QAKBOT Trojan returns using Squirrelwaffle as a dropper
Experts warn of a surge in infections of the QBot (aka Quakbot) banking trojan which seems to be associated with...
News
A week in security (Nov 8 – Nov 14)
Last week on Malwarebytes Labs Multiple video games break after domain name snafuHow to remove adware on an Android phoneSmart...
Two Sony PS5 exploits disclosed the same day
Threat actors stole PS5 root keys using kernel exploits demonstrating the need to improve the security of the popular gaming...
ENISA – The need for Incident Response Capabilities in the health sector
ENISA analyzed the current state of development of sectoral CSIRT capabilities in the health sector since the implementation of the...
Updated: Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server
Threat actors hacked email servers of the FBI to distribute spam email impersonating FBI warnings of fake cyberattacks. The email...
FTC shares guidance for small businesses to prevent ransomware attacks
The US Federal Trade Commission (FTC) has shared guidance for small businesses on how to increase resilience to ransomware attacks....
Threat Report Portugal: Q3 2021
The Threat Report Portugal: Q3 2021 compiles data collected on the malicious campaigns that occurred from July to September, Q3, of 2021....
Security Affairs newsletter Round 340
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
Hundreds of thousands of fake warnings of cyberattacks sent from a hacked FBI email server
Threat actors hacked email servers of the FBI to distribute spam email impersonating FBI warnings of fake cyberattacks. The email...
GravityRAT returns disguised as an end-to-end encrypted chat app
Threat actors are distributing the GravityRAT remote access trojan masqueraded as an end-to-end encrypted chat application named SoSafe Chat. Threat actors...
Intel and AMD address high severity vulnerabilities in products and drivers
Chipmakers Intel and AMD addressed several vulnerabilities in their products, including high-risk issues in software drivers. Intel and AMD released...
New evolving Abcbot DDoS botnet targets Linux systems
Qihoo 360’s Netlab detailed a new evolving DDoS botnet called Abcbot with wormable capabilities that targets Linux systems. Researchers from...
Retail giant Costco discloses data breach, payment card data exposed
Costco Wholesale Corporation discloses a data breach, threat actors had access to customers’ payment card information. Retail giant Costco Wholesale...
A multi-stage PowerShell based attack targets Kazakhstan
This blog post was authored by Hossein Jazi. On November 10 we identified a multi-stage PowerShell attack using a document...
HTML Smuggling technique used in phishing and malspam campaigns
Threat actors are increasingly using the HTML smuggling technique in phishing campaigns, Microsoft researchers warn. Microsoft experts warn that threat actors are...
The importance of backing up
What does backing up something mean? Backing up is the act of making a copy or copies of a file....
macOS Zero-Day exploited in watering hole attacks on users in Hong Kong
Google revealed that threat actors recently exploited a zero-day vulnerability in macOS to deliver malware to users in Hong Kong....
Could Apple’s new MacBooks signal a change in direction on security?
Apple recently announced a new line of completely overhauled MacBook Pros. Much has been written about their new design, new...
How we broke the cloud with two lines of code: the full story of ChaosDB
Wiz Research Team disclosed technical details about the discovery of the ChaosDB vulnerability in Azure Cosmos DB database solution. In...
BotenaGo botnet targets millions of IoT devices using 33 exploits
Researchers at AT&T discovered a new BotenaGo botnet that is using thirty three exploits to target millions of routers and IoT devices....
Threat actors hacked a server of a Queensland water supplier and remained undetected for 9 months
Threat actors compromised a server managing customer data for a Queensland water supplier and remained undetected for nine months. A...
DoJ sentenced to 10 years Russian ‘King of Fraud’ behind the fraud scheme 3ve
The US DoJ sentenced a Russian man for operating a large-scale digital advertising fraud scheme called Methbot (‘3ve’). The US...
Murder-for-hire, money laundering, and more: How organised criminals work online
Europol has released an extensive report into serious and organized crime, including how these groups use the internet to aid...
Iranian threat actors attempt to buy stolen data of US organizations, FBI warns
The FBI warned private industry partners of attempts by an Iranian threat actor to buy stolen information belonging to US...
