Unknown ransomware gang uses SQL injection bug in BillQuick Web Suite to deploy ransomware
An unknown ransomware gang leverages a critical SQL injection flaw in the BillQuick Web Suite time and billing solution to...
News
Beyond the VPN: Ultimate online privacy, with The Tor Project’s Isabella Bagueros: Lock and Code S02E20
“What does online privacy mean to you?” This beguilingly simply question can produce dozens of overlapping and distinct answers, all...
A critical RCE flaw affects Discourse software, patch it now!
US CISA urges administrators to address a critical remote code execution flaw, tracked as CVE-2021-41163, in Discourse installs. Discourse is...
Red TIM Research found two rare flaws in Ericsson OSS-RC component
The Red Team Research (RTR), the bug’s research division from Italian Telecommunication firm TIM, found 2 new vulnerabilities affecting the...
Russia-linked Nobelium APT targets orgs in the global IT supply chain
Russia-linked Nobelium APT group has breached at least 14 managed service providers (MSPs) and cloud service providers since May 2021. The...
A week in security (Oct 18 – Oct 24)
Last week on Malwarebytes Labs Multiple vulnerabilities in popular WordPress plugin WP Fastest Cache.“Killware”: Is it just as bad as...
NYT Journalist’s iPhone infected twice with NSO Group’sPegasus spyware
Threat actors infected the iPhone of New York Times journalist Ben Hubbard with NSO Group’s Pegasus spyware between June 2018...
Emsisoft created a free decryptor for past victims of the BlackMatter ransomware
Experts from cybersecurity firm Emsisoft announced the availability of a free decryptor for past victims of the BlackMatter ransomware. Cybersecurity...
TodayZoo phishing kit borrows the code from other kits
Microsoft uncovered an extensive series of credential phishing campaigns that employed a custom phishing kit tracked as TodayZoo. Microsoft researchers...
Security Affairs newsletter Round 337
A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free...
NATO releases its first strategy for Artificial Intelligence
This week, NATO Defence Ministers released the first-ever strategy for Artificial Intelligence (AI) that encourages the use of AI in...
Threat actors offer for sale data for 50 millions of Moscow drivers
Threat actors are offering for sale a database containing 50 million records belonging to Moscow drivers on a hacking forum...
Cisco SD-WAN flaw could lead to arbitrary code execution, patch it now!
Cisco fixes an OS command-injection flaw, tracked as CVE-2021-1529, in Cisco SD-WAN that could allow privilege escalation and lead to...
Supply-chain attack on NPM Package UAParser, which has millions of daily downloads
The U.S. CISA warned of crypto-mining malware hidden in a popular JavaScript NPM library, named UAParser.js, which has millions of weekly downloads....
Facebook SSRF Dashboard allows hunting SSRF vulnerabilities
Facebook developed a new tool that allows security experts to look for Server-Side Request Forgery (SSRF) vulnerabilities in their software....
Groove ransomware group calls on other ransomware gangs to hit US public sector
Groove ransomware operators call on other ransomware groups to stop competing and join the forces to fight against the US....
DarkSide ransomware operators move 6.8M worth of Bitcoin after REvil shutdown
Darkside and BlackMatter ransomware operators have moved a large amount of their Bitcoin reserves after the recent shutdown of REvil’s...
Ransomware: Why do backups fail when you need them most?
It’s widely known, and endlessly repeated, that the last, best line of defence against the potentially devastating effects of a...
We dig into the Game Players Code
Gaming security is getting a lot of attention at the moment. Rightly so; it’s a huge target for scammers and...
A bug is about to confuse a lot of computers by turning back time 20 years
For those of you that remember the fuss about the Y2K bug, this story may sound familiar. The Cybersecurity &...
FIN7 cybercrime gang creates fake cybersecurity firm to recruit pentesters for ransomware attacks
FIN7 hacking group created fake cybersecurity companies to hire experts and involve them in ransomware attacks tricking them of conducting...
FiveSys, a new digitally-signed rootkit spotted by Bitdefender experts
Bitdefender researchers discovered a new Rootkit named FiveSys that abuses Microsoft-Issued Digital Signature signature to evade detection. FiveSys is a...
Evil Corp rebrands their ransomware, this time is the Macaw Locker
Evil Corp cybercrime gang is using a new ransomware called Macaw Locker to evade US sanctions that prevent victims from...
A flaw in WinRAR could lead to remote code execution
A vulnerability in the WinRAR is a trialware file archiver utility for Windows could be exploited by a remote attacker...
