Security Affairs newsletter Round 317
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
News
REvil Ransomware spokesman releases an interview on recent attacks
The REvil ransomware operators said in an interview on the “Russian OSINT” Telegram channel that they accidentally targeted United States-based...
US arrested Latvian woman who developed part of Trickbot malware
The US Department of Justice (DOJ) announced the arrest of a Latvian woman for her alleged role in the development...
Cryptocurrency Addiction: Here’s Alll You Need to Know!
Cryptocurrency addiction is defined as compulsive cryptocurrency trading and related behaviors that have negative implications in a person's life. Cryptocurrency...
Hacking Group DarkSide Attacks Colonial Pipeline With a Ransomware
Hacking group DarkSide, which was behind the recent ransomware attack on Colonial Pipeline, operates in a much common way than...
Serious Flaws Identified in CODESYS Industrial Automation Software
Cybersecurity researchers at Russian cybersecurity firm Positive Technologies discovered as many as ten critical flaws impacting CODESYS automation computer software...
Hackers Reportedly Target Cox Media Group Stations
‘Cox Media Group’, is one of the largest media conglomerates in the United State, earlier today, the organization has to...
VMware Becomes New Target of FreakOut Malware
A new dangerous "Freakout" alias malware campaign has just targeted unpatched Linux workstations that handle Network Attached Storage (NAS) and...
BlackCocaine Ransomware, a new malware in the threat landscape
Cyble researchers investigated a recent attack on an India-based IT firm that was hit by the BlackCocaine Ransomware gang. Recently Cyber researchers for Cyble...
DoJ: Investigations into ransomware attacks must have similar priority as terrorism
The U.S. Department of Justice was to assign investigation on ransomware attacks the same priority as terrorism in the wake...
US CISA published a guide to better use the MITRE ATT&CK framework
The U.S. CISA announced the availability of a new guide for cyber threat intelligence experts on the use of the...
Hackers scan for VMware vCenter servers vulnerable to CVE-2021-21985 RCE
Hackers are actively scanning the Internet for VMware vCenter servers vulnerable against a critical RCE flaw recently fixed by VMware....
Necro Python bot now enhanced with new VMWare, server exploits
Operators behind the Necro Python botnet have added new features to their bot, including VMWare and server exploits. Experts from...
Security pros agree about threats—convincing everyone else is the problem
How about that Colonial Pipeline? As troubling as this event may be, for those of us working in the world of...
Ransomware to be investigated like terrorism
The impact of recent ransomware attacks on vital infrastructure in the US has triggered a reaction from the US Attorney’s...
Ex-SEC Enforcer: Crypto Investors are Enabling Hackers
The founder of the Securities and Exchange Commission's internet enforcement bureau warned Thursday that investors in bitcoin and other digital...
Furniture Village Hit by a Week-Long Cyber Attack
Customers have been left 'with nothing to sit on' and unable to pay while waiting for sofas, beds, and tables...
What is Email Spoofing? How Hackers Impersonate Legitimate Senders
Email spoofing is easily the most commonly employed way by threat actors for initiating phishing and spam attacks. Normally, hackers...
Vulnerabilties Found in Realtek Module
A new type of severe rated vulnerabilities has been revealed in the Realtek RTL8170C Wi-Fi module. A hacker could exploit...
FujiFilm Shuts Down Network Following Ransomware Attack
Japanese multinational conglomerate FujiFilm, headquartered in Tokyo suffered a ransomware attack on Tuesday night. The company has shut down portions...
China-linked attackers breached Metropolitan Transportation Authority (MTA) using Pulse Secure zero-day
China-linked APT breached New York City’s Metropolitan Transportation Authority (MTA) network in April using a Pulse Secure zero-day. China-linked threat...
The dark web index 2021, report
PrivacyAffairs released the Dark Web Index 2021, the document provides the prices for illegal services/products available in the black marketplaces....
Trend Micro details CVE-2021-30724 privilege escalation flaw in macOS, iOS
Trend Micro disclosed technical details of a patched privilege escalation issue, tracked as CVE-2021-30724, that impacts macOS, iOS and iPadOS....
Cisco fixes High-severity issues in Webex, SD-WAN, ASR 5000 software
Cisco addressed multiple security flaws, including high-severity vulnerabilities, in Webex Player, SD-WAN software, and ASR 5000 series software. Cisco has...
