CISA warns of vulnerabilities in Hitachi Energy products
CISA has released six advisories to warn organizations about security vulnerabilities affecting Hitachi Energy products The U.S. Cybersecurity and Infrastructure...
News
NSO Group spyware used to compromise iPhones of 9 US State Dept officials
Apple warns that the mobile devices of at least nine US Department of State employees were compromised with NSO Group ‘s...
Emotet’s back and it isn’t wasting any time
Emotet is one of the best known, and most dangerous, malware threats of the past several years. On several occasions...
Attacker unmasked by VPN flubs charged with Ubiquiti hack
A veritable barn-stormer of an insider threat story has recently come to light. A former employee of Ubiquiti Networks, Nickolas...
KAX17 threat actor is attempting to deanonymize Tor users running thousands of rogue relays
Since 2017, an unknown threat actor has run thousands of malicious Tor relay servers in the attempt to unmask Tor...
Threat actors stole $120 M in crypto from BadgerDAO DeFi platform
Threat actors stole $120 million in cryptocurrencies from multiple wallets connected to the decentralized finance platform BadgerDAO. Threat actors this...
Watch out for Omicron COVID-19-themed phishing messages!
Threat actors have started to exploit the interest in the Omicron COVID-19 variant and are using it as a lure...
CISA adds Zoho, Apache, Qualcomm, Mikrotik flaws to the list of actively exploited issues
U.S. CISA urges to address vulnerabilities Qualcomm, Mikrotik, Zoho and the Apache Software Foundation software. U.S. Cybersecurity and Infrastructure Security...
Emotet being spread via malicious Windows App Installer packages
As reported by Cryptolaemus on Twitter, and demonstrated step by step by BleepingComputer, Emotet is now being distributed through malicious...
Russian internet watchdog Roskomnadzor bans six more VPN services
Russia’s internet watchdog, ‘Roskomnadzor’, has announced the ban of other VPN products, 15 VPN services are now illegal in Russia...
NginRAT – A stealth malware targets e-store hiding on Nginx servers
Threat actors are targeting e-stores with remote access malware, dubbed NginRAT, that hides on Nginx servers bypassing security solutions. Researchers...
SideCopy APT: Connecting lures to victims, payloads to infrastructure
This blog post was authored by Hossein Jazi and the Threat Intelligence Team. Last week, Facebook announced that back in...
Europol arrested 1800 money mules as part of an anti-money-laundering operation
Europol identified 18,351 money mules and arrested 1,803 of them as part of an international anti-money-laundering operation codenamed EMMA 7....
Mozilla fixes critical flaw in Network Security Services (NSS) cryptography library
Mozilla fixed a critical memory corruption issue affecting its cross-platform Network Security Services (NSS) set of cryptography libraries. Mozilla has...
VirusTotal Collections allows enhancing the sharing of Indicators of Compromise (IoCs)
VirusTotal announced VirusTotal Collections, a new service that allows security researchers to share sets of Indicators of Compromise (IoCs). VirusTotal...
Capcom Arcade Stadium’s record player numbers blamed on card mining
Some of my favourite retro video games are making waves on Steam, but not in the way you might think....
New RTF Template Inject technique used by APT groups in recent attacks
Nation-state actors from China, India, and Russia, were spotted using a novel RTF template injection technique in recent attacks. APT...
Here’s what data the FBI can get from WhatsApp, iMessage, Signal, Telegram, and more
Not every secure messaging app is as safe as it would like us to think. And some are safer than...
Have you downloaded that Android malware from the Play Store lately?
Security researchers have discovered banking Trojan apps on the Google Play Store, and say they have been downloaded by more...
Most people aren’t upgrading to Windows 11: Not the end of the world
Windows 11 is experiencing an apparent lack of uptake among Windows users. If this survey is accurate, less than 1%...
FBI training document shows lawful access to multiple encrypted messaging apps
Which are the most secure encrypted messaging apps? An FBI document shows what data can be obtained from them. The...
Sabbath Ransomware target critical infrastructure in the US and Canada
Sabbath ransomware is a new threat that has been targeting critical infrastructure in the United States and Canada since June...
APT annual review 2021
In the Global Research and Analysis Team at Kaspersky, we track the ongoing activities of more than 900 advanced threat...
Play the Opera Please – Opera patches a flaw in their turbo servers
Opera released a mini patch for a vulnerability in their turbo servers that dates back to 2018. Prior approval are...
