Mar 06- Mar 12 Ukraine – Russia the silent cyber conflict
This post provides a timeline of the events related to the Russia invasion of Ukraine from the cyber security perspective....
News
Security Affairs newsletter Round 357 by Pierluigi Paganini
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
LockBit ransomware group claims to have hacked Bridgestone Americas
LockBit ransomware gang claimed to have hacked Bridgestone Americas, one of the largest manufacturers of tires. LockBit ransomware gang claimed...
Attackers use website contact forms to spread BazarLoader malware
Threat actors are spreading the BazarLoader malware via website contact forms to evade detection, researchers warn. Researchers from cybersecurity firm...
Russian Internet watchdog Roskomnadzor is going to ban Instagram
Russian Internet watchdog Roskomnadzor is going to ban Instagram in Russia to prevent the spreading of info related to the...
Ubisoft suffered a cyber security incident that caused a temporary disruption
Video game company Ubisoft has suffered a ‘cyber security incident’ that had a severe impact on games, systems, and services. The...
Blunting RDP brute-force attacks with rate limiting
Thanks to the Malwarebytes Threat Intelligence Team for the information they provided for this article. Not long ago, guessing a...
HBO sued for sharing subscriber data with Facebook
HBO Max subscribers Angel McDaniel and Constance Simon filed a class-action lawsuit against HBO on Tuesday, alleging that the company...
Anonymous hacked Roskomnadzor agency revealing Russian disinformation
The Anonymous collective continues to launch attacks against Russian entities, this is a summary of recent offensives. Anonymous announced to...
Linux “Dirty Pipe” vulnerability gives unprivileged users root access
A vulnerability in the Linux kernel, nicknamed “Dirty Pipe”, allows an unprivileged user to overwrite data in read-only files. This...
Open database leaves major Chinese ports exposed to shipping chaos
The freight logs of two major Chinese shipping ports have been leaking data, a problem which if left unresolved could...
Lapsus$ Ransomware Group is hiring, it announced recruitment of insiders
Lapsus$ Ransomware gang is looking for insiders willing to sell remote access to major technology corporations and ISPs. Thursday, March...
Vodafone investigates claims of a data breach made by Lapsus$ gang
Vodafone is investigating a recently suffered cyberattack, after a ransomware gang Lapsus$ claimed to have stolen its source code. Vodafone...
Crooks target Ukraine’s IT Army with a tainted DDoS tool
Threat actors are spreading password-stealing malware disguised as a security tool to target Ukraine’s IT Army. Cisco Talos researchers have...
Ransomware: February 2022 review
The Malwarebytes Threat Intelligence team continuously monitors the threat landscape to stay on top of existing and emerging attacks. In...
CISA added 98 domains to the joint alert related to Conti ransomware gang
The U.S. CISA has updated the alert on Conti ransomware and added 98 domain names used by the criminal gang....
Extortion scheme impersonates government officials, law enforcement
The FBI issued a public warning this week about a fraud scheme wherein scammers impersonate government officials and law enforcement...
Brave browser goes the extra mile to block third party cookies
Brave is testing a new feature to stop bounce tracking, a sneaky method that websites use to load third-party tracking...
New Emotet botnet is rapidly growing, with +130K unique bots spread across 179 countries
A few months after its return the Emotet botnet has already infected over 130,000 unique bots spread across 179 countries....
TLStorm flaws allow to remotely manipulate the power of millions of enterprise UPS devices
Three flaws in APC Smart-UPS devices, tracked as TLStorm, could be exploited by remote attackers to hack and destroy them. Researchers from...
New Nokoyawa Ransomware Possibly Related to Hive
In March 2022, we came across evidence that another, relatively unknown, ransomware known as Nokoyawa is likely connected with Hive,...
Google blocked China-linked APT31’s attacks targeting U.S. Government
Google has blocked a phishing campaign conducted by China-linked group APT31 aimed at Gmail users associated with the U.S. government....
Twitter makes the leap to Tor
Tor is getting another visibility boost for people who may not otherwise come into contact with it. The reason: an...
Update now! Microsoft patches three zero-day vulnerabilities on Patch Tuesday
The updates for Microsoft’s March 2022 Patch Tuesday should fix 92 vulnerabilities, including three zero-day vulnerabilities. Of the 92 vulnerabilities,...
