Microsoft makes a bold move towards a password-less future
In a recent blog Microsoft announced that as of September 15, 2021 you can completely remove the password from your...
News
Freedom Hosting operator gets 27 years for hosting Dark Web child abuse sites
The wheels of justice have turned, if perhaps a bit slower than you may have expected. A Dublin resident, Eric...
A week in security (Sept 13 – Sept 19)
Last week on Malwarebytes Labs Why backups aren’t a “silver bullet” against ransomware, with Matt Crape: Lock and Code S02E17The...
Numando: a Banking Trojan Targeting Brazil Abuses YouTube for Spreading
ESET researchers have continued their investigation on the Latin American banking trojans with Numando, primarily targeting Brazil and seldom Mexico...
Links Detected Between MSHTML Zero-Day Attacks and Ransomware Operations
The exploitation of a recently fixed Windows zero-day vulnerability was attributed to known ransomware operators, according to Microsoft and threat...
Lubbock County Denies Data Leak, Says Data Temporarily Attainable Under New Software System
Earlier this month, the personal court records for residents of Lubbock County, located in the US state of Texas, were...
Secrets from Public Repositories Were Exposed Due to Travis CI Flaw
Travis CI, a continuous integration provider located in Berlin, has patched a severe issue that exposed signing keys, API keys,...
US-CERT Bulletin (SB21-263):Vulnerability Summary for the Week of September 13, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Europol arrested 106 fraudsters, members of a major crime ring
Europol, along with Italian and Spanish police, dismantled a major crime organization linked to the Italian Mafia that focuses on...
Pakistani man sentenced to 12 years of prison for his role in AT&T hacking scheme
A Pakistani national has been sentenced to 12 years of prison in the US for his role in a hacking...
Numando, a new banking Trojan that abuses YouTube for remote configuration
Numando, a new banking Trojan that abuses YouTube, Pastebin, and other public platforms as C2 infrastructure and to spread. ESET...
City of Yonkers Refuses to Pay Ransom After Attackers Demand $10 million
The City of Yonkers has refused to pay the ransom after ransomware attackers demanded a ransom of $10 million to...
German Election Authority Confirms Probable Cyber Attack
Suspected hackers momentarily impacted the website of the authority managing Germany's September 26 federal election, a spokesperson for the agency...
Hackers Impersonate Bank Customers and Make $500k in Fraudulent Credit Card Payments
Hackers from other countries were able to impersonate 75 bank clients and made $500,000 in fraudulent credit card payments. This...
New Malware Variant Employs Windows Subsystem for Linux for Attacks
Security experts have found a new malware variant that uses Windows Subsystem for Linux to infect systems covertly. The research...
Why Edward Snowden is urging users to stop using ExpressVPN?
The popular whistleblower Edward Snowden recommends customers of ExpressVPN VPN service to stop using it. Last week the Israeli cybersecurity...
Security Affairs newsletter Round 332
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
The Biden administration plans to target exchanges supporting ransomware operations with sanctions
US Government is expected to issue sanctions against crypto exchanges, wallets, and traders used by ransomware operations to cash out...
Threat actor has been targeting the aviation industry since at least 2018
Security researchers from the Cisco Talos team uncovered a spear-phishing campaign targeting the aviation industry for two years avoiding detection....
Hackers attack Russian organizations through a new Microsoft Office vulnerability
Information security specialists from Kaspersky Lab reported that hackers are trying to attack Russian companies through a new vulnerability in...
Republican Governors Association Targeted in Microsoft Exchange Server Attacks
The Republican Governors Association was one of many U.S. organizations attacked in March when a nation-state group exploited vulnerabilities in...
Scammers Use ‘IT Support-Themed Email’ to Target Organizations
Cybersecurity researchers at Cofense Phishing Defense Center (PDC) have unearthed a new phishing campaign that uses 'information technology (IT) support-themed...
South Africa’s Department of Justice hit by a Ransomware Attack
South Africa's Justice Department was attacked earlier this month by a major ransomware attack and has been struggling since then...
A Look at the Triple Extortion Ransomware
Ransomware has traditionally concentrated on encryption, but one of the most common recent additions is the exfiltration and threatening disclosure...
