Was threat actor KAX17 de-anonymizing the Tor network?
A mysterious threat actor has run thousands of malicious servers in entry, middle, and exit positions of the Tor network....
News
Emotet directly drops Cobalt Strike beacons without intermediate Trojans
The Emotet malware continues to evolve, in the latest attacks, it directly installs Cobalt Strike beacons to give the attackers...
The story of the year: ransomware in the headlines
In the past twelve months, the word “ransomware” has popped up in countless headlines worldwide across both print and digital...
Is your web browser vulnerable to data theft? XS-Leak explained
In recent news, IT security researchers from Ruhr-Universität Bochum (RUB) and the Niederrhein University of Applied Sciences have disclosed 14...
Google disrupts the Glupteba botnet
Google announced to have disrupted the Glupteba botnet, a huge infrastructure composed of more than 1 million Windows PCs worldwide....
Bitcoin Miner [oom_reaper] targets QNAP NAS devices
Taiwanese vendor QNAP warns customers of ongoing attacks targeting their NAS devices with cryptocurrency miners. Taiwanese vendor QNAP warns customers...
A chink in the armor of China-based hacking group Nickel
Microsoft has taken control of 42 web domains that a hacking group was using to try to breach its targets....
How to check for Windows updates and install them
Keeping Windows up to date is an important part of warding off malware, exploits, and other attacks. If you’re not...
Microsoft seized 42 domains used by the China-linked APT15 cyberespionage group
Microsoft seized dozens of malicious domains used by the China-linked APT15 group to target organizations worldwide. Microsoft announced to have obtained...
Nobelium continues to target organizations worldwide with custom malware
Russia-linked Nobelium APT group is using a new custom malware dubbed Ceeloader in attacks against organizations worldwide. Mandiant researchers have...
Nobelium APT targets French orgs, French ANSSI agency warns
The French cyber-security agency ANSSI said that the Russia-linked Nobelium APT group has been targeting French organizations since February 2021....
US-CERT Bulletin (SB21-340):Vulnerability Summary for the Week of November 29, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
330 SPAR stores close or switch to cash-only payments after a cyberattack
A cyber attack hit the international supermarket franchise SPAR forcing 330 shops in North East England to shut down. A...
Why Macs are the best, according to Mac expert Thomas Reed: Lock and Code S02E23
In the year 2021, the war for computer superiority has a clear winner, and it is the Macintosh, by Apple....
DMEA Colorado electric utility hit by a disruptive cyberattack
A ransomware attack hit an electric utility in Colorado causing a significant disruption and damage. The Delta-Montrose Electric Association (DMEA)...
NSO Group spyware found on iPhones of US State Department employees
iPhones of at least nine US State Department employees are said to have been hacked using the Pegasus spyware developed...
Threat actors stole more than $150 million worth of cryptocurrency tokens from BitMart platform
Threat actors stole more than $150 million in various cryptocurrencies from the cryptocurrency trading platform BitMart. Cryptocurrency trading platform BitMart...
A week in security (Nov 29 – Dec 5)
Last week on Malwarebytes Labs: CronRAT targets Linux servers with e-commerce attacksHackers all over the world are targeting Tasmania’s emergency...
Hackers are sending receipts with anti-work messages to businesses’ printers
Hackers are targeting printers of businesses around the world to print ‘anti-work’ slogans pushing workers to demand better pay. Multiple...
Magnat malvertising campaigns spreads malicious Chrome extensions, backdoors and info stealers
Experts spotted a series of malvertising campaigns using fake installers of popular apps and games to deliver a backdoor and...
Security Affairs newsletter Round 343
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users
Researchers discovered a total of 226 potential security vulnerabilities in nine Wi-Fi popular routers from known manufacturers. Security researchers and...
German BSI agency warns of ransomware attacks over Christmas holidays
German BSI warns of ransomware attacks over the Christmas and end-of-year holidays, fearing Emotet return and attacks on Microsoft Exchange...
Cuba ransomware gang hacked 49 US critical infrastructure organizations
The FBI has revealed that the Cuba ransomware gang breached the networks of at least 49 US critical infrastructure organizations....
