Prometheus endpoint unprotected installs could expose sensitive data
Experts discovered several unprotected installs of open source event monitoring solution Prometheus that may expose sensitive data. JFrog researchers have...
News
“Killware”: Is it just as bad as it sounds?
On October 12, after interviewing US Secretary of Homeland Security Alejandro Mayorkas, USA TODAY’s editorial board warned its readers about...
Multiple vulnerabilities in popular WordPress plugin WP Fastest Cache
Multiple vulnerabilities have been found in the popular WordPress plugin WP Fastest Cache during an internal audit by the Jetpack...
A week in security (Oct 11 – Oct 17)
Last week on Malwarebytes Labs Google warns some users that FancyBear’s been prowling aroundInside Apple: How macOS attacks are evolvingThe...
Sinclair TV stations downtime allegedly caused by a ransomware attack
A ransomware attack is likely the cause of the recent downtime for TV stations owned by the Sinclair Broadcast Group...
REvil ransomware operation shuts down once again
It seems that the REvil ransomware operation has shut down once again after a threat actor has hijacked their Tor...
Experts spotted an Ad-Blocking Chrome extension injecting malicious ads
Researchers warn of an Ad-Blocking Chrome extension that was abused by threat actors to Injecting Ads in Google search pages....
Experts hacked a fully patched iOS 15 running on iPhone 13 at China’s Tianfu Cup hacking contest
White hat hackers earned $1.88 million at the Tianfu Cup hacking contest by finding vulnerabilities in popular software. The Tianfu...
Twitch security breach had minimal impact, the company states
Twitch provided an update for the recent security breach, the company confirmed that it only had a limited impact on...
Ecuador’s Banco Pichincha has yet to recover after recent cyberattack
The customers of Banco Pichincha, the largest bank in Ecuador, are still experiencing service disruptions after a massive cyberattack hit...
Trickbot spreads malware through new distribution channels
TrickBot operators are back and expand the distribution channels with partnership with cybercrime affiliates. The operators behind the infamous TrickBot...
Russia-Linked TA505 targets financial institutions in a new malspam campaign
Russia-linked TA505 group leverages a lightweight Office file to spread malware in a campaign, tracked as MirrorBlast, aimed at financial...
US Treasury FinCEN linked $5.2 billion in BTC transactions to ransomware payments
The U.S. Treasury Department’s Financial Crimes Enforcement Network (FinCEN) linked roughly $5.2 billion worth of Bitcoin transactions to ransomware. The...
Accenture discloses data breach after LockBit ransomware attack
IT and consulting giant Accenture confirmed a data breach after the ransomware attack conducted by LockBit operators in August 2021....
Juniper Networks released +40 security advisories to fix +70 vulnerabilities
Cybersecurity provider Juniper Networks released more than 40 security advisories to address over 70 vulnerabilities that affect its solutions. Cybersecurity...
Boffins devise a new side-channel attack affecting all AMD CPUs
A group of researchers from the Graz University of Technology and CISPA Helmholtz Center for Information Security devised a new...
What is an .exe file? Is it the same as an executable?
You may often see .exe files but you may not know what they are. Is it the same as an...
Three more ransomware attacks hit Water and Wastewater systems in 2021
A joint cybersecurity advisory published by US agencies revealed that three ransomware attacks on wastewater systems this year. A joint cybersecurity advisory published...
WhatsApp made available end-to-end encrypted chat backups
WhatsApp made available end-to-end encrypted chat backups on iOS and Android to prevent anyone from accessing user chats. WhatsApp is...
Since 2020, at least 130 different ransomware families have been active
The popular Google’s VirusTotal scanning service has published an interesting analysis of more than 80 Million ransomware samples. VirusTotal has...
Adblocker promises to blocks ads, injects them instead
Researchers at Imperva uncovered a new ad injection campaign based on an adblocker named AllBlock. The AllBlock extension was available...
Google sent over 50,000 warnings of state-sponsored attacks, +33% from same period in 2020
Google revealed to have sent roughly 50,000 alerts of state-sponsored phishing or hacking attempts to customers since January. Google announced...
For the first time, an Israeli hospital was hit by a major ransomware attack
The Hillel Yaffe Medical Center in Hadera, Israel, was hit by a ransomware attack that was defined by Israel’s National...
Acer suffered the second security breach in a few months
Taiwanese electronics technology giant Acer discloses a security breach suffered by its after-sales service systems in India after an isolated...
