Experts observed for the first time FinFisher infections involving usage of a UEFI bootkit
Experts spotted a new variant of the FinFisher surveillance spyware that is able to hijack and replace the Windows UEFI...
News
Trend Micro fixes a critical flaw in ServerProtec Solution, patch it now!
Trend Micro has addressed a critical authentication bypass vulnerability, tracked as CVE-2021-36745, affecting the ServerProtect solution. Trend Micro has released security patches...
FoggyWeb, analysis of a Nobelium backdoor
Microsoft’s Threat Intelligence Center has been analyzing a custom-built backdoor that has been used by the Nobelium group since April...
Phone screenshots accidentally leaked online by stalkerware-type company
pcTattleTale hasn’t been very careful about securing the screenshots it sneakily takes from its victims’ phones. pcTattleTale markets itself as...
Russia will develop a new cyber security standard
Positive Technologies is developing a new concept of cyber security standard. The document should become an open knowledge base, which...
5 French Minister Phones Affected with Pegasus Spyware
At least five French ministers and President Emmanuel Macron's diplomatic advisor mobile phones have been infected by Israel-made Pegasus spyware,...
A Malicious Firefox Add-On Targets Cryptocurrency Users
Covid-19 pandemic has turned the world upside down in the last year and a half, leaving us with no option...
Hackers Steal $17,000 in ‘Double Your Cash’ Fraud on Bitcoin.org
Bitcoin.org, the authentic website of the Bitcoin project was hacked by criminals who advertised a double your money scam and...
FinSpy: unseen findings
FinSpy, also known as FinFisher or Wingbird, is an infamous surveillance toolset. Kaspersky has been tracking deployments of this spyware...
A complete PoC exploit for CVE-2021-22005 in VMware vCenter is available online
An exploit for the recently disclosed CVE-2021-22005 vulnerability in VMware vCenter was publicly released, threat actors are already using it....
Russia-linked Nobelium APT group uses custom backdoor to target Windows domains
Microsoft discovered new custom malware, dubbed FoggyWeb, used by the Nobelium cyberespionage group to implant backdoor in Windows domains. Microsoft...
ERMAC, a new banking Trojan that borrows the code from Cerberus malware
ERMAC is a new Android banking Trojan that can steal financial data from 378 banking and wallet apps. Researchers from...
New BloodyStealer malware is targeting the gaming sector
Researchers spotted a new malware, dubbed BloodyStealer, that could allow stealing accounts for multiple gaming platforms. Researchers from Kaspersky have...
Expert found RCE flaw in Visual Studio Code Remote Development Extension
Researchers from the Italian cybersecurity firm Shielder found a remote code execution vulnerability in Visual Studio Code Remote Development Extension....
A week in security (Sept 20 – Sept 26)
Last week on Malwarebytes Labs Freedom Hosting operator gets 27 years for hosting dark web abuse sitesMicrosoft makes a bold...
Cryptoscams Cost Australians About AU$6.6 Million Every Month
From the beginning of the year to the end of August, losses due to cryptocurrency investment scams accounted for over...
Malicious software reportedly generates 39% of all internet traffic
According to experts, the share of malicious bots has been growing for a long time, but the pandemic has accelerated...
Bogus Backup Message from WhatsApp Delivers Malware to Spanish Users
Authorities in Spain have issued a warning about a phishing campaign that impersonates WhatsApp to deceive consumers into installing a...
Newly Discovered ZE Loader Targets Online Banking Users
IBM Security researchers have discovered a new form of overlay malware targeting online banking users. Dubbed ZE Loader, is a...
BloodyStealer and gaming assets for sale
Earlier this year, we covered the threats related to gaming, and looked at the changes from 2020 and the first...
Jupyter infostealer continues to evolve and is distributed via MSI installers
Cybersecurity researchers spotted a new version of the Jupyter infostealer which is distributed via MSI installers. Cybersecurity researchers from Morphisec...
Telegram is becoming the paradise of cyber criminals
Telegram is becoming an essential platform for cybercriminal activities, crooks use it but and sell any kind of stolen data...
German Federal Office for Information Security (BSI) investigates Chinese mobile phones
German Federal Office for Information Security is launching an investigation into the cybersecurity of certain Chinese mobile phones. German Federal...
US-CERT Bulletin (SB21-270):Vulnerability Summary for the Week of September 20, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
