus$ ransomware gang...
Beware of malware offering “Warm greetings from Saudi Aramco”
Recently, the Malwarebytes Threat Intelligence Team found a Formbook campaign targeting oil and gas companies. The campaign was delivered by...
Anonymous #OpRussia Thousands of sites hacked, data leaks and more
Anonymous and its affiliates continue to target Russia and Belarus, it is also targeting the Russian disinformation machine. Anonymous announced...
Thousands of satellite users offline in Europe following a cyberattack, is it a conflict spillover?
Thousands of satellite internet users across Europe were disconnected from the internet by a cyber-event, experts suspect a cyber attack....
Russian watchdog Roskomnadzor also blocked Facebook in Russia
State communications watchdog Roskomnadzor has ordered to block access to Facebook in Russia amid the ongoing invasion of Ukraine. State...
