Russian Electronic Voting System Struck by 19 DDoS Attacks in One Day
Yandex, the Russian technology and search engine powerhouse, disclosed last week that it had been hit by one of the...
News
FTC: Health App and Device Makers Should Comply With Health Breach Notification Rule
The Federal Trade Commission on 15th September authorized a policy statement reminding makers of health applications and linked devices that...
Flaws in Nagios Network Management systems pose risk to companies
Researchers found multiple flaws in widely used network management products from Nagios that pose serious risk to organizations. Researchers from...
VMware addressed a critical flaw in vCenter Server. Patch it now!
VMware addressed a critical arbitrary file upload vulnerability that affects the default configuration of vCenter Server 6.7 and 7.0 deployments....
A zero-day flaw allows to run arbitrary commands on macOS systems
Security researchers disclosed a new zero-day flaw in Apple’s macOS Finder that can allow attackers to run arbitrary commands on...
Turla APT group used a new backdoor in attacks against Afghanistan, Germany and the US
Russia-linked cyber espionage group Turla made the headlines again, the APT has employed a new backdoor in a recent wave...
Internet safety tips for kids and teens: A comprehensive guide for the modern parent
When it comes to picking a new device for your child, it’s often difficult to know where to start. Whether...
New Mac malware masquerades as iTerm2, Remote Desktop and other apps
Last week, security researcher Patrick Wardle released details of a new piece of malware masquerading as the legitimate app iTerm2....
35 yrs Of Imprisonment for the Administrator of 200,000 DDoS Attacks
After a 9-day trial, a California jury that held two distributed denial of service (DDoS) operations administrators, found him guilty....
Pakistani Scammer Sentenced to 12 Years in $200 Million Phone-Fraud Scheme
AT&T, the world’s largest telecommunications firm, lost over $200 million after a Pakistani scammer and his partners coordinated a seven-year...
Payment API Flaws Exposed Millions of Users’ Data
Researchers discovered API security flaws impacting several apps, potentially exposing the personal and financial information of millions of consumers. According to...
$100 Million Pledged by Google to Groups that Manage Open-Source Projects
Google recently announced a $100 million donation to organizations that manage open-source security priorities and assist with vulnerability fixes, and...
Detection evasion in CLR and tips on how to detect such attacks
In terms of costs, the age-old battle that pits attacker versus defender has become very one sided in recent years....
Apache OpenOffice is currently impacted by a remote code execution flaw
Apache OpenOffice (AOO) is currently impacted by a remote code execution flaw, tracked as CVE-2021-33035, that has yet to be...
Black Matter gang demanded a $5.9M ransom to NEW Cooperative
U.S. The farmers cooperative NEW Cooperative was hit by Black Matter ransomware gang that is demanding a $5.9 million ransom....
Data of 106 million visitors to Thailand leaked online
Security researchers discovered an unsecured database exposed online containing the personal information of millions of visitors to Thailand. The popular...
Large phishing campaign targets EMEA and APAC governments
Security researchers uncovered a large phishing campaign targeting multiple government departments in APAC and EMEA countries. Researchers from cybersecurity firm...
Microsoft makes a bold move towards a password-less future
In a recent blog Microsoft announced that as of September 15, 2021 you can completely remove the password from your...
Freedom Hosting operator gets 27 years for hosting Dark Web child abuse sites
The wheels of justice have turned, if perhaps a bit slower than you may have expected. A Dublin resident, Eric...
A week in security (Sept 13 – Sept 19)
Last week on Malwarebytes Labs Why backups aren’t a “silver bullet” against ransomware, with Matt Crape: Lock and Code S02E17The...
Numando: a Banking Trojan Targeting Brazil Abuses YouTube for Spreading
ESET researchers have continued their investigation on the Latin American banking trojans with Numando, primarily targeting Brazil and seldom Mexico...
Links Detected Between MSHTML Zero-Day Attacks and Ransomware Operations
The exploitation of a recently fixed Windows zero-day vulnerability was attributed to known ransomware operators, according to Microsoft and threat...
Lubbock County Denies Data Leak, Says Data Temporarily Attainable Under New Software System
Earlier this month, the personal court records for residents of Lubbock County, located in the US state of Texas, were...
Secrets from Public Repositories Were Exposed Due to Travis CI Flaw
Travis CI, a continuous integration provider located in Berlin, has patched a severe issue that exposed signing keys, API keys,...
