Administrators of bulletproof hosting sentenced to prison in the US
The United States Department of Justice sentenced two individuals that were providing bulletproof hosting to various malware operations. The United...
News
Update now! Chrome fixes more security issues
For the third time in a month Google has issued an update to patch for several security issues. This time...
Chrome targeted by Magnitude exploit kit
Exploit kits (EK) are not as widespread as they used to be. One of the reasons is likely that most...
US Bureau of Industry and Security bans export of hacking tools to authoritarian regimes
The Commerce Department’s Bureau of Industry and Security (BIS) would ban U.S. firms from selling hacking tools to authoritarian regimes....
Top 5 Attack Vectors to Look Out For in 2022
Threat actors are continually looking for better ways to target organizations, here are the top five attack vectors to look...
Russian-speaking cybercrime evolution: What changed from 2016 to 2021
Experts at Kaspersky have been investigating various computer incidents on a daily basis for over a decade. Having been in...
YouTube creators’ accounts hijacked with cookie-stealing malware
A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. Financially motivated...
PurpleFox botnet variant uses WebSockets for more secure C2 communication
Researchers warn of a new evolution of the PurpleFox botnet, operators included exploits and leverage WebSockets for C2 communication. Researchers...
High school student rickrolls entire school district, and gets praised
A student at a high school in Cook County successfully hacked into the Internet-of-Things (IoT) devices of one of the...
How to delete your Snapchat account
Snapchat is an instant messaging app popular with youngsters that allows users to send pictures and videos that are only...
Acer suffers a second data breach in a week
Tech giant Acer was hacked again in a few days, after the compromise of the servers in India, threat actors...
China-linked LightBasin group accessed calling records from telcos worldwide
China-linked cyberespionage group LightBasin hacked mobile telephone networks around the world and used specialized tools to access calling records. A...
Zerodium is looking for zero-day exploits in ExpressVPN, NordVPN, and Surfshark Windows VPN clients
Zero-day exploit broker Zerodium announced it is looking for zero-day vulnerabilities in the Windows clients of ExpressVPN, NordVPN, and Surfshark....
Trickbot module descriptions
Trickbot (aka TrickLoader or Trickster), is a successor of the Dyre banking Trojan that was active from 2014 to 2016...
q-logger skimmer keeps Magecart attacks going
This blog post was authored by Jérôme Segura Although global e-commerce is continuing to grow rapidly, it seems as though...
Experts found many similarities between the new Karma Ransomware and Nemty variants
Sentinel Labs experts have analyzed the new Karma ransomware and speculate it represents an evolution of the Nemty ransomware operation....
Protect yourself from BlackMatter ransomware: Advice issued
Despite promises made by the BlackMatter ransomware gang about which organizations and business types they would avoid, multiple US critical...
REvil ransomware gang disappears after Tor services hijacked
With some pests you hope they never recover from a blow. It’s almost too good to be true, but one...
Symantec uncovered a previously unknown nation-state actor, named Harvester, that targeted telcos
Symantec spotted a previously unknown nation-state actor, tracked as Harvester, that is targeting telecommunication providers and IT firms in South...
FBI, CISA, NSA published a joint advisory on BlackMatter ransomware operations
FBI, CISA, NSA have published a joint advisory about the operation of the BlackMatter ransomware gang and provides defense recommendations....
Trustwave released a free decryptor for the BlackByte ransomware
Trustwave’s SpiderLabs researchers have released a free decryptor for the BlackByte ransomware that can allow victims to recover their files....
Lyceum group reborn
This year, we had the honor to be selected for the thirty-first edition of the Virus Bulletin conference. During the...
US-CERT Bulletin (SB21-291):Vulnerability Summary for the Week of October 11, 2021
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
TeamTNT Deploys Malicious Docker Image On Docker Hub
The Uptycs Threat Research Team spotted a campaign in which the TeamTNT threat actors deployed a malicious container image on...
